Today > vulnerabilities   -   You can now download lists of IOCs here!

Tag: 2024-09-16

3 attack reports | 72 vulnerabilities

Attack reports

The Nanshou Campaign - Hackers' Arsenal Grows Stronger

This comprehensive analysis details a sophisticated cyber campaign targeting over 50,000 Windows servers worldwide, primarily in the healthcare, telecommunications, media, and IT sectors. The campaign exploited vulnerabilities in MS-SQL and phpMyAdmin, dropping advanced payloads like crypto-miners …

privilege escalation
vulnerability exploitation
2024-09-16
smominru
CVE-2014-4113
database servers
kernel rootkit
crypto-miner
Published: September 16, 2024

Downloadable IOCs 28

New macOS malware gives attackers backdoor access to Macs

A new remote access Trojan (RAT) targeting macOS systems, dubbed HZ RAT, grants remote attackers complete control over infected Macs. The malware collects sensitive data, such as installed apps, user information from WeChat and DingTalk, and Google Password Manager credentials. It's suspected of sp…

backdoor
surveillance
rat
macos
malicious
hz rat
2024-09-16
Published: September 16, 2024

Downloadable IOCs 25

Gomorrah Stealer: An In-Depth Analysis of a .NET-Based Malware

This comprehensive report analyzes Gomorrah Stealer, a sophisticated malware designed to exfiltrate sensitive information from compromised systems. It operates within a malware-as-a-service framework and targets data from web browsers, cryptocurrency wallets, VPNs, and configuration files. The stea…

evasion
stealer
exfiltration
persistence
malware-as-a-service
2024-09-16
gomorrah stealer
Published: September 16, 2024

Downloadable IOCs 6

» Click here to see all Attack Reports «

Vulnerabilities

CVE-2024-8880

9.8
playSMS
Published: September 16, 2024

CVE-2024-45694

9.8
D-Link wireless routers
Published: September 16, 2024

CVE-2024-45695

9.8
D-Link wireless routers
Published: September 16, 2024

CVE-2024-45697

9.8
D-Link wireless routers
Published: September 16, 2024

CVE-2024-45698

9.8
D-Link wireless routers
Published: September 16, 2024

CVE-2024-22399

9.8
Apache Seata
Published: September 16, 2024

CVE-2024-46451

9.8
TOTOLINK AC1200 T8
Published: September 16, 2024

CVE-2024-46419

9.8
TOTOLINK AC1200 T8
Published: September 16, 2024

CVE-2024-6401

9.8
InsureE GL
Published: September 16, 2024

CVE-2024-7098

9.8
ww.Winsure
Published: September 16, 2024

CVE-2024-7104

9.8
ww.Winsure
Published: September 16, 2024

CVE-2024-44623

9.8
TuomoKu SPx-GC
Published: September 16, 2024

CVE-2024-45414

9.8
ZTE routers
Published: September 16, 2024

CVE-2024-45415

9.8
ZTE routers
Published: September 16, 2024

CVE-2024-46958

9.1
Nextcloud Desktop Client
Published: September 16, 2024

CVE-2024-8779

8.8
OMFLOW from The SYSCOM Group
Published: September 16, 2024

CVE-2024-45696

8.8
D-Link wireless routers
Published: September 16, 2024

CVE-2023-42772

8.2
UEFI firmware for some Intel reference processors
Published: September 16, 2024

CVE-2024-45413

8.1
ZTE routers
Published: September 16, 2024

CVE-2024-45416

8.1
ZTE routers
Published: September 16, 2024

CVE-2024-23599

7.9
UNKNOWN
Published: September 16, 2024

CVE-2024-39613

7.8
Mattermost Desktop App
Published: September 16, 2024

CVE-2024-34153

7.8
Intel(R) RAID Web Console software
Published: September 16, 2024

CVE-2024-34543

7.8
Intel(R) RAID Web Console software
Published: September 16, 2024

CVE-2024-42798

7.6
Kashipara Music Management System
Published: September 16, 2024

CVE-2024-8777

7.5
OMFLOW
Published: September 16, 2024

CVE-2024-46424

7.5
TOTOLINK AC1200 T8
Published: September 16, 2024

CVE-2024-46937

7.5
MFASOFT Secure Authentication Server (SAS)
Published: September 16, 2024

CVE-2024-8752

7.5
windows
Published: September 16, 2024

CVE-2023-41833

7.5
Intel UEFI firmware
Published: September 16, 2024

CVE-2023-43626

7.5
Intel Processors
Published: September 16, 2024

CVE-2024-21829

7.5
Intel UEFI firmware
Published: September 16, 2024

CVE-2024-21871

7.5
UEFI firmware for some Intel(R) Processors
Published: September 16, 2024

CVE-2023-45854

7.5
Shopkit
Published: September 16, 2024

CVE-2024-45799

7.3
FluxCP
Published: September 16, 2024

CVE-2024-45801

7.3
DOMPurify
Published: September 16, 2024

CVE-2024-21781

7.2
UEFI firmware for Intel(R) Processors
Published: September 16, 2024

CVE-2024-8766

6.7
Acronis Cyber Protect Cloud Agent (Windows)
Published: September 16, 2024

CVE-2024-8778

6.5
OMFLOW
Published: September 16, 2024

CVE-2024-8780

6.5
OMFLOW
Published: September 16, 2024

CVE-2024-45833

6.5
Mattermost Mobile Apps
Published: September 16, 2024

CVE-2024-38315

6.5
IBM Aspera Shares
Published: September 16, 2024

CVE-2024-45835

6.5
Mattermost Desktop App
Published: September 16, 2024

CVE-2024-34016

6.5
Acronis Cyber Protect Cloud Agent
Published: September 16, 2024

CVE-2024-8776

6.1
SmartRobot from INTUMIT
Published: September 16, 2024

CVE-2024-46970

6.1
JetBrains IntelliJ IDEA
Published: September 16, 2024

CVE-2023-22351

6.1
Intel UEFI firmware
Published: September 16, 2024

CVE-2023-23904

6.1
Intel UEFI firmware for some Intel Processors
Published: September 16, 2024

CVE-2024-4283

6.1
GitLab EE
Published: September 16, 2024

CVE-2024-42796

5.9
Kashipara Music Management System
Published: September 16, 2024

CVE-2024-32940

5.7
Intel(R) RAID Web Console software
Published: September 16, 2024

CVE-2024-34545

5.7
Intel(R) RAID Web Console software
Published: September 16, 2024

CVE-2024-36247

5.7
Intel RAID Web Console
Published: September 16, 2024

CVE-2024-36261

5.7
Intel RAID Web Console software
Published: September 16, 2024

CVE-2024-28170

5.5
Intel RAID Web Console
Published: September 16, 2024

CVE-2024-32666

5.5
Intel RAID Web Console software
Published: September 16, 2024

CVE-2024-33848

5.5
Intel(R) RAID Web Console software
Published: September 16, 2024

CVE-2024-1578

5.3
MiCard PLUS Ci and MiCard PLUS BLE reader
Published: September 16, 2024

CVE-2024-39772

5.3
Mattermost Desktop App
Published: September 16, 2024

CVE-2023-43753

5.3
Intel(R) Processors with Intel(R) SGX
Published: September 16, 2024

CVE-2024-23984

5.3
Intel RAPL interface
Published: September 16, 2024

CVE-2024-24968

5.3
Intel Processor
Published: September 16, 2024

CVE-2024-45800

5.0
Snappymail
Published: September 16, 2024

CVE-2024-32034

4.8
decidim
Published: September 16, 2024

CVE-2024-39910

4.8
decidim
Published: September 16, 2024

CVE-2024-42794

4.7
Kashipara Music Management System
Published: September 16, 2024

CVE-2024-6685

4.3
GitLab CE/EE
Published: September 16, 2024

CVE-2024-42795

4.2
Kashipara Music Management System
Published: September 16, 2024

CVE-2023-25546

2.5
Intel UEFI firmware
Published: September 16, 2024

CVE-2024-8661

None
Concrete CMS
Published: September 16, 2024

CVE-2024-22013

None
U-Boot
Published: September 16, 2024

CVE-2024-44445

None
BSC Smart Contract
Published: September 16, 2024
» Click here to see all Vulnerabilities «