Tag: 2024-11-26

6 Attack Reports | 164 Vulnerabilities

Attack reports

Unveiling the Past and Present of APT-K-47 Weapon: Asyncshell

The intelligence report details the discovery and analysis of an attack campaign by the APT-K-47 organization, also known as Mysterious Elephant. The attackers used a CHM file to execute a malicious payload, which is an upgraded version of their Asyncshell tool. The new version, dubbed Asyncshell-v…
c2
base64
2024-11-26
chm
asyncshell
hajj
Published: November 26, 2024
Downloadable IOCs: 3

The Evolution of a Cyber Threat: From JinxLoader to Astolfo Loader

JinxLoader, a Go-based malware loader distributed via phishing emails, has evolved into Astolfo Loader. Originally sold on Hack Forums, JinxLoader was designed to deploy additional malware on Windows and Linux systems. The malware operates as a Malware-as-a-Service, making sophisticated tools acces…
c2
2024-11-26
jinxloader
astolfo loader
Published: November 26, 2024
Downloadable IOCs: 6

RobotDropper Automates the Delivery of Multiple Infostealers

A phishing campaign is distributing Trojanized MSI files that use DLL sideloading to execute LegionLoader, a malicious program that delivers multiple infostealers. The campaign is widespread, with over 400 unique malicious MSI files identified since June 2024. Victims are targeted globally through …
phishing
infostealer
dll sideloading
2024-11-26
legionloader
robotdropper
Published: November 26, 2024
Downloadable IOCs: 5

Know Thy Enemy: A Novel November Case on Persistent Remote Access

In early November 2024, a threat actor gained initial access to a network via brute-forcing a public-facing RD-Web instance. Using PsExec, they executed batch files across multiple machines to enable RDP connections and install a malicious MeshAgent. The actor renamed the MeshAgent to mimic a virtu…
remote access
persistent
lateral movement
meshagent
2024-11-26
psexec
rdp brute force
Published: November 26, 2024
Downloadable IOCs: 6

An NPM and PyPI Malicious Campaign Targeting Windows Users

Datadog Security Research has uncovered an ongoing supply chain attack targeting both npm and PyPi package repositories, tracked as MUT-8694. This campaign uses malicious packages to deliver infostealer malware to Windows users, leveraging legitimate services like GitHub and repl.it for payload hos…
supply-chain
typosquatting
infostealer
npm
pypi
2024-11-26
roblox
Published: November 26, 2024
Downloadable IOCs: 11

Python Crypto Library Updated to Steal Private Keys

Phylum's automated risk detection platform discovered that the PyPI package aiocpa was updated to include malicious code that steals private keys by exfiltrating them through Telegram when users initialize the crypto library.
pypi
telegram
crypto
2024-11-26
aiocpa
Published: November 26, 2024
Downloadable IOCs: 4
Click here to see more Attack Reports

Vulnerabilities

CVE-2024-10542

9.8
    WordPress Anti-Spam by CleanTalk plugin
Published: November 26, 2024

CVE-2017-11076

9.8
    Qualcomm hardware with VP9 hardware-accelerated decoding
Published: November 26, 2024

CVE-2017-17772

9.8
    Qualcomm Wi-Fi chipset firmware
Published: November 26, 2024

CVE-2018-11922

9.8
    TouchPal Keyboard App
Published: November 26, 2024

CVE-2024-11680

9.8
    Projectsend
  • Projectsend
Published: November 26, 2024

CVE-2024-11024

9.8
    AppPresser - Mobile App Framework plugin for WordPress
Published: November 26, 2024

CVE-2024-50370

9.8
    Advantech EKI-6333AC-2G
    Advantech EKI-6333AC-2GD
    Advantech EKI-6333AC-1GPO
Published: November 26, 2024

CVE-2024-50371

9.8
    Advantech EKI-6333AC-2G
    Advantech EKI-6333AC-2GD
    Advantech EKI-6333AC-1GPO
Published: November 26, 2024

CVE-2024-50372

9.8
    Advantech EKI-6333AC-2G
    Advantech EKI-6333AC-2GD
    Advantech EKI-6333AC-1GPO
Published: November 26, 2024

CVE-2024-50373

9.8
    Advantech EKI-6333AC-2G
    Advantech EKI-6333AC-2GD
    Advantech EKI-6333AC-1GPO
Published: November 26, 2024

CVE-2024-50374

9.8
    Advantech EKI-6333AC-2G
    Advantech EKI-6333AC-2GD
    Advantech EKI-6333AC-1GPO
Published: November 26, 2024

CVE-2024-50375

9.8
    Advantech EKI-6333AC-2G
    Advantech EKI-6333AC-2GD
    Advantech EKI-6333AC-1GPO
Published: November 26, 2024

CVE-2024-11693

9.8
    Thunderbird
    Firefox
Published: November 26, 2024

CVE-2024-11698

9.8
    Firefox
    Thunderbird
Published: November 26, 2024

CVE-2024-11704

9.8
    Firefox
    Thunderbird
Published: November 26, 2024

CVE-2024-11145

9.8
    Joomla! Valor Apps Easy Folder Listing Pro
Published: November 26, 2024

CVE-2024-50942

9.8
    qiwen-file
Published: November 26, 2024

CVE-2024-49038

9.3
    Copilot Studio
Published: November 26, 2024

CVE-2024-33610

9.1
    UNKNOWN
Published: November 26, 2024

CVE-2024-35244

9.1
    UNKNOWN
Published: November 26, 2024

CVE-2024-36248

9.1
    UNKNOWN
Published: November 26, 2024

CVE-2024-11705

9.1
    Firefox
    Thunderbird
Published: November 26, 2024

CVE-2024-28038

9.0
    UNKNOWN
Published: November 26, 2024

CVE-2024-10729

8.8
    Booking & Appointment Plugin for WooCommerce plugin for WordPress
Published: November 26, 2024

CVE-2024-11691

8.8
    UNKNOWN
    Firefox
    Thunderbird
Published: November 26, 2024

CVE-2024-11697

8.8
    Thunderbird
    Firefox
Published: November 26, 2024

CVE-2024-11699

8.8
    Thunderbird
    Firefox
Published: November 26, 2024

CVE-2024-53555

8.8
    Taiga
Published: November 26, 2024

CVE-2024-11745

8.8
    Tenda
  • Ac8 Firmware
  • Ac8
Published: November 26, 2024

CVE-2024-49035

8.7
    UNKNOWN
Published: November 26, 2024

CVE-2024-52899

8.5
    IBM Data Virtualization Manager for z/OS
Published: November 26, 2024

CVE-2016-10394

8.4
    UNKNOWN
Published: November 26, 2024

CVE-2017-15832

8.4
    Qualcomm WLAN host driver
Published: November 26, 2024

CVE-2017-18153

8.4
    Qualcomm Driver
Published: November 26, 2024

CVE-2018-11952

8.4
    UNKNOWN
Published: November 26, 2024

CVE-2023-0163

8.4
    Mozilla Convict
Published: November 26, 2024

CVE-2016-10408

8.4
    UNKNOWN
Published: November 26, 2024

CVE-2017-18306

8.4
    UNKNOWN
Published: November 26, 2024

CVE-2017-18307

8.4
    Qualcomm Products
Published: November 26, 2024

CVE-2018-5852

8.4
    Qualcomm IPA driver
Published: November 26, 2024

CVE-2024-8114

8.2
    Gitlab
  • Gitlab
Published: November 26, 2024

CVE-2024-49052

8.2
    Microsoft Azure PolicyWatch
Published: November 26, 2024

CVE-2024-53843

8.1
    @dapperduckling/keycloak-connector-server
Published: November 26, 2024

CVE-2024-10781

8.1
    WordPress - CleanTalk plugin
Published: November 26, 2024

CVE-2024-11700

8.1
    Firefox
    Thunderbird
Published: November 26, 2024

CVE-2024-32965

8.1
    Lobe Chat
Published: November 26, 2024

CVE-2024-53673

8.1
    Hpe
  • Insight Remote Support
Published: November 26, 2024

CVE-2023-1521

7.8
    sccache
Published: November 26, 2024

CVE-2024-38830

7.8
    VMware Aria Operations
Published: November 26, 2024

CVE-2024-38831

7.8
    VMware Aria Operations
Published: November 26, 2024

CVE-2018-11816

7.8
    Qualcomm Snapdragon processors
Published: November 26, 2024

CVE-2024-52336

7.8
    Tuned package
Published: November 26, 2024

CVE-2024-49595

7.6
    Dell Wyse Management Suite
Published: November 26, 2024

CVE-2024-49597

7.6
    Dell Wyse Management Suite
Published: November 26, 2024

CVE-2024-49053

7.6
    Microsoft Dynamics 365 Sales
Published: November 26, 2024

CVE-2024-49353

7.5
    IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data
Published: November 26, 2024

CVE-2024-10570

7.5
    WordPress Security & Malware scan by CleanTalk plugin
Published: November 26, 2024

CVE-2024-33605

7.5
    UNKNOWN
Published: November 26, 2024

CVE-2024-36251

7.5
    UNKNOWN
Published: November 26, 2024

CVE-2024-36254

7.5
    Sharp Corporation MFPs
    Toshiba Tec Corporation MFPs
Published: November 26, 2024

CVE-2024-47257

7.5
    Axis
Published: November 26, 2024

CVE-2024-51569

7.5
    Apache NimBLE
Published: November 26, 2024

CVE-2024-11702

7.5
    Firefox
    Thunderbird
Published: November 26, 2024

CVE-2024-36249

7.4
    Sharp Corporation multifunction printers
    Toshiba Tech Corporation multifunction printers
Published: November 26, 2024

CVE-2024-8676

7.4
    CRI-O
Published: November 26, 2024

CVE-2024-50376

7.3
    Advantech EKI-6333AC-2G
    Advantech EKI-6333AC-2GD
    Advantech EKI-6333AC-1GPO
Published: November 26, 2024

CVE-2024-11744

7.3
    1000projects
  • Portfolio Management System Mca
Published: November 26, 2024

CVE-2024-11622

7.3
    Hpe
  • Insight Remote Support
Published: November 26, 2024

CVE-2024-53674

7.3
    Hpe
  • Insight Remote Support
Published: November 26, 2024

CVE-2024-53675

7.3
    Hpe
  • Insight Remote Support
Published: November 26, 2024

CVE-2024-11817

7.3
    Phpgurukul
  • User Registration \& Login And User Management System
Published: November 26, 2024

CVE-2024-9504

7.2
    Booking calendar, Appointment Booking System plugin for WordPress
Published: November 26, 2024

CVE-2024-50358

7.2
    Advantech EKI-6333AC-2G
    Advantech EKI-6333AC-2GD
    Advantech EKI-6333AC-1GPO
Published: November 26, 2024

CVE-2024-50359

7.2
    Advantech EKI-6333AC-2G
    Advantech EKI-6333AC-2GD
    Advantech EKI-6333AC-1GPO
Published: November 26, 2024

CVE-2024-50360

7.2
    Advantech EKI-6333AC-2G
    Advantech EKI-6333AC-2GD
    Advantech EKI-6333AC-1GPO
Published: November 26, 2024

CVE-2024-50361

7.2
    Advantech EKI-6333AC-2G
    Advantech EKI-6333AC-2GD
    Advantech EKI-6333AC-1GPO
Published: November 26, 2024

CVE-2024-50362

7.2
    Advantech EKI-6333AC-2G
    Advantech EKI-6333AC-2GD
    Advantech EKI-6333AC-1GPO
Published: November 26, 2024

CVE-2024-50363

7.2
    Advantech EKI-6333AC-2G
    Advantech EKI-6333AC-2GD
    Advantech EKI-6333AC-1GPO
Published: November 26, 2024

CVE-2024-50364

7.2
    Advantech EKI-6333AC-2G
    Advantech EKI-6333AC-2GD
    Advantech EKI-6333AC-1GPO
Published: November 26, 2024

CVE-2024-50365

7.2
    Advantech EKI-6333AC-2G
    Advantech EKI-6333AC-2GD
    Advantech EKI-6333AC-1GPO
Published: November 26, 2024

CVE-2024-50366

7.2
    Advantech EKI-6333AC-2G
    Advantech EKI-6333AC-2GD
    Advantech EKI-6333AC-1GPO
Published: November 26, 2024

CVE-2024-50367

7.2
    Advantech EKI-6333AC-2G
    Advantech EKI-6333AC-2GD
    Advantech EKI-6333AC-1GPO
Published: November 26, 2024

CVE-2024-50368

7.2
    Advantech EKI-6333AC-2G
    Advantech EKI-6333AC-2GD
    Advantech EKI-6333AC-1GPO
Published: November 26, 2024

CVE-2024-50369

7.2
    Advantech EKI-6333AC-2G
    Advantech EKI-6333AC-2GD
    Advantech EKI-6333AC-1GPO
Published: November 26, 2024

CVE-2024-9461

7.2
    Total Upkeep - WordPress Backup Plugin plus Restore & Migrate by BoldGrid
Published: November 26, 2024

CVE-2024-38832

7.1
    VMware Aria Operations
Published: November 26, 2024

CVE-2024-38833

6.8
    VMware Aria Operations
Published: November 26, 2024

CVE-2024-10857

6.5
    Product Input Fields for WooCommerce plugin for WordPress
Published: November 26, 2024

CVE-2024-50377

6.5
    Advantech EKI Series Devices
Published: November 26, 2024

CVE-2024-38834

6.5
    VMware Aria Operations
Published: November 26, 2024

CVE-2024-11706

6.5
    Firefox
    Thunderbird
Published: November 26, 2024

CVE-2024-11708

6.5
    Firefox
    Thunderbird
Published: November 26, 2024

CVE-2024-36463

6.5
    Zabbix
Published: November 26, 2024

CVE-2024-11669

6.5
    Gitlab
  • Gitlab
Published: November 26, 2024

CVE-2024-8237

6.5
    Gitlab
  • Gitlab
Published: November 26, 2024

CVE-2024-11091

6.4
    Support SVG – Upload svg files in wordpress without hassle plugin for WordPress
Published: November 26, 2024

CVE-2024-11119

6.4
    BNE Gallery Extended plugin for WordPress
Published: November 26, 2024

CVE-2024-11192

6.4
    Spotify Play Button for WordPress plugin
Published: November 26, 2024

CVE-2024-10308

6.4
    Jeg Elementor Kit plugin for WordPress
Published: November 26, 2024

CVE-2024-8236

6.4
    Elementor Website Builder plugin for WordPress
Published: November 26, 2024

CVE-2024-11674

6.3
    Hospital Management System Project
  • Hospital Management System
Published: November 26, 2024

CVE-2024-11002

6.3
    InPost Gallery plugin for WordPress
Published: November 26, 2024

CVE-2024-6749

6.3
    AXIS Camera Station
Published: November 26, 2024

CVE-2024-47248

6.3
    Apache NimBLE
Published: November 26, 2024

CVE-2024-53619

6.3
    SPIP
Published: November 26, 2024

CVE-2024-53844

6.3
    E.D.D.I (Enhanced Dialog Driven Interface)
Published: November 26, 2024

CVE-2024-51058

6.2
    TCPDF
Published: November 26, 2024

CVE-2024-11342

6.1
    Skt NURCaptcha plugin for WordPress
Published: November 26, 2024

CVE-2024-11418

6.1
    Additional Order Filters for WooCommerce plugin for WordPress
Published: November 26, 2024

CVE-2024-11202

6.1
    WordPress plugins
Published: November 26, 2024

CVE-2024-11032

6.1
    WordPress Parsi Date plugin
Published: November 26, 2024

CVE-2023-2142

6.1
    Nunjucks
Published: November 26, 2024

CVE-2024-11694

6.1
    Mozilla Firefox
    Mozilla Thunderbird
Published: November 26, 2024

CVE-2024-10878

6.1
    Sugar Calendar - Simple Event Management plugin for WordPress
Published: November 26, 2024

CVE-2024-49596

5.9
    Dell Wyse Management Suite
Published: November 26, 2024

CVE-2024-28955

5.9
    UNKNOWN
Published: November 26, 2024

CVE-2024-29146

5.9
    UNKNOWN
Published: November 26, 2024

CVE-2024-29978

5.9
    UNKNOWN
Published: November 26, 2024

CVE-2024-32151

5.9
    UNKNOWN
Published: November 26, 2024

CVE-2024-11703

5.7
    Mozilla Firefox
Published: November 26, 2024

CVE-2024-43784

5.7
    lakeFS
Published: November 26, 2024

CVE-2024-49351

5.5
    IBM Workload Scheduler
Published: November 26, 2024

CVE-2024-9170

5.5
    Booster for WooCommerce plugin
Published: November 26, 2024

CVE-2024-52337

5.5
    Tuned
Published: November 26, 2024

CVE-2024-53267

5.5
    sigstore-java
Published: November 26, 2024

CVE-2024-11695

5.4
    Thunderbird
    Firefox
Published: November 26, 2024

CVE-2024-11696

5.4
    Firefox
    Thunderbird
Published: November 26, 2024

CVE-2024-53975

5.4
    Firefox for iOS
Published: November 26, 2024

CVE-2024-53976

5.4
    Firefox for iOS
Published: November 26, 2024

CVE-2024-53365

5.4
    PHPGURUKUL Vehicle Parking Management System
Published: November 26, 2024

CVE-2024-33616

5.3
    Sharp Corporation Telnet Feature
Published: November 26, 2024

CVE-2024-34162

5.3
    UNKNOWN
Published: November 26, 2024

CVE-2024-9928

5.3
    NSD570
Published: November 26, 2024

CVE-2024-8177

5.3
    Gitlab
  • Gitlab
Published: November 26, 2024

CVE-2024-10240

5.3
    Gitlab
  • Gitlab
Published: November 26, 2024

CVE-2024-47249

5.0
    Apache NimBLE
Published: November 26, 2024

CVE-2024-47250

5.0
    Apache NimBLE
Published: November 26, 2024

CVE-2024-53278

4.8
    WP Admin UI Customize
Published: November 26, 2024

CVE-2024-10471

4.8
    Everest Forms WordPress plugin
Published: November 26, 2024

CVE-2024-53620

4.8
    SPIP
Published: November 26, 2024

CVE-2024-6831

4.4
    AXIS Camera Station
Published: November 26, 2024

CVE-2024-8772

4.3
    Axis VAPIX API
Published: November 26, 2024

CVE-2024-10579

4.3
    The Hustle - Email Marketing, Lead Generation, Optins, Popups plugin for WordPress
Published: November 26, 2024

CVE-2024-8899

4.3
    Jeg Elementor Kit plugin for WordPress
Published: November 26, 2024

CVE-2024-11692

4.3
    Thunderbird
    Firefox
Published: November 26, 2024

CVE-2024-11701

4.3
    Firefox
    Thunderbird
Published: November 26, 2024

CVE-2024-9929

4.3
    NSD570
Published: November 26, 2024

CVE-2024-11828

4.3
    Gitlab
  • Gitlab
Published: November 26, 2024

CVE-2024-11743

4.3
    Mayurik
  • Best House Rental Management System
Published: November 26, 2024

CVE-2024-6476

4.2
    AXIS Camera Station Pro
Published: November 26, 2024

CVE-2024-11668

4.2
    Gitlab
  • Gitlab
Published: November 26, 2024

CVE-2024-8160

3.8
    Axis VAPIX API
Published: November 26, 2024

CVE-2024-11675

3.5
    Phpgurukul
  • Hospital Management System
Published: November 26, 2024

CVE-2024-11676

3.5
    Hospital Management System Project
  • Hospital Management System
Published: November 26, 2024

CVE-2024-11677

3.5
    Hospital Management System Project
  • Hospital Management System
Published: November 26, 2024

CVE-2024-11678

3.5
    Hospital Management System Project
  • Hospital Management System
Published: November 26, 2024

CVE-2024-11742

3.5
    Mayurik
  • Best House Rental Management System
Published: November 26, 2024

CVE-2024-22117

2.2
    Zabbix
Published: November 26, 2024

CVE-2018-11881

None
    UNKNOWN
Published: November 26, 2024

CVE-2022-33860

None
    UNKNOWN
Published: November 26, 2024

CVE-2024-11177

None
    UNKNOWN
Published: November 26, 2024

CVE-2024-11407

None
    gRPC-C++
Published: November 26, 2024

CVE-2024-52008

None
    Fides
Published: November 26, 2024

CVE-2019-17082

None
    OpenText AccuRev
Published: November 26, 2024
Click here to see more Vulnerabilities