Tag: CVE-2024-55956

2 Attack Reports | 1 Vulnerabilities

Attack reports

Protecting Against the Exploited CVEs in the Cleo Data Theft Attacks

The Clop ransomware group has exploited critical vulnerabilities in Cleo's managed file transfer software, specifically CVE-2024-50623 and CVE-2024-55956. These vulnerabilities allow unrestricted file upload/download and execution of arbitrary commands. Imperva has observed over 1 million exploitat…
ransomware
powershell
data theft
extortion
persistence
CVE-2024-50623
CVE-2024-55956
2025-01-22
clop
file transfer
Published: January 22, 2025
Downloadable IOCs: 2

Widespread Exploitation of Cleo File Transfer Software

Critical vulnerabilities in Cleo file transfer products, including VLTrader, Harmony, and LexiCom, are being actively exploited. Initially stemming from an insufficient patch for CVE-2024-50623, a new critical vulnerability (CVE-2024-55956) allows unauthenticated users to execute arbitrary commands…
cleo
CVE-2024-55956
2024-12-16
Published: December 16, 2024
Downloadable IOCs: 6
Click here to see more Attack Reports

Vulnerabilities

CVE-2024-55956

9.8
    Cleo
  • Harmony
  • Lexicom
  • Vltrader
Published: December 13, 2024
Click here to see more Vulnerabilities