Why It's Not Worth Goading Us On A Friday - CVE-2022-36537 At Scale
Tags
attack-pattern: Data Datasets Model Javascript - T1059.007 Python - T1059.006 Server - T1583.004 Server - T1584.004 Software - T1592.002 Tool - T1588.002 Vulnerabilities - T1588.006
Show in Graph
Common Information
Type Value
UUID a659d040-f268-4599-a8cc-0618523d931c
Fingerprint af0215995fef1a04
Analysis status DONE
Considered CTI value 0
Text language
Published Dec. 8, 2022, midnight
Added to db Nov. 17, 2024, 12:55 p.m.
Last updated Nov. 17, 2024, 12:56 p.m.
Headline Why It's Not Worth Goading Us On A Friday - CVE-2022-36537 At Scale
Title Why It's Not Worth Goading Us On A Friday - CVE-2022-36537 At Scale
Detected Hints/Tags/Attributes 69/1/22
Source URLs
Redirection Url
Details Source https://labs.watchtowr.com/why-its-not-worth-goading-us-on-a-friday-cve-2022-36537-at-scale/
URL Provider
Details Provider Source level domain
Details watchtowr.com labs.watchtowr.com
Attributes
Details Type #Events CTI Value
Details CVE 17 
cve-2022-36537
Details Domain 1 
auuploader.java
Details Domain 54 
re.search
Details Domain 5 
scan.py
Details Domain 9 
projectdiscovery.io
Details Domain 4 
eclipse.org
Details File 1 
auuploader.java
Details File 1 
fileupload-done.html
Details File 1 
servlets.pas
Details File 1 
imagemap-done.html
Details File 1 
c:\python39\python.exe
Details File 5 
scan.py
Details IPv4 4 
9.6.0.2
Details IPv4 1 
172.7.12.219
Details IPv4 1 
192.168.70.12
Details Url 1 
http://172.7.12.219:8000
Details Url 1 
http://192.168.70.12:8000/sampleapp
Details Url 1 
http://192.168.70.12:8000/sampleapp/zkau/upload?uuid=a&dtid=z_jm_c0r5sneiljh0mqoueag&sid=&nexturi=
Details Url 1 
http://192.168.70.12:8000/sampleapp/zkau/upload?uuid=a&dtid=z_gegd0
Details Url 1 
https://eclipse.org/jetty
Details Url 1 
http://192.168.70.12:8000/zkau/upload?uuid=a&dtid=z_gegd0
Details Url 1 
http://192.168.70.12:8000/sampleapp/zkau/upload?uuid=a&dtid=z_yjpyb0aj