Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
hiveproHive ProHIVEPRO:142963EA0A554F0C7126026AE84EC9DD
HistoryMar 27, 2024 - 5:12 a.m.

Attacks, Vulnerabilities and Actors 18 to 24 March 2024

2024-03-2705:12:55
Hive Pro
www.hivepro.com
13
hiveforce labs
cyberattacks
vulnerabilities
shadowsyndicate
aiohttp library
jetbrains teamcity
malwares
threat actors
poc code

7.6 High

AI Score

Confidence

Low

0.972 High

EPSS

Percentile

99.8%

JSON

For a detailed threat digest, download the pdf file here Summary HiveForce Labs recently made several significant discoveries in the realm of cybersecurity threats. In the past week alone, a total of fifteen attacks were executed, eight vulnerabilities were uncovered, and five active adversaries were identified. These findings underscore the persistent danger of cyberattacks. Furthermore, HiveForce Labs uncovered a cybercriminal group ShadowSyndicate, aiming to exploit Aiohttp library vulnerability CVE-2024-23334 to access sensitive data on servers globally. Meanwhile, critical vulnerabilities in JetBrains TeamCity (CVE-2024-27198, CVE-2024-27199), allow attackers to disseminate various malwares such as Jasmin ransomware, XMRig cryptominers, SparkRAT backdoor, and remote access trojans (RATs). Since the emergence of proof-of-concept (PoC) code for both vulnerabilities, multiple threat actors have been identified exploiting them in their malicious activities. Subscribe to receive our weekly threat digests and newsletters directly in your inbox.

Related

nuclei 3
hivepro 3
attackerkb 3
trendmicroblog 1
metasploit 1
thn 5
rapid7blog 3
wizblog 1
nessus 10
malwarebytes 1
packetstorm 1
nvd 3
githubexploit 15
f5 1
cisa_kev 1
prion 3
cvelist 3
cve 3
veracode 1
ubuntucve 1
osv 3
github 1
wolfi 1
alpinelinux 1
cgr 1
debiancve 1
redhatcve 1
openvas 6
redos 1
fedora 2
ibm 5
redhat 4
securelist 1
nuclei
nuclei
TeamCity < 2023.11.4 - Authentication Bypass
2024-03-04 20:33:19
TeamCity < 2023.11.4 - Authentication Bypass
2024-03-04 20:18:08
aiohttp - Directory Traversal
2024-02-28 04:56:41
hivepro
hivepro
TeamCity Vulnerabilities Unleash Jasmin Ransomware and More
2024-03-23 02:00:31
Critical Vulnerabilities Discovered in TeamCity, Enable Server Takeover
2024-03-06 17:21:03
Attacks, Vulnerabilities and Actors 4 to 10 March 2024
2024-03-13 07:25:00
attackerkb
attackerkb
CVE-2024-27198
2024-03-04 00:00:00
CVE-2024-27199
2024-03-04 00:00:00
CVE-2024-23334
2024-01-29 00:00:00
trendmicroblog
trendmicroblog
TeamCity Vulnerability Exploits Lead to Jasmin Ransomware, Other Malware Types
2024-03-19 00:00:00
metasploit
metasploit
JetBrains TeamCity Unauthenticated Remote Code Execution
2024-03-01 16:42:59
thn
thn
CISA Warns of Actively Exploited JetBrains TeamCity Vulnerability
2024-03-08 06:13:00
Critical JetBrains TeamCity On-Premises Flaws Could Lead to Server Takeovers
2024-03-05 03:34:00
TeamCity Flaw Leads to Surge in Ransomware, Cryptomining, and RAT Attacks
2024-03-20 11:26:00
rapid7blog
rapid7blog
What’s New in Rapid7 Products & Services: Q1 2024 in Review
2024-04-04 13:00:00
CVE-2024-27198 and CVE-2024-27199: JetBrains TeamCity Multiple Authentication Bypass Vulnerabilities (FIXED)
2024-03-04 19:17:01
Metasploit Wrap-Up 03/15/2024
2024-03-15 18:20:02
wizblog
wizblog
Authentication bypass vulnerabilities in TeamCity: everything you need to know
2024-03-06 16:49:16
nessus
nessus
TeamCity Server < 2023.11.4 Multiple Vulnerabilities
2024-03-05 00:00:00
JetBrains TeamCity Authentication Bypass (CVE-2024-27198)
2024-03-05 00:00:00
JetBrains TeamCity Path Traversal (CVE-2024-27199)
2024-03-08 00:00:00
malwarebytes
malwarebytes
Update now! JetBrains TeamCity vulnerability abused at scale
2024-03-08 12:08:35
packetstorm
packetstorm
JetBrains TeamCity Unauthenticated Remote Code Execution
2024-03-14 00:00:00
nvd
nvd
CVE-2024-27199
2024-03-04 18:15:09
CVE-2024-27198
2024-03-04 18:15:09
CVE-2024-23334
2024-01-29 23:15:08
githubexploit
githubexploit
Exploit for Authentication Bypass Using an Alternate Path or Channel in Jetbrains Teamcity
2024-04-22 22:14:24
Exploit for Path Traversal in Aiohttp
2024-06-17 16:28:35
Exploit for Authentication Bypass Using an Alternate Path or Channel in Jetbrains Teamcity
2024-03-09 22:04:07
f5
f5
K000139353 : aiohttp vulnerability CVE-2024-23334
2024-04-19 00:00:00
cisa_kev
cisa_kev
JetBrains TeamCity Authentication Bypass Vulnerability
2024-03-07 00:00:00
prion
prion
Path traversal
2024-03-04 18:15:00
Directory traversal
2024-01-29 23:15:00
Authentication flaw
2024-03-04 18:15:00
cvelist
cvelist
CVE-2024-27199
2024-03-04 17:21:40
CVE-2024-27198
2024-03-04 17:21:39
CVE-2024-23334 aiohttp.web.static(follow_symlinks=True) is vulnerable to directory traversal
2024-01-29 22:41:39
cve
cve
CVE-2024-27199
2024-03-04 18:15:09
CVE-2024-27198
2024-03-04 18:15:09
CVE-2024-23334
2024-01-29 23:15:08
veracode
veracode
Path Traversal
2024-01-30 07:29:34
ubuntucve
ubuntucve
CVE-2024-23334
2024-01-29 00:00:00
osv
osv
aiohttp is vulnerable to directory traversal
2024-01-29 22:31:03
PYSEC-2024-24
2024-01-29 23:15:00
CVE-2024-23334
2024-01-29 23:15:08
github
github
aiohttp is vulnerable to directory traversal
2024-01-29 22:31:03
wolfi
wolfi
CVE-2024-23334 vulnerabilities
2024-07-05 09:08:40
alpinelinux
alpinelinux
CVE-2024-23334
2024-01-29 23:15:08
cgr
cgr
CVE-2024-23334 vulnerabilities
2024-05-19 03:07:16
debiancve
debiancve
CVE-2024-23334
2024-01-29 23:15:08
redhatcve
redhatcve
CVE-2024-23334
2024-01-30 09:21:32
openvas
openvas
Fedora: Security Advisory for python-aiohttp (FEDORA-2024-f249b74f03)
2024-02-05 00:00:00
aiohttp < 3.9.2 Multiple Vulnerabilities - Linux
2024-05-03 00:00:00
aiohttp < 3.9.2 Multiple Vulnerabilities - Windows
2024-05-03 00:00:00
redos
redos
ROS-20240423-07
2024-04-23 00:00:00
fedora
fedora
[SECURITY] Fedora 38 Update: python-aiohttp-3.9.3-1.fc38
2024-02-09 01:52:27
[SECURITY] Fedora 39 Update: python-aiohttp-3.9.3-1.fc39
2024-02-05 01:27:09
ibm
ibm
Security Bulletin: IBM Storage Fusion HCI is vulnerable to HTTP request smuggling, denial of server due to aiohttp, cryptography.
2024-05-11 16:56:18
Security Bulletin: IBM Storage Fusion is vulnerable to HTTP request smuggling, denial of server due to aiohttp, cryptography.
2024-05-11 16:56:44
Security Bulletin: Multiple Vulnerabilities in CloudPak for AIOps
2024-02-28 17:30:04
redhat
redhat
(RHSA-2024:1536) Moderate: Satellite 6.14.3 Async Security Update
2024-03-27 13:14:03
(RHSA-2024:1640) Moderate: Red Hat Ansible Automation Platform 2.4 Product Security and Bug Fix Update
2024-04-02 19:19:20
(RHSA-2024:1878) Moderate: RHUI 4.8 Release - Security Updates, Bug Fixes, and Enhancements
2024-04-18 00:58:43
securelist
securelist
Exploits and vulnerabilities in Q1 2024
2024-05-07 10:00:39

7.6 High

AI Score

Confidence

Low

0.972 High

EPSS

Percentile

99.8%

JSON
Related for HIVEPRO:142963EA0A554F0C7126026AE84EC9DD
nuclei3hivepro3attackerkb3trendmicroblog1metasploit1thn5rapid7blog3wizblog1nessus10malwarebytes1packetstorm1nvd3githubexploit15f51cisa_kev1prion3cvelist3cve3veracode1ubuntucve1osv3github1wolfi1alpinelinux1cgr1debiancve1redhatcve1openvas6redos1fedora2ibm5redhat4securelist1