Cape Verde Unknown Analyse

💳 Purchase Required

You need to purchase an additional CTI license to see detailed indicators.

IOB - Indicator of Behavior (32)

Sprache

en	16
pt	14
es	2

Land

pt	22
cv	6
br	4

Akteure

Unknown	1

Interesse

Typ

Not Defined	10
Web Server	4
Operating System	4
Bug Tracking Software	2
Network Management Software	2

Hersteller

Not Defined	14
Apache	4
GitLab	2
Zoho ManageEngine	2
Mobatek	2

Produkt

GitLab Community Edition	2
GitLab Enterprise Edition	2
Apache HTTP Server	2
JIRA	2
Zoho ManageEngine ManageEngine OpManager	2

Schwachstellen

#	Schwachstelle	Base	Temp	0day	Heute	Aus	Mas	EPSS	CTI	CVE
1	Redhat Nagios XI Core nagios.upgrade_to_v3.sh erweiterte Rechte	6.8	6.8	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00042	0.00	CVE-2013-2029
2	Fortinet FortiOS Restore Command erweiterte Rechte	3.8	3.7	$0-$5k	$0-$5k	High	Official Fix	0.00146	0.05	CVE-2021-44168
3	OpenSSH ssh-add Privilege Escalation	7.6	7.5	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00106	0.06	CVE-2023-28531
4	Wiki.js Storage Module Directory Traversal	6.4	6.3	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00126	0.04	CVE-2021-43800
5	Wiki.js SVG File Cross Site Scripting	4.4	4.4	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00053	0.00	CVE-2021-25993
6	lighttpd mod_extforward Plugin mod_extforward_Forwarded Pufferüberlauf	6.3	6.3	$0-$5k	$0-$5k	Not Defined	Not Defined	0.02251	0.02	CVE-2022-22707
7	Simple College Website file_put_contents erweiterte Rechte	8.5	8.5	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00466	0.00	CVE-2022-40087
8	CMSUno central.php file_put_contents erweiterte Rechte	5.5	5.5	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00718	0.03	CVE-2021-40889
9	Xiaomi Redmi Note 9T/Redmi Note 11 write Pufferüberlauf	5.7	5.7	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00089	0.05	CVE-2020-14125
10	WSO2 API Manager/IS as Key Manager/Identity Server File Based Service Provider Creation XML External Entity	5.5	5.3	$0-$5k	$0-$5k	Not Defined	Official Fix	0.02123	0.07	CVE-2021-42646
11	Zoho ManageEngine ManageEngine OpManager getmailserversettings SQL Injection	6.4	6.4	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00274	0.00	CVE-2017-11559
12	Yoast SEO Plugin REST Endpoint posts Information Disclosure	3.5	3.4	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00123	0.06	CVE-2021-25118
13	WordPress wp_die Information Disclosure	4.5	4.4	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00093	0.06	CVE-2021-39200
14	WordPress SQL Injection	6.8	6.7	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00467	0.06	CVE-2022-21664
15	pac-resolver PAC File Remote Code Execution	5.6	5.4	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00433	0.05	CVE-2021-23406
16	Oracle Blockchain Platform BCS Console erweiterte Rechte	7.3	7.1	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00331	0.00	CVE-2019-10086
17	GitLab Community Edition/Enterprise Edition OmniAuth schwache Authentisierung	8.2	8.0	$0-$5k	$0-$5k	Not Defined	Official Fix	0.24455	0.00	CVE-2022-1162
18	Fortinet FortiOS TFTP Client Pufferüberlauf	7.0	6.8	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00042	0.04	CVE-2021-42757
19	Apache Directory Studio SASL Authentication schwache Verschlüsselung	3.1	3.1	$0-$5k	$5k-$25k	Not Defined	Not Defined	0.00055	0.00	CVE-2021-33900
20	JIRA picker Username erweiterte Rechte	5.3	5.2	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00379	0.03	CVE-2019-3403

IOC - Indicator of Compromise (19)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

ID	IP-Adresse	Akteur	Identifiziert	Typ	Akzeptanz
1	38.44.64.0	Cape Verde Unknown	28.04.2023	verifiziert	High
2	41.74.128.0	Cape Verde Unknown	28.04.2023	verifiziert	High
3	41.79.124.0	Cape Verde Unknown	28.04.2023	verifiziert	High
4	41.215.208.0	Cape Verde Unknown	28.04.2023	verifiziert	High
5	XX.XXX.XXX.X	Xxxx Xxxxx Xxxxxxx	28.04.2023	verifiziert	High
6	XX.XX.XXX.X	Xxxx Xxxxx Xxxxxxx	28.04.2023	verifiziert	High
7	XXX.XX.XXX.X	Xxxx Xxxxx Xxxxxxx	28.04.2023	verifiziert	High
8	XXX.XXX.XXX.X	Xxxx Xxxxx Xxxxxxx	28.04.2023	verifiziert	High
9	XXX.XXX.XXX.X	Xxxx Xxxxx Xxxxxxx	28.04.2023	verifiziert	High
10	XXX.XXX.XX.X	Xxxx Xxxxx Xxxxxxx	28.04.2023	verifiziert	High
11	XXX.XXX.XXX.X	Xxxx Xxxxx Xxxxxxx	28.04.2023	verifiziert	High
12	XXX.XXX.XXX.X	Xxxx Xxxxx Xxxxxxx	28.04.2023	verifiziert	High
13	XXX.XX.XX.X	Xxxx Xxxxx Xxxxxxx	28.04.2023	verifiziert	High
14	XXX.XXX.XX.X	Xxxx Xxxxx Xxxxxxx	28.04.2023	verifiziert	High
15	XXX.X.X.X	Xxxx Xxxxx Xxxxxxx	28.04.2023	verifiziert	High
16	XXX.XX.XX.X	Xxxx Xxxxx Xxxxxxx	28.04.2023	verifiziert	High
17	XXX.XX.XXX.X	Xxxx Xxxxx Xxxxxxx	28.04.2023	verifiziert	High
18	XXX.XXX.XXX.X	Xxxx Xxxxx Xxxxxxx	28.04.2023	verifiziert	High
19	XXX.XXX.XXX.X	Xxxx Xxxxx Xxxxxxx	28.04.2023	verifiziert	High

TTP - Tactics, Techniques, Procedures (11)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

ID	Technique	Klassifizierung	Schwachstellen	Zugriffsart	Typ	Akzeptanz
1	T1006	CAPEC-126	CWE-22	Path Traversal	prädiktiv	High
2	T1059	CAPEC-242	CWE-94	Argument Injection	prädiktiv	High
3	T1059.007	CAPEC-209	CWE-79	Cross Site Scripting	prädiktiv	High
4	TXXXX	CAPEC-19	CWE-XXX	Xxxxxxxxx Xxxx Xxxxxxxxxxx Xxxxxxxxxx	prädiktiv	High
5	TXXXX.XXX	CAPEC-	CWE-XXX	Xxx Xx Xxxx-xxxxx Xxxxxxxx	prädiktiv	High
6	TXXXX	CAPEC-108	CWE-XX	Xxx Xxxxxxxxx	prädiktiv	High
7	TXXXX.XXX	CAPEC-1	CWE-XXX	Xxxxxxxx Xxxxxxxxxxxxx	prädiktiv	High
8	TXXXX	CAPEC-116	CWE-XXX	Xxxxxxxxxx Xx Xxxxxxx Xxxxx Xxxxxxx Xxxxxxxxx Xxxxxxxxxxx	prädiktiv	High
9	TXXXX	CAPEC-157	CWE-XXX	Xxxxxxxxxxxxx Xxxxxx	prädiktiv	High
10	TXXXX.XXX	CAPEC-	CWE-XXX	Xxx Xxxxxxxxxx Xxxxx	prädiktiv	High
11	TXXXX.XXX	CAPEC-1	CWE-XXX	Xxxxxxxxxx Xxxxxxxxxxxxxx Xx Xxxxxxxx Xxxx Xxxxxxxxx	prädiktiv	High

IOA - Indicator of Attack (12)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

ID	Klasse	Indicator	Typ	Akzeptanz
1	File	.htaccess	prädiktiv	Medium
2	File	/api/json/admin/getmailserversettings	prädiktiv	High
3	File	/xxxx/xxx/x/xxxx/xxxxxx	prädiktiv	High
4	File	xxxxxx.xxxxxxx_xx_xx.xx	prädiktiv	High
5	File	xxxx/xxxxx	prädiktiv	Medium
6	File	xx/xx/xxxxx	prädiktiv	Medium
7	File	{xxxxxxx}/xxx/xxxxxxx.xxx	prädiktiv	High
8	Argument	xxxxxx	prädiktiv	Low
9	Argument	xxxx	prädiktiv	Low
10	Argument	xxxxxx	prädiktiv	Low
11	Pattern	\|xx xx xx xx\|	prädiktiv	High
12	Network Port	xxx/xx (xxxxxx)	prädiktiv	High

Referenzen (2)

The following list contains external sources which discuss the actor and the associated activities:

◂ ZurückÜbersichtWeiter ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!