Intel Name: Cve-2024-50623 exploitation attempt – cleo
Date of Scan: December 16, 2024
Impact: Medium
Summary: CVE-2024-50623 Exploitation Attempt – Cleo refers to a security vulnerability within the Cleo software suite that is being targeted by attackers. The exploitation attempt is identified by monitoring for a “cmd.exe” process launching from Cleo’s software, which is often indicative of malicious activity. Additionally, a suspicious PowerShell command line associated with the process is a key sign of exploitation. This type of behavior suggests that an attacker might be attempting to execute arbitrary commands or gain unauthorized access to the system using the vulnerability.