SecuriTricks - 2024-07-01

Attack Reports

Title	Published	Tags	Description	Number of indicators
CapraTube Remix \| Android Spyware Targeting Gamers, Weapons Enthusiasts	July 1, 2024, 3:50 p.m.	social engineering android pakistan spyware 2024-07-01 caprarat	SentinelLabs has uncovered a new campaign of Android spyware apps associated with the suspected Pakistan state-aligned Transparen…	6
Supply Chain Compromise Leads to Trojanized Installers	July 1, 2024, 11:05 a.m.	supply-chain 2024-07-01 notezilla copywhiz recentx	Rapid7 discovered that installers for Notezilla, RecentX, and Copywhiz hosted on conceptworld[.]com were trojanized to execute in…	27
Unfurling Hemlock: Threat group uses cluster bomb campaigns	July 1, 2024, 10:54 a.m.	amadey redline smokeloader 2024-07-01 risepro mystic stealer cluster bomb mass distribution eastern european stealers	A threat actor dubbed Unfurling Hemlock has been observed distributing hundreds of thousands of malware samples in a campaign las…	55
Appearance of Kimsuky group's new backdoor (HappyDoor)	July 1, 2024, 10:37 a.m.	backdoor north korea kimsuky cyber espionage 2024-07-01 appleseed information stealing happydoor	Asec Ahnlab analyzes a new backdoor malware called HappyDoor used by the North Korean hacking group Kimsuky in recent email attac…	16
Malware Used in Attacks Against Korean Companies	July 1, 2024, 10:23 a.m.	korea 2024-07-01 lazarus andariel xctdoor xcloader hotcroissant	A recent analysis by ASEC discovered attacks exploiting a Korean ERP solution to distribute malware like XcLoader and Xctdoor. Th…	9

» Click here to see all Attack Reports «

Vulnerabilities

CVE	CVSS	Published	Product impacted	Tags
CVE-2024-6424	9.3	July 1, 2024, 1:15 p.m.	MESbook	cve-coordination@incibe.es CWE-918 2024-07-01 CVE-2024-6424
CVE-2024-6425	9.1	July 1, 2024, 1:15 p.m.	MESbook	cve-coordination@incibe.es 2024-07-01 CVE-2024-6425 CWE-684
CVE-2024-4007	8.8	July 1, 2024, 1:15 p.m.	UNKNOWN	cybersecurity@ch.abb.com CWE-1392 2024-07-01 CVE-2024-4007
CVE-2023-43554	8.4	July 1, 2024, 3:15 p.m.	Qualcomm FastRPC	CWE-119 product-security@qualcomm.com 2024-07-01 CVE-2023-43554
CVE-2024-21461	8.4	July 1, 2024, 3:15 p.m.	UNKNOWN	product-security@qualcomm.com CWE-415 2024-07-01 CVE-2024-21461
CVE-2024-6387	8.1	July 1, 2024, 1:15 p.m.	OpenSSH	secalert@redhat.com 2024-07-01 CVE-2024-6387 CWE-364
CVE-2024-21465	7.8	July 1, 2024, 3:15 p.m.	UNKNOWN	product-security@qualcomm.com CWE-126 2024-07-01 CVE-2024-21465
CVE-2024-24749	7.5	July 1, 2024, 2:15 p.m.	GeoServer	security-advisories@github.com CWE-22 2024-07-01 CVE-2024-24749
CVE-2024-21469	7.3	July 1, 2024, 3:15 p.m.	UNKNOWN	product-security@qualcomm.com CWE-264 2024-07-01 CVE-2024-21469
CVE-2024-3123	7.2	July 1, 2024, 5:15 a.m.	UNKNOWN	CWE-434 twcert@cert.org.tw 2024-07-01 CVE-2024-3123
CVE-2024-21460	7.1	July 1, 2024, 3:15 p.m.	Qualcomm Snapdragon	product-security@qualcomm.com CWE-330 2024-07-01 CVE-2024-21460
CVE-2024-21462	7.1	July 1, 2024, 3:15 p.m.	UNKNOWN	product-security@qualcomm.com CWE-126 2024-07-01 CVE-2024-21462
CVE-2024-39428	6.8	July 1, 2024, 9:15 a.m.	UNKNOWN	2024-07-01 security@unisoc.com CVE-2024-39428
CVE-2024-21456	6.5	July 1, 2024, 3:15 p.m.	Qualcomm Wi-Fi technology	product-security@qualcomm.com CWE-126 2024-07-01 CVE-2024-21456
CVE-2024-21457	6.5	July 1, 2024, 3:15 p.m.	Qualcomm Wi-Fi chipset firmware	product-security@qualcomm.com CWE-126 2024-07-01 CVE-2024-21457
CVE-2024-21458	6.5	July 1, 2024, 3:15 p.m.	Qualcomm products	product-security@qualcomm.com CWE-126 2024-07-01 CVE-2024-21458
CVE-2024-21466	6.5	July 1, 2024, 3:15 p.m.	Qualcomm products	CWE-191 product-security@qualcomm.com 2024-07-01 CVE-2024-21466
CVE-2024-6419	6.3	July 1, 2024, 12:15 a.m.	SourceCodester Medicine Tracker System	CWE-89 cna@vuldb.com 2024-07-01 CVE-2024-6419
CVE-2024-39427	5.1	July 1, 2024, 9:15 a.m.	UNKNOWN	2024-07-01 CVE-2024-39427 security@unisoc.com
CVE-2024-39429	5.1	July 1, 2024, 9:15 a.m.	UNKNOWN	2024-07-01 security@unisoc.com CVE-2024-39429
CVE-2024-39430	5.1	July 1, 2024, 9:15 a.m.	UNKNOWN	2024-07-01 security@unisoc.com CVE-2024-39430
CVE-2024-3122	4.9	July 1, 2024, 5:15 a.m.	UNKNOWN	CWE-23 twcert@cert.org.tw 2024-07-01 CVE-2024-3122
CVE-2024-20076	None	July 1, 2024, 5:15 a.m.	Modem	CWE-119 security@mediatek.com 2024-07-01 CVE-2024-20076
CVE-2024-20077	None	July 1, 2024, 5:15 a.m.	Modem	CWE-119 security@mediatek.com 2024-07-01 CVE-2024-20077
CVE-2024-20078	None	July 1, 2024, 5:15 a.m.	venc	CWE-843 security@mediatek.com 2024-07-01 CVE-2024-20078
CVE-2024-20079	None	July 1, 2024, 5:15 a.m.	gnss service	CWE-787 security@mediatek.com 2024-07-01 CVE-2024-20079
CVE-2024-20080	None	July 1, 2024, 5:15 a.m.	UNKNOWN	CWE-295 security@mediatek.com 2024-07-01 CVE-2024-20080
CVE-2024-20081	None	July 1, 2024, 5:15 a.m.	gnss service	CWE-787 security@mediatek.com 2024-07-01 CVE-2024-20081
CVE-2024-38480	None	July 1, 2024, 5:15 a.m.	Piccoma App for Android	vultures@jpcert.or.jp 2024-07-01 CVE-2024-38480
CVE-2024-4934	None	July 1, 2024, 6:15 a.m.	Quiz and Survey Master (QSM) WordPress plugin	contact@wpscan.com 2024-07-01 CVE-2024-4934
CVE-2024-6130	None	July 1, 2024, 6:15 a.m.	Form Maker by 10Web WordPress plugin	contact@wpscan.com 2024-07-01 CVE-2024-6130
CVE-2024-0153	None	July 1, 2024, 9:15 a.m.	Arm Ltd Valhall GPU Firmware	CWE-119 arm-security@arm.com 2024-07-01 CVE-2024-0153
CVE-2024-38987	None	July 1, 2024, 1:15 p.m.	cli-lib	cve@mitre.org 2024-07-01 CVE-2024-38987
CVE-2024-38990	None	July 1, 2024, 1:15 p.m.	sp-common	cve@mitre.org 2024-07-01 CVE-2024-38990
CVE-2024-38991	None	July 1, 2024, 1:15 p.m.	akbr patch-into	cve@mitre.org 2024-07-01 CVE-2024-38991
CVE-2024-38992	None	July 1, 2024, 1:15 p.m.	airvertco frappejs	cve@mitre.org 2024-07-01 CVE-2024-38992
CVE-2024-38993	None	July 1, 2024, 1:15 p.m.	jsonic-next	cve@mitre.org 2024-07-01 CVE-2024-38993
CVE-2024-38994	None	July 1, 2024, 1:15 p.m.	amoyjs amoy common	cve@mitre.org 2024-07-01 CVE-2024-38994
CVE-2024-38996	None	July 1, 2024, 1:15 p.m.	ag-grid-community	cve@mitre.org 2024-07-01 CVE-2024-38996
CVE-2024-38997	None	July 1, 2024, 1:15 p.m.	ratio-swiper	cve@mitre.org 2024-07-01 CVE-2024-38997
CVE-2024-38998	None	July 1, 2024, 1:15 p.m.	requirejs	cve@mitre.org 2024-07-01 CVE-2024-38998
CVE-2024-38999	None	July 1, 2024, 1:15 p.m.	requirejs	cve@mitre.org 2024-07-01 CVE-2024-38999
CVE-2024-39000	None	July 1, 2024, 1:15 p.m.	ratio-swiper	cve@mitre.org 2024-07-01 CVE-2024-39000
CVE-2024-39001	None	July 1, 2024, 1:15 p.m.	ag-grid-enterprise	cve@mitre.org 2024-07-01 CVE-2024-39001
CVE-2024-39002	None	July 1, 2024, 1:15 p.m.	jsonic-next	cve@mitre.org 2024-07-01 CVE-2024-39002
CVE-2024-39003	None	July 1, 2024, 1:15 p.m.	amoyjs amoy common	cve@mitre.org 2024-07-01 CVE-2024-39003
CVE-2024-39008	None	July 1, 2024, 1:15 p.m.	robinweser fast-loops	cve@mitre.org 2024-07-01 CVE-2024-39008
CVE-2024-39013	None	July 1, 2024, 1:15 p.m.	2o3t-utility	cve@mitre.org 2024-07-01 CVE-2024-39013
CVE-2024-39014	None	July 1, 2024, 1:15 p.m.	cahil/utils	cve@mitre.org 2024-07-01 CVE-2024-39014
CVE-2024-39015	None	July 1, 2024, 1:15 p.m.	cafebazaar hod	cve@mitre.org 2024-07-01 CVE-2024-39015
CVE-2024-39016	None	July 1, 2024, 1:15 p.m.	che3vinci c3/utils-1	cve@mitre.org 2024-07-01 CVE-2024-39016
CVE-2024-39017	None	July 1, 2024, 1:15 p.m.	agreejs shared	cve@mitre.org 2024-07-01 CVE-2024-39017
CVE-2024-39018	None	July 1, 2024, 1:15 p.m.	cat5th/key-serializer	cve@mitre.org 2024-07-01 CVE-2024-39018
CVE-2024-39853	None	July 1, 2024, 1:15 p.m.	ratio-swiper	cve@mitre.org 2024-07-01 CVE-2024-39853
CVE-2024-38953	None	July 1, 2024, 2:15 p.m.	phpok	cve@mitre.org 2024-07-01 CVE-2024-38953
CVE-2024-6050	None	July 1, 2024, 2:15 p.m.	SOWA OPAC software	CWE-79 cvd@cert.pl 2024-07-01 CVE-2024-6050

» Click here to see all Vulnerabilities «

Tag : 2024-07-01