Activities

Our unique Cyber Threat Intelligence aims to determine the ongoing research of APT actors to anticipiate their acitivities. The CTI team is mapping structures of countries and their relationships to identify tensions and possible attack scenarios. Observing exploit markets on the Darknet, discussions of vulnerabilities on mailinglists, and social media exchanges makes it possible to identify planned attacks. The Threat Intelligence Platform (TIP) illustrates the interest of cybercriminals and state actors in real-time.

Activities

Timeline

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

Lang

en9474
zh3539
ja1371
de939
fr837

Country

cn4340
us3159
jp1336
de1231
fr777

Sector

Tor319
Technology202
Music91
Finance73
Government42

Actors

Dharma152
PYSA61
Black KingDom53
Cobalt Strike33
Patchwork27
#CTIVulnerabilityBaseTemp0dayTodayExpRemCVE
16.92Apache Tomcat WebSocket Message denial of service4.34.1$0-$5k$0-$5kNot DefinedOfficial FixCVE-2022-25762
26.16md-to-pdf gray-matter Remote Code Execution8.58.4$0-$5k$0-$5kNot DefinedOfficial FixCVE-2021-23639
34.67OpenSSL c_rehash os command injection5.55.3$5k-$25k$5k-$25kNot DefinedOfficial FixCVE-2022-1292
44.26Pillow PIL.ImageMath.eval information disclosure3.53.4$0-$5k$0-$5kNot DefinedOfficial FixCVE-2022-22817
53.98SonicWALL SMA1000 HTTP Connection access control6.36.3$0-$5k$0-$5kNot DefinedNot DefinedCVE-2022-22282
63.15-Laravel PendingBroadcast.php dispatch deserialization6.36.3$0-$5k$0-$5kNot DefinedNot DefinedCVE-2022-30778
73.05F5 BIG-IP iControl REST Authentication bash missing authentication9.89.3$5k-$25k$0-$5kProof-of-ConceptOfficial FixCVE-2022-1388
82.91ZyXEL USG FLEX 50 CGI Program os command injection8.58.4$5k-$25k$0-$5kNot DefinedOfficial FixCVE-2022-30525
92.87Microsoft Windows LSA Remote Code Execution8.17.4$100k and more$25k-$100kUnprovenOfficial FixCVE-2022-26925
102.77Apache Tomcat EncryptInterceptor resource consumption5.35.2$5k-$25k$0-$5kNot DefinedWorkaroundCVE-2022-29885

90 more entries are not shown

🔒 Login Required

You need to signup and login to see more of the remaining 90 results.

🌐 Custom Analysis

Start your custom analysis of events and vulnerabilities.

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!