PT-2024-26724 · Undefined · Undefined
Publicado
2024-06-12
·
Atualizado
2024-06-12
·
CVE-2024-3577
Nenhuma
Não há classificações de severidade ou métricas disponíveis. Quando houver, atualizaremos as informações correspondentes na página.
#ParsedReport #CompletenessLow
11-06-2024
Update: CVE-2024-4577 quickly weaponized to distribute "TellYouThePass" Ransomware
Report completeness: Low
Threats:
Tellyouthepass
Log4shell vuln
CVEs:
CVE-2023-46604 [Vulners]
CVSS V3.1: 10.0,
Vulners: Exploitation: True
X-Force: Risk: Unknown
X-Force: Patch: Unknown
Soft:
- apache activemq (<5.15.16, <5.16.7, <5.17.6, <5.18.3)
CVE-2021-44228 [Vulners]
CVSS V3.1: 10.0,
Vulners: Exploitation: True
X-Force: Risk: Unknown
X-Force: Patch: Unknown
Soft:
- apache log4j (<2.3.1, <2.12.2, <2.15.0, 2.0)
CVE-2024-4577 [Vulners]
CVSS V3.1: 9.8,
Vulners: Exploitation: Unknown
X-Force: Risk: Unknown
X-Force: Patch: Unknown
Soft:
- php (<8.1.29, <8.2.20, <8.3.8)
CVE-2024-3577 [Vulners]
CVSS V3.1: Unknown,
Vulners: Exploitation: Unknown
X-Force: Risk: Unknown
X-Force: Patch: Unknown
ChatGPT TTPs:
do not use without manual check
T1190, T1059.005, T1027, T1071.001, T1036.005, T1486
IOCs:
File: 3
IP: 1
Hash: 3
Coin: 1
Url: 1
Soft:
Apache Log4j
Crypto:
bitcoin
Algorithms:
base64
Functions:
ReadMe
Languages:
php
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Identificadores relacionados
Produtos afetados
Undefined