Feb 12, 2026 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

Apple Multiple Products added to CISA KEV — confirmed in-the-wild exploitation.
Gpsdrive — exploitation likelihood rose sharply (EPSS 25% → 42% · rising (+17%)).
10 new critical disclosures — review patch status on exposed services.

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Critical active threat

CVE-2024-43468 Microsoft Configuration Manager SQL Injection

Actively exploited (CISA KEV)
Listed on CISA KEV
Remote code execution exposure

Microsoft Configuration Manager RCE is on CISA KEV — confirmed in-the-wild exploitation. Expect continued targeting while the issue remains on the catalog.

Emerging exploitation risk

CVE-2005-3523 Gpsdrive

Exploitation likelihood sharply increased
EPSS 25% → 42% · rising (+17%)

Gpsdrive: EPSS 25% → 42% · rising (+17%) — EPSS is climbing faster than peer CVEs in this window, a leading indicator even before KEV or public exploit linkage.

Critical exposure

CVE-2025-70314 webfsd 1.21 is vulnerable to a Buffer Overflow via a crafted request.

CVSS 9.8

New critical Ourway Webfsd Buffer Overflow (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

CVE-2026-20700 KEV

Apple Multiple Buffer Overflow

CVE-2025-15556 KEV

Notepad++ Download of Code Without Integrity Check

CVE-2025-40536 KEV

SolarWinds Web Help Desk Security Control Bypass

CVE-2024-43468 KEV

Microsoft Configuration Manager SQL Injection

View KEV additions

Exploit & PoC activity

Nothing flagged in this category for this digest.

View new exploit links

Exploitation dynamics

CVE-2005-3523 EPSS 25% → 42% · rising (+17%) CVSS 7.5

Gpsdrive

CVE-2005-2128 EPSS 39% → 54% · rising (+16%) CVSS 5

Microsoft Windows Media Player

CVE-2000-0669 EPSS 2.2% → 17% · rising (+14%) CVSS 5

Novell Netware DoS

CVE-2021-24849 EPSS 62% → 75% · rising (+13%) CVSS 9.8

Wclovers Frontend Manager For Woocommerce Along With Bookings Subscription Listings Compatible SQL Injection

CVE-2004-2375 EPSS 10% → 20% · rising (+10%) CVSS 7.5

1st Class Internet Solutions 1st Class Mail Server Buffer Overflow

See EPSS increases

New critical disclosures

CVE-2019-25322 CVSS 9.3

Heatmiser Netmonitor 3.03 contains a hardcoded credentials vulnerability in the networkSetup.htm page with predictable admin login creden...

CVE-2025-70314 CVSS 9.8

webfsd 1.21 is vulnerable to a Buffer Overflow via a crafted request.

CVE-2026-1358 CVSS 9.3

Airleader Master versions 6.381 and prior allow for file uploads without restriction to multiple webpages running maximum privileges.

CVE-2026-24044 CVSS 9.2

Element Server Suite Community Edition (ESS Community) deploys a Matrix stack using the provided Helm charts and Kubernetes distribution.

CVE-2026-25227 CVSS 9.1

authentik is an open-source identity provider.

CVE-2026-26011 CVSS 9.3

navigation2 is a ROS 2 Navigation Framework and System.

CVE-2026-26020 CVSS 9.4

AutoGPT is a platform that allows users to create, deploy, and manage continuous artificial intelligence agents that automate complex wor...

CVE-2026-26068 CVSS 9.3

emp3r0r is a stealth-focused C2 designed by Linux users for Linux environments.

CVE-2026-26069 CVSS 9.1

Scraparr is a Prometheus Exporter for various components of the *arr Suite.

CVE-2026-26219 CVSS 9.3

newbee-mall stores and verifies user passwords using an unsalted MD5 hashing algorithm.

View critical disclosures

cvelogic Threat Intelligence