SecuriTricks - 2024-07-17

Title	Published	Tags	Description	Number of indicators
Private HTS Program Continuously Used in Attacks	July 17, 2024, 2:19 p.m.	south korea quasar rat 2024-07-17	This report outlines a continuous campaign where a threat actor distributes malware, including Quasar RAT, through a private home…	1
FIN7 Reboot \| Cybercrime Gang Enhances Ops with New EDR Bypasses and Automated Attacks	July 17, 2024, 1:57 p.m.	2024-07-17 powertrash diceloader avneutralizer	This report provides an in-depth analysis of the FIN7 cybercrime group's evolving tactics, techniques, and procedures. It highlig…	99
Suspected Cyber Espionage Campaign Targeting Global Organizations	July 17, 2024, 12:45 p.m.	CVE-2024-3400 exploitation cyberespionage backdoors 2024-07-17 sparkrat pantegana intergovernmental opensource	An analysis identified a suspected cyber espionage campaign by TAG-100, a threat group exploiting internet-facing devices and uti…	25
'Evil Twin' Apps Spread for Multiple Fraud Schemes	July 17, 2024, 10:52 a.m.	obfuscation impersonation malvertising 2024-07-17 mobile konfety ad fraud	HUMAN's Satori Threat Intelligence and Research team recently uncovered a massive ad fraud operation dubbed Konfety, involving th…	0
Who You Gonna Call? AndroxGh0st Busters!	July 17, 2024, 7:34 a.m.	python botnet credential theft 2024-07-17 androxgh0st CVE-2021-41773 rce exploitation CVE-2017-9841 web exploitation CVE-2018-15133	This report discusses the AndroxGh0st malware, a Python-scripted threat targeting Laravel web applications to steal sensitive dat…	7

Vulnerabilities

CVE	CVSS	Published	Product impacted	Tags
CVE-2024-20419	10.0	July 17, 2024, 5:15 p.m.	Cisco Smart Software Manager On-Prem	ykramarz@cisco.com 2024-07-17 CVE-2024-20419 CWE-620
CVE-2024-6220	9.8	July 17, 2024, 8:15 a.m.	WordPress 简数采集器 (Keydatas) plugin	security@wordfence.com 2024-07-17 CVE-2024-6220
CVE-2024-20401	9.8	July 17, 2024, 5:15 p.m.	Cisco Secure Email Gateway	ykramarz@cisco.com CWE-36 2024-07-17 CVE-2024-20401
CVE-2024-23466	9.6	July 17, 2024, 3:15 p.m.	SolarWinds Access Rights Manager (ARM)	CWE-22 psirt@solarwinds.com 2024-07-17 CVE-2024-23466
CVE-2024-23467	9.6	July 17, 2024, 3:15 p.m.	SolarWinds Access Rights Manager	CWE-22 psirt@solarwinds.com 2024-07-17 CVE-2024-23467
CVE-2024-23469	9.6	July 17, 2024, 3:15 p.m.	SolarWinds Access Rights Manager (ARM)	CWE-20 psirt@solarwinds.com 2024-07-17 CVE-2024-23469
CVE-2024-23470	9.6	July 17, 2024, 3:15 p.m.	SolarWinds Access Rights Manager	CWE-287 psirt@solarwinds.com 2024-07-17 CVE-2024-23470
CVE-2024-23471	9.6	July 17, 2024, 3:15 p.m.	SolarWinds Access Rights Manager	CWE-287 psirt@solarwinds.com 2024-07-17 CVE-2024-23471
CVE-2024-23472	9.6	July 17, 2024, 3:15 p.m.	SolarWinds Access Rights Manager (ARM)	CWE-22 psirt@solarwinds.com 2024-07-17 CVE-2024-23472
CVE-2024-23475	9.6	July 17, 2024, 3:15 p.m.	SolarWinds Access Rights Manager	CWE-22 psirt@solarwinds.com 2024-07-17 CVE-2024-23475
CVE-2024-28074	9.6	July 17, 2024, 3:15 p.m.	SolarWinds Access Rights Manager	CWE-502 psirt@solarwinds.com 2024-07-17 CVE-2024-28074
CVE-2024-6834	9.0	July 17, 2024, 3:15 p.m.	APIML Spring Cloud Gateway	2024-07-17 zowe-security@lists.openmainframeproject.org CVE-2024-6834
CVE-2024-6467	8.8	July 17, 2024, 7:15 a.m.	BookingPress - Appointment Booking Calendar Plugin and Online Scheduling Plugin	security@wordfence.com 2024-07-17 CVE-2024-6467
CVE-2024-6660	8.8	July 17, 2024, 7:15 a.m.	BookingPress - Appointment Booking Calendar Plugin and Online Scheduling Plugin	security@wordfence.com 2024-07-17 CVE-2024-6660
CVE-2024-5471	8.8	July 17, 2024, 11:15 a.m.	Zohocorp ManageEngine DDI Central	CWE-798 0fc0942c-577d-436f-ae8e-945763c79b02 2024-07-17 CVE-2024-5471
CVE-2024-20435	8.8	July 17, 2024, 5:15 p.m.	Cisco AsyncOS for Secure Web Appliance	ykramarz@cisco.com CWE-250 2024-07-17 CVE-2024-20435
CVE-2023-7272	8.6	July 17, 2024, 3:15 p.m.	Eclipse Parsson	CWE-787 emo@eclipse.org 2024-07-17 CVE-2023-7272
CVE-2024-23465	8.3	July 17, 2024, 3:15 p.m.	SolarWinds Access Rights Manager	CWE-287 psirt@solarwinds.com 2024-07-17 CVE-2024-23465
CVE-2024-23468	7.6	July 17, 2024, 3:15 p.m.	SolarWinds Access Rights Manager	CWE-22 psirt@solarwinds.com 2024-07-17 CVE-2024-23468
CVE-2024-23474	7.6	July 17, 2024, 3:15 p.m.	SolarWinds Access Rights Manager	CWE-22 psirt@solarwinds.com 2024-07-17 CVE-2024-23474
CVE-2024-28992	7.6	July 17, 2024, 3:15 p.m.	SolarWinds Access Rights Manager	CWE-287 psirt@solarwinds.com 2024-07-17 CVE-2024-28992
CVE-2024-28993	7.6	July 17, 2024, 3:15 p.m.	SolarWinds Access Rights Manager	CWE-22 psirt@solarwinds.com 2024-07-17 CVE-2024-28993
CVE-2024-20323	7.5	July 17, 2024, 5:15 p.m.	Cisco Intelligent Node (iNode) Software	ykramarz@cisco.com CWE-321 2024-07-17 CVE-2024-20323
CVE-2024-40641	7.4	July 17, 2024, 6:15 p.m.	Nuclei	security-advisories@github.com CWE-78 2024-07-17 CVE-2024-40641
CVE-2024-20416	6.5	July 17, 2024, 5:15 p.m.	Cisco RV340 Dual WAN Gigabit VPN Router	ykramarz@cisco.com CWE-130 2024-07-17 CVE-2024-20416
CVE-2024-20429	6.5	July 17, 2024, 5:15 p.m.	Cisco AsyncOS for Secure Email Gateway	ykramarz@cisco.com CWE-74 2024-07-17 CVE-2024-20429
CVE-2024-5251	6.4	July 17, 2024, 7:15 a.m.	Ultimate Addons for WPBakery	security@wordfence.com 2024-07-17 CVE-2024-5251
CVE-2024-5252	6.4	July 17, 2024, 7:15 a.m.	Ultimate Addons for WPBakery plugin for WordPress	security@wordfence.com 2024-07-17 CVE-2024-5252
CVE-2024-5253	6.4	July 17, 2024, 7:15 a.m.	Ultimate Addons for WPBakery	security@wordfence.com 2024-07-17 CVE-2024-5253
CVE-2024-5254	6.4	July 17, 2024, 7:15 a.m.	Ultimate Addons for WPBakery plugin for WordPress	security@wordfence.com 2024-07-17 CVE-2024-5254
CVE-2024-5255	6.4	July 17, 2024, 7:15 a.m.	Ultimate Addons for WPBakery	security@wordfence.com 2024-07-17 CVE-2024-5255
CVE-2024-5582	6.4	July 17, 2024, 8:15 a.m.	Schema & Structured Data for WP & AMP plugin for WordPress	security@wordfence.com 2024-07-17 CVE-2024-5582
CVE-2024-20395	6.4	July 17, 2024, 5:15 p.m.	Cisco Webex App	ykramarz@cisco.com 2024-07-17 CVE-2024-20395 CWE-523
CVE-2024-28796	6.4	July 17, 2024, 7:15 p.m.	IBM ClearQuest	CWE-79 psirt@us.ibm.com 2024-07-17 CVE-2024-28796
CVE-2024-6801	6.3	July 17, 2024, 2:15 a.m.	SourceCodester Online Student Management System	CWE-434 cna@vuldb.com 2024-07-17 CVE-2024-6801
CVE-2024-6802	6.3	July 17, 2024, 2:15 a.m.	SourceCodester Computer Laboratory Management System	CWE-89 cna@vuldb.com 2024-07-17 CVE-2024-6802
CVE-2024-6808	6.3	July 17, 2024, 4:15 a.m.	Simple Task List	CWE-89 cna@vuldb.com 2024-07-17 CVE-2024-6808
CVE-2024-6830	6.3	July 17, 2024, 4:15 p.m.	Simple Inventory Management System	CWE-89 cna@vuldb.com 2024-07-17 CVE-2024-6830
CVE-2024-6535	5.9	July 17, 2024, 3:15 a.m.	Skupper	secalert@redhat.com CWE-1392 2024-07-17 CVE-2024-6535
CVE-2024-6833	5.9	July 17, 2024, 3:15 p.m.	Zowe CLI	2024-07-17 CVE-2024-6833 zowe-security@lists.openmainframeproject.org
CVE-2024-6803	5.5	July 17, 2024, 3:15 a.m.	itsourcecode Document Management System	CWE-89 cna@vuldb.com 2024-07-17 CVE-2024-6803
CVE-2024-6669	5.5	July 17, 2024, 7:15 a.m.	ChatBot for WordPress – WPBot plugin	security@wordfence.com 2024-07-17 CVE-2024-6669
CVE-2024-27311	5.5	July 17, 2024, 11:15 a.m.	Zohocorp ManageEngine DDI Central	CWE-434 0fc0942c-577d-436f-ae8e-945763c79b02 2024-07-17 CVE-2024-27311
CVE-2024-32981	5.4	July 17, 2024, 8:15 p.m.	Silverstripe framework	security-advisories@github.com CWE-79 2024-07-17 CVE-2024-32981
CVE-2024-20396	5.3	July 17, 2024, 5:15 p.m.	Cisco Webex App	CWE-200 ykramarz@cisco.com 2024-07-17 CVE-2024-20396
CVE-2024-40633	5.3	July 17, 2024, 6:15 p.m.	Sylius	security-advisories@github.com CWE-200 2024-07-17 CVE-2024-40633
CVE-2024-40636	5.3	July 17, 2024, 6:15 p.m.	Steeltoe.Discovery.Eureka	security-advisories@github.com CWE-532 2024-07-17 CVE-2024-40636
CVE-2024-20296	4.7	July 17, 2024, 5:15 p.m.	Cisco Identity Services Engine (ISE)	ykramarz@cisco.com CWE-434 2024-07-17 CVE-2024-20296
CVE-2024-20400	4.7	July 17, 2024, 5:15 p.m.	Cisco Expressway Series	ykramarz@cisco.com CWE-601 2024-07-17 CVE-2024-20400
CVE-2024-6033	4.3	July 17, 2024, 7:15 a.m.	Eventin plugin for WordPress	security@wordfence.com 2024-07-17 CVE-2024-6033
CVE-2024-5703	4.3	July 17, 2024, 8:15 a.m.	Email Subscribers by Icegram Express - Email Marketing, Newsletters, Automation for WordPress & WooCommerce	security@wordfence.com 2024-07-17 CVE-2024-5703
CVE-2024-29885	4.3	July 17, 2024, 8:15 p.m.	Silverstripe Framework	security-advisories@github.com CWE-200 2024-07-17 CVE-2024-29885
CVE-2024-38870	3.5	July 17, 2024, 5:15 p.m.	Zohocorp ManageEngine OpManager	CWE-79 0fc0942c-577d-436f-ae8e-945763c79b02 2024-07-17 CVE-2024-38870
CVE-2023-42010	3.1	July 17, 2024, 6:15 p.m.	IBM Sterling B2B Integrator Standard Edition	psirt@us.ibm.com CWE-497 2024-07-17 CVE-2023-42010
CVE-2024-6595	3.0	July 17, 2024, 2:15 a.m.	GitLab CE/EE	CWE-427 cve@gitlab.com 2024-07-17 CVE-2024-6595
CVE-2024-40640	2.9	July 17, 2024, 6:15 p.m.	vodozemac	security-advisories@github.com CWE-208 2024-07-17 CVE-2024-40640
CVE-2024-6807	2.4	July 17, 2024, 4:15 a.m.	SourceCodester Student Study Center Desk Management System	CWE-79 cna@vuldb.com 2024-07-17 CVE-2024-6807
CVE-2024-41009	None	July 17, 2024, 7:15 a.m.	Linux Kernel	416baaa9-dc9f-4396-8d5f-8c081fb06d67 2024-07-17 CVE-2024-41009
CVE-2024-41010	None	July 17, 2024, 7:15 a.m.	Linux kernel	416baaa9-dc9f-4396-8d5f-8c081fb06d67 2024-07-17 CVE-2024-41010
CVE-2024-39863	None	July 17, 2024, 8:15 a.m.	Apache Airflow	security@apache.org CWE-74 2024-07-17 CVE-2024-39863
CVE-2024-39877	None	July 17, 2024, 8:15 a.m.	Apache Airflow	security@apache.org CWE-94 2024-07-17 CVE-2024-39877
CVE-2023-52291	None	July 17, 2024, 9:15 a.m.	streampark	security@apache.org CWE-77 2024-07-17 CVE-2023-52291
CVE-2024-29737	None	July 17, 2024, 9:15 a.m.	streampark	security@apache.org CWE-77 2024-07-17 CVE-2024-29737
CVE-2024-30471	None	July 17, 2024, 9:15 a.m.	Apache StreamPipes	security@apache.org CWE-367 2024-07-17 CVE-2024-30471
CVE-2024-31070	None	July 17, 2024, 9:15 a.m.	FutureNet NXR series	vultures@jpcert.or.jp 2024-07-17 CVE-2024-31070
CVE-2024-31979	None	July 17, 2024, 9:15 a.m.	Apache StreamPipes	security@apache.org CWE-918 2024-07-17 CVE-2024-31979
CVE-2024-36475	None	July 17, 2024, 9:15 a.m.	FutureNet NXR series	vultures@jpcert.or.jp 2024-07-17 CVE-2024-36475
CVE-2024-36491	None	July 17, 2024, 9:15 a.m.	FutureNet NXR series	vultures@jpcert.or.jp 2024-07-17 CVE-2024-36491
CVE-2024-40617	None	July 17, 2024, 9:15 a.m.	FUJITSU Network Edgiot GW1500 (M2M-GW for FENICS)	vultures@jpcert.or.jp 2024-07-17 CVE-2024-40617
CVE-2024-31411	None	July 17, 2024, 10:15 a.m.	Apache StreamPipes	security@apache.org CWE-434 2024-07-17 CVE-2024-31411
CVE-2024-6765	None	July 17, 2024, 2:15 p.m.	UNKNOWN	security@huntr.dev 2024-07-17 CVE-2024-6765
CVE-2024-29120	None	July 17, 2024, 3:15 p.m.	Streampark	security@apache.org CWE-212 2024-07-17 CVE-2024-29120
CVE-2023-4976	None	July 17, 2024, 4:15 p.m.	Purity//FB	CWE-269 2024-07-17 CVE-2023-4976 psirt@purestorage.com
CVE-2024-38446	None	July 17, 2024, 5:15 p.m.	UNKNOWN	cve@mitre.org 2024-07-17 CVE-2024-38446
CVE-2024-38447	None	July 17, 2024, 6:15 p.m.	NATO NCI ANET	cve@mitre.org 2024-07-17 CVE-2024-38447
CVE-2024-40639	None	July 17, 2024, 6:15 p.m.	Gotenberg	security-advisories@github.com CWE-200 2024-07-17 CVE-2024-40639
CVE-2024-40420	None	July 17, 2024, 7:15 p.m.	openCart	cve@mitre.org 2024-07-17 CVE-2024-40420
CVE-2024-39124	None	July 17, 2024, 8:15 p.m.	Roundup	cve@mitre.org 2024-07-17 CVE-2024-39124
CVE-2024-39125	None	July 17, 2024, 8:15 p.m.	Roundup	cve@mitre.org 2024-07-17 CVE-2024-39125
CVE-2024-39126	None	July 17, 2024, 8:15 p.m.	Roundup	cve@mitre.org 2024-07-17 CVE-2024-39126
CVE-2024-40119	None	July 17, 2024, 8:15 p.m.	Nepstech Wifi Router Xpon (Terminal) Model NTPL-Xpon1GFEVN	cve@mitre.org 2024-07-17 CVE-2024-40119
CVE-2024-40402	None	July 17, 2024, 8:15 p.m.	Simple Library Management System	cve@mitre.org 2024-07-17 CVE-2024-40402
CVE-2023-43971	None	July 17, 2024, 10:15 p.m.	ACG-faka	cve@mitre.org 2024-07-17 CVE-2023-43971
CVE-2024-40492	None	July 17, 2024, 10:15 p.m.	Heartbeat Chat	cve@mitre.org 2024-07-17 CVE-2024-40492

» Click here to see all Vulnerabilities «

Tag : 2024-07-17

Attack Reports

Vulnerabilities