Tag: 2024-06-17

3 Attack Reports | 75 Vulnerabilities

Attack reports

Bondnet Using High-Performance Bots For C2 Server

Security researchers at ASEC have discovered that a threat actor is using high-performance bots to turn compromised systems into their central server (C2) servers, using tools such as the Cloudflare tunneling client.
rdp
2024-06-17
cloudflare
bot net
hfs
bondnet
Published: June 17, 2024
Downloadable IOCs: 27

From Clipboard to Compromise: A PowerShell Self-Pwn

This intelligence report details a unique social engineering technique observed by Proofpoint researchers, leveraging users to copy and paste malicious PowerShell scripts to infect their computers. The threat actors TA571 and ClearFake activity cluster employ this method to deliver malware like Dar…
malware
social engineering
powershell
xmrig
darkgate
lumma stealer
matanbuchus
2024-06-17
netsupport
malicious script
jaskago
compromise
amadey loader
vidar stealer
Published: June 17, 2024
Downloadable IOCs: 14

Analysis of Attack Case Installing VPN on Korean ERP Server

This analysis examines an attack where a threat actor compromised a Korean company's ERP server, initially accessing it through a poorly secured MS-SQL service. The actor installed a web shell, stole credentials, and ultimately set up SoftEther VPN on the server, likely to use it as part of a comma…
sql injection
credential theft
remote access
2024-06-17
vpn
erp
softether vpn
Published: June 17, 2024
Downloadable IOCs: 11
Click here to see more Attack Reports

Vulnerabilities

CVE-2024-37902

10.0
    DeepJavaLibrary (DJL)
Published: June 17, 2024

CVE-2024-6046

9.8
    SECOM WRTR-304GN-304TW-UPSC V02
Published: June 17, 2024

CVE-2024-6047

9.8
    GeoVision
    GeoVision
Published: June 17, 2024

CVE-2024-6048

9.8
    Openfind's MailGates
    MailAudit
    Openfind MailGates
    Openfind MailAudit
Published: June 17, 2024

CVE-2024-6045

8.8
    D-Link wireless routers
Published: June 17, 2024

CVE-2024-37896

8.8
    Gin-vue-admin
Published: June 17, 2024

CVE-2024-5650

8.5
    CENTUM CAMS Log server
    Yokogawa Electric Corporation
    CENTUM CS 3000
    CENTUM VP
Published: June 17, 2024

CVE-2024-37305

8.2
    OpenSSL 3
Published: June 17, 2024

CVE-2024-37890

7.5
    ws (WebSocket library for Node.js)
Published: June 17, 2024

CVE-2024-6042

7.3
    itsourcecode Real Estate Management System
Published: June 17, 2024

CVE-2024-6043

7.3
    SourceCodester Best House Rental Management System
Published: June 17, 2024

CVE-2024-6065

7.3
    itsourcecode Bakery Online Ordering System
Published: June 17, 2024

CVE-2024-6044

6.5
    D-Link wireless routers
Published: June 17, 2024

CVE-2024-5741

6.5
    Checkmk
Published: June 17, 2024

CVE-2024-6066

6.3
    SourceCodester Best House Rental Management System
Published: June 17, 2024

CVE-2024-6067

6.3
    SourceCodester Music Class Enrollment System
Published: June 17, 2024

CVE-2024-37893

5.9
    Firefly III
Published: June 17, 2024

CVE-2024-37895

5.7
    Lobe Chat
Published: June 17, 2024

CVE-2024-6064

5.3
    GPAC
Published: June 17, 2024

CVE-2024-37891

4.4
    urllib3
Published: June 17, 2024

CVE-2024-6056

3.7
    nasirkhan Laravel Starter
Published: June 17, 2024

CVE-2024-37158

3.5
    Evmos
Published: June 17, 2024

CVE-2024-37159

3.5
    Evmos
Published: June 17, 2024

CVE-2024-6058

3.5
    LabVantage LIMS
Published: June 17, 2024

CVE-2024-6061

3.3
    GPAC
Published: June 17, 2024

CVE-2024-6062

3.3
    GPAC
    MP4Box
Published: June 17, 2024

CVE-2024-6063

3.3
    GPAC
    MP4Box
Published: June 17, 2024

CVE-2024-6059

2.4
    Ingenico Estate Manager
Published: June 17, 2024

CVE-2024-5163

None
    UNKNOWN
    com.transsion.carlcare
Published: June 17, 2024

CVE-2024-3236

None
    Popup Builder WordPress plugin
Published: June 17, 2024

CVE-2024-4305

None
    Post Grid Gutenberg Blocks and WordPress Blog Plugin
Published: June 17, 2024

CVE-2024-36277

None
    FreeFrom - the nostr client App
Published: June 17, 2024

CVE-2024-36279

None
    FreeFrom - the nostr client App
Published: June 17, 2024

CVE-2024-36289

None
    FreeFrom - the nostr client App
    FreeFrom - the nostr client App
Published: June 17, 2024

CVE-2024-6055

None
    Devolutions Remote Desktop Manager
Published: June 17, 2024

CVE-2024-6057

None
    Devolutions Remote Desktop Manager
Published: June 17, 2024

CVE-2024-36580

None
    cdr0 sg
Published: June 17, 2024

CVE-2024-36583

None
    UNKNOWN
Published: June 17, 2024

CVE-2024-37619

None
    StrongShop
Published: June 17, 2024

CVE-2024-37620

None
    PHPVOD
Published: June 17, 2024

CVE-2024-37621

None
    StrongShop
Published: June 17, 2024

CVE-2024-37622

None
    Xinhu RockOA
Published: June 17, 2024

CVE-2024-37623

None
    Xinhu RockOA
Published: June 17, 2024

CVE-2024-37624

None
    Xinhu RockOA
Published: June 17, 2024

CVE-2024-37625

None
    iBarn
Published: June 17, 2024

CVE-2024-37848

None
    Online-Bookstore-Project-In-PHP
Published: June 17, 2024

CVE-2024-38469

None
    iBarn
Published: June 17, 2024

CVE-2024-38470

None
    iBarn
Published: June 17, 2024

CVE-2024-1469

None
    UNKNOWN
Published: June 17, 2024

CVE-2024-36581

None
    abw badger-database
Published: June 17, 2024

CVE-2024-36582

None
    alexbinary object-deep-assign
Published: June 17, 2024

CVE-2024-4032

None
    CPython
Published: June 17, 2024

CVE-2024-0397

None
    CPython
Published: June 17, 2024

CVE-2024-36573

None
    almela obx
Published: June 17, 2024

CVE-2024-36574

None
    flatten-json
Published: June 17, 2024

CVE-2024-36575

None
    getsetprop
Published: June 17, 2024

CVE-2024-36577

None
    Unknown
Published: June 17, 2024

CVE-2024-36578

None
    akbr
Published: June 17, 2024

CVE-2018-25103

None
    lighttpd
Published: June 17, 2024

CVE-2024-36527

None
    puppeteer-renderer
Published: June 17, 2024

CVE-2024-36973

None
    Linux kernel
Published: June 17, 2024

CVE-2024-37661

None
    TP-LINK TL-7DR5130
Published: June 17, 2024

CVE-2024-37662

None
    TP-LINK TL-7DR5130
Published: June 17, 2024

CVE-2024-37663

None
    Redmi Router RB03
Published: June 17, 2024

CVE-2024-37664

None
    Redmi router RB03
Published: June 17, 2024

CVE-2024-37794

None
    CVC5 Solver
Published: June 17, 2024

CVE-2024-37795

None
    CVC5 Solver
Published: June 17, 2024

CVE-2024-36543

None
    STRIMZI Project
Published: June 17, 2024

CVE-2024-37840

None
    Itsourcecode Learning Management System Project In PHP With Source Code
Published: June 17, 2024

CVE-2024-38449

None
    KasmVNC
Published: June 17, 2024

CVE-2023-37057

None
    JLINK Unionman Technology Co. Ltd Jlink AX1800
Published: June 17, 2024

CVE-2023-37058

None
    JLINK Unionman Technology Co. Ltd Jlink AX1800
Published: June 17, 2024

CVE-2024-34833

None
    Sourcecodester Payroll Management System
Published: June 17, 2024

CVE-2024-37798

None
    Phpgurukul Beauty Parlour Management System
Published: June 17, 2024

CVE-2024-37828

None
    Vermeg Agile Reporter
Published: June 17, 2024
Click here to see more Vulnerabilities