Sector Lawfirm

Timeframe: -28 days

Default Categories (75): Access Management Software, Accounting Software, Anti-Malware Software, Anti-Spam Software, Application Server Software, Appointment Software, Artificial Intelligence Software, Asset Management Software, Backup Software, Billing Software, Business Process Management Software, Calendar Software, Chat Software, Cloud Software, Communications System, Connectivity Software, Content Management System, Customer Relationship Management System, Database Administration Software, Database Software, Digital Media Player, Directory Service Software, Document Management Software, Document Processing Software, Document Reader Software, Endpoint Management Software, Enterprise Resource Planning Software, File Compression Software, File Transfer Software, Firewall Software, Groupware Software, Hardware Driver Software, Human Capital Management Software, Image Processing Software, Information Management Software, IP Phone Software, Knowledge Base Software, Log Management Software, Mail Client Software, Mail Server Software, Messaging Software, Middleware, Multimedia Player Software, Multimedia Processing Software, Network Attached Storage Software, Network Authentication Software, Network Encryption Software, Network Management Software, Network Routing Software, Office Suite Software, Operating System, Photo Gallery Software, Policy Management Software, Presentation Software, Printing Software, Project Management Software, Remote Access Software, Reporting Software, Risk Management System, Router Operating System, Server Management Software, Service Management Software, Smartphone Operating System, Software Management Software, Solution Stack Software, Spreadsheet Software, SSH Server Software, Tablet Operating System, Ticket Tracking Software, Unified Communication Software, Virtualization Software, Web Browser, Web Server, Wireless LAN Software, Word Processing Software

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Product

Linux Kernel798
Adobe Experience Manager146
Google Android48
Google Chrome40
Apple macOS38

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Remediation

Official Fix1354
Temporary Fix0
Workaround0
Unavailable0
Not Defined122

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Exploitability

High4
Functional0
Proof-of-Concept18
Unproven26
Not Defined1428

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Access Vector

Not Defined0
Physical8
Local136
Adjacent826
Network506

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Authentication

Not Defined0
High26
Low1184
None266

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

User Interaction

Not Defined0
Required350
None1126

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

C3BM Index

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

CVSSv3 Base

≤10
≤22
≤344
≤4150
≤5430
≤6538
≤7130
≤8146
≤928
≤108

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

CVSSv3 Temp

≤10
≤22
≤346
≤4150
≤5434
≤6624
≤768
≤8122
≤924
≤106

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

VulDB

≤10
≤22
≤356
≤4294
≤5298
≤6522
≤7126
≤8154
≤916
≤108

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

NVD

≤11444
≤20
≤30
≤40
≤54
≤614
≤74
≤84
≤92
≤104

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

CNA

≤11132
≤22
≤30
≤410
≤524
≤6178
≤740
≤858
≤918
≤1014

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

≤11446
≤20
≤30
≤40
≤50
≤64
≤74
≤820
≤90
≤102

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Exploit 0-day

<1k38
<2k174
<5k204
<10k770
<25k182
<50k90
<100k18
≥100k0

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Exploit Today

<1k614
<2k414
<5k252
<10k102
<25k88
<50k6
<100k0
≥100k0

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Exploit Market Volume

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

IOB - Indicator of Behavior (1000)

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Lang

en764
es82
de62
fr28
pl20

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Country

us370
de88
es44
fr34
cn16

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Actors

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Activities

Interest

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Type

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Product

Adobe Experience Manager90
Linux Kernel30
Google Android24
Google Chrome12
anji-plus AJ-Report8

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vulnerabilities

#VulnerabilityBaseTemp0dayTodayExpRemEPSSCTICVE
1itsourcecode Document Management System edithis.php sql injection6.35.7$0-$5k$0-$5kProof-of-ConceptNot Defined0.000006.75-CVE-2024-6014
2Microsoft Windows Wi-Fi Driver input validation8.88.1$25k-$100k$5k-$25kUnprovenOfficial Fix0.000534.70CVE-2024-30078
3itsourcecode Event Calendar process.php regDelete sql injection6.35.7$0-$5k$0-$5kProof-of-ConceptNot Defined0.000003.11-CVE-2024-6009
4SolarWinds Serv-U path traversal6.96.9$0-$5k$0-$5kNot DefinedNot Defined0.000900.59CVE-2024-28995
5Google Android Local Privilege Escalation7.87.6$25k-$100k$5k-$25kHighOfficial Fix0.001540.59CVE-2024-32896
6Acronis Cloud Manager default permission4.94.8$0-$5k$0-$5kNot DefinedOfficial Fix0.000000.29CVE-2024-34012
7YotuWP Video Gallery Plugin file inclusion8.07.9$0-$5k$0-$5kNot DefinedNot Defined0.000000.70CVE-2024-4258
8Microsoft Edge Remote Code Execution5.95.7$25k-$100k$5k-$25kNot DefinedOfficial Fix0.000460.47CVE-2024-30058
9Adobe Experience Manager cross site scripting4.44.4$0-$5k$0-$5kNot DefinedOfficial Fix0.000450.65CVE-2024-36169
10Nextcloud Server Share Recipient access control6.76.6$0-$5k$0-$5kNot DefinedOfficial Fix0.000000.58-CVE-2024-37882
11ASUS ZenWiFi XT8 improper authentication9.89.8$0-$5k$0-$5kNot DefinedNot Defined0.000910.29CVE-2024-3080
12YotuWP Video Gallery Plugin Shortcode file inclusion6.36.2$0-$5k$0-$5kNot DefinedNot Defined0.000000.53CVE-2024-4551
13IBM Maximo Application Suite/Maximo Asset Management unknown vulnerability3.63.6$0-$5k$0-$5kNot DefinedOfficial Fix0.000450.35CVE-2024-22333
14Nextcloud Server files_versions access control3.93.8$0-$5k$0-$5kNot DefinedOfficial Fix0.000000.53-CVE-2024-37315
15Soar Cloud HR Portal cleartext transmission6.26.2$0-$5k$0-$5kNot DefinedOfficial Fix0.000000.00CVE-2024-5996
16Nextcloud Server Calendar Event access control3.93.8$0-$5k$0-$5kNot DefinedOfficial Fix0.000000.47-CVE-2024-37887
17Nextcloud user_oidc App signature verification5.95.7$0-$5k$0-$5kNot DefinedOfficial Fix0.000000.47-CVE-2024-37886
18Nextcloud Server Photos access control4.54.4$0-$5k$0-$5kNot DefinedOfficial Fix0.000000.35-CVE-2024-37314
19Microsoft Windows Message Queuing use after free9.88.5$25k-$100k$25k-$100kUnprovenOfficial Fix0.003490.28CVE-2024-30080
20Nextcloud Calendar App Event Attachment unexpected data type5.15.0$0-$5k$0-$5kNot DefinedOfficial Fix0.000000.39-CVE-2024-37316

IOC - Indicator of Compromise (37)

These indicators of compromise highlight associated network ranges which are known to be part of research and attack activities.

IDIP rangeActorTypeConfidence
12.58.56.0/24RecordBreakerpredictiveHigh
223.154.177.0/24B1txor20predictiveHigh
338.132.101.0/24RevengeRATpredictiveHigh
441.228.222.0/24QakbotpredictiveHigh
5XX.XXX.XX.X/XXXxxxxx XxxxxxpredictiveHigh
6XX.XXX.XXX.X/XXXxxxxxxxpredictiveHigh
7XX.XXX.XX.X/XXXxxxxxxxpredictiveHigh
8XX.XXX.XXX.X/XXXxxxxxxxpredictiveHigh
9XX.XXX.XXX.X/XXXxxxxxx XxxxxxxpredictiveHigh
10XX.XX.XXX.X/XXXxxxxxxxpredictiveHigh
11XX.XX.XXX.X/XXXxxxxx XxxpredictiveHigh
12XX.XX.XXX.X/XXXxxxxxxxpredictiveHigh
13XX.XX.XXX.X/XXXxxxxxx XxxxxxpredictiveHigh
14XX.XXX.XX.X/XXXxxxpredictiveHigh
15XXX.XXX.XXX.X/XXXxxxxxpredictiveHigh
16XXX.XXX.XXX.X/XXXxxxxxxxpredictiveHigh
17XXX.XXX.XX.X/XXXxxxxxpredictiveHigh
18XXX.XXX.XX.X/XXXxxxxxpredictiveHigh
19XXX.XXX.XXX.X/XXXxxxxx XxxxxxpredictiveHigh
20XXX.XX.XXX.X/XXXxxxxxxxpredictiveHigh
21XXX.XX.XXX.X/XXXxxxxx XxxxxxpredictiveHigh
22XXX.XX.XXX.X/XXXxxxxxxxpredictiveHigh
23XXX.XXX.XXX.X/XXXxxxxxxxpredictiveHigh
24XXX.XXX.XXX.X/XXXxxxxpredictiveHigh
25XXX.XXX.XXX.X/XXXxxxx XxxxxxxpredictiveHigh
26XXX.XXX.XXX.X/XXXxxxxxxxpredictiveHigh
27XXX.XXX.XXX.X/XXXxxxxxxxx XxxxxxpredictiveHigh
28XXX.XX.XXX.X/XXXxxxxxxxpredictiveHigh
29XXX.XXX.XX.X/XXXxxxxpredictiveHigh
30XXX.XX.XX.X/XXXxxxxpredictiveHigh
31XXX.XXX.XXX.X/XXXxxxpredictiveHigh
32XXX.XX.XXX.X/XXXxxxxx XxxxxxpredictiveHigh
33XXX.XXX.XXX.X/XXXxxxxxx XxxxxxxpredictiveHigh
34XXX.XXX.XXX.X/XXXxxxxxxx XxxpredictiveHigh
35XXX.XXX.XX.X/XXXxxxxpredictiveHigh
36XXX.XX.XX.X/XXXxxxxxxxxpredictiveHigh
37XXX.XXX.XX.X/XXXxxxxxpredictiveHigh

TTP - Tactics, Techniques, Procedures (29)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechniqueClassVulnerabilitiesAccess VectorTypeConfidence
1T1006CAPEC-126CWE-22Path TraversalpredictiveHigh
2T1040CAPEC-102CWE-294, CWE-319Authentication Bypass by Capture-replaypredictiveHigh
3T1055CAPEC-10CWE-74Improper Neutralization of Data within XPath ExpressionspredictiveHigh
4T1059CAPEC-242CWE-94, CWE-1321Argument InjectionpredictiveHigh
5T1059.007CAPEC-209CWE-79, CWE-80Cross Site ScriptingpredictiveHigh
6T1068CAPEC-104CWE-250, CWE-264, CWE-266, CWE-284Execution with Unnecessary PrivilegespredictiveHigh
7TXXXX.XXXCAPEC-CWE-XXXXxx Xx Xxxx-xxxxx XxxxxxxxpredictiveHigh
8TXXXXCAPEC-150CWE-XXXXxxx Xxx Xxxxxxxxx Xxxxxxxxxxx XxxxxxxxpredictiveHigh
9TXXXX.XXXCAPEC-191CWE-XXXXxxx-xxxxx XxxxxxxxxxxpredictiveHigh
10TXXXXCAPEC-136CWE-XX, CWE-XXXxxxxxx Xxxxx Xx Xxxxxxxxxx Xxxxxxxxxx XxxxxxxxxpredictiveHigh
11TXXXX.XXXCAPEC-178CWE-XXXXxxx XxxxxxxxpredictiveHigh
12TXXXXCAPEC-CWE-XXXXXxxxxxxx Xxxxxxxxxxxxxx Xx Xxxxxxx Xxxxxxxx Xxxx Xx X Xxxxxxxx XxxxxxpredictiveHigh
13TXXXXCAPEC-1CWE-XXX, CWE-XXXXxxxxxxxxx XxxxxxpredictiveHigh
14TXXXX.XXXCAPEC-492CWE-XXXXXxxxxxxxxxx Xxxxxxx Xxxxxxxxxx XxxxxxxxxxpredictiveHigh
15TXXXXCAPEC-108CWE-XXXxx XxxxxxxxxpredictiveHigh
16TXXXX.XXXCAPEC-1CWE-XXXXxxxxxxx XxxxxxxxxxxxxpredictiveHigh
17TXXXXCAPEC-55CWE-XXX, CWE-XXX, CWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxxxx XxxxxxxxxxpredictiveHigh
18TXXXX.XXXCAPEC-CWE-XXXXxxxxxxx Xx Xxxxxxxxxxxxx XxxxpredictiveHigh
19TXXXXCAPEC-37CWE-XXXXxxxxxxxx Xxxxxxx Xx Xxxxxxxxx XxxxxxxxxxxpredictiveHigh
20TXXXX.XXXCAPEC-120CWE-XXXXxxxxxx Xxxxxxxxxx Xxx Xxxxxxxx Xxxxxxx Xx Xx-xxxx Xxxxxx XxxxxxxxpredictiveHigh
21TXXXX.XXXCAPEC-220CWE-XXXXxxxxxxxx XxxxxxxxxpredictiveHigh
22TXXXX.XXXCAPEC-154CWE-XXXXxxxxxxxxxxxpredictiveHigh
23TXXXXCAPEC-38CWE-XXX, CWE-XXXXxxxxxxxx Xxxxxx XxxxpredictiveHigh
24TXXXX.XXXCAPEC-459CWE-XXXXxxxxxxx Xxxxxxxxxxx XxxxxxxxxxpredictiveHigh
25TXXXXCAPEC-464CWE-XXXXxxxxxxx Xx Xxxxxxx Xxxxxxxx Xxxxxxxxxxx Xx Xx Xxxxxxxxxxxx XxxxxpredictiveHigh
26TXXXXCAPEC-116CWE-XXX, CWE-XXX, CWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxxx Xx Xxxxxxx Xxxxx Xxxxxxx Xxxxxxxxx XxxxxxxxxxxpredictiveHigh
27TXXXX.XXXCAPEC-59CWE-XXXXxx Xxxxxxxxxx XxxxxpredictiveHigh
28TXXXX.XXXCAPEC-1CWE-XXXXxxxxxxxxx Xxxxxxxxxxxxxx Xx Xxxxxxxx Xxxx XxxxxxxxxpredictiveHigh
29TXXXXCAPEC-CWE-XXXXxxxxxxxxxx XxxxxxpredictiveHigh

Might our Artificial Intelligence support you?

Check our Alexa App!