Sensor Intel Series: Top CVEs in April 2023
ATT&CK techniques detected
T1190Exploit Public-Facing Application
98%
"months is clear. the decline in cve - 2020 - 25078 ( second row, third column ) is also interesting, as it previously diminished in popularity only to resurge to a new peak in february 2023. its subsequent subsidence to only 25 connections last month is further evidence about the…"
Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.
No matches for .
Loading techniques…
T1190Exploit Public-Facing Application
61%
"- 24847 is an improper input validation vulnerability in an open source server named geoserver. this vulnerability allows for an unchecked jndi lookup, which can lead to remote code execution through class deserialization. 1 this brings the total number of cves whose exploitation…"
Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.
No matches for .
Loading techniques…
Summary
A new vuln popped up in our traffic this month, as well as lots of the same old CVEs—IoT and Microsoft Exchange.