ioc[.]one - OSINT Cyber Threat Intelligence Database

Sophos UTM Preauth RCE: A Deep Dive into CVE-2020-25223 — Atredis Partners

Tags

attack-pattern:

Show in Graph

Common Information

Type	Value
UUID	e5fae8b3-5614-44c4-9a1f-e27fbc833a03
Fingerprint	270a1ad14ccf428d
Analysis status	DONE
Considered CTI value	0
Text language
Published	Aug. 18, 2021, midnight
Added to db	Jan. 18, 2023, 10:48 p.m.
Last updated	Nov. 17, 2024, 11:40 p.m.
Headline
Title	Sophos UTM Preauth RCE: A Deep Dive into CVE-2020-25223 — Atredis Partners
Detected Hints/Tags/Attributes	50/1/41

Source URLs

	Redirection	Url
Details	Source	https://www.atredis.com/blog/2021/8/18/sophos-utm-cve-2020-25223

URL Provider

Details	Provider	Source level domain
Details	atredis.com	www.atredis.com

Attributes

Details	Type	#Events	Value
Details	File	1	asg.pl
Details	File	1	asgx.pl
Details	File	16	self.dat
Details	File	1	bfs.dat
Details	File	1	yank.py
Details	File	1	bfs.py
Details	File	1	bfs_extract.py
Details	File	1	confd-debug.log
Details	File	1	webadmin.log
Details	File	6	test.pl
Details	Github username	1	the6p4c
Details	IPv4	1	192.168.50.15
Details	IPv4	1	192.168.50.178
Details	IPv4	5	1.5.1.1
Details	IPv4	2	192.168.50.17
Details	IPv4	1441	127.0.0.1
Details	IPv4	619	0.0.0.0
Details	Url	1	http://www.astaro.com/doc/astaro-license.txt
Details	Url	1	https://192.168.50.15:4444
Details	Url	1	https://paper.seebug.org/1397
Details	Url	1	https://github.com/the6p4c/bfs_extract
Details	Url	1	https://192.168.50.17:4444
Details	Url	2	https://192.168.50.17
Details	CVE	6	cve-2020-25223
Details	Domain	3	www.astaro.com
Details	Domain	23	paper.seebug.org
Details	Domain	1	libperl.so
Details	Domain	4128	github.com
Details	Domain	12	self.data
Details	Domain	1	bfs.open
Details	Domain	1	bfs.data
Details	Domain	1	yank.py
Details	Domain	1	bfs.py
Details	Domain	1	vevay.pm
Details	Domain	1	single.pm
Details	Domain	2	session.pm
Details	Domain	1	file.pm
Details	Domain	3	test.pl
Details	Domain	12	regex101.com
Details	File	1	astaro-license.txt
Details	File	2	webadmin.pl