CVE-2024-55956: Zero-Day Vulnerability in Cleo Software Could Lead to Data Theft
Tags
| attack-pattern: | Data Malware - T1587.001 Malware - T1588.001 Powershell - T1059.001 Server - T1583.004 Server - T1584.004 Software - T1592.002 Powershell - T1086 |
Common Information
| Type | Value |
|---|---|
| UUID | c10c6ab7-2b29-4e09-90ef-1f42b2ec4e28 |
| Fingerprint | d42518392f31d781 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Dec. 13, 2024, midnight |
| Added to db | Dec. 17, 2024, 10:32 p.m. |
| Last updated | Dec. 18, 2024, 8:24 p.m. |
| Headline | CVE-2024-55956: Zero-Day Vulnerability in Cleo Software Could Lead to Data Theft |
| Title | CVE-2024-55956: Zero-Day Vulnerability in Cleo Software Could Lead to Data Theft |
| Detected Hints/Tags/Attributes | 35/1/33 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://www.cybereason.com/blog/cve-2024-55956-cleo-vulnerability |
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 290 | ✔ | Blog | https://www.cybereason.com/blog/rss.xml | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 10 | cve-2024-55956 |
|
| Details | CVE | 48 | cve-2024-50623 |
|
| Details | File | 8 | healthcheck.txt |
|
| Details | File | 10 | healthchecktemplate.txt |
|
| Details | File | 4 | 60282967-dc91-40ef-a34c-38e992509c2c.xml |
|
| Details | sha256 | 3 | 6705eea898ef1155417361fa71b1078b7aaab61e7597d2a080aa38df4ad87b1c |
|
| Details | IPv4 | 20 | 5.8.0.24 |
|
| Details | IPv4 | 29 | 5.8.0.21 |
|
| Details | IPv4 | 1 | 45.182.189.102 |
|
| Details | IPv4 | 3 | 216.245.221.83 |
|
| Details | IPv4 | 3 | 92.51.2.221 |
|
| Details | IPv4 | 3 | 67.220.94.173 |
|
| Details | IPv4 | 3 | 184.107.3.70 |
|
| Details | IPv4 | 1 | 186.162.118.133 |
|
| Details | IPv4 | 1 | 186.128.224.0 |
|
| Details | IPv4 | 1 | 186.136.204.137 |
|
| Details | IPv4 | 1 | 58.180.61.138 |
|
| Details | IPv4 | 1 | 45.140.145.68 |
|
| Details | IPv4 | 1 | 6.149.249.226 |
|
| Details | IPv4 | 7 | 192.119.99.42 |
|
| Details | IPv4 | 1 | 176.123.4.226 |
|
| Details | IPv4 | 1 | 80.82.78.42 |
|
| Details | IPv4 | 1 | 176.125.101.115 |
|
| Details | IPv4 | 1 | 45.182.189.226 |
|
| Details | IPv4 | 3 | 185.162.128.100 |
|
| Details | IPv4 | 1 | 185.162.128.219 |
|
| Details | IPv4 | 1 | 6.184.168.25 |
|
| Details | IPv4 | 6 | 181.214.147.164 |
|
| Details | IPv4 | 1 | 209.127.121.38 |
|
| Details | IPv4 | 3 | 89.248.172.139 |
|
| Details | IPv4 | 1 | 5.149.228.109 |
|
| Details | IPv4 | 1 | 176.123.4.146 |
|
| Details | IPv4 | 5 | 176.123.5.126 |