Vendor
medium
advisory
Suspicious Command Execution via Web Server on Linux
3 rules 2 TTPsIdentifies suspicious command executions via a web server on Linux systems, potentially indicating a vulnerability exploitation or remote shell access for persistence.
Elastic Defend
endpoint
linux
persistence
initial-access
vulnerability
3r
2t
high
threat
Asterisk pjproject Multiple Vulnerabilities
2 rules 4 TTPsA remote, authenticated attacker can exploit multiple vulnerabilities in Asterisk's pjproject to cause denial-of-service or memory corruption, potentially leading to code execution or security bypass.
Asterisk
voip
denial-of-service
memory-corruption
2r
4t
medium
advisory
Multiple Vulnerabilities in Asterisk Allow for Remote Denial of Service
2 rules 1 TTP 3 CVEsMultiple vulnerabilities in Asterisk versions 20.18.x before 20.19.0, 21.12.x before 21.12.2, 22.8.x before 22.9.0, 23.2.x before 23.3.0, certified-asterisk 20.x before 20.7-cert10, and certified-asterisk 22.x before 22.8-cert2 allow a remote attacker to cause a denial of service.
Asterisk versions 20.18.x +5
asterisk
voip
denial-of-service
2r
1t
3c