Tag : 2024-09-03

3 attack reports | 70 vulnerabilities

Attack Reports

Title Published Tags Description Number of indicators
Threat actors using MacroPack to deploy Brute Ratel, Havoc and PhantomCore payloads Sept. 3, 2024, 8 p.m. Multiple Microsoft Office documents generated by the MacroPack framework have been discovered, likely used by malicious actors to… 16
Zharkbot Strings Sept. 3, 2024, 8:09 a.m. Zharkbot is a C++ downloader with extensive anti-analysis and anti-sandbox features. It uses in-line string encryption and API ca… 2
Advanced Persistent Threat Targeting Vietnamese Human Rights Defenders Sept. 3, 2024, 8:02 a.m. A long-term intrusion targeting a Vietnamese human rights non-profit organization has been discovered, likely spanning at least f… 46

Vulnerabilities

CVE CVSS Published Product impacted Tags
CVE-2024-7261 9.8 Sept. 3, 2024, 3:15 a.m. LOGO-VULNERABLEZyxel NWA1123ACv3
CVE-2024-44921 9.8 Sept. 3, 2024, 12:15 p.m. LOGO-VULNERABLESeaCMS
CVE-2024-8381 9.8 Sept. 3, 2024, 1:15 p.m. LOGO-VULNERABLEFirefox
CVE-2024-8384 9.8 Sept. 3, 2024, 1:15 p.m. LOGO-VULNERABLEFirefox
CVE-2024-8385 9.8 Sept. 3, 2024, 1:15 p.m. LOGO-VULNERABLEFirefox
CVE-2024-8387 9.8 Sept. 3, 2024, 1:15 p.m. LOGO-VULNERABLEFirefox
CVE-2024-8389 9.8 Sept. 3, 2024, 1:15 p.m. LOGO-VULNERABLEFirefox
CVE-2024-41433 9.8 Sept. 3, 2024, 9:15 p.m. LOGO-VULNERABLEPingCAP TiDB
CVE-2024-38811 8.8 Sept. 3, 2024, 10:15 a.m. LOGO-VULNERABLEVMware Fusion
CVE-2024-45586 8.8 Sept. 3, 2024, 10:15 a.m. LOGO-VULNERABLESymphony XTS Web Trading and Mobile Trading platforms
CVE-2024-45587 8.8 Sept. 3, 2024, 10:15 a.m. LOGO-VULNERABLESymphony XTS Web Trading platform
CVE-2023-49233 8.8 Sept. 3, 2024, 5:15 p.m. LOGO-VULNERABLEVisual Planning Admin Center
CVE-2024-42902 8.8 Sept. 3, 2024, 6:15 p.m. LOGO-VULNERABLELimeSurvey
CVE-2024-45307 8.8 Sept. 3, 2024, 7:15 p.m. LOGO-VULNERABLESudoBot
CVE-2024-45394 8.8 Sept. 3, 2024, 9:15 p.m. LOGO-VULNERABLEAuthenticator browser extension
CVE-2024-7345 8.3 Sept. 3, 2024, 3:15 p.m. LOGO-VULNERABLEOpenEdge
CVE-2024-7654 8.3 Sept. 3, 2024, 3:15 p.m. LOGO-VULNERABLEOpenEdge Management
CVE-2024-42057 8.1 Sept. 3, 2024, 2:15 a.m. LOGO-VULNERABLEZyxel ATP series
CVE-2024-45588 8.1 Sept. 3, 2024, 11:15 a.m. LOGO-VULNERABLESymphony XTS Web Trading platform
CVE-2024-42991 8.1 Sept. 3, 2024, 4:15 p.m. LOGO-VULNERABLEMCMS
CVE-2024-3655 7.8 Sept. 3, 2024, 10:15 a.m. LOGO-VULNERABLEArm Ltd Bifrost GPU Kernel Driver
CVE-2024-8374 7.8 Sept. 3, 2024, 10:15 a.m. LOGO-VULNERABLEUltimaker Cura slicer
CVE-2024-38456 7.8 Sept. 3, 2024, 6:15 p.m. LOGO-VULNERABLEHIGH-LEIT
CVE-2024-42058 7.5 Sept. 3, 2024, 2:15 a.m. LOGO-VULNERABLEZyxel ATP series
CVE-2024-5412 7.5 Sept. 3, 2024, 2:15 a.m. LOGO-VULNERABLEZyxel VMG8825-T50K firmware
CVE-2024-6119 7.5 Sept. 3, 2024, 4:15 p.m. LOGO-VULNERABLEOpenSSL
CVE-2024-41435 7.5 Sept. 3, 2024, 7:15 p.m. LOGO-VULNERABLEYugabyteDB
CVE-2024-41436 7.5 Sept. 3, 2024, 7:15 p.m. LOGO-VULNERABLEClickHouse
CVE-2024-45391 7.5 Sept. 3, 2024, 8:15 p.m. LOGO-VULNERABLE@tinacms/cli
CVE-2024-45390 7.3 Sept. 3, 2024, 8:15 p.m. LOGO-VULNERABLE@blakeembrey/template
CVE-2024-42059 7.2 Sept. 3, 2024, 2:15 a.m. LOGO-VULNERABLEZyxel ATP series
CVE-2024-42060 7.2 Sept. 3, 2024, 2:15 a.m. LOGO-VULNERABLEZyxel ATP series
CVE-2024-7203 7.2 Sept. 3, 2024, 2:15 a.m. LOGO-VULNERABLEZyxel ATP series
CVE-2024-7346 7.2 Sept. 3, 2024, 3:15 p.m. LOGO-VULNERABLEOpenEdge
CVE-2024-37136 6.8 Sept. 3, 2024, 6:15 a.m. LOGO-VULNERABLEDell Path to PowerProtect
CVE-2024-4629 6.5 Sept. 3, 2024, 8:15 p.m. LOGO-VULNERABLEKeycloak
CVE-2024-45389 6.4 Sept. 3, 2024, 8:15 p.m. LOGO-VULNERABLEPagefind
CVE-2024-8380 6.3 Sept. 3, 2024, 1:15 a.m. LOGO-VULNERABLESourceCodester Contact Manager with Export to VCF
CVE-2024-42061 6.1 Sept. 3, 2024, 3:15 a.m. LOGO-VULNERABLEZyxel ATP series
CVE-2024-44920 6.1 Sept. 3, 2024, 12:15 p.m. LOGO-VULNERABLESeaCMS
CVE-2024-34463 5.1 Sept. 3, 2024, 2:15 p.m. LOGO-VULNERABLEBPL Personal Weighing Scale PWS-01BT IND/09/18/599
CVE-2024-6343 4.9 Sept. 3, 2024, 2:15 a.m. LOGO-VULNERABLEZyxel ATP series
CVE-2024-43803 4.9 Sept. 3, 2024, 7:15 p.m. LOGO-VULNERABLEBare Metal Operator (BMO)
CVE-2024-42901 4.8 Sept. 3, 2024, 6:15 p.m. LOGO-VULNERABLELime Survey
CVE-2024-43412 4.6 Sept. 3, 2024, 5:15 p.m. LOGO-VULNERABLEXibo CMS
CVE-2024-41434 4.3 Sept. 3, 2024, 8:15 p.m. LOGO-VULNERABLEPingCAP TiDB
CVE-2024-45615 3.9 Sept. 3, 2024, 10:15 p.m. LOGO-VULNERABLEOpenSC
CVE-2024-45616 3.9 Sept. 3, 2024, 10:15 p.m. LOGO-VULNERABLEOpenSC
CVE-2024-45617 3.9 Sept. 3, 2024, 10:15 p.m. LOGO-VULNERABLEOpenSC
CVE-2024-45618 3.9 Sept. 3, 2024, 10:15 p.m. LOGO-VULNERABLEOpenSC
CVE-2024-45619 3.9 Sept. 3, 2024, 10:15 p.m. LOGO-VULNERABLEOpenSC
CVE-2024-45620 3.9 Sept. 3, 2024, 10:15 p.m. LOGO-VULNERABLEOpenSC
CVE-2024-45310 3.6 Sept. 3, 2024, 7:15 p.m. LOGO-VULNERABLEDocker
CVE-2024-43413 3.5 Sept. 3, 2024, 7:15 p.m. LOGO-VULNERABLEXibo CMS
CVE-2024-41718 None Sept. 3, 2024, 11:15 a.m. LOGO-VULNERABLEUNKNOWN
CVE-2024-6473 None Sept. 3, 2024, 11:15 a.m. LOGO-VULNERABLEYandex Browser for Desktop
CVE-2024-6232 None Sept. 3, 2024, 1:15 p.m. LOGO-VULNERABLECPython
CVE-2024-8371 None Sept. 3, 2024, 1:15 p.m. LOGO-VULNERABLEUNKNOWN
CVE-2024-8382 None Sept. 3, 2024, 1:15 p.m. LOGO-VULNERABLEFirefox
CVE-2024-8383 None Sept. 3, 2024, 1:15 p.m. LOGO-VULNERABLEFirefox
CVE-2024-8386 None Sept. 3, 2024, 1:15 p.m. LOGO-VULNERABLEFirefox
CVE-2024-8388 None Sept. 3, 2024, 1:15 p.m. LOGO-VULNERABLEFirefox for Android
CVE-2024-4259 None Sept. 3, 2024, 2:15 p.m. LOGO-VULNERABLEAKOS
CVE-2024-42903 None Sept. 3, 2024, 6:15 p.m. LOGO-VULNERABLELimeSurvey
CVE-2024-42904 None Sept. 3, 2024, 6:15 p.m. LOGO-VULNERABLESysPass
CVE-2024-7619 None Sept. 3, 2024, 6:15 p.m. LOGO-VULNERABLEUNKNOWN
CVE-2024-45180 None Sept. 3, 2024, 8:15 p.m. LOGO-VULNERABLESquaredUp DS for SCOM
CVE-2024-45678 None Sept. 3, 2024, 8:15 p.m. LOGO-VULNERABLEYubico YubiKey 5 Series devices
CVE-2024-8399 None Sept. 3, 2024, 8:15 p.m. LOGO-VULNERABLEFocus for iOS
CVE-2024-44809 None Sept. 3, 2024, 10:15 p.m. LOGO-VULNERABLEPi Camera project