TTPwire Vol. 1 · MITRE ATT&CK·Tagged

← All stories

F5 Labs

Sensor Intel Series: Top CVEs in January 2024

2024-02-20 · Read original ↗

ATT&CK techniques detected

5 predictions
T1190Exploit Public-Facing Application
96%
"cve - 2017 - 10271, a remote code execution flaw in oracle weblogic server ( cvss 7. 5, epss 97. 4 % ). 8 note that they all have epss scores above 97 %. despite the fact that we deliberately focused on adding signatures for prominent, high - risk cves, few of them showed a lot o…"
T1059.004Unix Shell
96%
"time we ’ re seeing any of these newly added, high - profile cves show up. second row, far right is cve - 2014 - 6271, an os command injection vulnerability more commonly known as shellshock / bashdoor. shellshock shows more targeting variability from month to month than most cve…"
T1190Exploit Public-Facing Application
92%
"info exposure vulnerability in the web interface of certain cisco routers ( cvss 7. 5, epss 97. 6 % ). 2 - cve - 2014 - 6271, also known as shellshock, an os command injection vulnerability in bash ( cvss 9. 8, epss 97. 6 % ). 3 - cve - 2020 - 5902, a path traversal vulnerability…"
T1588.006Vulnerabilities
68%
"##41 has retained some interest whereas 2016 - 4945 has been untargeted since august. figure 2. evolution of vulnerability targeting in the last twelve months. recent months have seen less dramatic change in this view than we observed in summer months. long term trends figure 3 s…"
T1588.006Vulnerabilities
33%
"sensor intel series : top cves in january 2024 the sensor intel series is created in partnership with efflux, who maintains a globally distributed network of sensors from which we derive attack telemetry. introduction welcome to the january 2024 installment of the sensor intellig…"

Summary

More IoT Targeting, plus a bunch of new CVEs! See what attackers went after in January 2024.