Cape Verde Unknown تحليل

💳 Purchase Required

You need to purchase an additional CTI license to see detailed indicators.

IOB - Indicator of Behavior (32)

التسلسل الزمني

اللغة

en26
pt4
es2

البلد

pt18
cv10
br2
us2

الفاعلين

Unknown1

النشاطات

الاهتمام

التسلسل الزمني

النوع

Not Defined10
Operating System4
Content Management System4
Automation Software2
Connectivity Software2

المجهز

Not Defined14
WSO22
Apple2
Redhat2
Oracle2

منتج

JIRA2
WSO2 API Manager2
WSO2 IS as Key Manager2
WSO2 Identity Server2
OpenSSH2

الثغرات

#الثغرةBaseTemp0dayاليومق�معالجةEPSSCTICVE
1Redhat Nagios XI Core nagios.upgrade_to_v3.sh تجاوز الصلاحيات6.86.8$0-$5k$0-$5kNot DefinedNot Defined0.000420.00CVE-2013-2029
2Fortinet FortiOS Restore Command تجاوز الصلاحيات3.83.7$0-$5k$0-$5kNot DefinedOfficial Fix0.001460.02CVE-2021-44168
3OpenSSH ssh-add Privilege Escalation7.67.5$5k-$25k$0-$5kNot DefinedOfficial Fix0.001060.00CVE-2023-28531
4Wiki.js Storage Module اجتياز الدليل6.46.3$0-$5k$0-$5kNot DefinedOfficial Fix0.001260.02CVE-2021-43800
5Wiki.js SVG File سكربتات مشتركة4.44.4$0-$5k$0-$5kNot DefinedOfficial Fix0.000530.00CVE-2021-25993
6lighttpd mod_extforward Plugin mod_extforward_Forwarded تلف الذاكرة6.36.3$0-$5k$0-$5kNot DefinedNot Defined0.022510.02CVE-2022-22707
7Simple College Website file_put_contents تجاوز الصلاحيات8.58.5$0-$5k$0-$5kNot DefinedNot Defined0.002240.00CVE-2022-40087
8CMSUno central.php file_put_contents تجاوز الصلاحيات5.55.5$0-$5k$0-$5kNot DefinedNot Defined0.008220.03CVE-2021-40889
9Xiaomi Redmi Note 9T/Redmi Note 11 write تلف الذاكرة5.75.7$0-$5k$0-$5kNot DefinedNot Defined0.000890.03CVE-2020-14125
10WSO2 API Manager/IS as Key Manager/Identity Server File Based Service Provider Creation XML External Entity5.55.3$0-$5k$0-$5kNot DefinedOfficial Fix0.021230.07CVE-2021-42646
11Zoho ManageEngine ManageEngine OpManager getmailserversettings حقن إس كيو إل6.46.4$0-$5k$0-$5kNot DefinedNot Defined0.003230.00CVE-2017-11559
12Yoast SEO Plugin REST Endpoint posts الكشف عن المعلومات3.53.4$0-$5k$0-$5kNot DefinedOfficial Fix0.001730.04CVE-2021-25118
13WordPress wp_die الكشف عن المعلومات4.54.4$5k-$25k$0-$5kNot DefinedOfficial Fix0.000930.04CVE-2021-39200
14WordPress حقن إس كيو إل6.86.7$5k-$25k$0-$5kNot DefinedOfficial Fix0.004670.04CVE-2022-21664
15pac-resolver PAC File Remote Code Execution5.65.4$0-$5k$0-$5kNot DefinedOfficial Fix0.003930.01CVE-2021-23406
16Oracle Blockchain Platform BCS Console تجاوز الصلاحيات7.37.1$5k-$25k$0-$5kNot DefinedOfficial Fix0.003310.00CVE-2019-10086
17GitLab Community Edition/Enterprise Edition OmniAuth توثيق ضعيف8.28.0$0-$5k$0-$5kNot DefinedOfficial Fix0.244550.02CVE-2022-1162
18Fortinet FortiOS TFTP Client تلف الذاكرة7.06.8$0-$5k$0-$5kNot DefinedOfficial Fix0.000420.03CVE-2021-42757
19Apache Directory Studio SASL Authentication تشفير ضعيف3.13.1$0-$5k$0-$5kNot DefinedNot Defined0.000550.00CVE-2021-33900
20JIRA picker Username تجاوز الصلاحيات5.35.2$0-$5k$0-$5kNot DefinedOfficial Fix0.003790.02CVE-2019-3403

IOC - Indicator of Compromise (19)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

IDعنوان بروتوكول الإنترنتHostnameممثلحملاتIdentifiedالنوعالثقة
138.44.64.0Cape Verde Unknown28/04/2023verifiedعالي
241.74.128.0Cape Verde Unknown28/04/2023verifiedعالي
341.79.124.0Cape Verde Unknown28/04/2023verifiedعالي
441.215.208.0Cape Verde Unknown28/04/2023verifiedعالي
5XX.XXX.XXX.XXxxx Xxxxx Xxxxxxx28/04/2023verifiedعالي
6XX.XX.XXX.XXxxx Xxxxx Xxxxxxx28/04/2023verifiedعالي
7XXX.XX.XXX.XXxxx Xxxxx Xxxxxxx28/04/2023verifiedعالي
8XXX.XXX.XXX.XXxxx Xxxxx Xxxxxxx28/04/2023verifiedعالي
9XXX.XXX.XXX.XXxxx Xxxxx Xxxxxxx28/04/2023verifiedعالي
10XXX.XXX.XX.XXxxx Xxxxx Xxxxxxx28/04/2023verifiedعالي
11XXX.XXX.XXX.XXxxx Xxxxx Xxxxxxx28/04/2023verifiedعالي
12XXX.XXX.XXX.XXxxx Xxxxx Xxxxxxx28/04/2023verifiedعالي
13XXX.XX.XX.XXxxx Xxxxx Xxxxxxx28/04/2023verifiedعالي
14XXX.XXX.XX.XXxxx Xxxxx Xxxxxxx28/04/2023verifiedعالي
15XXX.X.X.XXxxx Xxxxx Xxxxxxx28/04/2023verifiedعالي
16XXX.XX.XX.XXxxx Xxxxx Xxxxxxx28/04/2023verifiedعالي
17XXX.XX.XXX.XXxxx Xxxxx Xxxxxxx28/04/2023verifiedعالي
18XXX.XXX.XXX.XXxxx Xxxxx Xxxxxxx28/04/2023verifiedعالي
19XXX.XXX.XXX.XXxxx Xxxxx Xxxxxxx28/04/2023verifiedعالي

TTP - Tactics, Techniques, Procedures (11)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechniqueالثغراتمتجه الوصولالنوعالثقة
1T1006CWE-22Path Traversalpredictiveعالي
2T1059CWE-94Argument Injectionpredictiveعالي
3T1059.007CWE-79Cross Site Scriptingpredictiveعالي
4TXXXXCWE-XXXXxxxxxxxx Xxxx Xxxxxxxxxxx Xxxxxxxxxxpredictiveعالي
5TXXXX.XXXCWE-XXXXxx Xx Xxxx-xxxxx Xxxxxxxxpredictiveعالي
6TXXXXCWE-XXXxx Xxxxxxxxxpredictiveعالي
7TXXXX.XXXCWE-XXXXxxxxxxx Xxxxxxxxxxxxxpredictiveعالي
8TXXXXCWE-XXXXxxxxxxxxx Xx Xxxxxxx Xxxxx Xxxxxxx Xxxxxxxxx Xxxxxxxxxxxpredictiveعالي
9TXXXXCWE-XXXXxxxxxxxxxxxx Xxxxxxpredictiveعالي
10TXXXX.XXXCWE-XXXXxx Xxxxxxxxxx Xxxxxpredictiveعالي
11TXXXX.XXXCWE-XXXXxxxxxxxxx Xxxxxxxxxxxxxx Xx Xxxxxxxx Xxxx Xxxxxxxxxpredictiveعالي

IOA - Indicator of Attack (12)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDالفئةIndicatorالنوعالثقة
1File.htaccesspredictiveمتوسط
2File/api/json/admin/getmailserversettingspredictiveعالي
3File/xxxx/xxx/x/xxxx/xxxxxxpredictiveعالي
4Filexxxxxx.xxxxxxx_xx_xx.xxpredictiveعالي
5Filexxxx/xxxxxpredictiveمتوسط
6Filexx/xx/xxxxxpredictiveمتوسط
7File{xxxxxxx}/xxx/xxxxxxx.xxxpredictiveعالي
8Argumentxxxxxxpredictiveواطئ
9Argumentxxxxpredictiveواطئ
10Argumentxxxxxxpredictiveواطئ
11Pattern|xx xx xx xx|predictiveعالي
12Network Portxxx/xx (xxxxxx)predictiveعالي

المصادر (2)

The following list contains external sources which discuss the actor and the associated activities:

التالي نظرة عامة السابق

Might our Artificial Intelligence support you?

Check our Alexa App!