部门 Education

Timeframe: -28 days

Default Categories (58): Access Management Software, Accounting Software, Anti-Malware Software, Anti-Spam Software, Application Server Software, Backup Software, Blog Software, Calendar Software, Chat Software, Cloud Software, Communications System, Database Administration Software, Database Software, Digital Media Player, Directory Service Software, Document Management Software, Document Processing Software, Document Reader Software, Endpoint Management Software, Firewall Software, Groupware Software, Hardware Driver Software, Image Processing Software, Information Management Software, IP Phone Software, Knowledge Base Software, Learning Management Software, Library Management System Software, Log Management Software, Mail Client Software, Mail Server Software, Messaging Software, Middleware, Multimedia Player Software, Multimedia Processing Software, Network Attached Storage Software, Network Encryption Software, Network Management Software, Network Routing Software, Office Suite Software, Operating System, Presentation Software, Printing Software, Programming Language Software, Project Management Software, Remote Access Software, Reporting Software, Router Operating System, Server Management Software, Spreadsheet Software, SSH Server Software, Survey Software, Unified Communication Software, Virtualization Software, Web Browser, Web Server, Wireless LAN Software, Word Processing Software

时间轴

供应商

产品

Linux Kernel282
Microsoft Windows98
Foxit PDF Reader42
Juniper Junos OS24
Microsoft SQL Server24

修正

Official Fix672
Temporary Fix0
Workaround2
Unavailable0
Not Defined136

易受攻击性

High8
Functional2
Proof-of-Concept28
Unproven122
Not Defined650

访问向量

Not Defined0
Physical6
Local94
Adjacent332
Network378

身份验证

Not Defined0
High56
Low474
None280

用户交互

Not Defined0
Required202
None608

C3BM Index

CVSSv3 Base

≤10
≤20
≤316
≤460
≤5188
≤6242
≤7146
≤8108
≤946
≤104

CVSSv3 Temp

≤10
≤20
≤316
≤468
≤5190
≤6324
≤7114
≤884
≤910
≤104

VulDB

≤10
≤22
≤322
≤488
≤5166
≤6242
≤7136
≤8106
≤944
≤104

NVD

≤1810
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

CNA

≤1626
≤20
≤34
≤40
≤520
≤644
≤738
≤858
≤912
≤108

供应商

≤1676
≤20
≤30
≤40
≤52
≤616
≤722
≤856
≤938
≤100

零日攻击

<1k16
<2k200
<5k38
<10k332
<25k104
<50k94
<100k26
≥100k0

本日攻击

<1k202
<2k326
<5k116
<10k84
<25k72
<50k10
<100k0
≥100k0

攻击市场容量

IOB - Indicator of Behavior (1000)

时间轴

语言

en860
de54
es42
fr18
ja16

国家/地区

us388
gb68
de58
jp28
fr24

演员

活动

利益

时间轴

类型

供应商

产品

Google Chrome8
Juniper Junos OS6
PHP6
code-projects Online Book System6
Palo Alto Networks PAN-OS4

漏洞

#漏洞BaseTemp0day今天修正EPSSCTICVE
1cym1102 nginxWebUI saveCmd handlePath 弱身份验证7.36.6$0-$5k$0-$5kProof-of-ConceptNot Defined0.000454.79CVE-2024-3738
2cym1102 nginxWebUI upload 权限升级6.35.7$0-$5k$0-$5kProof-of-ConceptNot Defined0.000453.17CVE-2024-3739
3cym1102 nginxWebUI reload exec 权限升级6.35.7$0-$5k$0-$5kProof-of-ConceptNot Defined0.000453.54CVE-2024-3740
4cym1102 nginxWebUI addOver findCountByQuery 目录遍历6.35.7$0-$5k$0-$5kProof-of-ConceptNot Defined0.000452.84CVE-2024-3737
5PHP proc_open 权限升级7.37.0$5k-$25k$0-$5kNot DefinedOfficial Fix0.0000010.00CVE-2024-1874
6Xiamen Four-Faith RMP Router Management Platform SQL注入6.35.7$0-$5k$0-$5kProof-of-ConceptNot Defined0.000452.17CVE-2024-3688
7cym1102 nginxWebUI upload 权限升级4.33.9$0-$5k$0-$5kProof-of-ConceptNot Defined0.000452.57CVE-2024-3736
8PHP password_verify 未知漏洞3.73.4$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.000006.92CVE-2024-3096
9PHP Cookie 权限升级5.65.1$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.000007.29CVE-2024-2756
10Vesystem Cloud Desktop fileupload2.php 权限升级6.35.7$0-$5k$0-$5kProof-of-ConceptNot Defined0.000001.78-CVE-2024-3804
11PHP mb_encode_mimeheader 拒绝服务5.34.8$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.000007.59CVE-2024-2757
12Vesystem Cloud Desktop fileupload.php 权限升级6.35.7$0-$5k$0-$5kProof-of-ConceptNot Defined0.000001.62-CVE-2024-3803
13Palo Alto Networks PAN-OS GlobalProtect 权限升级8.98.7$0-$5k$0-$5kHighOfficial Fix0.003713.90CVE-2024-3400
14360 Total Security Antivirus 权限升级4.44.3$0-$5k$0-$5kNot DefinedNot Defined0.000000.12CVE-2024-22014
15SourceCodester PHP Task Management System update-admin.php SQL注入6.36.1$0-$5k$0-$5kNot DefinedNot Defined0.000000.17CVE-2024-28557
16code-projects Car Rental add-vehicle.php 权限升级6.35.7$0-$5k$0-$5kProof-of-ConceptNot Defined0.000450.10CVE-2024-3369
17SourceCodester PHP Task Management System admin-manage-user.php SQL注入6.36.1$0-$5k$0-$5kNot DefinedNot Defined0.000000.09CVE-2024-28556
18iboss Secure Web Gateway Login Portal login 跨网站脚本4.33.9$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.000450.24CVE-2024-3378
19Xen x86 HVM Hypercall 拒绝服务5.55.3$0-$5k$0-$5kNot DefinedOfficial Fix0.000000.35CVE-2023-46842
20Palo Alto Networks PAN-OS Cloud Identity Engine 未知漏洞6.16.0$0-$5k$0-$5kNot DefinedOfficial Fix0.000430.24CVE-2024-3383

IOC - Indicator of Compromise (17)

These indicators of compromise highlight associated network ranges which are known to be part of research and attack activities.

IDIP range参与者类型可信度
12.57.122.0/24Miraipredictive
223.154.177.0/24B1txor20predictive
3XX.XX.XXX.X/XXXxxxxxpredictive
4XX.XX.XXX.X/XXXxxxxxxxpredictive
5XX.XXX.XXX.X/XXXxxxxxpredictive
6XX.XX.XXX.X/XXXxxxxxxpredictive
7XXX.XX.XXX.X/XXXxxxxpredictive
8XXX.XX.XXX.X/XXXxxxxxxxpredictive
9XXX.XX.XX.X/XXXxxxx Xxxpredictive
10XXX.XXX.XX.X/XXXxxxxpredictive
11XXX.XXX.XXX.X/XXXxxxxxxxxxxxpredictive
12XXX.XX.XX.X/XXXxxxxxpredictive
13XXX.XXX.XXX.X/XXXxxxpredictive
14XXX.XXX.XXX.X/XXXxxxxpredictive
15XXX.XX.XX.X/XXXxxxxxxpredictive
16XXX.XX.XX.X/XXXxxxxxpredictive
17XXX.XXX.XX.X/XXXxxxpredictive

TTP - Tactics, Techniques, Procedures (25)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechnique漏洞访问向量类型可信度
1T1006CWE-22, CWE-23, CWE-35Path Traversalpredictive
2T1040CWE-319Authentication Bypass by Capture-replaypredictive
3T1055CWE-74Improper Neutralization of Data within XPath Expressionspredictive
4T1059CWE-94, CWE-1321Argument Injectionpredictive
5T1059.007CWE-79, CWE-80Cross Site Scriptingpredictive
6TXXXXCWE-XXX, CWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxx Xxxx Xxxxxxxxxxx Xxxxxxxxxxpredictive
7TXXXX.XXXCWE-XXXXxx Xx Xxxx-xxxxx Xxxxxxxxpredictive
8TXXXX.XXXCWE-XXX, CWE-XXXXxxx-xxxxx Xxxxxxxxxxxpredictive
9TXXXXCWE-XX, CWE-XXXxxxxxx Xxxxx Xx Xxxxxxxxxx Xxxxxxxxxx Xxxxxxxxxpredictive
10TXXXX.XXXCWE-XXXXxxx Xxxxxxxxpredictive
11TXXXXCWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxxx Xxxxxxpredictive
12TXXXXCWE-XXXxx Xxxxxxxxxpredictive
13TXXXX.XXXCWE-XXXXxxxxxxx Xxxxxxxxxxxxxpredictive
14TXXXXCWE-XXX, CWE-XXXXxxxxxxxxxx Xxxxxxxxxxpredictive
15TXXXXCWE-XXXXxxxxxxxx Xxxxxxx Xx Xxxxxxxxx Xxxxxxxxxxxpredictive
16TXXXX.XXXCWE-XXXXxxxxxx Xxxxxxxxxx Xxx Xxxxxxxx Xxxxxxx Xx Xx-xxxx Xxxxxx Xxxxxxxxpredictive
17TXXXX.XXXCWE-XXXXxxxxxxxxxxxpredictive
18TXXXXCWE-XXX, CWE-XXXXxxxxxxxx Xxxxxx Xxxxpredictive
19TXXXX.XXXCWE-XXXXxxxxxxx Xxxxxx Xxxxpredictive
20TXXXX.XXXCWE-XXXXxxxxxxx Xxxxxxxxxxx Xxxxxxxxxxpredictive
21TXXXXCWE-XXX, CWE-XXX, CWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxxx Xx Xxxxxxx Xxxxx Xxxxxxx Xxxxxxxxx Xxxxxxxxxxxpredictive
22TXXXXCWE-XXX, CWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxxxxxx Xxxxxxpredictive
23TXXXX.XXXCWE-XXXXxx Xxxxxxxxxx Xxxxxpredictive
24TXXXX.XXXCWE-XXXXxxxxxxxxx Xxxxxxxxxxxxxx Xx Xxxxxxxx Xxxx Xxxxxxxxxpredictive
25TXXXXCWE-XXXXxxxxxxxxxx Xxxxxxpredictive

IOA - Indicator of Attack (119)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

ID分类Indicator类型可信度
1File/adminPage/conf/reloadpredictive
2File/adminPage/conf/saveCmdpredictive
3File/adminPage/main/uploadpredictive
4File/adminPage/www/addOverpredictive
5File/api/runs/search/run/predictive
6File/cart.phppredictive
7File/description.phppredictive
8File/Device/Device/GetDeviceInfoList?deviceCode=&searchField=&deviceState=predictive
9File/etc/passwdpredictive
10File/index.phppredictive
11File/loginpredictive
12File/members/moremember.plpredictive
13File/Product.phppredictive
14File/Public/webuploader/0.1.5/server/fileupload.phppredictive
15File/Public/webuploader/0.1.5/server/fileupload2.phppredictive
16File/sys/kernel/notespredictive
17Filexxx-xxxxxxx.xxxpredictive
18Filexxxxx-xxxxxx-xxxx.xxxpredictive
19Filexxxxx-xxxxxxxx-xxxxxx.xxxpredictive
20Filexxxxx/xxxxxx_xxxx.xxxpredictive
21Filexx_xxxxxxxxxxxxxx.xpredictive
22Filexxxxxxxxxxxxxxx.xxxpredictive
23Filexxxxxxx.xxxpredictive
24Filexxxxxxxxxxxxx.xxxpredictive
25Filexxxxxxxxxxx.xxxpredictive
26Filexxxxxxxxxxx.xxxpredictive
27Filexxxxxxxxx.xpredictive
28Filexxxxxxxxxxx.xxxpredictive
29Filexxxxxxxx.xxxpredictive
30Filexxxx/xxx/xxxxxx/xxx/xxxx.xpredictive
31Filexxxxxxxxxx-xxxx.xxxpredictive
32Filexxxxx/xxx-xxxxxx.xpredictive
33Filexxxxx/xxx-xx-xxx.xpredictive
34Filexxx_xxx.xxxxpredictive
35Filexxxx_xxxxxxx.xxpredictive
36Filexxxxxxxxxxxxxx.xxxpredictive
37Filexxxxxxxxx.xxxpredictive
38Filexxxxxxx.xxxpredictive
39Filexxxxxxx/xxxxx/xxxxxxx/xx_xxxxxxxxx.xpredictive
40Filexxxxxxx/xxxx/xxx/xxxxxx.xpredictive
41Filexxxx-xxxx.xxxpredictive
42Filexx/xxxxx/xxxx-xx.xpredictive
43Filexx/xxxxx/xxxxxxxxxxx.xpredictive
44Filexx/xxxxx/xxxx-xxx.xpredictive
45Filexx/xxxx/xxxx.xpredictive
46Filexxxxxpredictive
47Filexxxxx_xxxxxxpredictive
48Filexx/xxx/xxx_xx_xxx.xpredictive
49Filexxxxxxx/xxxxx/xxxxxx.xpredictive
50Filexxxxx.xpredictive
51Filexxxxxx/xxx/xxxxxxx.xpredictive
52Filexxxxxx/xxx/xxxxx.xpredictive
53Filexxxxxx/xxx/xxxx.x:predictive
54Filexxxxxxx/xxxxxx.xxxpredictive
55Filexx/xxxx_xxxxx.xpredictive
56Filexx/xxxxxxxx.xpredictive
57Filexxx/xxxx/xxxxxx.xpredictive
58Filexxx/xxx/xxx_xxxxxx.xpredictive
59Filexxx/xxxxxxxxxxx/xxxx.xpredictive
60Filexxx/xxxxxx/xxxxxxxxxxxxx.xpredictive
61Filexxxxxxxxx.xxxpredictive
62Filexxxxx/xxx/xxxx/xxxxx-xxx-xxx.xpredictive
63Filexxxx-xxxxxxx.xxxpredictive
64Filexxxx_xxxxxx.xxpredictive
65Filexxxxxx-xxxxx.xxxpredictive
66Filexxxxxx-xxxxxxxx.xxxpredictive
67Filexxxxxxx/xx/xxxx/xxx/xxxxxx/xxxxxxxxx.xxpredictive
68File_xxxxxxxxxx.xpredictive
69Libraryxxxx.xxxpredictive
70Libraryxxxxxxx/xxxxx/xxxx.xpredictive
71Libraryxxx/xxx_xxxx.xpredictive
72Libraryxxx/xxxxxxxxxxxx.xpredictive
73Libraryxxx/xxxx_xxxxx.xpredictive
74Libraryxxx/xxx_xxxx.xpredictive
75Libraryxxx/xxxxxxxxxxx.xpredictive
76Libraryxxxxxxxx.xxxpredictive
77Libraryxxxx.xpredictive
78Argumentxxxxxxpredictive
79Argumentxxxxxxxxxxxxx xxxxx xxxxxxxpredictive
80Argumentxxxxx_xxpredictive
81Argumentxxxxpredictive
82Argumentxxxxxxxxxxxxxxxxpredictive
83Argumentxx-xxxxxxpredictive
84Argumentxxxxxxxxx xxxxxxxxxxx/xxxxxxxxx xxxxxpredictive
85Argumentxxxxxxxxpredictive
86Argumentxx_xxxx_xxxpredictive
87Argumentxxxpredictive
88Argumentxxxxxxx_xxxxpredictive
89Argumentxxxxpredictive
90Argumentxxxxxx_xxxxpredictive
91Argumentxxxxxxxpredictive
92Argumentx_xxxxpredictive
93Argumentxxpredictive
94Argumentxxpredictive
95Argumentxxxxxpredictive
96Argumentxxxxpredictive
97Argumentxxxxx_xxxpredictive
98Argumentxxxxxxxpredictive
99Argumentxxxxxxxxpredictive
100Argumentxxxxxxxxxpredictive
101Argumentxxx_xxxxxxpredictive
102Argumentxxxxxxpredictive
103Argumentxxx_xxxxxxpredictive
104Argumentxx_xxxxx_xxxxxxxpredictive
105Argumentxxxx_xxxxxx_xxxxxpredictive
106Argumentxxxxxxxpredictive
107Argumentxxxxxxxpredictive
108Argumentxxxxxxxx/xxxxxxpredictive
109Argumentxxxxxxxxxxxpredictive
110Argumentxxxx_xxxxxxx_xxxxpredictive
111Argumentxxxxpredictive
112Argumentxxxx/xxxxxxxxpredictive
113Argumentxxxx_xxpredictive
114Argumentxxxxxpredictive
115Argumentxxxxxx xxxxxpredictive
116Argumentxxxxxxxx/xxxxxxxx/xxxxx_xxxxxxxx/xxxxx_xxxxxxxxpredictive
117Argumentxxxx_xxpredictive
118Argumentxxxxxpredictive
119Argumentx-xxxxxxxxx-xxxpredictive

Do you know our Splunk app?

Download it now for free!