Vendor
medium
threat
Unusual Child Process Execution from Linux Web Servers
2 rules 4 TTPsThis rule detects unusual child process executions originating from web server processes on Linux systems, which attackers may use to maintain persistence on a compromised system by exploiting web server vulnerabilities.
Jira +20
persistence
execution
command_and_control
initial_access
linux
webserver
2r
4t
critical
threat
Eclipse Equinox OSGi Remote Code Execution Vulnerability (CVE-2023-54344)
2 rules 1 TTP 1 CVEEclipse Equinox OSGi 3.7.2 and earlier is vulnerable to remote code execution, allowing unauthenticated attackers to execute arbitrary commands by sending specially crafted payloads to the console interface, potentially leading to reverse shell creation.
Equinox OSGi
rce
cve-2023-54344
eclipse
osgi
remote-code-execution
2r
1t
1c