Sanyo Analyse

💳 Purchase Required

You need to purchase an additional CTI license to see detailed indicators.

IOB - Indicator of Behavior (9)

Sprache

en	6
zh	4

Land

us	6
cn	4

Akteure

RedEcho	1
Sanyo	1

Interesse

Typ

Not Defined	6
Router Operating System	2
Groupware Software	2

Hersteller

Castel	2
Not Defined	2
Cisco	2
Synacor	2
Konica Minolta	2

Produkt

Castel NextGen DVR	2
Gigabyte App Center	2
Aorus Graphics Engine	2
Xtreme Gaming Engine	2
OC Guru II	2

Schwachstellen

#	Schwachstelle	Base	Temp	0day	Heute	Aus	Mas	CTI	EPSS	CVE
1	Cisco IOS XE TFTP Server Denial of Service	5.3	5.1	$5k-$25k	Wird berechnet	Not Defined	Official Fix	0.02	0.00563	CVE-2015-0681
2	Konica Minolta bizhub Information Disclosure	2.1	2.0	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	0.00102	CVE-2021-20870
3	Cisco IOS/IOS XE SNMPv1/SNMPv2c/SNMPv3 Pufferüberlauf	8.8	8.1	$25k-$100k	$0-$5k	Proof-of-Concept	Workaround	0.02	0.01303	CVE-2017-6736
4	Zabbix SAML schwache Authentisierung	8.2	8.2	$0-$5k	$0-$5k	Not Defined	Not Defined	0.02	0.97186	CVE-2022-23131
5	Synacor Zimbra Collaboration Suite Auth Token preauth Redirect	4.9	4.7	$0-$5k	$0-$5k	Not Defined	Official Fix	0.06	0.00100	CVE-2021-34807
6	Gigabyte App Center GDrv Low-Level Driver erweiterte Rechte	7.8	7.8	$0-$5k	$0-$5k	Not Defined	Not Defined	0.02	0.00236	CVE-2018-19320
7	HP Persistent Accelerite Radia Client Automation Agent Pufferüberlauf	7.3	7.0	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	0.66274	CVE-2015-7860
8	Castel NextGen DVR erweiterte Rechte	7.5	7.5	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	0.00531	CVE-2020-11679
9	G.SKILL Trident Z Lighting Control ene.sys erweiterte Rechte	7.8	7.8	$0-$5k	$0-$5k	Not Defined	Not Defined	0.02	0.00044	CVE-2020-12446

IOC - Indicator of Compromise (1)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

ID	IP-Adresse	Hostname	Akteur	Kampagnen	Identifiziert	Typ	Akzeptanz
1	101.78.177.244		Sanyo		14.10.2022	verifiziert	High

TTP - Tactics, Techniques, Procedures (3)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

ID	Technique	Schwachstellen	Zugriffsart	Typ	Akzeptanz
1	T1068	CWE-269, CWE-284	Execution with Unnecessary Privileges	prädiktiv	High
2	TXXXX.XXX	CWE-XXX	Xxxx Xxxxxxxx	prädiktiv	High
3	TXXXX	CWE-XXX	Xxxxxxxxxx Xx Xxxxxxx Xxxxx Xxxxxxx Xxxxxxxxx Xxxxxxxxxxx	prädiktiv	High

IOA - Indicator of Attack (5)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

ID	Klasse	Indicator	Typ	Akzeptanz
1	File	/preauth	prädiktiv	Medium
2	File	Adminstrator/Users/Edit/	prädiktiv	High
3	Library	xxx.xxx	prädiktiv	Low
4	Argument	xxxxxxxxxxx	prädiktiv	Medium
5	Argument	xxxxxx	prädiktiv	Low

Referenzen (2)

The following list contains external sources which discuss the actor and the associated activities:

◂ ZurückÜbersichtWeiter ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!