Nation-state actor exploited three Ivanti CSA zero-days
Tags
attack-pattern: Cloud Services - T1021.007 Credentials - T1589.001 Web Shell - T1505.003 Tool - T1588.002 Vulnerabilities - T1588.006 Connection Proxy - T1090 Rootkit - T1014 Web Shell - T1100 Rootkit
Show in Graph
Common Information
Type Value
UUID e6a27a80-57da-4950-bfef-822df2295179
Fingerprint b4b19415ea8253af
Analysis status DONE
Considered CTI value 2
Text language
Published Oct. 14, 2024, 4:58 p.m.
Added to db Oct. 14, 2024, 7:58 p.m.
Last updated Nov. 15, 2024, 7:43 a.m.
Headline UNKNOWN
Title Nation-state actor exploited three Ivanti CSA zero-days
Detected Hints/Tags/Attributes 34/1/9
Source URLs
Redirection Url
Details Source https://securityaffairs.com/169778/apt/ivanti-cloud-service-appliance-three-zero.html
URL Provider
Details Provider Source level domain
Details securityaffairs.com securityaffairs.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 486 Security Affairs https://securityaffairs.com/feed 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details CVE 41 
cve-2024-9380
Details CVE 85 
cve-2024-8190
Details CVE 70 
cve-2024-8963
Details Domain 65 
www.fortiguard.com
Details File 12 
reports.php
Details File 13 
help.php
Details File 9 
datetimetab.php
Details File 2 
syslog.php
Details Url 2 
https://www.fortiguard.com/threat-signal-report/5556.