Sektor Industry

Timeframe: -28 days

Default Categories (66): Access Management Software, Accounting Software, Anti-Malware Software, Anti-Spam Software, Application Server Software, Automation Software, Backup Software, Billing Software, Business Process Management Software, Calendar Software, Chip Software, Cloud Software, Communications System, Connectivity Software, Customer Relationship Management System, Database Administration Software, Database Software, Directory Service Software, Document Management Software, Document Reader Software, Endpoint Management Software, Enterprise Resource Planning Software, File Compression Software, File Transfer Software, Firewall Software, Firmware Software, Groupware Software, Hardware Driver Software, Image Processing Software, Information Management Software, IP Phone Software, Knowledge Base Software, Log Management Software, Mail Client Software, Mail Server Software, Middleware, Network Attached Storage Software, Network Authentication Software, Network Encryption Software, Network Management Software, Network Routing Software, Office Suite Software, Operating System, Presentation Software, Printing Software, Product Lifecycle Management Software, Project Management Software, Remote Access Software, Reporting Software, Router Operating System, SCADA Software, Server Management Software, Service Management Software, Software Library, Software Management Software, Spreadsheet Software, SSH Server Software, Supplier Relationship Management Software, Supply Chain Management Software, Virtualization Software, Warehouse Management System Software, Web Browser, Web Server, Windowing System Software, Wireless LAN Software, Word Processing Software

Tidslinje

Säljare

Oracle232
Microsoft102
Insteon90
Not Defined36
Schneider Electric32

Produkt

Insteon Hub90
Microsoft Windows80
AMD CPU32
Apple macOS22
Oracle MySQL Server22

Åtgärd

Official Fix602
Temporary Fix0
Workaround2
Unavailable0
Not Defined206

Utnyttjbarhet

High0
Functional2
Proof-of-Concept20
Unproven92
Not Defined696

Åtkomstvektor

Not Defined0
Physical4
Local56
Adjacent102
Network648

Autentisering

Not Defined0
High74
Low360
None376

Användarinteraktion

Not Defined0
Required164
None646

C3BM Index

CVSSv3 Base

≤10
≤24
≤312
≤448
≤5102
≤6108
≤7148
≤8176
≤970
≤10142

CVSSv3 Temp

≤10
≤24
≤314
≤462
≤596
≤6138
≤7146
≤8182
≤9110
≤1058

VulDB

≤10
≤24
≤316
≤460
≤5110
≤6112
≤7134
≤8164
≤9150
≤1060

NVD

≤1646
≤20
≤30
≤40
≤58
≤620
≤716
≤820
≤914
≤1086

CNA

≤1482
≤22
≤30
≤412
≤512
≤626
≤738
≤892
≤9122
≤1024

Säljare

≤1710
≤20
≤30
≤42
≤54
≤614
≤78
≤848
≤924
≤100

Utnyttja 0-dagars

<1k44
<2k146
<5k140
<10k108
<25k236
<50k50
<100k86
≥100k0

Utnyttja idag

<1k190
<2k216
<5k180
<10k94
<25k130
<50k0
<100k0
≥100k0

Utnyttja marknadsvolymen

IOB - Indicator of Behavior (1000)

Tidslinje

Lang

en858
ja50
de22
fr18
es16

Land

us160
it64
jp58
hu50
ru50

Skådespelare

Dealply1
Rocke1
TA5051
Conti1
Gh0stRAT1

Aktiviteter

Intressera

Tidslinje

Typ

Operating System34
Chip Software26
SCADA Software14
Firewall Software14
Cloud Software14

Säljare

Not Defined26
Microsoft26
MediaTek24
Linux14
Schneider Electric14

Produkt

Microsoft Windows18
Linux Kernel14
MediaTek MT676812
MediaTek MT676110
MediaTek MT677910

Sårbarheter

#SårbarhetBaseTemp0dayI dagUtnRemCTIEPSSCVE
1IP Vault WP Firewall Plugin cross site scripting2.42.4$0-$5k$0-$5kNot DefinedNot Defined1.750.00000CVE-2022-47171
2ImageMagick PNG Image informationsgivning4.34.3$0-$5k$0-$5kNot DefinedNot Defined1.480.00000CVE-2022-44268
3GNU C Library Call Graph Monitor gmon.c __monstartup minneskorruption4.64.4$0-$5k$0-$5kNot DefinedOfficial Fix3.80-0.00000CVE-2023-0687
4OpenBSD OpenSSH compat.c minneskorruption5.65.4$5k-$25k$5k-$25kNot DefinedOfficial Fix2.650.00950CVE-2023-25136
5ImageMagick PNG Image förnekande av tjänsten4.34.3$0-$5k$0-$5kNot DefinedNot Defined1.010.00000CVE-2022-44267
6Microsoft Edge förnekande av tjänsten3.13.0$25k-$100k$5k-$25kNot DefinedOfficial Fix2.350.00000CVE-2023-21720
7SUSE Linux Enterprise Server/Manager Server rmt-server-regsharing Service privilegier eskalering8.38.1$5k-$25k$0-$5kNot DefinedOfficial Fix0.91+0.00000CVE-2022-31254
8Nextcloud Desktop Client QML Label cross site scripting4.44.4$0-$5k$0-$5kNot DefinedOfficial Fix0.810.00000CVE-2023-23942
9MediaTek CPU Boa minneskorruption7.37.0$0-$5k$0-$5kNot DefinedOfficial Fix0.810.00000CVE-2021-31578
10MediaTek CPU Boa privilegier eskalering7.37.0$0-$5k$0-$5kNot DefinedOfficial Fix0.810.00000CVE-2021-31577
11Nextcloud Mail privilegier eskalering5.75.5$0-$5k$0-$5kNot DefinedOfficial Fix0.740.00000CVE-2023-23943
12Zyxel NBG-418N v2 Logs Page cross site scripting5.85.8$0-$5k$0-$5kNot DefinedOfficial Fix0.740.00000CVE-2022-45441
13Linux Kernel V4L2/Vivid Test Code förnekande av tjänsten6.56.2$5k-$25k$0-$5kNot DefinedOfficial Fix0.570.00000CVE-2023-0615
14MediaTek CPU Config Manager privilegier eskalering6.36.0$0-$5k$0-$5kNot DefinedOfficial Fix0.540.00000CVE-2021-31574
15Calendar Event Management System sql injektion6.35.7$0-$5k$0-$5kProof-of-ConceptNot Defined1.680.00890CVE-2023-0675
16MediaTek CPU Config Manager privilegier eskalering6.36.0$0-$5k$0-$5kNot DefinedOfficial Fix0.470.00000CVE-2021-31575
17Calendar Event Management System Login Page sql injektion7.36.6$0-$5k$0-$5kProof-of-ConceptNot Defined1.340.00954CVE-2023-0663
18Western Digital My Cloud Firmware Upgrade svag autentisering8.07.2$0-$5k$0-$5kProof-of-ConceptOfficial Fix2.70-0.00000CVE-2021-36226
19Western Digital My Cloud svag autentisering6.35.7$0-$5k$0-$5kProof-of-ConceptOfficial Fix2.52-0.00000CVE-2021-36224
20F5 BIG-IP iControl SOAP Format String8.28.2$5k-$25k$5k-$25kNot DefinedNot Defined1.050.01086CVE-2023-22374

IOC - Indicator of Compromise (7)

These indicators of compromise highlight associated network ranges which are known to be part of research and attack activities.

IDIP rangeSkådespelareTypFörtroende
145.86.162.0/24SideWinderpredictiveHög
2XX.XXX.XXX.X/XXXxxxxxxpredictiveHög
3XXX.XX.XX.X/XXXxxxxxxxpredictiveHög
4XXX.XX.XXX.X/XXXxxxxpredictiveHög
5XXX.XXX.XXX.X/XXXxxxxpredictiveHög
6XXX.XXX.XXX.X/XXXxxxxpredictiveHög
7XXX.X.XXX.X/XXXxxxxpredictiveHög

TTP - Tactics, Techniques, Procedures (24)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechniqueSårbarheterÅtkomstvektorTypFörtroende
1T1006CWE-22, CWE-23Pathname TraversalpredictiveHög
2T1040CWE-294, CWE-319Authentication Bypass by Capture-replaypredictiveHög
3T1059CWE-88, CWE-94Cross Site ScriptingpredictiveHög
4T1059.007CWE-79Cross Site ScriptingpredictiveHög
5T1068CWE-266, CWE-269, CWE-284Execution with Unnecessary PrivilegespredictiveHög
6TXXXX.XXXCWE-XXXXxx Xx Xxxx-xxxxx XxxxxxxxpredictiveHög
7TXXXX.XXXCWE-XXX, CWE-XXXXxxxxxxx Xxxxxxxxxxx Xx Xxxxxxxxx Xxxxxxxxxxxxxx XxxxxxxxpredictiveHög
8TXXXX.XXXCWE-XXXXxx-xxx Xxxx Xxxxxxx XxxxpredictiveHög
9TXXXXCWE-XX, CWE-XXXxxxxxx XxxxxxxxxpredictiveHög
10TXXXX.XXXCWE-XXXXxxx XxxxxxxxpredictiveHög
11TXXXXCWE-XXX, CWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxxx XxxxxxpredictiveHög
12TXXXXCWE-XX, CWE-XXXxx XxxxxxxxxpredictiveHög
13TXXXX.XXXCWE-XXXXxxxxxxx XxxxxxxxxxxxxpredictiveHög
14TXXXX.XXXCWE-XXXXxx Xx Xxxxxxxx Xxxx Xxxxxxx Xx Xxxxxxxx Xxx XxxxxxxxxxxxxxpredictiveHög
15TXXXXCWE-XXX, CWE-XXX, CWE-XXXXxx.xxx Xxxxxxxxxxxxxxxx: Xxxxxxxx Xx Xxxxxxxxxxxxx XxxxpredictiveHög
16TXXXXCWE-XXXXxxxxxxxx Xxxxxxx Xx Xxxxxxxxx XxxxxxxxxxxpredictiveHög
17TXXXX.XXXCWE-XXXXxxxxxxx Xxxxxxxxx Xx X Xxxxxxxxxxx'x Xxxxx Xx XxxxxpredictiveHög
18TXXXX.XXXCWE-XXXXxxxxxxxxxxxpredictiveHög
19TXXXXCWE-XXXXxxxxxxxx Xxxxxx XxxxpredictiveHög
20TXXXX.XXXCWE-XXXXxxxxxxx Xxxxxxxxxxx XxxxxxxxxxpredictiveHög
21TXXXXCWE-XXX, CWE-XXXXxxxxxxxxxxxxpredictiveHög
22TXXXXCWE-XXX, CWE-XXX, CWE-XXXX2xx Xxxxxxxxxxxxxxxx: Xxxx Xxxxxxxxxxxx Xxxxxxx XxxxxxxxxxpredictiveHög
23TXXXX.XXXCWE-XXXXxxxxxxxxxxx XxxxxxpredictiveHög
24TXXXXCWE-XXXXxxxxxxxxxx XxxxxxpredictiveHög

IOA - Indicator of Attack (44)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDKlassIndicatorTypFörtroende
1File/api/v1/registration/validateEmailpredictiveHög
2File/CPEpredictiveLåg
3File/opt/Citrix/ICAClient/util/ctxwebhelperpredictiveHög
4File/Services/Misc.asmx/SearchTagpredictiveHög
5File/setnetworksettings/IPAddresspredictiveHög
6File/SetNetworkSettings/SubnetMaskpredictiveHög
7File/xxxx/xxx/xxxxxxxxxxxpredictiveHög
8Filexxxx.xpredictiveLåg
9Filexxxxxx.xpredictiveMedium
10Filexxxxxxx/xxx/xxx-xxxxxxxx.xpredictiveHög
11Filexxxxxxx/xxx/xxxx/xxxx.xpredictiveHög
12Filexxxxxxx/xxx/xxxxxxxx/xxxxx_xxxx.xpredictiveHög
13Filexx/xxxxx/xxxxxx.xpredictiveHög
14Filexxxxxxxxxxxx.xxxpredictiveHög
15Filexxxx.xpredictiveLåg
16Filexxx_xxx.xpredictiveMedium
17Filexxxxxxxxxxxxx/xxx/xxx/xxxxxxxxxx/xxxxxxx/xxxxxxxxxx.xxxxpredictiveHög
18Filexxxxxxxxxxxxxx.xxxpredictiveHög
19Filexxx/xxxxx.xxxpredictiveHög
20Filexx_xxxxx/xxxxxxxxx.xpredictiveHög
21Filexx_xxxxx/xxxx.xpredictiveHög
22Filexxx.xxxpredictiveLåg
23Filexxx/xxxx/xxx.xpredictiveHög
24Filexxx/xxxxx/xxx_xxx.xpredictiveHög
25Filexxx/xxxxx/xxx_xxx.xpredictiveHög
26Filexxx/xxxxx/xxx_xxx.xpredictiveHög
27Filexxxxxx/xxxx.xxpredictiveHög
28Filexxxxx/xxxxxxxx.xpredictiveHög
29Library/xxxx/xxxxx/xxx/xxxxxxx_xxx.xpredictiveHög
30Libraryxxxxxxx/xxxxxxxx.xxxpredictiveHög
31ArgumentxxxpredictiveLåg
32ArgumentxxxxpredictiveLåg
33Argumentxxxx_xxxxx_xxxxxxxxxxpredictiveHög
34Argumentxxxx/xxxpredictiveMedium
35Argumentxx_xxxpredictiveLåg
36Argumentxxxxxxx.xxx_xxxxxxxxxxpredictiveHög
37ArgumentxxxxxxxpredictiveLåg
38ArgumentxxxxxxxpredictiveLåg
39Argumentxxxxx/xxxpredictiveMedium
40ArgumentxxxxxxxpredictiveLåg
41Argumentxxxxxxx_xxxpredictiveMedium
42ArgumentxxxxpredictiveLåg
43ArgumentxxxxxxxxpredictiveMedium
44Argumentxxxxxxxx/xxxxxxxxpredictiveHög
TidigareÖversiktNästa

Do you want to use VulDB in your project?

Use the official API to access entries easily!