CVE-2018-4878

Vulnerability updated 7 months ago (2024-05-04T17:53:11.044Z)

Download STIX

Preview STIX

Not enough context has been learned about CVE-2018-4878 for a description yet. However we're tracking it as a Vulnerability profile. Vulnerability: A flaw in software design or implementation

Description last updated:

What's your take? (Question 1 of 1)

Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.

Aliases We are not currently tracking any aliases

Miscellaneous Associations

Other elements of context that could aid in the identification of relevance

Vulnerability

Analyst Notes & Discussion

Be the first to leave your mark here! Log in to share your views and vote.

Associated Threat Actors

To see the evidence that has resulted in these threatActor associations, create a free account

Alias Description	Association Type	Votes
The ScarCruft Threat Actor is associated with CVE-2018-4878. ScarCruft, also known as APT37, Inky Squid, RedEyes, Reaper, or Group123, is a North Korean state-sponsored threat actor known for targeting high-value individuals and organizations to further North Korea's geopolitical objectives. This group has shown its agility in adopting new malware delivery me	Unspecified	2

Source Document References

Information about the CVE-2018-4878 Vulnerability was read from the documents corpus below. This display is limited to 20 results, create a free account to see more

Source Link	CreatedAt	Title
Securityaffairs	a month ago	North Korea-linked APT37 exploited IE zero-day in a recent attack
MITRE	2 years ago	APT Trends report Q1 2018
MITRE	2 years ago	New version of AZORult stealer improves loading features, spreads alongside ransomware in new campaign \| Proofpoint
Securityaffairs	2 years ago	North Korea-linked ScarCruft APT uses large LNK files in infection chains