{"uuid": "54845f66-26bc-44a1-8b38-9a87007dadaa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21887", "type": "exploited", "source": "https://t.me/KomunitiSiber/1419", "content": "Chinese Hackers Exploiting VPN Flaws to Deploy KrustyLoader Malware\nhttps://thehackernews.com/2024/01/chinese-hackers-exploiting-critical-vpn.html\n\nA pair of recently disclosed zero-day flaws in Ivanti Connect Secure (ICS) virtual private network (VPN) devices have been exploited to deliver a Rust-based payload called\u00a0KrustyLoader\u00a0that's used to drop the open-source Sliver adversary simulation tool.\nThe\u00a0security vulnerabilities, tracked as CVE-2023-46805 (CVSS score: 8.2) and CVE-2024-21887 (CVSS score: 9.1), could be abused", "creation_timestamp": "2024-01-31T08:46:59.000000Z"}