Sektor Agriculture

Timeframe: -28 days

Default Categories (49): Accounting Software, Anti-Malware Software, Anti-Spam Software, Appointment Software, Automation Software, Backup Software, Calendar Software, Chip Software, Communications System, Content Management System, Customer Relationship Management System, Database Software, Document Management Software, Document Processing Software, Document Reader Software, Enterprise Resource Planning Software, File Compression Software, File Transfer Software, Financial Software, Firewall Software, Firmware Software, Hardware Driver Software, Image Processing Software, Information Management Software, Mail Client Software, Mail Server Software, Network Attached Storage Software, Network Camera Software, Network Encryption Software, Network Routing Software, Office Suite Software, Operating System, Photo Gallery Software, Presentation Software, Printing Software, Project Management Software, Router Operating System, SCADA Software, Server Management Software, Service Management Software, Spreadsheet Software, Supplier Relationship Management Software, Supply Chain Management Software, Transport Management Software, Video Surveillance Software, Warehouse Management System Software, Web Browser, Web Server, Word Processing Software

Tidslinje

Säljare

Oracle82
Microsoft72
Not Defined58
Schneider Electric44
AMD32

Produkt

Microsoft Windows66
AMD CPU32
Juniper Junos OS30
Apple macOS28
Oracle MySQL Server24

Åtgärd

Official Fix430
Temporary Fix0
Workaround0
Unavailable2
Not Defined116

Utnyttjbarhet

High0
Functional0
Proof-of-Concept12
Unproven68
Not Defined468

Åtkomstvektor

Not Defined0
Physical2
Local36
Adjacent108
Network402

Autentisering

Not Defined0
High66
Low228
None254

Användarinteraktion

Not Defined0
Required138
None410

C3BM Index

CVSSv3 Base

≤10
≤20
≤36
≤440
≤582
≤6102
≤7124
≤8116
≤948
≤1030

CVSSv3 Temp

≤10
≤20
≤38
≤452
≤572
≤6130
≤7132
≤8108
≤918
≤1028

VulDB

≤10
≤20
≤314
≤454
≤586
≤6100
≤7118
≤898
≤950
≤1028

NVD

≤1468
≤20
≤32
≤40
≤52
≤616
≤716
≤820
≤914
≤1010

CNA

≤1330
≤20
≤30
≤46
≤56
≤614
≤740
≤8110
≤920
≤1022

Säljare

≤1478
≤20
≤30
≤42
≤52
≤62
≤710
≤840
≤914
≤100

Utnyttja 0-dagars

<1k34
<2k178
<5k34
<10k88
<25k120
<50k30
<100k64
≥100k0

Utnyttja idag

<1k194
<2k114
<5k90
<10k56
<25k92
<50k2
<100k0
≥100k0

Utnyttja marknadsvolymen

IOB - Indicator of Behavior (1000)

Tidslinje

Lang

en842
ja68
fr24
ru18
de18

Land

us126
jp84
it56
hu52
es38

Skådespelare

Rocke1
Carbanak1
Naikon1
SideWinder1
Cuba Ransomware1

Aktiviteter

Intressera

Tidslinje

Typ

Operating System34
Chip Software28
Firewall Software20
SCADA Software14
Router Operating System14

Säljare

Microsoft34
MediaTek28
Not Defined20
F514
Schneider Electric12

Produkt

Microsoft Windows28
MediaTek MT687920
MediaTek MT689520
MediaTek MT676818
MediaTek MT698318

Sårbarheter

#SårbarhetBaseTemp0dayI dagUtnRemCTIEPSSCVE
1IP Vault WP Firewall Plugin cross site scripting2.42.4$0-$5k$0-$5kNot DefinedNot Defined1.750.00000CVE-2022-47171
2Image and Video Gallery with Thumbnails Plugin cross site scripting4.34.2$0-$5k$0-$5kNot DefinedNot Defined1.680.00000CVE-2022-47603
3ImageMagick PNG Image informationsgivning4.34.3$0-$5k$0-$5kNot DefinedNot Defined1.480.00000CVE-2022-44268
4Microsoft Edge förnekande av tjänsten3.13.0$25k-$100k$5k-$25kNot DefinedOfficial Fix2.350.00000CVE-2023-21720
5ImageMagick PNG Image förnekande av tjänsten4.34.3$0-$5k$0-$5kNot DefinedNot Defined1.010.00000CVE-2022-44267
6SUSE Linux Enterprise Server/Manager Server rmt-server-regsharing Service privilegier eskalering8.38.1$5k-$25k$0-$5kNot DefinedOfficial Fix0.91+0.00000CVE-2022-31254
7MediaTek CPU Boa minneskorruption7.37.0$0-$5k$0-$5kNot DefinedOfficial Fix0.810.00000CVE-2021-31578
8MediaTek CPU Boa privilegier eskalering7.37.0$0-$5k$0-$5kNot DefinedOfficial Fix0.810.00000CVE-2021-31577
9Zyxel NBG-418N v2 Logs Page cross site scripting5.85.8$0-$5k$0-$5kNot DefinedOfficial Fix0.740.00000CVE-2022-45441
10Calendar Event Management System sql injektion6.35.7$0-$5k$0-$5kProof-of-ConceptNot Defined1.680.00890CVE-2023-0675
11Album and Image Gallery Plus Lightbox Plugin privilegier eskalering6.36.1$0-$5k$0-$5kNot DefinedNot Defined0.640.00000CVE-2023-25060
12MediaTek CPU Config Manager privilegier eskalering6.36.0$0-$5k$0-$5kNot DefinedOfficial Fix0.540.00000CVE-2021-31574
13Linux Kernel V4L2/Vivid Test Code förnekande av tjänsten6.56.2$5k-$25k$0-$5kNot DefinedOfficial Fix0.570.00000CVE-2023-0615
14Calendar Event Management System Login Page sql injektion7.36.6$0-$5k$0-$5kProof-of-ConceptNot Defined1.340.00954CVE-2023-0663
15DaSchTour matomo-mediawiki-extension Username Piwik.hooks.php cross site scripting2.62.4$0-$5k$0-$5kProof-of-ConceptOfficial Fix1.110.00950CVE-2017-20175
16MediaTek CPU Config Manager privilegier eskalering6.36.0$0-$5k$0-$5kNot DefinedOfficial Fix0.470.00000CVE-2021-31575
17NREL api-umbrella-web Flash Message cross site scripting3.53.4$0-$5k$0-$5kNot DefinedOfficial Fix0.950.00950CVE-2015-10072
18F5 BIG-IP iControl SOAP Format String8.28.2$5k-$25k$5k-$25kNot DefinedNot Defined1.050.01086CVE-2023-22374
19MailEnable Public Folder kataloggenomgång7.57.4$0-$5k$0-$5kNot DefinedOfficial Fix0.440.00885CVE-2022-42136
20MediaTek MT8797 vcu minneskorruption4.24.0$0-$5k$0-$5kNot DefinedOfficial Fix2.29-0.00000CVE-2023-20619

IOC - Indicator of Compromise (6)

These indicators of compromise highlight associated network ranges which are known to be part of research and attack activities.

IDIP rangeSkådespelareTypFörtroende
145.86.162.0/24SideWinderpredictiveHög
2XX.XXX.XXX.X/XXXxxxxxxpredictiveHög
3XX.XX.XXX.X/XXXxxxxxxxpredictiveHög
4XXX.XX.XXX.X/XXXxxxxpredictiveHög
5XXX.XX.XX.X/XXXxxxxx XxxxxxpredictiveHög
6XXX.XXX.XXX.X/XXXxxxxpredictiveHög

TTP - Tactics, Techniques, Procedures (20)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechniqueSårbarheterÅtkomstvektorTypFörtroende
1T1006CWE-22Pathname TraversalpredictiveHög
2T1040CWE-294, CWE-319Authentication Bypass by Capture-replaypredictiveHög
3T1059CWE-88, CWE-94Cross Site ScriptingpredictiveHög
4T1059.007CWE-79Cross Site ScriptingpredictiveHög
5TXXXXCWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxx Xxxx Xxxxxxxxxxx XxxxxxxxxxpredictiveHög
6TXXXX.XXXCWE-XXX, CWE-XXXXxxxxxxx Xxxxxxxxxxx Xx Xxxxxxxxx Xxxxxxxxxxxxxx XxxxxxxxpredictiveHög
7TXXXX.XXXCWE-XXXXxx-xxx Xxxx Xxxxxxx XxxxpredictiveHög
8TXXXXCWE-XX, CWE-XXXxxxxxx XxxxxxxxxpredictiveHög
9TXXXX.XXXCWE-XXXXxxx XxxxxxxxpredictiveHög
10TXXXXCWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxxx XxxxxxpredictiveHög
11TXXXXCWE-XXXxx XxxxxxxxxpredictiveHög
12TXXXX.XXXCWE-XXXXxxxxxxx XxxxxxxxxxxxxpredictiveHög
13TXXXX.XXXCWE-XXXXxx Xx Xxxxxxxx Xxxx Xxxxxxx Xx Xxxxxxxx Xxx XxxxxxxxxxxxxxpredictiveHög
14TXXXXCWE-XXX, CWE-XXX, CWE-XXX, CWE-XXXXxx.xxx Xxxxxxxxxxxxxxxx: Xxxxxxxx Xx Xxxxxxxxxxxxx XxxxpredictiveHög
15TXXXXCWE-XXXXxxxxxxxx Xxxxxx XxxxpredictiveHög
16TXXXX.XXXCWE-XXXXxxxxxxx Xxxxxxxxxxx XxxxxxxxxxpredictiveHög
17TXXXXCWE-XXXXxxxxxxxxxxxxpredictiveHög
18TXXXXCWE-XXX, CWE-XXXX2xx Xxxxxxxxxxxxxxxx: Xxxx Xxxxxxxxxxxx Xxxxxxx XxxxxxxxxxpredictiveHög
19TXXXX.XXXCWE-XXXXxxxxxxxxxxx XxxxxxpredictiveHög
20TXXXXCWE-XXXXxxxxxxxxxx XxxxxxpredictiveHög

IOA - Indicator of Attack (59)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDKlassIndicatorTypFörtroende
1File/CPEpredictiveLåg
2File/file_manage_view.php?fmdo=edit&filenamepredictiveHög
3File/index.phppredictiveMedium
4File/list.phppredictiveMedium
5File/permissions/delete/2---predictiveHög
6File/Services/Misc.asmx/SearchTagpredictiveHög
7File/setnetworksettings/IPAddresspredictiveHög
8File/SetNetworkSettings/SubnetMaskpredictiveHög
9File/xxxx/xxx/xxxxxxxxxxxpredictiveHög
10File/xxxxx/xxxxxx/xpredictiveHög
11Filexxx\xxxxxx\xxxxxxxxxx\xxxxxxxxxxxxxxxxx.xxxxx.xxxpredictiveHög
12Filexxxx.xpredictiveLåg
13Filexxxxxxx/xxx/xxx-xxxxxxxx.xpredictiveHög
14Filexxxxxxx/xxx/xxxx/xxxx.xpredictiveHög
15Filexxxxxxx/xxx/xxxxxxxx/xxxxx_xxxx.xpredictiveHög
16Filexx/xxxxx/xxxxxx.xpredictiveHög
17Filexxx_xxx.xpredictiveMedium
18Filexxxxxxxxxxxxx/xxx/xxx/xxxxxxxxxx/xxxxxxx/xxxxxxxxxx.xxxxpredictiveHög
19Filexxxxxx/xxxxx/xxxx_xxxxxxxx_xxxxxx_xxxx.xxxpredictiveHög
20Filexxxxxx/xxxxx/xxxx_xxxxx.xxxpredictiveHög
21Filexxxxxx/xxxxx/xxxx_xxxxx.xxxpredictiveHög
22Filexxxxxx/xxxxxxxxxxx/xxxx_xxxxxxx.xxxpredictiveHög
23Filexxxxxxxxxxxxxx.xxxpredictiveHög
24Filexxxxxxxxxxxxxx.xxxpredictiveHög
25Filexxx/xxxxx.xxxpredictiveHög
26Filexxxxx.xxxpredictiveMedium
27Filexx_xxxxx/xxxxxxxxx.xpredictiveHög
28Filexx_xxxxx/xxxx.xpredictiveHög
29Filexxx/xxxx/xxx.xpredictiveHög
30Filexxx/xxxxx/xxx_xxx.xpredictiveHög
31Filexxx/xxxxx/xxx_xxx.xpredictiveHög
32Filexxx/xxxxx/xxx_xxx.xpredictiveHög
33Filexxxxx.xxxxx.xxxpredictiveHög
34Filexxxxxx/xxxx.xxpredictiveHög
35Filexxxxx/xxxxxxxx.xpredictiveHög
36Filexxxxxxx.xxxx.xxxpredictiveHög
37File\xxx\xxxxxx\xxxxxxxxxx\xxxxxxxxxxxxxx.xxxxx.xxxpredictiveHög
38File\xxx\xxxxxx\xxxxxxxxxx\xxxxxxxxxxxxxx.xxxxx.xxxpredictiveHög
39Library/xxxx/xxxxx/xxx/xxxxxxx_xxx.xpredictiveHög
40Libraryxxxxxxx/xxxxxxxx.xxxpredictiveHög
41Argumentxxxxxx-xxxxxxxxpredictiveHög
42ArgumentxxxpredictiveLåg
43ArgumentxxxxxxxpredictiveLåg
44Argumentxxxxxxxx xxpredictiveMedium
45ArgumentxxpredictiveLåg
46Argumentxxxx_xxxxx_xxxxxxxxxxpredictiveHög
47ArgumentxxxxpredictiveLåg
48Argumentx/xpredictiveLåg
49Argumentxxxx/xxxpredictiveMedium
50Argumentxxx/xxxxxx/xxxxx/xxx/xxxxxx/xxxxxx/xxxxxxxx/xxxxpredictiveHög
51Argumentxx_xxxpredictiveLåg
52ArgumentxxxxxxxxxxpredictiveMedium
53ArgumentxxxxxxxpredictiveLåg
54ArgumentxxxxxxxpredictiveLåg
55Argumentxxxxx/xxxpredictiveMedium
56ArgumentxxxxxxxpredictiveLåg
57ArgumentxxxxpredictiveLåg
58Argumentxxxx-xxxxxpredictiveMedium
59Argumentxxxxxxxx/xxxxxxxxpredictiveHög
TidigareÖversiktNästa

Interested in the pricing of exploits?

See the underground prices here!