Tag: 2024-11-11

3 Attack Reports | 117 Vulnerabilities

Attack reports

New Ymir ransomware discovered used together with RustyStealer | Securelist

A new ransomware called Ymir was discovered during an incident response case. It uses memory operations to evade detection and employs the ChaCha20 cipher for encryption. The attackers gained initial access via PowerShell commands and installed tools like Process Hacker before deploying Ymir. The r…
ransomware
powershell
encryption
incident response
chacha20
systembc
2024-11-11
rustystealer
ymir
Published: November 11, 2024
Downloadable IOCs: 12

New Ymir ransomware discovered used together with RustyStealer

A new ransomware called Ymir was discovered during an incident response case. It uses memory operations to evade detection and employs the ChaCha20 cipher for encryption. The attackers gained initial access via PowerShell commands and installed tools like Process Hacker before deploying Ymir. The r…
ransomware
powershell
encryption
incident response
chacha20
systembc
2024-11-11
rustystealer
ymir
Published: November 11, 2024
Downloadable IOCs: 0

Hello again, FakeBat: popular loader returns after months-long hiatus

FakeBat, a loader previously known as Eugenloader and PaykLoader, has resurfaced after a three-month absence. The malware was distributed through a malicious Google ad impersonating the productivity application Notion. The attack chain involves a tracking template, cloaking domain, and a decoy site…
loader
obfuscation
malvertising
powershell
lummac2
stealer
fakebat
google ads
brand impersonation
2024-11-11
Published: November 11, 2024
Downloadable IOCs: 19
Click here to see more Attack Reports

Vulnerabilities

CVE-2024-51788

10.0
    The Novel Design Store Directory
  • Version(s): n/a, 4.3.0
Published: November 11, 2024

CVE-2024-51789

10.0
    Image Classify
  • Version(s): n/a, 1.0.0
Published: November 11, 2024

CVE-2024-51790

10.0
    Team HB WEBSOL HB AUDIO GALLERY
  • Version(s): n/a through 3.0
Published: November 11, 2024

CVE-2024-51791

10.0
    Made I.T. Forms
  • Version(s): n/a, 2.8.0
Published: November 11, 2024

CVE-2024-51792

10.0
    Audio Record
  • Version(s): n/a, 1.0
Published: November 11, 2024

CVE-2024-51793

10.0
    Webfulcreations
  • Computer Repair Shop
Published: November 11, 2024

CVE-2024-11016

9.8
    Vice
  • Webopac
Published: November 11, 2024

CVE-2024-11018

9.8
    Vice
  • Webopac
Published: November 11, 2024

CVE-2024-11020

9.8
    Vice
  • Webopac
Published: November 11, 2024

CVE-2024-11068

9.8
    Dlink
  • Dsl6740c Firmware
  • Dsl6740c
Published: November 11, 2024

CVE-2024-50989

9.8
    PHPGurukul Online Marriage Registration System
  • Version(s): 1.0
Published: November 11, 2024

CVE-2024-50667

9.8
    Trendnet TEW-820AP
  • Version(s): 1.01.B01
Published: November 11, 2024

CVE-2024-51135

9.8
    powertac-server
  • Version(s): 1.9.0
Published: November 11, 2024

CVE-2024-36061

9.8
    EnGenius EWS356-FIT devices
  • Version(s): 1.1.30
Published: November 11, 2024

CVE-2024-44546

9.8
    Powerjob
  • Version(s): >= 3.20
Published: November 11, 2024

CVE-2024-25254

9.8
    SuperScan
  • Version(s): 4.1
Published: November 11, 2024

CVE-2024-25255

9.8
    Sublime Text
  • Version(s): 4
Published: November 11, 2024

CVE-2024-50636

9.8
    PyMOL
  • Version(s): 2.5.0
Published: November 11, 2024

CVE-2024-52533

9.8
    GNOME GLib
  • Version(s): before 2.82.1
Published: November 11, 2024

CVE-2024-51747

9.1
    Kanboard
  • Version(s): 1.2.42
Published: November 11, 2024

CVE-2024-51748

9.1
    Kanboard
  • Version(s): 1.2.42 and below
Published: November 11, 2024

CVE-2024-46962

9.1
    SYQ com.downloader.video.fast (Master Video Downloader) application
  • Version(s): 2.0
Published: November 11, 2024

CVE-2024-11061

8.8
    Tenda
  • Ac10 Firmware
  • Ac10
Published: November 11, 2024

CVE-2024-41992

8.8
    Wi-Fi Alliance wfa_dut
  • Version(s): through 9.0.0
Published: November 11, 2024

CVE-2024-11017

8.8
    Vice
  • Webopac
Published: November 11, 2024

CVE-2024-51820

8.5
    Lsquared
  • L Squared Hub
Published: November 11, 2024

CVE-2024-51837

8.5
    Andsonsdesign
  • Wp-Contest
Published: November 11, 2024

CVE-2024-51843

8.5
    Olland
  • Horsemanager
Published: November 11, 2024

CVE-2024-51845

8.5
    Richteam Share Buttons - Social Media
  • Version(s): n/a, 1.0.2
Published: November 11, 2024

CVE-2024-51882

8.5
    Ehues
  • Gboy Custom Google Map
Published: November 11, 2024

CVE-2024-52531

8.4
    GNOME libsoup
  • Version(s): before 3.6.1
Published: November 11, 2024

CVE-2024-48322

8.1
    Run.codes
  • Version(s): 1.5.2, older
Published: November 11, 2024

CVE-2024-51484

8.1
    Ampache
  • Ampache
Published: November 11, 2024

CVE-2024-51485

8.1
    Ampache
  • Ampache
Published: November 11, 2024

CVE-2024-51487

8.1
    Ampache
  • Ampache
Published: November 11, 2024

CVE-2024-46963

8.1
    Super Unlimited Video Downloader - All in One (com.superfast.video.downloader) for Android
  • Version(s): up to 5.1.9
Published: November 11, 2024

CVE-2024-46964

8.1
    All Video Downloader for Android
  • Version(s): <= 11.28
Published: November 11, 2024

CVE-2024-46966

8.1
    Ikhgur mn.ikhgur.khotoch (Video Downloader Pro & Browser) application for Android
  • Version(s): 1.0.42
Published: November 11, 2024

CVE-2024-51186

8.0
    D-Link DIR-820L
  • Version(s): 1.05b03
Published: November 11, 2024

CVE-2024-39354

7.8
    Delta Electronics DIAScreen
Published: November 11, 2024

CVE-2024-39605

7.8
    DIAScreen
Published: November 11, 2024

CVE-2024-47131

7.8
    Delta Electronics DIAScreen
Published: November 11, 2024

CVE-2024-48939

7.5
    Paxton Net2
  • Version(s): before 6.07.14023.5015 (SR4)
Published: November 11, 2024

CVE-2024-11067

7.5
    Dlink
  • Dsl6740c Firmware
  • Dsl6740c
Published: November 11, 2024

CVE-2024-52530

7.5
    GNOME libsoup
  • Version(s): before 3.6.0
Published: November 11, 2024

CVE-2024-52532

7.5
    GNOME libsoup
  • Version(s): before 3.6.1
Published: November 11, 2024

CVE-2024-25253

7.5
    Driver Booster
  • Version(s): 10.6
Published: November 11, 2024

CVE-2024-11077

7.3
    Anisha
  • Job Recruitment
Published: November 11, 2024

CVE-2024-11062

7.2
    Dlink
  • Dsl6740c Firmware
  • Dsl6740c
Published: November 11, 2024

CVE-2024-11063

7.2
    Dlink
  • Dsl6740c Firmware
  • Dsl6740c
Published: November 11, 2024

CVE-2024-11064

7.2
    Dlink
  • Dsl6740c Firmware
  • Dsl6740c
Published: November 11, 2024

CVE-2024-11065

7.2
    Dlink
  • Dsl6740c Firmware
  • Dsl6740c
Published: November 11, 2024

CVE-2024-11066

7.2
    Dlink
  • Dsl6740c Firmware
  • Dsl6740c
Published: November 11, 2024

CVE-2024-51571

6.5
    MasterBip para Elementor
  • Version(s): n/a, 1.6.3
Published: November 11, 2024

CVE-2024-51572

6.5
    LH QR Codes
  • Version(s): from n/a through 1.06
Published: November 11, 2024

CVE-2024-51573

6.5
    ML Responsive Audio player with playlist Shortcode
  • Version(s): before 0.2
Published: November 11, 2024

CVE-2024-51574

6.5
    Simple Goods
  • Version(s): n/a, 0.1.3
Published: November 11, 2024

CVE-2024-51575

6.5
    Abdullah Extender All In One For Elementor
  • Version(s): n/a, 1.0.3
Published: November 11, 2024

CVE-2024-52356

6.5
    Webangon
  • The Pack Elementor Addons
Published: November 11, 2024

CVE-2024-52357

6.5
    Lqd
  • Liquid Blocks
Published: November 11, 2024

CVE-2024-52358

6.5
    Cyberchimps
  • Responsive Addons For Elementor
Published: November 11, 2024

CVE-2024-52350

6.5
    Crm2go
  • Crm2go
Published: November 11, 2024

CVE-2024-52351

6.5
    Bu
  • Bu Slideshow
Published: November 11, 2024

CVE-2024-52352

6.5
    Miloco
  • Postcasa Shortcode
Published: November 11, 2024

CVE-2024-52353

6.5
    Sharethepractice
  • Christian Science Bible Lesson Subjects
Published: November 11, 2024

CVE-2024-52354

6.5
    Coolplugins
  • Web Stories Widgets For Elementor
Published: November 11, 2024

CVE-2024-52355

6.5
    Hyumika
  • Openstreetmap
Published: November 11, 2024

CVE-2024-45088

6.4
    Ibm
  • Maximo Asset Management
Published: November 11, 2024

CVE-2024-11059

6.3
    Projectworlds
  • Free Download Online Shopping System
Published: November 11, 2024

CVE-2024-11060

6.3
    Jinher Network Collaborative Management Platform 金和数字化智能办公平台
  • Version(s): 1.0
Published: November 11, 2024

CVE-2024-11074

6.3
    Angeljudesuarez
  • Tailoring Management System
Published: November 11, 2024

CVE-2024-11076

6.3
    Anisha
  • Job Recruitment
Published: November 11, 2024

CVE-2024-11019

6.1
    Vice
  • Webopac
Published: November 11, 2024

CVE-2024-50990

6.1
    PHPGurukul Online Marriage Registration System
  • Version(s): 1.0
Published: November 11, 2024

CVE-2024-50601

6.1
    Axigen Mail Server
  • Version(s): up to 10.5.28, 10.3.3.67, 10.4.42, 10.5.29
Published: November 11, 2024

CVE-2024-51213

6.1
    Online Shop Store
  • Version(s): 1.0
Published: November 11, 2024

CVE-2024-34014

5.5
    Acronis Backup plugin for cPanel & WHM (Linux)
  • Version(s): before build 818
    Acronis Backup extension for Plesk (Linux)
  • Version(s): before build 599
    Acronis Backup plugin for DirectAdmin (Linux)
  • Version(s): before build 181
Published: November 11, 2024

CVE-2024-50263

5.5
    Linux
  • Linux Kernel
Published: November 11, 2024

CVE-2024-51486

5.5
    Ampache
  • Ampache
Published: November 11, 2024

CVE-2024-51490

5.5
    Ampache
  • Ampache
Published: November 11, 2024

CVE-2024-11021

5.4
    Vice
  • Webopac
Published: November 11, 2024

CVE-2024-43437

5.4
    moodle
Published: November 11, 2024

CVE-2024-43439

5.4
    Moodle
Published: November 11, 2024

CVE-2024-46965

5.4
    Fast Video Downloader: Browser for Android
  • Version(s): 1.6-RC1 and prior
Published: November 11, 2024

CVE-2024-51488

5.4
    Ampache
  • Ampache
Published: November 11, 2024

CVE-2024-51489

5.4
    Ampache
  • Ampache
Published: November 11, 2024

CVE-2024-51026

5.4
    NetAdmin IAM system
  • Version(s): 4.0.30319
Published: November 11, 2024

CVE-2024-43429

5.3
    moodle
Published: November 11, 2024

CVE-2024-43430

5.3
    moodle
Published: November 11, 2024

CVE-2024-43432

5.3
    Moodle
Published: November 11, 2024

CVE-2024-43433

5.3
    Moodle
Published: November 11, 2024

CVE-2024-43435

5.3
    Moodle
Published: November 11, 2024

CVE-2024-52288

5.1
    libosdp
  • Version(s): 3.0.0
Published: November 11, 2024

CVE-2024-50991

4.8
    PHPGurukul User Management System
  • Version(s): 1.0
Published: November 11, 2024

CVE-2024-51054

4.8
    PHPGurukul Online Marriage Registration System
  • Version(s): 1.0
Published: November 11, 2024

CVE-2024-45087

4.8
    Ibm
  • Websphere Application Server
Published: November 11, 2024

CVE-2024-51187

4.8
    TRENDnet TEW-651BR
  • Version(s): 2.04B1
    TRENDnet TEW-652BRP
  • Version(s): 3.04b01
    TRENDnet TEW-652BRU
  • Version(s): 1.00b12
Published: November 11, 2024

CVE-2024-51188

4.8
    TRENDnet TEW-651BR
  • Version(s): 2.04B1
    TRENDnet TEW-652BRP
  • Version(s): 3.04b01
    TRENDnet TEW-652BRU
  • Version(s): 1.00b12
Published: November 11, 2024

CVE-2024-51189

4.8
    TRENDnet TEW-651BR
  • Version(s): 2.04B1
    TRENDnet TEW-652BRP
  • Version(s): 3.04b01
    TRENDnet TEW-652BRU
  • Version(s): 1.00b12
Published: November 11, 2024

CVE-2024-51190

4.8
    TRENDnet TEW-651BR
  • Version(s): 2.04B1
    TRENDnet TEW-652BRP
  • Version(s): 3.04b01
    TRENDnet TEW-652BRU
  • Version(s): 1.00b12
Published: November 11, 2024

CVE-2024-11073

4.3
    Mayurik
  • Hospital Management System
Published: November 11, 2024

CVE-2024-51992

4.1
    Orchid Platform
  • Version(s): 8.0 - 14.42.x
Published: November 11, 2024

CVE-2024-43427

3.7
    Moodle
Published: November 11, 2024

CVE-2024-10917

3.7
    Eclipse OpenJ9
  • Version(s): up to 0.47
Published: November 11, 2024

CVE-2024-11070

3.5
    Publiccms
  • Publiccms
Published: November 11, 2024

CVE-2024-11078

3.5
    Anisha
  • Job Recruitment
Published: November 11, 2024

CVE-2024-34015

3.3
    Acronis Backup plugin for cPanel & WHM (Linux)
  • Version(s): before build 818
Published: November 11, 2024

CVE-2020-10370

None
    Cypress Wireless Combo chips
  • Version(s): 2021-01-26 and before
Published: November 11, 2024

CVE-2023-40457

None
    Extreme Networks ExtremeXOS
  • Version(s): 30.7.1.1
Published: November 11, 2024

CVE-2024-38826

None
    Cloud Foundry
  • Version(s): capi release version 1.194.0 or greater, cf-deployment version v44.1.0 or greater
Published: November 11, 2024

CVE-2024-10314

None
    Helix Core
  • Version(s): before 2024.2
Published: November 11, 2024

CVE-2024-10344

None
    Helix Core
  • Version(s): before 2024.2
Published: November 11, 2024

CVE-2024-10345

None
    Helix Core
  • Version(s): before 2024.2
Published: November 11, 2024

CVE-2024-10315

None
    Gliffy Online
  • Version(s): before 4.14.0-6
Published: November 11, 2024

CVE-2024-52286

None
    Stirling-PDF
  • Version(s): 0.32.0
Published: November 11, 2024

CVE-2024-10694

None
    UNKNOWN
Published: November 11, 2024

CVE-2024-23983

None
    UNKNOWN
Published: November 11, 2024
Click here to see more Vulnerabilities