Home
» Risk & Exploitation
» Daily threat intelligence
» Apr 24, 2026
Apr 24, 2026 Cyber Threat Intelligence
Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.
Daily summary
SimpleHelp: 2 CVEs added to CISA KEV today.
10 new critical disclosures — review patch status on exposed services.
Top threats today
Three highest-priority changes — analyst brief, not a CVE dump.
Critical active threat
CVE-2024-57726
SimpleHelp Missing Authorization
Actively exploited (CISA KEV)
Listed on CISA KEV
Potential privilege escalation to admin/root
SimpleHelp privilege escalation is on CISA KEV — confirmed in-the-wild exploitation. Expect continued targeting while the issue remains on the catalog.
Critical exposure
CVE-2026-41478
Saltcorn is an extensible, open source, no-code database application builder.
New critical Saltcorn SQL Injection (CVSS 9.9) — fresh disclosure window; early internet scanning often precedes mature exploit chains.
Critical exposure
New critical Linux Kernel Use-After-Free (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.
Active exploitation
CISA KEV — confirmed in-the-wild exploitation.
D-Link DIR-823X Command Injection
SimpleHelp Missing Authorization
SimpleHelp Path Traversal
Samsung MagicINFO 9 Server Path Traversal
View KEV additions
Exploitation dynamics
Nothing flagged in this category for this digest.
See EPSS increases
New critical disclosures
In the Linux kernel, the following vulnerability has been resolved: seg6: separate dst_cache for input and output paths in seg6 lwtunnel...
In the Linux kernel, the following vulnerability has been resolved: mptcp: fix slab-use-after-free in __inet_lookup_established The ehash...
BridgeHead FileStore versions prior to 24A (released in early 2024) expose the Apache Axis2 administration module on network-accessible e...
Clerk JavaScript is the official JavaScript repository for Clerk authentication.
Dgraph is an open source distributed GraphQL database.
Dgraph is an open source distributed GraphQL database.
Budibase is an open-source low-code platform.
Saltcorn is an extensible, open source, no-code database application builder.
Dgraph is an open source distributed GraphQL database.
Missing JWT signature verification in AWS Ops Wheel allows unauthenticated attackers to forge JWT tokens and gain unintended administrati...
View critical disclosures
cvelogic
Threat Intelligence