Sensor Intel Series: Top CVEs in May 2023
ATT&CK techniques detected
T1190Exploit Public-Facing Application
97%
"twice the attack traffic of any other cve. also in the top ten were two vulnerabilities which were only recently added to our list of signatures : cve - 2022 - 24847, a geoserver remote code execution ( rce ) vulnerability that we added in may, and cve - 2021 - 26855, one of the …"
Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.
No matches for .
Loading techniques…
T1190Exploit Public-Facing Application
83%
"cve - 2020 - 25078, a remote administrator password disclosure vulnerability in d - link ip cameras, has begun to grow again after declining from a local high in february 2023. we will be watching to see whether it reaches new heights or subsides again. figure 3. traffic volume b…"
Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.
No matches for .
Loading techniques…
T1190Exploit Public-Facing Application
52%
"2020 - 8958 is apparent. it is also notable, however, just how many microsoft exchange server vulnerabilities are present : four out of the top ten ( or really five out of the top eleven, since we can ’ t distinguish cve - 2022 - 41040 from cve - 2021 - 34473 with these logs ) ar…"
Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.
No matches for .
Loading techniques…
Summary
Relative stability in attacker activity this past month serves to highlight the ongoing importance of Exchange Server vulnerabilities and poorly-secured IoT devices to attackers.