安全热点周报:Windows 内核漏洞现被利用来获取系统权限
Tags
country: Japan
attack-pattern: Data Vulnerabilities - T1588.006
Common Information
Type Value
UUID 31febc35-5321-4016-856f-b9d917f987ed
Fingerprint 16d6715673a4e7d4
Analysis status DONE
Considered CTI value 2
Text language
Published Dec. 17, 2024, midnight
Added to db Dec. 23, 2024, 12:10 p.m.
Last updated Dec. 23, 2024, 7:07 p.m.
Headline 安全热点周报:Windows 内核漏洞现被利用来获取系统权限
Title 安全热点周报:Windows 内核漏洞现被利用来获取系统权限
Detected Hints/Tags/Attributes 20/2/30
Attributes
Details Type #Events CTI Value
Details CVE 5
cve-2024-56337
Details CVE 16
cve-2024-50379
Details CVE 13
cve-2024-12356
Details CVE 13
cve-2024-55956
Details CVE 49
cve-2024-50623
Details CVE 13
cve-2024-20767
Details CVE 19
cve-2024-35250
Details Domain 196
www.securityweek.com
Details Domain 3
www.cert.org.cn
Details Domain 163
therecord.media
Details Domain 297
mp.weixin.qq.com
Details Domain 23
www.tc260.org.cn
Details File 12
mskssrv.sys
Details File 162
www.cer
Details File 1
20241218184234131217571_.html
Details File 1
1734600988560096913.pdf
Details IPv4 21
5.8.0.24
Details Url 1
https://www.bleepingcomputer.com/news/security/beyondtrust-says-hackers-breached-remote-support-saas-instances
Details Url 1
https://www.bleepingcomputer.com/news/security/clop-ransomware-claims-responsibility-for-cleo-data-theft-attacks
Details Url 1
https://www.securityweek.com/cisa-warns-of-exploited-adobe-coldfusion-windows-vulnerabilities
Details Url 1
https://www.bleepingcomputer.com/news/security/windows-kernel-bug-now-exploited-in-attacks-to-gain-system-privileges
Details Url 1
https://www.cert.org.cn/publish/main/49/2024/20241218184234131217571/20241218184234131217571_.html
Details Url 1
https://therecord.media/kadokawa-japan-reported-ransomware-payment
Details Url 1
https://techcrunch.com/2024/12/17/meta-fined-263m-over-2018-security-breach-that-affected-3m-eu-users
Details Url 1
https://mp.weixin.qq.com/s/xnsrl0wic9vgndaupkgbza
Details Url 1
https://www.tc260.org.cn/upload/2024-12-19/1734600988560096913.pdf
Details Url 1
https://mp.weixin.qq.com/s/p9czs2pco2jeur2vn9pspq
Details Url 1
https://www.cisa.gov/news-events/directives/bod-25-01-implementation-guidance-implementing-secure-practices-cloud-services
Details Url 1
https://www.cisa.gov/resources-tools/resources/national-cyber-incident-response-plan-update-public-comment-draft
Details Url 1
https://mp.weixin.qq.com/s/cwqduszlgqvtrjd0w55a_g