Tag: 2024-11-11

3 Attack Reports | 117 Vulnerabilities

Attack reports

New Ymir ransomware discovered used together with RustyStealer | Securelist

A new ransomware called Ymir was discovered during an incident response case. It uses memory operations to evade detection and employs the ChaCha20 cipher for encryption. The attackers gained initial access via PowerShell commands and installed tools like Process Hacker before deploying Ymir. The r…
ransomware
powershell
encryption
incident response
chacha20
systembc
2024-11-11
rustystealer
ymir
Published: November 11, 2024
Downloadable IOCs: 12

New Ymir ransomware discovered used together with RustyStealer

A new ransomware called Ymir was discovered during an incident response case. It uses memory operations to evade detection and employs the ChaCha20 cipher for encryption. The attackers gained initial access via PowerShell commands and installed tools like Process Hacker before deploying Ymir. The r…
ransomware
powershell
encryption
incident response
chacha20
systembc
2024-11-11
rustystealer
ymir
Published: November 11, 2024
Downloadable IOCs: 0

Hello again, FakeBat: popular loader returns after months-long hiatus

FakeBat, a loader previously known as Eugenloader and PaykLoader, has resurfaced after a three-month absence. The malware was distributed through a malicious Google ad impersonating the productivity application Notion. The attack chain involves a tracking template, cloaking domain, and a decoy site…
loader
obfuscation
malvertising
powershell
lummac2
stealer
fakebat
google ads
brand impersonation
2024-11-11
Published: November 11, 2024
Downloadable IOCs: 19
Click here to see more Attack Reports

Vulnerabilities

CVE-2024-51788

10.0
    The Novel Design Store Directory
Published: November 11, 2024

CVE-2024-51789

10.0
    Image Classify
Published: November 11, 2024

CVE-2024-51790

10.0
    Team HB WEBSOL HB AUDIO GALLERY
Published: November 11, 2024

CVE-2024-51791

10.0
    Made I.T. Forms
Published: November 11, 2024

CVE-2024-51792

10.0
    Audio Record
Published: November 11, 2024

CVE-2024-51793

10.0
    Webfulcreations
  • Computer Repair Shop
Published: November 11, 2024

CVE-2024-11016

9.8
    Vice
  • Webopac
Published: November 11, 2024

CVE-2024-11018

9.8
    Vice
  • Webopac
Published: November 11, 2024

CVE-2024-11020

9.8
    Vice
  • Webopac
Published: November 11, 2024

CVE-2024-11068

9.8
    Dlink
  • Dsl6740c Firmware
  • Dsl6740c
Published: November 11, 2024

CVE-2024-50989

9.8
    PHPGurukul Online Marriage Registration System
Published: November 11, 2024

CVE-2024-50667

9.8
    Trendnet TEW-820AP
Published: November 11, 2024

CVE-2024-51135

9.8
    powertac-server
Published: November 11, 2024

CVE-2024-36061

9.8
    EnGenius EWS356-FIT devices
Published: November 11, 2024

CVE-2024-44546

9.8
    Powerjob
Published: November 11, 2024

CVE-2024-25254

9.8
    SuperScan
Published: November 11, 2024

CVE-2024-25255

9.8
    Sublime Text
Published: November 11, 2024

CVE-2024-50636

9.8
    PyMOL
Published: November 11, 2024

CVE-2024-52533

9.8
    GNOME GLib
Published: November 11, 2024

CVE-2024-51747

9.1
    Kanboard
Published: November 11, 2024

CVE-2024-51748

9.1
    Kanboard
Published: November 11, 2024

CVE-2024-46962

9.1
    SYQ com.downloader.video.fast (Master Video Downloader) application
Published: November 11, 2024

CVE-2024-11061

8.8
    Tenda
  • Ac10 Firmware
  • Ac10
Published: November 11, 2024

CVE-2024-41992

8.8
    Wi-Fi Alliance wfa_dut
Published: November 11, 2024

CVE-2024-11017

8.8
    Vice
  • Webopac
Published: November 11, 2024

CVE-2024-51820

8.5
    Lsquared
  • L Squared Hub
Published: November 11, 2024

CVE-2024-51837

8.5
    Andsonsdesign
  • Wp-Contest
Published: November 11, 2024

CVE-2024-51843

8.5
    Olland
  • Horsemanager
Published: November 11, 2024

CVE-2024-51845

8.5
    Richteam Share Buttons - Social Media
Published: November 11, 2024

CVE-2024-51882

8.5
    Ehues
  • Gboy Custom Google Map
Published: November 11, 2024

CVE-2024-52531

8.4
    GNOME libsoup
Published: November 11, 2024

CVE-2024-48322

8.1
    Run.codes
Published: November 11, 2024

CVE-2024-51484

8.1
    Ampache
  • Ampache
Published: November 11, 2024

CVE-2024-51485

8.1
    Ampache
  • Ampache
Published: November 11, 2024

CVE-2024-51487

8.1
    Ampache
  • Ampache
Published: November 11, 2024

CVE-2024-46963

8.1
    Super Unlimited Video Downloader - All in One (com.superfast.video.downloader) for Android
Published: November 11, 2024

CVE-2024-46964

8.1
    All Video Downloader for Android
Published: November 11, 2024

CVE-2024-46966

8.1
    Ikhgur mn.ikhgur.khotoch (Video Downloader Pro & Browser) application for Android
Published: November 11, 2024

CVE-2024-51186

8.0
    D-Link DIR-820L
Published: November 11, 2024

CVE-2024-39354

7.8
    Delta Electronics DIAScreen
Published: November 11, 2024

CVE-2024-39605

7.8
    DIAScreen
Published: November 11, 2024

CVE-2024-47131

7.8
    Delta Electronics DIAScreen
Published: November 11, 2024

CVE-2024-48939

7.5
    Paxton Net2
Published: November 11, 2024

CVE-2024-11067

7.5
    Dlink
  • Dsl6740c Firmware
  • Dsl6740c
Published: November 11, 2024

CVE-2024-52530

7.5
    GNOME libsoup
Published: November 11, 2024

CVE-2024-52532

7.5
    GNOME libsoup
Published: November 11, 2024

CVE-2024-25253

7.5
    Driver Booster
Published: November 11, 2024

CVE-2024-11077

7.3
    Anisha
  • Job Recruitment
Published: November 11, 2024

CVE-2024-11062

7.2
    Dlink
  • Dsl6740c Firmware
  • Dsl6740c
Published: November 11, 2024

CVE-2024-11063

7.2
    Dlink
  • Dsl6740c Firmware
  • Dsl6740c
Published: November 11, 2024

CVE-2024-11064

7.2
    Dlink
  • Dsl6740c Firmware
  • Dsl6740c
Published: November 11, 2024

CVE-2024-11065

7.2
    Dlink
  • Dsl6740c Firmware
  • Dsl6740c
Published: November 11, 2024

CVE-2024-11066

7.2
    Dlink
  • Dsl6740c Firmware
  • Dsl6740c
Published: November 11, 2024

CVE-2024-51571

6.5
    MasterBip para Elementor
Published: November 11, 2024

CVE-2024-51572

6.5
    LH QR Codes
Published: November 11, 2024

CVE-2024-51573

6.5
    ML Responsive Audio player with playlist Shortcode
Published: November 11, 2024

CVE-2024-51574

6.5
    Simple Goods
Published: November 11, 2024

CVE-2024-51575

6.5
    Abdullah Extender All In One For Elementor
Published: November 11, 2024

CVE-2024-52356

6.5
    Webangon
  • The Pack Elementor Addons
Published: November 11, 2024

CVE-2024-52357

6.5
    Lqd
  • Liquid Blocks
Published: November 11, 2024

CVE-2024-52358

6.5
    Cyberchimps
  • Responsive Addons For Elementor
Published: November 11, 2024

CVE-2024-52350

6.5
    Crm2go
  • Crm2go
Published: November 11, 2024

CVE-2024-52351

6.5
    Bu
  • Bu Slideshow
Published: November 11, 2024

CVE-2024-52352

6.5
    Miloco
  • Postcasa Shortcode
Published: November 11, 2024

CVE-2024-52353

6.5
    Sharethepractice
  • Christian Science Bible Lesson Subjects
Published: November 11, 2024

CVE-2024-52354

6.5
    Coolplugins
  • Web Stories Widgets For Elementor
Published: November 11, 2024

CVE-2024-52355

6.5
    Hyumika
  • Openstreetmap
Published: November 11, 2024

CVE-2024-45088

6.4
    Ibm
  • Maximo Asset Management
Published: November 11, 2024

CVE-2024-11059

6.3
    Projectworlds
  • Free Download Online Shopping System
Published: November 11, 2024

CVE-2024-11060

6.3
    Jinher Network Collaborative Management Platform 金和数字化智能办公平台
Published: November 11, 2024

CVE-2024-11074

6.3
    Angeljudesuarez
  • Tailoring Management System
Published: November 11, 2024

CVE-2024-11076

6.3
    Anisha
  • Job Recruitment
Published: November 11, 2024

CVE-2024-11019

6.1
    Vice
  • Webopac
Published: November 11, 2024

CVE-2024-50990

6.1
    PHPGurukul Online Marriage Registration System
Published: November 11, 2024

CVE-2024-50601

6.1
    Axigen Mail Server
Published: November 11, 2024

CVE-2024-51213

6.1
    Online Shop Store
Published: November 11, 2024

CVE-2024-34014

5.5
    Acronis Backup plugin for cPanel & WHM (Linux)
    Acronis Backup extension for Plesk (Linux)
    Acronis Backup plugin for DirectAdmin (Linux)
Published: November 11, 2024

CVE-2024-50263

5.5
    Linux
  • Linux Kernel
Published: November 11, 2024

CVE-2024-51486

5.5
    Ampache
  • Ampache
Published: November 11, 2024

CVE-2024-51490

5.5
    Ampache
  • Ampache
Published: November 11, 2024

CVE-2024-11021

5.4
    Vice
  • Webopac
Published: November 11, 2024

CVE-2024-43437

5.4
    moodle
Published: November 11, 2024

CVE-2024-43439

5.4
    Moodle
Published: November 11, 2024

CVE-2024-46965

5.4
    Fast Video Downloader: Browser for Android
Published: November 11, 2024

CVE-2024-51488

5.4
    Ampache
  • Ampache
Published: November 11, 2024

CVE-2024-51489

5.4
    Ampache
  • Ampache
Published: November 11, 2024

CVE-2024-51026

5.4
    NetAdmin IAM system
Published: November 11, 2024

CVE-2024-43429

5.3
    moodle
Published: November 11, 2024

CVE-2024-43430

5.3
    moodle
Published: November 11, 2024

CVE-2024-43432

5.3
    Moodle
Published: November 11, 2024

CVE-2024-43433

5.3
    Moodle
Published: November 11, 2024

CVE-2024-43435

5.3
    Moodle
Published: November 11, 2024

CVE-2024-52288

5.1
    libosdp
Published: November 11, 2024

CVE-2024-50991

4.8
    PHPGurukul User Management System
Published: November 11, 2024

CVE-2024-51054

4.8
    PHPGurukul Online Marriage Registration System
Published: November 11, 2024

CVE-2024-45087

4.8
    Ibm
  • Websphere Application Server
Published: November 11, 2024

CVE-2024-51187

4.8
    TRENDnet TEW-651BR
    TRENDnet TEW-652BRP
    TRENDnet TEW-652BRU
Published: November 11, 2024

CVE-2024-51188

4.8
    TRENDnet TEW-651BR
    TRENDnet TEW-652BRP
    TRENDnet TEW-652BRU
Published: November 11, 2024

CVE-2024-51189

4.8
    TRENDnet TEW-651BR
    TRENDnet TEW-652BRP
    TRENDnet TEW-652BRU
Published: November 11, 2024

CVE-2024-51190

4.8
    TRENDnet TEW-651BR
    TRENDnet TEW-652BRP
    TRENDnet TEW-652BRU
Published: November 11, 2024

CVE-2024-11073

4.3
    Mayurik
  • Hospital Management System
Published: November 11, 2024

CVE-2024-51992

4.1
    Orchid Platform
Published: November 11, 2024

CVE-2024-43427

3.7
    Moodle
Published: November 11, 2024

CVE-2024-10917

3.7
    Eclipse OpenJ9
Published: November 11, 2024

CVE-2024-11070

3.5
    Publiccms
  • Publiccms
Published: November 11, 2024

CVE-2024-11078

3.5
    Anisha
  • Job Recruitment
Published: November 11, 2024

CVE-2024-34015

3.3
    Acronis Backup plugin for cPanel & WHM (Linux)
Published: November 11, 2024

CVE-2020-10370

None
    Cypress Wireless Combo chips
Published: November 11, 2024

CVE-2023-40457

None
    Extreme Networks ExtremeXOS
Published: November 11, 2024

CVE-2024-38826

None
    Cloud Foundry
Published: November 11, 2024

CVE-2024-10314

None
    Helix Core
Published: November 11, 2024

CVE-2024-10344

None
    Helix Core
Published: November 11, 2024

CVE-2024-10345

None
    Helix Core
Published: November 11, 2024

CVE-2024-10315

None
    Gliffy Online
Published: November 11, 2024

CVE-2024-52286

None
    Stirling-PDF
Published: November 11, 2024

CVE-2024-10694

None
    UNKNOWN
Published: November 11, 2024

CVE-2024-23983

None
    UNKNOWN
Published: November 11, 2024
Click here to see more Vulnerabilities