SecuriTricks - 2024-06-24

Attack Reports

Title	Published	Tags	Description	Number of indicators
Chinese State-Sponsored RedJuliett Intensifies Taiwanese Cyber Espionage via Network Perimeter Exploitation	June 24, 2024, 6:53 p.m.	softether vpn 2024-06-24 taiwan redjuliett beijing laos kenya rwanda	Chinese state-sponsored cyber-espionage group RedJuliett continues to target Taiwanese government, academic, technology companies…	11
Malvertising Campaign Leads to Execution of Oyster Backdoor	June 24, 2024, 6:48 p.m.	malware powershell persistence execution malicious python script 2024-06-24 lnk file schtasks json microsoft teams temp directory http post oyster main	Rapid7 has observed a recent malvertising campaign that lures users into downloading malicious installers for popular software su…	13
AdsExhaust, a Newly Discovered Adware MasqueradingOculus…	June 24, 2024, 4:35 p.m.	phishing powershell c2 server download 2024-06-24 urls adsexhaust	In June 2024, the eSentire Threat Response Unit (TRU) identified adware, which we have dubbed AdsExhaust, being distributed throu…	17
Analysis of CoinMiner Attacks Targeting Web Servers	June 24, 2024, 8:16 a.m.	xmrig coinminer privilege escalation earthworm badpotato godpotato 2024-06-24 webshell netcat cpolar fscan printnotifypotato	The report details two separate attack cases targeting a Korean medical institution's web server, resulting in the installation o…	59
espionage group targets government agencies with and more infection techniques	June 24, 2024, 8:11 a.m.	apt espionage rat phishing government sugargh0st 2024-06-24 spicerat	A recently discovered threat actor, dubbed 'SneakyChef,' has been conducting an ongoing espionage campaign targeting government a…	148
Unveiling SpiceRAT: Latest tool targeting EMEA and Asia	June 24, 2024, 8:03 a.m.	rat phishing sugargh0st sideloading 2024-06-24 spicerat	Cisco Talos discovered a new remote access trojan (RAT) dubbed SpiceRAT, employed by the threat actor SneakyChef in a recent mali…	6
Uncovering Espionage Operations	June 24, 2024, 7:58 a.m.	espionage rootkit supply chain zero-day 2024-06-24 CVE-2022-42475 CVE-2023-20867 CVE-2023-34048 CVE-2022-41328 CVE-2022-22948 virtualsphere	This comprehensive analysis delves into the intricate tactics employed by a suspected China-nexus cyber espionage actor, UNC3886.…	39

» Click here to see all Attack Reports «

Vulnerabilities

CVE	CVSS	Published	Product impacted	Tags
CVE-2024-37228	10.0	June 24, 2024, 1:15 p.m.	InstaWP Connect	CWE-94 audit@patchstack.com 2024-06-24 CVE-2024-37228
CVE-2024-37091	9.9	June 24, 2024, 12:15 p.m.	StylemixThemes Consulting Elementor Widgets	audit@patchstack.com CWE-77 2024-06-24 CVE-2024-37091
CVE-2024-37109	9.9	June 24, 2024, 1:15 p.m.	WishList Member X	CWE-94 audit@patchstack.com 2024-06-24 CVE-2024-37109
CVE-2024-38369	9.9	June 24, 2024, 5:15 p.m.	XWiki Platform	security-advisories@github.com CWE-863 2024-06-24 CVE-2024-38369
CVE-2024-5683	9.8	June 24, 2024, 9:15 a.m.	Next4Biz CRM & BPM Software	CWE-94 iletisim@usom.gov.tr 2024-06-24 CVE-2024-5683
CVE-2024-38373	9.6	June 24, 2024, 5:15 p.m.	FreeRTOS-Plus-TCP	security-advisories@github.com CWE-126 2024-06-24 CVE-2024-38373
CVE-2024-37089	9.0	June 24, 2024, 12:15 p.m.	StylemixThemes Consulting Elementor Widgets	audit@patchstack.com CWE-22 2024-06-24 CVE-2024-37089
CVE-2024-37107	8.8	June 24, 2024, 1:15 p.m.	WishList Member X	CWE-269 audit@patchstack.com 2024-06-24 CVE-2024-37107
CVE-2024-4748	8.8	June 24, 2024, 2:15 p.m.	CRUDDIY	cvd@cert.pl CWE-77 2024-06-24 CVE-2024-4748
CVE-2024-37231	8.6	June 24, 2024, 1:15 p.m.	Salon Booking System	audit@patchstack.com CWE-22 2024-06-24 CVE-2024-37231
CVE-2024-37092	8.5	June 24, 2024, 1:15 p.m.	Consulting Elementor Widgets	audit@patchstack.com CWE-22 2024-06-24 CVE-2024-37092
CVE-2024-4499	7.6	June 24, 2024, 3:15 a.m.	parisneo/lollms	CWE-352 security@huntr.dev 2024-06-24 CVE-2024-4499
CVE-2024-37111	7.5	June 24, 2024, 1:15 p.m.	WishList Member X	audit@patchstack.com CWE-862 2024-06-24 CVE-2024-37111
CVE-2024-5862	7.5	June 24, 2024, 1:15 p.m.	Mia Technology Inc. Mia-Med Health Aplication	CWE-307 iletisim@usom.gov.tr 2024-06-24 CVE-2024-5862
CVE-2024-6285	7.5	June 24, 2024, 4:15 p.m.	Renesas arm-trusted-firmware	CWE-191 cve@asrg.io 2024-06-24 CVE-2024-6285
CVE-2024-6287	7.5	June 24, 2024, 4:15 p.m.	arm-trusted-firmware	CWE-682 cve@asrg.io 2024-06-24 CVE-2024-6287
CVE-2024-3121	6.8	June 24, 2024, 12:15 a.m.	UNKNOWN	CWE-94 security@huntr.dev 2024-06-24 CVE-2024-3121
CVE-2023-49793	6.5	June 24, 2024, 6:15 p.m.	CodeChecker	security-advisories@github.com CWE-22 2024-06-24 CVE-2023-49793
CVE-2024-6279	6.3	June 24, 2024, 3:15 a.m.	lahirudanushka School Management System	CWE-89 cna@vuldb.com 2024-06-24 CVE-2024-6279
CVE-2024-6280	6.3	June 24, 2024, 3:15 a.m.	SourceCodester Simple Online Bidding System	CWE-434 cna@vuldb.com 2024-06-24 CVE-2024-6280
CVE-2024-36038	6.3	June 24, 2024, 12:15 p.m.	Zoho ManageEngine ITOM	CWE-79 0fc0942c-577d-436f-ae8e-945763c79b02 2024-06-24 CVE-2024-36038
CVE-2024-6104	6.0	June 24, 2024, 5:15 p.m.	go-retryablehttp	CWE-532 security@hashicorp.com 2024-06-24 CVE-2024-6104
CVE-2024-4754	5.4	June 24, 2024, 9:15 a.m.	Next4Biz CRM & BPM Software	CWE-79 iletisim@usom.gov.tr 2024-06-24 CVE-2024-4754
CVE-2024-3264	5.3	June 24, 2024, 1:15 p.m.	Mia Technology Inc. Mia-Med Health Application	CWE-327 iletisim@usom.gov.tr 2024-06-24 CVE-2024-3264
CVE-2024-6274	4.7	June 24, 2024, 2:15 a.m.	lahirudanushka School Management System	CWE-89 cna@vuldb.com 2024-06-24 CVE-2024-6274
CVE-2024-6275	4.7	June 24, 2024, 2:15 a.m.	lahirudanushka School Management System	CWE-89 cna@vuldb.com 2024-06-24 CVE-2024-6275
CVE-2024-6276	4.7	June 24, 2024, 2:15 a.m.	lahirudanushka School Management System	CWE-89 cna@vuldb.com 2024-06-24 CVE-2024-6276
CVE-2024-6277	4.7	June 24, 2024, 3:15 a.m.	lahirudanushka School Management System	CWE-89 cna@vuldb.com 2024-06-24 CVE-2024-6277
CVE-2024-6278	4.7	June 24, 2024, 3:15 a.m.	School Management System	CWE-89 cna@vuldb.com 2024-06-24 CVE-2024-6278
CVE-2024-4839	4.4	June 24, 2024, 1:15 p.m.	parisneo/lollms-webui	CWE-352 security@huntr.dev 2024-06-24 CVE-2024-4839
CVE-2024-4460	4.3	June 24, 2024, 7:15 a.m.	zenml-io/zenml	CWE-400 security@huntr.dev 2024-06-24 CVE-2024-4460
CVE-2024-37233	4.3	June 24, 2024, 1:15 p.m.	Play.Ht	audit@patchstack.com CWE-287 2024-06-24 CVE-2024-37233
CVE-2024-39337	None	June 24, 2024, 12:15 a.m.	Click Studios Passwordstate Core	cve@mitre.org 2024-06-24 CVE-2024-39337
CVE-2024-4899	None	June 24, 2024, 6:15 a.m.	SEOPress WordPress plugin	contact@wpscan.com 2024-06-24 CVE-2024-4899
CVE-2024-4900	None	June 24, 2024, 6:15 a.m.	SEOPress WordPress plugin	contact@wpscan.com 2024-06-24 CVE-2024-4900
CVE-2024-24550	None	June 24, 2024, 7:15 a.m.	Bludit	CWE-434 2024-06-24 CVE-2024-24550 vulnerability@ncsc.ch
CVE-2024-24551	None	June 24, 2024, 7:15 a.m.	Bludit	CWE-434 2024-06-24 vulnerability@ncsc.ch CVE-2024-24551
CVE-2024-24552	None	June 24, 2024, 7:15 a.m.	Bludit	CWE-384 2024-06-24 vulnerability@ncsc.ch CVE-2024-24552
CVE-2024-24553	None	June 24, 2024, 7:15 a.m.	Bludit	CWE-916 2024-06-24 vulnerability@ncsc.ch CVE-2024-24553
CVE-2024-24554	None	June 24, 2024, 8:15 a.m.	Bludit	CWE-287 2024-06-24 vulnerability@ncsc.ch CVE-2024-24554
CVE-2024-27136	None	June 24, 2024, 8:15 a.m.	Apache JSPWiki	CWE-79 security@apache.org 2024-06-24 CVE-2024-27136
CVE-2024-36495	None	June 24, 2024, 9:15 a.m.	Faronics WINSelect	CWE-276 551230f0-3615-47bd-b7cc-93e92e730bbf 2024-06-24 CVE-2024-36495
CVE-2024-36496	None	June 24, 2024, 9:15 a.m.	UNKNOWN	CWE-798 551230f0-3615-47bd-b7cc-93e92e730bbf 2024-06-24 CVE-2024-36496
CVE-2024-36497	None	June 24, 2024, 9:15 a.m.	WINSelect	CWE-312 551230f0-3615-47bd-b7cc-93e92e730bbf 2024-06-24 CVE-2024-36497
CVE-2024-29868	None	June 24, 2024, 10:15 a.m.	Apache StreamPipes	security@apache.org CWE-338 2024-06-24 CVE-2024-29868
CVE-2024-6160	None	June 24, 2024, 10:15 a.m.	MegaBIP	cvd@cert.pl CWE-89 2024-06-24 CVE-2024-6160
CVE-2024-32936	None	June 24, 2024, 2:15 p.m.	Linux kernel	416baaa9-dc9f-4396-8d5f-8c081fb06d67 2024-06-24 CVE-2024-32936
CVE-2024-33278	None	June 24, 2024, 2:15 p.m.	ASUS RT-AX88U router	cve@mitre.org 2024-06-24 CVE-2024-33278
CVE-2024-33847	None	June 24, 2024, 2:15 p.m.	Linux kernel	416baaa9-dc9f-4396-8d5f-8c081fb06d67 2024-06-24 CVE-2024-33847
CVE-2024-34027	None	June 24, 2024, 2:15 p.m.	Linux Kernel	416baaa9-dc9f-4396-8d5f-8c081fb06d67 2024-06-24 CVE-2024-34027
CVE-2024-34030	None	June 24, 2024, 2:15 p.m.	Linux kernel	416baaa9-dc9f-4396-8d5f-8c081fb06d67 2024-06-24 CVE-2024-34030
CVE-2024-35247	None	June 24, 2024, 2:15 p.m.	Linux kernel	416baaa9-dc9f-4396-8d5f-8c081fb06d67 2024-06-24 CVE-2024-35247
CVE-2024-36479	None	June 24, 2024, 2:15 p.m.	Linux kernel	416baaa9-dc9f-4396-8d5f-8c081fb06d67 2024-06-24 CVE-2024-36479
CVE-2024-37021	None	June 24, 2024, 2:15 p.m.	Linux kernel	416baaa9-dc9f-4396-8d5f-8c081fb06d67 2024-06-24 CVE-2024-37021
CVE-2024-37026	None	June 24, 2024, 2:15 p.m.	Linux kernel	416baaa9-dc9f-4396-8d5f-8c081fb06d67 2024-06-24 CVE-2024-37026
CVE-2024-37825	None	June 24, 2024, 2:15 p.m.	EnvisionWare Computer Access & Reservation Control SelfCheck	cve@mitre.org 2024-06-24 CVE-2024-37825
CVE-2024-38384	None	June 24, 2024, 2:15 p.m.	Linux kernel	416baaa9-dc9f-4396-8d5f-8c081fb06d67 2024-06-24 CVE-2024-38384
CVE-2024-38663	None	June 24, 2024, 2:15 p.m.	Linux Kernel	416baaa9-dc9f-4396-8d5f-8c081fb06d67 2024-06-24 CVE-2024-38663
CVE-2024-38664	None	June 24, 2024, 2:15 p.m.	Linux kernel	416baaa9-dc9f-4396-8d5f-8c081fb06d67 2024-06-24 CVE-2024-38664
CVE-2024-38667	None	June 24, 2024, 2:15 p.m.	Linux kernel	416baaa9-dc9f-4396-8d5f-8c081fb06d67 2024-06-24 CVE-2024-38667
CVE-2024-39291	None	June 24, 2024, 2:15 p.m.	Linux kernel	416baaa9-dc9f-4396-8d5f-8c081fb06d67 2024-06-24 CVE-2024-39291
CVE-2024-39292	None	June 24, 2024, 2:15 p.m.	Linux kernel	416baaa9-dc9f-4396-8d5f-8c081fb06d67 2024-06-24 CVE-2024-39292
CVE-2024-33687	None	June 24, 2024, 3:15 p.m.	NJ Series CPU Unit	vultures@jpcert.or.jp 2024-06-24 CVE-2024-33687
CVE-2024-33879	None	June 24, 2024, 5:15 p.m.	VirtoSoftware Virto Bulk File Download for SharePoint 2019	cve@mitre.org 2024-06-24 CVE-2024-33879
CVE-2024-33880	None	June 24, 2024, 5:15 p.m.	VirtoSoftware Virto Bulk File Download	cve@mitre.org 2024-06-24 CVE-2024-33880
CVE-2024-33881	None	June 24, 2024, 5:15 p.m.	VirtoSoftware Virto Bulk File Download	cve@mitre.org 2024-06-24 CVE-2024-33881
CVE-2021-45785	None	June 24, 2024, 7:15 p.m.	TruDesk Help Desk/Ticketing Solution	cve@mitre.org 2024-06-24 CVE-2021-45785
CVE-2024-37677	None	June 24, 2024, 7:15 p.m.	Shenzhen Weitillage Industrial Co., Ltd the access management specialist	cve@mitre.org 2024-06-24 CVE-2024-37677
CVE-2024-37679	None	June 24, 2024, 7:15 p.m.	Finnesoft	cve@mitre.org 2024-06-24 CVE-2024-37679
CVE-2024-37680	None	June 24, 2024, 7:15 p.m.	FineSoft	cve@mitre.org 2024-06-24 CVE-2024-37680
CVE-2024-37732	None	June 24, 2024, 7:15 p.m.	Anchor CMS	cve@mitre.org 2024-06-24 CVE-2024-37732
CVE-2024-34312	None	June 24, 2024, 8:15 p.m.	Virtual Programming Lab for Moodle	cve@mitre.org 2024-06-24 CVE-2024-34312
CVE-2024-34313	None	June 24, 2024, 8:15 p.m.	VPL Jail System	cve@mitre.org 2024-06-24 CVE-2024-34313
CVE-2024-37678	None	June 24, 2024, 8:15 p.m.	Finesoft	cve@mitre.org 2024-06-24 CVE-2024-37678
CVE-2024-37681	None	June 24, 2024, 8:15 p.m.	Shanxi Internet Chuangxiang Technology Co., Ltd	cve@mitre.org 2024-06-24 CVE-2024-37681
CVE-2023-45196	None	June 24, 2024, 9:15 p.m.	AdminerEvo	CWE-400 9119a7d8-5eab-497f-8521-727c672e3725 2024-06-24 CVE-2023-45196
CVE-2024-37759	None	June 24, 2024, 9:15 p.m.	DataGear	cve@mitre.org 2024-06-24 CVE-2024-37759
CVE-2024-38892	None	June 24, 2024, 9:15 p.m.	Wavlink WN551K1	cve@mitre.org 2024-06-24 CVE-2024-38892
CVE-2024-38894	None	June 24, 2024, 9:15 p.m.	WAVLINK WN551K1	cve@mitre.org 2024-06-24 CVE-2024-38894
CVE-2024-38895	None	June 24, 2024, 9:15 p.m.	WAVLINK WN551K1	cve@mitre.org 2024-06-24 CVE-2024-38895
CVE-2024-38896	None	June 24, 2024, 9:15 p.m.	WAVLINK WN551K1	cve@mitre.org 2024-06-24 CVE-2024-38896
CVE-2024-38897	None	June 24, 2024, 9:15 p.m.	WAVLINK WN551K1	cve@mitre.org 2024-06-24 CVE-2024-38897
CVE-2024-38902	None	June 24, 2024, 9:15 p.m.	H3C Magic R230	cve@mitre.org 2024-06-24 CVE-2024-38902
CVE-2024-38903	None	June 24, 2024, 9:15 p.m.	H3C Magic R230	cve@mitre.org 2024-06-24 CVE-2024-38903
CVE-2023-45195	None	June 24, 2024, 10:15 p.m.	AdminerEvo	9119a7d8-5eab-497f-8521-727c672e3725 CWE-918 2024-06-24 CVE-2023-45195
CVE-2024-33898	None	June 24, 2024, 10:15 p.m.	Axiros AXESS Auto Configuration Server (ACS)	cve@mitre.org 2024-06-24 CVE-2024-33898
CVE-2024-34991	None	June 24, 2024, 10:15 p.m.	PrestaShop module Axepta	cve@mitre.org 2024-06-24 CVE-2024-34991
CVE-2024-36682	None	June 24, 2024, 10:15 p.m.	PrestaShop Theme settings (pk_themesettings) module	cve@mitre.org 2024-06-24 CVE-2024-36682
CVE-2024-6290	None	June 24, 2024, 10:15 p.m.	Google Chrome	chrome-cve-admin@google.com CWE-416 2024-06-24 CVE-2024-6290
CVE-2024-6291	None	June 24, 2024, 10:15 p.m.	Google Chrome	chrome-cve-admin@google.com CWE-416 2024-06-24 CVE-2024-6291
CVE-2024-6292	None	June 24, 2024, 10:15 p.m.	Google Chrome	chrome-cve-admin@google.com CWE-416 2024-06-24 CVE-2024-6292
CVE-2024-6293	None	June 24, 2024, 10:15 p.m.	Google Chrome	chrome-cve-admin@google.com CWE-416 2024-06-24 CVE-2024-6293

» Click here to see all Vulnerabilities «

Tag : 2024-06-24