Skip to content
Auto-CTI
Archive view — this data may be outdated.

CTI status

Joel Traber AG

As of:

Last pipeline run:

Status High

All threats

Sorted by KEV · Risk · EPSS
Admiralty grading (A–F · 1–6)

Source reliability

  • A Completely reliable
  • B Usually reliable
  • C Fairly reliable
  • D Not usually reliable
  • E Unreliable
  • F Cannot be judged

Information credibility

  • 1 Confirmed
  • 2 Probably true
  • 3 Possibly true
  • 4 Doubtful
  • 5 Improbable
  • 6 Cannot be judged

NATO Admiralty (AJP-2.1) grades confidence, independent of the risk score. Cross-source corroboration isn't tracked for non-CVE news, so single-source items are capped at a lower credibility number; a low number does not imply low quality.

KEV NEW B1
71

CVE-2024-40766: The Patch Fixed the Bug. Nobody Fixed the Configuration.

The vulnerability is actively exploited and demonstrates a typical gap between patch availability and user configuration; exploitation waves in July-August 2025 indicate ransomware campaigns (including Akira) combining a firewall vulnerability with weak configuration practices.

High CVSS 9.8 EPSS 16%
KEV Russian state-sponsored actors C1
70

Russian Attackers Weaponize WinRAR Flaw Against Ukrainian Orgs

Russian threat actors are actively exploiting a known WinRAR vulnerability (patched in July) for targeted cyberespionage against Ukrainian military and government targets, signaling sustained cyber-warfare in the region.

High CVSS 8.8 EPSS 81%
NEW Russian Initial-Access Broker (IAB) C3
80

Russian Initial Access Broker Behind FortiBleed Campaign

A Russian initial-access broker is running the FortiBleed campaign to harvest credentials at scale (110+ million since February 2026) via network sniffers and may sell acquired access to state-sponsored groups or ransomware gangs.

Critical
NEW A2
71

CVE-2020-9695

This CVE originates from 2020 and has been extensively patched; active exploitations in the wild are unlikely if patches have been applied.

High CVSS 7.8 EPSS 0%
NEW A2
58

CVE-2026-54515

Vulnerability allows bypass of @JsonIgnoreProperties filters by exploiting case-insensitivity processing in jackson-databind, making supposedly ignored properties writable again.

Medium CVSS 5.3 EPSS 0%
NEW A2
50

CVE-2020-9711

This 2020 CVE is long patched and remains relevant only if outdated Acrobat versions are still in productive use in the organisation; no current threat.

Medium CVSS 5.5 EPSS 0%
NEW A2
50

CVE-2020-9713

This is a 2020 vulnerability with no evidence of active exploitation or coordinated attack campaigns in the wild.

Medium CVSS 5.5 EPSS 0%
A3
20

[UPDATE] systemd: Multiple Vulnerabilities

BSI advisory without explicit CVE numbers suggests coordinated disclosure or not-yet-fully-disclosed vulnerabilities; priority depends on CVE details and patch availability.

High
NEW A3
0

Siemens WinCC Certificate Manager

Siemens WinCC Certificate Manager has a vulnerability that may allow attackers to bypass authentication mechanisms or accept invalid certificates.

Medium
What has changed since yesterday? →
ESC