Sektor Telecommunication

Timeframe: -28 days

Default Categories (94): Access Management Software, Accounting Software, Advertising Software, Anti-Malware Software, Anti-Spam Software, Application Server Software, Atlassian Confluence Plugin, Atlassian Jira App Software, Audio Processing Software, Automation Software, Backup Software, Billing Software, Bug Tracking Software, Business Process Management Software, Calendar Software, Chat Software, Chip Software, Cloud Software, Communications System, Connectivity Software, Continuous Integration Software, Customer Relationship Management System, Database Administration Software, Database Software, Directory Service Software, Document Management Software, Document Processing Software, Document Reader Software, Domain Name Software, E-Commerce Management Software, Endpoint Management Software, Enterprise Resource Planning Software, File Compression Software, File Transfer Software, Firewall Software, Firmware Software, Groupware Software, Hardware Driver Software, Hosting Control Software, Human Capital Management Software, Information Management Software, IP Phone Software, Jenkins Plugin, Log Management Software, Mail Client Software, Mail Server Software, Marketing Software, Messaging Software, Middleware, Multimedia Player Software, Multimedia Processing Software, Network Attached Storage Software, Network Authentication Software, Network Camera Software, Network Encryption Software, Network Management Software, Network Routing Software, Network Utility Software, Office Suite Software, Operating System, Operating System Utility Software, Packet Analyzer Software, Policy Management Software, Presentation Software, Printing Software, Product Lifecycle Management Software, Programming Language Software, Programming Tool Software, Project Management Software, Remote Access Software, Reporting Software, Router Operating System, Ruby Gem, Rust Package, SCADA Software, Security Testing Software, Service Management Software, Software Library, Software Management Software, Solution Stack Software, Spreadsheet Software, SSH Server Software, Supplier Relationship Management Software, Supply Chain Management Software, Testing Software, Ticket Tracking Software, Video Surveillance Software, Virtualization Software, Warehouse Management System Software, Web Browser, Web Server, Windowing System Software, Wireless LAN Software, Word Processing Software

Tidslinje

Säljare

Oracle236
Not Defined118
Insteon86
Microsoft86
Juniper32

Produkt

Insteon Hub86
Microsoft Windows70
Juniper Junos OS28
AMD CPU26
Apple macOS26

Åtgärd

Official Fix686
Temporary Fix0
Workaround0
Unavailable0
Not Defined260

Utnyttjbarhet

High0
Functional0
Proof-of-Concept16
Unproven82
Not Defined848

Åtkomstvektor

Not Defined0
Physical6
Local62
Adjacent152
Network726

Autentisering

Not Defined0
High84
Low430
None432

Användarinteraktion

Not Defined0
Required204
None742

C3BM Index

CVSSv3 Base

≤10
≤22
≤310
≤4102
≤5132
≤6144
≤7146
≤8206
≤984
≤10120

CVSSv3 Temp

≤10
≤22
≤312
≤4120
≤5120
≤6176
≤7136
≤8226
≤9110
≤1044

VulDB

≤10
≤22
≤334
≤4120
≤5126
≤6116
≤7144
≤8202
≤9156
≤1046

NVD

≤1752
≤20
≤32
≤46
≤514
≤626
≤724
≤826
≤916
≤1080

CNA

≤1554
≤22
≤30
≤48
≤530
≤648
≤760
≤8120
≤9108
≤1016

Säljare

≤1864
≤20
≤30
≤40
≤52
≤68
≤710
≤852
≤910
≤100

Utnyttja 0-dagars

<1k70
<2k232
<5k122
<10k120
<25k278
<50k44
<100k80
≥100k0

Utnyttja idag

<1k278
<2k260
<5k190
<10k98
<25k120
<50k0
<100k0
≥100k0

Utnyttja marknadsvolymen

IOB - Indicator of Behavior (1000)

Tidslinje

Lang

en818
ja64
fr32
de22
es20

Land

us162
jp66
hu58
it54
fr44

Skådespelare

Conti2
Dealply1
TA5051
Gh0stRAT1

Aktiviteter

Intressera

Tidslinje

Typ

Operating System36
Chip Software28
Cloud Software16
Firewall Software12
SCADA Software12

Säljare

Microsoft30
MediaTek26
Not Defined22
Oracle16
Linux12

Produkt

Microsoft Windows22
MediaTek MT676516
MediaTek MT676816
MediaTek MT683316
MediaTek MT685316

Sårbarheter

#SårbarhetBaseTemp0dayI dagUtnRemCTIEPSSCVE
1IP Vault WP Firewall Plugin cross site scripting2.42.4$0-$5k$0-$5kNot DefinedNot Defined1.780.00000CVE-2022-47171
2Side Cart Woocommerce Plugin förfalskning på begäran över webbplatsen4.34.2$0-$5k$0-$5kNot DefinedNot Defined1.780.00000CVE-2022-45376
3GNU C Library Call Graph Monitor gmon.c __monstartup minneskorruption4.64.4$0-$5k$0-$5kNot DefinedOfficial Fix3.80-0.00000CVE-2023-0687
4Microsoft Edge förnekande av tjänsten3.13.0$25k-$100k$5k-$25kNot DefinedOfficial Fix2.350.00000CVE-2023-21720
5OpenBSD OpenSSH compat.c minneskorruption5.65.4$5k-$25k$5k-$25kNot DefinedOfficial Fix2.650.00950CVE-2023-25136
6SUSE Linux Enterprise Server/Manager Server rmt-server-regsharing Service privilegier eskalering8.38.1$5k-$25k$0-$5kNot DefinedOfficial Fix0.97+0.00000CVE-2022-31254
7Nextcloud Desktop Client QML Label cross site scripting4.44.4$0-$5k$0-$5kNot DefinedOfficial Fix0.810.00000CVE-2023-23942
8MediaTek CPU Boa minneskorruption7.37.0$0-$5k$0-$5kNot DefinedOfficial Fix0.810.00000CVE-2021-31578
9MediaTek CPU Boa privilegier eskalering7.37.0$0-$5k$0-$5kNot DefinedOfficial Fix0.810.00000CVE-2021-31577
10Nextcloud Mail privilegier eskalering5.75.5$0-$5k$0-$5kNot DefinedOfficial Fix0.740.00000CVE-2023-23943
11Zyxel NBG-418N v2 Logs Page cross site scripting5.85.8$0-$5k$0-$5kNot DefinedOfficial Fix0.740.00000CVE-2022-45441
12MediaTek CPU Config Manager privilegier eskalering6.36.0$0-$5k$0-$5kNot DefinedOfficial Fix0.540.00000CVE-2021-31574
13Linux Kernel V4L2/Vivid Test Code förnekande av tjänsten6.56.2$5k-$25k$0-$5kNot DefinedOfficial Fix0.570.00000CVE-2023-0615
14Calendar Event Management System sql injektion6.35.7$0-$5k$0-$5kProof-of-ConceptNot Defined1.680.00890CVE-2023-0675
15Calendar Event Management System Login Page sql injektion7.36.6$0-$5k$0-$5kProof-of-ConceptNot Defined1.340.00954CVE-2023-0663
16MediaTek CPU Config Manager privilegier eskalering6.36.0$0-$5k$0-$5kNot DefinedOfficial Fix0.470.00000CVE-2021-31575
17Western Digital My Cloud Firmware Upgrade svag autentisering8.07.2$0-$5k$0-$5kProof-of-ConceptOfficial Fix2.700.00000CVE-2021-36226
18Western Digital My Cloud svag autentisering6.35.7$0-$5k$0-$5kProof-of-ConceptOfficial Fix2.520.00000CVE-2021-36224
19MailEnable Public Folder kataloggenomgång7.57.4$0-$5k$0-$5kNot DefinedOfficial Fix0.440.00885CVE-2022-42136
20NREL api-umbrella-web Flash Message cross site scripting3.53.4$0-$5k$0-$5kNot DefinedOfficial Fix0.950.00950CVE-2015-10072

IOC - Indicator of Compromise (7)

These indicators of compromise highlight associated network ranges which are known to be part of research and attack activities.

IDIP rangeSkådespelareTypFörtroende
154.213.123.0/24DealplypredictiveHög
2XXX.XX.XX.X/XXXxxxxxxxpredictiveHög
3XXX.XX.XXX.X/XXXxxxxpredictiveHög
4XXX.XXX.XXX.X/XXXxxxxpredictiveHög
5XXX.XXX.XXX.X/XXXxxxxpredictiveHög
6XXX.X.XXX.X/XXXxxxxpredictiveHög
7XXX.XXX.XX.X/XXXxxxxxxxxxpredictiveHög

TTP - Tactics, Techniques, Procedures (27)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechniqueSårbarheterÅtkomstvektorTypFörtroende
1T1006CWE-22, CWE-23Pathname TraversalpredictiveHög
2T1040CWE-294, CWE-319Authentication Bypass by Capture-replaypredictiveHög
3T1055CWE-74InjectionpredictiveHög
4T1059CWE-88, CWE-94Cross Site ScriptingpredictiveHög
5T1059.007CWE-79Cross Site ScriptingpredictiveHög
6T1068CWE-269, CWE-284Execution with Unnecessary PrivilegespredictiveHög
7TXXXX.XXXCWE-XXXXxx Xx Xxxx-xxxxx XxxxxxxxpredictiveHög
8TXXXX.XXXCWE-XXX, CWE-XXXXxxxxxxx Xxxxxxxxxxx Xx Xxxxxxxxx Xxxxxxxxxxxxxx XxxxxxxxpredictiveHög
9TXXXX.XXXCWE-XXXXxx-xxx Xxxx Xxxxxxx XxxxpredictiveHög
10TXXXXCWE-XX, CWE-XXXxxxxxx XxxxxxxxxpredictiveHög
11TXXXX.XXXCWE-XXXXxxx XxxxxxxxpredictiveHög
12TXXXXCWE-XXX, CWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxxx XxxxxxpredictiveHög
13TXXXX.XXXCWE-XXXXXxxxxxxxxxx Xxxxxxx Xxxxxxxxxx XxxxxxxxxxpredictiveHög
14TXXXXCWE-XX, CWE-XXXxx XxxxxxxxxpredictiveHög
15TXXXX.XXXCWE-XXXXxxxxxxx XxxxxxxxxxxxxpredictiveHög
16TXXXX.XXXCWE-XXXXxx Xx Xxxxxxxx Xxxx Xxxxxxx Xx Xxxxxxxx Xxx XxxxxxxxxxxxxxpredictiveHög
17TXXXXCWE-XXX, CWE-XXX, CWE-XXXXxx.xxx Xxxxxxxxxxxxxxxx: Xxxxxxxx Xx Xxxxxxxxxxxxx XxxxpredictiveHög
18TXXXXCWE-XXXXxxxxxxxx Xxxxxxx Xx Xxxxxxxxx XxxxxxxxxxxpredictiveHög
19TXXXX.XXXCWE-XXXXxxxxxxx Xxxxxxxxx Xx X Xxxxxxxxxxx'x Xxxxx Xx XxxxxpredictiveHög
20TXXXX.XXXCWE-XXXXxxxxxxxxxxx XxxxxxxpredictiveHög
21TXXXX.XXXCWE-XXXXxxxxxxxxxxxpredictiveHög
22TXXXXCWE-XXXXxxxxxxxx Xxxxxx XxxxpredictiveHög
23TXXXX.XXXCWE-XXXXxxxxxxx Xxxxxxxxxxx XxxxxxxxxxpredictiveHög
24TXXXXCWE-XXX, CWE-XXXXxxxxxxxxxxxxpredictiveHög
25TXXXXCWE-XXX, CWE-XXX, CWE-XXXX2xx Xxxxxxxxxxxxxxxx: Xxxx Xxxxxxxxxxxx Xxxxxxx XxxxxxxxxxpredictiveHög
26TXXXX.XXXCWE-XXXXxxxxxxxxxxx XxxxxxpredictiveHög
27TXXXXCWE-XXXXxxxxxxxxxx XxxxxxpredictiveHög

IOA - Indicator of Attack (58)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDKlassIndicatorTypFörtroende
1File/api/v1/registration/validateEmailpredictiveHög
2File/CPEpredictiveLåg
3File/opt/Citrix/ICAClient/util/ctxwebhelperpredictiveHög
4File/Services/Misc.asmx/SearchTagpredictiveHög
5File/setnetworksettings/IPAddresspredictiveHög
6File/SetNetworkSettings/SubnetMaskpredictiveHög
7File/tool/gen/createTablepredictiveHög
8Fileadd_product.phppredictiveHög
9Filexxxxxxxxxxx/xxx/xxxx/xxxxxx/xxx-xxx/xxxxxxxxxx/xxxxxxxxxxxxxxxxxxxxxx.xxxpredictiveHög
10Filexxxx.xpredictiveLåg
11Filexxxxxx.xpredictiveMedium
12Filexxxxxxxx_xxxxxxxx.xxxpredictiveHög
13Filexxxxxxx/xxx/xxx-xxxxxxxx.xpredictiveHög
14Filexxxxxxx/xxx/xxxx/xxxx.xpredictiveHög
15Filexxxxxxx/xxx/xxxxxxxx/xxxxx_xxxx.xpredictiveHög
16Filexxxxxxx-xxxx.xxxpredictiveHög
17Filexx/xxxxx/xxxxxx.xpredictiveHög
18Filexxxxxxxxxxxx.xxxpredictiveHög
19Filexxxx.xpredictiveLåg
20Filexxx_xxx.xpredictiveMedium
21Filexxxxxxxxxxxxx/xxx/xxx/xxxxxxxxxx/xxxxxxx/xxxxxxxxxx.xxxxpredictiveHög
22Filexxxxxxxxxxxxxx.xxxpredictiveHög
23Filexxx/xxxxx.xxxpredictiveHög
24Filexx_xxxxx/xxxxxxxxx.xpredictiveHög
25Filexx_xxxxx/xxxx.xpredictiveHög
26Filexxxxxxxxxxx/xxxxxx.xpredictiveHög
27Filexxx.xxxpredictiveLåg
28Filexxx/xxxx/xxx.xpredictiveHög
29Filexxx/xxxxx/xxx_xxx.xpredictiveHög
30Filexxx/xxxxx/xxx_xxx.xpredictiveHög
31Filexxx/xxxxx/xxx_xxx.xpredictiveHög
32Filexxxx/xxxxxxx/xxxxxxxx.xxxpredictiveHög
33Filexxxxxxx/xxxxxxx/xxxxxxxxx/xxxxxx/xxxxxxxxxxxxxpredictiveHög
34Filexxxxxx/xxxx.xxpredictiveHög
35Filexxxxxxxxxxxxxxxxxxx.xxxxpredictiveHög
36Library/xxxx/xxxxx/xxx/xxxxxxx_xxx.xpredictiveHög
37Libraryxxxxxxx/xxxxxxxx.xxxpredictiveHög
38ArgumentxxxxxxxpredictiveLåg
39ArgumentxxxpredictiveLåg
40ArgumentxxxxpredictiveLåg
41ArgumentxxxxpredictiveLåg
42Argumentxxxx_xxxxx_xxxxxxxxxxpredictiveHög
43Argumentxxxxxxxxx/xxxxx_xxxxpredictiveHög
44Argumentxxxx/xxxpredictiveMedium
45Argumentxx_xxxpredictiveLåg
46Argumentxxxxxxx.xxx_xxxxxxxxxxpredictiveHög
47ArgumentxxxxxxxpredictiveLåg
48ArgumentxxxxxxxpredictiveLåg
49Argumentxxxxx/xxxpredictiveMedium
50ArgumentxxxxxxxpredictiveLåg
51Argumentxxxx_xxxxxx/xxxxxx/xxxxxxpredictiveHög
52Argumentxxxxxxx_xxxpredictiveMedium
53ArgumentxxxxxxpredictiveLåg
54ArgumentxxxxpredictiveLåg
55ArgumentxxxxxxxxpredictiveMedium
56Argumentxxxxxxxx/xxxxxxxxpredictiveHög
57ArgumentxxxxxpredictiveLåg
58Input Value%xxxxxxxx%xxxxxxx(x)%xx/xxxxxx%xxpredictiveHög
TidigareÖversiktNästa

Do you need the next level of professionalism?

Upgrade your account now!