Tag: CVE-2024-8190

2 Attack Reports | 1 Vulnerabilities

Attack reports

Follow the Smoke | China-nexus Threat Actors Hammer At the Doors of Top Tier Targets

The research outlines China-nexus threat actors targeting SentinelOne and other organizations between 2024 and 2025. It details intrusions into an IT services company managing SentinelOne's hardware logistics and reconnaissance of SentinelOne's servers. The attacks involved ShadowPad malware and a …
obfuscation
CVE-2024-1709
cyberespionage
backdoors
reconnaissance
shadowpad
infrastructure
CVE-2023-46747
CVE-2024-8190
CVE-2024-8963
vulnerabilities
unc5174
2025-06-10
apt15
goreshell
nailaolocker
nimbo-c2
Published: June 10, 2025
Linked vulnerabilities : CVE-2024-8190 (CVSS 7.2), CVE-2024-8963 (CVSS 9.1), CVE-2024-1709, CVE-2023-46747
Downloadable IOCs: 24

Further insights into Ivanti CSA 4.6 vulnerabilities exploitation

This analysis examines the exploitation of critical vulnerabilities in Ivanti Cloud Service Appliance (CSA) 4.6 between October 2024 and January 2025. It confirms widespread exploitation leading to webshell deployments in September and October 2024. The report provides details on malicious activiti…
vulnerability
ivanti
exploitation
webshell
infrastructure
remote code execution
CVE-2024-8190
CVE-2024-8963
CVE-2024-9379
CVE-2024-9381
2025-02-11
reversessh
nhas reverse_ssh
csa
Published: February 11, 2025
Linked vulnerabilities : CVE-2024-8190 (CVSS 7.2), CVE-2024-8963 (CVSS 9.1), CVE-2024-9379 (CVSS 7.2), CVE-2024-9381 (CVSS 7.2), CVE-2020-1472, CVE-2022-1388, CVE-2023-3519, CVE-2021-4034, CVE-2021-44529
Downloadable IOCs: 19
Click here to see more Attack Reports

Vulnerabilities

CVE-2024-8190

7.2
    Ivanti
  • Cloud Services Appliance
Published: September 10, 2024
Click here to see more Vulnerabilities