Back

Tag : 2024-08-30

7 attack reports | 69 vulnerabilities

Attack Reports

Title Published Tags Description Number of indicators
Analysis of two arbitrary code execution vulnerabilities affecting WPS Office Aug. 30, 2024, 5:48 p.m.
windows
vulnerability
plugin
CVE-2024-7262
CVE-2024-7263
2024-08-30
wps office
taskcontroler.dll
hyperlink
spyglace
spreadsheet
code execution
ESET researchers discovered two code execution vulnerabilities in WPS Office for Windows. CVE-2024-7262 was exploited by APT-C-60… 5
Peach Sandstorm deploys new custom Tickler malware in long-running intelligence gathering operations Aug. 30, 2024, 5:46 p.m.
backdoor
2024-08-30
azure abuse
password spray
satellite sector
government targets
tickler
linkedin intelligence gathering
tickler malware
iranian threat actor
Between April and July 2024, Iranian state-sponsored threat actor Peach Sandstorm deployed a new custom multi-stage backdoor call… 9
StopRansomware: RansomHub Ransomware Aug. 30, 2024, 5:44 p.m.
privilege-escalation
cobalt strike
encryption
CVE-2020-1472
ransomware-as-a-service
ransomhub
mimikatz
CVE-2023-3519
2024-08-30
metasploit
CVE-2023-22515
CVE-2023-46604
CVE-2017-0144
CVE-2023-48788
double-extortion
CVE-2023-27997
data-exfiltration
CVE-2023-46747
critical-infrastructure
CVE-2020-0787
lateral-movement
RansomHub is a ransomware-as-a-service variant that has targeted over 210 victims across various critical infrastructure sectors … 14
Threat Actors Target the Middle East Using Fake Palo Alto GlobalProtect Tool Aug. 30, 2024, 8:16 a.m.
malware
phishing
evasion
globalprotect
2024-08-30
cnc
globalprotect.exe
Cybercriminals are employing a sophisticated two-stage malware campaign masquerading as the Palo Alto GlobalProtect tool to infil… 5
Analyzing the Mekotio Trojan Aug. 30, 2024, 8:14 a.m.
malware
obfuscation
powershell
persistence
trojan
2024-08-30
mekotio trojan
The analysis delves into the Mekotio Trojan, a sophisticated malware that employs a PowerShell dropper to execute its payload. Th… 2
Latrodectus Rapid Evolution Continues With Latest New Payload Features Aug. 30, 2024, 8:10 a.m.
malware
icedid
analysis
payload
latrodectus
2024-08-30
evolution
This report discusses the latest updates to the Latrodectus malware, including a different string deobfuscation approach, a new C… 10
Deep Analysis of Snake Keylogger’s New Variant Aug. 30, 2024, 8:05 a.m.
phishing
persistence
credential theft
CVE-2017-0199
keylogger
2024-08-30
process injection
snake keylogger
FortiGuard Labs recently caught a phishing campaign delivering a new variant of Snake Keylogger, a keylogger malware that can ste… 8
» Click here to see all Attack Reports «

Vulnerabilities

CVE CVSS Published Product impacted Tags
CVE-2024-45488 9.8 Aug. 30, 2024, 2:15 a.m. LOGO-VULNERABLEOne Identity Safeguard for Privileged Passwords
cve@mitre.org
2024-08-30
CVE-2024-45488
CVE-2024-45490 9.8 Aug. 30, 2024, 3:15 a.m. LOGO-VULNERABLEexpat
cve@mitre.org
2024-08-30
CVE-2024-45490
CVE-2024-3673 9.1 Aug. 30, 2024, 6:15 a.m. LOGO-VULNERABLEWeb Directory Free WordPress plugin
contact@wpscan.com
2024-08-30
CVE-2024-3673
CVE-2024-8016 9.1 Aug. 30, 2024, 7:15 a.m. LOGO-VULNERABLEEvents Calendar Pro plugin for WordPress
security@wordfence.com
CWE-502
2024-08-30
CVE-2024-8016
CVE-2024-8327 8.8 Aug. 30, 2024, 3:15 a.m. LOGO-VULNERABLEUNKNOWN
CWE-89
twcert@cert.org.tw
2024-08-30
CVE-2024-8327
CVE-2024-8329 8.8 Aug. 30, 2024, 3:15 a.m. LOGO-VULNERABLE6SHR system from Gether Technology
CWE-89
twcert@cert.org.tw
2024-08-30
CVE-2024-8329
CVE-2024-8330 8.8 Aug. 30, 2024, 3:15 a.m. LOGO-VULNERABLE6SHR system from Gether Technology
CWE-434
twcert@cert.org.tw
2024-08-30
CVE-2024-8330
CVE-2024-2694 8.8 Aug. 30, 2024, 5:15 a.m. LOGO-VULNERABLEBetheme theme for WordPress
security@wordfence.com
CWE-502
2024-08-30
CVE-2024-2694
CVE-2024-8252 8.8 Aug. 30, 2024, 10:15 a.m. LOGO-VULNERABLEClean Login plugin for WordPress
security@wordfence.com
CWE-98
2024-08-30
CVE-2024-8252
CVE-2024-6204 8.3 Aug. 30, 2024, 5:15 p.m. LOGO-VULNERABLEZohocorp ManageEngine Exchange Reporter Plus
CWE-89
0fc0942c-577d-436f-ae8e-945763c79b02
2024-08-30
CVE-2024-6204
CVE-2024-39300 8.1 Aug. 30, 2024, 7:15 a.m. LOGO-VULNERABLEWAB-I1750-PS
vultures@jpcert.or.jp
CWE-306
2024-08-30
CVE-2024-39300
CVE-2024-38868 7.6 Aug. 30, 2024, 6:15 p.m. LOGO-VULNERABLEZohocorp ManageEngine Endpoint Central
CWE-863
0fc0942c-577d-436f-ae8e-945763c79b02
2024-08-30
CVE-2024-38868
CVE-2024-8234 7.5 Aug. 30, 2024, 1:15 a.m. LOGO-VULNERABLEZyxel NWA1100-N firmware
CWE-78
security@zyxel.com.tw
2024-08-30
CVE-2024-8234
CVE-2024-45491 7.3 Aug. 30, 2024, 3:15 a.m. LOGO-VULNERABLElibexpat
cve@mitre.org
CWE-190
2024-08-30
CVE-2024-45491
CVE-2024-45492 7.3 Aug. 30, 2024, 3:15 a.m. LOGO-VULNERABLElibexpat
cve@mitre.org
CWE-190
2024-08-30
CVE-2024-45492
CVE-2024-8340 7.3 Aug. 30, 2024, 3:15 p.m. LOGO-VULNERABLESourceCodester Electric Billing Management System
CWE-89
cna@vuldb.com
2024-08-30
CVE-2024-8340
CVE-2024-8343 7.3 Aug. 30, 2024, 4:15 p.m. LOGO-VULNERABLESourceCodester Sentiment Based Movie Rating System
CWE-89
cna@vuldb.com
2024-08-30
CVE-2024-8343
CVE-2024-8285 7.3 Aug. 30, 2024, 10:15 p.m. LOGO-VULNERABLEKroxylicious
secalert@redhat.com
CWE-297
2024-08-30
CVE-2024-8285
CVE-2024-44916 7.2 Aug. 30, 2024, 4:15 p.m. LOGO-VULNERABLESeacms
cve@mitre.org
CWE-77
2024-08-30
CVE-2024-44916
CVE-2024-5784 7.1 Aug. 30, 2024, 4:15 a.m. LOGO-VULNERABLETutor LMS Pro plugin for WordPress
security@wordfence.com
CWE-862
2024-08-30
CVE-2024-5784
CVE-2024-2881 6.7 Aug. 30, 2024, 12:15 a.m. LOGO-VULNERABLEWolfSSL
facts@wolfssl.com
2024-08-30
CVE-2024-2881
CWE-1256
CVE-2024-4401 6.4 Aug. 30, 2024, 4:15 a.m. LOGO-VULNERABLEElementor Addon Elements plugin for WordPress
CWE-79
security@wordfence.com
2024-08-30
CVE-2024-4401
CVE-2024-5061 6.4 Aug. 30, 2024, 4:15 a.m. LOGO-VULNERABLEEnfold - Responsive Multi-Purpose Theme for WordPress
CWE-79
security@wordfence.com
2024-08-30
CVE-2024-5061
CVE-2024-3998 6.4 Aug. 30, 2024, 5:15 a.m. LOGO-VULNERABLEBetheme theme for WordPress
CWE-79
security@wordfence.com
2024-08-30
CVE-2024-3998
CVE-2024-5879 6.4 Aug. 30, 2024, 5:15 a.m. LOGO-VULNERABLEHubSpot – CRM, Email Marketing, Live Chat, Forms & Analytics plugin for WordPress
CWE-79
security@wordfence.com
2024-08-30
CVE-2024-5879
CVE-2024-7122 6.4 Aug. 30, 2024, 10:15 a.m. LOGO-VULNERABLEElementor Addon Elements plugin for WordPress
CWE-79
security@wordfence.com
2024-08-30
CVE-2024-7122
CVE-2024-7858 6.3 Aug. 30, 2024, 10:15 a.m. LOGO-VULNERABLEMedia Library Folders plugin for WordPress
security@wordfence.com
CWE-862
2024-08-30
CVE-2024-7858
CVE-2024-8331 6.3 Aug. 30, 2024, 11:15 a.m. LOGO-VULNERABLEOpenRapid RapidCMS
CWE-89
cna@vuldb.com
2024-08-30
CVE-2024-8331
CVE-2024-8332 6.3 Aug. 30, 2024, 12:15 p.m. LOGO-VULNERABLESweet-CMS
CWE-89
cna@vuldb.com
2024-08-30
CVE-2024-8332
CVE-2024-8335 6.3 Aug. 30, 2024, 1:15 p.m. LOGO-VULNERABLEOpenRapid RapidCMS
CWE-89
cna@vuldb.com
2024-08-30
CVE-2024-8335
CVE-2024-8336 6.3 Aug. 30, 2024, 2:15 p.m. LOGO-VULNERABLESourceCodester Music Gallery Site
CWE-89
cna@vuldb.com
2024-08-30
CVE-2024-8336
CVE-2024-8338 6.3 Aug. 30, 2024, 3:15 p.m. LOGO-VULNERABLEHFO4 shudong-share
CWE-434
cna@vuldb.com
2024-08-30
CVE-2024-8338
CVE-2024-8339 6.3 Aug. 30, 2024, 3:15 p.m. LOGO-VULNERABLESourceCodester Electric Billing Management System
CWE-89
cna@vuldb.com
2024-08-30
CVE-2024-8339
CVE-2024-8341 6.3 Aug. 30, 2024, 3:15 p.m. LOGO-VULNERABLESourceCodester Petshop Management System
CWE-434
cna@vuldb.com
2024-08-30
CVE-2024-8341
CVE-2024-8342 6.3 Aug. 30, 2024, 4:15 p.m. LOGO-VULNERABLESourceCodester Petshop Management System
CWE-434
cna@vuldb.com
2024-08-30
CVE-2024-8342
CVE-2024-8344 6.3 Aug. 30, 2024, 5:15 p.m. LOGO-VULNERABLECampcodes Supplier Management System
CWE-89
cna@vuldb.com
2024-08-30
CVE-2024-8344
CVE-2024-8345 6.3 Aug. 30, 2024, 5:15 p.m. LOGO-VULNERABLESourceCodester Music Gallery Site
CWE-89
cna@vuldb.com
2024-08-30
CVE-2024-8345
CVE-2024-8346 6.3 Aug. 30, 2024, 9:15 p.m. LOGO-VULNERABLESourceCodester Computer Laboratory Management System
CWE-89
cna@vuldb.com
2024-08-30
CVE-2024-8346
CVE-2024-8347 6.3 Aug. 30, 2024, 10:15 p.m. LOGO-VULNERABLESourceCodester Computer Laboratory Management System
CWE-89
cna@vuldb.com
2024-08-30
CVE-2024-8347
CVE-2024-8348 6.3 Aug. 30, 2024, 10:15 p.m. LOGO-VULNERABLESourceCodester Computer Laboratory Management System
CWE-89
cna@vuldb.com
2024-08-30
CVE-2024-8348
CVE-2024-8235 6.2 Aug. 30, 2024, 5:15 p.m. LOGO-VULNERABLElibvirt
secalert@redhat.com
CWE-476
2024-08-30
CVE-2024-8235
CVE-2024-5024 6.1 Aug. 30, 2024, 4:15 a.m. LOGO-VULNERABLEMemberpress plugin for WordPress
CWE-79
security@wordfence.com
2024-08-30
CVE-2024-5024
CVE-2024-8274 6.1 Aug. 30, 2024, 10:15 a.m. LOGO-VULNERABLEWP Booking Calendar plugin for WordPress
CWE-79
security@wordfence.com
2024-08-30
CVE-2024-8274
CVE-2024-8260 6.1 Aug. 30, 2024, 1:15 p.m. LOGO-VULNERABLEOPA for Windows
vulnreport@tenable.com
CWE-294
2024-08-30
CVE-2024-8260
CVE-2024-8328 5.4 Aug. 30, 2024, 3:15 a.m. LOGO-VULNERABLEEasy test Online Learning and Testing Platform
CWE-79
twcert@cert.org.tw
2024-08-30
CVE-2024-8328
CVE-2024-45047 5.4 Aug. 30, 2024, 5:15 p.m. LOGO-VULNERABLESvelte
security-advisories@github.com
CWE-79
2024-08-30
CVE-2024-45047
CVE-2024-8319 4.3 Aug. 30, 2024, 8:15 a.m. LOGO-VULNERABLETourfic plugin for WordPress
security@wordfence.com
CWE-352
2024-08-30
CVE-2024-8319
CVE-2024-8334 4.3 Aug. 30, 2024, 1:15 p.m. LOGO-VULNERABLESweet-CMS
CWE-117
cna@vuldb.com
2024-08-30
CVE-2024-8334
CVE-2024-21658 4.3 Aug. 30, 2024, 6:15 p.m. LOGO-VULNERABLEdiscourse-calendar
security-advisories@github.com
CWE-400
2024-08-30
CVE-2024-21658
CVE-2024-8337 3.5 Aug. 30, 2024, 2:15 p.m. LOGO-VULNERABLESourceCodester Contact Manager with Export to VCF
CWE-79
cna@vuldb.com
2024-08-30
CVE-2024-8337
CVE-2024-44918 3.5 Aug. 30, 2024, 5:15 p.m. LOGO-VULNERABLESeaCMS
cve@mitre.org
CWE-79
2024-08-30
CVE-2024-44918
CVE-2024-8333 None Aug. 30, 2024, 6:15 a.m. LOGO-VULNERABLEUNKNOWN
2024-08-30
CVE-2024-8333
b48c3b8f-639e-4c16-8725-497bc411dad0
CVE-2024-34577 None Aug. 30, 2024, 7:15 a.m. LOGO-VULNERABLEUNKNOWN
vultures@jpcert.or.jp
2024-08-30
CVE-2024-34577
CVE-2024-42412 None Aug. 30, 2024, 7:15 a.m. LOGO-VULNERABLEUNKNOWN
vultures@jpcert.or.jp
2024-08-30
CVE-2024-42412
CVE-2024-44944 None Aug. 30, 2024, 8:15 a.m. LOGO-VULNERABLELinux Kernel
416baaa9-dc9f-4396-8d5f-8c081fb06d67
2024-08-30
CVE-2024-44944
CVE-2022-48944 None Aug. 30, 2024, 11:15 a.m. LOGO-VULNERABLELinux kernel
416baaa9-dc9f-4396-8d5f-8c081fb06d67
2024-08-30
CVE-2022-48944
CVE-2024-7051 None Aug. 30, 2024, 4:15 p.m. LOGO-VULNERABLEUNKNOWN
security@huntr.dev
2024-08-30
CVE-2024-7051
CVE-2024-7712 None Aug. 30, 2024, 4:15 p.m. LOGO-VULNERABLEUNKNOWN
security@huntr.dev
2024-08-30
CVE-2024-7712
CVE-2024-8064 None Aug. 30, 2024, 4:15 p.m. LOGO-VULNERABLEUNKNOWN
security@huntr.dev
2024-08-30
CVE-2024-8064
CVE-2022-4424 None Aug. 30, 2024, 8:15 p.m. LOGO-VULNERABLEUNKNOWN
security@wordfence.com
2024-08-30
CVE-2022-4424
CVE-2022-4530 None Aug. 30, 2024, 8:15 p.m. LOGO-VULNERABLEUNKNOWN
security@wordfence.com
2024-08-30
CVE-2022-4530
CVE-2022-4540 None Aug. 30, 2024, 8:15 p.m. LOGO-VULNERABLEUNKNOWN
security@wordfence.com
2024-08-30
CVE-2022-4540
CVE-2024-42379 None Aug. 30, 2024, 8:15 p.m. LOGO-VULNERABLEUNKNOWN
cna@sap.com
2024-08-30
CVE-2024-42379
CVE-2022-4412 None Aug. 30, 2024, 9:15 p.m. LOGO-VULNERABLEUNKNOWN
security@wordfence.com
2024-08-30
CVE-2022-4412
CVE-2022-4528 None Aug. 30, 2024, 9:15 p.m. LOGO-VULNERABLEUNKNOWN
security@wordfence.com
2024-08-30
CVE-2022-4528
CVE-2022-4538 None Aug. 30, 2024, 9:15 p.m. LOGO-VULNERABLEUNKNOWN
security@wordfence.com
2024-08-30
CVE-2022-4538
CVE-2024-44682 None Aug. 30, 2024, 10:15 p.m. LOGO-VULNERABLEShopXO
cve@mitre.org
2024-08-30
CVE-2024-44682
CVE-2024-44683 None Aug. 30, 2024, 10:15 p.m. LOGO-VULNERABLESeacms
cve@mitre.org
2024-08-30
CVE-2024-44683
CVE-2024-44684 None Aug. 30, 2024, 10:15 p.m. LOGO-VULNERABLETpMeCMS
cve@mitre.org
2024-08-30
CVE-2024-44684
» Click here to see all Vulnerabilities «