Tag: 2024-07-26

3 Attack Reports | 72 Vulnerabilities

Attack reports

Scam Attacks Taking Advantage of the Popularity of the Generative AI Wave

This analysis explores the evolution of network threats associated with generative AI (GenAI) terms, correlating with key milestones like ChatGPT's launch and integration into Bing. It examines suspicious domain registrations capitalizing on the GenAI trend, their textual patterns, and traffic volu…
phishing
2024-07-26
spoofed domains
Published: July 26, 2024
Downloadable IOCs: 31

APT45: North Korea’s Digital Military Machine

Mandiant provides an overview of the activities of APT45, a cyber threat group attributed with high confidence to North Korea. The report details APT45's transition from traditional espionage campaigns against government and defense sectors to financially motivated operations, including suspected r…
3proxy
andariel
2024-07-26
dprk
maui ransomware
onyx sleet
apt45
stonefly
silent chollima
rifle
shatteredglass
rogueye
Published: July 26, 2024
Downloadable IOCs: 37

LummaC2 Malware Abusing the Game Platform 'Steam'

The report investigates LummaC2, an infostealer malware actively distributed under the guise of illegal software. It highlights LummaC2's tactics of utilizing encrypted strings and abusing legitimate websites like Steam to acquire command-and-control (C2) domains. The malware steals sensitive user …
lummac2
infostealer
data theft
vidar
2024-07-26
Published: July 26, 2024
Downloadable IOCs: 21
Click here to see more Attack Reports

Vulnerabilities

CVE-2024-41112

9.8
    streamlit-geospatial
Published: July 26, 2024

CVE-2024-41113

9.8
    streamlit-geospatial
Published: July 26, 2024

CVE-2024-41114

9.8
    streamlit-geospatial
Published: July 26, 2024

CVE-2024-41115

9.8
    streamlit-geospatial
Published: July 26, 2024

CVE-2024-41116

9.8
    streamlit-geospatial
Published: July 26, 2024

CVE-2024-41117

9.8
    streamlit-geospatial
Published: July 26, 2024

CVE-2024-41119

9.8
    streamlit-geospatial
Published: July 26, 2024

CVE-2024-41120

9.8
    streamlit-geospatial
Published: July 26, 2024

CVE-2024-7062

8.8
    Nimble Commander
Published: July 26, 2024

CVE-2024-39304

8.8
    ChurchCRM
Published: July 26, 2024

CVE-2024-38871

8.3
    ManageEngine Exchange Reporter Plus
Published: July 26, 2024

CVE-2024-38872

8.3
    Zohocorp ManageEngine Exchange Reporter Plus
Published: July 26, 2024

CVE-2024-41670

7.5
    PrestaShop
Published: July 26, 2024

CVE-2024-41812

7.5
    txtdot
Published: July 26, 2024

CVE-2024-41813

7.5
    txtdot
Published: July 26, 2024

CVE-2024-41118

7.5
    streamlit-geospatial
Published: July 26, 2024

CVE-2024-41815

7.4
    Starship
Published: July 26, 2024

CVE-2024-38508

7.2
    XCC
Published: July 26, 2024

CVE-2024-38509

7.2
    XCC
Published: July 26, 2024

CVE-2024-38510

7.2
    UNKNOWN
Published: July 26, 2024

CVE-2024-38511

7.2
    XCC
Published: July 26, 2024

CVE-2024-38512

7.2
    XCC
Published: July 26, 2024

CVE-2024-7114

6.3
    Tianchoy Blog
Published: July 26, 2024

CVE-2024-7115

6.3
    MD-MAFUJUL-HASAN Online-Payroll-Management-System
Published: July 26, 2024

CVE-2024-7116

6.3
    MD-MAFUJUL-HASAN Online-Payroll-Management-System
Published: July 26, 2024

CVE-2024-7117

6.3
    MD-MAFUJUL-HASAN Online-Payroll-Management-System
Published: July 26, 2024

CVE-2024-7118

6.3
    MD-MAFUJUL-HASAN Online-Payroll-Management-System
Published: July 26, 2024

CVE-2024-7119

6.3
    MD-MAFUJUL-HASAN Online-Payroll-Management-System
Published: July 26, 2024

CVE-2024-7120

6.3
    Raisecom MSG1200, MSG2100E, MSG2200, MSG2300
Published: July 26, 2024

CVE-2024-41805

6.1
    Tracks
Published: July 26, 2024

CVE-2024-40689

6.0
    IBM InfoSphere Information Server
Published: July 26, 2024

CVE-2024-42007

5.8
    SPX
Published: July 26, 2024

CVE-2024-7128

5.3
    Openshift console
Published: July 26, 2024

CVE-2023-49921

5.2
    Elasticsearch
Published: July 26, 2024

CVE-2024-4447

4.9
    dotCMS
Published: July 26, 2024

CVE-2024-4786

2.8
    Lenovo Tab K10
Published: July 26, 2024

CVE-2024-40897

None
    ORC
Published: July 26, 2024

CVE-2024-6490

None
    Master Slider WordPress plugin
Published: July 26, 2024

CVE-2024-25090

None
    Apache Roller
Published: July 26, 2024

CVE-2023-38522

None
    Apache Traffic Server
Published: July 26, 2024

CVE-2024-35161

None
    Apache Traffic Server
Published: July 26, 2024

CVE-2024-35296

None
    Apache Traffic Server
Published: July 26, 2024

CVE-2024-41684

None
    SyroTech SY-GPON-1110-WDONT Router
Published: July 26, 2024

CVE-2024-41685

None
    SyroTech SY-GPON-1110-WDONT Router
Published: July 26, 2024

CVE-2024-41686

None
    SyroTech SY-GPON-1110-WDONT Router
Published: July 26, 2024

CVE-2024-41687

None
    SyroTech SY-GPON-1110-WDONT Router
Published: July 26, 2024

CVE-2024-41688

None
    SyroTech SY-GPON-1110-WDONT Router
Published: July 26, 2024

CVE-2024-41689

None
    SyroTech SY-GPON-1110-WDONT Router
Published: July 26, 2024

CVE-2024-41690

None
    SyroTech SY-GPON-1110-WDONT Router
Published: July 26, 2024

CVE-2024-41691

None
    SyroTech SY-GPON-1110-WDONT Router
Published: July 26, 2024

CVE-2024-41692

None
    SyroTech SY-GPON-1110-WDONT Router
Published: July 26, 2024

CVE-2024-6922

None
    Automation Anywhere Automation 360
Published: July 26, 2024

CVE-2024-41355

None
    phpIPAM
Published: July 26, 2024

CVE-2024-41356

None
    phpipam
Published: July 26, 2024

CVE-2024-41357

None
    phpipam
Published: July 26, 2024

CVE-2024-41807

None
    UNKNOWN
Published: July 26, 2024

CVE-2024-7050

None
    OpenText Directory Services
Published: July 26, 2024

CVE-2023-50700

None
    Deepin dde-file-manager
Published: July 26, 2024

CVE-2024-24257

None
    Central Control Attendance Machine web management platform
Published: July 26, 2024

CVE-2024-26520

None
    Restaurant Digital Comprehensive Management platform
Published: July 26, 2024

CVE-2024-27357

None
    WithSecure Elements Agent
    WithSecure Elements Client Security
    WithSecure MDR
Published: July 26, 2024

CVE-2024-27358

None
    WithSecure Elements Agent
    WithSecure Elements Client Security
Published: July 26, 2024

CVE-2024-41353

None
    phpipam
Published: July 26, 2024

CVE-2024-41354

None
    phpipam
Published: July 26, 2024

CVE-2024-41373

None
    ICEcoder
Published: July 26, 2024

CVE-2024-41374

None
    ICEcoder
Published: July 26, 2024

CVE-2024-41375

None
    ICEcoder
Published: July 26, 2024

CVE-2024-40116

None
    Solar-Log 1000
Published: July 26, 2024

CVE-2024-40117

None
    Solar-Log 1000
Published: July 26, 2024

CVE-2024-41628

None
    Severalnines Cluster Control
Published: July 26, 2024

CVE-2024-37034

None
    Couchbase Server
Published: July 26, 2024

CVE-2024-40433

None
    Tencent wechat
Published: July 26, 2024
Click here to see more Vulnerabilities