Tag: 2024-09-03

3 Attack Reports | 72 Vulnerabilities

Attack reports

Threat actors using MacroPack to deploy Brute Ratel, Havoc and PhantomCore payloads

Multiple Microsoft Office documents generated by the MacroPack framework have been discovered, likely used by malicious actors to deploy various payloads. These documents, uploaded to VirusTotal between May and July 2024, originated from different countries including China, Pakistan, Russia, and th…
havoc
phantomcore
2024-09-03
brute ratel
vba macros
macropack
Published: September 3, 2024
Downloadable IOCs: 16

Zharkbot Strings

Zharkbot is a C++ downloader with extensive anti-analysis and anti-sandbox features. It uses in-line string encryption and API calls, making static and emulation analysis challenging. The malware performs sandbox detection by checking for specific usernames and hypervisors. It installs itself in th…
persistence
anti-analysis
amadey
downloader
2024-09-03
anti-sandbox
string encryption
c2 communication
zharkbot
Published: September 3, 2024
Downloadable IOCs: 2

Advanced Persistent Threat Targeting Vietnamese Human Rights Defenders

A long-term intrusion targeting a Vietnamese human rights non-profit organization has been discovered, likely spanning at least four years. The attack shows significant overlaps with techniques used by APT32/OceanLotus, a threat actor known for targeting Vietnamese activists. The intrusion involved…
backdoor
apt
cobalt strike
persistence
steganography
vietnam
2024-09-03
dll side-loading
com hijacking
human rights
Published: September 3, 2024
Downloadable IOCs: 46
Click here to see more Attack Reports

Vulnerabilities

CVE-2024-8380

9.8
    Rems
  • Contact Manager With Export To Vcf
Published: September 3, 2024

CVE-2024-7261

9.8
    Zyxel
  • Nwa110ax Firmware
  • Nwa110ax
  • Nwa1123-Ac Pro Firmware
  • Nwa1123-Ac Pro
  • Nwa1123acv3 Firmware
  • Nwa1123acv3
  • Nwa130be Firmware
  • Nwa130be
  • Nwa210ax Firmware
  • Nwa210ax
  • Nwa220ax-6e Firmware
  • Nwa220ax-6e
  • Nwa50ax Firmware
  • Nwa50ax
  • Nwa50ax Pro Firmware
  • Nwa50ax Pro
  • Nwa55axe Firmware
  • Nwa55axe
  • Nwa90ax Firmware
  • Nwa90ax
  • Nwa90ax Pro Firmware
  • Nwa90ax Pro
  • Usg Lite 60ax Firmware
  • Usg Lite 60ax
  • Wac500 Firmware
  • Wac500
  • Wac500h Firmware
  • Wac500h
  • Wac6103d-I Firmware
  • Wac6103d-I
  • Wac6502d-S Firmware
  • Wac6502d-S
  • Wac6503d-S Firmware
  • Wac6503d-S
  • Wac6552d-S Firmware
  • Wac6552d-S
  • Wac6553d-E Firmware
  • Wac6553d-E
  • Wax300h Firmware
  • Wax300h
  • Wax510d Firmware
  • Wax510d
  • Wax610d Firmware
  • Wax610d
  • Wax620d-6e Firmware
  • Wax620d-6e
  • Wax630s Firmware
  • Wax630s
  • Wax640s-6e Firmware
  • Wax640s-6e
  • Wax650s Firmware
  • Wax650s
  • Wax655e Firmware
  • Wax655e
  • Wbe530 Firmware
  • Wbe530
  • Wbe660s Firmware
  • Wbe660s
Published: September 3, 2024

CVE-2024-44921

9.8
    Seacms
  • Seacms
Published: September 3, 2024

CVE-2024-8381

9.8
    Mozilla
  • Firefox
  • Firefox Esr
Published: September 3, 2024

CVE-2024-8384

9.8
    Mozilla
  • Firefox
  • Firefox Esr
Published: September 3, 2024

CVE-2024-8385

9.8
    Mozilla
  • Firefox
  • Firefox Esr
Published: September 3, 2024

CVE-2024-8387

9.8
    Mozilla
  • Firefox
  • Firefox Esr
  • Thunderbird
Published: September 3, 2024

CVE-2024-8389

9.8
    Mozilla
  • Firefox
Published: September 3, 2024

CVE-2024-4259

9.8
    Sambas
  • Akos
Published: September 3, 2024

CVE-2024-45307

9.8
    Onesoftnet
  • Sudobot
Published: September 3, 2024

CVE-2024-45390

9.8
    Blakeembrey
  • Template
Published: September 3, 2024

CVE-2024-41433

9.8
    PingCAP TiDB
Published: September 3, 2024

CVE-2024-44809

9.8
    Pi Camera project
Published: September 3, 2024

CVE-2024-7345

9.6
    Progress
  • Openedge
Published: September 3, 2024

CVE-2024-45586

8.8
    Symphonyfintech
  • Xts Mobile Trader
  • Xts Web Trader
Published: September 3, 2024

CVE-2024-45587

8.8
    Symphonyfintech
  • Xts Mobile Trader
  • Xts Web Trader
Published: September 3, 2024

CVE-2024-8382

8.8
    Mozilla
  • Firefox
  • Firefox Esr
Published: September 3, 2024

CVE-2023-49233

8.8
    Visual Planning Admin Center
Published: September 3, 2024

CVE-2024-42902

8.8
    LimeSurvey
Published: September 3, 2024

CVE-2024-7970

8.8
    Google Chrome
Published: September 3, 2024

CVE-2024-8362

8.8
    Google Chrome
Published: September 3, 2024

CVE-2024-42057

8.1
    Zyxel
  • Zld Firmware
  • Atp100
  • Atp100w
  • Atp200
  • Atp500
  • Atp700
  • Atp800
  • Usg Flex 100
  • Usg Flex 100ax
  • Usg Flex 100w
  • Usg Flex 200
  • Usg Flex 50
  • Usg Flex 500
  • Usg Flex 700
  • Usg Flex 50w
  • Usg 20w-Vpn
Published: September 3, 2024

CVE-2024-45588

8.1
    Symphonyfintech
  • Xts Mobile Trader
  • Xts Web Trader
Published: September 3, 2024

CVE-2024-42991

8.1
    MCMS
Published: September 3, 2024

CVE-2024-38811

7.8
    Vmware
  • Fusion
Published: September 3, 2024

CVE-2024-3655

7.8
    Arm Ltd Bifrost GPU Kernel Driver
    Arm Ltd Valhall GPU Kernel Driver
    Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver
Published: September 3, 2024

CVE-2024-8374

7.8
    Ultimaker
  • Ultimaker Cura
Published: September 3, 2024

CVE-2024-6473

7.8
    Yandex
  • Yandex Browser
Published: September 3, 2024

CVE-2024-38456

7.8
    HIGH-LEIT
Published: September 3, 2024

CVE-2024-45394

7.8
    Authenticator
  • Authenticator
Published: September 3, 2024

CVE-2024-42058

7.5
    Zyxel
  • Zld Firmware
  • Atp100
  • Atp100w
  • Atp200
  • Atp500
  • Atp700
  • Atp800
  • Usg Flex 100
  • Usg Flex 100ax
  • Usg Flex 100w
  • Usg Flex 200
  • Usg Flex 50
  • Usg Flex 500
  • Usg Flex 700
  • Usg Flex 50w
  • Usg 20w-Vpn
Published: September 3, 2024

CVE-2024-5412

7.5
    Zyxel
  • Nebula Lte3301-Plus Firmware
  • Nebula Lte3301-Plus
  • Nebula Fwa505 Firmware
  • Nebula Fwa505
  • Nebula Fwa710 Firmware
  • Nebula Fwa710
  • Nebula Fwa510 Firmware
  • Nebula Fwa510
  • Wx5600-T0 Firmware
  • Wx5600-T0
  • Wx3401-B0 Firmware
  • Wx3401-B0
  • Wx3100-T0 Firmware
  • Wx3100-T0
  • Scr50axe Firmware
  • Scr50axe
  • Px3321-T1 Firmware
  • Px3321-T1
  • Pm7300-T0 Firmware
  • Pm7300-T0
  • Pm5100-T0 Firmware
  • Pm5100-T0
  • Pm3100-T0 Firmware
  • Pm3100-T0
  • Ax7501-B1 Firmware
  • Ax7501-B1
  • Ax7501-B0 Firmware
  • Ax7501-B0
  • Vmg8825-T50k Firmware
  • Vmg8825-T50k
  • Vmg8623-T50b Firmware
  • Vmg8623-T50b
  • Vmg4005-B60a Firmware
  • Vmg4005-B60a
  • Vmg4005-B50a Firmware
  • Vmg4005-B50a
  • Vmg3927-T50k Firmware
  • Vmg3927-T50k
  • Vmg3625-T50b Firmware
  • Vmg3625-T50b
  • Emg5723-T50k Firmware
  • Emg5723-T50k
  • Emg5523-T50b Firmware
  • Emg5523-T50b
  • Emg3525-T50b Firmware
  • Emg3525-T50b
  • Ex7710-B0 Firmware
  • Ex7710-B0
  • Ex7501-B0 Firmware
  • Ex7501-B0
  • Ex5601-T1 Firmware
  • Ex5601-T1
  • Ex5601-T0 Firmware
  • Ex5601-T0
  • Ex5512-T0 Firmware
  • Ex5512-T0
  • Ex5510-B0 Firmware
  • Ex5510-B0
  • Ex5401-B1 Firmware
  • Ex5401-B1
  • Ex5401-B0 Firmware
  • Ex5401-B0
  • Ex3510-B0 Firmware
  • Ex3510-B0
  • Ex3501-T0 Firmware
  • Ex3501-T0
  • Ex3500-T0 Firmware
  • Ex3500-T0
  • Ex3301-T0 Firmware
  • Ex3301-T0
  • Ex3300-T1 Firmware
  • Ex3300-T1
  • Ex3300-T0 Firmware
  • Ex3300-T0
  • Dx5401-B1 Firmware
  • Dx5401-B1
  • Dx5401-B0 Firmware
  • Dx5401-B0
  • Dx4510-B0 Firmware
  • Dx4510-B0
  • Dx3301-T0 Firmware
  • Dx3301-T0
  • Dx3300-T1 Firmware
  • Dx3300-T1
  • Dx3300-T0 Firmware
  • Dx3300-T0
  • Nr7501 Firmware
  • Nr7501
  • Nr7303 Firmware
  • Nr7303
  • Nr7302 Firmware
  • Nr7302
  • Nr7103 Firmware
  • Nr7103
  • Nr5307 Firmware
  • Nr5307
  • Nr5103ev2 Firmware
  • Nr5103ev2
  • Nr5103 Firmware
  • Nr5103
Published: September 3, 2024

CVE-2024-6232

7.5
    Python
  • Python
Published: September 3, 2024

CVE-2024-8383

7.5
    Mozilla
  • Firefox
  • Firefox Esr
Published: September 3, 2024

CVE-2024-6119

7.5
    OpenSSL
Published: September 3, 2024

CVE-2024-41435

7.5
    YugabyteDB
Published: September 3, 2024

CVE-2024-41436

7.5
    ClickHouse
Published: September 3, 2024

CVE-2024-45391

7.5
    Tina
  • Tina
Published: September 3, 2024

CVE-2024-42059

7.2
    Zyxel
  • Zld Firmware
  • Atp100
  • Atp100w
  • Atp200
  • Atp500
  • Atp700
  • Atp800
  • Usg Flex 100
  • Usg Flex 100ax
  • Usg Flex 100w
  • Usg Flex 200
  • Usg Flex 50
  • Usg Flex 500
  • Usg Flex 50w
  • Usg Flex 700
  • Usg 20w-Vpn
Published: September 3, 2024

CVE-2024-42060

7.2
    Zyxel
  • Zld Firmware
  • Atp100
  • Atp100w
  • Atp200
  • Atp500
  • Atp700
  • Atp800
  • Usg Flex 100
  • Usg Flex 100ax
  • Usg Flex 100w
  • Usg Flex 200
  • Usg Flex 50
  • Usg Flex 500
  • Usg Flex 700
  • Usg Flex 50w
  • Usg 20w-Vpn
Published: September 3, 2024

CVE-2024-7203

7.2
    Zyxel
  • Zld Firmware
  • Atp100
  • Atp100w
  • Atp200
  • Atp500
  • Atp700
  • Atp800
  • Usg Flex 100
  • Usg Flex 100ax
  • Usg Flex 100w
  • Usg Flex 200
  • Usg Flex 50
  • Usg Flex 500
  • Usg Flex 50w
  • Usg Flex 700
Published: September 3, 2024

CVE-2024-42903

6.5
    Limesurvey
  • Limesurvey
Published: September 3, 2024

CVE-2024-4629

6.5
    Redhat
  • Keycloak
  • Build Of Keycloak
  • Single Sign-On
  • Enterprise Linux
  • Openshift Container Platform
  • Openshift Container Platform For Linuxone
  • Openshift Container Platform For Power
  • Openshift Container Platform Ibm Z Systems
Published: September 3, 2024

CVE-2024-42061

6.1
    Zyxel
  • Zld Firmware
  • Atp100
  • Atp100w
  • Atp200
  • Atp500
  • Atp700
  • Atp800
  • Usg Flex 100
  • Usg Flex 100ax
  • Usg Flex 100w
  • Usg Flex 200
  • Usg Flex 50
  • Usg Flex 500
  • Usg Flex 700
  • Usg Flex 50w
  • Usg 20w-Vpn
Published: September 3, 2024

CVE-2024-44920

6.1
    Seacms
  • Seacms
Published: September 3, 2024

CVE-2024-8386

6.1
    Mozilla
  • Firefox
  • Firefox Esr
Published: September 3, 2024

CVE-2024-7654

6.1
    Progress
  • Openedge
Published: September 3, 2024

CVE-2024-42904

6.1
    Syspass
  • Syspass
Published: September 3, 2024

CVE-2024-43412

5.4
    Xibosignage
  • Xibo
Published: September 3, 2024

CVE-2024-45180

5.4
    Squaredup
  • Squaredup Ds For Scom
Published: September 3, 2024

CVE-2024-45389

5.4
    Cloudcannon
  • Pagefinder
Published: September 3, 2024

CVE-2024-8388

5.3
    Mozilla
  • Firefox
    Google
Published: September 3, 2024

CVE-2024-34463

5.1
    BPL Personal Weighing Scale PWS-01BT IND/09/18/599
Published: September 3, 2024

CVE-2024-6343

4.9
    Zyxel
  • Zld Firmware
  • Atp100
  • Atp100w
  • Atp200
  • Atp500
  • Atp700
  • Atp800
  • Usg Flex 100
  • Usg Flex 100ax
  • Usg Flex 100w
  • Usg Flex 200
  • Usg Flex 50
  • Usg Flex 500
  • Usg Flex 700
  • Usg Flex 50w
  • Usg 20w-Vpn
Published: September 3, 2024

CVE-2024-37136

4.9
    Dell
  • Path To Powerprotect
Published: September 3, 2024

CVE-2024-43803

4.9
    Bare Metal Operator (BMO)
Published: September 3, 2024

CVE-2024-7346

4.8
    Progress
  • Openedge
Published: September 3, 2024

CVE-2024-42901

4.8
    Lime Survey
Published: September 3, 2024

CVE-2024-43413

4.8
    Xibosignage
  • Xibo
Published: September 3, 2024

CVE-2024-8399

4.7
    Mozilla
  • Firefox Focus
Published: September 3, 2024

CVE-2024-41434

4.3
    PingCAP TiDB
Published: September 3, 2024

CVE-2024-45619

4.3
    Redhat
  • Enterprise Linux
    Opensc Project
Published: September 3, 2024

CVE-2024-45678

4.2
    Yubico
  • Yubikey 5c Nfc Firmware
  • Yubikey 5c Nfc
  • Yubikey 5 Nfc Firmware
  • Yubikey 5 Nfc
  • Yubikey 5c Firmware
  • Yubikey 5c
  • Yubikey 5 Nano Firmware
  • Yubikey 5 Nano
  • Yubikey 5c Nano Firmware
  • Yubikey 5c Nano
  • Yubikey 5ci Firmware
  • Yubikey 5ci
  • Yubikey 5 Nfc Fips Firmware
  • Yubikey 5 Nfc Fips
  • Yubikey 5c Nfc Fips Firmware
  • Yubikey 5c Nfc Fips
  • Yubikey 5c Fips Firmware
  • Yubikey 5c Fips
  • Yubikey 5 Nano Fips Firmware
  • Yubikey 5 Nano Fips
  • Yubikey 5c Nano Fips Firmware
  • Yubikey 5c Nano Fips
  • Yubikey 5ci Fips Firmware
  • Yubikey 5ci Fips
  • Yubikey C Bio Firmware
  • Yubikey C Bio
  • Yubikey Bio Firmware
  • Yubikey Bio
  • Security Key Nfc By Yubico Firmware
  • Security Key Nfc By Yubico
  • Security Key C Nfc By Yubico Firmware
  • Security Key C Nfc By Yubico
  • Yubihsm 2 Fips Firmware
  • Yubihsm 2 Fips
  • Yubihsm 2 Firmware
  • Yubihsm 2
Published: September 3, 2024

CVE-2024-45615

3.9
    Redhat
  • Enterprise Linux
    Opensc Project
Published: September 3, 2024

CVE-2024-45616

3.9
    Redhat
  • Enterprise Linux
    Opensc Project
Published: September 3, 2024

CVE-2024-45617

3.9
    Redhat
  • Enterprise Linux
    Opensc Project
Published: September 3, 2024

CVE-2024-45618

3.9
    Redhat
  • Enterprise Linux
    Opensc Project
Published: September 3, 2024

CVE-2024-45620

3.9
    Redhat
  • Enterprise Linux
    Opensc Project
Published: September 3, 2024

CVE-2024-45310

3.6
    Docker
    Kubernetes
    runc
Published: September 3, 2024

CVE-2024-41718

None
    UNKNOWN
Published: September 3, 2024

CVE-2024-8371

None
    UNKNOWN
Published: September 3, 2024

CVE-2024-7619

None
    UNKNOWN
Published: September 3, 2024
Click here to see more Vulnerabilities