Sector Education

Timeframe: -28 days

Default Categories (58): Access Management Software, Accounting Software, Anti-Malware Software, Anti-Spam Software, Application Server Software, Backup Software, Blog Software, Calendar Software, Chat Software, Cloud Software, Communications System, Database Administration Software, Database Software, Digital Media Player, Directory Service Software, Document Management Software, Document Processing Software, Document Reader Software, Endpoint Management Software, Firewall Software, Groupware Software, Hardware Driver Software, Image Processing Software, Information Management Software, IP Phone Software, Knowledge Base Software, Learning Management Software, Library Management System Software, Log Management Software, Mail Client Software, Mail Server Software, Messaging Software, Middleware, Multimedia Player Software, Multimedia Processing Software, Network Attached Storage Software, Network Encryption Software, Network Management Software, Network Routing Software, Office Suite Software, Operating System, Presentation Software, Printing Software, Programming Language Software, Project Management Software, Remote Access Software, Reporting Software, Router Operating System, Server Management Software, Spreadsheet Software, SSH Server Software, Survey Software, Unified Communication Software, Virtualization Software, Web Browser, Web Server, Wireless LAN Software, Word Processing Software

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

Microsoft94
Not Defined70
Mozilla22
Apple20
Google20

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Product

Microsoft Windows56
Microsoft Edge24
Mozilla Firefox22
Google Chrome20
Linux Kernel18

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Remediation

Official Fix290
Temporary Fix0
Workaround0
Unavailable4
Not Defined80

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Exploitability

High0
Functional4
Proof-of-Concept20
Unproven66
Not Defined284

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Access Vector

Not Defined0
Physical2
Local66
Adjacent58
Network248

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Authentication

Not Defined0
High14
Low198
None162

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

User Interaction

Not Defined0
Required152
None222

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

C3BM Index

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

CVSSv3 Base

≤10
≤20
≤310
≤430
≤552
≤690
≤7110
≤848
≤924
≤1010

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

CVSSv3 Temp

≤10
≤20
≤310
≤436
≤568
≤6154
≤748
≤842
≤910
≤106

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

VulDB

≤10
≤20
≤318
≤438
≤574
≤662
≤7108
≤846
≤918
≤1010

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

NVD

≤1372
≤20
≤30
≤40
≤50
≤62
≤70
≤80
≤90
≤100

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

CNA

≤1300
≤20
≤32
≤42
≤54
≤614
≤718
≤818
≤98
≤108

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

≤1304
≤20
≤30
≤40
≤50
≤68
≤720
≤824
≤912
≤106

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Exploit 0-day

<1k24
<2k98
<5k34
<10k68
<25k50
<50k74
<100k26
≥100k0

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Exploit Today

<1k126
<2k62
<5k32
<10k66
<25k88
<50k0
<100k0
≥100k0

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Exploit Market Volume

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

IOB - Indicator of Behavior (1000)

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Lang

en812
fr34
de32
es30
it20

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Country

us192
gb74
it66
fr46
de44

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Actors

Carbanak1
Naikon1
Dealply1
Razy1

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Activities

Interest

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Type

Operating System36
Web Browser22
Router Operating System14
Anti-Malware Software10
Firewall Software8

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

Microsoft42
Linux18
Not Defined10
Fortinet8
DrayTek6

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Product

Microsoft Edge18
Linux Kernel18
Microsoft Windows16
Fortinet FortiOS8
Ubiquiti EdgeRouter X6

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vulnerabilities

#VulnerabilityBaseTemp0dayTodayExpRemCTIEPSSCVE
1Microsoft Windows ICMP Remote Code Execution9.88.5$50k-$100k$10k-$25kUnprovenOfficial Fix10.000.00237CVE-2023-23415
2Microsoft Outlook Remote Code Execution8.57.9$10k-$25k$2k-$5kFunctionalOfficial Fix6.160.00943CVE-2023-23397
3Ubiquiti EdgeRouter X NAT Configuration command injection [Disputed]7.26.5$1k-$2k$0-$1kProof-of-ConceptUnavailable2.040.00000CVE-2023-1456
4Watchdog Anti-Virus IoControlCode wsdk-driver.sys denial of service5.55.0$2k-$5k$0-$1kProof-of-ConceptNot Defined2.100.00000CVE-2023-1446
5Watchdog Anti-Virus IoControlCode wsdk-driver.sys access control4.44.0$2k-$5k$0-$1kProof-of-ConceptNot Defined1.860.00000CVE-2023-1453
6Filseclab Twister Antivirus IoControlCode fildds.sys denial of service6.55.9$10k-$25k$0-$1kProof-of-ConceptNot Defined2.040.00000CVE-2023-1443
7Ubiquiti EdgeRouter X OSPF command injection [Disputed]7.26.5$1k-$2k$0-$1kProof-of-ConceptNot Defined1.710.00000CVE-2023-1458
8Filseclab Twister Antivirus IoControlCode fildds.sys denial of service7.56.8$10k-$25k$0-$1kProof-of-ConceptNot Defined1.890.00000CVE-2023-1444
9Ubiquiti EdgeRouter X Static Routing Configuration command injection [Disputed]7.26.5$1k-$2k$0-$1kProof-of-ConceptUnavailable1.530.00000CVE-2023-1457
10Apache HTTP Server mod_proxy request smuggling5.04.8$10k-$25k$5k-$10kNot DefinedOfficial Fix2.570.00226CVE-2023-25690
11Filseclab Twister Antivirus IoControlCode fildds.sys denial of service3.33.0$2k-$5k$0-$1kProof-of-ConceptNot Defined1.840.00000CVE-2023-1445
12Linux Kernel connect.c reconn_set_ipaddr_from_hostname use after free5.35.1$2k-$5k$1k-$2kNot DefinedOfficial Fix0.57+0.00000CVE-2023-1195
13Linux Kernel EXT4 File System ovl_aio_cleanup_handler use after free4.54.3$2k-$5k$0-$1kNot DefinedOfficial Fix0.60+0.00000CVE-2023-1252
14Tags Cloud Manager Plugin cross site scripting4.34.2$1k-$2k$1k-$2kNot DefinedNot Defined0.570.00000CVE-2023-28166
15Backup Bank Plugin post_user_feedback_backup_bank authorization6.36.1$1k-$2k$1k-$2kNot DefinedNot Defined0.570.00000CVE-2023-28165
16Fabian von Allmen WP Calendar Plugin cross site scripting4.44.4$1k-$2k$0-$1kNot DefinedNot Defined0.48+0.00000CVE-2022-45814
17Microsoft Windows SmartScreen unknown vulnerability5.45.0$50k-$100k$10k-$25kFunctionalOfficial Fix1.200.00404CVE-2023-24880
18DrayTek Vigor 2960 mainfunction.cgi sub_1DA58 path traversal4.33.9$1k-$2k$0-$1kProof-of-ConceptNot Defined1.290.00078CVE-2023-1163
19Zhong Bang CRMEB Java list sql injection5.55.0$1k-$2k$0-$1kProof-of-ConceptNot Defined1.290.00076CVE-2023-1165
20DrayTek Vigor 2960 mainfunction.cgi sub_1225C command injection6.35.7$1k-$2k$0-$1kProof-of-ConceptNot Defined1.280.00139CVE-2023-1162

IOC - Indicator of Compromise (6)

These indicators of compromise highlight associated network ranges which are known to be part of research and attack activities.

IDIP rangeActorTypeConfidence
147.242.33.0/24xStartpredictiveHigh
2XX.XXX.XXX.X/XXXxxxxxxpredictiveHigh
3XX.XX.XXX.X/XXXxxxxxxxpredictiveHigh
4XXX.XX.XX.X/XXXxxxpredictiveHigh
5XXX.XX.XXX.X/XXXxxxxxpredictiveHigh
6XXX.XXX.XXX.X/XXXxxxpredictiveHigh

TTP - Tactics, Techniques, Procedures (17)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechniqueVulnerabilitiesAccess VectorTypeConfidence
1T1006CWE-22, CWE-23Pathname TraversalpredictiveHigh
2T1055CWE-74InjectionpredictiveHigh
3T1059CWE-94Cross Site ScriptingpredictiveHigh
4T1059.007CWE-79, CWE-80Cross Site ScriptingpredictiveHigh
5TXXXXCWE-XXXXxxxxxxxx Xxxx Xxxxxxxxxxx XxxxxxxxxxpredictiveHigh
6TXXXX.XXXCWE-XXX, CWE-XXXXxxxxxxx Xxxxxxxxxxx Xx Xxxxxxxxx Xxxxxxxxxxxxxx XxxxxxxxpredictiveHigh
7TXXXXCWE-XX, CWE-XXXxxxxxx XxxxxxxxxpredictiveHigh
8TXXXXCWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxxx XxxxxxpredictiveHigh
9TXXXXCWE-XXXxx XxxxxxxxxpredictiveHigh
10TXXXX.XXXCWE-XXXXxxxxxxxxxxxpredictiveHigh
11TXXXX.XXXCWE-XXXXxxxxxxx Xxxxxx XxxxpredictiveHigh
12TXXXX.XXXCWE-XXXXxxxxxxxpredictiveHigh
13TXXXXCWE-XXXXxxxxxxx Xx Xxxxxxx Xxxxxxxx Xxxxxxxxxxx Xx Xx Xxxxxxxxxxxx XxxxxpredictiveHigh
14TXXXXCWE-XXXXxxxxxxxxxxxxpredictiveHigh
15TXXXXCWE-XXXX2xx Xxxxxxxxxxxxxxxx: Xxxx Xxxxxxxxxxxx Xxxxxxx XxxxxxxxxxpredictiveHigh
16TXXXX.XXXCWE-XXXXxx Xx Xxxx XxxxpredictiveHigh
17TXXXX.XXXCWE-XXXXxxxxxxxxxxx XxxxxxpredictiveHigh

IOA - Indicator of Attack (80)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClassIndicatorTypeConfidence
1File/ajax/update_certificatepredictiveHigh
2File/api/admin/system/store/order/listpredictiveHigh
3File/api/admin/user/listpredictiveHigh
4File/bookstore/bookPerPub.phppredictiveHigh
5File/cgi-bin/mainfunction.cgipredictiveHigh
6File/tmp/mulipartFilepredictiveHigh
7Fileadd.phppredictiveLow
8Fileapi1/login.phppredictiveHigh
9Fileapp/controllers/tour_controller.rbpredictiveHigh
10Filebits.cpredictiveLow
11Filexxxx.xpredictiveLow
12Filexxxxxxx/xxxxxxxxx/xxx_xxx.xpredictiveHigh
13Filexxxxxxx/xxxx/xxx-xxx-xxxxxx.xpredictiveHigh
14Filexxxxxxx/xxx/xxx/xxx/xxxxxx_xxxxxx.xpredictiveHigh
15Filexxxxxxx/xxx/xxx/xxxxxx/xxxxxxx_xxxxxx.xpredictiveHigh
16Filexxxxxxx/xxx/xxxxxxxx/xxxxxxxx/xxxx/xxxx/xxxxxxxx/xx_xxxxxx.xpredictiveHigh
17Filexxxxxxx/xxx/xxxxx/xxxx.xpredictiveHigh
18Filexxxxxxx/xxxx/xxx/xxx-xxxxxxxx.xpredictiveHigh
19Filexxxxxxx/xxx/xxxx/xxxx_xxxx.xpredictiveHigh
20Filexxxxxxx/xxx/xxx.xpredictiveHigh
21Filexxxxxxx/xxx/xxxx/xxxx-xxxx.xpredictiveHigh
22Filexxxxxxxxxxx-xxxx.xxxxxxxpredictiveHigh
23Filexx/xxxx/xxxxxxx.xpredictiveHigh
24Filexx/xx-xxxxxxxxx.xpredictiveHigh
25Filexx/xxxx/xxxxxx.xpredictiveHigh
26Filexx/xxxxx/xxxxxx.xpredictiveHigh
27Filexx/xxxxx/xxx.xpredictiveHigh
28Filexxxxxxxxxxx.xxpredictiveHigh
29Filexxxxxx/xxxxxx/xxxxxxxxxx.xpredictiveHigh
30Filexxxxxx/xxxxx/xx.xpredictiveHigh
31Filexxx.xxxpredictiveLow
32Filexxx-xxx/xxxxx.xpredictiveHigh
33Filexxx/xxxxxxxxxxxxxxxxxxxx.xxpredictiveHigh
34Filexxxxxxxxxxxx.xxxpredictiveHigh
35Filexx/xxxxxx-xxxxx.xpredictiveHigh
36Filexxxxxxx_xxx.xxxpredictiveHigh
37Filexxx/xxxx/xx_xxxx.xpredictiveHigh
38Filexxx/xxx/xxx_xxxx.xpredictiveHigh
39Filexxxx.xxxpredictiveMedium
40Filexxxxxxxxxxxx.xxxpredictiveHigh
41Filexxxx-xxxx.xxpredictiveMedium
42Filexxx_xxxxx.xpredictiveMedium
43Filexxxxx/xxxx/xxxx/xxxx.xpredictiveHigh
44Filexxxxx/xxxxxx.xpredictiveHigh
45Filexxxxx.xxxxxx.xxxxxxx.xxxpredictiveHigh
46Filexxxxxx.xxxpredictiveMedium
47Library/xxx/xxxxxx/xxx/xxxxxx_xxxxxxxxxx.xxxpredictiveHigh
48Libraryxxxxxx.xxxpredictiveMedium
49Libraryxxxxxx.xxxpredictiveMedium
50Libraryxxxxxx.xxxpredictiveMedium
51Libraryxxxx-xxxxxx.xxxpredictiveHigh
52Argumentxxxxx_xxxxxx_xxxxpredictiveHigh
53ArgumentxxxxpredictiveLow
54ArgumentxxxxpredictiveLow
55ArgumentxxxxxxxxpredictiveMedium
56ArgumentxxxxxxxpredictiveLow
57ArgumentxxxxxxxxxxxxpredictiveMedium
58Argumentxxxx_xxxxx_xxx_xxxxx_xxxxxxxxpredictiveHigh
59Argumentxxx_xxx_xxxxx_xxx_xx_xxxxxpredictiveHigh
60Argumentxxxx_xxxx_xxxxxx_xxx_xxx_xxxxxxxpredictiveHigh
61Argumentxxxx/xxxxxxpredictiveMedium
62ArgumentxxxxxxxxxxxxxpredictiveHigh
63Argumentxxxxxxx__xxxpredictiveMedium
64ArgumentxxxxxxxxpredictiveMedium
65ArgumentxxxxxxxxxxxxxxpredictiveHigh
66Argumentxxx_xx_xxxxxx/xxx_xxx_xxxxxxxxxxxpredictiveHigh
67Argumentxxxx_xxx_xxxx_xxxxpredictiveHigh
68Argumentxxxxxx_xxx_xxxx_xxxxpredictiveHigh
69ArgumentxxxxxxxxxxxxxxxxxpredictiveHigh
70Argumentxxxx-xxx-xxxxxxxxxpredictiveHigh
71ArgumentxxxxxxxxpredictiveMedium
72Argumentxx_xxxx_xxxxxx_xx_xxxxpredictiveHigh
73ArgumentxxxxxxpredictiveLow
74Argumentxxxx_xxxxpredictiveMedium
75Argumentxxxxxxxxx_xxxpredictiveHigh
76Argumentxxxxxxxxxxx_xxxxxxxx_x.x.x.xpredictiveHigh
77ArgumentxxxxxxxxxpredictiveMedium
78ArgumentxxxpredictiveLow
79ArgumentxxxxpredictiveLow
80Input Value/../xxx/xxxxxxxxpredictiveHigh
PreviousOverviewNext

Do you want to use VulDB in your project?

Use the official API to access entries easily!