AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

🔥 This vulnerability is being actively exploited in the wild (CISA Known Exploited Vulnerabilities catalog)

CVE-2024-7694: TeamT5 ThreatSonar Anti-Ransomware Unrestricted Upload of File with Dangerous Type Vulnerability

infovulnerability🔥 Actively Exploited

security

Source: CISA Known Exploited VulnerabilitiesFebruary 16, 2026CVE-2024-7694

Summary

TeamT5 ThreatSonar Anti-Ransomware has a vulnerability where it doesn't properly check uploaded files, allowing attackers with admin access to upload malicious files and run dangerous commands on the server. This vulnerability is currently being exploited by real attackers in the wild.

Solution / Mitigation

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services (a set of government cybersecurity rules), or discontinue use of the product if mitigations are unavailable. The deadline to address this is 2026-03-10.

Vulnerability Details

EPSS (30-day exploit probability)

EPSS: 1.6%

Exploit Maturity

🔥 Actively Exploited

Classification

Attack SophisticationModerate

Taxonomy References

CWE (Weakness Type)

CWE-434

CAPEC (Attack Pattern)

CAPEC-1

Original source: https://nvd.nist.gov/vuln/detail/CVE-2024-7694

First tracked: February 17, 2026 at 07:00 PM

Classified by LLM (prompt v3) · confidence: 95%