Tag: 2024-08-27

2 Attack Reports | 65 Vulnerabilities

Attack reports

HZ Rat backdoor for macOS harvests data from WeChat and DingTalk

A version of the HZ Rat backdoor targeting users of China’s WeChat and DingTalk was uploaded to VirusTotal in July 2023 and was not detected by any vendor, research by Kaspersky suggests.
backdoor
macos
trojan
2024-08-27
instant messengers
hz rat
dingtalk
wechat
openvpn
Published: August 27, 2024
Downloadable IOCs: 10

BlackSuit Ransomware

The report meticulously chronicles a sophisticated intrusion which began in December 2023 and culminated in the deployment of BlackSuit ransomware approximately 15 days later. The threat actor demonstrated an array of tactics, leveraging tools like Cobalt Strike, Sharphound, and SystemBC, alongside…
ransomware
cobalt strike
discovery
lateral movement
credential access
cobaltstrike
blacksuit
systembc
2024-08-27
sharphound
get-datainfo.ps1
rubeus
Published: August 27, 2024
Downloadable IOCs: 16
Click here to see more Attack Reports

Vulnerabilities

CVE-2024-45321

9.8
    App\
  • \
Published: August 27, 2024

CVE-2024-4872

9.8
    Hitachienergy
  • Microscada X Sys600
Published: August 27, 2024

CVE-2024-7940

9.8
    Hitachienergy
  • Microscada X Sys600
Published: August 27, 2024

CVE-2024-7071

9.8
    Brainlowcode
  • Brain Low-Code
Published: August 27, 2024

CVE-2024-6633

9.8
    Fortra
  • Filecatalyst Workflow
Published: August 27, 2024

CVE-2024-41622

9.8
    Dlink
  • Dir-846w Firmware
  • Dir-846w
Published: August 27, 2024

CVE-2024-44341

9.8
    Dlink
  • Dir-846w Firmware
  • Dir-846w
Published: August 27, 2024

CVE-2024-44342

9.8
    Dlink
  • Dir-846w Firmware
  • Dir-846w
Published: August 27, 2024

CVE-2024-36068

9.8
    Rubrik
  • Cloud Data Management
Published: August 27, 2024

CVE-2024-7720

9.8
    Hp
  • Security Manager
Published: August 27, 2024

CVE-2024-8210

9.8
    Dlink
  • Dns-315l Firmware
  • Dns-315l
  • Dns-320lw Firmware
  • Dns-320lw
  • Dns-1550-04 Firmware
  • Dns-1550-04
  • Dns-1200-05 Firmware
  • Dns-1200-05
  • Dns-1100-4 Firmware
  • Dns-1100-4
  • Dns-726-4 Firmware
  • Dns-726-4
  • Dns-345 Firmware
  • Dns-345
  • Dns-343 Firmware
  • Dns-343
  • Dns-340l Firmware
  • Dns-340l
  • Dnr-326 Firmware
  • Dnr-326
  • Dns-327l Firmware
  • Dns-327l
  • Dns-326 Firmware
  • Dns-326
  • Dns-325 Firmware
  • Dns-325
  • Dns-323 Firmware
  • Dns-323
  • Dnr-322l Firmware
  • Dnr-322l
  • Dns-321 Firmware
  • Dns-321
  • Dns-320l Firmware
  • Dns-320l
  • Dns-320 Firmware
  • Dns-320
  • Dnr-202l Firmware
  • Dnr-202l
  • Dns-120 Firmware
  • Dns-120
Published: August 27, 2024

CVE-2024-8211

9.8
    Dlink
  • Dns-315l Firmware
  • Dns-315l
  • Dns-320lw Firmware
  • Dns-320lw
  • Dns-1550-04 Firmware
  • Dns-1550-04
  • Dns-1200-05 Firmware
  • Dns-1200-05
  • Dns-1100-4 Firmware
  • Dns-1100-4
  • Dns-726-4 Firmware
  • Dns-726-4
  • Dns-345 Firmware
  • Dns-345
  • Dns-343 Firmware
  • Dns-343
  • Dns-340l Firmware
  • Dns-340l
  • Dnr-326 Firmware
  • Dnr-326
  • Dns-327l Firmware
  • Dns-327l
  • Dns-326 Firmware
  • Dns-326
  • Dns-325 Firmware
  • Dns-325
  • Dns-323 Firmware
  • Dns-323
  • Dnr-322l Firmware
  • Dnr-322l
  • Dns-321 Firmware
  • Dns-321
  • Dns-320l Firmware
  • Dns-320l
  • Dns-320 Firmware
  • Dns-320
  • Dnr-202l Firmware
  • Dnr-202l
  • Dns-120 Firmware
  • Dns-120
Published: August 27, 2024

CVE-2024-8212

9.8
    Dlink
  • Dns-315l Firmware
  • Dns-315l
  • Dns-320lw Firmware
  • Dns-320lw
  • Dns-1550-04 Firmware
  • Dns-1550-04
  • Dns-1200-05 Firmware
  • Dns-1200-05
  • Dns-1100-4 Firmware
  • Dns-1100-4
  • Dns-726-4 Firmware
  • Dns-726-4
  • Dns-345 Firmware
  • Dns-345
  • Dns-343 Firmware
  • Dns-343
  • Dns-340l Firmware
  • Dns-340l
  • Dnr-326 Firmware
  • Dnr-326
  • Dns-327l Firmware
  • Dns-327l
  • Dns-326 Firmware
  • Dns-326
  • Dns-325 Firmware
  • Dns-325
  • Dns-323 Firmware
  • Dns-323
  • Dnr-322l Firmware
  • Dnr-322l
  • Dns-321 Firmware
  • Dns-321
  • Dns-320l Firmware
  • Dns-320l
  • Dns-320 Firmware
  • Dns-320
  • Dnr-202l Firmware
  • Dnr-202l
  • Dns-120 Firmware
  • Dns-120
Published: August 27, 2024

CVE-2024-8213

9.8
    Dlink
  • Dns-315l Firmware
  • Dns-315l
  • Dns-320lw Firmware
  • Dns-320lw
  • Dns-1550-04 Firmware
  • Dns-1550-04
  • Dns-1200-05 Firmware
  • Dns-1200-05
  • Dns-1100-4 Firmware
  • Dns-1100-4
  • Dns-726-4 Firmware
  • Dns-726-4
  • Dns-345 Firmware
  • Dns-345
  • Dns-343 Firmware
  • Dns-343
  • Dns-340l Firmware
  • Dns-340l
  • Dnr-326 Firmware
  • Dnr-326
  • Dns-327l Firmware
  • Dns-327l
  • Dns-326 Firmware
  • Dns-326
  • Dns-325 Firmware
  • Dns-325
  • Dns-323 Firmware
  • Dns-323
  • Dnr-322l Firmware
  • Dnr-322l
  • Dns-321 Firmware
  • Dns-321
  • Dns-320l Firmware
  • Dns-320l
  • Dns-320 Firmware
  • Dns-320
  • Dnr-202l Firmware
  • Dnr-202l
  • Dns-120 Firmware
  • Dns-120
Published: August 27, 2024

CVE-2024-8214

9.8
    Dlink
  • Dns-315l Firmware
  • Dns-315l
  • Dns-320lw Firmware
  • Dns-320lw
  • Dns-1550-04 Firmware
  • Dns-1550-04
  • Dns-1200-05 Firmware
  • Dns-1200-05
  • Dns-1100-4 Firmware
  • Dns-1100-4
  • Dns-726-4 Firmware
  • Dns-726-4
  • Dns-345 Firmware
  • Dns-345
  • Dns-343 Firmware
  • Dns-343
  • Dns-340l Firmware
  • Dns-340l
  • Dnr-326 Firmware
  • Dnr-326
  • Dns-327l Firmware
  • Dns-327l
  • Dns-326 Firmware
  • Dns-326
  • Dns-325 Firmware
  • Dns-325
  • Dns-323 Firmware
  • Dns-323
  • Dnr-322l Firmware
  • Dnr-322l
  • Dns-321 Firmware
  • Dns-321
  • Dns-320l Firmware
  • Dns-320l
  • Dns-320 Firmware
  • Dns-320
  • Dnr-202l Firmware
  • Dnr-202l
  • Dns-120 Firmware
  • Dns-120
Published: August 27, 2024

CVE-2024-8217

9.8
    Donbermoy
  • E-Commerce Website
Published: August 27, 2024

CVE-2024-8218

9.8
    Fabianros
  • Online Quiz Site
Published: August 27, 2024

CVE-2024-8219

9.8
    Fabianros
  • Responsive Hotel Site
Published: August 27, 2024

CVE-2024-8220

9.8
    Angeljudesuarez
  • Tailoring Management System
Published: August 27, 2024

CVE-2024-8221

9.8
    Oretnom23
  • Music Gallery Site
Published: August 27, 2024

CVE-2024-8222

9.8
    Oretnom23
  • Music Gallery Site
Published: August 27, 2024

CVE-2024-8223

9.8
    Oretnom23
  • Music Gallery Site
Published: August 27, 2024

CVE-2024-8224

9.8
    Tenda
  • G3 Firmware
  • G3
Published: August 27, 2024

CVE-2024-8225

9.8
    Tenda
  • G3 Firmware
  • G3
Published: August 27, 2024

CVE-2024-41174

9.0
    Beckhoff
  • Ipc Diagnostics Package
  • Twincat\/Bsd
Published: August 27, 2024

CVE-2024-3980

8.8
    Hitachienergy
  • Microscada X Sys600
Published: August 27, 2024

CVE-2024-44340

8.8
    Dlink
  • Dir-846w Firmware
  • Dir-846w
Published: August 27, 2024

CVE-2024-45264

8.8
    Skyss
  • Arfa-Cms
Published: August 27, 2024

CVE-2024-3982

8.2
    Hitachienergy
  • Microscada X Sys600
Published: August 27, 2024

CVE-2024-8181

8.1
    Flowiseai
  • Flowise
Published: August 27, 2024

CVE-2022-39997

8.0
    Teldat Router RS123
    Teldat Router RS123w
Published: August 27, 2024

CVE-2024-7125

7.8
    Hitachi Ops Center Common Services
  • Version(s): 10.9.3-00 before 11.0.2-01
Published: August 27, 2024

CVE-2024-41173

7.8
    Beckhoff
  • Ipc Diagnostics Package
  • Twincat\/Bsd
Published: August 27, 2024

CVE-2024-42851

7.8
    Aertherwide
  • Exiftags
Published: August 27, 2024

CVE-2024-8182

7.5
    Flowiseai
  • Flowise
Published: August 27, 2024

CVE-2024-43414

7.5
    Apollographql
  • Apollo-Router
  • Apollo Gateway
  • Apollo Helms-Charts Router
  • Apollo Query-Planner
  • Apollo Router
Published: August 27, 2024

CVE-2024-43783

7.5
    Apollographql
  • Apollo-Router
  • Apollo Helms-Charts Router
  • Apollo Router
Published: August 27, 2024

CVE-2024-5991

7.5
    Wolfssl
  • Wolfssl
Published: August 27, 2024

CVE-2024-45038

7.5
    Meshtastic device firmware
  • Version(s): 2.4.1
Published: August 27, 2024

CVE-2024-45049

7.5
    Hydra
Published: August 27, 2024

CVE-2024-41176

7.3
    Beckhoff
  • Mdp Package
  • Twincat\/Bsd
Published: August 27, 2024

CVE-2024-6632

7.2
    Fortra
  • Filecatalyst Workflow
Published: August 27, 2024

CVE-2024-8207

6.7
    Mongodb
  • Mongodb
    Linux
Published: August 27, 2024

CVE-2024-6789

6.5
    M-Files
  • M-Files Server
Published: August 27, 2024

CVE-2024-40395

6.5
    Ptc
  • Thingworx
Published: August 27, 2024

CVE-2024-8046

6.4
    Logo Showcase Ultimate - Logo Carousel, Logo Slider & Logo Grid plugin for WordPress
  • Version(s): up to 1.4.1
Published: August 27, 2024

CVE-2024-7791

6.4
    140+ Widgets | Xpro Addons For Elementor – FREE plugin for WordPress
  • Version(s): up to 1.4.4.3
Published: August 27, 2024

CVE-2024-45037

6.4
    AWS Cloud Development Kit (CDK)
  • Version(s): >=2.142.0, <=2.148.0
Published: August 27, 2024

CVE-2024-7941

6.1
    Hitachienergy
  • Microscada X Sys600
Published: August 27, 2024

CVE-2024-43788

6.1
    Webpack.Js
  • Webpack
Published: August 27, 2024

CVE-2024-8208

6.1
    Insurance Management System Project
  • Insurance Management System
Published: August 27, 2024

CVE-2024-8209

6.1
    Insurance Management System Project
  • Insurance Management System
Published: August 27, 2024

CVE-2024-7608

5.9
    Trellix
  • Version(s): NX, EX, FX, AX, IVX, CMS
Published: August 27, 2024

CVE-2024-41175

5.5
    Beckhoff
  • Ipc Diagnostics Package
  • Twincat\/Bsd
Published: August 27, 2024

CVE-2024-6804

5.4
    Jegtheme
  • Jeg Elementor Kit
Published: August 27, 2024

CVE-2024-7304

5.4
    Wpmanageninja
  • Ninja Tables
Published: August 27, 2024

CVE-2024-8216

5.4
    Insurance Management System Project
  • Insurance Management System
Published: August 27, 2024

CVE-2024-5288

5.1
    wolfSSL
  • Version(s): before 5.7.0
Published: August 27, 2024

CVE-2022-39996

4.8
    Teldat
  • Rs123 Firmware
  • Rs123
  • Rs123w Firmware
  • Rs123w
Published: August 27, 2024

CVE-2024-6688

4.3
    Oxygen Builder plugin for WordPress
  • Version(s): up to 4.8.3
Published: August 27, 2024

CVE-2024-8199

4.3
    Smashballoon
  • Reviews Feed
Published: August 27, 2024

CVE-2024-8200

4.3
    Smashballoon
  • Reviews Feed
Published: August 27, 2024

CVE-2024-1544

4.1
    wolfSSL
Published: August 27, 2024

CVE-2024-8197

None
    Visual Sound plugin for WordPress
  • Version(s): up to 1.03
Published: August 27, 2024

CVE-2024-5814

None
    wolfSSL
Published: August 27, 2024
Click here to see more Vulnerabilities