Tag: 2024-06-18

4 Attack Reports | 62 Vulnerabilities

Attack reports

Analysis of Coin Miner Attack Case Against Domestic Web Server

ASEC has recently confirmed an attack on a domestic medical institution to install a coin miner. The web server that was targeted was a Windows IIS server, and the path name on which the web shell was uploaded suggests that it is a system with the Picture Archiving and Communication System (PACS) p…
xmrig
2024-06-18
godzilla
aspxspy
badpotato
CVE-2021-1732
coin miner
certutil
iis sever
caidao
chopper
behinder
godpotato
ringq
Published: June 18, 2024
Downloadable IOCs: 10

SolarMarker Impersonates Job Employment Website

On April 2024, Cyber Analysts responded to a SolarMarker infection event. The infection occurred through a drive-by download when a user, while searching for workplace team-building ideas on Bing, was directed to a malicious site impersonating the global employment website, Indeed.
backdoor
phishing
solarmarker
solarphantom
2024-06-18
stellarinjector
drive-by-download
Published: June 18, 2024
Downloadable IOCs: 6

China-Nexus Threat Group ‘Velvet Ant’ Abuses F5 Load Balancers for Persistence

python
plugx
lsass
trojan
2024-06-18
sygnia
c server
shadowpad
wmiexec
virustotal
earthworm
impacket
f5 bigip
command
f5 appliance
svchost
velvet ant
wireshark
guard
protect
Published: June 18, 2024
Downloadable IOCs: 5

DISGOMOJI Malware Used to Target Indian Government

Volexity identified a cyber-espionage campaign by a suspected Pakistan-based threat actor tracked as UTA0137 targeting government entities in India. The campaign leveraged the DISGOMOJI malware, a Golang-based Linux trojan that uses Discord for command and control via emojis. Key capabilities inclu…
linux
espionage
india
discord
2024-06-18
golang
privilege escalation
disgomoji
CVE-2022-0847
Published: June 18, 2024
Linked vulnerabilities : CVE-2024-3400, CVE-2022-0847
Downloadable IOCs: 149
Click here to see more Attack Reports

Vulnerabilities

CVE-2024-37079

9.8
    VMware vCenter Server
Published: June 18, 2024

CVE-2024-37080

9.8
    VMware vCenter Server
Published: June 18, 2024

CVE-2022-23829

8.2
    AMD SPI Firmware
Published: June 18, 2024

CVE-2024-37081

7.8
    vCenter Server
Published: June 18, 2024

CVE-2024-5275

7.8
    FileCatalyst Direct
    FileCatalyst Workflow
Published: June 18, 2024

CVE-2023-5527

7.4
    Business Directory Plugin plugin for WordPress
Published: June 18, 2024

CVE-2024-21685

7.4
    Jira Core Data Center
Published: June 18, 2024

CVE-2024-6084

7.3
    itsourcecode Pool of Bethesda Online Reservation System
Published: June 18, 2024

CVE-2024-6110

7.3
    itsourcecode Magbanua Beach Resort Online Reservation System
Published: June 18, 2024

CVE-2024-6111

7.3
    itsourcecode Pool of Bethesda Online Reservation System
Published: June 18, 2024

CVE-2024-6112

7.3
    itsourcecode Pool of Bethesda Online Reservation System
Published: June 18, 2024

CVE-2024-6114

7.3
    itourcecode Monbela Tourist Inn Online Reservation System
Published: June 18, 2024

CVE-2024-6115

7.3
    Simple Online Hotel Reservation System
Published: June 18, 2024

CVE-2024-6116

7.3
    Simple Online Hotel Reservation System
Published: June 18, 2024

CVE-2023-47726

7.1
    IBM QRadar Suite Software
    IBM Cloud Pak for Security
Published: June 18, 2024

CVE-2024-1634

6.5
    Scheduling Plugin - Online Booking for WordPress
Published: June 18, 2024

CVE-2024-0845

6.4
    PDF Viewer for Elementor plugin for WordPress
Published: June 18, 2024

CVE-2024-4375

6.4
    Master Slider - Responsive Touch Slider plugin for WordPress
Published: June 18, 2024

CVE-2024-5533

6.4
    Divi theme for WordPress
Published: June 18, 2024

CVE-2024-5970

6.4
    MaxGalleria plugin for WordPress
Published: June 18, 2024

CVE-2024-6083

6.3
    PHPVibe
Published: June 18, 2024

CVE-2024-38506

6.3
    JetBrains YouTrack
Published: June 18, 2024

CVE-2024-6109

6.3
    itsourcecode Tailoring Management System
Published: June 18, 2024

CVE-2024-5953

5.7
    389 Directory Server
Published: June 18, 2024

CVE-2024-37904

5.7
    Minder
Published: June 18, 2024

CVE-2024-38351

5.4
    Pocketbase
Published: June 18, 2024

CVE-2024-5541

5.3
    Ibtana - WordPress Website Builder plugin
Published: June 18, 2024

CVE-2024-0066

5.3
    Axis Communications AXIS OS
Published: June 18, 2024

CVE-2024-38505

5.3
    JetBrains YouTrack
Published: June 18, 2024

CVE-2024-6128

5.3
    spa-cartcms
Published: June 18, 2024

CVE-2024-5860

4.3
    Tickera - WordPress Event Ticketing plugin
Published: June 18, 2024

CVE-2024-6108

4.3
    Genexis Tilgin Home Gateway
Published: June 18, 2024

CVE-2024-38504

4.3
    JetBrains YouTrack
Published: June 18, 2024

CVE-2024-6129

3.7
    spa-cartcms
Published: June 18, 2024

CVE-2024-38507

3.5
    JetBrains Hub
Published: June 18, 2024

CVE-2024-5967

2.7
    Keycloak
Published: June 18, 2024

CVE-2024-33620

None
    ID Link Manager
    FUJITSU Software TIME CREATOR
Published: June 18, 2024

CVE-2024-33622

None
    ID Link Manager
    FUJITSU Software TIME CREATOR
Published: June 18, 2024

CVE-2024-34024

None
    ID Link Manager
    FUJITSU Software TIME CREATOR
Published: June 18, 2024

CVE-2024-3276

None
    Lightbox & Modal Popup WordPress Plugin
    foobox-image-lightbox-premium WordPress plugin
Published: June 18, 2024

CVE-2024-4094

None
    Simple Share Buttons Adder WordPress plugin
Published: June 18, 2024

CVE-2024-5172

None
    Expert Invoice WordPress plugin
Published: June 18, 2024

CVE-2024-5899

None
    IntelliJ IDEA Bazel Plugin
    CLion Bazel Plugin
    Android Studio Bazel Plugin
Published: June 18, 2024

CVE-2024-5750

None
    UNKNOWN
Published: June 18, 2024

CVE-2024-37799

None
    CodeProjects Restaurant Reservation System
Published: June 18, 2024

CVE-2024-37800

None
    CodeProjects Restaurant Reservation System
Published: June 18, 2024

CVE-2024-37802

None
    CodeProjects Health Care hospital Management System
Published: June 18, 2024

CVE-2024-37803

None
    CodeProjects Health Care hospital Management System
Published: June 18, 2024

CVE-2024-38347

None
    Health Care hospital Management System
Published: June 18, 2024

CVE-2024-38348

None
    CodeProjects Health Care hospital Management System
Published: June 18, 2024

CVE-2024-22002

None
    CORSAIR iCUE
Published: June 18, 2024

CVE-2024-37791

None
    DuxCMS3
Published: June 18, 2024

CVE-2024-36974

None
    Linux kernel
Published: June 18, 2024

CVE-2024-36975

None
    Linux kernel
Published: June 18, 2024

CVE-2024-36976

None
    Linux kernel
Published: June 18, 2024

CVE-2024-36977

None
    Linux kernel
Published: June 18, 2024

CVE-2024-37821

None
    Dolibarr ERP CRM
Published: June 18, 2024

CVE-2024-38273

None
    BigBlueButton
Published: June 18, 2024

CVE-2024-38274

None
    UNKNOWN
Published: June 18, 2024

CVE-2024-38275

None
    Moodle
Published: June 18, 2024

CVE-2024-38276

None
    UNKNOWN
Published: June 18, 2024

CVE-2024-38277

None
    UNKNOWN
Published: June 18, 2024
Click here to see more Vulnerabilities