Tag: 2024-09-16

3 Attack Reports | 72 Vulnerabilities

Attack reports

The Nanshou Campaign - Hackers' Arsenal Grows Stronger

This comprehensive analysis details a sophisticated cyber campaign targeting over 50,000 Windows servers worldwide, primarily in the healthcare, telecommunications, media, and IT sectors. The campaign exploited vulnerabilities in MS-SQL and phpMyAdmin, dropping advanced payloads like crypto-miners …
privilege escalation
vulnerability exploitation
2024-09-16
smominru
CVE-2014-4113
database servers
kernel rootkit
crypto-miner
Published: September 16, 2024
Linked vulnerabilities : CVE-2014-4113
Downloadable IOCs: 28

New macOS malware gives attackers backdoor access to Macs

A new remote access Trojan (RAT) targeting macOS systems, dubbed HZ RAT, grants remote attackers complete control over infected Macs. The malware collects sensitive data, such as installed apps, user information from WeChat and DingTalk, and Google Password Manager credentials. It's suspected of sp…
backdoor
surveillance
rat
macos
malicious
hz rat
2024-09-16
Published: September 16, 2024
Downloadable IOCs: 25

Gomorrah Stealer: An In-Depth Analysis of a .NET-Based Malware

This comprehensive report analyzes Gomorrah Stealer, a sophisticated malware designed to exfiltrate sensitive information from compromised systems. It operates within a malware-as-a-service framework and targets data from web browsers, cryptocurrency wallets, VPNs, and configuration files. The stea…
evasion
stealer
exfiltration
persistence
malware-as-a-service
2024-09-16
gomorrah stealer
Published: September 16, 2024
Downloadable IOCs: 6
Click here to see more Attack Reports

Vulnerabilities

CVE-2024-8880

9.8
    Playsms
  • Playsms
Published: September 16, 2024

CVE-2024-45694

9.8
    Dlink
  • Dir-X5460 Firmware
  • Dir-X5460
  • Dir-X4860 Firmware
  • Dir-X4860
Published: September 16, 2024

CVE-2024-45695

9.8
    Dlink
  • Dir-X4860 Firmware
  • Dir-X4860
Published: September 16, 2024

CVE-2024-45697

9.8
    Dlink
  • Dir-X4860 Firmware
  • Dir-X4860
Published: September 16, 2024

CVE-2024-45698

9.8
    Dlink
  • Dir-X4860 Firmware
  • Dir-X4860
Published: September 16, 2024

CVE-2024-22399

9.8
    Apache
  • Seata
Published: September 16, 2024

CVE-2024-46451

9.8
    Totolink
  • T8 Firmware
  • T8
Published: September 16, 2024

CVE-2024-46419

9.8
    Totolink
  • T8 Firmware
  • T8
Published: September 16, 2024

CVE-2024-6401

9.8
    Sfs
  • Insuree Gl
Published: September 16, 2024

CVE-2024-7098

9.8
    Sfs
  • Winsure
Published: September 16, 2024

CVE-2024-7104

9.8
    Sfs
  • Winsure
Published: September 16, 2024

CVE-2024-44623

9.8
    Spx
  • Spx Graphics Controller
Published: September 16, 2024

CVE-2024-45414

9.8
    ZTE routers
Published: September 16, 2024

CVE-2024-45415

9.8
    ZTE routers
Published: September 16, 2024

CVE-2024-46958

9.1
    Nextcloud
  • Desktop
    Linux
Published: September 16, 2024

CVE-2024-8779

8.8
    Syscomgo
  • Omflow
Published: September 16, 2024

CVE-2024-45696

8.8
    Dlink
  • Covr-X1870 Firmware
  • Covr-X1870
  • Dir-X4860 Firmware
  • Dir-X4860
Published: September 16, 2024

CVE-2023-42772

8.2
    UEFI firmware for some Intel reference processors
Published: September 16, 2024

CVE-2024-45413

8.1
    ZTE routers
Published: September 16, 2024

CVE-2024-45416

8.1
    ZTE routers
Published: September 16, 2024

CVE-2024-23599

7.9
    UNKNOWN
Published: September 16, 2024

CVE-2024-39613

7.8
    Mattermost
  • Mattermost Desktop
Published: September 16, 2024

CVE-2024-34153

7.8
    Intel
  • Raid Web Console
Published: September 16, 2024

CVE-2024-34543

7.8
    Intel
  • Raid Web Console
Published: September 16, 2024

CVE-2024-42798

7.6
    Kashipara Music Management System
Published: September 16, 2024

CVE-2024-8777

7.5
    Syscomgo
  • Omflow
Published: September 16, 2024

CVE-2024-46424

7.5
    Totolink
  • T8 Firmware
  • T8
Published: September 16, 2024

CVE-2024-46937

7.5
    Mfasoft
  • Secure Authentication Server
Published: September 16, 2024

CVE-2024-8752

7.5
    Smart-Hmi
  • Webiq
    Microsoft
Published: September 16, 2024

CVE-2023-41833

7.5
    Intel UEFI firmware
Published: September 16, 2024

CVE-2023-43626

7.5
    Intel Processors
Published: September 16, 2024

CVE-2024-21829

7.5
    Intel UEFI firmware
Published: September 16, 2024

CVE-2024-21871

7.5
    UEFI firmware for some Intel(R) Processors
Published: September 16, 2024

CVE-2023-45854

7.5
    Shopkit
Published: September 16, 2024

CVE-2024-45799

7.3
    FluxCP
Published: September 16, 2024

CVE-2024-45801

7.3
    DOMPurify
Published: September 16, 2024

CVE-2024-21781

7.2
    UEFI firmware for Intel(R) Processors
Published: September 16, 2024

CVE-2024-8766

6.7
    Acronis Cyber Protect Cloud Agent (Windows)
Published: September 16, 2024

CVE-2024-8778

6.5
    Syscomgo
  • Omflow
Published: September 16, 2024

CVE-2024-8780

6.5
    Syscomgo
  • Omflow
Published: September 16, 2024

CVE-2024-45833

6.5
    Mattermost
  • Mattermost Mobile
Published: September 16, 2024

CVE-2024-38315

6.5
    Ibm
  • Aspera Shares
Published: September 16, 2024

CVE-2024-45835

6.5
    Mattermost
  • Mattermost Server
Published: September 16, 2024

CVE-2024-34016

6.5
    Acronis Cyber Protect Cloud Agent
Published: September 16, 2024

CVE-2024-8776

6.1
    Intumit
  • Smartrobot Firmware
  • Smartrobot
Published: September 16, 2024

CVE-2024-46970

6.1
    Jetbrains
  • Intellij Idea
Published: September 16, 2024

CVE-2023-22351

6.1
    Intel UEFI firmware
Published: September 16, 2024

CVE-2023-23904

6.1
    Intel UEFI firmware for some Intel Processors
Published: September 16, 2024

CVE-2024-4283

6.1
    Gitlab
  • Gitlab
Published: September 16, 2024

CVE-2024-42796

5.9
    Kashipara Music Management System
Published: September 16, 2024

CVE-2024-32940

5.7
    Intel
  • Raid Web Console
Published: September 16, 2024

CVE-2024-34545

5.7
    Intel
  • Raid Web Console
Published: September 16, 2024

CVE-2024-36247

5.7
    Intel
  • Raid Web Console
Published: September 16, 2024

CVE-2024-36261

5.7
    Intel
  • Raid Web Console
Published: September 16, 2024

CVE-2024-28170

5.5
    Intel
  • Raid Web Console
Published: September 16, 2024

CVE-2024-32666

5.5
    Intel
  • Raid Web Console
Published: September 16, 2024

CVE-2024-33848

5.5
    Intel
  • Raid Web Console
Published: September 16, 2024

CVE-2024-1578

5.3
    Rfideas
  • Micard Plus Ci Firmware
  • Micard Plus Ci
  • Micard Plus Ble Firmware
  • Micard Plus Ble
Published: September 16, 2024

CVE-2024-39772

5.3
    Mattermost
  • Mattermost Server
Published: September 16, 2024

CVE-2023-43753

5.3
    Intel(R) Processors with Intel(R) SGX
Published: September 16, 2024

CVE-2024-23984

5.3
    Intel RAPL interface
Published: September 16, 2024

CVE-2024-24968

5.3
    Intel Processor
Published: September 16, 2024

CVE-2024-45800

5.0
    Snappymail
Published: September 16, 2024

CVE-2024-32034

4.8
    Decidim
  • Decidim
Published: September 16, 2024

CVE-2024-39910

4.8
    Decidim
  • Decidim
Published: September 16, 2024

CVE-2024-42794

4.7
    Kashipara Music Management System
Published: September 16, 2024

CVE-2024-6685

4.3
    Gitlab
  • Gitlab
Published: September 16, 2024

CVE-2024-42795

4.2
    Kashipara Music Management System
Published: September 16, 2024

CVE-2023-25546

2.5
    Intel UEFI firmware
Published: September 16, 2024

CVE-2024-8661

None
    Concrete CMS
Published: September 16, 2024

CVE-2024-22013

None
    U-Boot
Published: September 16, 2024

CVE-2024-44445

None
    BSC Smart Contract
Published: September 16, 2024
Click here to see more Vulnerabilities