القطاع Governmentالمعلومات

Timeframe: -14 days

Default Categories (63): Access Management Software, Anti-Malware Software, Anti-Spam Software, Application Server Software, Automation Software, Backup Software, Billing Software, Calendar Software, Cloud Software, Communications System, Connectivity Software, Customer Relationship Management System, Database Administration Software, Database Software, Directory Service Software, Document Management Software, Document Processing Software, Document Reader Software, File Compression Software, File Transfer Software, Financial Software, Firewall Software, Groupware Software, Hardware Driver Software, Information Management Software, IP Phone Software, Knowledge Base Software, Log Management Software, Mail Server Software, Middleware, Multimedia Player Software, Network Attached Storage Software, Network Authentication Software, Network Encryption Software, Network Management Software, Network Routing Software, Office Suite Software, Operating System, Policy Management Software, Presentation Software, Printing Software, Product Lifecycle Management Software, Project Management Software, Remote Access Software, Reporting Software, Router Operating System, Security Testing Software, Server Management Software, Service Management Software, Software Library, Software Management Software, Spreadsheet Software, SSH Server Software, Supply Chain Management Software, Ticket Tracking Software, Unified Communication Software, Video Surveillance Software, Virtualization Software, Web Browser, Web Server, Windowing System Software, Wireless LAN Software, Word Processing Software

التسلسل الزمني

المجهز

منتج

Linux Kernel50
Mozilla Firefox18
QNAP QTS16
QNAP QuTS hero16
Zabbix14

معالجة

Official Fix148
Temporary Fix0
Workaround4
Unavailable0
Not Defined66

قابلية الاستغلال

High2
Functional0
Proof-of-Concept20
Unproven0
Not Defined196

متجه الوصول

Not Defined0
Physical4
Local10
Adjacent60
Network144

توثيق

Not Defined0
High14
Low102
None102

تفاعل المستخدم

Not Defined0
Required44
None174

C3BM Index

CVSSv3 Base

≤10
≤20
≤314
≤414
≤532
≤650
≤716
≤844
≤934
≤1014

CVSSv3 Temp

≤10
≤20
≤314
≤414
≤532
≤656
≤730
≤836
≤924
≤1012

VulDB

≤10
≤20
≤316
≤422
≤538
≤634
≤722
≤848
≤926
≤1012

NVD

≤1206
≤20
≤30
≤40
≤50
≤62
≤70
≤82
≤90
≤108

CNA

≤1114
≤20
≤36
≤410
≤510
≤610
≤716
≤822
≤922
≤108

المجهز

≤1218
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

إكسبلويت ذات هجوم فوري

<1k30
<2k26
<5k104
<10k4
<25k42
<50k10
<100k2
≥100k0

إكسبلويت اليوم

<1k122
<2k36
<5k34
<10k18
<25k8
<50k0
<100k0
≥100k0

حجم سوق الإكسبلويت

IOB - Indicator of Behavior (1000)

التسلسل الزمني

اللغة

en912
fr28
ja22
de20
zh12

البلد

الفاعلين

النشاطات

الاهتمام

التسلسل الزمني

النوع

المجهز

منتج

Linux Kernel16
Zabbix10
code-projects Farmacia8
QNAP QTS8
QNAP QuTS hero8

الثغرات

#الثغرةBaseTemp0dayاليومقابمعالجةEPSSCTICVE
11000 Projects Beauty Parlour Management System edit-customer-detailed.php حقن إس كيو إل7.36.6$0-$5k$0-$5kProof-of-ConceptNot Defined0.000001.88CVE-2024-12234
2CodeZips Project Management System index.php حقن إس كيو إل7.36.6$0-$5k$0-$5kProof-of-ConceptNot Defined0.000001.24CVE-2024-12231
3code-projects Simple CRUD Functionality index.php سكربتات مشتركة3.53.2$0-$5k$0-$5kProof-of-ConceptNot Defined0.000000.94CVE-2024-12232
4Microsoft Edge4.34.2$25k-$100k$5k-$25kNot DefinedOfficial Fix0.000001.20-CVE-2024-49041
5VMware Spring LDAP String.toUpperCase الكشف عن المعلومات3.73.6$5k-$25k$0-$5kNot DefinedOfficial Fix0.000430.77CVE-2024-38829
6Dropbox Sign تجاوز الصلاحيات4.34.3$0-$5k$0-$5kNot DefinedNot Defined0.000000.90CVE-2024-52270
7SonicWall SMA100 SSLVPN mod_httprp تلف الذاكرة8.18.1$0-$5k$0-$5kNot DefinedNot Defined0.000000.73CVE-2024-53703
8AutomationDirect C-More EA9 Programming Software File Parser تلف الذاكرة8.88.4$0-$5k$0-$5kNot DefinedOfficial Fix0.000001.03-CVE-2024-11610
9AutomationDirect C-More EA9 Programming Software File Parser تلف الذاكرة8.88.4$0-$5k$0-$5kNot DefinedOfficial Fix0.000000.99-CVE-2024-11611
10AutomationDirect C-More EA9 Programming Software File Parser تلف الذاكرة8.88.4$0-$5k$0-$5kNot DefinedOfficial Fix0.000000.99-CVE-2024-11609
11OpenBSD fastcgi Request الحرمان من الخدمة7.57.3$5k-$25k$0-$5kNot DefinedOfficial Fix0.000000.90-CVE-2024-11148
12OpenBSD readdir اجتياز الدليل4.64.5$5k-$25k$0-$5kNot DefinedOfficial Fix0.000000.77-CVE-2024-10933
13Veeam Backup & Replication Privilege Escalation8.88.8$0-$5k$0-$5kNot DefinedNot Defined0.000430.54CVE-2024-40717
14SonicWall SMA100 Web Management Interface تلف الذاكرة8.17.7$0-$5k$0-$5kNot DefinedOfficial Fix0.000000.34CVE-2024-45318
15Linux Kernel initramfs buffer-format.rst do_name Privilege Escalation8.07.6$5k-$25k$0-$5kNot DefinedOfficial Fix0.000000.73CVE-2024-53142
16Rockwell Automation Arena DOE File تلف الذاكرة8.88.8$0-$5k$0-$5kNot DefinedNot Defined0.000000.30CVE-2024-11156
17SonicWall SMA100 تشفير ضعيف5.35.1$0-$5k$0-$5kNot DefinedOfficial Fix0.000000.51CVE-2024-53702
18Cisco NX-OS Bootloader تجاوز الصلاحيات6.05.9$5k-$25k$5k-$25kNot DefinedOfficial Fix0.000430.34CVE-2024-20397
19ZOO-Project Echo Example تجاوز الصلاحيات5.35.1$0-$5k$0-$5kNot DefinedOfficial Fix0.000430.30CVE-2024-53982
20Linux Kernel netfilter bitmap_ip_uadt Privilege Escalation5.55.3$5k-$25k$0-$5kNot DefinedOfficial Fix0.000000.56CVE-2024-53141

IOC - Indicator of Compromise (25)

These indicators of compromise highlight associated network ranges which are known to be part of research and attack activities.

IDIP rangeممثلالنوعالثقة
12.58.56.0/24RecordBreakerpredictiveعالي
25.79.66.0/24APT33predictiveعالي
35.255.115.0/24IcedIDpredictiveعالي
4XX.XXX.XXX.X/XXXxxxxxx Xxxxxxxpredictiveعالي
5XX.XXX.XXX.X/XXXxxxxxxpredictiveعالي
6XX.XXX.XX.X/XXXxxxxx Xxxxxxpredictiveعالي
7XX.XXX.XXX.X/XXXxxxxxx Xxxxxxxpredictiveعالي
8XX.XXX.XXX.X/XXXxxxxxxpredictiveعالي
9XX.XXX.XXX.X/XXXxxxxpredictiveعالي
10XX.XX.XXX.X/XXXxxxxxxxpredictiveعالي
11XX.XXX.XX.X/XXXxxxxxxxxxxpredictiveعالي
12XX.XX.XXX.X/XXXxxxxxpredictiveعالي
13XXX.XX.XXX.X/XXXxxxxx Xxxxxxpredictiveعالي
14XXX.XXX.XXX.X/XXXxxxxxxxxpredictiveعالي
15XXX.XXX.XX.X/XXXxxxxpredictiveعالي
16XXX.XX.X.X/XXXxxxxpredictiveعالي
17XXX.XX.XXX.X/XXXxxxxpredictiveعالي
18XXX.XXX.XX.X/XXXxxxxxx Xxxxxxpredictiveعالي
19XXX.XXX.XXX.X/XXXxxxpredictiveعالي
20XXX.XXX.XXX.X/XXXxxxx Xxxxxxxpredictiveعالي
21XXX.XXX.XXX.X/XXXxxxxxx Xxxxxxxpredictiveعالي
22XXX.XXX.XXX.X/XXXxxxxxpredictiveعالي
23XXX.XX.XXX.X/XXXxxxxxpredictiveعالي
24XXX.XX.XXX.X/XXXxxxxx Xxxxxxpredictiveعالي
25XXX.XXX.XXX.X/XXXxxxxx Xxxxxxpredictiveعالي

TTP - Tactics, Techniques, Procedures (18)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IOA - Indicator of Attack (67)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDالفئةIndicatorالنوعالثقة
1File/add.phppredictiveمتوسط
2File/admin/add-customer.phppredictiveعالي
3File/admin/edit-customer-detailed.phppredictiveعالي
4File/admin/edit-services.phppredictiveعالي
5File/admin/search-appointment.phppredictiveعالي
6File/admin/view-appointment.phppredictiveعالي
7File/api/dev-console/proxy/internetpredictiveعالي
8File/cgi-bin/luci/adminpredictiveعالي
9File/cgi-bin/luci/admin/opsw/Dual_freq_un_applepredictiveعالي
10File/xxxxxxxxxxx/xxxxxxxxxxxxxx.xxxpredictiveعالي
11File/xxxxxx-xxxxxxxxxx.xxxpredictiveعالي
12File/xxxxxx_xxxxxxxx_xxxxxxx.xxxpredictiveعالي
13File/xxxxxx/xxxxxxxxxxxxxxxxxxpredictiveعالي
14File/xxxxxx/xxxxxxxxxxxxxpredictiveعالي
15File/xxxxxx/xxxxxxxxxxxxxxxxxpredictiveعالي
16File/xxxxx.xxxpredictiveمتوسط
17File/xxxxx.xxxpredictiveمتوسط
18File/xxxxxxxxx.xxxpredictiveعالي
19File/xx/xx/xxxxxxxxxpredictiveعالي
20File/xxxxxxxx.xxxpredictiveعالي
21File/xxxx(xxx).xxxpredictiveعالي
22File/xxxxxx.xxxpredictiveمتوسط
23File/xxxxxxxxxx-xxxxxxx.xxxpredictiveعالي
24File/xxxxxxxxxx-xxxxxxxxxxx.xxxpredictiveعالي
25Filexxxxxxx.xpredictiveمتوسط
26Filexxxxxxxxxxxxx/xxxxxx-xxx/xxxxx-xxxxxxxxx/xxxxxx-xxxxxx.xxxpredictiveعالي
27Filexxxxx-xxxx.xxpredictiveعالي
28Filexx/xxxxx/xxxxxxxx.xpredictiveعالي
29Filexxxxxxx/xxxxx/xxxx_xxxxx.xpredictiveعالي
30Filexxxxxx/xxxxxxx/xxxxx.xpredictiveعالي
31Filexxx/xxxx/xxx.xpredictiveعالي
32Filexxx/xxxx/xx_xxxx.xpredictiveعالي
33Filexxxxxxx/xxxxxxxxxx/xxxxxxx.xxpredictiveعالي
34Filexxxxx.xxxpredictiveمتوسط
35Filexxxxxxx.xxxpredictiveمتوسط
36Filexxxxxxxxx.xxxpredictiveعالي
37Filexxxxxxxxxxxxxx.xxxxpredictiveعالي
38Filexxxxxxx_xxxxx.xxxpredictiveعالي
39Filexxxxxxx.xxxpredictiveمتوسط
40Libraryxxx/xxxxxxxx.xpredictiveعالي
41Libraryxxx/xxxx/xxxxxxxx/xxxxxxx.xpredictiveعالي
42Libraryxxx/xxxx/xxxxxxxx/xxxxx.xpredictiveعالي
43Argumentxxxxxxpredictiveواطئ
44Argumentxxxxxxx-xxxxxxpredictiveعالي
45Argumentxxxxxxxpredictiveواطئ
46Argumentxxxxpredictiveواطئ
47Argumentxxxxxpredictiveواطئ
48Argumentxxxxxxxxxpredictiveمتوسط
49Argumentxxpredictiveواطئ
50Argumentxxxxpredictiveواطئ
51Argumentxxxpredictiveواطئ
52Argumentxxxxpredictiveواطئ
53Argumentxxxxxxxx/xxxxxxxxpredictiveعالي
54Argumentxxxxxxxxxxpredictiveمتوسط
55Argumentxxxxxxxpredictiveواطئ
56Argumentxxxx_xxx_xxxxxpredictiveعالي
57Argumentxxxxxpredictiveواطئ
58Argumentxxxxxxxxpredictiveمتوسط
59Argumentxxxxxxxxxxpredictiveمتوسط
60Argumentxxxxxxxpredictiveواطئ
61Argumentxxxxxxxxxxxxxxxxxxpredictiveعالي
62Argumentxxxxxpredictiveواطئ
63Argumentxxxxxpredictiveواطئ
64Argumentxxxxxxxxpredictiveمتوسط
65Argumentxxx_xxxpredictiveواطئ
66Argumentxxxxxxpredictiveواطئ
67Argumentxxx_xxxxxxxpredictiveمتوسط

This view requires CTI permissions

Just purchase a CTI license today!