CVE-2023-3595

Vulnerability updated 7 months ago (2024-05-04T18:34:05.684Z)

Download STIX

Preview STIX

Not enough context has been learned about CVE-2023-3595 for a description yet. However we're tracking it as a Vulnerability profile. Vulnerability: A flaw in software design or implementation

Description last updated:

What's your take? (Question 1 of 1)

Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.

Aliases We are not currently tracking any aliases

Miscellaneous Associations

Other elements of context that could aid in the identification of relevance

Analyst Notes & Discussion

Be the first to leave your mark here! Log in to share your views and vote.

Associated Malware

To see the evidence that has resulted in these malware associations, create a free account

Alias Description	Association Type	Votes
The Trisis Malware is associated with CVE-2023-3595. TRISIS, also known as TRITON, is a particularly dangerous form of malware that targets safety instrumented systems (SIS) of industrial facilities. It was first identified in 2017 when it targeted a petrochemical facility in Saudi Arabia. The malware specifically attacked Triconex SIS controllers, wh	Unspecified	2

Associated Threat Actors

To see the evidence that has resulted in these threatActor associations, create a free account

Alias Description	Association Type	Votes
The XENOTIME Threat Actor is associated with CVE-2023-3595. XENOTIME is a threat actor group that has been active since late 2018, gaining notoriety for its malicious cyber activities. The group was initially referred to as TEMP.Veles by FireEye, but this terminology was later replaced with the more cryptic "TRITON actor". Meanwhile, cybersecurity firm Drago	Unspecified	2

Source Document References

Information about the CVE-2023-3595 Vulnerability was read from the documents corpus below. This display is limited to 20 results, create a free account to see more

Source Link	CreatedAt	Title
DARKReading	5 months ago	Rockwell's ICS Directive Comes As Critical Infrastructure Risk Peaks
CERT-EU	a year ago	Multiple vulnerabilities in Rockwell Automation ControlLogix EtherNet/IP (ENIP) communication modules
Securityaffairs	a year ago	US CISA warns of Rockwell Automation ControlLogix flaws
CERT-EU	a year ago	Rockwell Automation ControlLogix Flaws Expose ICS Devices to RCE & DoS Attacks
BankInfoSecurity	a year ago	Critical Rockwell OT Bugs Fixed to Prevent Novel APT Exploit
CERT-EU	a year ago	Critical RCE Vulnerability in Rockwell Automation PLCs Zaps ICS
CERT-EU	a year ago	APT Exploit Targeting Rockwell Automation Flaws Threatens Critical Infrastructure
CERT-EU	a year ago	Rockwell Automation exploit spurs fears of critical infrastructure security
CERT-EU	a year ago	APT Exploit Targeting Rockwell Automation Flaws Threatens Critical Infrastructure
CERT-EU	a year ago	Rockwell Automation Select Communication Modules \| CISA