Settore Transportation

Timeframe: -28 days

Default Categories (62): Access Management Software, Accounting Software, Advertising Software, Anti-Malware Software, Anti-Spam Software, Application Server Software, Appointment Software, Automation Software, Backup Software, Billing Software, Business Process Management Software, Calendar Software, Cloud Software, Communications System, Connectivity Software, Customer Relationship Management System, Database Administration Software, Database Software, Directory Service Software, Document Management Software, Document Reader Software, E-Commerce Management Software, Enterprise Resource Planning Software, File Compression Software, File Transfer Software, Firewall Software, Groupware Software, Hardware Driver Software, Information Management Software, Log Management Software, Mail Client Software, Mail Server Software, Middleware, Multimedia Player Software, Network Attached Storage Software, Network Authentication Software, Network Management Software, Network Routing Software, Office Suite Software, Operating System, Presentation Software, Printing Software, Project Management Software, Remote Access Software, Reporting Software, Router Operating System, SCADA Software, Server Management Software, Service Management Software, Software Library, Spreadsheet Software, SSH Server Software, Ticket Tracking Software, Transport Management Software, Unified Communication Software, Video Surveillance Software, Virtualization Software, Web Browser, Web Server, Windowing System Software, Wireless LAN Software, Word Processing Software

Sequenza temporale

Fornitore

Microsoft84
Not Defined66
Apple64
Google34
Linux30

Prodotto

Apple macOS62
Microsoft Windows46
Google Chrome34
Linux Kernel30
Microsoft Edge24

Contromisure

Official Fix364
Temporary Fix0
Workaround2
Unavailable2
Not Defined128

Sfruttabilità

High0
Functional2
Proof-of-Concept46
Unproven58
Not Defined390

Accesso al vettore

Not Defined0
Physical2
Local154
Adjacent62
Network278

Autenticazione

Not Defined0
High30
Low242
None224

Interazione dell'utente

Not Defined0
Required176
None320

C3BM Index

CVSSv3 Base

≤10
≤20
≤36
≤448
≤584
≤6120
≤7118
≤870
≤940
≤1010

CVSSv3 Temp

≤10
≤20
≤310
≤458
≤592
≤6184
≤754
≤872
≤920
≤106

VulDB

≤10
≤20
≤316
≤456
≤5100
≤696
≤7112
≤874
≤932
≤1010

NVD

≤1494
≤20
≤30
≤42
≤50
≤60
≤70
≤80
≤90
≤100

CNA

≤1366
≤20
≤34
≤46
≤56
≤620
≤734
≤834
≤914
≤1012

Fornitore

≤1436
≤20
≤30
≤40
≤52
≤62
≤78
≤824
≤918
≤106

Exploiter 0 giorni

<1k36
<2k150
<5k82
<10k66
<25k60
<50k82
<100k20
≥100k0

Exploiter aujourd'hui

<1k188
<2k100
<5k82
<10k36
<25k90
<50k0
<100k0
≥100k0

Sfrutta il volume del mercato

IOB - Indicator of Behavior (1000)

Sequenza temporale

Linguaggio

en924
it26
de20
es18
fr4

Nazione

us106
gb60
it42
de16
es14

Attori

B1txor201
Orchard1
Dealply1

Attività

Interesse

Sequenza temporale

Genere

Operating System46
Anti-Malware Software18
Router Operating System16
E-Commerce Management Software10
Hardware Driver Software8

Fornitore

Apple36
Not Defined14
Microsoft10
Google6
SourceCodester6

Prodotto

Apple macOS34
Microsoft Windows8
DriverGenius6
Google Chrome6
IObit Malware Fighter6

Vulnerabilità

#VulnerabilitàBaseTemp0dayOggiSfrConCTIEPSSCVE
1SourceCodester E-Commerce System Username escalazione di privilegi6.35.7$0-$5k$0-$5kProof-of-ConceptNot Defined1.700.00091CVE-2023-1557
2KMPlayer SHFOLDER.dll escalazione di privilegi5.34.8$0-$5k$0-$5kProof-of-ConceptNot Defined0.62+0.00000CVE-2023-1745
3DriverGenius IOCTL mydrivers64.sys 0x9c402084 denial of service5.55.0$0-$5k$0-$5kProof-of-ConceptNot Defined1.590.00045CVE-2023-1677
4SNIProxy Wildcard Backend Host buffer overflow8.58.4$0-$5k$0-$5kNot DefinedOfficial Fix0.57+0.00000CVE-2023-25076
5IObit Malware Fighter IOCTL IMFCameraProtect.sys 0x8018E004 buffer overflow5.34.8$0-$5k$0-$5kProof-of-ConceptNot Defined1.260.00064CVE-2023-1646
6Infoline Project Management System escalazione di privilegi6.96.8$0-$5k$0-$5kNot DefinedOfficial Fix0.54+0.00000CVE-2023-1725
7IObit Malware Fighter IOCTL ImfHpRegFilter.sys 0x8001E040 denial of service5.55.0$0-$5k$0-$5kProof-of-ConceptNot Defined1.160.00045CVE-2023-1643
8IObit Malware Fighter IOCTL IMFCameraProtect.sys 0x8018E010 denial of service5.55.0$0-$5k$0-$5kProof-of-ConceptNot Defined1.160.00045CVE-2023-1644
9Ubiquiti EdgeRouter X OSPF escalazione di privilegi [Contestazione]7.26.5$0-$5k$0-$5kProof-of-ConceptNot Defined1.290.00043CVE-2023-1458
10IObit Malware Fighter IOCTL IMFCameraProtect.sys 0x8018E008 denial of service5.55.0$0-$5k$0-$5kProof-of-ConceptNot Defined1.260.00045CVE-2023-1645
11Zoho ManageEngine OpManager XML File XML External Entity5.45.4$0-$5k$0-$5kNot DefinedNot Defined0.46+0.00000CVE-2022-43473
12DriverGenius IOCTL mydrivers64.sys 0x9C402088 buffer overflow7.87.1$0-$5k$0-$5kProof-of-ConceptNot Defined1.540.00045CVE-2023-1676
13DriverGenius IOCTL mydrivers64.sys 0x9C40A0E0 buffer overflow5.34.8$0-$5k$0-$5kProof-of-ConceptNot Defined1.600.00045CVE-2023-1678
14Ubiquiti EdgeRouter X NAT Configuration escalazione di privilegi [Contestazione]7.26.5$0-$5k$0-$5kProof-of-ConceptUnavailable1.250.00043CVE-2023-1456
15D-Link DIR-3040 MiniDLNA Service buffer overflow8.88.6$5k-$25k$5k-$25kNot DefinedNot Defined0.960.00000CVE-2022-43648
16Ubiquiti EdgeRouter X Static Routing Configuration escalazione di privilegi [Contestazione]7.26.5$0-$5k$0-$5kProof-of-ConceptUnavailable1.060.00043CVE-2023-1457
17Watchdog Anti-Virus IoControlCode wsdk-driver.sys 0x80002008 escalazione di privilegi4.44.0$0-$5k$0-$5kProof-of-ConceptNot Defined1.160.00042CVE-2023-1453
18SourceCodester Alphaware Simple E-Commerce System edit_customer.php sql injection5.65.1$0-$5k$0-$5kProof-of-ConceptNot Defined1.190.00100CVE-2023-1502
19IObit Malware Fighter IOCTL ObCallbackProcess.sys 0x222040 denial of service5.55.0$0-$5k$0-$5kProof-of-ConceptNot Defined1.090.00045CVE-2023-1642
20JiangMin Antivirus IOCTL kvcore.sys 0x222010 buffer overflow5.34.8$0-$5k$0-$5kProof-of-ConceptNot Defined1.150.00045CVE-2023-1629

IOC - Indicator of Compromise (4)

These indicators of compromise highlight associated network ranges which are known to be part of research and attack activities.

IDIP rangeAttoreGenereFiducia
145.61.185.0/24B1txor20predictiveAlto
2XX.XXX.XXX.X/XXXxxxxxxpredictiveAlto
3XX.XX.XXX.X/XXXxxxxxxxpredictiveAlto
4XXX.XXX.XX.X/XXXxxxxxpredictiveAlto

TTP - Tactics, Techniques, Procedures (18)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechniqueVulnerabilitàAccesso al vettoreGenereFiducia
1T1006CWE-22, CWE-23Pathname TraversalpredictiveAlto
2T1040CWE-319Authentication Bypass by Capture-replaypredictiveAlto
3T1055CWE-74InjectionpredictiveAlto
4T1059CWE-88, CWE-94Cross Site ScriptingpredictiveAlto
5TXXXX.XXXCWE-XX, CWE-XXXxxxx Xxxx XxxxxxxxxpredictiveAlto
6TXXXXCWE-XXX, CWE-XXXXxxxxxxxx Xxxx Xxxxxxxxxxx XxxxxxxxxxpredictiveAlto
7TXXXX.XXXCWE-XXX, CWE-XXXXxxxxxxx Xxxxxxxxxxx Xx Xxxxxxxxx Xxxxxxxxxxxxxx XxxxxxxxpredictiveAlto
8TXXXXCWE-XX, CWE-XXXxxxxxx XxxxxxxxxpredictiveAlto
9TXXXXCWE-XXX, CWE-XXXXxxxxxxxxx XxxxxxpredictiveAlto
10TXXXXCWE-XXXxx XxxxxxxxxpredictiveAlto
11TXXXX.XXXCWE-XXXXxxxxxxx XxxxxxxxxxxxxpredictiveAlto
12TXXXXCWE-XXXXxxxxxxx Xxxxxxxxx Xx X Xxxxxxxxxxx'x Xxxxx Xx XxxxxpredictiveAlto
13TXXXXCWE-XXX, CWE-XXXXxxxxxxxx Xxxxxx XxxxpredictiveAlto
14TXXXX.XXXCWE-XXXXxxxxxxx Xxxxxxxxxxx XxxxxxxxxxpredictiveAlto
15TXXXX.XXXCWE-XXXXxxxxxxxpredictiveAlto
16TXXXXCWE-XXXXxxxxxxxxxxxxpredictiveAlto
17TXXXX.XXXCWE-XXXXxxxxxxxxxxx XxxxxxpredictiveAlto
18TXXXXCWE-XXXXxxxxxxxxxx XxxxxxpredictiveAlto

IOA - Indicator of Attack (109)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClasseIndicatorGenereFiducia
1File/admin/delete_user.phppredictiveAlto
2File/ajax/update_certificatepredictiveAlto
3File/alphaware/details.phppredictiveAlto
4File/batm/app/admin/standalone/deploymentspredictiveAlto
5File/bookstore/bookPerPub.phppredictiveAlto
6File/dev/infiniband/rdma_cmpredictiveAlto
7File/ecommerce/admin/category/controller.phppredictiveAlto
8File/ecommerce/admin/settings/setDiscount.phppredictiveAlto
9File/ecommerce/admin/user/controller.php?action=editpredictiveAlto
10File/tmp/mulipartFilepredictiveAlto
11Fileadmin/admin_index.phppredictiveAlto
12Fileadmin/user/controller.php?action=editpredictiveAlto
13Filearch/x86/kvm/x86.cpredictiveAlto
14Filebugs.cpredictiveBasso
15FileC:\AdwCleaner\Logs\AdwCleaner_Debug.logpredictiveAlto
16Filexxxxxxxxxx.xxxpredictiveAlto
17Filexxxxxxx/xxxxxxxxxx.xxpredictiveAlto
18Filexxxxxx.xxxpredictiveMedia
19Filexxxxxxxx.xxxpredictiveMedia
20Filexxxxxxx/xxx/xxx-xxxx.xpredictiveAlto
21Filexxxxxxx/xxx/xxx-xxxx.xpredictiveAlto
22Filexxxxxxx/xxx/xxx.xpredictiveAlto
23Filexxxxxxx/xxx/xxxxxxxx/xxxxxxxx/xxxxxxxxx/xxxxxxxx/xxxxxxxx.xpredictiveAlto
24Filexxxxxxx/xxxxxxx/xxxxxxx/xxxxxxx_xxx.xpredictiveAlto
25Filexxxxxxxxxxx-xxxx.xxxxxxxpredictiveAlto
26Filexx/xxxx/xxxxxxx.xpredictiveAlto
27Filexx/xxxx/xxxxxxxx.xpredictiveAlto
28Filexx/xxxxx/xxxxx.xpredictiveAlto
29Filexx/xxxxx/xxxxxx.xpredictiveAlto
30Filexx/xxxxxxxxx/xxxx_xx.xpredictiveAlto
31Filexxxxxxxx/xxxx_xxxxxxxx.xxxpredictiveAlto
32Filexx/xxx/xxxxx.xpredictiveAlto
33Filexx_xxxxx/xxxxxxxxx.xpredictiveAlto
34Filexxxxxx/xxxxx/xx.xpredictiveAlto
35Filexxx.xxxpredictiveBasso
36Filexxxxxxxxxxxxx.xxpredictiveAlto
37Filexxxxx.xxxpredictiveMedia
38Filexxxxx_xxxx.xxxxxpredictiveAlto
39Filexxxxx_xxxxx_xxxxxxx.xxxxxpredictiveAlto
40Filexxxxx_xxxxxx.xxxxxpredictiveAlto
41Filexxxxxxxxxxxx.xxxpredictiveAlto
42Filexxxxxxx_xxx.xxxpredictiveAlto
43Filexxx/xxxxxxxxx/xxx_xxxx.xpredictiveAlto
44Filexxx/xxx/xxxxxxx.xpredictiveAlto
45Filexxx/xxxx/xxxx.xpredictiveAlto
46Filexxx/xxxx/xxxxxx.xpredictiveAlto
47Filexxx/xxx/xxx_xxxx.xpredictiveAlto
48Filexxx/xxx/xxx_xx.xpredictiveAlto
49Filexxxx.xxxpredictiveMedia
50Filexxxxxxxxxx_xxxxxxx.xxxpredictiveAlto
51Filexxxxxx/xxxxxxxxx.xxxpredictiveAlto
52Filexxx_xxxxx.xpredictiveMedia
53Filexxxxxxxxxx.xxxpredictiveAlto
54Filexxxxx.xxxxxx.xxxxxxx.xxxpredictiveAlto
55Filexxxxxx.xxxpredictiveMedia
56Filexxx/xxxxx/xxx.xpredictiveAlto
57Libraryxxxxxx.xxxpredictiveMedia
58Libraryxxxxxxxxxxxxxxxx.xxxpredictiveAlto
59Libraryxxxxxxxxxxxxxx.xxxpredictiveAlto
60Libraryxxxxxxxxxxxxxxxxx.xxxpredictiveAlto
61Libraryxxxxxx.xxxpredictiveMedia
62Libraryxxx/xxxxxx.xpredictiveMedia
63Libraryxxx/xxx_xxx.xpredictiveAlto
64Libraryxxxxxxxxxxx.xxxpredictiveAlto
65Libraryxxxxxxxxx.xxxpredictiveAlto
66Libraryxxxxxxxxxxxxxx.xxxpredictiveAlto
67Libraryxxxxxxxxxxx.xxxpredictiveAlto
68Libraryxxxxxx.xxpredictiveMedia
69Libraryxxxxxxxxxxxxxxxxx.xxxpredictiveAlto
70Libraryxxxxxxxx.xxxpredictiveMedia
71Libraryxxxxxxxx.xxxpredictiveMedia
72Libraryxxxx-xxxxxx.xxxpredictiveAlto
73Argumentxxxxx xxxxpredictiveMedia
74Argumentxxx_xxxxx[]/xxx_xxxxx[]predictiveAlto
75ArgumentxxxxpredictiveBasso
76ArgumentxxxxpredictiveBasso
77ArgumentxxxxxxxxpredictiveMedia
78ArgumentxxxxxxxpredictiveBasso
79Argumentxxxxx/xxxxxxxxpredictiveAlto
80Argumentxxxxxxxxx/xx/xxxxxxxxpredictiveAlto
81ArgumentxxxxxxxxxxxxxpredictiveAlto
82ArgumentxxxpredictiveBasso
83ArgumentxxpredictiveBasso
84ArgumentxxxxxxxxpredictiveMedia
85ArgumentxxxpredictiveBasso
86ArgumentxxxxxxxxxxxxxxpredictiveAlto
87Argumentxxx_xx_xxxxxx/xxx_xxx_xxxxxxxxxxxpredictiveAlto
88Argumentxxx_xxx_xxxpredictiveMedia
89ArgumentxxxxxxxxxxxxxxxxxpredictiveAlto
90Argumentxxxx/xxxxxpredictiveMedia
91Argumentxxxx-xxx-xxxxxxxxxpredictiveAlto
92ArgumentxxxxxxxxpredictiveMedia
93Argumentxxxx_xxxxpredictiveMedia
94Argumentxxxxxx_xxxxpredictiveMedia
95Argumentxxxxxxxxxxx_xxxxxxxx_x.x.x.xpredictiveAlto
96ArgumentxxxxxxpredictiveBasso
97ArgumentxxxxxxxxxxxxpredictiveMedia
98ArgumentxxxpredictiveBasso
99Argumentxxxxxxxxxxxxxxx_xxxxxx_xxxx_xxpredictiveAlto
100ArgumentxxxxxxpredictiveBasso
101Argumentxxxx xxxxpredictiveMedia
102Argumentxxxxxxxx/xxxxxxxxpredictiveAlto
103Argumentx_xxxxpredictiveBasso
104Argumentx_xxxxxxxxpredictiveMedia
105Input Valuexxxxxx xxx (xxxxxx xxxx xxxx (xxxxxx(xxxxx(x)))xxxx)predictiveAlto
106Input Value<xxxxxx>xxxxx('x')</xxxxxx>predictiveAlto
107Input Valuex' xxxxx xxxxx(x) xxx 'xxxx'='xxxxpredictiveAlto
108Input Valuexxxxx' xxx (xxxxxx xxxx xxxx (xxxxxx(xxxxx(x)))xxxx)-- xxxxpredictiveAlto
109Input Valuexxxxx%xxxxxx.xxx ' xxx (xxxxxx xxxx xxxx (xxxxxx(xxxxx(x)))xxxx) xxx 'xxxx'='xxxxpredictiveAlto
PrecedenteVisione d'insiemeIl prossimo

Do you want to use VulDB in your project?

Use the official API to access entries easily!