Tag: 2024-10-11

2 Attack Reports | 133 Vulnerabilities

Attack reports

"Don't feed the toll troll": New threat actor (IMP-1G) engaging in SMS phishing activities, targeting US and Canadian public services. 100+ IOFA domains discovered, with only 10% known to authorities.

A new threat actor, designated as IMP-1G, has been discovered engaging in SMS phishing activities targeting US and Canadian public services. The campaign focuses on toll roads, mass transit systems, postal services, court payments, municipal payments, and state-owned utility companies across multip…

public utilities

government services

Published: October 11, 2024

Downloadable IOCs: 84

Arsenal honed against Russia's government organizations

Core Werewolf, a threat actor targeting Russia's defense industry and critical infrastructure since 2021, has evolved its tactics. The group now employs a new loader written in AutoIt and has expanded its delivery methods to include Telegram alongside email. Their campaign involves RAR archives con…

critical infrastructure

sfx executables

Published: October 11, 2024

Downloadable IOCs: 25

Click here to see more Attack Reports

Vulnerabilities

CVE-2024-47875

Published: October 11, 2024

CVE-2024-9822

Pedalo Connector plugin for WordPress

Published: October 11, 2024

CVE-2024-21534

jsonpath-plus

Published: October 11, 2024

CVE-2024-9234

GutenKit - Page Builder Blocks, Patterns, and Templates for Gutenberg Block Editor plugin

Published: October 11, 2024

CVE-2024-9707

Hunk Companion plugin for WordPress

Published: October 11, 2024

CVE-2024-42640

angular-base64-upload

Published: October 11, 2024

CVE-2024-46088

Zhejiang University Entersoft Customer Resource Management System

Published: October 11, 2024

CVE-2024-46532

Published: October 11, 2024

CVE-2024-48033

Published: October 11, 2024

CVE-2024-48784

SAMPMAX homemax

Published: October 11, 2024

CVE-2024-9164

Published: October 11, 2024

CVE-2024-47830

Published: October 11, 2024

CVE-2024-47331

NinjaTeam Multi Step for Contact Form

Published: October 11, 2024

CVE-2024-44730

Published: October 11, 2024

CVE-2024-48769

de.burgwachter.keyapp.app

Published: October 11, 2024

CVE-2024-48778

Published: October 11, 2024

CVE-2024-48786

Published: October 11, 2024

CVE-2024-48787

Revic Optics Revic Ops

Published: October 11, 2024

CVE-2024-48772

Published: October 11, 2024

CVE-2024-48813

Published: October 11, 2024

CVE-2024-48827

sbondCo Watcharr

Published: October 11, 2024

CVE-2024-44413

Published: October 11, 2024

CVE-2024-44414

Published: October 11, 2024

CVE-2024-9859

Google Chrome

Published: October 11, 2024

CVE-2024-45402

Published: October 11, 2024

CVE-2024-48020

Backup and Staging by WP Time Capsule

Published: October 11, 2024

CVE-2024-48040

Tainacan.Org Tainacan

Published: October 11, 2024

CVE-2024-8755

Published: October 11, 2024

CVE-2024-8970

GitLab CE/EE

Published: October 11, 2024

CVE-2024-47490

Juniper Networks Junos OS Evolved on ACX 7000 Series

Published: October 11, 2024

CVE-2024-48770

Plug n Play Camera com.wisdomcity.zwave

Published: October 11, 2024

CVE-2024-45316

SonicWall Connect Tunnel for Windows

Published: October 11, 2024

CVE-2024-9002

Published: October 11, 2024

CVE-2024-33578

Lenovo Leyun

Published: October 11, 2024

CVE-2024-33579

Published: October 11, 2024

CVE-2024-33580

Lenovo Personal Cloud

Published: October 11, 2024

CVE-2024-33581

Lenovo PC Manager AI

Published: October 11, 2024

CVE-2024-33582

Lenovo Service Framework

Published: October 11, 2024

CVE-2024-4089

Superfile

Published: October 11, 2024

CVE-2024-4130

App Store

Published: October 11, 2024

CVE-2024-4131

Emulator

Published: October 11, 2024

CVE-2024-4132

Lock Screen

Published: October 11, 2024

CVE-2024-9046

Starstudio

Published: October 11, 2024

CVE-2024-42018

Atos Eviden SMC xScale

Published: October 11, 2024

CVE-2024-45396

Published: October 11, 2024

CVE-2024-39547

Juniper Networks Junos OS

Juniper Networks Junos OS Evolved

Published: October 11, 2024

CVE-2024-44729

Published: October 11, 2024

CVE-2024-47497

Juniper Networks Junos OS on SRX Series

Juniper Networks Junos OS on EX Series

Published: October 11, 2024

CVE-2024-47499

Junos OS Evolved

Published: October 11, 2024

CVE-2024-47502

Juniper Networks Junos OS Evolved

Published: October 11, 2024

CVE-2024-47504

Juniper Networks Junos OS on SRX5000 Series

Published: October 11, 2024

CVE-2024-44734

Published: October 11, 2024

CVE-2024-48768

Published: October 11, 2024

CVE-2024-48771

Almando Play APP

Published: October 11, 2024

CVE-2024-48773

Published: October 11, 2024

CVE-2024-48775

Plug n Play Camera com.ezset.delaney

Published: October 11, 2024

CVE-2024-48776

Published: October 11, 2024

CVE-2024-48777

LEDVANCE com.ledvance.smartplus.eu

Published: October 11, 2024

CVE-2024-46468

Published: October 11, 2024

CVE-2024-48788

Published: October 11, 2024

CVE-2024-48938

Znuny

Published: October 11, 2024

CVE-2024-38365

btcd Bitcoin client

Published: October 11, 2024

CVE-2024-39563

Juniper Networks Junos Space

Published: October 11, 2024

CVE-2024-8531

Data Center Expert software

Published: October 11, 2024

CVE-2024-35517

Xr1000 Firmware
Xr1000

Published: October 11, 2024

CVE-2024-35522

Ex3700 Firmware
Ex3700

Published: October 11, 2024

CVE-2024-45754

Centreon BI Server

Published: October 11, 2024

CVE-2023-42133

PAX Android based POS devices

Published: October 11, 2024

CVE-2024-47495

Juniper Networks Junos OS Evolved

Published: October 11, 2024

CVE-2024-48987

Published: October 11, 2024

CVE-2024-7514

WordPress Comments Import & Export plugin for WordPress

Published: October 11, 2024

CVE-2024-9586

Linkz.ai plugin for WordPress

Published: October 11, 2024

CVE-2024-6657

Silicon Labs Bluetooth SDK

Published: October 11, 2024

CVE-2024-39526

Junos OS Evolved

Published: October 11, 2024

CVE-2024-47493

Juniper Networks Junos OS

Published: October 11, 2024

CVE-2024-47498

Juniper Networks Junos OS Evolved on QFX5000 Series

Published: October 11, 2024

CVE-2024-47503

Juniper Networks Junos OS on SRX4600 and SRX5000 Series

Published: October 11, 2024

CVE-2024-47505

Juniper Networks Junos OS Evolved

Published: October 11, 2024

CVE-2024-47508

Junos OS Evolved

Published: October 11, 2024

CVE-2024-47509

Juniper Networks Junos OS Evolved

Published: October 11, 2024

CVE-2024-44415

Published: October 11, 2024

CVE-2024-46215

Published: October 11, 2024

CVE-2024-48041

CreativeMindsSolutions CM Tooltip Glossary

Published: October 11, 2024

CVE-2024-9051

WP Ultimate Post Grid plugin for WordPress

Published: October 11, 2024

CVE-2024-9543

PowerPress Podcasting plugin by Blubrry plugin for WordPress

Published: October 11, 2024

CVE-2024-45184

Samsung Mobile Processor, Wearable Processor, and Modems

Published: October 11, 2024

CVE-2024-9211

FULL - Cliente plugin for WordPress

Published: October 11, 2024

CVE-2024-9221

Tainacan plugin for WordPress

Published: October 11, 2024

CVE-2024-9232

WordPress Download Plugins and Themes in ZIP from Dashboard plugin

Published: October 11, 2024

CVE-2024-9346

WordPress Embed videos and respect privacy plugin

Published: October 11, 2024

CVE-2024-9436

WordPress PublishPress Revisions plugin

Published: October 11, 2024

CVE-2024-9610

WordPress Language Switcher plugin

Published: October 11, 2024

CVE-2024-9611

Increase upload file size & Maximum Execution Time limit plugin for WordPress

Published: October 11, 2024

CVE-2024-9616

BlockMeister - Block Pattern Builder plugin for WordPress

Published: October 11, 2024

CVE-2024-48937

Znuny

Published: October 11, 2024

CVE-2024-8530

Published: October 11, 2024

CVE-2024-45397

h2o

Published: October 11, 2024

CVE-2024-47491

Juniper Networks Junos OS

Juniper Networks Junos OS Evolved

Published: October 11, 2024

CVE-2024-47494

Juniper Networks Junos OS

Published: October 11, 2024

CVE-2024-47506

Juniper Networks Junos OS on SRX Series

Published: October 11, 2024

CVE-2024-47489

Juniper Networks Junos OS Evolved on ACX Series devices

Published: October 11, 2024

CVE-2024-47507

Juniper Networks Junos OS

Junos OS Evolved

Published: October 11, 2024

CVE-2024-45315

SonicWall Connect Tunnel (Windows client)

Published: October 11, 2024

CVE-2024-39527

Juniper Networks Junos OS on SRX Series

Published: October 11, 2024

CVE-2024-47496

Juniper Networks Junos OS on MX Series

Published: October 11, 2024

CVE-2024-47501

Juniper Networks Junos OS

Published: October 11, 2024

CVE-2024-5474

Dolby Vision Provisioning software

Published: October 11, 2024

CVE-2024-44157

Published: October 11, 2024

CVE-2024-9587

Linkz.ai plugin for WordPress

Published: October 11, 2024

CVE-2024-39534

Juniper Networks Junos OS Evolved

Published: October 11, 2024

CVE-2024-44807

baserCMS plugin

Published: October 11, 2024

CVE-2024-39544

Junos OS Evolved

Published: October 11, 2024

CVE-2024-9507

Contact Form by Bit Form plugin for WordPress

Published: October 11, 2024

CVE-2024-9855

Published: October 11, 2024

CVE-2024-44731

Published: October 11, 2024

CVE-2024-47353

QuomodoSoft ElementsReady Addons for Elementor

Published: October 11, 2024

CVE-2024-6985

parisneo/lollms-webui

Published: October 11, 2024

CVE-2024-5005

GitLab EE/CE

Published: October 11, 2024

CVE-2024-8913

The Plus Addons for Elementor

Published: October 11, 2024

CVE-2024-9538

ShopLentor plugin for WordPress

Published: October 11, 2024

CVE-2024-45403

h2o HTTP server

Published: October 11, 2024

CVE-2024-6971

Published: October 11, 2024

CVE-2024-25622

h2o HTTP Server

Published: October 11, 2024

CVE-2024-9856

Published: October 11, 2024

CVE-2024-45317

SMA1000 appliance firmware

Published: October 11, 2024

CVE-2024-47074

Published: October 11, 2024

CVE-2024-9869

Published: October 11, 2024

CVE-2024-8376

Eclipse Mosquitto

Published: October 11, 2024

CVE-2024-47877

Published: October 11, 2024

CVE-2024-9539

GitHub Enterprise Server

Published: October 11, 2024

CVE-2024-8912

Looker (Google Cloud core)

Published: October 11, 2024

CVE-2024-47884

Published: October 11, 2024

CVE-2024-48774

Fermax Asia Pacific Pte Ltd com.fermax.vida

Published: October 11, 2024

Click here to see more Vulnerabilities