Bunitu Analysis

Activities

Timeline

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

Lang

en585
de4
es2
fr1
sv1

Country

us141
es14
ru4
pt1
br1

Actors

Activities

Interest

Type

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need you unlock this view to get access to more details of real data.

Product

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need you unlock this view to get access to more details of real data.

Vulnerabilities

#VulnerabilityBaseTemp0dayTodayExpRemCTICVE
1Thomas R. Pasawicz HyperBook Guestbook Password Database gbconfiguration.dat Hash information disclosure5.35.2$5k-$25k$0-$5kHighWorkaround0.05CVE-2007-1192
2rollup-plugin-serve readFileFromContentBase path traversal7.47.4$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2020-7683
3Pimcore CustomReportController.php downloadCsvAction file inclusion5.35.1$0-$5k$0-$5kNot DefinedOfficial Fix0.03CVE-2021-23340
4Apache HTTP Server mod_rewrite redirect6.76.7$25k-$100k$5k-$25kNot DefinedNot Defined0.97CVE-2020-1927
5nginx Error Page request smuggling6.36.1$0-$5k$0-$5kNot DefinedOfficial Fix0.15CVE-2019-20372
6Ansible Tower API User information exposure5.55.5$0-$5k$0-$5kNot DefinedNot Defined0.03CVE-2020-14337
7Monstra CMS edit authorization6.46.4$0-$5k$0-$5kNot DefinedNot Defined0.05CVE-2020-8439
8Druva inSync Windows Client os command injection6.86.8$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2019-3999
9Hashicorp Nomad/Nomad Enterprise resource consumption6.46.1$0-$5k$0-$5kNot DefinedOfficial Fix0.03CVE-2020-7218
10vzctl DiskDescriptor.xml link following5.35.1$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2015-6927
11Kodi Thumbnail path traversal5.44.9$0-$5k$0-$5kHighNot Defined0.06CVE-2017-5982
12Red Hat Satellite BMC Interface information disclosure4.34.3$0-$5k$0-$5kNot DefinedNot Defined0.03CVE-2021-20256
13Luxion KeyShot Project File out-of-bounds read7.06.7$0-$5k$0-$5kNot DefinedOfficial Fix0.04CVE-2021-22643
14Livy Server Session Name cross site scripting4.44.3$0-$5k$0-$5kNot DefinedOfficial Fix0.06CVE-2021-26544
15Jinjava information disclosure6.05.7$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-12668
16Askey RTF8115VW te_acceso_router.cgi cross site scripting4.84.5$0-$5k$0-$5kProof-of-ConceptNot Defined0.04CVE-2021-27403
17Cisco Webex Meetings Desktop App information disclosure4.44.4$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-1372
18Intel Graphics Driver out-of-bounds write6.56.3$5k-$25k$0-$5kNot DefinedOfficial Fix0.03CVE-2020-24462
19Intel 722 Ethernet Controller denial of service3.83.7$0-$5k$0-$5kNot DefinedOfficial Fix0.05CVE-2020-24496
20Online Book Store detail.php sql injection5.95.6$0-$5k$0-$5kProof-of-ConceptNot Defined0.06CVE-2020-36003

IOC - Indicator of Compromise (6)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

TTP - Tactics, Techniques, Procedures (10)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IOA - Indicator of Attack (218)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClassIndicatorTypeConfidence
1File..\WWWRoot\CustomPages\aspshell.asppredictiveHigh
2File/09/business/upgrade/upcfgAction.php?download=truepredictiveHigh
3File/32predictiveLow
4File/cgi-bin/kerbynetpredictiveHigh
5File/etc/keystone/user-project-map.jsonpredictiveHigh
6File/etc/passwdpredictiveMedium
7File/inc/campaign/view-campaign-list.phppredictiveHigh
8File/include/menu_v.inc.phppredictiveHigh
9File/servlet/webaccpredictiveHigh
10File/usr/predictiveLow
11File/wp-admin/admin.php?page=cpabc_appointments.phppredictiveHigh
12Fileadmin-ajax.phppredictiveHigh
13Fileajax_crons.phppredictiveHigh
14Fileansi.cpredictiveLow
15Fileapi.php/List/indexpredictiveHigh
16FileAPI/api/VersionpredictiveHigh
17Fileapplication/controllers/LSBaseController.phppredictiveHigh
18FileAsusScreenXpertServicec.exepredictiveHigh
19FilebackupDB.phppredictiveMedium
20Filebind.cpppredictiveMedium
21Filebits.cpredictiveLow
22Filebundles/AdminBundle/Controller/Reports/CustomReportController.phppredictiveHigh
23FileC:\downsoftpredictiveMedium
24FileC:\Windows\SysWOW64\dllvector.exepredictiveHigh
25Filex:\xxxxxxxx\xxxxxxxxx.xxxpredictiveHigh
26Filexxxxxxxxxxx.xxxpredictiveHigh
27Filexxxxx/xxxxxxxxx.xpredictiveHigh
28Filexxx-xxx/xxxxxxxx.xxxpredictiveHigh
29Filexxx-xxx/xx_xxxxxx_xxxxxx.xxxpredictiveHigh
30Filexxx/xxxxxxpredictiveMedium
31Filexxxxxxxx.xxxpredictiveMedium
32FilexxxxxpredictiveLow
33Filexxxxx-xx-xxxxxx-xxxxx.xxxpredictiveHigh
34Filexxxxxxx/xxxxx.xxxxx.xxxpredictiveHigh
35Filexxxxxx/xxx.xpredictiveMedium
36Filexxxxxx/xxxx.xpredictiveHigh
37Filexxxxxxx.xxxpredictiveMedium
38Filexxxxxx/xxxx.xxxpredictiveHigh
39Filexxxxx_xxxxxxxxxxxx_xxxxx_xxx_xxxxxxxx_xxxx.xxx.xxxpredictiveHigh
40Filexxxxx_xxxxxxxxxxxx_xxxxx_xxx_xxxxxxxx_xxxx.xxx.xxxpredictiveHigh
41Filexxxxx-xxx.xpredictiveMedium
42Filexxxx/xxxxxxxxxxxxxxx.xxxpredictiveHigh
43Filexxxx_xxxxx.xxxpredictiveHigh
44Filexxxxxxxxx.xpredictiveMedium
45Filexxxxxxx_xxxxxxxx.xxxxx.xxxpredictiveHigh
46Filexxxxxx.xxxpredictiveMedium
47Filexxx_xxxxxx_xxx_xxxxxx.xpredictiveHigh
48Filexxxxx_xxxxxxxxxxx.xxxpredictiveHigh
49Filexxxxxxxxxxxxx.xxxpredictiveHigh
50Filexxxx/xxxxxxxxxx/xxxxxx-xxxxxxxxx.xpredictiveHigh
51Filexxxxx.xxxpredictiveMedium
52Filexxxxx/xxxxxxxx.xxpredictiveHigh
53Filexxxx-xxxx.xpredictiveMedium
54Filexxxxx/predictiveLow
55Filexxxx_xxxxxx_xxxxxxx.xxxpredictiveHigh
56Filexxxxxxxxx.xxxpredictiveHigh
57Filexxx.xxxpredictiveLow
58Filexxxx.xpredictiveLow
59Filexxxxx.xxxpredictiveMedium
60Filexxxx.xxxpredictiveMedium
61Filexxxxxx_xxxxx_xxxxx_xxxxxx.xpredictiveHigh
62Filexxxxx/xxxxxxxxxxxxxxpredictiveHigh
63Filexxxxxx/xxxxxxxxxpredictiveHigh
64Filexxxxxxxx/xxxxxxxxx.xxxpredictiveHigh
65Filexxxxxxxx/xxxxxxxxx.xxxpredictiveHigh
66Filexxxxxxxx/xxxxxx_xxxxxxxxxxx.xxxpredictiveHigh
67Filexxxxx.xxpredictiveMedium
68Filexxxxx.xxxpredictiveMedium
69Filexxxxx.xxx/xxxxx/xxxxxxpredictiveHigh
70Filexxxxx.xxx?xxxxxx=xpredictiveHigh
71Filexxxxx.xxpredictiveMedium
72Filexxxxxxxx.xxxpredictiveMedium
73Filexxxxxxxx/xxx_xxxx_xxxx.xpredictiveHigh
74Filexxxxxxxx/xxx_xxxx_xxx.xpredictiveHigh
75Filexxxxxxxx/xxx_xxxx.xpredictiveHigh
76Filexxxxxxxx/xxx_xxxxx.xpredictiveHigh
77Filexxxxxx.xxxpredictiveMedium
78Filexxxxxxx_xxxxx.xxxpredictiveHigh
79Filexxxxxxxxxx/xxxxxx.xpredictiveHigh
80Filexxxxxxxxx/xxxxxxx/xxxxxx/xxxxxxxxxx.xxxpredictiveHigh
81Filexxxxxxx/xxxxxxxx.xpredictiveHigh
82Filexxxxx/xxxxxxxxxxxxx.xxxpredictiveHigh
83Filexxx.xpredictiveLow
84Filexxx_xxxxxx_xxxxxx.xxpredictiveHigh
85Filexxxxxxxxxx/xxxxxxx.xpredictiveHigh
86Filexxxxxxxx.xxxpredictiveMedium
87Filexxxxxxxxx.xpredictiveMedium
88Filexxxxx.xxx.xxxpredictiveHigh
89Filexxxxxxxxxxxxxx.xxxpredictiveHigh
90Filexxxxxxx/xxxxxxxx/xxxxxxxx/xxxxxx.xxxpredictiveHigh
91Filexxx_xxxxx_xxx/xxx_xxxxx_xxx.xpredictiveHigh
92Filexxx_xxxxx_xxxx.xpredictiveHigh
93Filexxxxxxxxxxxxxx.xxxxpredictiveHigh
94Filexxx/xxxxx_xxxx.xpredictiveHigh
95Filexxxxxxxxx/xxxxxxxx-xxxxxxx-xxxxxx-xxxxxxxxpredictiveHigh
96Filexxxx_xxx.xpredictiveMedium
97Filexxxxxxxx.xxxpredictiveMedium
98Filexxxxxxx_xxxxxxx/xxxxxxx/xxxxx_xxxxxxxxx.xxxpredictiveHigh
99Filexxxxxxx_xxxxxx.xxxx.xxxpredictiveHigh
100Filexxxxxx.xxxpredictiveMedium
101Filexxxxxxxxx.xxxpredictiveHigh
102Filexxxx.xxxpredictiveMedium
103Filexxxxxxx.xxxpredictiveMedium
104Filexxxxxxxxx/xxxxxxxxxx/xxxxxxx/xxxxxxxxxxxxxxxxx.xxxpredictiveHigh
105Filexxxxxxxxxxx.xpredictiveHigh
106Filexxxxxx.xxxpredictiveMedium
107Filexxxx.xxx/xxxxxxxxxxxxxx.xxxpredictiveHigh
108Filexxxxx_xxxxx_xxxxx.xxxpredictiveHigh
109Filexxxxxxxxx.xxxpredictiveHigh
110Filexxxxx.xxx?xxxx=xxxx_xxx_xxxxxxxpredictiveHigh
111Filexxx_xxx.xxx?xxx=xxx.xxx.x.x&xxxx=xx&xxxx=xxxpredictiveHigh
112Filexxxxxxxxxxxxxxxx.xxpredictiveHigh
113Filexxxxxx.xpredictiveMedium
114Filexxxxxxxx.xxxpredictiveMedium
115Filexxxxxxxx.xpredictiveMedium
116Filexxxxx.xpredictiveLow
117Filexxxxxx.xxxpredictiveMedium
118Filexxxxxxxxxxxxx_xxxxx.xxxxpredictiveHigh
119Filexxxxx/xx/xxxxpredictiveHigh
120Filexxxx_xxxxx.xxxpredictiveHigh
121Filexxxx_xxxxxxx.xxxpredictiveHigh
122Filexxxx/xxxxxxxx/xxxxxxxx.xxxxpredictiveHigh
123Filexxxx/xxx.xxpredictiveMedium
124Filexxxxxxx.xpredictiveMedium
125Filexxx.xpredictiveLow
126Filexxxxxxxx.xxxpredictiveMedium
127Filexxxxx-xxxx.xxxpredictiveHigh
128Filexxxxxxxxxxxx.xxxpredictiveHigh
129Filexxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx.xxxpredictiveHigh
130Filexxxxxxxxxxxxxx.xxxxpredictiveHigh
131Filexx-xxxxxxxx/xxxxx-xx-xxxxx.xxxpredictiveHigh
132Libraryxxx_xxxx.xxxpredictiveMedium
133Libraryxxxxxxxxxxxxx.xxxpredictiveHigh
134Libraryxxx/xxxx/xxxxxx.xxxx.xxxpredictiveHigh
135Libraryxxx/xxxxxxxxxx.xxxpredictiveHigh
136Libraryxxx/xxxxxxxxx/xxxxxxxx.xxpredictiveHigh
137Libraryxxxxxx.xxxpredictiveMedium
138Libraryxx/xxx.xxx.xxxpredictiveHigh
139Libraryxxxxxxxx/xxxxxxxxx/xxxxxxxxx.xxxpredictiveHigh
140Libraryxxxxxxxxxxxx_xxxxxx.xxxpredictiveHigh
141Library_xxx/xxxxx.xxx.xxxpredictiveHigh
142ArgumentxxxxxpredictiveLow
143Argumentxxx_xxpredictiveLow
144Argumentxxxxxx_xxxxxxpredictiveHigh
145ArgumentxxxxxxxxxpredictiveMedium
146ArgumentxxxxxxxxxpredictiveMedium
147ArgumentxxxxxxxxxxxxxpredictiveHigh
148ArgumentxxxxxxxpredictiveLow
149ArgumentxxxxxxpredictiveLow
150ArgumentxxxxxpredictiveLow
151ArgumentxxxxxxxxxxpredictiveMedium
152ArgumentxxxxxpredictiveLow
153ArgumentxxxpredictiveLow
154ArgumentxxxxxxxxxpredictiveMedium
155ArgumentxxxxxxxpredictiveLow
156Argumentxxxxxx_xxxxpredictiveMedium
157ArgumentxxxxxpredictiveLow
158ArgumentxxxxxxxxxxpredictiveMedium
159ArgumentxxxxxxxxpredictiveMedium
160ArgumentxxxxxpredictiveLow
161Argumentxxxxxxx_xxxxxxxpredictiveHigh
162Argumentxxxxxx/xxxxxpredictiveMedium
163ArgumentxxxxpredictiveLow
164ArgumentxxpredictiveLow
165Argumentxx_xxxpredictiveLow
166ArgumentxxxxxxxpredictiveLow
167Argumentxxxxxxx_xxxxxxxxpredictiveHigh
168Argumentxxx_xxxxxxx_xxxpredictiveHigh
169ArgumentxxxxxxxxxpredictiveMedium
170ArgumentxxxpredictiveLow
171Argumentxxxxx.xxxxpredictiveMedium
172ArgumentxxxpredictiveLow
173Argumentxxx_xxxxxxxx_x/xxx_xxxxxxxx_xpredictiveHigh
174Argumentxxxx_xxxxxxpredictiveMedium
175Argumentx/xpredictiveLow
176ArgumentxxxxxxpredictiveLow
177ArgumentxxxxxxxxxxpredictiveMedium
178ArgumentxxxxxpredictiveLow
179ArgumentxxxxpredictiveLow
180Argumentxxxxx_xxxx_xxxxpredictiveHigh
181Argumentxx_xxxxpredictiveLow
182ArgumentxxxxpredictiveLow
183ArgumentxxxpredictiveLow
184ArgumentxxxxxpredictiveLow
185ArgumentxxxxxxxxpredictiveMedium
186Argumentxxxxxxxx_xxpredictiveMedium
187ArgumentxxxxxpredictiveLow
188ArgumentxxxxxxxxpredictiveMedium
189ArgumentxxxxxxpredictiveLow
190ArgumentxxxxxxpredictiveLow
191ArgumentxxxxxxpredictiveLow
192Argumentxxxxxxx_xxpredictiveMedium
193ArgumentxxxxxxxxpredictiveMedium
194ArgumentxxxxxxxxpredictiveMedium
195Argumentxxxxx xxpredictiveMedium
196Argumentxxxxxxxx_xpredictiveMedium
197Argumentxxxxxx_xxxxpredictiveMedium
198ArgumentxxxxxpredictiveLow
199ArgumentxxpredictiveLow
200Argumentxx_xxxxxpredictiveMedium
201ArgumentxxxpredictiveLow
202ArgumentxxxxpredictiveLow
203ArgumentxxxxpredictiveLow
204ArgumentxxxxxxxxpredictiveMedium
205Argumentxxxxxxxx/xxxxxxxxpredictiveHigh
206Argumentxxxxxxxx/xxxxxxxxpredictiveHigh
207ArgumentxxxxxxxpredictiveLow
208Argumentx-xxxxxxxxx-xxxpredictiveHigh
209ArgumentxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxpredictiveHigh
210Input Value%xx%xxxxx%xx/xxx/xxxxxx%xx%xxpredictiveHigh
211Input Value--predictiveLow
212Input Value../predictiveLow
213Input Value..//predictiveLow
214Input Valuexxxxxxxxxx' xxx xxxx=xxxx xxx 'xxxx'='xxxxpredictiveHigh
215Input Value<xxxxx>predictiveLow
216Input ValuexxxxxxpredictiveLow
217Network Portxxx/xxxxpredictiveMedium
218Network Portxxx xxxxxx xxxxpredictiveHigh

References (2)

The following list contains external sources which discuss the actor and the associated activities:

Do you know our Splunk app?

Download it now for free!