SecuriTricks - 2024-07-04

Title	Published	Tags	Description	Number of indicators
Mekotio Banking Trojan Threatens Financial Systems in Latin America	July 4, 2024, 10:49 a.m.	credential theft banking trojan 2024-07-04 mekotio	The Mekotio banking trojan, active since 2015, primarily targets Latin American countries to steal sensitive banking credentials …	15
Mallox Ransomware: Linux Variant Decryptor Found	July 4, 2024, 10:36 a.m.	ransomware encryption mallox targetcompany 2024-07-04 fargo cyber-extortion mawahelper	The report analyzes the Mallox ransomware, which has been active since mid-2021 and focuses on multi-extortion by encrypting vict…	5
Dissecting GootLoader With Node.js	July 4, 2024, 10:30 a.m.	evasion anti-analysis javascript gootloader 2024-07-04 deobfuscation	This article demonstrates how to circumvent anti-analysis techniques employed by GootLoader malware while utilizing Node.js debug…	2

Vulnerabilities

CVE	CVSS	Published	Product impacted	Tags
CVE-2024-39930	9.9	July 4, 2024, 4:15 p.m.	Gogs	cve@mitre.org 2024-07-04 CVE-2024-39930
CVE-2024-39931	9.9	July 4, 2024, 4:15 p.m.	Gogs	cve@mitre.org 2024-07-04 CVE-2024-39931
CVE-2024-39932	9.9	July 4, 2024, 4:15 p.m.	Gogs	cve@mitre.org 2024-07-04 CVE-2024-39932
CVE-2024-39943	9.9	July 4, 2024, 11:15 p.m.	rejetto HFS (HTTP File Server)	cve@mitre.org 2024-07-04 CVE-2024-39943
CVE-2024-2385	8.8	July 4, 2024, 4:15 a.m.	Elementor Addons by Livemesh plugin for WordPress	security@wordfence.com 2024-07-04 CVE-2024-2385
CVE-2024-3904	8.8	July 4, 2024, 9:15 a.m.	Smart Device Communication Gateway preinstalled on MELIPC Series MI5122-VW	CWE-276 2024-07-04 Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp CVE-2024-3904
CVE-2024-6318	8.8	July 4, 2024, 9:15 a.m.	WordPress IMGspider plugin	security@wordfence.com 2024-07-04 CVE-2024-6318
CVE-2024-6319	8.8	July 4, 2024, 9:15 a.m.	IMGspider plugin for WordPress	security@wordfence.com 2024-07-04 CVE-2024-6319
CVE-2024-5943	8.8	July 4, 2024, 12:15 p.m.	Nested Pages plugin for WordPress	security@wordfence.com 2024-07-04 CVE-2024-5943
CVE-2024-39936	8.6	July 4, 2024, 9:15 p.m.	Qt	cve@mitre.org 2024-07-04 CVE-2024-39936
CVE-2024-39937	8.6	July 4, 2024, 10:15 p.m.	supOS	cve@mitre.org 2024-07-04 CVE-2024-39937
CVE-2024-6506	8.2	July 4, 2024, 1:15 p.m.	MRW plugin	CWE-200 cve-coordination@incibe.es 2024-07-04 CVE-2024-6506
CVE-2024-6507	8.1	July 4, 2024, 12:15 p.m.	UNKNOWN	reefs@jfrog.com 2024-07-04 CVE-2024-6507
CVE-2024-39934	7.8	July 4, 2024, 7:15 p.m.	Robotmk	cve@mitre.org 2024-07-04 CVE-2024-39934
CVE-2024-39933	7.7	July 4, 2024, 4:15 p.m.	Gogs	cve@mitre.org 2024-07-04 CVE-2024-39933
CVE-2024-37471	7.1	July 4, 2024, 7:15 p.m.	Woffice Core	audit@patchstack.com 2024-07-04 CVE-2024-37471
CVE-2024-37472	7.1	July 4, 2024, 7:15 p.m.	WofficeIO Woffice	audit@patchstack.com 2024-07-04 CVE-2024-37472
CVE-2024-1182	7.0	July 4, 2024, 9:15 a.m.	GENESIS64	CWE-427 2024-07-04 CVE-2024-1182 Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp
CVE-2024-1574	6.7	July 4, 2024, 9:15 a.m.	Mitsubishi Electric MC Works64	2024-07-04 Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp CVE-2024-1574 CWE-470
CVE-2024-37476	6.5	July 4, 2024, 6:15 p.m.	Automattic Newspack Campaigns	audit@patchstack.com 2024-07-04 CVE-2024-37476
CVE-2024-37474	6.5	July 4, 2024, 7:15 p.m.	Newspack Ads	audit@patchstack.com 2024-07-04 CVE-2024-37474
CVE-2024-2926	6.4	July 4, 2024, 4:15 a.m.	Elementor Addons by Livemesh plugin for WordPress	security@wordfence.com 2024-07-04 CVE-2024-2926
CVE-2024-3638	6.4	July 4, 2024, 4:15 a.m.	Elementor Addons by Livemesh plugin for WordPress	security@wordfence.com 2024-07-04 CVE-2024-3638
CVE-2024-3639	6.4	July 4, 2024, 4:15 a.m.	Elementor Addons by Livemesh plugin for WordPress	security@wordfence.com 2024-07-04 CVE-2024-3639
CVE-2024-5641	6.4	July 4, 2024, 8:15 a.m.	One Click Order Re-Order plugin for WordPress	security@wordfence.com 2024-07-04 CVE-2024-5641
CVE-2024-22277	6.4	July 4, 2024, 2:15 p.m.	VMware Cloud Director Availability	security@vmware.com 2024-07-04 CVE-2024-22277
CVE-2024-1573	5.9	July 4, 2024, 9:15 a.m.	ICONICS GENESIS64	CWE-287 2024-07-04 Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp CVE-2024-1573
CVE-2024-6511	3.5	July 4, 2024, 7:15 p.m.	y_project RuoYi	CWE-79 cna@vuldb.com 2024-07-04 CVE-2024-6511
CVE-2024-6434	3.1	July 4, 2024, 9:15 a.m.	Premium Addons for Elementor plugin for WordPress	security@wordfence.com 2024-07-04 CVE-2024-6434
CVE-2024-32754	3.1	July 4, 2024, 11:15 a.m.	Unknown	CWE-200 productsecurity@jci.com 2024-07-04 CVE-2024-32754
CVE-2024-38344	None	July 4, 2024, 1:15 a.m.	WP Tweet Walls	vultures@jpcert.or.jp 2024-07-04 CVE-2024-38344
CVE-2024-38345	None	July 4, 2024, 1:15 a.m.	Sola Testimonials	vultures@jpcert.or.jp 2024-07-04 CVE-2024-38345
CVE-2024-38471	None	July 4, 2024, 1:15 a.m.	TP-LINK	vultures@jpcert.or.jp 2024-07-04 CVE-2024-38471
CVE-2024-39884	None	July 4, 2024, 9:15 a.m.	Apache HTTP Server	security@apache.org 2024-07-04 CVE-2024-39884
CVE-2024-39165	None	July 4, 2024, 1:15 p.m.	Asial JpGraph Professional	cve@mitre.org 2024-07-04 CVE-2024-39165
CVE-2024-39211	None	July 4, 2024, 1:15 p.m.	Kaiten	cve@mitre.org 2024-07-04 CVE-2024-39211
CVE-2024-39929	None	July 4, 2024, 3:15 p.m.	Exim	cve@mitre.org 2024-07-04 CVE-2024-39929
CVE-2024-6513	None	July 4, 2024, 4:15 p.m.	UNKNOWN	secalert@redhat.com 2024-07-04 CVE-2024-6513
CVE-2024-39935	None	July 4, 2024, 9:15 p.m.	NGINX Proxy Manager	cve@mitre.org 2024-07-04 CVE-2024-39935

» Click here to see all Vulnerabilities «

Tag : 2024-07-04

Attack Reports

Vulnerabilities