SecuriTricks - 2024-06-28

Title	Published	Tags	Description	Number of indicators
Supposed Grasshopper: operators impersonate Israeli government and private companies to deploy open-source malware	June 28, 2024, 2:58 p.m.	impersonation wordpress sliver golang 2024-06-28 open-source donut virtual disk	A long-running campaign was identified involving malicious actors impersonating Israeli entities and private companies. The opera…	18
An Android RAT targets Telegram Users	June 28, 2024, 2:49 p.m.	surveillance rat phishing android keylogger 2024-06-28 spymax	This analysis discusses SpyMax, a Remote Access Trojan (RAT) that targets Android devices and specifically aims at obtaining data…	4
Kimsuky Deploys TRANSLATEXT Chrome Extension	June 28, 2024, 7:46 a.m.	malware north korea cyber espionage credential theft 2024-06-28 chrome extension	In March 2024, the cybersecurity firm Zscaler observed a new activity from Kimsuky, a North Korean state-sponsored hacker group. …	10
Examining Water Infection Routine Leading to an XMRig Cryptominer	June 28, 2024, 7:39 a.m.	obfuscation xmrig purecrypter cryptominer CVE-2023-21839 CVE-2017-3506 2024-06-28 vulnerability exploitation multi-stage loading	This report details the multi-stage loading technique utilized by the threat actor Water Sigbin to deliver the PureCrypter loader…	13
We're not talking about cryptocurrency as much as we used to, but there are still plenty of scammers out there	June 28, 2024, 7:35 a.m.	espionage cryptocurrency sugargh0st spicerat 2024-06-28	While cryptocurrency and blockchain have lost mainstream attention, cybercriminals continue to exploit these technologies through…	4

Vulnerabilities

CVE	CVSS	Published	Product impacted	Tags
CVE-2024-39349	9.8	June 28, 2024, 6:15 a.m.	Synology Camera Firmware	CWE-120 security@synology.com 2024-06-28 CVE-2024-39349
CVE-2024-5827	9.8	June 28, 2024, 8:15 p.m.	Vanna	CWE-434 security@huntr.dev 2024-06-28 CVE-2024-5827
CVE-2024-29039	9.0	June 28, 2024, 4:15 p.m.	tpm2	security-advisories@github.com 2024-06-28 CVE-2024-29039 CWE-807
CVE-2024-38521	8.8	June 28, 2024, 4:15 p.m.	Hush Line	security-advisories@github.com CWE-79 2024-06-28 CVE-2024-38521
CVE-2024-37905	8.8	June 28, 2024, 6:15 p.m.	authentik	CWE-284 security-advisories@github.com 2024-06-28 CVE-2024-37905
CVE-2024-38371	8.6	June 28, 2024, 6:15 p.m.	authentik	CWE-284 security-advisories@github.com 2024-06-28 CVE-2024-38371
CVE-2024-37282	8.1	June 28, 2024, 5:15 a.m.	Elasticsearch	CWE-285 bressers@elastic.co 2024-06-28 CVE-2024-37282
CVE-2024-5712	8.1	June 28, 2024, 8:15 p.m.	stitionai/devika	CWE-352 security@huntr.dev 2024-06-28 CVE-2024-5712
CVE-2024-39348	7.5	June 28, 2024, 7:15 a.m.	Synology Router Manager (SRM)	CWE-494 security@synology.com 2024-06-28 CVE-2024-39348
CVE-2024-39350	7.5	June 28, 2024, 7:15 a.m.	Synology Camera Firmware	CWE-290 security@synology.com 2024-06-28 CVE-2024-39350
CVE-2024-31912	7.5	June 28, 2024, 6:15 p.m.	IBM MQ	psirt@us.ibm.com CWE-266 2024-06-28 CVE-2024-31912
CVE-2024-38374	7.5	June 28, 2024, 6:15 p.m.	cyclonedx-core-java	security-advisories@github.com CWE-611 2024-06-28 CVE-2024-38374
CVE-2024-38528	7.5	June 28, 2024, 8:15 p.m.	nptd-rs	security-advisories@github.com CWE-770 2024-06-28 CVE-2024-38528
CVE-2024-38514	7.4	June 28, 2024, 7:15 p.m.	NextChat	security-advisories@github.com CWE-918 2024-06-28 CVE-2024-38514
CVE-2023-47802	7.2	June 28, 2024, 6:15 a.m.	Synology Camera Firmware	CWE-78 security@synology.com 2024-06-28 CVE-2023-47802
CVE-2024-39351	7.2	June 28, 2024, 6:15 a.m.	Synology Camera Firmware	CWE-78 security@synology.com 2024-06-28 CVE-2024-39351
CVE-2024-39708	7.0	June 28, 2024, 1:15 a.m.	Delinea Privilege Manager (formerly Thycotic Privilege Manager)	cve@mitre.org 2024-06-28 CVE-2024-39708
CVE-2024-6402	6.5	June 28, 2024, 5:15 p.m.	Tenda A301	CWE-121 cna@vuldb.com 2024-06-28 CVE-2024-6402
CVE-2024-6403	6.5	June 28, 2024, 5:15 p.m.	Tenda A301	CWE-121 cna@vuldb.com 2024-06-28 CVE-2024-6403
CVE-2024-35155	6.5	June 28, 2024, 6:15 p.m.	IBM MQ Console	psirt@us.ibm.com CWE-209 2024-06-28 CVE-2024-35155
CVE-2024-25031	6.5	June 28, 2024, 7:15 p.m.	IBM Storage Defender - Resiliency Service	psirt@us.ibm.com CWE-307 2024-06-28 CVE-2024-25031
CVE-2024-35156	6.5	June 28, 2024, 7:15 p.m.	IBM MQ	psirt@us.ibm.com CWE-209 2024-06-28 CVE-2024-35156
CVE-2024-6296	6.4	June 28, 2024, 4:15 a.m.	Stackable - Page Builder Gutenberg Blocks plugin for WordPress	security@wordfence.com 2024-06-28 CVE-2024-6296
CVE-2024-5788	6.4	June 28, 2024, 7:15 a.m.	WordPress Silesia theme	security@wordfence.com 2024-06-28 CVE-2024-5788
CVE-2024-5796	6.4	June 28, 2024, 7:15 a.m.	WordPress Infinite theme	security@wordfence.com 2024-06-28 CVE-2024-5796
CVE-2024-5424	6.4	June 28, 2024, 9:15 a.m.	WordPress Gallery Blocks with Lightbox Plugin	security@wordfence.com 2024-06-28 CVE-2024-5424
CVE-2024-5662	6.4	June 28, 2024, 9:15 a.m.	The Ultimate Post Kit Addons For Elementor plugin for WordPress	security@wordfence.com 2024-06-28 CVE-2024-5662
CVE-2024-5922	6.4	June 28, 2024, 9:15 a.m.	WordPress Scylla Lite Theme	security@wordfence.com 2024-06-28 CVE-2024-5922
CVE-2024-5925	6.4	June 28, 2024, 9:15 a.m.	WordPress Theron Lite theme	security@wordfence.com 2024-06-28 CVE-2024-5925
CVE-2024-38522	6.3	June 28, 2024, 5:15 p.m.	Hush Line	security-advisories@github.com 2024-06-28 CVE-2024-38522 CWE-183
CVE-2024-35137	6.2	June 28, 2024, 4:15 p.m.	IBM Security Access Manager Docker	psirt@us.ibm.com CWE-258 2024-06-28 CVE-2024-35137
CVE-2024-35139	6.2	June 28, 2024, 4:15 p.m.	IBM Security Access Manager Docker	psirt@us.ibm.com CWE-276 2024-06-28 CVE-2024-35139
CVE-2024-39347	5.9	June 28, 2024, 7:15 a.m.	Synology Router Manager (SRM)	CWE-276 security@synology.com 2024-06-28 CVE-2024-39347
CVE-2024-31919	5.9	June 28, 2024, 6:15 p.m.	IBM MQ	psirt@us.ibm.com CWE-770 2024-06-28 CVE-2024-31919
CVE-2024-25053	5.9	June 28, 2024, 7:15 p.m.	IBM Cognos Analytics	psirt@us.ibm.com CWE-295 2024-06-28 CVE-2024-25053
CVE-2024-35116	5.9	June 28, 2024, 7:15 p.m.	IBM MQ	psirt@us.ibm.com CWE-789 2024-06-28 CVE-2024-35116
CVE-2024-5863	5.4	June 28, 2024, 4:15 a.m.	Easy Image Collage plugin for WordPress	security@wordfence.com 2024-06-28 CVE-2024-5863
CVE-2024-25041	5.4	June 28, 2024, 7:15 p.m.	IBM Cognos Analytics	CWE-79 psirt@us.ibm.com 2024-06-28 CVE-2024-25041
CVE-2023-47803	5.3	June 28, 2024, 6:15 a.m.	Synology Camera Firmware	CWE-22 security@synology.com 2024-06-28 CVE-2023-47803
CVE-2024-2795	5.3	June 28, 2024, 7:15 a.m.	SEO SIMPLE PACK plugin for WordPress	security@wordfence.com 2024-06-28 CVE-2024-2795
CVE-2024-38322	5.3	June 28, 2024, 7:15 p.m.	IBM Storage Defender - Resiliency Service	psirt@us.ibm.com CWE-204 2024-06-28 CVE-2024-38322
CVE-2024-39352	4.9	June 28, 2024, 6:15 a.m.	Synology Camera Firmware	CWE-863 security@synology.com 2024-06-28 CVE-2024-39352
CVE-2024-6288	4.7	June 28, 2024, 7:15 a.m.	Conversios - Google Analytics 4 (GA4), Meta Pixel & more Via Google Tag Manager For WooCommerce plugin for WordPress	security@wordfence.com 2024-06-28 CVE-2024-6288
CVE-2024-38518	4.6	June 28, 2024, 9:15 p.m.	BigBlueButton	CWE-284 security-advisories@github.com 2024-06-28 CVE-2024-38518
CVE-2024-5864	4.3	June 28, 2024, 4:15 a.m.	Easy Affiliate Links plugin for WordPress	security@wordfence.com 2024-06-28 CVE-2024-5864
CVE-2024-29038	4.3	June 28, 2024, 2:15 p.m.	tpm2-tools	security-advisories@github.com 2024-06-28 CVE-2024-29038 CWE-1283
CVE-2024-29040	4.3	June 28, 2024, 9:15 p.m.	Trusted Computing Group's (TCG) TPM2 Software Stack (TSS)	security-advisories@github.com CWE-502 2024-06-28 CVE-2024-29040
CVE-2022-38383	4.0	June 28, 2024, 7:15 p.m.	IBM Cloud Pak for Security (CP4S)	psirt@us.ibm.com CWE-525 2024-06-28 CVE-2022-38383
CVE-2024-37137	3.8	June 28, 2024, 2:15 a.m.	Dell Key Trust Platform	security_alert@emc.com 2024-06-28 CVE-2024-37137 CWE-1240
CVE-2024-30109	3.7	June 28, 2024, 6:15 a.m.	HCL DRYiCE AEX	psirt@hcl.com CWE-1021 2024-06-28 CVE-2024-30109
CVE-2024-30110	3.7	June 28, 2024, 7:15 a.m.	HCL DRYiCE AEX	CWE-20 psirt@hcl.com 2024-06-28 CVE-2024-30110
CVE-2024-39302	3.7	June 28, 2024, 9:15 p.m.	BigBlueButton	security-advisories@github.com CWE-269 2024-06-28 CVE-2024-39302
CVE-2024-38531	3.6	June 28, 2024, 2:15 p.m.	Nix package manager	security-advisories@github.com 2024-06-28 CVE-2024-38531 CWE-278
CVE-2024-39307	3.5	June 28, 2024, 9:15 p.m.	Kavita	security-advisories@github.com CWE-79 2024-06-28 CVE-2024-39307
CVE-2024-30111	3.3	June 28, 2024, 7:15 a.m.	HCL DRYiCE AEX	psirt@hcl.com CWE-1326 2024-06-28 CVE-2024-30111
CVE-2024-30135	3.3	June 28, 2024, 8:15 a.m.	UNKNOWN	CWE-200 psirt@hcl.com 2024-06-28 CVE-2024-30135
CVE-2024-5570	None	June 28, 2024, 6:15 a.m.	Simple Photoswipe WordPress plugin	contact@wpscan.com 2024-06-28 CVE-2024-5570
CVE-2024-5727	None	June 28, 2024, 6:15 a.m.	Widget4Call WordPress plugin	contact@wpscan.com 2024-06-28 CVE-2024-5727
CVE-2024-5728	None	June 28, 2024, 6:15 a.m.	Animated AL List WordPress plugin	contact@wpscan.com 2024-06-28 CVE-2024-5728
CVE-2024-5729	None	June 28, 2024, 6:15 a.m.	Simple AL Slider WordPress plugin	contact@wpscan.com 2024-06-28 CVE-2024-5729
CVE-2024-5730	None	June 28, 2024, 6:15 a.m.	Pagerank tools WordPress plugin	contact@wpscan.com 2024-06-28 CVE-2024-5730
CVE-2024-5735	None	June 28, 2024, 12:15 p.m.	AdmirorFrames Joomla! extension	cvd@cert.pl CWE-497 2024-06-28 CVE-2024-5735
CVE-2024-5736	None	June 28, 2024, 12:15 p.m.	Joomla! AdmirorFrames extension	cvd@cert.pl CWE-918 2024-06-28 CVE-2024-5736
CVE-2024-5737	None	June 28, 2024, 12:15 p.m.	AdmirorFrames Joomla! extension	CWE-79 cvd@cert.pl 2024-06-28 CVE-2024-5737
CVE-2024-37741	None	June 28, 2024, 1:15 p.m.	OpenPLC	cve@mitre.org 2024-06-28 CVE-2024-37741
CVE-2024-39704	None	June 28, 2024, 1:15 p.m.	Soft Circle French-Bread Melty Blood: Actress Again: Current Code	cve@mitre.org 2024-06-28 CVE-2024-39704
CVE-2024-3800	None	June 28, 2024, 1:15 p.m.	S@M CMS (Concept Intermedia)	CWE-79 cvd@cert.pl 2024-06-28 CVE-2024-3800
CVE-2024-3801	None	June 28, 2024, 1:15 p.m.	S@M CMS (Concept Intermedia)	CWE-79 cvd@cert.pl 2024-06-28 CVE-2024-3801
CVE-2024-3816	None	June 28, 2024, 1:15 p.m.	S@M CMS (Concept Intermedia)	cvd@cert.pl CWE-89 2024-06-28 CVE-2024-3816
CVE-2022-27540	None	June 28, 2024, 7:15 p.m.	HP BIOS	hp-security-alert@hp.com 2024-06-28 CVE-2022-27540
CVE-2024-27628	None	June 28, 2024, 7:15 p.m.	DCMTK	cve@mitre.org 2024-06-28 CVE-2024-27628
CVE-2024-27629	None	June 28, 2024, 7:15 p.m.	dc2niix	cve@mitre.org 2024-06-28 CVE-2024-27629
CVE-2024-5972	None	June 28, 2024, 7:15 p.m.	UNKNOWN	security@wordfence.com 2024-06-28 CVE-2024-5972
CVE-2024-3995	None	June 28, 2024, 8:15 p.m.	Helix ALM	2024-06-28 CVE-2024-3995 security@puppet.com

» Click here to see all Vulnerabilities «

Tag : 2024-06-28

Attack Reports

Vulnerabilities