Ongoing exploitation of CVE-2022-41352 (Zimbra 0-day)
Tags
| attack-pattern: | Data Credentials - T1589.001 Exploits - T1587.004 Exploits - T1588.005 Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Software - T1592.002 |
Common Information
| Type | Value |
|---|---|
| UUID | 2a032b2b-0a4e-4377-847f-a48a7acae748 |
| Fingerprint | 9d0119d3c7352ec1 |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | Oct. 13, 2022, 8 a.m. |
| Added to db | Nov. 7, 2022, 7:42 p.m. |
| Last updated | Oct. 22, 2024, 8:42 p.m. |
| Headline | Ongoing exploitation of CVE-2022-41352 (Zimbra 0-day) |
| Title | Ongoing exploitation of CVE-2022-41352 (Zimbra 0-day) |
| Detected Hints/Tags/Attributes | 32/1/10 |
Source URLs
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 223 | ✔ | Securelist | https://securelist.com/feed/ | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 22 | cve-2022-41352 |
|
| Details | CVE | 2 | cve-2015-1197 |
|
| Details | Domain | 338 | kaspersky.com |
|
| Details | 147 | intelreports@kaspersky.com |
||
| Details | File | 8 | error.jsp |
|
| Details | File | 1 | resourcesverificaton.jsp |
|
| Details | File | 1 | resourceverificaton.jsp |
|
| Details | File | 1 | zimletcore.jsp |
|
| Details | File | 1 | searchx.jsp |
|
| Details | File | 1 | seachx.jsp |