00536d Analysis

IOB - Indicator of Behavior (22)

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Lang

en12
zh6
de2
it2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Country

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Actors

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Activities

Interest

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Type

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Product

Microsoft IIS4
Softing smartLink SW-HT2
Oracle Fusion Middleware2
Atlassian JIRA Server2
NexusPHP2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vulnerabilities

#VulnerabilityBaseTemp0dayTodayExpRemEPSSCTICVE
1Checkmk UI denial of service2.72.6$0-$5k$0-$5kNot DefinedOfficial Fix0.000440.00CVE-2023-23549
2Softing smartLink SW-HT inadequate encryption5.75.7$0-$5k$0-$5kNot DefinedOfficial Fix0.000870.04CVE-2022-48193
3PHP Date Extension parse_date.c php_parse_date out-of-bounds6.46.1$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.006460.00CVE-2017-16642
4ImageMagick png.c ReadOnePNGImage memory corruption5.45.1$0-$5k$0-$5kNot DefinedOfficial Fix0.000600.00CVE-2017-11539
5PhotoPost PHP Pro showproduct.php sql injection9.89.4$0-$5k$0-$5kNot DefinedOfficial Fix0.002760.06CVE-2004-0250
6Comments comments.php sql injection6.36.3$0-$5k$0-$5kNot DefinedNot Defined0.000000.00
7Black Tie Project Category ID categorie.php3 Path information disclosure5.35.3$0-$5kCalculatingNot DefinedNot Defined0.003420.04CVE-2002-0446
8Dynacolor FCM-MB40 cross-site request forgery6.56.5$0-$5k$0-$5kNot DefinedNot Defined0.001120.00CVE-2019-13401
9eG Manager improper authentication8.58.5$0-$5k$0-$5kNot DefinedNot Defined0.006590.04CVE-2020-8591
10NexusPHP modtask.php sql injection8.58.5$0-$5k$0-$5kNot DefinedNot Defined0.001840.00CVE-2017-12909
11Active Auction House ItemInfo.asp sql injection6.36.0$0-$5k$0-$5kProof-of-ConceptNot Defined0.006850.09CVE-2005-1029
12WP Fastest Cache Plugin wpFastestCache.php rm_folder_recursively input validation5.65.5$0-$5k$0-$5kProof-of-ConceptNot Defined0.022240.00CVE-2019-6726
13AXIS 2110 Network Camera editcgi.cgi path traversal5.35.0$0-$5k$0-$5kProof-of-ConceptNot Defined0.014920.04CVE-2004-2426
14Oracle Fusion Middleware WebLogic Server access control9.09.0$5k-$25k$0-$5kHighNot Defined0.975520.07CVE-2019-2725
15Netgear D6300B Credential Storage nvram cleartext storage5.44.6$5k-$25k$0-$5kProof-of-ConceptWorkaround0.000000.00
16Biscom Secure File Transfer AngularJS injection5.35.3$0-$5k$0-$5kNot DefinedNot Defined0.000570.00CVE-2017-5246
17IBM HTTP Server memory corruption6.36.0$5k-$25k$0-$5kNot DefinedOfficial Fix0.003590.00CVE-2015-4947
18jQuery UI dialog cross site scripting5.24.9$0-$5k$0-$5kNot DefinedOfficial Fix0.004690.00CVE-2016-7103
19Citrix XenApp XML Service Interface memory corruption9.98.6$25k-$100k$0-$5kUnprovenOfficial Fix0.045800.00CVE-2012-5161
20Microsoft IIS code injection9.99.9$25k-$100k$5k-$25kNot DefinedNot Defined0.088750.00CVE-2010-1256

IOC - Indicator of Compromise (6)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

TTP - Tactics, Techniques, Procedures (9)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechniqueClassVulnerabilitiesAccess VectorTypeConfidence
1T1006CAPEC-126CWE-22Path TraversalpredictiveHigh
2T1055CAPEC-10CWE-74Improper Neutralization of Data within XPath ExpressionspredictiveHigh
3TXXXXCAPEC-242CWE-XXXxxxxxxx XxxxxxxxxpredictiveHigh
4TXXXX.XXXCAPEC-209CWE-XXXxxxx Xxxx XxxxxxxxxpredictiveHigh
5TXXXXCAPEC-19CWE-XXXXxxxxxxxx Xxxx Xxxxxxxxxxx XxxxxxxxxxpredictiveHigh
6TXXXXCAPEC-108CWE-XXXxx XxxxxxxxxpredictiveHigh
7TXXXXCAPEC-37CWE-XXXXxxxxxxxx Xxxxxxx Xx Xxxxxxxxx XxxxxxxxxxxpredictiveHigh
8TXXXXCAPEC-116CWE-XXXXxxxxxxxxx Xx Xxxxxxx Xxxxx Xxxxxxx Xxxxxxxxx XxxxxxxxxxxpredictiveHigh
9TXXXXCAPEC-112CWE-XXXXxxxxxxxxxxxx XxxxxxpredictiveHigh

IOA - Indicator of Attack (22)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClassIndicatorTypeConfidence
1File/data/nvrampredictiveMedium
2Filecategorie.php3predictiveHigh
3Filecgi-bin/predictiveMedium
4Filexxxxxx/xxx.xpredictiveMedium
5Filexxx.xxxxxxx.xxxxxxxxxxxxxx?xxxxx=xxxxx&xxxxx=&xxxxxxxxx=xxxxxxxxxpredictiveHigh
6Filexxxxxxxx.xxxpredictiveMedium
7Filexxxxxxx.xxxpredictiveMedium
8Filexxx/xxxx/xxx/xxxxx_xxxx.xpredictiveHigh
9Filexxxxxxxx.xxxpredictiveMedium
10Filexxxxxxx.xxxpredictiveMedium
11Filexxxxxxxxxxx.xxxpredictiveHigh
12Filexxxxxxxxxxxxxx.xxxpredictiveHigh
13ArgumentxxxpredictiveLow
14ArgumentxxxpredictiveLow
15ArgumentxxxxxxxxxpredictiveMedium
16Argumentxxxxxxx xxxxpredictiveMedium
17ArgumentxxxxxxpredictiveLow
18ArgumentxxxpredictiveLow
19ArgumentxxxxxxpredictiveLow
20Input Value../predictiveLow
21Input Value{{ }}predictiveLow
22Network Portxxxxxxxxxxxxxx xxxxxxpredictiveHigh

References (3)

The following list contains external sources which discuss the actor and the associated activities:

Do you want to use VulDB in your project?

Use the official API to access entries easily!