部门 Telecommunication

Timeframe: -28 days

Default Categories (94): Access Management Software, Accounting Software, Advertising Software, Anti-Malware Software, Anti-Spam Software, Application Server Software, Atlassian Confluence Plugin, Atlassian Jira App Software, Audio Processing Software, Automation Software, Backup Software, Billing Software, Bug Tracking Software, Business Process Management Software, Calendar Software, Chat Software, Chip Software, Cloud Software, Communications System, Connectivity Software, Continuous Integration Software, Customer Relationship Management System, Database Administration Software, Database Software, Directory Service Software, Document Management Software, Document Processing Software, Document Reader Software, Domain Name Software, E-Commerce Management Software, Endpoint Management Software, Enterprise Resource Planning Software, File Compression Software, File Transfer Software, Firewall Software, Firmware Software, Groupware Software, Hardware Driver Software, Hosting Control Software, Human Capital Management Software, Information Management Software, IP Phone Software, Jenkins Plugin, Log Management Software, Mail Client Software, Mail Server Software, Marketing Software, Messaging Software, Middleware, Multimedia Player Software, Multimedia Processing Software, Network Attached Storage Software, Network Authentication Software, Network Camera Software, Network Encryption Software, Network Management Software, Network Routing Software, Network Utility Software, Office Suite Software, Operating System, Operating System Utility Software, Packet Analyzer Software, Policy Management Software, Presentation Software, Printing Software, Product Lifecycle Management Software, Programming Language Software, Programming Tool Software, Project Management Software, Remote Access Software, Reporting Software, Router Operating System, Ruby Gem, Rust Package, SCADA Software, Security Testing Software, Service Management Software, Software Library, Software Management Software, Solution Stack Software, Spreadsheet Software, SSH Server Software, Supplier Relationship Management Software, Supply Chain Management Software, Testing Software, Ticket Tracking Software, Video Surveillance Software, Virtualization Software, Warehouse Management System Software, Web Browser, Web Server, Windowing System Software, Wireless LAN Software, Word Processing Software

时间轴

供应商

产品

Linux Kernel288
Microsoft Windows108
Foxit PDF Reader52
Microsoft SQL Server42
Microsoft OLE DB Driver24

修正

Official Fix772
Temporary Fix0
Workaround2
Unavailable0
Not Defined212

易受攻击性

High2
Functional2
Proof-of-Concept46
Unproven150
Not Defined786

访问向量

Not Defined0
Physical8
Local148
Adjacent336
Network494

身份验证

Not Defined0
High88
Low562
None336

用户交互

Not Defined0
Required248
None738

C3BM Index

CVSSv3 Base

≤10
≤20
≤330
≤464
≤5206
≤6292
≤7172
≤8130
≤984
≤108

CVSSv3 Temp

≤10
≤20
≤330
≤480
≤5196
≤6394
≤7140
≤8122
≤916
≤108

VulDB

≤10
≤22
≤336
≤488
≤5222
≤6266
≤7164
≤8128
≤974
≤106

NVD

≤1986
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

CNA

≤1704
≤20
≤32
≤40
≤544
≤666
≤752
≤870
≤934
≤1014

供应商

≤1828
≤20
≤30
≤40
≤54
≤64
≤728
≤860
≤962
≤100

零日攻击

<1k52
<2k310
<5k48
<10k340
<25k86
<50k126
<100k24
≥100k0

本日攻击

<1k308
<2k392
<5k108
<10k84
<25k90
<50k4
<100k0
≥100k0

攻击市场容量

IOB - Indicator of Behavior (1000)

时间轴

语言

en902
ja70
es10
zh8
fr6

国家/地区

us444
gb94
jp84
de18
cn14

演员

活动

利益

时间轴

类型

供应商

产品

cym1102 nginxWebUI10
PHP6
SourceCodester PHP Task Management System6
SourceCodester Online Library System4
mysql24

漏洞

#漏洞BaseTemp0day今天修正EPSSCTICVE
1cym1102 nginxWebUI saveCmd handlePath 弱身份验证7.36.6$0-$5k$0-$5kProof-of-ConceptNot Defined0.000454.10CVE-2024-3738
2PHPGurukul Small CRM Registration Page SQL注入7.36.6$0-$5k$0-$5kProof-of-ConceptNot Defined0.000452.86CVE-2024-3691
3PHPGurukul Small CRM Change Password SQL注入6.35.7$0-$5k$0-$5kProof-of-ConceptNot Defined0.000452.49CVE-2024-3690
4cym1102 nginxWebUI upload 权限升级6.35.7$0-$5k$0-$5kProof-of-ConceptNot Defined0.000452.81CVE-2024-3739
5cym1102 nginxWebUI reload exec 权限升级6.35.7$0-$5k$0-$5kProof-of-ConceptNot Defined0.000453.20CVE-2024-3740
6Xiamen Four-Faith RMP Router Management Platform SQL注入6.35.7$0-$5k$0-$5kProof-of-ConceptNot Defined0.000452.14CVE-2024-3688
7cym1102 nginxWebUI addOver findCountByQuery 目录遍历6.35.7$0-$5k$0-$5kProof-of-ConceptNot Defined0.000452.54CVE-2024-3737
8cym1102 nginxWebUI upload 权限升级4.33.9$0-$5k$0-$5kProof-of-ConceptNot Defined0.000452.49CVE-2024-3736
9PHP proc_open 权限升级7.37.0$5k-$25k$0-$5kNot DefinedOfficial Fix0.0000010.00CVE-2024-1874
10Vesystem Cloud Desktop fileupload2.php 权限升级6.35.7$0-$5k$0-$5kProof-of-ConceptNot Defined0.000001.89-CVE-2024-3804
11PHP password_verify 未知漏洞3.73.4$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.000006.94CVE-2024-3096
12Vesystem Cloud Desktop fileupload.php 权限升级6.35.7$0-$5k$0-$5kProof-of-ConceptNot Defined0.000001.80-CVE-2024-3803
13PHP Cookie 权限升级5.65.1$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.000007.47CVE-2024-2756
14Palo Alto Networks PAN-OS GlobalProtect 权限升级8.98.7$0-$5k$0-$5kHighOfficial Fix0.003713.78CVE-2024-3400
15PHP mb_encode_mimeheader 拒绝服务5.34.8$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.000007.43CVE-2024-2757
16SourceCodester PHP Task Management System admin-manage-user.php SQL注入6.36.1$0-$5k$0-$5kNot DefinedNot Defined0.000000.12CVE-2024-28556
17360 Total Security Antivirus 权限升级4.44.3$0-$5k$0-$5kNot DefinedNot Defined0.000000.14CVE-2024-22014
18mysql2 readCodeFor 权限升级8.58.4$0-$5k$0-$5kNot DefinedOfficial Fix0.000440.14CVE-2024-21508
19Linux Kernel amdkfd kzalloc 内存损坏5.55.3$5k-$25k$0-$5kNot DefinedOfficial Fix0.000440.21CVE-2024-26817
20code-projects Online Book System index.php SQL注入7.36.6$0-$5k$0-$5kProof-of-ConceptNot Defined0.000450.12CVE-2024-3000

IOC - Indicator of Compromise (18)

These indicators of compromise highlight associated network ranges which are known to be part of research and attack activities.

IDIP range参与者类型可信度
154.38.234.0/24AsyncRATpredictive
264.226.104.0/24IcedIDpredictive
3XX.XX.XXX.X/XXXxxxxxxpredictive
4XX.XX.XXX.X/XXXxxxxpredictive
5XXX.XX.XXX.X/XXXxxxxpredictive
6XXX.XX.XXX.X/XXXxxxxxxxpredictive
7XXX.XX.XX.X/XXXxxxx Xxxpredictive
8XXX.XXX.XX.X/XXXxxxxpredictive
9XXX.XX.XXX.X/XXXxxxxx Xxxxxxpredictive
10XXX.XXX.XXX.X/XXXxxxxxxxxxxxpredictive
11XXX.XX.XX.X/XXXxxxxxpredictive
12XXX.XXX.XXX.X/XXXxxxpredictive
13XXX.XXX.XX.X/XXXxxxxxx Xxxxxxpredictive
14XXX.XXX.XXX.X/XXXxxxxx Xxxpredictive
15XXX.XXX.XXX.X/XXXxxxxpredictive
16XXX.XX.XX.X/XXXxxxxxxpredictive
17XXX.XX.XX.X/XXXxxxxxpredictive
18XXX.XXX.XX.X/XXXxxxpredictive

TTP - Tactics, Techniques, Procedures (25)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechnique漏洞访问向量类型可信度
1T1006CWE-22, CWE-23, CWE-35Path Traversalpredictive
2T1040CWE-319Authentication Bypass by Capture-replaypredictive
3T1055CWE-74Improper Neutralization of Data within XPath Expressionspredictive
4T1059CWE-94, CWE-1321Argument Injectionpredictive
5T1059.007CWE-79, CWE-80Cross Site Scriptingpredictive
6TXXXXCWE-XXX, CWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxx Xxxx Xxxxxxxxxxx Xxxxxxxxxxpredictive
7TXXXX.XXXCWE-XXXXxx Xx Xxxx-xxxxx Xxxxxxxxpredictive
8TXXXX.XXXCWE-XXX, CWE-XXXXxxx-xxxxx Xxxxxxxxxxxpredictive
9TXXXXCWE-XX, CWE-XXXxxxxxx Xxxxx Xx Xxxxxxxxxx Xxxxxxxxxx Xxxxxxxxxpredictive
10TXXXX.XXXCWE-XXXXxxx Xxxxxxxxpredictive
11TXXXXCWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxxx Xxxxxxpredictive
12TXXXXCWE-XX, CWE-XXXxx Xxxxxxxxxpredictive
13TXXXX.XXXCWE-XXXXxxxxxxx Xxxxxxxxxxxxxpredictive
14TXXXXCWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxxxx Xxxxxxxxxxpredictive
15TXXXXCWE-XXXXxxxxxxxx Xxxxxxx Xx Xxxxxxxxx Xxxxxxxxxxxpredictive
16TXXXX.XXXCWE-XXXXxxxxxx Xxxxxxxxxx Xxx Xxxxxxxx Xxxxxxx Xx Xx-xxxx Xxxxxx Xxxxxxxxpredictive
17TXXXX.XXXCWE-XXXXxxxxxxxxxxxpredictive
18TXXXXCWE-XXX, CWE-XXXXxxxxxxxx Xxxxxx Xxxxpredictive
19TXXXX.XXXCWE-XXXXxxxxxxx Xxxxxx Xxxxpredictive
20TXXXX.XXXCWE-XXXXxxxxxxx Xxxxxxxxxxx Xxxxxxxxxxpredictive
21TXXXXCWE-XXX, CWE-XXX, CWE-XXX, CWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxxx Xx Xxxxxxx Xxxxx Xxxxxxx Xxxxxxxxx Xxxxxxxxxxxpredictive
22TXXXXCWE-XXX, CWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxxxxxx Xxxxxxpredictive
23TXXXX.XXXCWE-XXXXxx Xxxxxxxxxx Xxxxxpredictive
24TXXXX.XXXCWE-XXXXxxxxxxxxx Xxxxxxxxxxxxxx Xx Xxxxxxxx Xxxx Xxxxxxxxxpredictive
25TXXXXCWE-XXXXxxxxxxxxxx Xxxxxxpredictive

IOA - Indicator of Attack (136)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

ID分类Indicator类型可信度
1File/admin/users_photo.phppredictive
2File/adminPage/conf/reloadpredictive
3File/adminPage/conf/saveCmdpredictive
4File/adminPage/main/uploadpredictive
5File/adminPage/www/addOverpredictive
6File/api/runs/search/run/predictive
7File/cart.phppredictive
8File/description.phppredictive
9File/Device/Device/GetDeviceInfoList?deviceCode=&searchField=&deviceState=predictive
10File/etc/passwdpredictive
11File/index.phppredictive
12File/loginpredictive
13File/Product.phppredictive
14File/Public/webuploader/0.1.5/server/fileupload.phppredictive
15File/Public/webuploader/0.1.5/server/fileupload2.phppredictive
16File/sys/kernel/notespredictive
17Fileaction/actioncompiler.cpredictive
18Fileactivate_jet_details_form_handler.phppredictive
19Filexxx-xxxxxxx.xxxpredictive
20Filexxxxx-xxxxxx-xxxx.xxxpredictive
21Filexxxxx-xxxxxxxx-xxxxxx.xxxpredictive
22Filexxxxx/xxxxx/xxxxxxxxxx.xxxpredictive
23Filexxxxx/xxxxx/xxxxxxxxxxxx.xxxpredictive
24Filexxxxx/xxxxx/xxxxx.xxxpredictive
25Filexxxxx/xxxxxxxx/xxxxx.xxxpredictive
26Filexxxxx/xxxxx.xxxpredictive
27Filexxxxx/xxxxxxxx_xxxxx.xxxpredictive
28Filexxxxx/xxxxxx_xxxx.xxxpredictive
29Filexxxxx/xxxxx/xxxxxxxxxx.xxxpredictive
30Filexx_xxxxxxxxxxxxxx.xpredictive
31Filexxxxxxxxxxxxxxx.xxxpredictive
32Filexxxxxxx.xxxpredictive
33Filexxxxxxxxxxxxx.xxxpredictive
34Filexxxxxxxxxxx.xxxpredictive
35Filexxxxxxxxxxx.xxxpredictive
36Filexxxxxxxxx.xpredictive
37Filexxxxxxxxxxx.xxxpredictive
38Filexxxxxxxx.xxxpredictive
39Filexxxx/xxx/xxxxxx/xxx/xxxx.xpredictive
40Filexxxxxxxxxx-xxxx.xxxpredictive
41Filexxxxx/xxx-xxxxxx.xpredictive
42Filexxxxx/xxx-xx-xxx.xpredictive
43Filexxx_xxx.xxxxpredictive
44Filexxxx_xxxxxxx.xxpredictive
45Filexxxxxxx/xxxxx/xxxxxxxx.xxxpredictive
46Filexxxxxxxxxxxxxx.xxxpredictive
47Filexxxxxxxxx.xxxpredictive
48Filexxxxxxx.xxxpredictive
49Filexxxxxxx/xxxxx/xxxxxxx/xx_xxxxxxxxx.xpredictive
50Filexxxxxxx/xxxx/xxx/xxxxxx.xpredictive
51Filexxxx-xxxx.xxxpredictive
52Filexx/xxxxx/xxxx-xx.xpredictive
53Filexx/xxxxx/xxxxxxxxxxx.xpredictive
54Filexx/xxxxx/xxxx-xxx.xpredictive
55Filexx/xxxx/xxxx.xpredictive
56Filexxxxxpredictive
57Filexxxxx_xxxxxxpredictive
58Filexx/xxx/xxx_xx_xxx.xpredictive
59Filexxxxxxx/xxxxx/xxxxxx.xpredictive
60Filexxxxx.xpredictive
61Filexxxxxx/xxx/xxxxxxx.xpredictive
62Filexxxxxx/xxx/xxxxx.xpredictive
63Filexxxxxx/xxx/xxxx.x:predictive
64Filexxxxxxx/xxxxxx.xxxpredictive
65Filexx/xxxx_xxxxx.xpredictive
66Filexx/xxxxxxxx.xpredictive
67Filexxxxxxxxx_xxxxxxxxxxxxxxxxxxxxxx.xpredictive
68Filexxx/xxxx/xxxxxx.xpredictive
69Filexxx/xxx/xxx_xxxxxx.xpredictive
70Filexxx/xxxxxxxxxxx/xxxx.xpredictive
71Filexxx/xxxxxx/xxxxxxxxxxxxx.xpredictive
72Filexxxxxxxxx.xxxpredictive
73Filexxxxx/xxx/xxxx/xxxxx-xxx-xxx.xpredictive
74Filexxxx-xxxxxxx.xxxpredictive
75Filexxxx_xxxxxx.xxpredictive
76Filexxxxxx-xxxxx.xxxpredictive
77Filexxxxxx-xxxxxxxx.xxxpredictive
78Filexxxxxxx/xx/xxxx/xxx/xxxxxx/xxxxxxxxx.xxpredictive
79File_xxxxxxxxxx.xpredictive
80Libraryxxxx.xxxpredictive
81Libraryxxxxxxx/xxxxx/xxxx.xpredictive
82Libraryxxx/xxx_xxxx.xpredictive
83Libraryxxx/xxxxxxxxxxxx.xpredictive
84Libraryxxx/xxxx_xxxxx.xpredictive
85Libraryxxx/xxx_xxxx.xpredictive
86Libraryxxx/xxxxxxxxxxx.xpredictive
87Libraryxxxxxxxx.xxxpredictive
88Libraryxxxx.xpredictive
89Argumentxxxxxxpredictive
90Argumentxxxxx_xxpredictive
91Argumentxxxxpredictive
92Argumentxxxxxxxxxxxxxxxxpredictive
93Argumentxxxxxxxxxxxxx/xxxxxxxxxpredictive
94Argumentxx-xxxxxxpredictive
95Argumentxxxxxxxxpredictive
96Argumentxxxxxxxxpredictive
97Argumentxx_xxxx_xxxpredictive
98Argumentxxxxxxxxxxxpredictive
99Argumentxxxpredictive
100Argumentxxxxxxx_xxxxpredictive
101Argumentxxxxpredictive
102Argumentxxxxxxxxpredictive
103Argumentxxxxxx_xxxxpredictive
104Argumentxxxxxxxpredictive
105Argumentx_xxxxpredictive
106Argumentxxxxpredictive
107Argumentxxpredictive
108Argumentxxpredictive
109Argumentxxxxxpredictive
110Argumentxxx_xxpredictive
111Argumentxxxxx_xxxpredictive
112Argumentxxxxxxxpredictive
113Argumentxxxxxxxxpredictive
114Argumentxxxxxxxxxpredictive
115Argumentxxx_xxxxxxpredictive
116Argumentxxxxxxpredictive
117Argumentxxx_xxxxxxpredictive
118Argumentxx_xxxxx_xxxxxxxpredictive
119Argumentxxxxxpredictive
120Argumentxxx_xxxxpredictive
121Argumentxxxx_xxxxxx_xxxxxpredictive
122Argumentxxxxxxxpredictive
123Argumentxxxxxxxpredictive
124Argumentxxxxxxxx/xxxxxxpredictive
125Argumentxxxxxxxxxxxpredictive
126Argumentxxxx_xxxxxxx_xxxxpredictive
127Argumentxxxxpredictive
128Argumentxxxx/xxxxxxxxpredictive
129Argumentxxxx_xxpredictive
130Argumentxxxxxx xxxxxpredictive
131Argumentxxxxxxxx/xxxxxxxx/xxxxx_xxxxxxxx/xxxxx_xxxxxxxxpredictive
132Argumentxxxx_xxxxxpredictive
133Argumentxxxx_xxpredictive
134Argumentxxxx_xxxxpredictive
135Argumentxxxxxpredictive
136Argumentx-xxxxxxxxx-xxxpredictive

Do you want to use VulDB in your project?

Use the official API to access entries easily!