ioc[.]one - OSINT Cyber Threat Intelligence Database

US-CERT Vulnerability Summary for the Week of May 22, 2023 - RedPacket Security

Tags

cmtmf-attack-pattern:	Code Injection
country:	Germany Japan
maec-delivery-vectors:	Watering Hole
attack-pattern:	Data Direct Inject Payload Model Code Injection - T1540 Confluence - T1213.001 Credentials - T1589.001 Dns - T1071.004 Dns - T1590.002 Dns Server - T1583.002 Dns Server - T1584.002 Email Addresses - T1589.002 Firmware - T1592.003 Impersonation - T1656 Javascript - T1059.007 Phishing - T1660 Phishing - T1566 Server - T1583.004 Server - T1584.004 Software - T1592.002 Ssh - T1021.004 System Firmware - T1542.001 Template Injection - T1221 Web Shell - T1505.003 Tool - T1588.002 Vulnerabilities - T1588.006 Brute Force - T1110 Connection Proxy - T1090 Hypervisor - T1062 Scripting - T1064 System Firmware - T1019 Web Shell - T1100 Denial Of Service Scripting System Firmware

Show in Graph

Common Information

Type	Value
UUID	52f3852f-cc57-46f0-88ed-0082794298b8
Fingerprint	9c225516eb17fea2
Analysis status	DONE
Considered CTI value	2
Text language
Published	May 31, 2023, 11:01 p.m.
Added to db	June 1, 2023, 12:23 a.m.
Last updated	Nov. 17, 2024, 11:40 p.m.
Headline	RedPacket Security
Title	US-CERT Vulnerability Summary for the Week of May 22, 2023 - RedPacket Security
Detected Hints/Tags/Attributes	216/4/112

Source URLs

	Redirection	Url
Details	Source	https://www.redpacketsecurity.com/cisa-vulnerability-summary-for-the-week-of-may-22-2023-2/
Details	Source	https://www.redpacketsecurity.com/cisa-vulnerability-summary-for-the-week-of-may-22-2023-3/
Details	Source	https://www.redpacketsecurity.com/cisa-vulnerability-summary-for-the-week-of-may-22-2023-4/
Details	Source	https://www.redpacketsecurity.com/cisa-vulnerability-summary-for-the-week-of-may-22-2023-5/
Details	Source	https://www.redpacketsecurity.com/cisa-vulnerability-summary-for-the-week-of-may-22-2023-6/
Details	Source	https://www.redpacketsecurity.com/cisa-vulnerability-summary-for-the-week-of-may-22-2023/

URL Provider

Details	Provider	Source level domain
Details	redpacketsecurity.com	www.redpacketsecurity.com

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	361	✔	RedPacket Security	https://www.redpacketsecurity.com/feed/	2024-08-30 22:08

Attributes

Details	Type	#Events	Value
Details	CVE	10	cve-2023-24998
Details	CVE	4	cve-2022-41946
Details	Domain	4128	github.com
Details	Domain	18	settings.py
Details	Domain	15	networking.k8s.io
Details	Domain	18	matrix.org
Details	Domain	3	weightbasedshipping.com
Details	Domain	2	chronoengine.com
Details	Domain	140	wordpress.org
Details	Domain	2	dev.xiligroup.com
Details	Domain	2	toybox.graphics
Details	Domain	3	984.ru
Details	Domain	2	012.gp
Details	Domain	2	cveprocess.apache.org
Details	Domain	6	login.do
Details	Domain	3	tarslipped2.sh
Details	Domain	2	tarslipped1.sh
Details	Domain	52	socket.io
Details	Domain	2	highlight.io
Details	Domain	2	company.security
Details	File	2	supplier.php
Details	File	2	edit_subject.php
Details	File	2	print_ticket.php
Details	File	8	html.php
Details	File	2	ant_rponse.php
Details	File	2	syncservice.exe
Details	File	15	download.aspx
Details	File	98	download.php
Details	File	73	view.php
Details	File	3	manage_task.php
Details	File	38	ajax.php
Details	File	2	save_teacher.php
Details	File	7	service.php
Details	File	4	customer.php
Details	File	3	search_teacher_result.php
Details	File	2	sys_info.php
Details	File	19	settings.py
Details	File	2	xml_security.rb
Details	File	6	home.jsp
Details	File	3	nagvishoverurl.php
Details	File	2	bufferedbitmap.ini
Details	File	10	cipher.ini
Details	File	28	home.php
Details	File	2	test_presenter.php
Details	File	674	node.js
Details	File	2	bwm-ng.js
Details	File	2	validationresult.aspx
Details	File	2	fusbhub.sys
Details	File	2	filppd.sys
Details	File	2	procobsrvesx.sys
Details	File	86	admin.php
Details	File	1206	index.php
Details	File	2	reportupload.aspx
Details	File	13	member.php
Details	File	2	templatecontroller.php
Details	File	2	article_allowurl_edit.php
Details	File	1	texteditor.php
Details	File	3	hl.exe
Details	File	207	login.php
Details	File	2	__lang_msg.php
Details	File	1	search_list.php
Details	File	2	wftpd.ini
Details	File	2	manifest.webm
Details	File	1	permalinks.php
Details	File	1	viewlog.php
Details	File	1	apiadmintagcategory.php
Details	Github username	40	apache
Details	Github username	3	freeswitch
Details	sha1	1	74e19ef0ff8061ef55957c3abd71614ef0f42f47
Details	IPv4	3	4.0.3.4
Details	IPv4	3	4.0.3.7
Details	IPv4	4	2.7.9.8
Details	IPv4	1	19.0.3.0
Details	IPv4	1	1.4.7.8
Details	IPv4	5	3.7.1.6
Details	IPv4	3	1.3.6.5
Details	IPv4	6	9.4.0.1
Details	IPv4	2	9.3.0.3
Details	IPv4	3	4.5.49.8
Details	IPv4	2	3.6.4.1
Details	IPv4	2	1.53.0.1
Details	IPv4	2	9.88.1.0
Details	IPv4	11	6.1.0.0
Details	IPv4	2	3.6.14.1
Details	IPv4	2	3.41.2.1
Details	IPv4	2	3.41.2.2
Details	IPv4	1	7.4.3.12
Details	IPv4	2	7.4.3.30
Details	IPv4	4	7.4.3.41
Details	IPv4	2	7.4.3.52
Details	IPv4	1	7.4.3.50
Details	IPv4	2	7.4.3.21
Details	IPv4	2	7.4.3.62
Details	IPv4	1	7.4.3.68
Details	IPv4	1	7.4.3.17
Details	IPv4	4	7.4.3.4
Details	IPv4	2	7.4.3.48
Details	IPv4	1	7.4.3.60
Details	IPv4	1	7.4.3.67
Details	IPv4	3	7.4.3.76
Details	IPv6	1	0::00:00:00
Details	Url	2	https://github.com/apache/inlong/pull/7836
Details	Url	2	https://github.com/apache/inlong/pull/7884
Details	Url	1	https://github.com/apache/inlong/pull/7775
Details	Url	1	https://github.com/apache/inlong/pull/7674
Details	Url	2	https://github.com/apache/inlong/pull/7799
Details	Url	1	https://github.com/apache/inlong/pull/7891
Details	Url	1	https://github.com/apache/inlong/pull/7949
Details	Url	1	https://github.com/apache/inlong/pull/7947
Details	Url	1	https://github.com/apache/inlong/pull/7805
Details	Url	1	https://cveprocess.apache.org/cve5
Details	Url	3	https://github.com/freeswitch/sofia-sip/security/advisories/ghsa-8599-x7rq-fr54