216.73.217.80

CVE-2024-4577 Exploits in the Wild One Day After Disclosure

· Published 11/07/2024 20:35 · Modified 12/07/2024 06:33

Export JSON

Essential information

Published
11/07/2024 20:35
Modified
12/07/2024 06:33
Tags
2024-07-11 CVE-2024-4577 cryptominer gh0st rat muhstik php injection rat redtail vulnerability xmrig
Related entities
17 observables, 11 techniques (mitre), 4 malware

Description

One of the most recent examples of this onslaught lies in a critical discovered in PHP (versions 8.1.*, before 8.1.29, 8.2.* before 8.2.20, and 8.3.* before 8.3.8). The is caused by the way PHP and CGI handlers parse certain Unicode characters, which can enable an attacker to achieve remote code execution (RCE). This is incredibly simple to exploit, and we have observed a wide variety of threat actors taking advantage of the flaw to target vulnerable devices.

External references