CVE-2024-7694
Actively exploited. CVE-2024-7694 is listed in the CISA Known Exploited Vulnerabilities catalog (added 2026-02-17) — exploitation has been observed in the wild, and US federal agencies are required to remediate it under BOD 22-01. Treat patching as urgent.
TeamT5 ThreatSonar Anti-Ransomware contains an unrestricted upload of file with dangerous type vulnerability. ThreatSonar Anti-Ransomware does not properly validate the content of uploaded files. Remote attackers with administrator privileges on the product platform can upload malicious files, which can be used to execute arbitrary system commands on the server.
CSIRTS triage
- What
- ThreatSonar Anti-Ransomware contains an unrestricted upload of file with dangerous type vulnerability.
- Who is affected
- Remote attackers with administrator privileges on the product platform.
- Urgency
- Immediate action is required as the vulnerability is actively exploited and critical.
- Action
- Update to the latest version of ThreatSonar Anti-Ransomware.
AI-assisted analysis generated from the source advisory — verify against the original.
⚡ Watch CVE-2024-7694
Get an email if CVE-2024-7694 is added to CISA KEV, gains public exploit code, or a new advisory cites it — max one per day, one-click unsubscribe.
Exploitation outlook
- Exploitation confirmedAlready exploited in the wild (CISA KEV) — the prediction phase is over. Patch now. Riskier than 76% of all EPSS-scored CVEs.
Advisory coverage (1)
- criticalexploitedCVE-2024-7694: TeamT5 ThreatSonar Anti-Ransomware Unrestricted Upload of File with Dangerous Type Vulnerabilit…cisa-kev · 2026-02-17
External references
Embed the live status
— this badge updates automatically when the KEV or exploit status changes. How to embed it →
[](https://www.csirts.com/cve/CVE-2024-7694)