SecuriTricks - 2024-07-26

Title	Published	Tags	Description	Number of indicators
Scam Attacks Taking Advantage of the Popularity of the Generative AI Wave	July 26, 2024, 1:35 p.m.	phishing 2024-07-26 spoofed domains	This analysis explores the evolution of network threats associated with generative AI (GenAI) terms, correlating with key milesto…	31
APT45: North Korea’s Digital Military Machine	July 26, 2024, 8:51 a.m.	3proxy andariel 2024-07-26 dprk maui ransomware onyx sleet apt45 stonefly silent chollima rifle shatteredglass rogueye	Mandiant provides an overview of the activities of APT45, a cyber threat group attributed with high confidence to North Korea. Th…	37
LummaC2 Malware Abusing the Game Platform 'Steam'	July 26, 2024, 8:25 a.m.	lummac2 infostealer data theft vidar 2024-07-26	The report investigates LummaC2, an infostealer malware actively distributed under the guise of illegal software. It highlights L…	21

Vulnerabilities

CVE	CVSS	Published	Product impacted	Tags
CVE-2024-41112	9.8	July 26, 2024, 8:15 p.m.	streamlit-geospatial	CWE-20 security-advisories@github.com 2024-07-26 CVE-2024-41112
CVE-2024-41113	9.8	July 26, 2024, 8:15 p.m.	streamlit-geospatial	CWE-20 security-advisories@github.com 2024-07-26 CVE-2024-41113
CVE-2024-41114	9.8	July 26, 2024, 9:15 p.m.	streamlit-geospatial	CWE-20 security-advisories@github.com 2024-07-26 CVE-2024-41114
CVE-2024-41115	9.8	July 26, 2024, 9:15 p.m.	streamlit-geospatial	CWE-20 security-advisories@github.com 2024-07-26 CVE-2024-41115
CVE-2024-41116	9.8	July 26, 2024, 9:15 p.m.	streamlit-geospatial	CWE-20 security-advisories@github.com 2024-07-26 CVE-2024-41116
CVE-2024-41117	9.8	July 26, 2024, 9:15 p.m.	streamlit-geospatial	CWE-20 security-advisories@github.com 2024-07-26 CVE-2024-41117
CVE-2024-41119	9.8	July 26, 2024, 9:15 p.m.	streamlit-geospatial	CWE-20 security-advisories@github.com 2024-07-26 CVE-2024-41119
CVE-2024-41120	9.8	July 26, 2024, 9:15 p.m.	streamlit-geospatial	CWE-20 security-advisories@github.com 2024-07-26 CVE-2024-41120
CVE-2024-7062	8.8	July 26, 2024, 12:15 p.m.	Nimble Commander	CWE-863 2024-07-26 CVE-2024-7062 41c37e40-543d-43a2-b660-2fee83ea851a
CVE-2024-39304	8.8	July 26, 2024, 6:15 p.m.	ChurchCRM	security-advisories@github.com CWE-89 2024-07-26 CVE-2024-39304
CVE-2024-38871	8.3	July 26, 2024, 6:15 p.m.	ManageEngine Exchange Reporter Plus	CWE-89 0fc0942c-577d-436f-ae8e-945763c79b02 2024-07-26 CVE-2024-38871
CVE-2024-38872	8.3	July 26, 2024, 6:15 p.m.	Zohocorp ManageEngine Exchange Reporter Plus	CWE-89 0fc0942c-577d-436f-ae8e-945763c79b02 2024-07-26 CVE-2024-38872
CVE-2024-41670	7.5	July 26, 2024, 3:15 p.m.	PrestaShop	security-advisories@github.com CWE-285 2024-07-26 CVE-2024-41670
CVE-2024-41812	7.5	July 26, 2024, 5:15 p.m.	txtdot	security-advisories@github.com CWE-918 2024-07-26 CVE-2024-41812
CVE-2024-41813	7.5	July 26, 2024, 5:15 p.m.	txtdot	security-advisories@github.com CWE-918 2024-07-26 CVE-2024-41813
CVE-2024-41118	7.5	July 26, 2024, 9:15 p.m.	streamlit-geospatial	security-advisories@github.com CWE-918 2024-07-26 CVE-2024-41118
CVE-2024-41815	7.4	July 26, 2024, 9:15 p.m.	Starship	security-advisories@github.com CWE-77 2024-07-26 CVE-2024-41815
CVE-2024-38508	7.2	July 26, 2024, 8:15 p.m.	XCC	CWE-78 psirt@lenovo.com 2024-07-26 CVE-2024-38508
CVE-2024-38509	7.2	July 26, 2024, 8:15 p.m.	XCC	CWE-121 psirt@lenovo.com 2024-07-26 CVE-2024-38509
CVE-2024-38510	7.2	July 26, 2024, 8:15 p.m.	UNKNOWN	CWE-78 psirt@lenovo.com 2024-07-26 CVE-2024-38510
CVE-2024-38511	7.2	July 26, 2024, 8:15 p.m.	XCC	CWE-78 psirt@lenovo.com 2024-07-26 CVE-2024-38511
CVE-2024-38512	7.2	July 26, 2024, 8:15 p.m.	XCC	CWE-78 psirt@lenovo.com 2024-07-26 CVE-2024-38512
CVE-2024-7114	6.3	July 26, 2024, 2:15 a.m.	Tianchoy Blog	CWE-89 cna@vuldb.com 2024-07-26 CVE-2024-7114
CVE-2024-7115	6.3	July 26, 2024, 2:15 a.m.	MD-MAFUJUL-HASAN Online-Payroll-Management-System	CWE-89 cna@vuldb.com 2024-07-26 CVE-2024-7115
CVE-2024-7116	6.3	July 26, 2024, 3:15 a.m.	MD-MAFUJUL-HASAN Online-Payroll-Management-System	CWE-89 cna@vuldb.com 2024-07-26 CVE-2024-7116
CVE-2024-7117	6.3	July 26, 2024, 4:15 a.m.	MD-MAFUJUL-HASAN Online-Payroll-Management-System	CWE-89 cna@vuldb.com 2024-07-26 CVE-2024-7117
CVE-2024-7118	6.3	July 26, 2024, 4:15 a.m.	MD-MAFUJUL-HASAN Online-Payroll-Management-System	CWE-89 cna@vuldb.com 2024-07-26 CVE-2024-7118
CVE-2024-7119	6.3	July 26, 2024, 5:15 a.m.	MD-MAFUJUL-HASAN Online-Payroll-Management-System	CWE-89 cna@vuldb.com 2024-07-26 CVE-2024-7119
CVE-2024-7120	6.3	July 26, 2024, 5:15 a.m.	Raisecom MSG1200, MSG2100E, MSG2200, MSG2300	CWE-78 cna@vuldb.com 2024-07-26 CVE-2024-7120
CVE-2024-41805	6.1	July 26, 2024, 3:15 p.m.	Tracks	security-advisories@github.com CWE-79 2024-07-26 CVE-2024-41805
CVE-2024-40689	6.0	July 26, 2024, 2:15 p.m.	IBM InfoSphere Information Server	psirt@us.ibm.com CWE-89 2024-07-26 CVE-2024-40689
CVE-2024-42007	5.8	July 26, 2024, 7:15 p.m.	SPX	cve@mitre.org 2024-07-26 CVE-2024-42007
CVE-2024-7128	5.3	July 26, 2024, 2:15 p.m.	Openshift console	secalert@redhat.com CWE-200 2024-07-26 CVE-2024-7128
CVE-2023-49921	5.2	July 26, 2024, 5:15 a.m.	Elasticsearch	CWE-532 bressers@elastic.co 2024-07-26 CVE-2023-49921
CVE-2024-4447	4.9	July 26, 2024, 2:15 a.m.	dotCMS	CWE-863 2024-07-26 CVE-2024-4447 security@dotcms.com
CVE-2024-4786	2.8	July 26, 2024, 8:15 p.m.	Lenovo Tab K10	CWE-295 psirt@lenovo.com 2024-07-26 CVE-2024-4786
CVE-2024-40897	None	July 26, 2024, 6:15 a.m.	ORC	vultures@jpcert.or.jp 2024-07-26 CVE-2024-40897
CVE-2024-6490	None	July 26, 2024, 6:15 a.m.	Master Slider WordPress plugin	contact@wpscan.com 2024-07-26 CVE-2024-6490
CVE-2024-25090	None	July 26, 2024, 9:15 a.m.	Apache Roller	CWE-20 security@apache.org 2024-07-26 CVE-2024-25090
CVE-2023-38522	None	July 26, 2024, 10:15 a.m.	Apache Traffic Server	CWE-20 security@apache.org 2024-07-26 CVE-2023-38522
CVE-2024-35161	None	July 26, 2024, 10:15 a.m.	Apache Traffic Server	CWE-20 security@apache.org 2024-07-26 CVE-2024-35161
CVE-2024-35296	None	July 26, 2024, 10:15 a.m.	Apache Traffic Server	CWE-20 security@apache.org 2024-07-26 CVE-2024-35296
CVE-2024-41684	None	July 26, 2024, 12:15 p.m.	SyroTech SY-GPON-1110-WDONT Router	vdisclose@cert-in.org.in CWE-614 2024-07-26 CVE-2024-41684
CVE-2024-41685	None	July 26, 2024, 12:15 p.m.	SyroTech SY-GPON-1110-WDONT Router	vdisclose@cert-in.org.in CWE-1004 2024-07-26 CVE-2024-41685
CVE-2024-41686	None	July 26, 2024, 12:15 p.m.	SyroTech SY-GPON-1110-WDONT Router	vdisclose@cert-in.org.in 2024-07-26 CVE-2024-41686 CWE-179
CVE-2024-41687	None	July 26, 2024, 12:15 p.m.	SyroTech SY-GPON-1110-WDONT Router	CWE-319 vdisclose@cert-in.org.in 2024-07-26 CVE-2024-41687
CVE-2024-41688	None	July 26, 2024, 12:15 p.m.	SyroTech SY-GPON-1110-WDONT Router	CWE-312 vdisclose@cert-in.org.in 2024-07-26 CVE-2024-41688
CVE-2024-41689	None	July 26, 2024, 12:15 p.m.	SyroTech SY-GPON-1110-WDONT Router	CWE-798 vdisclose@cert-in.org.in 2024-07-26 CVE-2024-41689
CVE-2024-41690	None	July 26, 2024, 12:15 p.m.	SyroTech SY-GPON-1110-WDONT Router	CWE-312 vdisclose@cert-in.org.in 2024-07-26 CVE-2024-41690
CVE-2024-41691	None	July 26, 2024, 12:15 p.m.	SyroTech SY-GPON-1110-WDONT Router	CWE-312 vdisclose@cert-in.org.in 2024-07-26 CVE-2024-41691
CVE-2024-41692	None	July 26, 2024, 1:15 p.m.	SyroTech SY-GPON-1110-WDONT Router	vdisclose@cert-in.org.in 2024-07-26 CVE-2024-41692 CWE-1191
CVE-2024-6922	None	July 26, 2024, 2:15 p.m.	Automation Anywhere Automation 360	CWE-918 cve@rapid7.com 2024-07-26 CVE-2024-6922
CVE-2024-41355	None	July 26, 2024, 4:15 p.m.	phpIPAM	cve@mitre.org 2024-07-26 CVE-2024-41355
CVE-2024-41356	None	July 26, 2024, 4:15 p.m.	phpipam	cve@mitre.org 2024-07-26 CVE-2024-41356
CVE-2024-41357	None	July 26, 2024, 4:15 p.m.	phpipam	cve@mitre.org 2024-07-26 CVE-2024-41357
CVE-2024-41807	None	July 26, 2024, 4:15 p.m.	UNKNOWN	security-advisories@github.com 2024-07-26 CVE-2024-41807
CVE-2024-7050	None	July 26, 2024, 4:15 p.m.	OpenText Directory Services	security@opentext.com CWE-287 2024-07-26 CVE-2024-7050
CVE-2023-50700	None	July 26, 2024, 5:15 p.m.	Deepin dde-file-manager	cve@mitre.org 2024-07-26 CVE-2023-50700
CVE-2024-24257	None	July 26, 2024, 5:15 p.m.	Central Control Attendance Machine web management platform	cve@mitre.org 2024-07-26 CVE-2024-24257
CVE-2024-26520	None	July 26, 2024, 5:15 p.m.	Restaurant Digital Comprehensive Management platform	cve@mitre.org 2024-07-26 CVE-2024-26520
CVE-2024-27357	None	July 26, 2024, 5:15 p.m.	WithSecure Elements Agent	cve@mitre.org 2024-07-26 CVE-2024-27357
CVE-2024-27358	None	July 26, 2024, 5:15 p.m.	WithSecure Elements Agent	cve@mitre.org 2024-07-26 CVE-2024-27358
CVE-2024-41353	None	July 26, 2024, 5:15 p.m.	phpipam	cve@mitre.org 2024-07-26 CVE-2024-41353
CVE-2024-41354	None	July 26, 2024, 5:15 p.m.	phpipam	cve@mitre.org 2024-07-26 CVE-2024-41354
CVE-2024-41373	None	July 26, 2024, 5:15 p.m.	ICEcoder	cve@mitre.org 2024-07-26 CVE-2024-41373
CVE-2024-41374	None	July 26, 2024, 5:15 p.m.	ICEcoder	cve@mitre.org 2024-07-26 CVE-2024-41374
CVE-2024-41375	None	July 26, 2024, 5:15 p.m.	ICEcoder	cve@mitre.org 2024-07-26 CVE-2024-41375
CVE-2024-40116	None	July 26, 2024, 8:15 p.m.	Solar-Log 1000	cve@mitre.org 2024-07-26 CVE-2024-40116
CVE-2024-40117	None	July 26, 2024, 8:15 p.m.	Solar-Log 1000	cve@mitre.org 2024-07-26 CVE-2024-40117
CVE-2024-41628	None	July 26, 2024, 9:15 p.m.	Severalnines Cluster Control	cve@mitre.org 2024-07-26 CVE-2024-41628
CVE-2024-37034	None	July 26, 2024, 10:15 p.m.	Couchbase Server	cve@mitre.org 2024-07-26 CVE-2024-37034
CVE-2024-40433	None	July 26, 2024, 10:15 p.m.	Tencent wechat	cve@mitre.org 2024-07-26 CVE-2024-40433

» Click here to see all Vulnerabilities «

Tag : 2024-07-26

Attack Reports

Vulnerabilities