Сектор Homeoffice

Timeframe: -28 days

Default Categories (32): Android App Software, Anti-Malware Software, Calendar Software, Digital Media Player, Document Processing Software, Document Reader Software, File Compression Software, File Transfer Software, Firewall Software, Game Console, Groupware Software, Hardware Driver Software, Image Processing Software, iOS App Software, Mail Client Software, Messaging Software, Multimedia Player Software, Network Attached Storage Software, Network Encryption Software, Office Suite Software, Operating System, Presentation Software, Printing Software, Remote Access Software, Router Operating System, Smartphone Operating System, Smartwatch Operating System, Spreadsheet Software, Tablet Operating System, Web Browser, Wireless LAN Software, Word Processing Software

Временная шкала

Поставщик

Linux	390
Microsoft	120
Foxit	54
Juniper	34
Google	32

Продукт

Linux Kernel	390
Microsoft Windows	114
Foxit PDF Reader	54
Juniper Junos OS	32
Google Android	16

Устранение последствий

Official Fix	742
Temporary Fix	0
Workaround	4
Unavailable	0
Not Defined	44

Эксплуатационная пригодность

High	6
Functional	2
Proof-of-Concept	8
Unproven	108
Not Defined	666

Вектор доступа

Not Defined	0
Physical	12
Local	120
Adjacent	414
Network	244

Аутентификация

Not Defined	0
High	50
Low	506
None	234

Взаимодействие с пользователем

Not Defined	0
Required	160
None	630

C3BM Index

CVSSv3 Base

≤1	0
≤2	0
≤3	20
≤4	52
≤5	170
≤6	284
≤7	124
≤8	110
≤9	30
≤10	0

CVSSv3 Temp

≤1	0
≤2	0
≤3	22
≤4	58
≤5	166
≤6	366
≤7	102
≤8	66
≤9	10
≤10	0

VulDB

≤1	0
≤2	0
≤3	20
≤4	58
≤5	174
≤6	284
≤7	116
≤8	112
≤9	26
≤10	0

NVD

≤1	790
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

CNA

≤1	658
≤2	2
≤3	2
≤4	0
≤5	8
≤6	34
≤7	18
≤8	52
≤9	14
≤10	2

Поставщик

≤1	676
≤2	0
≤3	0
≤4	0
≤5	2
≤6	8
≤7	28
≤8	60
≤9	16
≤10	0

Эксплойт 0-дня

<1k	22
<2k	114
<5k	40
<10k	396
<25k	100
<50k	92
<100k	26
≥100k	0

Эксплойт сегодня

<1k	238
<2k	252
<5k	146
<10k	74
<25k	72
<50k	8
<100k	0
≥100k	0

Объем рынка эксплойтов

IOB - Indicator of Behavior (1000)

Временная шкала

Язык

en	706
es	82
de	62
ja	52
fr	38

Страна

us	272
es	74
jp	68
gb	68
fr	58

Акторы

Cobalt Strike	4
B1txor20	2
BumbleBee	2
Mirai	2
RedLine Stealer	1

Деятельность

Интерес

Временная шкала

Тип

Operating System	172
Web Browser	30
Router Operating System	18
Firewall Software	6
Groupware Software	6

Поставщик

Linux	130
Microsoft	46
Google	16
Mozilla	12
TP-Link	6

Продукт

Linux Kernel	130
Microsoft Windows	36
Google Chrome	14
Mozilla Firefox	12
TP-Link AC1350	6

Уязвимости

#	Уязвимости	Base	Temp	0day	Сегодня	Э�	Rem	EPSS	CTI	CVE
1	Palo Alto Networks PAN-OS GlobalProtect эскалация привилегий	8.9	8.7	$0-$5k	$0-$5k	High	Official Fix	0.13967	0.19	CVE-2024-3400
2	Cisco ClamAV HTML Parser отказ в обслуживании	7.5	7.5	$5k-$25k	$5k-$25k	Not Defined	Not Defined	0.00043	0.37	CVE-2024-20380
3	Google Chrome V8 повреждение памяти	6.3	6.0	$25k-$100k	$5k-$25k	Not Defined	Official Fix	0.00043	0.15	CVE-2024-3914
4	SolarWinds Serv-U обход каталога	6.5	6.5	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00043	0.25	CVE-2024-28073
5	Microsoft Edge раскрытие информации	5.4	5.3	$25k-$100k	$5k-$25k	Not Defined	Official Fix	0.00043	0.46	CVE-2024-29987
6	Cisco IOS/IOS XE SNMP Extended Named Access эскалация привилегий	5.3	5.1	$5k-$25k	$5k-$25k	Not Defined	Official Fix	0.00000	0.06	CVE-2024-20373
7	Check Point ZoneAlarm Extreme Security NextGen эскалация привилегий	5.3	5.1	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00043	0.15	CVE-2024-24910
8	Microsoft Edge раскрытие информации	4.8	4.7	$25k-$100k	$5k-$25k	Not Defined	Official Fix	0.00043	0.06	CVE-2024-29986
9	Google Chrome V8 повреждение памяти	6.3	6.0	$25k-$100k	$5k-$25k	Not Defined	Official Fix	0.00043	0.17	CVE-2024-3832
10	Google Chrome Downloads повреждение памяти	6.3	6.0	$25k-$100k	$5k-$25k	Not Defined	Official Fix	0.00043	0.30	CVE-2024-3834
11	Microsoft Windows Proxy Driver эскалация привилегий	6.7	5.8	$25k-$100k	$5k-$25k	Unproven	Official Fix	0.00043	0.00	CVE-2024-26234
12	Fortinet FortiOS HTTP Request раскрытие информации	5.3	5.2	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00043	0.10	CVE-2024-23662
13	Linux Kernel copy_from_kernel_nofault повреждение памяти	5.5	5.3	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00044	0.03	CVE-2024-26906
14	Linux Kernel ct_act.c ip_local_out Privilege Escalation	5.5	5.3	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00045	0.22	CVE-2024-26921
15	Google Chrome Networks неизвестная уязвимость	4.3	4.1	$25k-$100k	$5k-$25k	Not Defined	Official Fix	0.00043	0.13	CVE-2024-3845
16	Google Chrome Downloads эскалация привилегий	4.3	4.1	$25k-$100k	$5k-$25k	Not Defined	Official Fix	0.00043	0.13	CVE-2024-3843
17	Google Chrome WebAssembly повреждение памяти	6.3	6.0	$25k-$100k	$5k-$25k	Not Defined	Official Fix	0.00043	0.13	CVE-2024-3833
18	QKSMS Backup File androidmanifest.xml раскрытие информации	2.4	2.2	$0-$5k	$0-$5k	Proof-of-Concept	Not Defined	0.00045	0.08	CVE-2024-3430
19	Xiamen Four-Faith RMP Router Management Platform sql-инъекция	6.3	5.7	$0-$5k	$0-$5k	Proof-of-Concept	Not Defined	0.00045	0.04	CVE-2024-3688
20	Mozilla Firefox AlignedBuffer повреждение памяти	6.3	6.0	$5k-$25k	$5k-$25k	Not Defined	Official Fix	0.00045	0.20	CVE-2024-3861

IOC - Indicator of Compromise (28)

These indicators of compromise highlight associated network ranges which are known to be part of research and attack activities.

ID	IP range	Актор	Тип	Уверенность
1	5.42.66.0/24	Cobalt Strike	predictive	Высокий
2	5.255.117.0/24	IRATA	predictive	Высокий
3	23.137.253.0/24	FAKEUPDATES	predictive	Высокий
4	XX.XXX.XXX.X/XX	Xxxxxxxx	predictive	Высокий
5	XX.XXX.XX.X/XX	Xxx Xxxxx	predictive	Высокий
6	XX.XX.XXX.X/XX	Xxxxxx	predictive	Высокий
7	XX.XXX.XXX.X/XX	Xxxxx	predictive	Высокий
8	XX.XXX.XXX.X/XX	Xxxxxxx Xxxxxxx	predictive	Высокий
9	XX.XXX.XXX.X/XX	Xxxxxxx	predictive	Высокий
10	XX.XX.XXX.X/XX	Xxxxxxx Xxxxxx	predictive	Высокий
11	XX.XXX.XXX.X/XX	Xxxxxx Xxxxxx	predictive	Высокий
12	XX.XXX.XXX.X/XX	Xxxxxxxx	predictive	Высокий
13	XXX.XXX.XXX.X/XX	Xxxxxxxx	predictive	Высокий
14	XXX.XXX.X.X/XX	Xxxxxx Xxxxxx	predictive	Высокий
15	XXX.XXX.X.X/XX	Xxxxxxxxx	predictive	Высокий
16	XXX.XXX.XX.X/XX	Xxxxx	predictive	Высокий
17	XXX.XXX.XX.X/XX	Xxxxx	predictive	Высокий
18	XXX.XX.XXX.X/XX	Xxxxxx Xxxxxx	predictive	Высокий
19	XXX.XXX.XXX.X/XX	Xxxxxxx Xxxxxxx	predictive	Высокий
20	XXX.XX.XXX.X/XX	Xxxxxxx Xxxxx Xxxxx	predictive	Высокий
21	XXX.XX.XXX.X/XX	Xxxxxxxxx	predictive	Высокий
22	XXX.XXX.XXX.X/XX	Xxxxx	predictive	Высокий
23	XXX.XXX.XXX.X/XX	Xxxxx	predictive	Высокий
24	XXX.XX.XX.X/XX	Xxxxxxx Xxxxxx	predictive	Высокий
25	XXX.XXX.XXX.X/XX	Xxxxxxx Xxxxxx	predictive	Высокий
26	XXX.XXX.XXX.X/XX	Xxxx	predictive	Высокий
27	XXX.XXX.XXX.X/XX	Xxxxxxxx (xxxxx Xxxxx)	predictive	Высокий
28	XXX.XX.XX.X/XX	Xxxxxxx	predictive	Высокий

TTP - Tactics, Techniques, Procedures (22)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

ID	Technique	Уязвимости	Вектор доступа	Тип	Уверенность
1	T1006	CWE-22	Path Traversal	predictive	Высокий
2	T1055	CWE-74	Improper Neutralization of Data within XPath Expressions	predictive	Высокий
3	T1059	CWE-94	Argument Injection	predictive	Высокий
4	T1059.007	CWE-79, CWE-80	Cross Site Scripting	predictive	Высокий
5	T1068	CWE-250, CWE-269, CWE-274, CWE-284	Execution with Unnecessary Privileges	predictive	Высокий
6	TXXXX.XXX	CWE-XXX	Xxxx-xxxxx Xxxxxxxxxxx	predictive	Высокий
7	TXXXX	CWE-XX, CWE-XX	Xxxxxxx Xxxxx Xx Xxxxxxxxxx Xxxxxxxxxx Xxxxxxxxx	predictive	Высокий
8	TXXXX	CWE-XXX, CWE-XXX	Xxxxxxxxxx Xxxxxx	predictive	Высокий
9	TXXXX	CWE-XX	Xxx Xxxxxxxxx	predictive	Высокий
10	TXXXX.XXX	CWE-XXX	Xxxxxxxx Xxxxxxxxxxxxx	predictive	Высокий
11	TXXXX	CWE-XXX	Xxxxxxxxxxx Xxxxxxxxxx	predictive	Высокий
12	TXXXX	CWE-XXX	Xxxxxxxxx Xxxxxxx Xx Xxxxxxxxx Xxxxxxxxxxx	predictive	Высокий
13	TXXXX.XXX	CWE-XXX	Xxxxxxx Xxxxxxxxxx Xxx Xxxxxxxx Xxxxxxx Xx Xx-xxxx Xxxxxx Xxxxxxxx	predictive	Высокий
14	TXXXX.XXX	CWE-XXX	Xxxxxxxxxxxx	predictive	Высокий
15	TXXXX	CWE-XXX	Xxxxxxxxx Xxxxxx Xxxx	predictive	Высокий
16	TXXXX.XXX	CWE-XXX	Xxxxxxxx Xxxxxx Xxxx	predictive	Высокий
17	TXXXX	CWE-XXX	Xxxxxxxx Xx Xxxxxxx Xxxxxxxx Xxxxxxxxxxx Xx Xx Xxxxxxxxxxxx Xxxxx	predictive	Высокий
18	TXXXX	CWE-XXX, CWE-XXX	Xxxxxxxxxx Xx Xxxxxxx Xxxxx Xxxxxxx Xxxxxxxxx Xxxxxxxxxxx	predictive	Высокий
19	TXXXX.XXX	CWE-XX	Xxxxxxxxxxxxx	predictive	Высокий
20	TXXXX	CWE-XXX, CWE-XXX, CWE-XXX	Xxxxxxxxxxxxx Xxxxxx	predictive	Высокий
21	TXXXX.XXX	CWE-XXX	Xxx Xxxxxxxxxx Xxxxx	predictive	Высокий
22	TXXXX	CWE-XXX	Xxxxxxxxxxx Xxxxxx	predictive	Высокий

IOA - Indicator of Attack (93)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

ID	Класс	Indicator	Тип	Уверенность
1	File	/api/runs/search/run/	predictive	Высокий
2	File	/Device/Device/GetDeviceInfoList?deviceCode=&searchField=&deviceState=	predictive	Высокий
3	File	/login	predictive	Низкий
4	File	/sys/kernel/notes	predictive	Высокий
5	File	androidmanifest.xml	predictive	Высокий
6	File	Ap4Atom.cpp	predictive	Средний
7	File	Ap4ByteStream.cpp	predictive	Высокий
8	File	Ap4Dec3Atom.cpp	predictive	Высокий
9	File	Ap4MdhdAtom.cpp	predictive	Высокий
10	File	Ap4Sample.h	predictive	Средний
11	File	Ap4StsdAtom.cpp	predictive	Высокий
12	File	Ap4Utils.cpp	predictive	Средний
13	File	arch/x86/kernel/fpu/core.c	predictive	Высокий
14	File	asn1_common.c	predictive	Высокий
15	File	xxxxx/xxx-xxxxxx.x	predictive	Высокий
16	File	xxxxx/xxx-xx-xxx.x	predictive	Высокий
17	File	xxx_xxx.xxxx	predictive	Средний
18	File	xxxxxx/xxxxxx_xxxxxx.x	predictive	Высокий
19	File	xx_xxx.x	predictive	Средний
20	File	xxxxxxxxxxxxxx.xxx	predictive	Высокий
21	File	xxxxxxxxx.xxx	predictive	Высокий
22	File	xxxxxxx/xxxxxx/xxxxxxx/xxxxxx_xxxx.x	predictive	Высокий
23	File	xxxxxxx/xxx/xxxx/xxx.x	predictive	Высокий
24	File	xxxxxxx/xxxxx/xxxxxxx/xx_xxxxxxxxx.x	predictive	Высокий
25	File	xxxxxxx/xxxx/xxx/xxxxxx.x	predictive	Высокий
26	File	xxxx.x	predictive	Низкий
27	File	xx/xxxxx/xxxx-xx.x	predictive	Высокий
28	File	xx/xxxxx/xxxxxxxxxxx.x	predictive	Высокий
29	File	xx/xxxxx/xxxx-xxx.x	predictive	Высокий
30	File	xx/xxxx/xxxx.x	predictive	Высокий
31	File	xxxxx	predictive	Низкий
32	File	xxxxx_xxxxxx	predictive	Средний
33	File	xxxxxxx/xxxxx/xxxxxxxxxxxx.x	predictive	Высокий
34	File	xxxxxxx/xxxxx/xxxxxx.x	predictive	Высокий
35	File	xxxxx.x	predictive	Низкий
36	File	xxxxxx/xxx/xxxxxx.x	predictive	Высокий
37	File	xxxxxx/xxx/xxxxxxx.x	predictive	Высокий
38	File	xxxxxx/xxx/xxxxx.x	predictive	Высокий
39	File	xxxxxx/xxxx_xxxxx.x	predictive	Высокий
40	File	xxxxxx/xxx/xxxx.x:	predictive	Высокий
41	File	xxx.x	predictive	Низкий
42	File	xxxxxxxxx.xx	predictive	Средний
43	File	xxx.x	predictive	Низкий
44	File	xx/xxxx_xxxxx.x	predictive	Высокий
45	File	xx/xxxxxxxx.x	predictive	Высокий
46	File	xxx/xxxx/xxxxxx.x	predictive	Высокий
47	File	xxx/xxx/xxx_xxxxxx.x	predictive	Высокий
48	File	xxx/xxxxxxxxxxx/xxxx.x	predictive	Высокий
49	File	xxx/xxxxxx/xxxxxxxxxxxxx.x	predictive	Высокий
50	File	xxxxx.x	predictive	Низкий
51	File	xxxxx.x	predictive	Низкий
52	File	xxxxxxxxx.xxx	predictive	Высокий
53	File	xxx.x	predictive	Низкий
54	File	xxxxx/xxx/xxxx/xxxxx-xxx-xxx.x	predictive	Высокий
55	File	xxxxx_xxxx.x	predictive	Средний
56	File	xxx.x	predictive	Низкий
57	File	xxxxxxx/xx/xxxx/xxx/xxxxxx/xxxxxxxxx.xx	predictive	Высокий
58	Library	xxxx.xxx	predictive	Средний
59	Library	xxxxxxx/xxxxx/xxxx.x	predictive	Высокий
60	Library	xxxxxxx/xxx/xxxx_xxx.x	predictive	Высокий
61	Library	xxx/xxx_xxxx.x	predictive	Высокий
62	Library	xxx/xxxxxxxxxxxx.x	predictive	Высокий
63	Library	xxx/xxxx_xxxxx.x	predictive	Высокий
64	Library	xxx/xxx_xxxx.x	predictive	Высокий
65	Library	xxx/xxxx_xxxxx.x	predictive	Высокий
66	Library	xxx/xxxxxx.x	predictive	Средний
67	Library	xxx/xxx_xxxxxxx.x	predictive	Высокий
68	Library	xxx/xxxxxxxxxxx.x	predictive	Высокий
69	Library	xxx/xxxxxxxx.x	predictive	Высокий
70	Library	xxxxxxxx.xxx	predictive	Средний
71	Library	xxxx.x	predictive	Низкий
72	Argument	xxxxxx	predictive	Низкий
73	Argument	xxxx	predictive	Низкий
74	Argument	xx-xxxxxx	predictive	Средний
75	Argument	xx_xxxx_xxx	predictive	Средний
76	Argument	xxxxxx_xxxx	predictive	Средний
77	Argument	xxxxxxx	predictive	Низкий
78	Argument	xx/xxx/xxxxx	predictive	Средний
79	Argument	xxxxx	predictive	Низкий
80	Argument	xxx_xxxxxxx	predictive	Средний
81	Argument	xxxxx_xxx	predictive	Средний
82	Argument	xxxxxxx	predictive	Низкий
83	Argument	xxx_xxxxxx	predictive	Средний
84	Argument	xxxxxx	predictive	Низкий
85	Argument	xxx_xxxxxx	predictive	Средний
86	Argument	xxxxxxx_xxxxx_xxxxxx	predictive	Высокий
87	Argument	xx_xxxxx_xxxxxxx	predictive	Высокий
88	Argument	xxxx_xxxxxx_xxxxx	predictive	Высокий
89	Argument	xxxxxxx	predictive	Низкий
90	Argument	xxxxxxxxxxx	predictive	Средний
91	Argument	xxxx_xxxxxxx_xxxx	predictive	Высокий
92	Argument	xxxx	predictive	Низкий
93	Argument	xxxx/xxxxxxxx	predictive	Высокий

◂ ПредыдущийОбзорДалее ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!