Tag: 2024-08-06

4 Attack Reports | 171 Vulnerabilities

Attack reports

North Korean Hacking Groups Stealing Construction and Machinery Sector Technologies: A Warning

South Korea's cybersecurity community, consisting of the National Intelligence Service, Prosecution Service, Police Agency, Defense Security Command, and Cyber Command, among others, warns of the risks posed by North Korean hacking groups' cyber attacks targeting the domestic construction and machi…
espionage
north korea
2024-08-06
trollagent
construction
cyber attack
machinery
dorarat
Published: August 6, 2024
Downloadable IOCs: 16

SharpRhino – New Hunters International RAT

Quorum Cyber's Incident Response team discovered a novel malware, SharpRhino, used by the threat actor Hunters International as an initial infection vector and Remote Access Trojan (RAT). This malware, coded in C#, is delivered via a typosquatting domain impersonating Angry IP Scanner. Upon executi…
ransomware
remote access
2024-08-06
sharprhino
Published: August 6, 2024
Downloadable IOCs: 6

BlankBot: A new Android banking trojan

A new Android banking trojan called BlankBot has been discovered. Discovered by Intel 471 researchers in July 2024, BlankBot primarily targets Turkish users through impersonated utility apps. With a range of malicious capabilities like customer injections, keylogging, screen recording, and remote c…
android
trojan
banking
keylogging
2024-08-06
blankbot
Published: August 6, 2024
Downloadable IOCs: 0

LianSpy: new Android spyware targeting Russian users

Kaspersky discovered an Android spyware campaign called LianSpy that targets Russian users. The malware can capture screencasts, exfiltrate files, and harvest call logs and app lists. It employs evasive tactics like using the Russian cloud service Yandex Disk for command and control communication, …
android
spyware
2024-08-06
yandex
russian
lianspy
Published: August 6, 2024
Downloadable IOCs: 0
Click here to see more Attack Reports

Vulnerabilities

CVE-2024-6782

9.8
    Calibre
Published: August 6, 2024

CVE-2024-6202

9.8
    HaloITSM
Published: August 6, 2024

CVE-2024-33957

9.8
    E-Negosyo System
Published: August 6, 2024

CVE-2024-33958

9.8
    E-Negosyo System
Published: August 6, 2024

CVE-2024-33959

9.8
    PayPal
    Credit Card Payment
    Debit Card Payment
Published: August 6, 2024

CVE-2024-33960

9.8
    PayPal, Credit Card and Debit Card Payment
Published: August 6, 2024

CVE-2024-33961

9.8
    PayPal
Published: August 6, 2024

CVE-2024-33962

9.8
    PayPal, Credit Card and Debit Card Payment
Published: August 6, 2024

CVE-2024-33963

9.8
    PayPal, Credit Card and Debit Card Payment
Published: August 6, 2024

CVE-2024-33964

9.8
    PayPal
Published: August 6, 2024

CVE-2024-33965

9.8
    PayPal, Credit Card, Debit Card Payment
Published: August 6, 2024

CVE-2024-33966

9.8
    PayPal
Published: August 6, 2024

CVE-2024-33967

9.8
    PayPal, Credit Card and Debit Card Payment
Published: August 6, 2024

CVE-2024-33968

9.8
    PayPal, Credit Card and Debit Card Payment
Published: August 6, 2024

CVE-2024-33969

9.8
    UNKNOWN
    PayPal
    Credit Card and Debit Card Payment
Published: August 6, 2024

CVE-2024-33970

9.8
    PayPal, Credit Card and Debit Card Payment
Published: August 6, 2024

CVE-2024-33971

9.8
    PayPal, Credit Card and Debit Card Payment
Published: August 6, 2024

CVE-2024-33972

9.8
    PayPal
Published: August 6, 2024

CVE-2024-33973

9.8
    PayPal
Published: August 6, 2024

CVE-2024-33974

9.8
    UNKNOWN
Published: August 6, 2024

CVE-2024-7521

9.8
    Firefox
Published: August 6, 2024

CVE-2024-6995

9.8
    Google Chrome
Published: August 6, 2024

CVE-2024-42393

9.8
    UNKNOWN
Published: August 6, 2024

CVE-2024-42394

9.8
    UNKNOWN
Published: August 6, 2024

CVE-2024-42395

9.8
    HPE AP Certificate Management Service
Published: August 6, 2024

CVE-2024-28739

9.6
    Koha ILS
Published: August 6, 2024

CVE-2024-7525

9.1
    Firefox
Published: August 6, 2024

CVE-2023-5000

8.8
    Horizontal scrolling announcements plugin for WordPress
Published: August 6, 2024

CVE-2024-6315

8.8
    Blox Page Builder plugin for WordPress
Published: August 6, 2024

CVE-2024-5709

8.8
    WPBakery Visual Composer plugin
Published: August 6, 2024

CVE-2024-7520

8.8
    Firefox
Published: August 6, 2024

CVE-2024-7527

8.8
    Firefox
Published: August 6, 2024

CVE-2024-41616

8.8
    D-Link DIR-300 REVA
Published: August 6, 2024

CVE-2024-6988

8.8
    Google Chrome
Published: August 6, 2024

CVE-2024-6991

8.8
    Google Chrome
Published: August 6, 2024

CVE-2024-6997

8.8
    Google Chrome
Published: August 6, 2024

CVE-2024-6998

8.8
    Google Chrome
Published: August 6, 2024

CVE-2024-7005

8.8
    Google Chrome
Published: August 6, 2024

CVE-2024-7534

8.8
    Google Chrome
Published: August 6, 2024

CVE-2024-7536

8.8
    Google Chrome
Published: August 6, 2024

CVE-2024-5828

8.6
    Hitachi Tuning Manager
Published: August 6, 2024

CVE-2024-38206

8.5
    Microsoft Copilot Studio
Published: August 6, 2024

CVE-2024-6203

8.3
    HaloITSM
Published: August 6, 2024

CVE-2024-38166

8.2
    Microsoft Dynamics 365
Published: August 6, 2024

CVE-2024-7529

8.1
    Firefox
    Firefox
Published: August 6, 2024

CVE-2024-6200

8.0
    HaloITSM
Published: August 6, 2024

CVE-2024-7538

7.8
    oFono
Published: August 6, 2024

CVE-2024-7539

7.8
    oFono
Published: August 6, 2024

CVE-2024-7543

7.8
    oFono
Published: August 6, 2024

CVE-2024-7544

7.8
    oFono
Published: August 6, 2024

CVE-2024-7545

7.8
    oFono
Published: August 6, 2024

CVE-2024-7546

7.8
    oFono
Published: August 6, 2024

CVE-2024-23456

7.8
    Zscaler Client Connector
Published: August 6, 2024

CVE-2024-7502

7.8
    Delta Electronics DIAScreen
Published: August 6, 2024

CVE-2024-42347

7.7
    matrix-react-sdk
Published: August 6, 2024

CVE-2024-6781

7.5
    Calibre
Published: August 6, 2024

CVE-2024-41995

7.5
    JavaTM Platform
    MFPs and printers with JavaTM Platform
Published: August 6, 2024

CVE-2024-43114

7.5
    JetBrains TeamCity
Published: August 6, 2024

CVE-2024-30170

7.5
    PrivX
Published: August 6, 2024

CVE-2024-7498

7.3
    itsourcecode Airline Reservation System
Published: August 6, 2024

CVE-2024-7505

7.3
    Bike Delivery System
Published: August 6, 2024

CVE-2024-23458

7.3
    Zscaler Client Connector
Published: August 6, 2024

CVE-2024-7484

7.2
    CRM Perks Forms plugin for WordPress
Published: August 6, 2024

CVE-2024-7485

7.2
    WordPress Traffic Manager plugin
Published: August 6, 2024

CVE-2024-23464

7.2
    Zscaler Client Connector
Published: August 6, 2024

CVE-2024-33975

7.1
    E-Negosyo System
Published: August 6, 2024

CVE-2024-33976

7.1
    E-Negosyo System
Published: August 6, 2024

CVE-2024-33977

7.1
    E-Negosyo System
Published: August 6, 2024

CVE-2024-33978

7.1
    E-Negosyo System
Published: August 6, 2024

CVE-2024-33979

7.1
    PayPal
Published: August 6, 2024

CVE-2024-33980

7.1
    PayPal, Credit Card and Debit Card Payment
Published: August 6, 2024

CVE-2024-33981

7.1
    PayPal
Published: August 6, 2024

CVE-2024-33982

7.1
    School Attendance Monitoring System
    School Event Management System
Published: August 6, 2024

CVE-2024-33983

7.1
    School Attendance Monitoring System
    School Event Management System
Published: August 6, 2024

CVE-2024-33984

7.1
    School Attendance Monitoring System
    School Event Management System
Published: August 6, 2024

CVE-2024-33985

7.1
    School Attendance Monitoring System
    School Event Management System
Published: August 6, 2024

CVE-2024-33986

7.1
    School Attendance Monitoring System and School Event Management System
Published: August 6, 2024

CVE-2024-33987

7.1
    School Attendance Monitoring System
    School Event Management System
Published: August 6, 2024

CVE-2024-33988

7.1
    School Attendance Monitoring System
    School Event Management System
Published: August 6, 2024

CVE-2024-33989

7.1
    School Event Management System
Published: August 6, 2024

CVE-2024-33990

7.1
    School Event Management System
Published: August 6, 2024

CVE-2024-33991

7.1
    School Event Management System
Published: August 6, 2024

CVE-2024-33992

7.1
    School Event Management System
Published: August 6, 2024

CVE-2024-33993

7.1
    School Event Management System
Published: August 6, 2024

CVE-2024-33994

7.1
    School Event Management System
Published: August 6, 2024

CVE-2024-7547

7.0
    oFono
Published: August 6, 2024

CVE-2024-23483

7.0
    Zscaler Client Connector on MacOS
Published: August 6, 2024

CVE-2024-5963

6.7
    Hitachi Device Manager
Published: August 6, 2024

CVE-2024-28962

6.5
    Dell Command | Update
    Dell Update
    Alienware Update UWP
Published: August 6, 2024

CVE-2024-5708

6.4
    WPBakery Visual Composer plugin for WordPress
Published: August 6, 2024

CVE-2024-7317

6.4
    Folders - Unlimited Folders to Organize Media Library Folder, Pages, File Manager plugin for WordPress
Published: August 6, 2024

CVE-2024-6359

6.4
    OpenText ArcSight Intelligence
Published: August 6, 2024

CVE-2024-23460

6.4
    Zscaler Client Connector
Published: August 6, 2024

CVE-2024-7495

6.3
    Laravel Accounting System
Published: August 6, 2024

CVE-2024-7496

6.3
    itsourcecode Airline Reservation System
Published: August 6, 2024

CVE-2024-7497

6.3
    itsourcecode Airline Reservation System
Published: August 6, 2024

CVE-2024-7499

6.3
    itsourcecode Airline Reservation System
Published: August 6, 2024

CVE-2024-7500

6.3
    itsourcecode Airline Reservation System
Published: August 6, 2024

CVE-2024-7506

6.3
    Tailoring Management System
Published: August 6, 2024

CVE-2024-7055

6.3
    FFmpeg
Published: August 6, 2024

CVE-2024-6357

6.3
    OpenText ArcSight Intelligence
Published: August 6, 2024

CVE-2024-6358

6.3
    OpenText ArcSight Intelligence
Published: August 6, 2024

CVE-2024-7552

6.3
    DataGear
Published: August 6, 2024

CVE-2024-41677

6.3
    Qwik
    @builder.io/qwik
Published: August 6, 2024

CVE-2024-42358

6.2
    PDFio
Published: August 6, 2024

CVE-2024-6651

6.1
    WordPress File Upload plugin
Published: August 6, 2024

CVE-2023-28806

5.7
    Zscaler Client Connector
Published: August 6, 2024

CVE-2024-7008

5.4
    Calibre
Published: August 6, 2024

CVE-2024-6766

5.4
    shortcodes-ultimate-pro WordPress plugin
Published: August 6, 2024

CVE-2024-6201

5.3
    HaloITSM
Published: August 6, 2024

CVE-2024-42396

5.3
    HPE Access Point
Published: August 6, 2024

CVE-2024-42397

5.3
    HPE Access Point
Published: August 6, 2024

CVE-2024-42398

5.3
    HPE Access Point
Published: August 6, 2024

CVE-2024-42399

5.3
    UNKNOWN
Published: August 6, 2024

CVE-2024-42400

5.3
    UNKNOWN
Published: August 6, 2024

CVE-2024-39751

4.3
    IBM InfoSphere Information Server
Published: August 6, 2024

CVE-2024-7003

4.3
    Google Chrome
Published: August 6, 2024

CVE-2024-7564

4.3
    Logsign Unified SecOps Platform
Published: August 6, 2024

CVE-2024-7009

4.2
    Calibre
Published: August 6, 2024

CVE-2024-7537

3.3
    oFono
Published: August 6, 2024

CVE-2024-7540

3.3
    oFono
Published: August 6, 2024

CVE-2024-7541

3.3
    oFono
Published: August 6, 2024

CVE-2024-7542

3.3
    oFono
Published: August 6, 2024

CVE-2024-7551

2.7
    juzaweb CMS
Published: August 6, 2024

CVE-2024-6886

None
    Gitea Open Source Git Server
Published: August 6, 2024

CVE-2024-39817

None
    Cybozu Office
Published: August 6, 2024

CVE-2024-7082

None
    Easy Table of Contents WordPress plugin
Published: August 6, 2024

CVE-2024-7084

None
    Ajax Search Lite WordPress plugin
Published: August 6, 2024

CVE-2024-7246

None
    gRPC
Published: August 6, 2024

CVE-2024-7518

None
    Mozilla Firefox
Published: August 6, 2024

CVE-2024-7519

None
    Firefox
Published: August 6, 2024

CVE-2024-7522

None
    Firefox
Published: August 6, 2024

CVE-2024-7523

None
    Firefox
Published: August 6, 2024

CVE-2024-7524

None
    Firefox
Published: August 6, 2024

CVE-2024-7526

None
    Firefox
Published: August 6, 2024

CVE-2024-7528

None
    Firefox
Published: August 6, 2024

CVE-2024-7530

None
    Firefox
Published: August 6, 2024

CVE-2024-7531

None
    Mozilla Firefox
Published: August 6, 2024

CVE-2023-40819

None
    ID4Portais
Published: August 6, 2024

CVE-2024-33897

None
    HMS Networks Cosy+
    Talk2M production server
Published: August 6, 2024

CVE-2024-40101

None
    microweber
Published: August 6, 2024

CVE-2024-41226

None
    Automation Anywhere Automation 360
Published: August 6, 2024

CVE-2024-41910

None
    Poly Clariti Manager
Published: August 6, 2024

CVE-2024-41911

None
    Poly Clariti Manager
Published: August 6, 2024

CVE-2024-41913

None
    Poly Clariti Manager
Published: August 6, 2024

CVE-2024-36424

None
    K7 Ultimate Security
Published: August 6, 2024

CVE-2024-39225

None
    GL-iNet
Published: August 6, 2024

CVE-2024-39226

None
    GL-iNet
Published: August 6, 2024

CVE-2024-39228

None
    GL-iNet
Published: August 6, 2024

CVE-2024-41333

None
    Phpgurukul Tourism Management System
Published: August 6, 2024

CVE-2024-43111

None
    Firefox for iOS
Published: August 6, 2024

CVE-2024-43112

None
    Firefox for iOS
Published: August 6, 2024

CVE-2024-43113

None
    Firefox for iOS
Published: August 6, 2024

CVE-2024-6720

None
    Light Poll WordPress plugin
Published: August 6, 2024

CVE-2024-6989

None
    Google Chrome
Published: August 6, 2024

CVE-2024-6994

None
    Google Chrome
Published: August 6, 2024

CVE-2024-6996

None
    Google Chrome
Published: August 6, 2024

CVE-2024-6999

None
    Google Chrome
Published: August 6, 2024

CVE-2024-7000

None
    Google Chrome
Published: August 6, 2024

CVE-2024-7001

None
    Google Chrome
Published: August 6, 2024

CVE-2024-7004

None
    Google Chrome
Published: August 6, 2024

CVE-2024-39227

None
    GL-iNet AR750
    GL-iNet AR750S
    GL-iNet AR300M
    GL-iNet AR300M16
    GL-iNet MT300N-V2
    GL-iNet B1300
    GL-iNet MT1300
    GL-iNet SFT1200
    GL-iNet X750
    GL-iNet MT3000
    GL-iNet MT2500
    GL-iNet AXT1800
    GL-iNet AX1800
    GL-iNet A1300
    GL-iNet X300B
    GL-iNet XE300
    GL-iNet E750
    GL-iNet AP1300
    GL-iNet S1300
    GL-iNet XE3000
    GL-iNet X3000
Published: August 6, 2024

CVE-2024-39229

None
    GL-iNet XE300
    GL-iNet E750
    GL-iNet AR750/AR750S/AR300M/AR300M16/MT300N-V2/B1300/MT1300/SFT1200/X750
    GL-iNet MT3000/MT2500/AXT1800/AX1800/A1300/X300B
    GL-iNet AP1300/S1300
    GL-iNet XE3000/X3000
    GL-iNet B2200/MV1000/MV1000W/USB150/N300/SF1200
Published: August 6, 2024

CVE-2024-28740

None
    Koha ILS
Published: August 6, 2024

CVE-2024-41270

None
    Gorush
Published: August 6, 2024

CVE-2024-42218

None
    1Password
Published: August 6, 2024

CVE-2024-42219

None
    1Password
Published: August 6, 2024

CVE-2024-7532

None
    Google Chrome
Published: August 6, 2024

CVE-2024-7533

None
    Google Chrome on iOS
Published: August 6, 2024

CVE-2024-7535

None
    Google Chrome
Published: August 6, 2024

CVE-2024-7550

None
    Google Chrome
Published: August 6, 2024
Click here to see more Vulnerabilities