Register Now
Home
/
Weekly Reports
July 19, 2024

Weekly Threat & Vulnerabilities Report

Executive Summary
Trending / Critical Vulnerabilities
Exploit Activity and Mass Scanning Observed on Cytellite Sensors
Vulnerabilities abused by Botnet
Vulnerabilities Abused by Malware
PRE-NVD observed for this week
Subscribe to our Reports

Executive Summary

Trending / Critical Vulnerabilities

Current trending vulnerabilities offer insights into the latest emerging and widely discussed threats, helping to make informed decisions.

CVE-ID Type of vulnerability Severity CVSS Affected Product Exploited-in-Wild EPSS score CISA-KEV Zero-day OSS
CVE-2024-36401 Remote code execution Critical 9.8 GeoServer True 0.94638 True False True
CVE-2024-28995 Path Traversal High 8.6 SolarWinds Serv-U True 0.96002 True False False
CVE-2024-34102 Improper Restriction of XML External Entity Critical 9.8 Adobe Commerce True 0.9708 True False True
CVE-2022-22948 Information disclosure Medium 6.5 vCenter Server True 0.00777 True False False

Exploit Activity and Mass Scanning Observed on Cytellite Sensors

Telemetry collected from Loginsoft sensors were analyzed and processed to derive insights on what is actively being exploited and actively being scanned. As source of truth, source IPv4 addresses & payloads can be provided on need-to-know basis.

Vulnerabilities Product Severity Title Exploited-in-Wild CISA KEV
CVE-2024-4577 PHP-CGI on Windows Critical Critical argument injection vulnerability in PHP on Windows servers True True
CVE-2024-3273 D-Link NAS devices Critical Command Injection Vulnerability in D-Link NAS devices True True

Vulnerabilities abused by Botnet

Identified vulnerabilities exploited by botnets, including recent CVEs logged in Misp. Presenting the top 5 CVEs with payloads suggestive of botnet activities, like utilizing wget with IP addresses.

Vulnerability Product Title Exploit Abused by Botnet
CVE-2021-41773 Apache HTTP Server Path traversal vulnerability in Apache HTTP Server True Zerobot
CVE-2016-20016 MVPower CCTV DVR models Remote code execution vulnerability in MVPower CCTV DVR models True IoT-Repear

Vulnerabilities Abused by Malware

We proactively monitor the vulnerabilities which are targeted by adversaries. Each vulnerability is humanly studied and mapped with Mitre ATT&CK tactics and techniques. Source of information is derived from our vulnerability intelligence platform collected and curated information from various sources such as Twitter, Telegram, OSINT groups, Blogs, Data leak Sites and more.

Vulnerability Severity Title Patch Targeted By Malware OSS
CVE-2024-38112 High Spoofing vulnerability in Microsoft Windows MSHTML Platform True Donut loader, Atlantida stealer, Void Banshee's False

PRE-NVD observed for this week

It refers to vulnerabilities discovered and potentially exploited before their official inclusion in the National Vulnerability Database. The LOVI Platform aggregates and distributes data from open sources and social media, currently tracking over 100 security alerts and planning to expand.

CVE-ID Type of vulnerability Product Reference
CVE-2024-24737 Denial-of-Service Silicon Labs Gecko OS Resource
CVE-2024-24731 Stack-based Buffer Overflow Silicon Labs Gecko OS Resource
CVE-2024-23938 Stack-based Buffer Overflow Silicon Labs Gecko OS Resource

Subscribe to our Newsletter

Latest Reports

Latest Reports
View all our reports →
From Firewalls to Frameworks: A Week of High-Impact Exploitation
December 26, 2025
From Firewalls to Frameworks: A Week of High-Impact Exploitation
December 26, 2025
Surge in Active Exploitation Impacts Core Infrastructure and IoT Devices
December 19, 2025
Surge in Active Exploitation Impacts Core Infrastructure and IoT Devices
December 19, 2025
By using this website, you agree to the storing of cookies on your device to enhance site navigation, analyze site usage, and assist in our marketing efforts. View our Privacy Policy for more information.
Accept
Green Plus icon
Cybersecurity Solutions
Vulnerability IntelligenceSecurity & Threat Intelligence IntegrationsVulnerability & Configuration ManagementOSS - Software Composition AnalysisOSS - Dependancy DefenceOSS - Zero-Day DiscoveryThreat IntelligenceExternal Attack Surface DiscoveryCloud Security Posture ManagementCloud Workload Protection
IT Solutions
Data Science & AISoftware Development  & SupportQA AutomationStaff Augmentation
Platforms
LOVICytellite
Company
About usBlogsReportsCase StudiesGlossaryCareers
Research
Research-as-a -ServiceZero-Day Discovery
1-703-956-7410info@loginsoft.com
© 2025 - Copyright
Privacy policy