CVE Advisory: CVE-2024-3094 - Security Compromise in XZ Utils
Tags
attack-pattern: Data Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Software - T1592.002 Ssh - T1021.004
Show in Graph
Common Information
Type Value
UUID 765bf949-bfde-41e0-ace6-ea6839a037ea
Fingerprint e5ed1839c8916719
Analysis status DONE
Considered CTI value 0
Text language
Published April 2, 2024, midnight
Added to db Aug. 31, 2024, 10:42 a.m.
Last updated Nov. 17, 2024, 1:49 p.m.
Headline CVE Advisory: CVE-2024-3094 - Security Compromise in XZ Utils
Title CVE Advisory: CVE-2024-3094 - Security Compromise in XZ Utils
Detected Hints/Tags/Attributes 37/1/14
Source URLs
Redirection Url
Details Source https://www.zscaler.com/blogs/security-research/cve-advisory-cve-2024-3094-security-compromise-xz-utils
URL Provider
Details Provider Source level domain
Details zscaler.com www.zscaler.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 406 Security Research | Blog Category Feed https://www.zscaler.com/blogs/feeds/security-research 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details CVE 38 
cve-2024-3094
Details Domain 37 
www.redhat.com
Details Domain 6 
vulcan.io
Details Domain 1 
news.opensuse.org
Details Domain 2 
pkgs.alpinelinux.org
Details Domain 54 
lists.debian.org
Details File 12 
bad-3-corrupt_lzma2.xz
Details File 2 
msg00057.html
Details Url 1 
https://jfrog.com/blog/xz-backdoor-attack-cve-2024-3094-all-you-need-to-know/#who
Details Url 1 
https://www.redhat.com/en/blog/urgent-security-alert-fedora-41-and-rawhide-users
Details Url 1 
https://vulcan.io/blog/alert-cve-2024-3094
Details Url 1 
https://news.opensuse.org/2024/03/29/xz-backdoor
Details Url 1 
https://pkgs.alpinelinux.org/package/edge/main/x86/xz
Details Url 2 
https://lists.debian.org/debian-security-announce/2024/msg00057.html