Sector Insurance

Timeframe: -28 days

Default Categories (76): Access Management Software, Accounting Software, Anti-Malware Software, Anti-Spam Software, Application Server Software, Asset Management Software, Atlassian Confluence Plugin, Atlassian Jira App Software, Backup Software, Big Data Software, Billing Software, Bug Tracking Software, Business Process Management Software, Calendar Software, Cloud Software, Communications System, Connectivity Software, Continuous Integration Software, Customer Relationship Management System, Database Administration Software, Database Software, Directory Service Software, Document Management Software, Document Processing Software, Document Reader Software, Domain Name Software, Endpoint Management Software, Enterprise Resource Planning Software, File Compression Software, File Transfer Software, Firewall Software, Firmware Software, Groupware Software, Hardware Driver Software, Human Capital Management Software, Information Management Software, IP Phone Software, JavaScript Library, Knowledge Base Software, Log Management Software, Mail Client Software, Mail Server Software, Middleware, Network Attached Storage Software, Network Authentication Software, Network Encryption Software, Network Management Software, Network Routing Software, Office Suite Software, Operating System, Policy Management Software, Presentation Software, Printing Software, Programming Language Software, Project Management Software, Remote Access Software, Reporting Software, Risk Management System, Router Operating System, Security Testing Software, Server Management Software, Service Management Software, Smartphone Operating System, Software Library, Software Management Software, Solution Stack Software, Spreadsheet Software, SSH Server Software, Ticket Tracking Software, Unified Communication Software, Virtualization Software, Web Browser, Web Server, Windowing System Software, Wireless LAN Software, Word Processing Software

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

Not Defined92
Microsoft60
Google32
Mozilla32
IBM24

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Product

Microsoft Windows36
Mozilla Firefox24
Linux Kernel20
Google Chrome16
Samsung Smart Phone16

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Remediation

Official Fix342
Temporary Fix0
Workaround2
Unavailable0
Not Defined102

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Exploitability

High2
Functional0
Proof-of-Concept24
Unproven50
Not Defined370

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Access Vector

Not Defined0
Physical4
Local78
Adjacent62
Network302

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Authentication

Not Defined0
High20
Low246
None180

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

User Interaction

Not Defined0
Required156
None290

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

C3BM Index

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

CVSSv3 Base

≤10
≤20
≤314
≤456
≤590
≤6100
≤794
≤844
≤940
≤108

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

CVSSv3 Temp

≤10
≤20
≤316
≤458
≤596
≤6146
≤754
≤858
≤916
≤102

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

VulDB

≤10
≤20
≤318
≤474
≤594
≤694
≤786
≤840
≤932
≤108

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

NVD

≤1426
≤20
≤30
≤40
≤50
≤62
≤70
≤88
≤94
≤106

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

CNA

≤1290
≤20
≤32
≤410
≤536
≤628
≤732
≤820
≤918
≤1010

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

≤1390
≤20
≤30
≤40
≤52
≤66
≤72
≤826
≤914
≤106

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Exploit 0-day

<1k42
<2k134
<5k22
<10k88
<25k84
<50k48
<100k28
≥100k0

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Exploit Today

<1k154
<2k82
<5k60
<10k80
<25k70
<50k0
<100k0
≥100k0

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Exploit Market Volume

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

IOB - Indicator of Behavior (1000)

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Lang

en720
ja142
zh28
ru28
es24

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Country

jp152
us104
cn54
ru42
it42

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Actors

Genkryptik1
B1txor201
MirrorBlast1
Mars Stealer1

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Activities

Interest

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Type

Operating System34
Smartphone Operating System26
Network Encryption Software16
Web Browser14
Firewall Software10

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

Not Defined36
Linux20
Google18
Microsoft14
Apple10

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Product

Linux Kernel20
OpenSSL14
Google Android14
Mozilla Firefox10
Samsung Smart Phone8

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vulnerabilities

#VulnerabilityBaseTemp0dayTodayExpRemCTIEPSSCVE
1Microsoft Word Remote Code Execution8.07.0$5k-$25k$0-$5kUnprovenOfficial Fix3.110.01601CVE-2023-21716
2Linux Kernel Spectre-BTI User Space bugs.c ib_prctl_set information disclosure4.34.1$5k-$25k$0-$5kNot DefinedOfficial Fix1.320.00000CVE-2023-0045
3haproxy denial of service3.53.4$0-$5k$0-$5kNot DefinedOfficial Fix1.320.00000CVE-2023-0056
4Zhong Bang CRMEB Java list sql injection5.55.0$0-$5k$0-$5kProof-of-ConceptNot Defined1.060.00890CVE-2023-1165
5flame.js cross site scripting3.53.4$0-$5k$0-$5kNot DefinedOfficial Fix1.110.00000CVE-2015-10089
6Cisco IP Phone 6800/IP Phone 7800/IP Phone 8800 command injection9.89.4$5k-$25k$0-$5kNot DefinedOfficial Fix1.020.01156CVE-2023-20078
7vim buffer size6.05.9$0-$5k$0-$5kNot DefinedOfficial Fix0.850.00885CVE-2023-1175
8Twister Antivirus IoControlCode filmfd.sys denial of service5.55.0$0-$5k$0-$5kProof-of-ConceptNot Defined0.850.00950CVE-2023-1008
9java-xmlbuilder xml external entity reference5.55.3$0-$5k$0-$5kNot DefinedOfficial Fix0.850.01018CVE-2014-125087
10codeprojects Pharmacy Management System Avatar Image add.php unrestricted upload6.35.7$0-$5k$0-$5kProof-of-ConceptNot Defined0.860.00954CVE-2023-0918
11DrayTek Vigor 2960 mainfunction.cgi sub_1DA58 path traversal4.33.9$0-$5k$0-$5kProof-of-ConceptNot Defined0.950.00890CVE-2023-1163
12DrayTek Vigor 2960 mainfunction.cgi sub_1225C command injection6.35.7$0-$5k$0-$5kProof-of-ConceptNot Defined0.730.02066CVE-2023-1162
13Twister Antivirus IoControlCode filmfd.sys access control5.34.8$0-$5k$0-$5kProof-of-ConceptNot Defined0.790.00950CVE-2023-1007
14OpenCycleCompass server-php login.php sql injection7.37.0$0-$5k$0-$5kNot DefinedOfficial Fix0.750.00954CVE-2015-10086
15Filseclab Twister Antivirus IoControlCode ffsmon.sys denial of service4.44.0$0-$5k$0-$5kProof-of-ConceptNot Defined1.000.00890CVE-2023-0907
16OpenSSL RSA Decryption timing discrepancy4.54.4$5k-$25k$0-$5kNot DefinedOfficial Fix0.640.00885CVE-2022-4304
17irontec klear-library BaseController.php _prepareWhere sql injection5.55.3$0-$5k$0-$5kNot DefinedOfficial Fix0.630.01018CVE-2015-10084
18DOS SS1/Rakuraku PC Cloud hard-coded credentials5.35.1$0-$5k$0-$5kNot DefinedOfficial Fix0.560.00000CVE-2023-22344
19TCG TPM2.0 Module Library CryptParameterDecryption out-of-bounds write5.55.5$0-$5k$0-$5kNot DefinedNot Defined0.560.01549CVE-2023-1017
20Linux Kernel V4L2/Vivid Test Code denial of service6.05.9$5k-$25k$0-$5kNot DefinedOfficial Fix0.470.00885CVE-2023-0615

IOC - Indicator of Compromise (11)

These indicators of compromise highlight associated network ranges which are known to be part of research and attack activities.

IDIP rangeActorTypeConfidence
123.154.177.0/24B1txor20predictiveHigh
252.114.128.0/24NymaimpredictiveHigh
3XX.XXX.XX.X/XXXxxx XxxxxxxpredictiveHigh
4XX.XX.XXX.X/XXXxxxxxx XxxxxxpredictiveHigh
5XX.XXX.XXX.X/XXXxxxxxxxxxxpredictiveHigh
6XXX.XXX.XXX.X/XXXxxxx XxxxxpredictiveHigh
7XXX.XXX.XX.X/XXXxxxxxxxxxpredictiveHigh
8XXX.XXX.XXX.X/XXXxxxxxxxxxxpredictiveHigh
9XXX.XXX.XX.X/XXXxxxxpredictiveHigh
10XXX.XXX.XX.X/XXXxxxxxxxxxpredictiveHigh
11XXX.XXX.XXX.X/XXXxxxxxxxxxpredictiveHigh

TTP - Tactics, Techniques, Procedures (24)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechniqueVulnerabilitiesAccess VectorTypeConfidence
1T1006CWE-22, CWE-23Pathname TraversalpredictiveHigh
2T1040CWE-319Authentication Bypass by Capture-replaypredictiveHigh
3T1055CWE-74InjectionpredictiveHigh
4T1059CWE-94Cross Site ScriptingpredictiveHigh
5T1059.007CWE-79Cross Site ScriptingpredictiveHigh
6TXXXXCWE-XXX, CWE-XXXXxxxxxxxx Xxxx Xxxxxxxxxxx XxxxxxxxxxpredictiveHigh
7TXXXX.XXXCWE-XXXXxx Xx Xxxx-xxxxx XxxxxxxxpredictiveHigh
8TXXXX.XXXCWE-XXX, CWE-XXXXxxxxxxx Xxxxxxxxxxx Xx Xxxxxxxxx Xxxxxxxxxxxxxx XxxxxxxxpredictiveHigh
9TXXXXCWE-XX, CWE-XXXxxxxxx XxxxxxxxxpredictiveHigh
10TXXXX.XXXCWE-XXXXxxx XxxxxxxxpredictiveHigh
11TXXXXCWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxxx XxxxxxpredictiveHigh
12TXXXXCWE-XXXxx XxxxxxxxxpredictiveHigh
13TXXXX.XXXCWE-XXXXxxxxxxx XxxxxxxxxxxxxpredictiveHigh
14TXXXXCWE-XXXXxxxxxxxx Xxxxxxx Xx Xxxxxxxxx XxxxxxxxxxxpredictiveHigh
15TXXXX.XXXCWE-XXXXxxxxxxxxxxxpredictiveHigh
16TXXXXCWE-XXX, CWE-XXXXxxxxxxxx Xxxxxx XxxxpredictiveHigh
17TXXXX.XXXCWE-XXXXxxxxxxx Xxxxxx XxxxpredictiveHigh
18TXXXX.XXXCWE-XXXXxxxxxxx Xxxxxxxxxxx XxxxxxxxxxpredictiveHigh
19TXXXX.XXXCWE-XXXXxxxxxxxpredictiveHigh
20TXXXXCWE-XXXXxxxxxxx Xx Xxxxxxx Xxxxxxxx Xxxxxxxxxxx Xx Xx Xxxxxxxxxxxx XxxxxpredictiveHigh
21TXXXXCWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxxxxxxpredictiveHigh
22TXXXXCWE-XXX, CWE-XXX, CWE-XXX, CWE-XXX, CWE-XXXX2xx Xxxxxxxxxxxxxxxx: Xxxx Xxxxxxxxxxxx Xxxxxxx XxxxxxxxxxpredictiveHigh
23TXXXX.XXXCWE-XXXXxx Xx Xxxx XxxxpredictiveHigh
24TXXXX.XXXCWE-XXXXxxxxxxxxxxx XxxxxxpredictiveHigh

IOA - Indicator of Attack (107)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClassIndicatorTypeConfidence
1File/ajax/update_certificatepredictiveHigh
2File/api/admin/system/store/order/listpredictiveHigh
3File/cgi-bin/mainfunction.cgipredictiveHigh
4File/debugpredictiveLow
5File/goform/formEasySetupWizard3predictiveHigh
6File/goform/formLoginpredictiveHigh
7File/goform/formSchedulepredictiveHigh
8File/goform/formSetACLFilterpredictiveHigh
9File/goform/formSetEmailpredictiveHigh
10File/goform/formSetRoutepredictiveHigh
11File/goform/formSetWanDhcppluspredictiveHigh
12File/goform/formWlanGuestSetuppredictiveHigh
13File/goform/formWPSpredictiveHigh
14File/xxxxxxxxxxxxxxxpredictiveHigh
15File/xxxxxxx/xxxxxxxx/xxxxxxxxxxxxxxpredictiveHigh
16Filexxxxxxxxxxxxx.xxxpredictiveHigh
17Filexxxxxxxxxxxxxxxxxxxxxx.xxxxpredictiveHigh
18Filexxx.xxxpredictiveLow
19Filexxxxxxxxxxxxxxx.xxxpredictiveHigh
20Filexxxxxxx.xxpredictiveMedium
21Filexxxx/xxxxx.xxxpredictiveHigh
22Filexxxxxxxxxxxx.xxxpredictiveHigh
23Filexxx/xxxxxxxxxxxxxxxxxx.xxxxxx.xxxpredictiveHigh
24Filexxxxxx.xpredictiveMedium
25Filexxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx.xxxxpredictiveHigh
26Filexxxx.xpredictiveLow
27Filexxx_xxxxxxxxxxx_xxx.xxxpredictiveHigh
28Filexxxxxxxxxxxxxxxxxxxxxxxxxxxx.xxxxpredictiveHigh
29Filexxxxxxxxxx/xxxx/xxxxxxxxxxxxxx.xxxpredictiveHigh
30Filexxxxxxx/xxxxxxxxx/xxx_xxx.xpredictiveHigh
31Filexxxxxxx/xxxx/xxx-xxx-xxxxxx.xpredictiveHigh
32Filexxxxxxx/xxx/xxx/xxx/xxxxxx_xxxxxx.xpredictiveHigh
33Filexxxxxxx/xxx/xxx/xxxxxx/xxxxxxx_xxxxxx.xpredictiveHigh
34Filexxxxxxx/xxx/xxxxxxxx/xxxxxxxx/xxxx/xxxx/xxxxxxxx/xx_xxxxxx.xpredictiveHigh
35Filexxxxxxx/xxx/xxxxx/xxxx.xpredictiveHigh
36Filexxxxxxx/xxxx/xxx/xxx-xxxxxxxx.xpredictiveHigh
37Filexxxxxxx/xxx/xxxx/xxxx_xxxx.xpredictiveHigh
38Filexxxxxxx/xxx/xxx.xpredictiveHigh
39Filexxxxxxx/xxx/xxxx/xxxx-xxxx.xpredictiveHigh
40Filexxxxxxxxxxxxxxxx.xxxxpredictiveHigh
41Filexx/xx-xxxxxxxxx.xpredictiveHigh
42Filexx/xxxx/xxxxxx.xpredictiveHigh
43Filexx/xxxxx/xxxxxx.xpredictiveHigh
44Filexx/xxxxx/xxx.xpredictiveHigh
45Filexxxx.xpredictiveLow
46Filexxx/xxxx.xxpredictiveMedium
47Filexxxxxxxxxxx.xxpredictiveHigh
48Filexxxxxxxxx/xxxxx/xxx_xxx/xxx/xxx_xxx_xxxxxxxxx.xxxpredictiveHigh
49Filexxxxxxxxx/xxxxx/xxx/xxx.xxxpredictiveHigh
50Filexxxxxx/xxxxxx/xxxxxxxxxx.xpredictiveHigh
51Filexxx-xxx/xxxxx.xpredictiveHigh
52Filexxxxxxxxxxxxxxxxxxxxx.xxxxxxx.xxxxxxx.xxpredictiveHigh
53Filexxxxxx_xxxxxx_xxxxx_xxxx.xxxpredictiveHigh
54Filexxxxxxxxxxxx.xxxpredictiveHigh
55Filexxxxxxxxxx.xxxpredictiveHigh
56Filexx/xxxxxx-xxxxx.xpredictiveHigh
57Filexxx/xxxx/xx_xxxx.xpredictiveHigh
58Filexxx/xxxxx/xxx_xxx.xpredictiveHigh
59Filexxx_xxxxxxx.xpredictiveHigh
60Filexxxxxxxxxx_xxxxxxxxx.xxxpredictiveHigh
61Filexxxxxxxxxxxx.xxxpredictiveHigh
62Filexxxx-xxxx.xxpredictiveMedium
63Filexxxxxxx-xxxxxxxxx.xpredictiveHigh
64Filexxxxxxxxxxxxxxxx.xxxpredictiveHigh
65Filexxxxx.xxxpredictiveMedium
66Filexxx_xxxxx.xpredictiveMedium
67Filexxxxx/xxxx/xxxx/xxxx.xpredictiveHigh
68Filexxxxxx.xxxpredictiveMedium
69Filexxxx/xxxx.xxpredictiveMedium
70Filexxxxxxxxxxxxx.xxxxpredictiveHigh
71Libraryx.xxxpredictiveLow
72Libraryxxxxxx.xxxpredictiveMedium
73Libraryxxxxxx.xxxpredictiveMedium
74Libraryxxxx.xxxpredictiveMedium
75Argumentxxxxx_xxxxxx_xxxxpredictiveHigh
76ArgumentxxxxxxxxpredictiveMedium
77Argumentxxx_xxx[]predictiveMedium
78ArgumentxxxxxxxxxxxxpredictiveMedium
79Argumentxxxxxx.xxxx_xxxxx_xxxxxxxpredictiveHigh
80ArgumentxxxxxxxpredictiveLow
81Argumentxxxx_xxxxx_xxx_xxxxx_xxxxxxxxpredictiveHigh
82Argumentxxx_xxx_xxxxx_xxx_xx_xxxxxpredictiveHigh
83Argumentxxxx_xxxx_xxxxxx_xxx_xxx_xxxxxxxpredictiveHigh
84ArgumentxxxxxxpredictiveLow
85Argumentxxxx/xxxxxxpredictiveMedium
86ArgumentxxxxxxxxpredictiveMedium
87ArgumentxxxxxxxxpredictiveMedium
88ArgumentxxxxxxxxpredictiveMedium
89Argumentxxxxxxx__xxxpredictiveMedium
90ArgumentxxxxpredictiveLow
91ArgumentxxxxxxxxpredictiveMedium
92Argumentxxxxxx_xxxxpredictiveMedium
93ArgumentxxxxxxxxpredictiveMedium
94ArgumentxxxxxxxxxxxpredictiveMedium
95Argumentxxxx_xxx_xxxx_xxxxpredictiveHigh
96Argumentxxxxxx_xxx_xxxx_xxxxpredictiveHigh
97ArgumentxxxxpredictiveLow
98Argumentxx_xxxx_xxxxxx_xx_xxxxpredictiveHigh
99ArgumentxxxxxxpredictiveLow
100ArgumentxxxxxpredictiveLow
101Argumentxxxxxxxxx_xxxpredictiveHigh
102Argumentxxxxxxx_xxxpredictiveMedium
103Argumentxxxxxx_xxxxxxxxpredictiveHigh
104ArgumentxxxxpredictiveLow
105Argumentxxx_xxxxxxxxxpredictiveHigh
106ArgumentxxxxxxxpredictiveLow
107Input Value/../xxx/xxxxxxxxpredictiveHigh
PreviousOverviewNext

Do you want to use VulDB in your project?

Use the official API to access entries easily!