Sector Finance

Timeframe: -28 days

Default Categories (81): Access Management Software, Accounting Software, Anti-Malware Software, Anti-Spam Software, Application Server Software, Appointment Software, Asset Management Software, Atlassian Confluence Plugin, Atlassian Jira App Software, Backup Software, Banking Software, Big Data Software, Billing Software, Bug Tracking Software, Business Process Management Software, Calendar Software, Cloud Software, Communications System, Connectivity Software, Continuous Integration Software, Customer Relationship Management System, Data Loss Prevention Software, Database Administration Software, Database Software, Directory Service Software, Document Management Software, Document Processing Software, Document Reader Software, Domain Name Software, Endpoint Management Software, Enterprise Resource Planning Software, File Compression Software, File Transfer Software, Financial Software, Firewall Software, Firmware Software, Groupware Software, Hardware Driver Software, Human Capital Management Software, Information Management Software, IP Phone Software, JavaScript Library, Knowledge Base Software, Log Management Software, Mail Client Software, Mail Server Software, Middleware, Network Attached Storage Software, Network Authentication Software, Network Encryption Software, Network Management Software, Network Routing Software, Office Suite Software, Operating System, Policy Management Software, Presentation Software, Printing Software, Programming Language Software, Project Management Software, Remote Access Software, Reporting Software, Risk Management System, Router Operating System, Security Testing Software, Server Management Software, Service Management Software, Smartphone Operating System, Software Library, Software Management Software, Solution Stack Software, Spreadsheet Software, SSH Server Software, Ticket Tracking Software, Unified Communication Software, Video Surveillance Software, Virtualization Software, Web Browser, Web Server, Windowing System Software, Wireless LAN Software, Word Processing Software

Cronología

Proveedor

Linux	372
Microsoft	128
Oracle	74
Google	52
Foxit	46

Producto

Linux Kernel	372
Microsoft Windows	84
Foxit PDF Reader	46
Juniper Junos OS	28
Microsoft SQL Server	28

Contramedidas

Official Fix	902
Temporary Fix	0
Workaround	2
Unavailable	0
Not Defined	128

Explotabilidad

High	4
Functional	2
Proof-of-Concept	38
Unproven	112
Not Defined	876

Vector de acceso

Not Defined	0
Physical	12
Local	150
Adjacent	396
Network	474

Autenticación

Not Defined	0
High	104
Low	590
None	338

La interacción del usuario

Not Defined	0
Required	226
None	806

C3BM Index

CVSSv3 Base

≤1	0
≤2	0
≤3	18
≤4	74
≤5	262
≤6	296
≤7	180
≤8	138
≤9	58
≤10	6

CVSSv3 Temp

≤1	0
≤2	0
≤3	20
≤4	80
≤5	256
≤6	418
≤7	126
≤8	106
≤9	20
≤10	6

VulDB

≤1	0
≤2	0
≤3	24
≤4	98
≤5	246
≤6	292
≤7	186
≤8	130
≤9	50
≤10	6

NVD

≤1	1032
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

CNA

≤1	726
≤2	2
≤3	10
≤4	6
≤5	56
≤6	66
≤7	48
≤8	68
≤9	40
≤10	10

Proveedor

≤1	914
≤2	0
≤3	0
≤4	0
≤5	4
≤6	6
≤7	30
≤8	44
≤9	34
≤10	0

Explotar día 0

<1k	22
<2k	208
<5k	46
<10k	442
<25k	174
<50k	124
<100k	16
≥100k	0

Explotar hoy

<1k	346
<2k	274
<5k	196
<10k	116
<25k	90
<50k	10
<100k	0
≥100k	0

Explotar el volumen del mercado

IOB - Indicator of Behavior (1000)

Cronología

Idioma

en	590
ja	108
de	82
zh	52
es	50

País

us	212
jp	124
de	84
cn	58
ru	56

Actores

Cobalt Strike	7
Sandworm	3
ShadowSyndicate	1
LummaC2 Stealer	1
UAC-0173	1

Ocupaciones

Interesar

Cronología

Escribe

Operating System	60
Web Browser	34
Router Operating System	20
Virtualization Software	14
Firewall Software	10

Proveedor

Linux	50
Not Defined	22
Oracle	20
Microsoft	20
Google	18

Producto

Linux Kernel	50
Google Chrome	16
Mozilla Firefox	14
Oracle VM VirtualBox	10
Cisco IOS XE	10

Vulnerabilidad

#	Vulnerabilidad	Base	Temp	0day	Hoy	Exp	Con	EPSS	CTI	CVE
1	Backdoor.Win32.Dumador.c FTP Server desbordamiento de búfer	6.3	5.6	$0-$5k	$0-$5k	Proof-of-Concept	Workaround	0.00000	2.15
2	Cisco ClamAV HTML Parser denegación de servicio	7.5	7.5	$5k-$25k	$5k-$25k	Not Defined	Not Defined	0.00043	0.09	CVE-2024-20380
3	PHP proc_open escalada de privilegios	7.3	7.0	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00000	0.05	CVE-2024-1874
4	GNU C Library iconv desbordamiento de búfer	5.3	5.1	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00045	0.46	CVE-2024-2961
5	PuTTY ECDSA Nonce Generation divulgación de información	3.7	3.6	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00046	0.09	CVE-2024-31497
6	Microsoft Edge divulgación de información	5.4	5.3	$25k-$100k	$5k-$25k	Not Defined	Official Fix	0.00043	0.00	CVE-2024-29987
7	Node.js child_process.spawn escalada de privilegios	5.5	5.3	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00000	0.14	CVE-2024-27980
8	Check Point ZoneAlarm Extreme Security NextGen escalada de privilegios	5.3	5.1	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00043	0.00	CVE-2024-24910
9	PHP Cookie escalada de privilegios	5.6	5.1	$5k-$25k	$0-$5k	Proof-of-Concept	Official Fix	0.00000	0.09	CVE-2024-2756
10	Palo Alto Networks PAN-OS GlobalProtect escalada de privilegios	8.9	8.7	$0-$5k	$0-$5k	High	Official Fix	0.02221	0.32	CVE-2024-3400
11	SolarWinds Serv-U directory traversal	6.5	6.5	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00043	0.06	CVE-2024-28073
12	PHP password_verify vulnerabilidad desconocida	3.7	3.4	$5k-$25k	$0-$5k	Proof-of-Concept	Official Fix	0.00000	0.05	CVE-2024-3096
13	Google Chrome V8 desbordamiento de búfer	6.3	6.0	$25k-$100k	$5k-$25k	Not Defined	Official Fix	0.00043	0.18	CVE-2024-3914
14	PHP mb_encode_mimeheader denegación de servicio	5.3	4.8	$5k-$25k	$0-$5k	Proof-of-Concept	Official Fix	0.00000	0.05	CVE-2024-2757
15	Microsoft Edge escalada de privilegios	5.0	4.9	$25k-$100k	$5k-$25k	Not Defined	Official Fix	0.00043	0.23	CVE-2024-29991
16	code-projects Online Book System description.php sql injection	6.3	5.7	$0-$5k	$0-$5k	Proof-of-Concept	Not Defined	0.00045	0.09	CVE-2024-3002
17	Google Chrome Downloads desbordamiento de búfer	6.3	6.0	$25k-$100k	$5k-$25k	Not Defined	Official Fix	0.00043	0.06	CVE-2024-3834
18	Microsoft Edge divulgación de información	4.8	4.7	$25k-$100k	$5k-$25k	Not Defined	Official Fix	0.00043	0.06	CVE-2024-29986
19	code-projects Online Book System index.php sql injection	7.3	6.6	$0-$5k	$0-$5k	Proof-of-Concept	Not Defined	0.00045	0.09	CVE-2024-3000
20	Fortinet FortiOS HTTP Request divulgación de información	5.3	5.2	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00043	0.00	CVE-2024-23662

IOC - Indicator of Compromise (28)

These indicators of compromise highlight associated network ranges which are known to be part of research and attack activities.

ID	IP range	Actor	Escribe	Confianza
1	2.58.95.0/24	Bashlite	predictive	Alto
2	18.193.71.0/24	Cobalt Strike	predictive	Alto
3	31.50.144.0/24	QakBot	predictive	Alto
4	XX.XXX.XX.X/XX	Xxxxxx Xxxxxx	predictive	Alto
5	XX.XX.XX.X/XX	Xxxxxx Xxxxxx	predictive	Alto
6	XX.XXX.XX.X/XX	Xxxxxx Xxxxxx	predictive	Alto
7	XX.XX.XXX.X/XX	Xxxxxxxx	predictive	Alto
8	XX.XXX.XXX.X/XX	Xxxxxxx	predictive	Alto
9	XX.XX.XXX.X/XX	Xxxxxxx Xxxxxxx	predictive	Alto
10	XX.XXX.XXX.X/XX	Xxxxxxx	predictive	Alto
11	XX.XXX.XXX.X/XX	Xxxxxx	predictive	Alto
12	XX.XX.XXX.X/XX	Xxxxxx Xxxxxx	predictive	Alto
13	XX.XX.XX.X/XX	Xxxxxxxxxxx	predictive	Alto
14	XX.XXX.XXX.X/XX	Xxxxxx Xxxxxx	predictive	Alto
15	XX.XXX.X.X/XX	Xxxxx Xxxxxxx	predictive	Alto
16	XXX.XXX.XXX.X/XX	Xxxxxxxxxxxxxxx	predictive	Alto
17	XXX.XXX.XXX.X/XX	Xxxxxxx Xxxxxxx	predictive	Alto
18	XXX.XXX.XXX.X/XX	Xxxxxx Xxxxxx	predictive	Alto
19	XXX.XX.XXX.X/XX	Xxxxxxx Xxxxx Xxxxx	predictive	Alto
20	XXX.XX.XXX.X/XX	Xxxxx	predictive	Alto
21	XXX.XXX.XXX.X/XX	Xxxxx	predictive	Alto
22	XXX.XXX.XXX.X/XX	Xxxxx	predictive	Alto
23	XXX.XXX.XXX.X/XX	Xxxxxx Xxx	predictive	Alto
24	XXX.XXX.XXX.X/XX	Xxxxx Xxxxxxx	predictive	Alto
25	XXX.XX.XXX.X/XX	Xxxxxx	predictive	Alto
26	XXX.XX.XX.X/XX	Xxxxxxx	predictive	Alto
27	XXX.XXX.XXX.X/XX	Xxxxxxx Xxxxxxx	predictive	Alto
28	XXX.XXX.XXX.X/XX	Xxxxx	predictive	Alto

TTP - Tactics, Techniques, Procedures (26)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

ID	Technique	Vulnerabilidad	Vector de acceso	Escribe	Confianza
1	T1006	CWE-22, CWE-23, CWE-25, CWE-35	Path Traversal	predictive	Alto
2	T1040	CWE-319	Authentication Bypass by Capture-replay	predictive	Alto
3	T1055	CWE-74	Improper Neutralization of Data within XPath Expressions	predictive	Alto
4	T1059	CWE-88, CWE-94, CWE-1321	Argument Injection	predictive	Alto
5	T1059.007	CWE-79, CWE-80	Cross Site Scripting	predictive	Alto
6	T1068	CWE-250, CWE-269, CWE-274, CWE-284	Execution with Unnecessary Privileges	predictive	Alto
7	TXXXX.XXX	CWE-XXX	Xxx Xx Xxxx-xxxxx Xxxxxxxx	predictive	Alto
8	TXXXX.XXX	CWE-XXX, CWE-XXX	Xxxx-xxxxx Xxxxxxxxxxx	predictive	Alto
9	TXXXX	CWE-XX, CWE-XX	Xxxxxxx Xxxxx Xx Xxxxxxxxxx Xxxxxxxxxx Xxxxxxxxx	predictive	Alto
10	TXXXX.XXX	CWE-XXX	Xxxx Xxxxxxxx	predictive	Alto
11	TXXXX	CWE-XXX, CWE-XXX	Xxxxxxxxxx Xxxxxx	predictive	Alto
12	TXXXX	CWE-XX, CWE-XX	Xxx Xxxxxxxxx	predictive	Alto
13	TXXXX.XXX	CWE-XXX	Xxxxxxxx Xxxxxxxxxxxxx	predictive	Alto
14	TXXXX	CWE-XXX, CWE-XXX, CWE-XXX	Xxxxxxxxxxx Xxxxxxxxxx	predictive	Alto
15	TXXXX	CWE-XXX	Xxxxxxxxx Xxxxxxx Xx Xxxxxxxxx Xxxxxxxxxxx	predictive	Alto
16	TXXXX.XXX	CWE-XXX	Xxxxxxx Xxxxxxxxxx Xxx Xxxxxxxx Xxxxxxx Xx Xx-xxxx Xxxxxx Xxxxxxxx	predictive	Alto
17	TXXXX.XXX	CWE-XXX	Xxxxxxxxxxxx	predictive	Alto
18	TXXXX	CWE-XXX, CWE-XXX	Xxxxxxxxx Xxxxxx Xxxx	predictive	Alto
19	TXXXX.XXX	CWE-XXX	Xxxxxxxx Xxxxxx Xxxx	predictive	Alto
20	TXXXX.XXX	CWE-XXX	Xxxxxxxx Xxxxxxxxxxx Xxxxxxxxxx	predictive	Alto
21	TXXXX	CWE-XXX	Xxxxxxxx Xx Xxxxxxx Xxxxxxxx Xxxxxxxxxxx Xx Xx Xxxxxxxxxxxx Xxxxx	predictive	Alto
22	TXXXX	CWE-XXX, CWE-XXX, CWE-XXX, CWE-XXX	Xxxxxxxxxx Xx Xxxxxxx Xxxxx Xxxxxxx Xxxxxxxxx Xxxxxxxxxxx	predictive	Alto
23	TXXXX	CWE-XXX, CWE-XXX, CWE-XXX, CWE-XXX	Xxxxxxxxxxxxx Xxxxxx	predictive	Alto
24	TXXXX.XXX	CWE-XXX	Xxx Xxxxxxxxxx Xxxxx	predictive	Alto
25	TXXXX.XXX	CWE-XXX	Xxxxxxxxxx Xxxxxxxxxxxxxx Xx Xxxxxxxx Xxxx Xxxxxxxxx	predictive	Alto
26	TXXXX	CWE-XXX	Xxxxxxxxxxx Xxxxxx	predictive	Alto

◂ AnteriorVisión De ConjuntoPróximo ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!