{"uuid": "987933b5-031c-4981-9672-ec9dbd5f51fa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-46805", "type": "exploited", "source": "https://t.me/KomunitiSiber/1419", "content": "Chinese Hackers Exploiting VPN Flaws to Deploy KrustyLoader Malware\nhttps://thehackernews.com/2024/01/chinese-hackers-exploiting-critical-vpn.html\n\nA pair of recently disclosed zero-day flaws in Ivanti Connect Secure (ICS) virtual private network (VPN) devices have been exploited to deliver a Rust-based payload called\u00a0KrustyLoader\u00a0that's used to drop the open-source Sliver adversary simulation tool.\nThe\u00a0security vulnerabilities, tracked as CVE-2023-46805 (CVSS score: 8.2) and CVE-2024-21887 (CVSS score: 9.1), could be abused", "creation_timestamp": "2024-01-31T08:46:59.000000Z"}