SecuriTricks - 2024-08-23

Attack Reports

Title	Published	Tags	Description	Number of indicators
BORN Group Supply Chain Breach: In-Depth Analysis of Jenkins Exploitation	Aug. 23, 2024, 12:23 p.m.	supply chain github 2024-08-23	This analysis examines a substantial supply chain assault on the IT service provider BORN Group. The cybercriminal Intelbroker le…	5
Threat Tracking: Analysis of Lilith RAT ported to AutoIt Script	Aug. 23, 2024, 9:41 a.m.	obfuscation rat autoit downloader 2024-08-23 lilith konni lilith rat	In April 2024, S2W's Threat Research and Intelligence Center TALON analyzed a malicious LNK file disguised as a list of tax evasi…	33
Unveiling sedexp: A Stealthy Linux Malware Exploiting udev Rules	Aug. 23, 2024, 9:39 a.m.	linux evasion persistence 2024-08-23 reverse shell sedexp concealment	Stroz Friedberg discovered sedexp, a stealthy Linux malware that utilizes udev rules to achieve persistence and evade detection. …	3
How Managed Detection and Response Pressed Pause on a Play Ransomware Attack	Aug. 23, 2024, 9:37 a.m.	ransomware incident response cybersecurity threat analysis 2024-08-23 systembc grixba malware campaign	This report details how Trend Micro's Managed Detection and Response (MDR) service successfully thwarted a sophisticated ransomwa…	1
From the Depths: Analyzing the Cthulhu Stealer Malware for macOS	Aug. 23, 2024, 9:17 a.m.	cryptocurrency stealer macos golang atomic stealer 2024-08-23 maas cthulhu stealer	This report analyzes Cthulhu Stealer, a malware-as-a-service targeting macOS users to steal credentials and cryptocurrency wallet…	9
Decoding the Stealthy Memory-Only Malware	Aug. 23, 2024, 9:11 a.m.	malware obfuscation powershell infostealer cryptbot javascript 2024-08-23 lummac.v2 shadowladder	This intelligence report provides an in-depth analysis of a complex, multi-stage malware campaign called PEAKLIGHT. It details th…	23
Hundreds of online stores hacked in new campaign	Aug. 23, 2024, 9:06 a.m.	injection fraud 2024-08-23 magento skimming payment e-commerce	A cybersecurity report details a malware campaign targeting numerous e-commerce websites running the popular Magento platform. Th…	15
Report on Ukraine government attack campaign	Aug. 23, 2024, 8:56 a.m.	malware powershell data theft ukraine exfiltration government spectr 2024-08-23 firmachagent	Ukraine's government cybersecurity incident response team, CERT-UA, obtained information about the distribution of emails themed …	33

» Click here to see all Attack Reports «

Vulnerabilities

CVE	CVSS	Published	Product impacted	Tags
CVE-2024-42765	9.8	Aug. 23, 2024, 3:15 p.m.	Kashipara Bus Ticket Reservation System	cve@mitre.org CWE-89 2024-08-23 CVE-2024-42765
CVE-2024-42531	9.8	Aug. 23, 2024, 5:15 p.m.	Ezviz Internet PT Camera CS-CV246	cve@mitre.org CWE-20 2024-08-23 CVE-2024-42531
CVE-2024-7954	9.8	Aug. 23, 2024, 6:15 p.m.	SPIP	CWE-284 disclosure@vulncheck.com 2024-08-23 CVE-2024-7954
CVE-2024-42764	9.4	Aug. 23, 2024, 3:15 p.m.	Kashipara Bus Ticket Reservation System	cve@mitre.org CWE-352 2024-08-23 CVE-2024-42764
CVE-2024-33852	9.1	Aug. 23, 2024, 5:15 p.m.	Centreon Web	cve@mitre.org CWE-89 2024-08-23 CVE-2024-33852
CVE-2024-33853	9.1	Aug. 23, 2024, 5:15 p.m.	Centreon Web	cve@mitre.org CWE-89 2024-08-23 CVE-2024-33853
CVE-2024-7559	8.8	Aug. 23, 2024, 3:15 a.m.	WordPress File Manager Pro plugin	security@wordfence.com CWE-94 2024-08-23 CVE-2024-7559
CVE-2024-7258	8.8	Aug. 23, 2024, 5:15 a.m.	WooCommerce Google Feed Manager plugin for WordPress	security@wordfence.com CWE-862 2024-08-23 CVE-2024-7258
CVE-2024-5466	8.8	Aug. 23, 2024, 2:15 p.m.	UNKNOWN	CWE-94 0fc0942c-577d-436f-ae8e-945763c79b02 2024-08-23 CVE-2024-5466
CVE-2024-44381	8.8	Aug. 23, 2024, 4:15 p.m.	D-Link DI_8004W	cve@mitre.org CWE-77 2024-08-23 CVE-2024-44381
CVE-2024-44382	8.8	Aug. 23, 2024, 4:15 p.m.	D-Link DI_8004W	cve@mitre.org CWE-77 2024-08-23 CVE-2024-44382
CVE-2024-39841	8.8	Aug. 23, 2024, 5:15 p.m.	Centreon Web	cve@mitre.org CWE-89 2024-08-23 CVE-2024-39841
CVE-2024-36514	8.3	Aug. 23, 2024, 2:15 p.m.	ManageEngine ADAudit Plus	CWE-89 0fc0942c-577d-436f-ae8e-945763c79b02 2024-08-23 CVE-2024-36514
CVE-2024-36515	8.3	Aug. 23, 2024, 2:15 p.m.	ManageEngine ADAudit Plus	CWE-89 0fc0942c-577d-436f-ae8e-945763c79b02 2024-08-23 CVE-2024-36515
CVE-2024-36516	8.3	Aug. 23, 2024, 2:15 p.m.	Zohocorp ManageEngine ADAudit Plus	CWE-89 0fc0942c-577d-436f-ae8e-945763c79b02 2024-08-23 CVE-2024-36516
CVE-2024-36517	8.3	Aug. 23, 2024, 2:15 p.m.	ManageEngine ADAudit Plus	CWE-89 0fc0942c-577d-436f-ae8e-945763c79b02 2024-08-23 CVE-2024-36517
CVE-2024-5467	8.3	Aug. 23, 2024, 2:15 p.m.	Zohocorp ManageEngine ADAudit Plus	CWE-89 0fc0942c-577d-436f-ae8e-945763c79b02 2024-08-23 CVE-2024-5467
CVE-2024-5490	8.3	Aug. 23, 2024, 2:15 p.m.	ManageEngine ADAudit Plus	CWE-89 0fc0942c-577d-436f-ae8e-945763c79b02 2024-08-23 CVE-2024-5490
CVE-2024-5556	8.3	Aug. 23, 2024, 2:15 p.m.	Zohocorp ManageEngine ADAudit Plus	CWE-89 0fc0942c-577d-436f-ae8e-945763c79b02 2024-08-23 CVE-2024-5556
CVE-2024-5586	8.3	Aug. 23, 2024, 2:15 p.m.	ManageEngine ADAudit Plus	CWE-89 0fc0942c-577d-436f-ae8e-945763c79b02 2024-08-23 CVE-2024-5586
CVE-2024-37311	8.2	Aug. 23, 2024, 3:15 p.m.	Collabora Online	security-advisories@github.com CWE-295 2024-08-23 CVE-2024-37311
CVE-2024-42915	8.0	Aug. 23, 2024, 3:15 p.m.	Staff Appraisal System	cve@mitre.org CWE-640 2024-08-23 CVE-2024-42915
CVE-2024-44390	8.0	Aug. 23, 2024, 5:15 p.m.	Tenda FH1206	cve@mitre.org CWE-121 2024-08-23 CVE-2024-44390
CVE-2024-43791	7.8	Aug. 23, 2024, 3:15 p.m.	RequestStore	security-advisories@github.com CWE-276 2024-08-23 CVE-2024-43791
CVE-2024-43782	7.7	Aug. 23, 2024, 3:15 p.m.	Open edX	security-advisories@github.com CWE-74 2024-08-23 CVE-2024-43782
CVE-2024-43477	7.5	Aug. 23, 2024, 2:15 a.m.	Microsoft Decentralized Identity Services	CWE-284 secure@microsoft.com 2024-08-23 CVE-2024-43477
CVE-2024-42992	7.5	Aug. 23, 2024, 6:15 p.m.	Python Pip Pandas	cve@mitre.org CWE-22 2024-08-23 CVE-2024-42992
CVE-2024-44386	7.3	Aug. 23, 2024, 4:15 p.m.	Tenda FH1206	cve@mitre.org CWE-121 2024-08-23 CVE-2024-44386
CVE-2024-42523	7.2	Aug. 23, 2024, 4:15 p.m.	publiccms	cve@mitre.org CWE-434 2024-08-23 CVE-2024-42523
CVE-2024-42636	7.2	Aug. 23, 2024, 4:15 p.m.	DedeCMS	cve@mitre.org CWE-77 2024-08-23 CVE-2024-42636
CVE-2024-45187	7.1	Aug. 23, 2024, 7:15 p.m.	Mage AI framework	reefs@jfrog.com CWE-266 2024-08-23 CVE-2024-45187
CVE-2024-42364	6.5	Aug. 23, 2024, 4:15 p.m.	Homepage	security-advisories@github.com CWE-350 2024-08-23 CVE-2024-42364
CVE-2024-44387	6.5	Aug. 23, 2024, 5:15 p.m.	Tenda FH1206	cve@mitre.org CWE-121 2024-08-23 CVE-2024-44387
CVE-2024-45188	6.5	Aug. 23, 2024, 8:15 p.m.	Mage AI	reefs@jfrog.com 2024-08-23 CVE-2024-45188
CVE-2024-45189	6.5	Aug. 23, 2024, 8:15 p.m.	Mage AI	reefs@jfrog.com 2024-08-23 CVE-2024-45189
CVE-2024-45190	6.5	Aug. 23, 2024, 8:15 p.m.	UNKNOWN	reefs@jfrog.com CWE-35 2024-08-23 CVE-2024-45190
CVE-2024-5502	6.4	Aug. 23, 2024, 9:15 a.m.	Piotnet Addons For Elementor plugin for WordPress	CWE-79 security@wordfence.com 2024-08-23 CVE-2024-5502
CVE-2024-8089	6.3	Aug. 23, 2024, 12:15 a.m.	SourceCodester E-Commerce System	CWE-434 cna@vuldb.com 2024-08-23 CVE-2024-8089
CVE-2024-38807	6.3	Aug. 23, 2024, 9:15 a.m.	Spring Boot Loader	security@vmware.com 2024-08-23 CVE-2024-38807
CVE-2024-38869	6.3	Aug. 23, 2024, 3:15 p.m.	Zohocorp ManageEngine ServiceDesk Plus	CWE-79 0fc0942c-577d-436f-ae8e-945763c79b02 2024-08-23 CVE-2024-38869
CVE-2024-41150	6.3	Aug. 23, 2024, 3:15 p.m.	Zohocorp ManageEngine ServiceDesk Plus	CWE-79 0fc0942c-577d-436f-ae8e-945763c79b02 2024-08-23 CVE-2024-41150
CVE-2024-43794	6.1	Aug. 23, 2024, 5:15 p.m.	OpenSearch Dashboards	security-advisories@github.com CWE-601 2024-08-23 CVE-2024-43794
CVE-2024-42852	6.1	Aug. 23, 2024, 6:15 p.m.	AcuToWeb server	cve@mitre.org CWE-79 2024-08-23 CVE-2024-42852
CVE-2024-41841	5.4	Aug. 23, 2024, 5:15 p.m.	Adobe Experience Manager	CWE-79 psirt@adobe.com 2024-08-23 CVE-2024-41841
CVE-2024-41843	5.4	Aug. 23, 2024, 5:15 p.m.	Adobe Experience Manager	CWE-79 psirt@adobe.com 2024-08-23 CVE-2024-41843
CVE-2024-41844	5.4	Aug. 23, 2024, 5:15 p.m.	Adobe Experience Manager	CWE-79 psirt@adobe.com 2024-08-23 CVE-2024-41844
CVE-2024-41845	5.4	Aug. 23, 2024, 5:15 p.m.	Adobe Experience Manager	CWE-79 psirt@adobe.com 2024-08-23 CVE-2024-41845
CVE-2024-41846	5.4	Aug. 23, 2024, 5:15 p.m.	Adobe Experience Manager	CWE-79 psirt@adobe.com 2024-08-23 CVE-2024-41846
CVE-2024-41847	5.4	Aug. 23, 2024, 5:15 p.m.	Adobe Experience Manager	CWE-79 psirt@adobe.com 2024-08-23 CVE-2024-41847
CVE-2024-41848	5.4	Aug. 23, 2024, 5:15 p.m.	Adobe Experience Manager	CWE-79 psirt@adobe.com 2024-08-23 CVE-2024-41848
CVE-2024-41875	5.4	Aug. 23, 2024, 5:15 p.m.	Adobe Experience Manager	CWE-79 psirt@adobe.com 2024-08-23 CVE-2024-41875
CVE-2024-41876	5.4	Aug. 23, 2024, 5:15 p.m.	Adobe Experience Manager	CWE-79 psirt@adobe.com 2024-08-23 CVE-2024-41876
CVE-2024-41877	5.4	Aug. 23, 2024, 5:15 p.m.	Adobe Experience Manager	CWE-79 psirt@adobe.com 2024-08-23 CVE-2024-41877
CVE-2024-41878	5.4	Aug. 23, 2024, 5:15 p.m.	Adobe Experience Manager	CWE-79 psirt@adobe.com 2024-08-23 CVE-2024-41878
CVE-2024-3282	4.8	Aug. 23, 2024, 6:15 a.m.	WP Table Builder WordPress plugin	contact@wpscan.com 2024-08-23 CVE-2024-3282
CVE-2024-41842	4.8	Aug. 23, 2024, 5:15 p.m.	Adobe Experience Manager	CWE-79 psirt@adobe.com 2024-08-23 CVE-2024-41842
CVE-2024-43105	4.3	Aug. 23, 2024, 8:15 a.m.	Mattermost Plugin Channel Export	CWE-400 responsibledisclosure@mattermost.com 2024-08-23 CVE-2024-43105
CVE-2024-8112	4.3	Aug. 23, 2024, 3:15 p.m.	thinkgem JeeSite	CWE-79 cna@vuldb.com 2024-08-23 CVE-2024-8112
CVE-2024-43031	4.3	Aug. 23, 2024, 4:15 p.m.	autMan	cve@mitre.org CWE-121 2024-08-23 CVE-2024-43031
CVE-2024-43032	4.3	Aug. 23, 2024, 4:15 p.m.	autMan	cve@mitre.org CWE-121 2024-08-23 CVE-2024-43032
CVE-2024-41849	4.1	Aug. 23, 2024, 5:15 p.m.	Adobe Experience Manager	CWE-20 psirt@adobe.com 2024-08-23 CVE-2024-41849
CVE-2024-6715	None	Aug. 23, 2024, 6:15 a.m.	Ditty WordPress plugin	contact@wpscan.com 2024-08-23 CVE-2024-6715
CVE-2024-40766	None	Aug. 23, 2024, 7:15 a.m.	SonicWall Firewall Gen 5	CWE-284 PSIRT@sonicwall.com 2024-08-23 CVE-2024-40766
CVE-2024-7986	None	Aug. 23, 2024, 12:15 p.m.	Rockwell Automation ThinManager ThinServer	CWE-732 PSIRT@rockwellautomation.com 2024-08-23 CVE-2024-7986
CVE-2024-43883	None	Aug. 23, 2024, 1:15 p.m.	Linux Kernel	416baaa9-dc9f-4396-8d5f-8c081fb06d67 2024-08-23 CVE-2024-43883
CVE-2024-42040	None	Aug. 23, 2024, 3:15 p.m.	DENEX U-Boot	cve@mitre.org 2024-08-23 CVE-2024-42040
CVE-2024-42766	None	Aug. 23, 2024, 3:15 p.m.	Kashipara Bus Ticket Reservation System	cve@mitre.org 2024-08-23 CVE-2024-42766
CVE-2024-8113	None	Aug. 23, 2024, 3:15 p.m.	pretix	CWE-79 2024-08-23 CVE-2024-8113 655498c3-6ec5-4f0b-aea6-853b334d05a6
CVE-2024-42756	None	Aug. 23, 2024, 4:15 p.m.	Netgear DGN1000WW	cve@mitre.org 2024-08-23 CVE-2024-42756
CVE-2024-32501	None	Aug. 23, 2024, 5:15 p.m.	Centreon Web	cve@mitre.org 2024-08-23 CVE-2024-32501
CVE-2024-33854	None	Aug. 23, 2024, 5:15 p.m.	Centreon Web	cve@mitre.org 2024-08-23 CVE-2024-33854
CVE-2024-42918	None	Aug. 23, 2024, 5:15 p.m.	itsourcecode Online Accreditation Management System	cve@mitre.org 2024-08-23 CVE-2024-42918
CVE-2024-7427	None	Aug. 23, 2024, 5:15 p.m.	OpenText Network Node Manager i (NNMi)	CWE-79 security@opentext.com 2024-08-23 CVE-2024-7427
CVE-2024-7428	None	Aug. 23, 2024, 5:15 p.m.	Network Node Manager i (NNMi)	security@opentext.com CWE-601 2024-08-23 CVE-2024-7428
CVE-2024-42845	None	Aug. 23, 2024, 7:15 p.m.	InVesalius	cve@mitre.org 2024-08-23 CVE-2024-42845
CVE-2024-42914	None	Aug. 23, 2024, 7:15 p.m.	ArrowCMS	cve@mitre.org 2024-08-23 CVE-2024-42914
CVE-2024-37392	None	Aug. 23, 2024, 9:15 p.m.	SMSEagle	cve@mitre.org 2024-08-23 CVE-2024-37392
CVE-2024-40111	None	Aug. 23, 2024, 9:15 p.m.	Automad	cve@mitre.org 2024-08-23 CVE-2024-40111

» Click here to see all Vulnerabilities «

Tag : 2024-08-23