Lucene search
K

6 matches found

The Hacker News
The Hacker News
added 2024/10/16 10:50 a.m.65 views

North Korean ScarCruft Exploits Windows Zero-Day to Spread RokRAT Malware

The North Korean threat actor known as ScarCruft has been linked to the zero-day exploitation of a now-patched security flaw in Windows to infect devices with malware known as RokRAT. The vulnerability in question is CVE-2024-38178 CVSS score: 7.5, a memory corruption bug in the Scripting Engine...

8.8CVSS8.3AI score0.39457EPSS
Exploits0
OSV
OSV
added 2024/08/13 6:15 p.m.2 views

CVE-2024-38178

Scripting Engine Memory Corruption Vulnerability...

7.5CVSS7.3AI score0.39457EPSS
Exploits0References2
NVD
NVD
added 2024/08/13 6:15 p.m.32 views

CVE-2024-38178

Scripting Engine Memory Corruption Vulnerability...

7.5CVSS0.39457EPSS
Exploits0References2
Circl
Circl
added 2024/08/13 6:5 p.m.10 views

CVE-2024-38178

creationtimestamp| type| source ---|---|--- 2024-08-13 18:05:01+00:00| seen| https://www.thezdi.com/blog/2024/8/13/the-august-2024-security-update-review 2024-08-13 21:10:03+00:00| seen| MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123 2024-08-13 21:18:40+00:00| seen| https://t.me/cvedetector/3072...

7.5CVSS7.4AI score0.39457EPSS
Exploits0References21
Vulnrichment
Vulnrichment
added 2024/08/13 5:29 p.m.23 views

CVE-2024-38178 Scripting Engine Memory Corruption Vulnerability

...

7.5CVSS6.9AI score0.39457EPSS
Exploits0References1
CVE
CVE
added 2024/08/13 5:29 p.m.300 views

CVE-2024-38178

CVE-2024-38178 is a Microsoft Windows Scripting Engine memory corruption vulnerability that exists in Edge when running Internet Explorer mode. It enables remote code execution and is being actively exploited in the wild, with public pressure reflected in multiple advisories and exploit catalogs....

7.5CVSS7.4AI score0.39457EPSS
In wildExploits0References2Affected Software14
Rows per page
Query Builder