Sektor Chemical

Timeframe: -28 days

Default Categories (89): Access Management Software, Accounting Software, Anti-Malware Software, Anti-Spam Software, Application Server Software, Atlassian Confluence Plugin, Atlassian Jira App Software, Automation Software, Backup Software, Big Data Software, Billing Software, Bug Tracking Software, Business Process Management Software, Calendar Software, Chat Software, Chip Software, Cloud Software, Communications System, Connectivity Software, Continuous Integration Software, Customer Relationship Management System, Data Loss Prevention Software, Database Administration Software, Database Software, Directory Service Software, Document Management Software, Document Processing Software, Document Reader Software, Domain Name Software, Endpoint Management Software, Enterprise Resource Planning Software, File Compression Software, File Transfer Software, Firewall Software, Firmware Software, Groupware Software, Hardware Driver Software, Health Information Software, Human Capital Management Software, Image Processing Software, Information Management Software, IP Phone Software, Knowledge Base Software, Log Management Software, Mail Client Software, Mail Server Software, Medical Device Software, Middleware, Multimedia Player Software, Network Attached Storage Software, Network Authentication Software, Network Encryption Software, Network Management Software, Network Routing Software, Network Utility Software, Office Suite Software, Operating System, Policy Management Software, Presentation Software, Printing Software, Product Lifecycle Management Software, Programming Language Software, Project Management Software, Remote Access Software, Reporting Software, Risk Management System, Router Operating System, SCADA Software, Security Testing Software, Server Management Software, Service Management Software, Software Library, Software Management Software, Solution Stack Software, Spreadsheet Software, SSH Server Software, Supplier Relationship Management Software, Supply Chain Management Software, Testing Software, Ticket Tracking Software, Unified Communication Software, Video Surveillance Software, Virtualization Software, Warehouse Management System Software, Web Browser, Web Server, Windowing System Software, Wireless LAN Software, Word Processing Software

Zeitverlauf

Hersteller

Linux	402
Microsoft	128
Oracle	72
Not Defined	52
Foxit	48

Produkt

Linux Kernel	402
Microsoft Windows	88
Foxit PDF Reader	48
Juniper Junos OS	32
MediaTek MT8781	22

Massnahmen

Official Fix	918
Temporary Fix	0
Workaround	2
Unavailable	0
Not Defined	156

Ausnutzbarkeit

High	4
Functional	4
Proof-of-Concept	40
Unproven	108
Not Defined	920

Zugriffsart

Not Defined	0
Physical	6
Local	136
Adjacent	446
Network	488

Authentisierung

Not Defined	0
High	116
Low	624
None	336

Benutzeraktivität

Not Defined	0
Required	224
None	852

C3BM Index

CVSSv3 Base

≤1	0
≤2	0
≤3	38
≤4	84
≤5	258
≤6	322
≤7	154
≤8	146
≤9	66
≤10	8

CVSSv3 Temp

≤1	0
≤2	0
≤3	38
≤4	98
≤5	250
≤6	426
≤7	120
≤8	112
≤9	24
≤10	8

VulDB

≤1	0
≤2	0
≤3	46
≤4	114
≤5	240
≤6	302
≤7	158
≤8	160
≤9	48
≤10	8

NVD

≤1	1076
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

CNA

≤1	768
≤2	2
≤3	10
≤4	14
≤5	64
≤6	60
≤7	40
≤8	72
≤9	32
≤10	14

Hersteller

≤1	956
≤2	0
≤3	0
≤4	0
≤5	2
≤6	10
≤7	18
≤8	52
≤9	38
≤10	0

Exploit 0-day

<1k	46
<2k	226
<5k	54
<10k	484
<25k	142
<50k	98
<100k	26
≥100k	0

Exploit heute

<1k	412
<2k	264
<5k	212
<10k	98
<25k	84
<50k	6
<100k	0
≥100k	0

Exploitmarktvolumen

IOB - Indicator of Behavior (1000)

Zeitverlauf

Sprache

en	620
ja	84
de	68
es	60
zh	44

Land

us	212
jp	86
de	78
gb	72
fr	56

Akteure

Cobalt Strike	4
Mirai	2
QakBot	1
Raccoon	1
Black KingDom	1

Aktivitäten

Interesse

Zeitverlauf

Typ

Operating System	58
Web Browser	38
Virtualization Software	16
Database Software	16
Software Library	10

Hersteller

Linux	48
Oracle	36
Google	24
Microsoft	24
Not Defined	14

Produkt

Linux Kernel	48
Google Chrome	22
Oracle VM VirtualBox	10
Mozilla Firefox	10
Oracle MySQL Server	8

Schwachstellen

#	Schwachstelle	Base	Temp	0day	Heute	Aus	Mas	EPSS	CTI	CVE
1	Backdoor.Win32.Dumador.c FTP Server Pufferüberlauf	6.3	5.6	$0-$5k	$0-$5k	Proof-of-Concept	Workaround	0.00000	2.06-
2	Cisco ClamAV HTML Parser Denial of Service	7.5	7.5	$5k-$25k	$5k-$25k	Not Defined	Not Defined	0.00043	0.03	CVE-2024-20380
3	PHP proc_open erweiterte Rechte	7.3	7.0	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00000	0.13	CVE-2024-1874
4	PuTTY ECDSA Nonce Generation Information Disclosure	3.7	3.6	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00046	0.13	CVE-2024-31497
5	Microsoft Edge Information Disclosure	5.4	5.3	$25k-$100k	$5k-$25k	Not Defined	Official Fix	0.00043	0.30	CVE-2024-29987
6	GNU C Library iconv Pufferüberlauf	5.3	5.1	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00045	0.17	CVE-2024-2961
7	Check Point ZoneAlarm Extreme Security NextGen erweiterte Rechte	5.3	5.1	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00043	0.00	CVE-2024-24910
8	SourceCodester Online Chatting System update_room.php SQL Injection	6.3	5.7	$0-$5k	$0-$5k	Proof-of-Concept	Not Defined	0.00045	0.67	CVE-2024-2932
9	Palo Alto Networks PAN-OS GlobalProtect erweiterte Rechte	8.9	8.7	$0-$5k	$0-$5k	High	Official Fix	0.02221	0.17	CVE-2024-3400
10	Microsoft Edge Information Disclosure	4.8	4.7	$25k-$100k	$5k-$25k	Not Defined	Official Fix	0.00043	0.06	CVE-2024-29986
11	SolarWinds Serv-U Directory Traversal	6.5	6.5	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00043	0.06	CVE-2024-28073
12	PHP Cookie erweiterte Rechte	5.6	5.1	$5k-$25k	$0-$5k	Proof-of-Concept	Official Fix	0.00000	0.03	CVE-2024-2756
13	Google Chrome V8 Pufferüberlauf	6.3	6.0	$25k-$100k	$5k-$25k	Not Defined	Official Fix	0.00043	0.12	CVE-2024-3914
14	PHP password_verify unbekannte Schwachstelle	3.7	3.4	$5k-$25k	$0-$5k	Proof-of-Concept	Official Fix	0.00000	0.12	CVE-2024-3096
15	Google Chrome Downloads Pufferüberlauf	6.3	6.0	$25k-$100k	$5k-$25k	Not Defined	Official Fix	0.00043	0.06	CVE-2024-3834
16	code-projects Online Book System description.php SQL Injection	6.3	5.7	$0-$5k	$0-$5k	Proof-of-Concept	Not Defined	0.00045	0.22	CVE-2024-3002
17	PHP mb_encode_mimeheader Denial of Service	5.3	4.8	$5k-$25k	$0-$5k	Proof-of-Concept	Official Fix	0.00000	0.06	CVE-2024-2757
18	code-projects Online Book System index.php SQL Injection	7.3	6.6	$0-$5k	$0-$5k	Proof-of-Concept	Not Defined	0.00045	0.19	CVE-2024-3000
19	Microsoft Edge erweiterte Rechte	5.0	4.9	$25k-$100k	$5k-$25k	Not Defined	Official Fix	0.00043	0.07	CVE-2024-29991
20	Google Chrome V8 Pufferüberlauf	6.3	6.0	$25k-$100k	$5k-$25k	Not Defined	Official Fix	0.00043	0.09	CVE-2024-3832

IOC - Indicator of Compromise (27)

These indicators of compromise highlight associated network ranges which are known to be part of research and attack activities.

ID	IP-Bereich	Akteur	Typ	Akzeptanz
1	2.58.95.0/24	Bashlite	prädiktiv	High
2	18.193.71.0/24	Cobalt Strike	prädiktiv	High
3	31.50.144.0/24	QakBot	prädiktiv	High
4	XX.XXX.XX.X/XX	Xxxxxx Xxxxxx	prädiktiv	High
5	XX.XX.XX.X/XX	Xxxxxx Xxxxxx	prädiktiv	High
6	XX.XXX.XX.X/XX	Xxxxxx Xxxxxx	prädiktiv	High
7	XX.XXX.XXX.X/XX	Xxxxxxx	prädiktiv	High
8	XX.XXX.XX.X/XX	Xxxxx	prädiktiv	High
9	XX.XXX.XX.X/XX	Xxxxx	prädiktiv	High
10	XX.XX.XXX.X/XX	Xxxxxxx Xxxxxxx	prädiktiv	High
11	XX.XXX.XXX.X/XX	Xxxxxxx	prädiktiv	High
12	XX.XXX.XXX.X/XX	Xxxxxx	prädiktiv	High
13	XX.XX.XX.X/XX	Xxxxxxxxxxx	prädiktiv	High
14	XX.XXX.XXX.X/XX	Xxxxxx Xxxxxx	prädiktiv	High
15	XX.XXX.X.X/XX	Xxxxx Xxxxxxx	prädiktiv	High
16	XXX.XXX.XXX.X/XX	Xxxxxxx Xxxxxxx	prädiktiv	High
17	XXX.XXX.XXX.X/XX	Xxxxxx Xxxxxx	prädiktiv	High
18	XXX.XX.XXX.X/XX	Xxxxxxx Xxxxx Xxxxx	prädiktiv	High
19	XXX.XX.XXX.X/XX	Xxxxx	prädiktiv	High
20	XXX.XXX.XXX.X/XX	Xxxxx	prädiktiv	High
21	XXX.XXX.XXX.X/XX	Xxxxx	prädiktiv	High
22	XXX.XXX.XXX.X/XX	Xxxxxx Xxx	prädiktiv	High
23	XXX.XXX.XXX.X/XX	Xxxxx Xxxxxxx	prädiktiv	High
24	XXX.XX.XX.X/XX	Xxxxxxx	prädiktiv	High
25	XXX.XXX.XXX.X/XX	Xxxxxxx Xxxxxxx	prädiktiv	High
26	XXX.XXX.XXX.X/XX	Xxxxx	prädiktiv	High
27	XXX.XX.XXX.X/XX	Xxxxxxx	prädiktiv	High

TTP - Tactics, Techniques, Procedures (26)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

ID	Technique	Schwachstellen	Zugriffsart	Typ	Akzeptanz
1	T1006	CWE-22, CWE-23, CWE-35	Path Traversal	prädiktiv	High
2	T1040	CWE-319	Authentication Bypass by Capture-replay	prädiktiv	High
3	T1055	CWE-74	Improper Neutralization of Data within XPath Expressions	prädiktiv	High
4	T1059	CWE-88, CWE-94, CWE-1321	Argument Injection	prädiktiv	High
5	T1059.007	CWE-79, CWE-80	Cross Site Scripting	prädiktiv	High
6	T1068	CWE-250, CWE-269, CWE-274, CWE-284	Execution with Unnecessary Privileges	prädiktiv	High
7	TXXXX.XXX	CWE-XXX	Xxx Xx Xxxx-xxxxx Xxxxxxxx	prädiktiv	High
8	TXXXX.XXX	CWE-XXX, CWE-XXX	Xxxx-xxxxx Xxxxxxxxxxx	prädiktiv	High
9	TXXXX	CWE-XX, CWE-XX	Xxxxxxx Xxxxx Xx Xxxxxxxxxx Xxxxxxxxxx Xxxxxxxxx	prädiktiv	High
10	TXXXX.XXX	CWE-XXX	Xxxx Xxxxxxxx	prädiktiv	High
11	TXXXX	CWE-XXX, CWE-XXX, CWE-XXX	Xxxxxxxxxx Xxxxxx	prädiktiv	High
12	TXXXX	CWE-XX, CWE-XX	Xxx Xxxxxxxxx	prädiktiv	High
13	TXXXX.XXX	CWE-XXX	Xxxxxxxx Xxxxxxxxxxxxx	prädiktiv	High
14	TXXXX	CWE-XXX, CWE-XXX, CWE-XXX	Xxxxxxxxxxx Xxxxxxxxxx	prädiktiv	High
15	TXXXX	CWE-XXX	Xxxxxxxxx Xxxxxxx Xx Xxxxxxxxx Xxxxxxxxxxx	prädiktiv	High
16	TXXXX.XXX	CWE-XXX	Xxxxxxx Xxxxxxxxxx Xxx Xxxxxxxx Xxxxxxx Xx Xx-xxxx Xxxxxx Xxxxxxxx	prädiktiv	High
17	TXXXX.XXX	CWE-XXX	Xxxxxxxxxxxx	prädiktiv	High
18	TXXXX	CWE-XXX, CWE-XXX	Xxxxxxxxx Xxxxxx Xxxx	prädiktiv	High
19	TXXXX.XXX	CWE-XXX	Xxxxxxxx Xxxxxx Xxxx	prädiktiv	High
20	TXXXX.XXX	CWE-XXX	Xxxxxxxx Xxxxxxxxxxx Xxxxxxxxxx	prädiktiv	High
21	TXXXX	CWE-XXX	Xxxxxxxx Xx Xxxxxxx Xxxxxxxx Xxxxxxxxxxx Xx Xx Xxxxxxxxxxxx Xxxxx	prädiktiv	High
22	TXXXX	CWE-XXX, CWE-XXX, CWE-XXX, CWE-XXX, CWE-XXX	Xxxxxxxxxx Xx Xxxxxxx Xxxxx Xxxxxxx Xxxxxxxxx Xxxxxxxxxxx	prädiktiv	High
23	TXXXX	CWE-XXX, CWE-XXX, CWE-XXX, CWE-XXX	Xxxxxxxxxxxxx Xxxxxx	prädiktiv	High
24	TXXXX.XXX	CWE-XXX	Xxx Xxxxxxxxxx Xxxxx	prädiktiv	High
25	TXXXX.XXX	CWE-XXX	Xxxxxxxxxx Xxxxxxxxxxxxxx Xx Xxxxxxxx Xxxx Xxxxxxxxx	prädiktiv	High
26	TXXXX	CWE-XXX	Xxxxxxxxxxx Xxxxxx	prädiktiv	High

◂ ZurückÜbersichtWeiter ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!