Tag: 2024-08-21

4 Attack Reports | 186 Vulnerabilities

Attack reports

Be careful what you wish for – Phishing in PWA applications

ESET analysts dissected a novel phishing method tailored to Android and iOS users, combining standard phishing delivery techniques with a novel approach of targeting mobile users via Progressive Web Applications (PWAs) and WebAPKs. Insidiously, installing these phishing PWAs and WebAPKs does not tr…
android
2024-08-21
Published: August 21, 2024
Downloadable IOCs: 8

Profiling and Detecting Malicious DNS Traffic

To improve our detection of suspicious network activity, we developed a deep learning method to profile and detect malicious DNS traffic patterns. Based on these DNS profiles, we implemented multiple detection modules designed to identify suspicious domains from different perspectives. We explored …
dns
2024-08-21
Published: August 21, 2024
Downloadable IOCs: 5

MoonPeak malware unveils new details on attacker infrastructure

Cisco Talos has uncovered a campaign employing a new malware family called 'MoonPeak,' a remote access trojan actively developed by a North Korean advanced persistent threat group tracked as 'UAT-5394.' The analysis reveals the evolution of MoonPeak from an open-source malware called XenoRAT, with …
north korea
xenorat
2024-08-21
quasarrat
moonpeak
Published: August 21, 2024
Downloadable IOCs: 42

GreenCharlie Infrastructure Linked to US Political Campaign Targeting

An analysis by Insikt Group revealed a significant surge in cyber threat activities from GreenCharlie, an Iran-linked group associated with Mint Sandstorm, Charming Kitten, and APT42. The group persistently targets US political and governmental entities through sophisticated phishing operations inv…
malware
apt
espionage
phishing
iran
2024-08-21
powerstar
gorble
Published: August 21, 2024
Downloadable IOCs: 111
Click here to see more Attack Reports

Vulnerabilities

CVE-2024-7854

9.8
    Sjhoo
  • Woo Inquiry
Published: August 21, 2024

CVE-2024-5335

9.8
    Ultimate Store Kit Elementor Addons
Published: August 21, 2024

CVE-2024-28000

9.8
    LiteSpeed Cache
Published: August 21, 2024

CVE-2024-40453

9.8
    Squirrelly
  • Squirrelly
Published: August 21, 2024

CVE-2024-42777

9.8
    Lopalopa
  • Music Management System
Published: August 21, 2024

CVE-2024-42781

9.8
    Lopalopa
  • Music Management System
Published: August 21, 2024

CVE-2024-42782

9.8
    Lopalopa
  • Music Management System
Published: August 21, 2024

CVE-2024-42783

9.8
    Lopalopa
  • Music Management System
Published: August 21, 2024

CVE-2024-42784

9.8
    Lopalopa
  • Music Management System
Published: August 21, 2024

CVE-2024-28987

9.1
    SolarWinds Web Help Desk
Published: August 21, 2024

CVE-2024-6813

8.8
    Netgear
  • Prosafe Network Management System
Published: August 21, 2024

CVE-2024-6814

8.8
    Netgear
  • Prosafe Network Management System
Published: August 21, 2024

CVE-2024-7795

8.8
    Autel
  • Maxicharger Ac Elite Business C50 Firmware
  • Maxicharger Ac Elite Business C50
Published: August 21, 2024

CVE-2024-5723

8.8
    Centreon
Published: August 21, 2024

CVE-2024-5725

8.8
    Centreon
Published: August 21, 2024

CVE-2024-42778

8.8
    Lopalopa
  • Music Management System
Published: August 21, 2024

CVE-2024-42779

8.8
    Lopalopa
  • Music Management System
Published: August 21, 2024

CVE-2024-42780

8.8
    Lopalopa
  • Music Management System
Published: August 21, 2024

CVE-2024-42785

8.8
    Lopalopa
  • Music Management System
Published: August 21, 2024

CVE-2024-42786

8.8
    Lopalopa
  • Music Management System
Published: August 21, 2024

CVE-2024-6386

8.8
    Wpml
  • Wpml
Published: August 21, 2024

CVE-2024-7964

8.8
    Google
  • Chrome
  • Android
Published: August 21, 2024

CVE-2024-7965

8.8
    Google
  • Chrome
    Microsoft
Published: August 21, 2024

CVE-2024-7966

8.8
    Google
  • Chrome
Published: August 21, 2024

CVE-2024-7967

8.8
    Google
  • Chrome
Published: August 21, 2024

CVE-2024-7968

8.8
    Google
  • Chrome
Published: August 21, 2024

CVE-2024-7969

8.8
    Google
  • Chrome
Published: August 21, 2024

CVE-2024-7971

8.8
    Google
  • Chrome
Published: August 21, 2024

CVE-2024-7972

8.8
    Google
  • Chrome
Published: August 21, 2024

CVE-2024-7973

8.8
    Google
  • Chrome
Published: August 21, 2024

CVE-2024-7974

8.8
    Google
  • Chrome
Published: August 21, 2024

CVE-2024-20375

8.6
    Cisco Unified Communications Manager
    Cisco Unified Communications Manager Session Management Edition
Published: August 21, 2024

CVE-2024-8007

8.1
    Redhat
  • Openstack Platform
Published: August 21, 2024

CVE-2024-39344

8.1
    Docusign API package for Salesforce
Published: August 21, 2024

CVE-2024-7600

8.1
    Logsign
  • Unified Secops Platform
Published: August 21, 2024

CVE-2024-7601

8.1
    Logsign
  • Unified Secops Platform
Published: August 21, 2024

CVE-2024-7603

8.1
    Logsign
  • Unified Secops Platform
Published: August 21, 2024

CVE-2024-5762

8.1
    Zen-Cart
  • Zen Cart
Published: August 21, 2024

CVE-2024-6508

8.0
    Openshift Console
Published: August 21, 2024

CVE-2024-43027

8.0
    DrayTek Vigor 3900
    DrayTek Vigor 2960
    DrayTek Vigor 300B
Published: August 21, 2024

CVE-2024-7448

8.0
    Magnetforensics
  • Axiom
Published: August 21, 2024

CVE-2024-43873

7.8
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2024-7013

7.8
    Control FPWIN Pro
Published: August 21, 2024

CVE-2022-48867

7.8
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2022-48873

7.8
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2022-48874

7.8
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2022-48878

7.8
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2022-48892

7.8
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2023-52906

7.8
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2023-22576

7.8
    Dell
  • Repository Manager
Published: August 21, 2024

CVE-2024-37008

7.8
    Autodesk
  • Revit
Published: August 21, 2024

CVE-2020-11847

7.8
    Microfocus
  • Netiq Privileged Access Manager
Published: August 21, 2024

CVE-2024-6811

7.8
    Irfanview
  • Irfanview
  • Wsq
Published: August 21, 2024

CVE-2024-6812

7.8
    Irfanview
  • Irfanview
  • Wsq
Published: August 21, 2024

CVE-2024-7604

7.8
    Logsign
  • Unified Secops Platform
Published: August 21, 2024

CVE-2024-7723

7.8
    Foxit PDF Reader
Published: August 21, 2024

CVE-2024-7724

7.8
    Foxit PDF Reader
Published: August 21, 2024

CVE-2024-7725

7.8
    Foxit PDF Reader
Published: August 21, 2024

CVE-2024-33656

7.8
    Unknown
Published: August 21, 2024

CVE-2024-33657

7.8
    UNKNOWN
Published: August 21, 2024

CVE-2024-5928

7.8
    Vipre
  • Advanced Security
Published: August 21, 2024

CVE-2024-5929

7.8
    Vipre
  • Advanced Security
Published: August 21, 2024

CVE-2024-5930

7.8
    Vipre
  • Advanced Security
Published: August 21, 2024

CVE-2024-6141

7.8
    Windscribe
  • Windscribe
Published: August 21, 2024

CVE-2024-7977

7.8
    Google
  • Chrome
    Microsoft
Published: August 21, 2024

CVE-2024-7979

7.8
    Google
  • Chrome
    Microsoft
Published: August 21, 2024

CVE-2024-7980

7.8
    Google
  • Chrome
    Microsoft
Published: August 21, 2024

CVE-2024-7651

7.5
    Appcheap
  • App Builder
Published: August 21, 2024

CVE-2023-49198

7.5
    Apache
  • Seatunnel
Published: August 21, 2024

CVE-2020-11846

7.5
    Microfocus
  • Netiq Privileged Access Manager
Published: August 21, 2024

CVE-2024-7885

7.5
    Redhat
  • Build Of Apache Camel - Hawtio
  • Build Of Apache Camel For Spring Boot
  • Build Of Keycloak
  • Data Grid
  • Integration Camel K
  • Jboss Enterprise Application Platform
  • Jboss Fuse
  • Process Automation
  • Single Sign-On
Published: August 21, 2024

CVE-2024-43410

7.5
    Russh
Published: August 21, 2024

CVE-2024-43022

7.5
    TOSEI online store management system
Published: August 21, 2024

CVE-2023-29929

7.5
    Kemptechnologies Loadmaster
Published: August 21, 2024

CVE-2024-38305

7.3
    Dell SupportAssist for Home PCs Installer exe
Published: August 21, 2024

CVE-2024-7134

7.2
    LiquidPoll - Polls, Surveys, NPS and Feedback Reviews plugin for WordPress
Published: August 21, 2024

CVE-2022-48871

7.1
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2022-48881

7.1
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2024-21690

7.1
    UNKNOWN
    Confluence Data Center and Server
Published: August 21, 2024

CVE-2024-43882

7.0
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2022-48872

7.0
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2024-7032

6.5
    Zaytech
  • Smart Online Order For Clover
Published: August 21, 2024

CVE-2024-43371

6.5
    Okfn
  • Ckan
Published: August 21, 2024

CVE-2024-7602

6.5
    Logsign
  • Unified Secops Platform
Published: August 21, 2024

CVE-2024-20417

6.5
    Cisco Identity Services Engine (ISE)
Published: August 21, 2024

CVE-2024-20466

6.5
    Cisco Identity Services Engine (ISE)
Published: August 21, 2024

CVE-2024-20486

6.5
    Cisco Identity Services Engine (ISE)
Published: August 21, 2024

CVE-2024-8023

6.3
    SpringBlade
Published: August 21, 2024

CVE-2024-7090

6.1
    LH Add Media From Url plugin for WordPress
Published: August 21, 2024

CVE-2024-7647

6.1
    Otasync
  • Ota Sync Booking Engine Widget
Published: August 21, 2024

CVE-2024-6339

6.1
    Averta
  • Phlox
Published: August 21, 2024

CVE-2020-11850

6.1
    Microfocus
  • Netiq Self Service Password Reset
Published: August 21, 2024

CVE-2024-41675

6.1
    Okfn
  • Ckan
Published: August 21, 2024

CVE-2024-43407

6.1
    Ckeditor
  • Ckeditor
Published: August 21, 2024

CVE-2024-41937

6.1
    Apache
  • Airflow
Published: August 21, 2024

CVE-2024-20488

6.1
    Cisco
  • Unified Communications Manager
Published: August 21, 2024

CVE-2024-41572

6.1
    Lang-Learn-Guy
  • Learning With Texts
Published: August 21, 2024

CVE-2024-43862

5.5
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2024-43863

5.5
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2024-43871

5.5
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2024-43872

5.5
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2024-43874

5.5
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2024-6767

5.5
    WordSurvey plugin for WordPress
Published: August 21, 2024

CVE-2022-48868

5.5
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2022-48870

5.5
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2022-48875

5.5
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2022-48876

5.5
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2022-48877

5.5
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2022-48879

5.5
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2022-48882

5.5
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2022-48885

5.5
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2022-48886

5.5
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2022-48887

5.5
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2022-48888

5.5
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2022-48889

5.5
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2022-48890

5.5
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2022-48891

5.5
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2022-48893

5.5
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2022-48894

5.5
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2022-48895

5.5
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2022-48896

5.5
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2022-48897

5.5
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2023-52893

5.5
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2023-52894

5.5
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2023-52895

5.5
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2023-52899

5.5
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2023-52900

5.5
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2023-52901

5.5
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2023-52902

5.5
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2023-52903

5.5
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2023-52904

5.5
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2023-52905

5.5
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2023-52907

5.5
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2023-52908

5.5
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2023-52910

5.5
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2023-52911

5.5
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2023-52912

5.5
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2023-52913

5.5
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2023-52914

5.5
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2024-42939

5.4
    Yzncms
  • Yzncms
Published: August 21, 2024

CVE-2024-7629

5.4
    Kirstyburgoine
  • Responsive Video
Published: August 21, 2024

CVE-2024-6568

5.3
    WordPress Flamix: Bitrix24 and Contact Form 7 integrations plugin
Published: August 21, 2024

CVE-2024-7390

5.3
    Starkdigital
  • Wp Testimonial Widget
Published: August 21, 2024

CVE-2024-41674

5.3
    Okfn
  • Ckan
Published: August 21, 2024

CVE-2022-48869

4.7
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2022-48898

4.7
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2022-48899

4.7
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2023-52896

4.7
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2023-52897

4.7
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2023-52898

4.7
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2023-52909

4.7
    Linux
  • Linux Kernel
Published: August 21, 2024

CVE-2024-5880

4.3
    Hide My Site plugin for WordPress
Published: August 21, 2024

CVE-2024-6883

4.3
    Event Espresso 4 Decaf - Event Registration Event Ticketing plugin for WordPress
Published: August 21, 2024

CVE-2024-7030

4.3
    Zaytech
  • Smart Online Order For Clover
Published: August 21, 2024

CVE-2024-7975

4.3
    Google
  • Chrome
Published: August 21, 2024

CVE-2024-7976

4.3
    Google
  • Chrome
Published: August 21, 2024

CVE-2024-7978

4.3
    Google
  • Chrome
Published: August 21, 2024

CVE-2024-7981

4.3
    Google
  • Chrome
Published: August 21, 2024

CVE-2024-8033

4.3
    Google
  • Chrome
    Microsoft
Published: August 21, 2024

CVE-2024-8034

4.3
    Google
  • Chrome
  • Android
Published: August 21, 2024

CVE-2024-8035

4.3
    Google
  • Chrome
    Microsoft
Published: August 21, 2024

CVE-2024-8022

3.5
    Genexis Tilgin Home Gateway
Published: August 21, 2024

CVE-2024-7722

3.3
    Foxit PDF Reader
Published: August 21, 2024

CVE-2024-43411

3.1
    CKEditor 4
Published: August 21, 2024

CVE-2024-7998

2.6
    Octopus Server
Published: August 21, 2024

CVE-2024-43864

None
    Linux Kernel
Published: August 21, 2024

CVE-2024-43865

None
    Linux kernel
Published: August 21, 2024

CVE-2024-43866

None
    Linux kernel
Published: August 21, 2024

CVE-2024-43867

None
    Linux kernel
Published: August 21, 2024

CVE-2024-43868

None
    Linux Kernel
Published: August 21, 2024

CVE-2024-43869

None
    Linux Kernel
Published: August 21, 2024

CVE-2024-43870

None
    Linux Kernel
Published: August 21, 2024

CVE-2024-43875

None
    Linux kernel
Published: August 21, 2024

CVE-2024-43876

None
    Linux kernel
Published: August 21, 2024

CVE-2024-43877

None
    Linux kernel
Published: August 21, 2024

CVE-2024-43878

None
    Linux Kernel
Published: August 21, 2024

CVE-2024-43879

None
    Linux kernel
Published: August 21, 2024

CVE-2024-43880

None
    Linux kernel
Published: August 21, 2024

CVE-2024-43881

None
    Linux kernel
Published: August 21, 2024

CVE-2022-48880

None
    Linux kernel
Published: August 21, 2024

CVE-2022-48883

None
    Linux Kernel
Published: August 21, 2024

CVE-2022-48884

None
    Linux kernel
Published: August 21, 2024

CVE-2024-7757

None
    UNKNOWN
Published: August 21, 2024

CVE-2022-26327

None
    OpenText Performance Center
Published: August 21, 2024

CVE-2022-26328

None
    OpenText Performance Center
Published: August 21, 2024

CVE-2024-42550

None
    Mini Inventory and Sales Management System
Published: August 21, 2024
Click here to see more Vulnerabilities