Threat Actors Exploit GeoServer Vulnerability CVE-2024-36401

Sept. 10, 2024, 9:01 p.m.

Description

A critical security flaw in the Open Geospatial Consortium (OGC) GeoServer server has been exploited by cyber-attackers to gain control of vulnerable systems, according to FortiGuard Labs.

External References

https://www.fortinet.com/blog/threat-research/threat-actors-exploit-geoserver-vulnerability-cve-2024-36401
https://otx.alienvault.com/pulse/66e0b0caffa8120f0871c74b
Tags
linux
mirai
urls
2024-09-10
condi
geoserver
fundamentals

Date

  • Created: Sept. 10, 2024, 8:49 p.m.
  • Published: Sept. 10, 2024, 8:49 p.m.
  • Modified: Sept. 10, 2024, 9:01 p.m.

Indicators

  • f3d3572ef96c9c59e137425ca6804e1b86b7f8b57210a3724d567017460774de
  • fabbb4611fb9df5d8f208d9353be0b73c3942fe78903da096cbfe2f47c9e3566
  • f7b97677b6387c1f02d429e98868bf6973a8dec14dfee2516a27e885d6b1c780
  • eb2f95bb2059a3690259f2c0d7537b3cad858869650b9c220d2d81e3720b6dde
  • e8b0f5a952f07c83c4d67809ac0715c7164d518323d8038542e84aab8456db43
  • e5e5122ba6d0b06f7ed8e57ab5324ae730970c0d23913f27b9ecc9094182c03d
  • d9e8b390f8e2e8a6c2308c723a6a812f59c055ecad4e9098a120e5c4c65d3905
  • d72e4cabffc84a31e50caf827b6e579cf6e4932e5cbc528a65a68728ba56b65b
  • d9dfe98b5fba09e17dbe29dfeb8deb7d777d4a3b0d670914691ed360b916116a
  • d1d25730122f8bc125251832c6af03aedd705dfcc2d9eebcce4371c54bb84b39
  • c8b76b63644d2946fd0af72b48fa59f07a78e1f84464cff5e9b1ca4110e6113e
  • c81d4770e812ddc883ead8ff41fd2e5a7d5bc8056521219ccf8784219d1bd819
  • c3101b0b74d76a95ba91b6cc4945657e928d2dac8fdf926ffbf09031d46e9186
  • bf56711bbe0b1dac3b1481d36e7ae2f312da5f404c554c2c45a01fe591b8464d
  • b80e9466b7bb42959c29546b8c052e67fcaa0f591857617457d5d28348bd8860
  • c226744b40e8f5d2cf95b4fb2537ff00e222ecc2d24c5096ecfadb14b4a47f97
  • b67ab1b9b66fdc2c4ed1689698a54a347c2bdd6eaff87039ae337675243670d8
  • b60d7fb66caf103a04e81fb89dbb05111b4b0ef513f3769c8e0a8106ab01a075
  • b3a015b6650ec9800fa878ff9a5f732013806c8dcb0e7069515dae0dd380fda4
  • addccd0ecb643251af2e79e878b19a8e9c8f1c87302e732ef057cdba821f4b30
  • a9e7b5284182d3881c865895ee6e0fb03273eec3dcbf4bfc82dd2b069245beae
  • a13a979f4ca57450528bb6cd7aa2bf47d2eea211053eb1a14b8c4a44fd661831
  • 9bf642a7e14f0a0b0a784f00a0d1cf590ac60ae5ae378d29d435519f4d9dbf2b
  • 994b924b00fb56e12a6a987c4cdf65dd05a221c47b5fc0a7a2babf1f05c2ed38
  • 96cf27a66b629d2b19708c6887441a8422b40dc0e9e7c5c0f2212efe0b6b3323
  • 8fad39ec0671d9b401712ddbc1f24942b2ee2f4865b6ffcd2f019036e03cbade
  • 8d3440301bc94ed83cdafb69e4b0166d3a0020eb4f38e9fa159c2f13f14b2d29
  • 83fb74bb852bbd722e6ebc4e249e49cb4bb4194493a26d62d4bfcdfca2998412
  • 7d052cffcf97b303d11c5d35fa9bc860155601cdea21e38447401571b35d2db1
  • 79c9532fb6ef2742e207498bfe2b2ee09aa9773376ac0e56085083aab17b98be
  • 762707f2c7fc4731c4c46ecb3364a4e7ace8984aa899cc57c624b342d3efa03f
  • 75d7b6264f5a574bc75400c9d57282e9344d8b2df576ad2a36ab7e2575d5a395
  • 7355cc094f2e43e4dd7b8b698b559abe6d2d74cc48f5cfa464424314c6e41944
  • 7194ec436231c2a383ffc7c75eef4f5b5a952c18fa176ffd0830667835a80533
  • 689504850db842365cd47eadd2d3d42888b9261e7d9e884f14bb7deeb21bb61d
  • 653a4ad0b00e59a01142f899b6aac9712cfb25063b5b9b2e7e3171f7f3a897ed
  • 5d9eb83b4a6f2d49580e1658263eb972be336a2cad15a84561d17d59391191b0
  • 5cc7e35254347f705422800bfb7fe29c6002e2537f6bac0ff996a720dfb5f48e
  • 5c9722d3dc72dbeafec00256887867bad46d347a5fc797d57fc9e0fd317035d3
  • 5abf8a52d45f6d5970fab8d1dfd05b6ee7b0ef57df935f45761b89d3522fa592
  • 50b7e615b8cdc45486b6ed1c1c081c7a92c262edb84318fa864531dcab753f82
  • 53994a35a57970dea48e97009f65ad045b69a83234b771b106446211376a6866
  • 4234eb5eb42fbe44d7163c4388d263b3fe57fb1e56bf56152ac352c3fd0beec0
  • 3dce929b1c091abac3342788624f1ffa4be5d603eec4d7ab39b604694ac05d22
  • 3c73ebc7a85accc65c9ee5bf151f70b990e5a12f27a843ca21c0f9d9a10fd17d
  • 3928c5874249cc71b2d88e5c0c00989ac394238747bb7638897fc210531b4aab
  • 373734730d8414d32883ebbd105c7a7c58397df995759c4e0bd367f2523d302d
  • 3369ddc627282eb38346e1a56118026dd3ccdb29b18ffff88ecf3663296ee6da
  • 2e0e324e36fafe71f5d2bcf521e6415dafbc3f1173ad77f1f3daa77bb581da5f
  • 275302d03a4378f1b852e6d783d3181c2899ae0e9ebad4c7160221320863c425
  • 24e80d66759b1c7a075aeb4fe0321eb6ac49eaf509089fd2882874ec6228d085
  • 20d97f144bf7b1662a13ac537715126b9b2f68eff46a4a09234743ae236f0177
  • 1abd8cbd64d1d9c8d56b7ea6273ed62e1471f300fabc67dbc2416a48e2faf33d
  • 1588bee7db42495ba7e6e34d217e6b82c5ab93f27c1eea68435cbb9e7792f9be
  • 1af8e068aa7377f0055640af581a412aa9d7288c912a93dd0d739657af0079fb
  • 47.253.83.86
  • 95.85.93.196
  • 47.253.46.11
  • 181.214.58.14
  • 209.146.124.181
  • 59.59.59.59
  • 112.133.194.254
  • 188.214.27.50
  • http://1.download765.online/d.xn--ivg
  • http://1.download765.online/d
  • secure.systemupdatecdn.de
  • oss.17ww.vip
  • sdfasdfsf.9527527.xyz
  • gsdasdfadfs.9527527.xyz
  • asdfghjk.youdontcare.com
  • bots.gxz.me
  • agent.cpn.tr
  • 1.download765.online
  • trcpay.xyz
  • repositorylinux.com
Download all indicators here!

Attack Patterns

  • Condi
  • Linux
  • Mirai

Additional Informations

  • Technology
  • Telecommunications
  • Government
  • Belgium
  • India
  • Thailand
  • Brazil
  • United States of America