SecuriTricks - 2024-06-03

Title	Published	Tags	Description	Number of indicators
Snowflake Detecting and Preventing Unauthorized User Access	June 3, 2024, 1:24 p.m.	2024-06-03	Snowflake is providing these IOCs as a result of an ongoing investigation into what they believe to be industry-wide, identity-ba…	63
Fake Browser Updates delivering BitRAT and Lumma Stealer	June 3, 2024, 11:26 a.m.	lumma stealer 2024-06-03 bitrat	This report details a malicious campaign where adversaries used fake browser update prompts to lure victims into downloading and …	13
Fake Bahrain Government Android App Steals Personal Data Used for Financial Fraud	June 3, 2024, 11:21 a.m.	phishing android infostealer fraud malicious 2024-06-03 android/infostealer	An analysis by McAfee's Mobile Research Team uncovered an Android InfoStealer malware masquerading as a government service app in…	14

Vulnerabilities

CVE	CVSS	Published	Product impacted	Tags
CVE-2024-5311	9.8	June 3, 2024, 7:15 a.m.	DigiWin EasyFlow .NET	CWE-89 twcert@cert.org.tw 2024-06-03 CVE-2024-5311
CVE-2024-5404	9.8	June 3, 2024, 9:15 a.m.	moneo appliance	CWE-640 info@cert.vde.com 2024-06-03 CVE-2024-5404
CVE-2024-3829	9.8	June 3, 2024, 10:15 a.m.	qdrant/qdrant	CWE-20 security@huntr.dev 2024-06-03 CVE-2024-3829
CVE-2023-43538	9.3	June 3, 2024, 10:15 a.m.	UNKNOWN	CWE-120 product-security@qualcomm.com 2024-06-03 CVE-2023-43538
CVE-2023-43556	9.3	June 3, 2024, 10:15 a.m.	UNKNOWN	CWE-120 product-security@qualcomm.com 2024-06-03 CVE-2023-43556
CVE-2023-43551	9.1	June 3, 2024, 10:15 a.m.	Qualcomm LTE Modem	CWE-287 product-security@qualcomm.com 2024-06-03 CVE-2023-43551
CVE-2024-23668	8.8	June 3, 2024, 10:15 a.m.	Fortinet FortiWebManager	CWE-20 psirt@fortinet.com 2024-06-03 CVE-2024-23668
CVE-2024-23360	8.4	June 3, 2024, 10:15 a.m.	Qualcomm LPAC client	CWE-284 product-security@qualcomm.com 2024-06-03 CVE-2024-23360
CVE-2023-43555	8.2	June 3, 2024, 10:15 a.m.	Qualcomm Video Software	product-security@qualcomm.com CWE-126 2024-06-03 CVE-2023-43555
CVE-2024-32983	8.2	June 3, 2024, 4:15 p.m.	Misskey	security-advisories@github.com CWE-863 2024-06-03 CVE-2024-32983
CVE-2023-43542	7.8	June 3, 2024, 10:15 a.m.	Qualcomm products	CWE-120 product-security@qualcomm.com 2024-06-03 CVE-2023-43542
CVE-2024-23667	7.8	June 3, 2024, 10:15 a.m.	Fortinet FortiWebManager	CWE-285 psirt@fortinet.com 2024-06-03 CVE-2024-23667
CVE-2024-23670	7.8	June 3, 2024, 10:15 a.m.	Fortinet FortiWebManager	CWE-285 psirt@fortinet.com 2024-06-03 CVE-2024-23670
CVE-2024-35630	7.6	June 3, 2024, 11:15 a.m.	WP TripAdvisor Review Slider	audit@patchstack.com CWE-89 2024-06-03 CVE-2024-35630
CVE-2024-23363	7.5	June 3, 2024, 10:15 a.m.	UNKNOWN	product-security@qualcomm.com CWE-126 2024-06-03 CVE-2024-23363
CVE-2024-36127	7.5	June 3, 2024, 3:15 p.m.	apko	security-advisories@github.com CWE-522 2024-06-03 CVE-2024-36127
CVE-2024-36128	7.5	June 3, 2024, 3:15 p.m.	Directus	security-advisories@github.com CWE-754 2024-06-03 CVE-2024-36128
CVE-2024-4540	7.5	June 3, 2024, 4:15 p.m.	Keycloak	secalert@redhat.com CWE-200 2024-06-03 CVE-2024-4540
CVE-2024-34794	7.1	June 3, 2024, 11:15 a.m.	Tainacan	CWE-79 audit@patchstack.com 2024-06-03 CVE-2024-34794
CVE-2024-35631	7.1	June 3, 2024, 11:15 a.m.	FV Flowplayer Video Player	CWE-79 audit@patchstack.com 2024-06-03 CVE-2024-35631
CVE-2023-43543	6.7	June 3, 2024, 10:15 a.m.	Qualcomm Audio Driver	CWE-416 product-security@qualcomm.com 2024-06-03 CVE-2023-43543
CVE-2023-43544	6.7	June 3, 2024, 10:15 a.m.	UNKNOWN	CWE-416 product-security@qualcomm.com 2024-06-03 CVE-2023-43544
CVE-2023-43545	6.7	June 3, 2024, 10:15 a.m.	Qualcomm chipset driver	CWE-190 product-security@qualcomm.com 2024-06-03 CVE-2023-43545
CVE-2024-31493	6.5	June 3, 2024, 8:15 a.m.	FortiSOAR	psirt@fortinet.com 2024-06-03 CVE-2024-31493 CWE-212
CVE-2023-43537	6.5	June 3, 2024, 10:15 a.m.	Qualcomm WLAN Host driver	product-security@qualcomm.com CWE-126 2024-06-03 CVE-2023-43537
CVE-2024-34789	6.5	June 3, 2024, 11:15 a.m.	WP Hait Post Grid Elementor Addon	CWE-79 audit@patchstack.com 2024-06-03 CVE-2024-34789
CVE-2024-34791	6.5	June 3, 2024, 11:15 a.m.	WPB Elementor Addons	CWE-79 audit@patchstack.com 2024-06-03 CVE-2024-34791
CVE-2024-34795	6.5	June 3, 2024, 11:15 a.m.	Tainacan	CWE-79 audit@patchstack.com 2024-06-03 CVE-2024-34795
CVE-2024-34801	6.5	June 3, 2024, 11:15 a.m.	Praison SEO WordPress	CWE-79 audit@patchstack.com 2024-06-03 CVE-2024-34801
CVE-2024-34764	6.5	June 3, 2024, 12:15 p.m.	WPDeveloper Essential Addons for Elementor	CWE-79 audit@patchstack.com 2024-06-03 CVE-2024-34764
CVE-2024-34766	6.5	June 3, 2024, 12:15 p.m.	ChaosTheory	CWE-79 audit@patchstack.com 2024-06-03 CVE-2024-34766
CVE-2024-34767	6.5	June 3, 2024, 12:15 p.m.	ShopLentor	CWE-79 audit@patchstack.com 2024-06-03 CVE-2024-34767
CVE-2024-34769	6.5	June 3, 2024, 12:15 p.m.	Elegant Blocks	CWE-79 audit@patchstack.com 2024-06-03 CVE-2024-34769
CVE-2024-34770	6.5	June 3, 2024, 12:15 p.m.	Popup Maker WP	CWE-79 audit@patchstack.com 2024-06-03 CVE-2024-34770
CVE-2024-36123	6.5	June 3, 2024, 3:15 p.m.	Citizen MediaWiki skin	security-advisories@github.com CWE-79 2024-06-03 CVE-2024-36123
CVE-2024-5589	6.3	June 3, 2024, 1:15 a.m.	Netentsec NS-ASG Application Security Gateway	CWE-89 cna@vuldb.com 2024-06-03 CVE-2024-5589
CVE-2024-5590	6.3	June 3, 2024, 1:15 a.m.	Netentsec NS-ASG Application Security Gateway	CWE-89 cna@vuldb.com 2024-06-03 CVE-2024-5590
CVE-2024-21478	6.2	June 3, 2024, 10:15 a.m.	UNKNOWN	product-security@qualcomm.com CWE-704 2024-06-03 CVE-2024-21478
CVE-2024-23664	6.1	June 3, 2024, 10:15 a.m.	Fortinet FortiAuthenticator	CWE-601 psirt@fortinet.com 2024-06-03 CVE-2024-23664
CVE-2024-35641	5.9	June 3, 2024, 7:15 a.m.	Just Writing Statistics	CWE-79 audit@patchstack.com 2024-06-03 CVE-2024-35641
CVE-2024-35642	5.9	June 3, 2024, 7:15 a.m.	Site Favicon	CWE-79 audit@patchstack.com 2024-06-03 CVE-2024-35642
CVE-2024-35643	5.9	June 3, 2024, 7:15 a.m.	WP Back Button	audit@patchstack.com 2024-06-03 CVE-2024-35643
CVE-2024-35640	5.9	June 3, 2024, 8:15 a.m.	Safety Exit	CWE-79 audit@patchstack.com 2024-06-03 CVE-2024-35640
CVE-2024-35639	5.9	June 3, 2024, 9:15 a.m.	Simple Spoiler	CWE-79 audit@patchstack.com 2024-06-03 CVE-2024-35639
CVE-2024-23665	5.9	June 3, 2024, 10:15 a.m.	FortiWeb	CWE-285 psirt@fortinet.com 2024-06-03 CVE-2024-23665
CVE-2024-34790	5.9	June 3, 2024, 11:15 a.m.	ImageMagick	CWE-79 audit@patchstack.com 2024-06-03 CVE-2024-34790
CVE-2024-34793	5.9	June 3, 2024, 11:15 a.m.	WP Next Post Navi	CWE-79 audit@patchstack.com 2024-06-03 CVE-2024-34793
CVE-2024-34796	5.9	June 3, 2024, 11:15 a.m.	PopupAlly	CWE-79 audit@patchstack.com 2024-06-03 CVE-2024-34796
CVE-2024-34797	5.9	June 3, 2024, 11:15 a.m.	Simple Popup Manager	CWE-79 audit@patchstack.com 2024-06-03 CVE-2024-34797
CVE-2024-34385	5.9	June 3, 2024, 12:15 p.m.	YITH WooCommerce Wishlist	CWE-79 audit@patchstack.com 2024-06-03 CVE-2024-34385
CVE-2024-23107	5.5	June 3, 2024, 8:15 a.m.	FortiWeb	CWE-200 psirt@fortinet.com 2024-06-03 CVE-2024-23107
CVE-2024-34754	5.3	June 3, 2024, 11:15 a.m.	Contact Form Widget	CWE-200 audit@patchstack.com 2024-06-03 CVE-2024-34754
CVE-2024-34798	5.3	June 3, 2024, 11:15 a.m.	Debug Log - Manager Tool	audit@patchstack.com CWE-532 2024-06-03 CVE-2024-34798
CVE-2024-36124	5.3	June 3, 2024, 3:15 p.m.	iq80 Snappy	security-advisories@github.com CWE-125 2024-06-03 CVE-2024-36124
CVE-2023-23730	5.3	June 3, 2024, 10:15 p.m.	Brainstorm Force Spectra	audit@patchstack.com CWE-307 2024-06-03 CVE-2023-23730
CVE-2023-23735	5.3	June 3, 2024, 10:15 p.m.	Brainstorm Force Spectra	audit@patchstack.com CWE-80 2024-06-03 CVE-2023-23735
CVE-2023-23738	5.3	June 3, 2024, 10:15 p.m.	Brainstorm Force Spectra	audit@patchstack.com CWE-74 2024-06-03 CVE-2023-23738
CVE-2024-35637	4.4	June 3, 2024, 9:15 a.m.	Church Admin	audit@patchstack.com CWE-918 2024-06-03 CVE-2024-35637
CVE-2024-35633	4.4	June 3, 2024, 10:15 a.m.	Blocksy Companion	audit@patchstack.com CWE-918 2024-06-03 CVE-2024-35633
CVE-2024-35635	4.4	June 3, 2024, 10:15 a.m.	Ninja Tables	audit@patchstack.com CWE-918 2024-06-03 CVE-2024-35635
CVE-2023-48789	4.3	June 3, 2024, 8:15 a.m.	Fortinet FortiPortal	psirt@fortinet.com CWE-602 2024-06-03 CVE-2023-48789
CVE-2024-35638	4.3	June 3, 2024, 9:15 a.m.	ActiveDEMAND	audit@patchstack.com CWE-352 2024-06-03 CVE-2024-35638
CVE-2024-34803	4.3	June 3, 2024, 11:15 a.m.	Fastly	audit@patchstack.com CWE-862 2024-06-03 CVE-2024-34803
CVE-2024-35632	4.3	June 3, 2024, 12:15 p.m.	CRM Perks. Integration for Contact Form 7 and Constant Contact	audit@patchstack.com CWE-352 2024-06-03 CVE-2024-35632
CVE-2023-26521	4.3	June 3, 2024, 10:15 p.m.	Search in Place	audit@patchstack.com CWE-862 2024-06-03 CVE-2023-26521
CVE-2023-26523	4.3	June 3, 2024, 10:15 p.m.	CodePeople Calculated Fields Form	audit@patchstack.com CWE-862 2024-06-03 CVE-2023-26523
CVE-2023-27460	4.3	June 3, 2024, 10:15 p.m.	CP Contact Form with Paypal	audit@patchstack.com CWE-862 2024-06-03 CVE-2023-27460
CVE-2023-24373	3.7	June 3, 2024, 10:15 p.m.	WpDevArt Booking calendar, Appointment Booking System	audit@patchstack.com 2024-06-03 CVE-2023-24373 CWE-472
CVE-2023-27437	3.7	June 3, 2024, 10:15 p.m.	Event Espresso Decaf	audit@patchstack.com CWE-862 2024-06-03 CVE-2023-27437
CVE-2024-20065	None	June 3, 2024, 2:15 a.m.	MediaTek Telephony software	CWE-284 security@mediatek.com 2024-06-03 CVE-2024-20065
CVE-2024-20066	None	June 3, 2024, 2:15 a.m.	modem	CWE-787 security@mediatek.com 2024-06-03 CVE-2024-20066
CVE-2024-20067	None	June 3, 2024, 2:15 a.m.	UNKNOWN	CWE-787 security@mediatek.com 2024-06-03 CVE-2024-20067
CVE-2024-20068	None	June 3, 2024, 2:15 a.m.	modem	CWE-787 security@mediatek.com 2024-06-03 CVE-2024-20068
CVE-2024-20069	None	June 3, 2024, 2:15 a.m.	MediaTek modem firmware	security@mediatek.com 2024-06-03 CVE-2024-20069 CWE-757
CVE-2024-20070	None	June 3, 2024, 2:15 a.m.	modem	CWE-327 security@mediatek.com 2024-06-03 CVE-2024-20070
CVE-2024-20071	None	June 3, 2024, 2:15 a.m.	MediaTek WLAN Driver	CWE-125 security@mediatek.com 2024-06-03 CVE-2024-20071
CVE-2024-20072	None	June 3, 2024, 2:15 a.m.	MediaTek WLAN Driver	CWE-787 security@mediatek.com 2024-06-03 CVE-2024-20072
CVE-2024-20073	None	June 3, 2024, 2:15 a.m.	MediaTek WLAN Driver	CWE-787 security@mediatek.com 2024-06-03 CVE-2024-20073
CVE-2024-20074	None	June 3, 2024, 2:15 a.m.	UNKNOWN	CWE-787 security@mediatek.com 2024-06-03 CVE-2024-20074
CVE-2024-20075	None	June 3, 2024, 2:15 a.m.	eemgpu	CWE-787 security@mediatek.com 2024-06-03 CVE-2024-20075
CVE-2023-42427	None	June 3, 2024, 4:15 a.m.	UNIVERSAL PASSPORT RX	vultures@jpcert.or.jp 2024-06-03 CVE-2023-42427
CVE-2023-51436	None	June 3, 2024, 4:15 a.m.	UNIVERSAL PASSPORT RX	vultures@jpcert.or.jp 2024-06-03 CVE-2023-51436
CVE-2024-36042	None	June 3, 2024, 6:15 a.m.	Silverpeas	cve@mitre.org 2024-06-03 CVE-2024-36042
CVE-2024-37031	None	June 3, 2024, 6:15 a.m.	Active Admin	cve@mitre.org 2024-06-03 CVE-2024-37031
CVE-2024-36960	None	June 3, 2024, 8:15 a.m.	Linux kernel	416baaa9-dc9f-4396-8d5f-8c081fb06d67 2024-06-03 CVE-2024-36960
CVE-2024-36961	None	June 3, 2024, 8:15 a.m.	Linux kernel	416baaa9-dc9f-4396-8d5f-8c081fb06d67 2024-06-03 CVE-2024-36961
CVE-2024-36962	None	June 3, 2024, 8:15 a.m.	Linux kernel	416baaa9-dc9f-4396-8d5f-8c081fb06d67 2024-06-03 CVE-2024-36962
CVE-2024-36963	None	June 3, 2024, 8:15 a.m.	Linux kernel	416baaa9-dc9f-4396-8d5f-8c081fb06d67 2024-06-03 CVE-2024-36963
CVE-2024-36964	None	June 3, 2024, 8:15 a.m.	Linux kernel	416baaa9-dc9f-4396-8d5f-8c081fb06d67 2024-06-03 CVE-2024-36964
CVE-2024-0336	None	June 3, 2024, 2:15 p.m.	EMTA Grup PDKS	CWE-284 iletisim@usom.gov.tr 2024-06-03 CVE-2024-0336
CVE-2024-36568	None	June 3, 2024, 2:15 p.m.	Sourcecodester Gas Agency Management System	cve@mitre.org 2024-06-03 CVE-2024-36568
CVE-2024-36569	None	June 3, 2024, 2:15 p.m.	Gas Agency Management System	cve@mitre.org 2024-06-03 CVE-2024-36569
CVE-2024-36728	None	June 3, 2024, 2:15 p.m.	TRENDnet TEW-827DRU	cve@mitre.org 2024-06-03 CVE-2024-36728
CVE-2024-36729	None	June 3, 2024, 2:15 p.m.	TRENDnet TEW-827DRU	cve@mitre.org 2024-06-03 CVE-2024-36729
CVE-2024-5197	None	June 3, 2024, 2:15 p.m.	libvpx	CWE-190 cve-coordination@google.com 2024-06-03 CVE-2024-5197
CVE-2024-36674	None	June 3, 2024, 4:15 p.m.	LyLme_spage	cve@mitre.org 2024-06-03 CVE-2024-36674
CVE-2024-37019	None	June 3, 2024, 6:15 p.m.	Northern.tech Mender Enterprise	cve@mitre.org 2024-06-03 CVE-2024-37019
CVE-2024-4332	None	June 3, 2024, 6:15 p.m.	Tripwire Enterprise	CWE-303 2024-06-03 CVE-2024-4332 df4dee71-de3a-4139-9588-11b62fe6c0ff
CVE-2021-3899	None	June 3, 2024, 7:15 p.m.	UNKNOWN	security@ubuntu.com 2024-06-03 CVE-2021-3899
CVE-2022-0555	None	June 3, 2024, 7:15 p.m.	Ubiquity	security@ubuntu.com 2024-06-03 CVE-2022-0555
CVE-2022-1242	None	June 3, 2024, 7:15 p.m.	Apport	security@ubuntu.com 2024-06-03 CVE-2022-1242
CVE-2024-31684	None	June 3, 2024, 7:15 p.m.	Bitdefender Mobile Security	cve@mitre.org 2024-06-03 CVE-2024-31684
CVE-2024-5214	None	June 3, 2024, 7:15 p.m.	UNKNOWN	security@huntr.dev 2024-06-03 CVE-2024-5214
CVE-2024-5387	None	June 3, 2024, 7:15 p.m.	UNKNOWN	security@huntr.dev 2024-06-03 CVE-2024-5387
CVE-2024-5388	None	June 3, 2024, 7:15 p.m.	UNKNOWN	security@huntr.dev 2024-06-03 CVE-2024-5388
CVE-2023-51219	None	June 3, 2024, 8:15 p.m.	KakaoTalk	cve@mitre.org 2024-06-03 CVE-2023-51219
CVE-2023-52162	None	June 3, 2024, 8:15 p.m.	Mercusys MW325R EU V3	cve@mitre.org 2024-06-03 CVE-2023-52162
CVE-2024-31682	None	June 3, 2024, 8:15 p.m.	Phone Cleaner: Boost & Clean	cve@mitre.org 2024-06-03 CVE-2024-31682
CVE-2024-34051	None	June 3, 2024, 8:15 p.m.	Dolibarr	cve@mitre.org 2024-06-03 CVE-2024-34051
CVE-2024-34987	None	June 3, 2024, 8:15 p.m.	PHPGurukul Online Fire Reporting System	cve@mitre.org 2024-06-03 CVE-2024-34987
CVE-2024-36783	None	June 3, 2024, 8:15 p.m.	TOTOLINK LR350	cve@mitre.org 2024-06-03 CVE-2024-36783
CVE-2024-36782	None	June 3, 2024, 9:15 p.m.	TOTOLINK CP300	cve@mitre.org 2024-06-03 CVE-2024-36782

» Click here to see all Vulnerabilities «

Tag : 2024-06-03

Attack Reports

Vulnerabilities