Tag: 2024-07-22

3 Attack Reports | 135 Vulnerabilities

Attack reports

Global Outage - Threat Actor Activity and Risk Mitigation Strategies

On July 19th, 2024, a faulty update from CrowdStrike caused kernel instability and Blue Screen of Death (BSOD) loops on millions of Windows devices worldwide, leading to major disruptions across industries. While affected parties work on remediation, threat actors are exploiting the situation throu…
2024-07-22
bsod
crowdstrike
Published: July 22, 2024
Downloadable IOCs: 30

New Play Ransomware Linux Variant Targets ESXi Shows Ties

The Play ransomware group, known for double-extortion tactics and advanced evasion techniques, has developed a new Linux variant specifically designed to target VMware ESXi environments. This variant aims to encrypt virtual machines (VMs) and associated files, potentially causing significant operat…
2024-07-22
esxi
coroxy
Published: July 22, 2024
Downloadable IOCs: 2

Fake Browser Updates Lead to BOINC Volunteer Computing Software

This report details a recent malware campaign involving the infamous SocGholish/FakeUpdates malware, which tricks users into downloading fake browser updates. However, instead of installing common remote access tools (RATs) as the final payload, some infections resulted in the installation of the l…
2024-07-22
boinc
fakeupdates
Published: July 22, 2024
Downloadable IOCs: 17
Click here to see more Attack Reports

Vulnerabilities

CVE-2024-37998

9.8
    CPCI85 Central Processing/Communication
    SICORE Base system
Published: July 22, 2024

CVE-2024-21552

9.8
    SuperAGI
Published: July 22, 2024

CVE-2024-39685

9.8
    Bert-VITS2
Published: July 22, 2024

CVE-2024-39686

9.8
    Bert-VITS2
Published: July 22, 2024

CVE-2024-6793

9.8
    NI VeriStand DataLogging Server
Published: July 22, 2024

CVE-2024-6794

9.8
    NI VeriStand Waveform Streaming Server
Published: July 22, 2024

CVE-2024-6806

9.8
    NI VeriStand
Published: July 22, 2024

CVE-2024-26020

9.6
    Anki
Published: July 22, 2024

CVE-2024-38773

9.3
    Adrian Tobey FormLift for Infusionsoft Web Forms
Published: July 22, 2024

CVE-2024-25638

8.9
    dnsjava
Published: July 22, 2024

CVE-2024-6962

8.8
    Tenda O3
Published: July 22, 2024

CVE-2024-6963

8.8
    Tenda O3
Published: July 22, 2024

CVE-2024-6964

8.8
    Tenda O3
Published: July 22, 2024

CVE-2024-6965

8.8
    Tenda O3
Published: July 22, 2024

CVE-2024-38708

8.5
    UkrSolution Barcode Scanner with Inventory & Order Manager
Published: July 22, 2024

CVE-2024-38755

8.5
    DirectoryPress
Published: July 22, 2024

CVE-2024-6121

7.8
    NI SystemLink Server
    NI FlexLogger
Published: July 22, 2024

CVE-2024-6675

7.8
    NI VeriStand
Published: July 22, 2024

CVE-2024-6791

7.8
    NI VeriStand
Published: July 22, 2024

CVE-2024-38692

7.6
    Spiffy Calendar
Published: July 22, 2024

CVE-2024-38788

7.6
    UiPress lite
Published: July 22, 2024

CVE-2024-41131

7.5
    ImageSharp
Published: July 22, 2024

CVE-2024-40634

7.5
    Argo CD
Published: July 22, 2024

CVE-2024-6805

7.5
    NI VeriStand
Published: July 22, 2024

CVE-2024-32484

7.4
    Anki
Published: July 22, 2024

CVE-2024-41827

7.4
    JetBrains TeamCity
Published: July 22, 2024

CVE-2024-6966

7.3
    itsourcecode Online Blood Bank Management System
Published: July 22, 2024

CVE-2024-37942

7.2
    BerqWP
Published: July 22, 2024

CVE-2024-38728

7.2
    Seraphinite Post .DOCX Source
Published: July 22, 2024

CVE-2024-37245

7.1
    Vsourz Digital All In One Redirection
Published: July 22, 2024

CVE-2024-37257

7.1
    Permalink Manager Lite
Published: July 22, 2024

CVE-2024-37258

7.1
    Social Rocket
Published: July 22, 2024

CVE-2024-37259

7.1
    WP Extended The Ultimate WordPress Toolkit
Published: July 22, 2024

CVE-2024-37261

7.1
    WP Lab WP-Lister Lite for Amazon
Published: July 22, 2024

CVE-2024-37262

7.1
    Online Booking & Scheduling Calendar for WordPress by vcita
Published: July 22, 2024

CVE-2024-37264

7.1
    Groundhogg Inc. Groundhogg
Published: July 22, 2024

CVE-2024-37267

7.1
    kaptinlin Striking
Published: July 22, 2024

CVE-2024-37275

7.1
    NextScripts
Published: July 22, 2024

CVE-2024-37416

7.1
    WP Photo Album Plus
Published: July 22, 2024

CVE-2024-37432

7.1
    ThemeGrill Esteem
Published: July 22, 2024

CVE-2024-37433

7.1
    EverPress Mailster
Published: July 22, 2024

CVE-2024-37436

7.1
    Uncanny Toolkit Pro for LearnDash
Published: July 22, 2024

CVE-2024-35656

7.1
    Elementor Pro
Published: July 22, 2024

CVE-2024-37097

7.1
    UnitedThemes Shortcodes by United Themes
Published: July 22, 2024

CVE-2024-37117

7.1
    Uncanny Automator Pro
Published: July 22, 2024

CVE-2024-37199

7.1
    Kriesi.At Enfold
Published: July 22, 2024

CVE-2024-37206

7.1
    Theme4Press Demo Awesome
Published: July 22, 2024

CVE-2024-37211

7.1
    Ali2Woo Lite
Published: July 22, 2024

CVE-2024-37246

6.5
    Jethin Gallery Slideshow
Published: July 22, 2024

CVE-2024-37263

6.5
    ThemeLooks Enter Addons
Published: July 22, 2024

CVE-2024-37265

6.5
    IdeaPush
Published: July 22, 2024

CVE-2024-37422

6.5
    Team Emilia Projects Progress Planner
Published: July 22, 2024

CVE-2024-37428

6.5
    WidgetKit
Published: July 22, 2024

CVE-2024-37445

6.5
    bPlugins Html5 Audio Player
Published: July 22, 2024

CVE-2024-33933

6.5
    Elementor - Header, Footer & Blocks Template
Published: July 22, 2024

CVE-2024-37100

6.5
    Elegant Themes Icons
Published: July 22, 2024

CVE-2024-37101

6.5
    WP Post Author
Published: July 22, 2024

CVE-2024-37114

6.5
    My Favorites
Published: July 22, 2024

CVE-2024-37116

6.5
    Sinatra
Published: July 22, 2024

CVE-2024-37216

6.5
    Sketchfab Embed
Published: July 22, 2024

CVE-2024-37217

6.5
    Empty Cart Button for WooCommerce
Published: July 22, 2024

CVE-2024-37219

6.5
    PBN Hosting SL Page Builder Sandwich - Front-End Page Builder
Published: July 22, 2024

CVE-2024-37221

6.5
    Kimili Flash Embed
Published: July 22, 2024

CVE-2024-37223

6.5
    Nicdark Restaurant Reservations
Published: July 22, 2024

CVE-2024-37229

6.5
    Blogmentor - Blog Layouts for Elementor
Published: July 22, 2024

CVE-2024-37244

6.5
    Ninja Beaver Add-ons for Beaver Builder
Published: July 22, 2024

CVE-2024-6542

6.5
    Checkmk
Published: July 22, 2024

CVE-2024-39601

6.5
    CPCI85 Central Processing/Communication
    SICORE Base system
Published: July 22, 2024

CVE-2024-39688

6.5
    fishaudio/Bert-VITS2
Published: July 22, 2024

CVE-2024-38723

6.4
    Bernhard Kux JSON Content Importer
Published: July 22, 2024

CVE-2024-41824

6.4
    JetBrains TeamCity
Published: July 22, 2024

CVE-2024-6967

6.3
    SourceCodester Employee and Visitor Gate Pass Logging System
Published: July 22, 2024

CVE-2024-6968

6.3
    SourceCodester Clinics Patient Management System
Published: July 22, 2024

CVE-2024-6969

6.3
    SourceCodester Clinics Patient Management System
Published: July 22, 2024

CVE-2024-6970

6.3
    Tailoring Management System
Published: July 22, 2024

CVE-2024-37271

5.9
    Print My Blog
Published: July 22, 2024

CVE-2024-37278

5.9
    Cards for Beaver Builder
Published: July 22, 2024

CVE-2024-37409

5.9
    Beaver Addons PowerPack Lite for Beaver Builder
Published: July 22, 2024

CVE-2024-37414

5.9
    Depicter Slider
Published: July 22, 2024

CVE-2024-37429

5.9
    Hamid Alinia - idehweb
Published: July 22, 2024

CVE-2024-37434

5.9
    Atarim
Published: July 22, 2024

CVE-2024-37120

5.9
    Biplob Adhikari Tabs
Published: July 22, 2024

CVE-2024-37121

5.9
    Shortcode Addons
Published: July 22, 2024

CVE-2024-37122

5.9
    Accordions
Published: July 22, 2024

CVE-2024-37215

5.9
    Transition Slider - Responsive Image Slider and Gallery
Published: July 22, 2024

CVE-2024-37239

5.9
    WPMU DEV Branda
Published: July 22, 2024

CVE-2024-6122

5.5
    NI SystemLink Server
    NI FlexLogger
Published: July 22, 2024

CVE-2024-6638

5.5
    LabVIEW
Published: July 22, 2024

CVE-2024-38759

5.4
    WP MEDIA SAS Search & Replace
Published: July 22, 2024

CVE-2024-41130

5.4
    UNKNOWN
Published: July 22, 2024

CVE-2024-29073

5.3
    Ankitects Anki
Published: July 22, 2024

CVE-2024-41132

5.3
    ImageSharp
Published: July 22, 2024

CVE-2024-37380

5.3
    UniFi U6+ Access Point
Published: July 22, 2024

CVE-2024-38730

4.9
    Magical Addons For Elementor
Published: July 22, 2024

CVE-2024-39902

4.8
    Tuleap Community Edition
    Tuleap Enterprise Edition
Published: July 22, 2024

CVE-2024-41825

4.6
    JetBrains TeamCity
Published: July 22, 2024

CVE-2024-41129

4.4
    Juju
Published: July 22, 2024

CVE-2024-38701

4.3
    Academy LMS
Published: July 22, 2024

CVE-2024-41826

3.5
    JetBrains TeamCity
Published: July 22, 2024

CVE-2024-41829

3.5
    JetBrains TeamCity
Published: July 22, 2024

CVE-2024-32152

3.1
    Anki
Published: July 22, 2024

CVE-2024-41828

2.6
    JetBrains TeamCity
Published: July 22, 2024

CVE-2024-41703

None
    LibreChat
Published: July 22, 2024

CVE-2024-41704

None
    LibreChat
Published: July 22, 2024

CVE-2024-41709

None
    Backdrop CMS
Published: July 22, 2024

CVE-2024-5004

None
    CM Popup Plugin for WordPress
Published: July 22, 2024

CVE-2024-5529

None
    WP QuickLaTeX WordPress plugin
Published: July 22, 2024

CVE-2024-5973

None
    MasterStudy LMS WordPress Plugin
Published: July 22, 2024

CVE-2024-6243

None
    WordPress HTML Forms plugin
Published: July 22, 2024

CVE-2024-6244

None
    PZ Frontend Manager WordPress plugin
Published: July 22, 2024

CVE-2024-6271

None
    Community Events WordPress plugin
Published: July 22, 2024

CVE-2024-37391

None
    ProtonVPN
Published: July 22, 2024

CVE-2024-40430

None
    SFTPGO
Published: July 22, 2024

CVE-2024-23321

None
    RocketMQ
Published: July 22, 2024

CVE-2024-34457

None
    UNKNOWN
Published: July 22, 2024

CVE-2024-38503

None
    Apache Syncope
Published: July 22, 2024

CVE-2024-41314

None
    TOTOLINK A6000R
Published: July 22, 2024

CVE-2024-41315

None
    TOTOLINK A6000R
Published: July 22, 2024

CVE-2024-41316

None
    TOTOLINK A6000R
Published: July 22, 2024

CVE-2024-41317

None
    TOTOLINK A6000R
Published: July 22, 2024

CVE-2024-41318

None
    TOTOLINK A6000R
Published: July 22, 2024

CVE-2024-41320

None
    TOTOLINK A6000R
Published: July 22, 2024

CVE-2020-24102

None
    Punkbuster pbsv.d64
Published: July 22, 2024

CVE-2024-28698

None
    CSLA .Net
Published: July 22, 2024

CVE-2024-40051

None
    IP Guard
Published: July 22, 2024

CVE-2024-38944

None
    Intelight X-1L Traffic controller Maxtime
Published: July 22, 2024

CVE-2024-40075

None
    Laravel
Published: July 22, 2024

CVE-2024-41880

None
    Veilid
Published: July 22, 2024

CVE-2024-34329

None
    Entrust Datacard XPS Card Printer Driver
Published: July 22, 2024

CVE-2024-39250

None
    Timetrax
Published: July 22, 2024

CVE-2024-40502

None
    Hospital Management System Project in ASP.Net MVC 1
Published: July 22, 2024

CVE-2024-6911

None
    ProcessPlus
Published: July 22, 2024

CVE-2024-6912

None
    PerkinElmer ProcessPlus
Published: July 22, 2024

CVE-2024-6913

None
    PerkinElmer ProcessPlus
Published: July 22, 2024

CVE-2024-24507

None
    Act-On
Published: July 22, 2024
Click here to see more Vulnerabilities