growth
Essential information
- Confidence
- 100/100
- Is family
- No
- Published
- 20/12/2025 19:48
- Modified
- 21/12/2025 07:45
- Revoked
- No
- Author / Source
- AlienVault
- Related entities
- 6 attack patterns (mitre), 1 intrusion sets (apt), 1 sectors, 1 indicators, 52 vulnerabilities (cve), 1 reports
Description
No description.
Marking (TLP)
TLP:CLEAR
Related entities
Attack patterns, malware, vulnerabilities, indicators, intrusion sets and other entities linked to this malware.
Attack patterns (MITRE) (6)
Intrusion sets (APT) (1)
-
The MITRE Corporation Confidence 100
[APT38](https://attack.mitre.org/groups/G0082) is a North Korean state-sponsored threat group that specializes in financial cyber operations; it has been attributed to the Reconnaissance General Bureau.(Citation: CISA AA20-239A BeagleBoyz August 2020)…
First seen 01/01/1970 · Last seen 16/11/5138 ·
Sectors (1)
-
Finance targets
Indicators (1)
Vulnerabilities (CVE) (52)
In shouldHideDocument of ExternalStorageProvider.java, there is a possible bypass of a file path filter designed to prevent access to sensitive directories due …
- Attack vector
- Local
- Published
- 07/11/2024
- Modified
- 21/12/2025
Type confusion in ANGLE in Google Chrome prior to 124.0.6367.78 allowed a remote attacker to potentially exploit heap corruption via a crafted …
- Attack vector
- NETWORK
- Published
- 01/05/2024
- Modified
- 21/12/2025
An attacker can manipulate file upload params to enable paths traversal and under some circumstances this can lead to uploading a malicious …
- Attack vector
- NETWORK
- Published
- 07/12/2023
- Modified
- 21/12/2025
In PHP versions 8.1.* before 8.1.29, 8.2.* before 8.2.20, 8.3.* before 8.3.8, when using Apache and PHP-CGI on Windows, if the system …
- Attack vector
- Network
- Published
- 12/06/2024
- Modified
- 21/12/2025
Apache ActiveMQ contains a deserialization of untrusted data vulnerability that may allow a remote attacker with network access to a broker to …
- Attack vector
- Network
- Published
- 02/11/2023
- Modified
- 21/12/2025
Apple iOS, iPadOS, macOS, tvOS, and Safari WebKit contain a type confusion vulnerability that leads to code execution when processing maliciously crafted …
- Attack vector
- Network
- Complexity
- LOW
- Published
- 23/01/2024
- Modified
- 04/04/2026
ownCloud graphapi contains an information disclosure vulnerability that can reveal sensitive data stored in phpinfo() via GetPhpInfo.php, including administrative credentials.
- Attack vector
- Network
- Published
- 30/11/2023
- Modified
- 21/12/2025
D-Link DIR-859 routers contain a path traversal vulnerability in the file /hedwig.cgi of the component HTTP POST Request Handler. Manipulation of the …
- Attack vector
- Network
- Published
- 25/06/2025
- Modified
- 21/12/2025
RARLAB WinRAR contains an unspecified vulnerability that allows an attacker to execute code when a user attempts to view a benign file …
- Attack vector
- Local
- Published
- 24/08/2023
- Modified
- 27/05/2026
Citrix NetScaler ADC and NetScaler Gateway contain a buffer overflow vulnerability that allows for sensitive information disclosure when configured as a Gateway …
- Attack vector
- Network
- Published
- 18/10/2023
- Modified
- 21/12/2025
Cisco IOS and IOS XE contain an out-of-bounds write vulnerability in the Group Encrypted Transport VPN (GET VPN) feature that could allow …
- Attack vector
- Network
- Published
- 10/10/2023
- Modified
- 21/12/2025
SolarWinds Serv-U was susceptible to a directory transversal vulnerability that would allow access to read sensitive files on the host machine.
- Attack vector
- Network
- Published
- 17/07/2024
- Modified
- 28/02/2026
Reports (1)
-
6 MITREs 2 Malwares 1 APT