Akira Ransomware – Active IOCs

April 22, 2025

ICS: Multiple Hitachi Ops Center Vulnerabilities

April 22, 2025

Multiple GitLab Products Vulnerabilities

April 22, 2025

Severity

Low

Analysis Summary

CVE-2023-5117 CVSS:3.7

GitLab could allow a remote attacker to obtain sensitive information, caused by incompatible policies. By using a direct link to the uploaded file URL, an attacker could exploit this vulnerability to obtain sensitive information.

CVE-2024-10043 CVSS:3.1

GitLab could allow a remote authenticated attacker to obtain sensitive information. By sending a specially crafted request, an attacker could exploit this vulnerability to view confidential incident title through the Wiki History Diff feature.

Impact

Information Disclosure

Indicators of Compromise

CVE

CVE-2023-5117
CVE-2024-10043

Affected Vendors

GitLab

Affected Products

GitLab

Remediation

Upgrade to the latest version of GitLab, available from the GitLab Website.

CVE-2023-5117

CVE-2024-10043

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

The SocGholish-RansomHub Connection – Active IOCs

Wanna Cryptor aka WannaCry Ransomware – Active IOCs

New ‘Power Parasites’ Phishing Campaign Targets Energy Firms and Leading Brands – Active IOCs

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

Akira Ransomware – Active IOCs

ICS: Multiple Hitachi Ops Center Vulnerabilities

Severity

Low

Analysis Summary

Indicators of Compromise

CVE

Affected Vendors

Affected Products

Remediation

The Wait Is Over!

The Rewterz Annual Threat Intelligence Report 2024 is finally here.