CISA Added Cleo Vulnerabilities to its Known Exploited Vulnerabilities Catalog (CVE-2024-50623 & CVE-2024-55956) – Qualys ThreatPROTECT
Tags
| attack-pattern: | Data Powershell - T1059.001 Software - T1592.002 Vulnerabilities - T1588.006 Powershell - T1086 |
Common Information
| Type | Value |
|---|---|
| UUID | 78e3e0f4-2709-42fe-8b22-8ca6b258eb22 |
| Fingerprint | 9437b0d365b38a83 |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | Dec. 18, 2024, 5:55 a.m. |
| Added to db | Dec. 18, 2024, 3:08 p.m. |
| Last updated | Dec. 18, 2024, 8:24 p.m. |
| Headline | CISA Added Cleo Vulnerabilities to its Known Exploited Vulnerabilities Catalog (CVE-2024-50623 & CVE-2024-55956) |
| Title | CISA Added Cleo Vulnerabilities to its Known Exploited Vulnerabilities Catalog (CVE-2024-50623 & CVE-2024-55956) – Qualys ThreatPROTECT |
| Detected Hints/Tags/Attributes | 26/1/11 |
Source URLs
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 254 | ✔ | Qualys ThreatPROTECT | https://threatprotect.qualys.com/feed/ | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 48 | cve-2024-50623 |
|
| Details | CVE | 10 | cve-2024-55956 |
|
| Details | File | 2 | c:\lexicom\logs\lexicom.xml |
|
| Details | File | 10 | healthchecktemplate.txt |
|
| Details | File | 2 | lexicom6836057879780436035.tmp |
|
| Details | File | 12 | main.xml |
|
| Details | IPv4 | 29 | 5.8.0.21 |
|
| Details | IPv4 | 20 | 5.8.0.24 |
|
| Details | Url | 1 | https://support.cleo.com/hc/en-us/articles/28408134019735-cleo-product-security-update-cve-2024-55956 |
|
| Details | Url | 2 | https://support.cleo.com/hc/en-us/articles/27140294267799-cleo-product-security-advisory-cve-2024-50623 |
|
| Details | Url | 1 | https://www.huntress.com/blog/threat-advisory-oh-no-cleo-cleo-software-actively-being-exploited-in-the-wild |