Tag: 2024-08-14

3 Attack Reports | 141 Vulnerabilities

Attack reports

EastWind campaign: new CloudSorcerer attacks on government organizations in Russia

Kaspersky detected an ongoing targeted cyberattack campaign, dubbed EastWind, targeting Russian government organizations and IT companies. The attackers employed phishing emails with malicious shortcuts to deliver malware that communicated via Dropbox. They utilized tools associated with APT31 and …
rat
phishing
spyware
dll sideloading
cloudsorcerer
2024-08-14
plugy
grewapacha
Published: August 14, 2024
Downloadable IOCs: 5

Rivers of Phish: Sophisticated Phishing Targets Russia's Perceived Enemies Around the Globe

An extensive investigation uncovered an elaborate phishing campaign conducted by a Russia-based threat actor known as COLDRIVER, attributed to Russia's Federal Security Service. The campaign employed personalized social engineering tactics to target civil society groups, NGOs, journalists, and gove…
phishing
javascript
pdf
2024-08-14
coldwastrel
captcha
Published: August 14, 2024
Downloadable IOCs: 28

Multiple Malware Dropped Through MSI Package

An analysis reveals the distribution of malware through an MSI package, specifically SectopRat and Redline stealer. The malware employs techniques like executing malicious scripts, disabling security measures, and establishing persistence through scheduled tasks. It communicates with command-and-co…
powershell
stealer
persistence
dropper
redline
c2
2024-08-14
sectoprat
Published: August 14, 2024
Downloadable IOCs: 11
Click here to see more Attack Reports

Vulnerabilities

CVE-2024-20082

9.8
    Modem
Published: August 14, 2024

CVE-2024-7731

9.8
    Dr.ID Access Control System from SECOM
Published: August 14, 2024

CVE-2024-7732

9.8
    Dr.ID Access Control System from SECOM
Published: August 14, 2024

CVE-2024-39397

9.0
    Adobe
  • Commerce
  • Magento
Published: August 14, 2024

CVE-2024-4389

8.8
    Slider and Carousel slider by Depicter plugin for WordPress
  • Version(s): up to 3.1.1
Published: August 14, 2024

CVE-2024-21807

8.8
    Linux kernel
  • Version(s): before version 28.3
Published: August 14, 2024

CVE-2024-21810

8.8
    Linux kernel
  • Version(s): < 28.3
Published: August 14, 2024

CVE-2024-23497

8.8
    Linux kernel
  • Version(s): before 28.3
    Intel(R) Ethernet Network Controllers and Adapters
  • Version(s): before 28.3
Published: August 14, 2024

CVE-2024-23981

8.8
    Linux kernel
  • Version(s): < 28.3
Published: August 14, 2024

CVE-2024-24986

8.8
    Linux kernel
  • Version(s): before 28.3
Published: August 14, 2024

CVE-2024-39401

8.4
    Adobe
  • Commerce
  • Magento
Published: August 14, 2024

CVE-2024-39402

8.4
    Adobe
  • Commerce
  • Magento
Published: August 14, 2024

CVE-2024-38652

8.2
    Ivanti Avalanche
  • Version(s): 6.3.1
Published: August 14, 2024

CVE-2024-38653

8.2
    Ivanti Avalanche
  • Version(s): 6.3.1
Published: August 14, 2024

CVE-2024-28947

8.2
    Intel Server Board S2600ST Family firmware
  • Version(s): before version 02.01.0017
Published: August 14, 2024

CVE-2024-39400

8.1
    Adobe
  • Commerce
  • Magento
Published: August 14, 2024

CVE-2024-25576

7.9
    Intel FPGA products
  • Version(s): before 24.1
Published: August 14, 2024

CVE-2024-38163

7.8
    Windows
Published: August 14, 2024

CVE-2024-41858

7.8
    InCopy
  • Version(s): 18.5.2, 19.4
Published: August 14, 2024

CVE-2024-41864

7.8
    Adobe
  • Substance 3d Designer
Published: August 14, 2024

CVE-2023-42667

7.8
    Intel Core Ultra Processor
Published: August 14, 2024

CVE-2023-49141

7.8
    Intel Processors
Published: August 14, 2024

CVE-2024-26022

7.8
    Intel UEFI Integrator Tools on Aptio V for Intel NUC
  • Version(s): UNKNOWN
Published: August 14, 2024

CVE-2024-20789

7.8
    Dimension
  • Version(s): 3.4.11 and earlier
Published: August 14, 2024

CVE-2024-34117

7.8
    Photoshop Desktop
  • Version(s): 24.7.3, 25.9.1 and earlier
Published: August 14, 2024

CVE-2024-34124

7.8
    Dimension
  • Version(s): 3.4.11 and earlier
Published: August 14, 2024

CVE-2024-34133

7.8
    Illustrator
  • Version(s): 28.5, 27.9.4 and earlier
Published: August 14, 2024

CVE-2024-39383

7.8
    Acrobat Reader
  • Version(s): 20.005.30636, 24.002.20965, 24.002.20964, 24.001.30123 and earlier
Published: August 14, 2024

CVE-2024-39386

7.8
    Bridge
  • Version(s): 13.0.8, 14.1.1 and earlier
Published: August 14, 2024

CVE-2024-39388

7.8
    Substance3D - Stager
  • Version(s): 3.0.2 and earlier
Published: August 14, 2024

CVE-2024-39389

7.8
    InDesign Desktop
  • Version(s): ID19.4, ID18.5.2 and earlier
Published: August 14, 2024

CVE-2024-39390

7.8
    InDesign Desktop
  • Version(s): ID19.4, ID18.5.2 and earlier
Published: August 14, 2024

CVE-2024-39391

7.8
    InDesign Desktop
  • Version(s): ID19.4, ID18.5.2 and earlier
Published: August 14, 2024

CVE-2024-39393

7.8
    InDesign Desktop
  • Version(s): ID19.4, ID18.5.2 and earlier
Published: August 14, 2024

CVE-2024-39394

7.8
    InDesign Desktop
  • Version(s): ID19.4, ID18.5.2 and earlier
Published: August 14, 2024

CVE-2024-39420

7.8
    Acrobat Reader
  • Version(s): 20.005.30636, 24.002.20965, 24.002.20964, 24.001.30123 and earlier
Published: August 14, 2024

CVE-2024-39422

7.8
    Acrobat Reader
  • Version(s): 20.005.30636, 24.002.20965, 24.002.20964, 24.001.30123 and earlier
Published: August 14, 2024

CVE-2024-39423

7.8
    Acrobat Reader
  • Version(s): 20.005.30636, 24.002.20965, 24.002.20964, 24.001.30123 and earlier
Published: August 14, 2024

CVE-2024-39424

7.8
    Acrobat Reader
  • Version(s): 20.005.30636, 24.002.20965, 24.002.20964, 24.001.30123 and earlier
Published: August 14, 2024

CVE-2024-39426

7.8
    Acrobat Reader
  • Version(s): 20.005.30636, 24.002.20965, 24.002.20964, 24.001.30123 and earlier
Published: August 14, 2024

CVE-2024-39399

7.7
    Adobe
  • Commerce
  • Magento
Published: August 14, 2024

CVE-2024-39406

7.7
    Adobe
  • Commerce
  • Magento
Published: August 14, 2024

CVE-2024-39403

7.6
    Adobe
  • Commerce
  • Magento
Published: August 14, 2024

CVE-2024-36136

7.5
    Ivanti Avalanche
  • Version(s): 6.3.1
Published: August 14, 2024

CVE-2024-37399

7.5
    Ivanti Avalanche
  • Version(s): 6.3.1
Published: August 14, 2024

CVE-2024-7729

7.5
    CAYIN Technology CMS
Published: August 14, 2024

CVE-2024-34163

7.5
    Intel NUC Firmware
Published: August 14, 2024

CVE-2024-39778

7.5
    BIG-IP system
Published: August 14, 2024

CVE-2024-39398

7.4
    Adobe
  • Commerce
  • Magento
Published: August 14, 2024

CVE-2024-37373

7.2
    Ivanti Avalanche
  • Version(s): 6.3.1
Published: August 14, 2024

CVE-2024-7728

7.2
    CAYIN Technology CMS
Published: August 14, 2024

CVE-2024-24853

7.2
    Intel Processor
Published: August 14, 2024

CVE-2024-21801

7.1
    Intel TDX module software
  • Version(s): before 1.5.05.46.698
Published: August 14, 2024

CVE-2024-39425

7.0
    Acrobat Reader
  • Version(s): 20.005.30636, 24.002.20965, 24.002.20964, 24.001.30123 and earlier
Published: August 14, 2024

CVE-2023-38655

6.8
    Intel AMT (Active Management Technology)
    Intel Standard Manageability
Published: August 14, 2024

CVE-2023-43747

6.7
    Intel Connectivity Performance Suite
  • Version(s): < 2.0
Published: August 14, 2024

CVE-2023-49144

6.7
    OpenBMC Firmware
  • Version(s): before egs-1.15-0, before bhs-0.27
Published: August 14, 2024

CVE-2024-21766

6.7
    Intel oneAPI Math Kernel Library
  • Version(s): before 2024.1
Published: August 14, 2024

CVE-2024-21769

6.7
    Intel Ethernet Connection I219-LM install software
Published: August 14, 2024

CVE-2024-21784

6.7
    Intel IPP Cryptography software
  • Version(s): before 2021.11
Published: August 14, 2024

CVE-2024-21857

6.7
    Intel oneAPI Compiler software
  • Version(s): before 2024.1
Published: August 14, 2024

CVE-2024-22184

6.7
    Intel Quartus Prime Pro Edition Design Software
  • Version(s): before 24.1
Published: August 14, 2024

CVE-2024-22376

6.7
    Intel Ethernet Adapter Driver Pack
  • Version(s): before version 28.3
Published: August 14, 2024

CVE-2024-22378

6.7
    Intel Unite(R) Client Extended Display Plugin
  • Version(s): before 1.1.352.157
Published: August 14, 2024

CVE-2024-23489

6.7
    Intel(R) VROC software
  • Version(s): before version 8.6.0.1191
Published: August 14, 2024

CVE-2024-23491

6.7
    Intel Distribution for GDB software
  • Version(s): before version 2024.0.1
Published: August 14, 2024

CVE-2024-23495

6.7
    Intel Distribution for GDB software
  • Version(s): before 2024.0.1
Published: August 14, 2024

CVE-2024-23907

6.7
    Intel High Level Synthesis Compiler software
  • Version(s): before 23.4
Published: August 14, 2024

CVE-2024-23908

6.7
    Intel FPGA software
  • Version(s): before v11.19.5.0
Published: August 14, 2024

CVE-2024-23909

6.7
    Intel FPGA SDK for OpenCL
  • Version(s): UNKNOWN
Published: August 14, 2024

CVE-2024-23974

6.7
    Intel ISH software
Published: August 14, 2024

CVE-2024-24977

6.7
    Intel License Manager for FLEXlm
  • Version(s): before 11.19.5.0
Published: August 14, 2024

CVE-2024-25561

6.7
    Intel(R) HID Event Filter software
  • Version(s): before 2.2.2.1
Published: August 14, 2024

CVE-2024-26025

6.7
    Intel Advisor
  • Version(s): before 2024.1
Published: August 14, 2024

CVE-2024-26027

6.7
    Intel Simics Package Manager software
  • Version(s): before 1.8.3
Published: August 14, 2024

CVE-2024-28046

6.7
    Intel GPA software
  • Version(s): before version 2024.1
Published: August 14, 2024

CVE-2024-28172

6.7
    Intel Trace Analyzer and Collector software
  • Version(s): before 2022.1
Published: August 14, 2024

CVE-2024-28876

6.7
    Intel(R) MPI Library software
  • Version(s): before version 2021.12
Published: August 14, 2024

CVE-2024-28887

6.7
    Intel IPP software
  • Version(s): before 2021.11
Published: August 14, 2024

CVE-2024-28953

6.7
    EMON software
  • Version(s): before 11.44
Published: August 14, 2024

CVE-2024-29015

6.7
    Intel VTune Profiler software
  • Version(s): before 2024.1
Published: August 14, 2024

CVE-2024-22374

6.5
    Intel Xeon Processors
Published: August 14, 2024

CVE-2024-23499

6.5
    Linux kernel
  • Version(s): before 28.3
    Intel(R) Ethernet Network Controllers and Adapters E810 Series
  • Version(s): before 28.3
Published: August 14, 2024

CVE-2024-24580

6.5
    Intel Data Center GPU Max Series 1100
    Intel Data Center GPU Max Series 1550
Published: August 14, 2024

CVE-2024-24983

6.5
    Intel Ethernet Network Controllers and Adapters E810 Series
  • Version(s): before 4.4
Published: August 14, 2024

CVE-2024-7790

6.5
    DevikaAI
  • Version(s): commit 6acce21fb08c3d1123ef05df6a33912bf0ee77c2 onwards
Published: August 14, 2024

CVE-2024-25157

6.5
    GoAnywhere MFT
  • Version(s): before 7.6.0
Published: August 14, 2024

CVE-2024-7588

6.4
    Gutenberg Blocks, Page Builder - ComboBlocks plugin for WordPress
  • Version(s): up to 2.2.87
Published: August 14, 2024

CVE-2024-6532

6.4
    Sheet to Table Live Sync for Google Sheet plugin for WordPress
  • Version(s): up to 1.0.1
Published: August 14, 2024

CVE-2024-21787

6.4
    UNKNOWN
Published: August 14, 2024

CVE-2024-7754

6.3
    SourceCodester Clinics Patient Management System
  • Version(s): 1.0
Published: August 14, 2024

CVE-2024-39408

6.3
    Adobe
  • Commerce
  • Magento
Published: August 14, 2024

CVE-2024-39409

6.3
    Adobe
  • Commerce
  • Magento
Published: August 14, 2024

CVE-2024-24980

6.1
    Intel Xeon Processors
  • Version(s): 3rd Generation, 4th Generation, 5th Generation
Published: August 14, 2024

CVE-2024-34134

6.1
    Illustrator
  • Version(s): 27.9.4 and earlier, 28.5
Published: August 14, 2024

CVE-2024-25939

6.0
    3rd Generation Intel(R) Xeon(R) Scalable Processors
Published: August 14, 2024

CVE-2024-39283

6.0
    Intel TDX module software
  • Version(s): before TDX_1.5.01.00.592
Published: August 14, 2024

CVE-2024-38483

5.8
    Dell BIOS
Published: August 14, 2024

CVE-2024-25562

5.8
    Intel Distribution for GDB software
  • Version(s): before 2024.0.1
Published: August 14, 2024

CVE-2023-40067

5.7
    Intel CSME firmware
Published: August 14, 2024

CVE-2024-27461

5.6
    Intel(R) MAS (GUI)
Published: August 14, 2024

CVE-2024-41860

5.5
    Adobe
  • Substance 3d Sampler
Published: August 14, 2024

CVE-2024-41861

5.5
    Adobe
  • Substance 3d Sampler
Published: August 14, 2024

CVE-2024-41862

5.5
    Adobe
  • Substance 3d Sampler
Published: August 14, 2024

CVE-2024-41863

5.5
    Adobe
  • Substance 3d Sampler
Published: August 14, 2024

CVE-2024-39410

5.5
    Adobe
  • Commerce
  • Magento
Published: August 14, 2024

CVE-2023-43489

5.5
    Intel CIP software
  • Version(s): before 2.4.10717
Published: August 14, 2024

CVE-2024-21806

5.5
    Linux kernel
  • Version(s): before version 28.3
    Intel(R) Ethernet Network Controllers and Adapters E810 Series
  • Version(s): before version 28.3
Published: August 14, 2024

CVE-2024-20790

5.5
    Dimension
  • Version(s): 3.4.11 and earlier
Published: August 14, 2024

CVE-2024-34118

5.5
    Adobe Illustrator
  • Version(s): 28.5, 27.9.4 and earlier
Published: August 14, 2024

CVE-2024-34125

5.5
    Dimension
  • Version(s): 3.4.11, earlier
Published: August 14, 2024

CVE-2024-34126

5.5
    Dimension
  • Version(s): 3.4.11, before 3.4.12
Published: August 14, 2024

CVE-2024-34127

5.5
    InDesign Desktop
  • Version(s): ID19.4, ID18.5.2 and earlier
Published: August 14, 2024

CVE-2024-34135

5.5
    Illustrator
  • Version(s): 28.5, 27.9.4 and earlier
Published: August 14, 2024

CVE-2024-34136

5.5
    Illustrator
  • Version(s): 28.5, 27.9.4 and earlier
Published: August 14, 2024

CVE-2024-34137

5.5
    Illustrator
  • Version(s): 28.5, 27.9.4 and earlier
Published: August 14, 2024

CVE-2024-34138

5.5
    Illustrator
  • Version(s): 28.5, 27.9.4 and earlier
Published: August 14, 2024

CVE-2024-39387

5.5
    Bridge
  • Version(s): 13.0.8, 14.1.1 and earlier
Published: August 14, 2024

CVE-2024-39395

5.5
    InDesign Desktop
  • Version(s): ID19.4, ID18.5.2 and earlier
Published: August 14, 2024

CVE-2024-39418

5.4
    Adobe
  • Commerce
  • Magento
Published: August 14, 2024

CVE-2024-7753

5.3
    SourceCodester Clinics Patient Management System
  • Version(s): 1.0
Published: August 14, 2024

CVE-2024-37028

5.3
    BIG-IP Next Central Manager
Published: August 14, 2024

CVE-2024-28050

5.0
    Intel Arc & Iris Xe Graphics software
  • Version(s): before 31.0.101.4824
Published: August 14, 2024

CVE-2023-34424

4.4
    Intel CSME firmware
Published: August 14, 2024

CVE-2024-39404

4.3
    Adobe
  • Commerce
  • Magento
Published: August 14, 2024

CVE-2024-39405

4.3
    Adobe
  • Commerce
  • Magento
Published: August 14, 2024

CVE-2024-39407

4.3
    Adobe
  • Commerce
  • Magento
Published: August 14, 2024

CVE-2024-39411

4.3
    Adobe
  • Commerce
  • Magento
Published: August 14, 2024

CVE-2024-39412

4.3
    Adobe
  • Commerce
  • Magento
Published: August 14, 2024

CVE-2024-39413

4.3
    Adobe
  • Commerce
  • Magento
Published: August 14, 2024

CVE-2024-39414

4.3
    Adobe
  • Commerce
  • Magento
Published: August 14, 2024

CVE-2024-39415

4.3
    Adobe
  • Commerce
  • Magento
Published: August 14, 2024

CVE-2024-39416

4.3
    Adobe
  • Commerce
  • Magento
Published: August 14, 2024

CVE-2024-39417

4.3
    Adobe
  • Commerce
  • Magento
Published: August 14, 2024

CVE-2024-39419

4.3
    Adobe
  • Commerce
  • Magento
Published: August 14, 2024

CVE-2023-35123

4.3
    OpenBMC Firmware
  • Version(s): before egs-1.14-0, before bhs-0.27
Published: August 14, 2024

CVE-2024-21844

4.3
    Intel CSME firmware
Published: August 14, 2024

CVE-2024-7752

3.5
    SourceCodester Clinics Patient Management System
  • Version(s): 1.0
Published: August 14, 2024

CVE-2023-48361

2.3
    Intel CSME Firmware
Published: August 14, 2024

CVE-2024-24973

2.2
    Intel Distribution for GDB
  • Version(s): before 2024.0.1
Published: August 14, 2024

CVE-2024-20083

None
    venc
Published: August 14, 2024
Click here to see more Vulnerabilities