Feb 4, 2026 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

  • Fortinet FortiWeb: public exploit or PoC linked (SQL Injection)
  • 10 new critical disclosures — review patch status on exposed services.

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Active exploit activity

CVE-2025-25257 Fortinet FortiWeb SQL Injection

  • Public exploit or PoC available
  • Exploit activity linked

Fortinet FortiWeb SQL Injection now has public exploit or PoC linkage — assume opportunistic scanning and targeted follow-on activity.

Active exploit activity

CVE-2025-32023 Redis is an open source, in-memory database that persists on disk.

  • Public exploit or PoC available
  • Exploit activity linked
  • Remote code execution exposure

Redis RCE now has public exploit or PoC linkage — assume opportunistic scanning and targeted follow-on activity.

Critical exposure

CVE-2026-25505 Bambuddy is a self-hosted print archive and management system for Bambu Lab 3D printers.

  • CVSS 9.8

New critical disclosure (CVSS 9.8) — high severity with a short public awareness window before exploit material typically surfaces.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

Nothing flagged in this category for this digest.

View KEV additions

Exploit & PoC activity

CVE-2025-58180 Exploit

OctoPrint provides a web interface for controlling consumer 3D printers.

CVE-2025-9074 Exploit

A vulnerability was identified in Docker Desktop that allows local running Linux containers to access the Docker Engine API via the confi...

CVE-2025-32023 Exploit

Redis is an open source, in-memory database that persists on disk.

CVE-2025-1097 Exploit

A security issue was discovered in ingress-nginx https://github.com/kubernetes/ingress-nginx where the `auth-tls-match-cn` Ingress annota...

CVE-2025-1098 Exploit

A security issue was discovered in ingress-nginx https://github.com/kubernetes/ingress-nginx where the `mirror-target` and `mirror-host`...

CVE-2025-1974 Exploit

A security issue was discovered in Kubernetes where under certain conditions, an unauthenticated attacker with access to the pod network...

CVE-2025-24514 Exploit

A security issue was discovered in ingress-nginx https://github.com/kubernetes/ingress-nginx where the `auth-url` Ingress annotation can...

CVE-2025-24054 Exploit

Microsoft Windows NTLM Hash Disclosure Spoofing

CVE-2024-23334 Exploit

aiohttp is an asynchronous HTTP client/server framework for asyncio and Python.

View new exploit links

Exploitation dynamics

Nothing flagged in this category for this digest.

See EPSS increases

New critical disclosures

CVE-2025-13375 CVSS 9.8

IBM Common Cryptographic Architecture (CCA) 7.5.52 and 8.4.82 could allow an unauthenticated user to execute arbitrary commands with elev...

CVE-2025-62615 CVSS 9.3

AutoGPT is a platform that allows users to create, deploy, and manage continuous artificial intelligence agents that automate complex wor...

CVE-2025-62616 CVSS 9.3

AutoGPT is a platform that allows users to create, deploy, and manage continuous artificial intelligence agents that automate complex wor...

CVE-2026-25505 CVSS 9.8

Bambuddy is a self-hosted print archive and management system for Bambu Lab 3D printers.

CVE-2026-25512 CVSS 9.4

Group-Office is an enterprise customer relationship management and groupware tool.

CVE-2026-25521 CVSS 9.4

Locutus brings stdlibs of other programming languages to JavaScript for educational purposes.

CVE-2026-25526 CVSS 9.8

JinJava is a Java-based template engine based on django template syntax, adapted to render jinja templates.

CVE-2026-25539 CVSS 9.1

SiYuan is a personal knowledge management system.

CVE-2026-25547 CVSS 9.2

@isaacs/brace-expansion is a hybrid CJS/ESM TypeScript fork of brace-expansion.

CVE-2026-25579 CVSS 9.2

Navidrome is an open source web-based music collection server and streamer.

View critical disclosures

cvelogic Threat Intelligence