SecuriTricks - 2024-06-17

Title	Published	Tags	Description	Number of indicators
Bondnet Using High-Performance Bots For C2 Server	June 17, 2024, 11:42 p.m.	rdp 2024-06-17 cloudflare bot net hfs bondnet	Security researchers at ASEC have discovered that a threat actor is using high-performance bots to turn compromised systems into …	27
From Clipboard to Compromise: A PowerShell Self-Pwn	June 17, 2024, 11:23 a.m.	malware social engineering powershell xmrig darkgate lumma stealer matanbuchus 2024-06-17 netsupport malicious script jaskago compromise amadey loader vidar stealer	This intelligence report details a unique social engineering technique observed by Proofpoint researchers, leveraging users to co…	14
Analysis of Attack Case Installing VPN on Korean ERP Server	June 17, 2024, 11:19 a.m.	sql injection credential theft remote access 2024-06-17 vpn erp softether vpn	This analysis examines an attack where a threat actor compromised a Korean company's ERP server, initially accessing it through a…	11

Vulnerabilities

CVE	CVSS	Published	Product impacted	Tags
CVE-2024-37902	10.0	June 17, 2024, 8:15 p.m.	DeepJavaLibrary (DJL)	security-advisories@github.com CWE-22 2024-06-17 CVE-2024-37902
CVE-2024-6046	9.8	June 17, 2024, 4:15 a.m.	SECOM WRTR-304GN-304TW-UPSC V02	CWE-78 twcert@cert.org.tw 2024-06-17 CVE-2024-6046
CVE-2024-6047	9.8	June 17, 2024, 6:15 a.m.	GeoVision	CWE-78 twcert@cert.org.tw 2024-06-17 CVE-2024-6047
CVE-2024-6048	9.8	June 17, 2024, 8:15 a.m.	Openfind's MailGates	CWE-78 twcert@cert.org.tw 2024-06-17 CVE-2024-6048
CVE-2024-6045	8.8	June 17, 2024, 4:15 a.m.	D-Link wireless routers	CWE-798 twcert@cert.org.tw 2024-06-17 CVE-2024-6045
CVE-2024-37896	8.8	June 17, 2024, 8:15 p.m.	Gin-vue-admin	security-advisories@github.com CWE-89 2024-06-17 CVE-2024-37896
CVE-2024-5650	8.5	June 17, 2024, 7:15 a.m.	CENTUM CAMS Log server	CWE-284 2024-06-17 CVE-2024-5650 7168b535-132a-4efe-a076-338f829b2eb9
CVE-2024-37305	8.2	June 17, 2024, 8:15 p.m.	OpenSSL 3	security-advisories@github.com CWE-120 2024-06-17 CVE-2024-37305
CVE-2024-37890	7.5	June 17, 2024, 8:15 p.m.	ws (WebSocket library for Node.js)	security-advisories@github.com CWE-476 2024-06-17 CVE-2024-37890
CVE-2024-6042	7.3	June 17, 2024, 12:15 a.m.	itsourcecode Real Estate Management System	CWE-89 cna@vuldb.com 2024-06-17 CVE-2024-6042
CVE-2024-6043	7.3	June 17, 2024, 1:15 a.m.	SourceCodester Best House Rental Management System	CWE-89 cna@vuldb.com 2024-06-17 CVE-2024-6043
CVE-2024-6065	7.3	June 17, 2024, 9:15 p.m.	itsourcecode Bakery Online Ordering System	CWE-89 cna@vuldb.com 2024-06-17 CVE-2024-6065
CVE-2024-6044	6.5	June 17, 2024, 3:15 a.m.	D-Link wireless routers	CWE-22 twcert@cert.org.tw 2024-06-17 CVE-2024-6044
CVE-2024-5741	6.5	June 17, 2024, 12:15 p.m.	Checkmk	CWE-80 security@checkmk.com 2024-06-17 CVE-2024-5741
CVE-2024-6066	6.3	June 17, 2024, 9:15 p.m.	SourceCodester Best House Rental Management System	CWE-89 cna@vuldb.com 2024-06-17 CVE-2024-6066
CVE-2024-6067	6.3	June 17, 2024, 10:15 p.m.	SourceCodester Music Class Enrollment System	CWE-89 cna@vuldb.com 2024-06-17 CVE-2024-6067
CVE-2024-37893	5.9	June 17, 2024, 8:15 p.m.	Firefly III	security-advisories@github.com CWE-287 2024-06-17 CVE-2024-37893
CVE-2024-37895	5.7	June 17, 2024, 8:15 p.m.	Lobe Chat	security-advisories@github.com CWE-200 2024-06-17 CVE-2024-37895
CVE-2024-6064	5.3	June 17, 2024, 9:15 p.m.	GPAC	CWE-416 cna@vuldb.com 2024-06-17 CVE-2024-6064
CVE-2024-37891	4.4	June 17, 2024, 8:15 p.m.	urllib3	security-advisories@github.com 2024-06-17 CVE-2024-37891 CWE-669
CVE-2024-6056	3.7	June 17, 2024, 6:15 p.m.	nasirkhan Laravel Starter	CWE-204 cna@vuldb.com 2024-06-17 CVE-2024-6056
CVE-2024-37158	3.5	June 17, 2024, 2:15 p.m.	Evmos	security-advisories@github.com 2024-06-17 CVE-2024-37158 CWE-691
CVE-2024-37159	3.5	June 17, 2024, 2:15 p.m.	Evmos	security-advisories@github.com CWE-285 2024-06-17 CVE-2024-37159
CVE-2024-6058	3.5	June 17, 2024, 6:15 p.m.	LabVantage LIMS	CWE-79 cna@vuldb.com 2024-06-17 CVE-2024-6058
CVE-2024-6061	3.3	June 17, 2024, 8:15 p.m.	GPAC	CWE-835 cna@vuldb.com 2024-06-17 CVE-2024-6061
CVE-2024-6062	3.3	June 17, 2024, 8:15 p.m.	GPAC	CWE-476 cna@vuldb.com 2024-06-17 CVE-2024-6062
CVE-2024-6063	3.3	June 17, 2024, 9:15 p.m.	GPAC	CWE-476 cna@vuldb.com 2024-06-17 CVE-2024-6063
CVE-2024-6059	2.4	June 17, 2024, 7:15 p.m.	Ingenico Estate Manager	CWE-79 cna@vuldb.com 2024-06-17 CVE-2024-6059
CVE-2024-5163	None	June 17, 2024, 3:15 a.m.	UNKNOWN	907edf6c-bf03-423e-ab1a-8da27e1aa1ea 2024-06-17 CVE-2024-5163
CVE-2024-3236	None	June 17, 2024, 6:15 a.m.	Popup Builder WordPress plugin	contact@wpscan.com 2024-06-17 CVE-2024-3236
CVE-2024-4305	None	June 17, 2024, 6:15 a.m.	Post Grid Gutenberg Blocks and WordPress Blog Plugin	contact@wpscan.com 2024-06-17 CVE-2024-4305
CVE-2024-36277	None	June 17, 2024, 8:15 a.m.	FreeFrom - the nostr client App	vultures@jpcert.or.jp 2024-06-17 CVE-2024-36277
CVE-2024-36279	None	June 17, 2024, 8:15 a.m.	FreeFrom - the nostr client App	vultures@jpcert.or.jp 2024-06-17 CVE-2024-36279
CVE-2024-36289	None	June 17, 2024, 8:15 a.m.	FreeFrom - the nostr client App	vultures@jpcert.or.jp 2024-06-17 CVE-2024-36289
CVE-2024-6055	None	June 17, 2024, 1:15 p.m.	Devolutions Remote Desktop Manager	security@devolutions.net 2024-06-17 CVE-2024-6055
CVE-2024-6057	None	June 17, 2024, 1:15 p.m.	Devolutions Remote Desktop Manager	security@devolutions.net 2024-06-17 CVE-2024-6057
CVE-2024-36580	None	June 17, 2024, 2:15 p.m.	cdr0 sg	cve@mitre.org 2024-06-17 CVE-2024-36580
CVE-2024-36583	None	June 17, 2024, 2:15 p.m.	UNKNOWN	cve@mitre.org 2024-06-17 CVE-2024-36583
CVE-2024-37619	None	June 17, 2024, 2:15 p.m.	StrongShop	cve@mitre.org 2024-06-17 CVE-2024-37619
CVE-2024-37620	None	June 17, 2024, 2:15 p.m.	PHPVOD	cve@mitre.org 2024-06-17 CVE-2024-37620
CVE-2024-37621	None	June 17, 2024, 2:15 p.m.	StrongShop	cve@mitre.org 2024-06-17 CVE-2024-37621
CVE-2024-37622	None	June 17, 2024, 2:15 p.m.	Xinhu RockOA	cve@mitre.org 2024-06-17 CVE-2024-37622
CVE-2024-37623	None	June 17, 2024, 2:15 p.m.	Xinhu RockOA	cve@mitre.org 2024-06-17 CVE-2024-37623
CVE-2024-37624	None	June 17, 2024, 2:15 p.m.	Xinhu RockOA	cve@mitre.org 2024-06-17 CVE-2024-37624
CVE-2024-37625	None	June 17, 2024, 2:15 p.m.	iBarn	cve@mitre.org 2024-06-17 CVE-2024-37625
CVE-2024-37848	None	June 17, 2024, 2:15 p.m.	Online-Bookstore-Project-In-PHP	cve@mitre.org 2024-06-17 CVE-2024-37848
CVE-2024-38469	None	June 17, 2024, 2:15 p.m.	iBarn	cve@mitre.org 2024-06-17 CVE-2024-38469
CVE-2024-38470	None	June 17, 2024, 2:15 p.m.	iBarn	cve@mitre.org 2024-06-17 CVE-2024-38470
CVE-2024-1469	None	June 17, 2024, 3:15 p.m.	UNKNOWN	security@wordfence.com 2024-06-17 CVE-2024-1469
CVE-2024-36581	None	June 17, 2024, 3:15 p.m.	abw badger-database	cve@mitre.org 2024-06-17 CVE-2024-36581
CVE-2024-36582	None	June 17, 2024, 3:15 p.m.	alexbinary object-deep-assign	cve@mitre.org 2024-06-17 CVE-2024-36582
CVE-2024-4032	None	June 17, 2024, 3:15 p.m.	CPython	cna@python.org 2024-06-17 CVE-2024-4032
CVE-2024-0397	None	June 17, 2024, 4:15 p.m.	CPython	cna@python.org 2024-06-17 CVE-2024-0397
CVE-2024-36573	None	June 17, 2024, 4:15 p.m.	almela obx	cve@mitre.org 2024-06-17 CVE-2024-36573
CVE-2024-36574	None	June 17, 2024, 4:15 p.m.	flatten-json	cve@mitre.org 2024-06-17 CVE-2024-36574
CVE-2024-36575	None	June 17, 2024, 4:15 p.m.	getsetprop	cve@mitre.org 2024-06-17 CVE-2024-36575
CVE-2024-36577	None	June 17, 2024, 4:15 p.m.	Unknown	cve@mitre.org 2024-06-17 CVE-2024-36577
CVE-2024-36578	None	June 17, 2024, 4:15 p.m.	akbr	cve@mitre.org 2024-06-17 CVE-2024-36578
CVE-2018-25103	None	June 17, 2024, 6:15 p.m.	lighttpd	2024-06-17 CVE-2018-25103 cret@cert.org
CVE-2024-36527	None	June 17, 2024, 6:15 p.m.	puppeteer-renderer	cve@mitre.org 2024-06-17 CVE-2024-36527
CVE-2024-36973	None	June 17, 2024, 6:15 p.m.	Linux kernel	416baaa9-dc9f-4396-8d5f-8c081fb06d67 2024-06-17 CVE-2024-36973
CVE-2024-37661	None	June 17, 2024, 6:15 p.m.	TP-LINK TL-7DR5130	cve@mitre.org 2024-06-17 CVE-2024-37661
CVE-2024-37662	None	June 17, 2024, 6:15 p.m.	TP-LINK TL-7DR5130	cve@mitre.org 2024-06-17 CVE-2024-37662
CVE-2024-37663	None	June 17, 2024, 6:15 p.m.	Redmi Router RB03	cve@mitre.org 2024-06-17 CVE-2024-37663
CVE-2024-37664	None	June 17, 2024, 6:15 p.m.	Redmi router RB03	cve@mitre.org 2024-06-17 CVE-2024-37664
CVE-2024-37794	None	June 17, 2024, 6:15 p.m.	CVC5 Solver	cve@mitre.org 2024-06-17 CVE-2024-37794
CVE-2024-37795	None	June 17, 2024, 6:15 p.m.	CVC5 Solver	cve@mitre.org 2024-06-17 CVE-2024-37795
CVE-2024-36543	None	June 17, 2024, 7:15 p.m.	STRIMZI Project	cve@mitre.org 2024-06-17 CVE-2024-36543
CVE-2024-37840	None	June 17, 2024, 7:15 p.m.	Itsourcecode Learning Management System Project In PHP With Source Code	cve@mitre.org 2024-06-17 CVE-2024-37840
CVE-2024-38449	None	June 17, 2024, 7:15 p.m.	KasmVNC	cve@mitre.org 2024-06-17 CVE-2024-38449
CVE-2023-37057	None	June 17, 2024, 9:15 p.m.	JLINK Unionman Technology Co. Ltd Jlink AX1800	cve@mitre.org 2024-06-17 CVE-2023-37057
CVE-2023-37058	None	June 17, 2024, 9:15 p.m.	JLINK Unionman Technology Co. Ltd Jlink AX1800	cve@mitre.org 2024-06-17 CVE-2023-37058
CVE-2024-34833	None	June 17, 2024, 9:15 p.m.	Sourcecodester Payroll Management System	cve@mitre.org 2024-06-17 CVE-2024-34833
CVE-2024-37798	None	June 17, 2024, 9:15 p.m.	Phpgurukul Beauty Parlour Management System	cve@mitre.org 2024-06-17 CVE-2024-37798
CVE-2024-37828	None	June 17, 2024, 9:15 p.m.	Vermeg Agile Reporter	cve@mitre.org 2024-06-17 CVE-2024-37828

» Click here to see all Vulnerabilities «

Tag : 2024-06-17

Attack Reports

Vulnerabilities