CVE-2023-29059

Description from NVD

3CX DesktopApp through 18.12.416 has embedded malicious code, as exploited in the wild in March 2023. This affects versions 18.12.407 and 18.12.416 of the Electron Windows application shipped in Update 7, and versions 18.11.1213, 18.12.402, 18.12.407, and 18.12.416 of the Electron macOS application.

Information Acquisition Date:2023-03-31T14:35Z

CVSS 2.0: 0.0 None CVSS 3.x: 0.0 None

NVD References

https://cwe.mitre.org/data/definitions/506.html
source:MISC
tags:

https://www.3cx.com/blog/news/desktopapp-security-alert/
source:MISC
tags:

https://www.fortinet.com/blog/threat-research/3cx-desktop-app-compromised
source:MISC
tags:

https://www.huntress.com/blog/3cx-voip-software-compromise-supply-chain-threats
source:MISC
tags:

Refer to Information on External Sites

CVE Infomation	Exploits or more Infomation
mitre	EXPLOIT DATABASE
NVD	0day.today
vulmon.com	github
CVE Details	Twitter
JVN ENG JPN
Reconshell

Software Tag: Windows(12 tweets)

List of frequently cited URLs

URL	Num of Times Referred to
http://cyberiqs.com/latestnews	66
https://www.fortinet.com/blog/threat-research/3cx-desktop-a...	4
https://securityonline.info/cve-2023-29059-unraveling-the-t...	3

▼ Show Information from Twitter(60)

User	URL	Info Source	Date
CVEreport	https://cve.report/CVE-2023-29059	Source CVEreport 1641487072283316229	2023/03/31
threatintelctr	https://nvd.nist.gov/vuln/detail/CVE-2023-29059	Source threatintelctr 1641492212302094336	2023/03/31
CVEnew	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29059	Source CVEnew 1641500596367679490	2023/03/31
satnam	https://www.3cx.com/blog/news/desktopapp-security-alert-upd...	Source satnam 1641503089810345984	2023/03/31
satnam	https://twitter.com/CVEnew/status/1641500596367679490	Source satnam 1641503089810345984	2023/03/31
satnam	https://nvd.nist.gov/vuln/detail/CVE-2023-29059	Source satnam 1641503444707188736	2023/03/31
satnam	https://nvd.nist.gov/vuln/detail/CVE-2023-29059	Source satnam 1641503651960340481	2023/03/31
eyeTSystems	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29059	Source eyeTSystems 1641507903637970964	2023/03/31
WolfgangSesin	http://www.sesin.at	Source WolfgangSesin 1641512137121050624	2023/03/31
WolfgangSesin	https://www.sesin.at/2023/03/30/cve-2023-29059-3cx-desktopa...	Source WolfgangSesin 1641512137121050624	2023/03/31
www_sesin_at	http://www.sesin.at	Source www_sesin_at 1641512139268521984	2023/03/31
www_sesin_at	https://www.sesin.at/2023/03/30/cve-2023-29059-3cx-desktopa...	Source www_sesin_at 1641512139268521984	2023/03/31
VulmonFeeds	http://vulmon.com/vulnerabilitydetails?qid=CVE-2023-29059	Source VulmonFeeds 1641512680979587108	2023/03/31
WolfgangSesin	http://www.sesin.at	Source WolfgangSesin 1641514457070198784	2023/03/31
WolfgangSesin	https://www.sesin.at/2023/03/30/cve-2023-29059	Source WolfgangSesin 1641514457070198784	2023/03/31
www_sesin_at	http://www.sesin.at	Source www_sesin_at 1641514459515478029	2023/03/31
www_sesin_at	https://www.sesin.at/2023/03/30/cve-2023-29059	Source www_sesin_at 1641514459515478029	2023/03/31
vulnonym	None	Source vulnonym 1641542247198932992	2023/03/31
InfoSecPhysa	https://www.fortinet.com/blog/threat-research/3cx-desktop-a...	Source InfoSecPhysa 1641623978941861891	2023/03/31
threatintelctr	https://nvd.nist.gov/vuln/detail/CVE-2023-29059	Source threatintelctr 1641673467505328128	2023/03/31
the_yellow_fall	https://securityonline.info/cve-2023-29059-unraveling-the-t...	Source the_yellow_fall 1641727215141355520	2023/03/31
Cyber_O51NT	https://www.fortinet.com/blog/threat-research/3cx-desktop-a...	Source Cyber_O51NT 1641727709964546050	2023/03/31
AcooEdi	http://dlvr.it/SlmZwF	Source AcooEdi 1641728083400224768	2023/03/31
AcooEdi	https://twitter.com/AcooEdi/status/1641728083400224768/photo/1	Source AcooEdi 1641728083400224768	2023/03/31
Sebdraven	https://www.cvedetails.com/cve/CVE-2023-29059/	Source Sebdraven 1641729690921586689	2023/03/31
AP_Hofleitner	https://www.fortinet.com/blog/threat-research/3cx-desktop-a...	Source AP_Hofleitner 1641741654955552772	2023/03/31
lazarusholic	https://www.fortinet.com/blog/threat-research/3cx-desktop-a...	Source lazarusholic 1641780017276526592	2023/03/31
PentestingN	https://securityonline.info/cve-2023-29059-unraveling-the-t...	Source PentestingN 1641785610636492802	2023/03/31
Komodosec	https://securityonline.info/cve-2023-29059-unraveling-the-t...	Source Komodosec 1641790233422479363	2023/03/31
_JohnHammond	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29059	Source _JohnHammond 1641862620335730688	2023/04/01
_JohnHammond	https://twitter.com/_JohnHammond/status/1641862620335730688...	Source _JohnHammond 1641862620335730688	2023/04/01
voldimmoral	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29059	Source voldimmoral 1641867464647794688	2023/04/01
voldimmoral	https://twitter.com/_JohnHammond/status/1641862620335730688	Source voldimmoral 1641867464647794688	2023/04/01
ov3rflow1	https://nvd.nist.gov/vuln/detail/CVE-2023-29059	Source ov3rflow1 1641868703691071493	2023/04/01
ov3rflow1	https://twitter.com/ov3rflow1/status/1641868703691071493/ph...	Source ov3rflow1 1641868703691071493	2023/04/01
Har_sia	https://har-sia.info/CVE-2023-29059.html	Source Har_sia 1641868857538383872	2023/04/01
threatintelctr	https://nvd.nist.gov/vuln/detail/CVE-2023-29059	Source threatintelctr 1641930097811771395	2023/04/01
housu_jp	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29059	Source housu_jp 1642840796583055360	2023/04/03
orpheuscyber	https://eu1.hubs.ly/H03mvd50	Source orpheuscyber 1642895652647493634	2023/04/03
orpheuscyber	https://twitter.com/orpheuscyber/status/1642895652647493634...	Source orpheuscyber 1642895652647493634	2023/04/03
threatintelctr	https://nvd.nist.gov/vuln/detail/CVE-2023-29059	Source threatintelctr 1642926664584683521	2023/04/04
ThreatFeed	http://dlvr.it/Sm0Rcd	Source ThreatFeed 1643352148233850880	2023/04/05
NaveedHamid	https://ift.tt/yUrbRjQ	Source NaveedHamid 1643469911656677376	2023/04/05
InfoSecPhysa	https://asec.ahnlab.com/en/50919	Source InfoSecPhysa 1643480766561517576	2023/04/05
CyberIQs_	http://cyberiqs.com/latestnews	Source CyberIQs_ 1643492054335381505	2023/04/05
buaqbot	https://ift.tt/gJVn4ZF	Source buaqbot 1644993848676941824	2023/04/09
buaqbot	https://ift.tt/Bh7womW	Source buaqbot 1644993848676941824	2023/04/09
threatintelctr	https://nvd.nist.gov/vuln/detail/CVE-2023-29059	Source threatintelctr 1645418082591014912	2023/04/10
threatintelctr	https://nvd.nist.gov/vuln/detail/CVE-2023-29059	Source threatintelctr 1645470931836346371	2023/04/11
WolfgangSesin	http://www.sesin.at	Source WolfgangSesin 1645513300719935489	2023/04/11
WolfgangSesin	https://www.sesin.at/2023/04/10/cve-2023-29059-3cx	Source WolfgangSesin 1645513300719935489	2023/04/11
www_sesin_at	http://www.sesin.at	Source www_sesin_at 1645513304029233154	2023/04/11
www_sesin_at	https://www.sesin.at/2023/04/10/cve-2023-29059-3cx	Source www_sesin_at 1645513304029233154	2023/04/11
buaqbot	https://ift.tt/DNmBu84	Source buaqbot 1645790769461223424	2023/04/11
buaqbot	https://ift.tt/6QK40d3	Source buaqbot 1645790769461223424	2023/04/11
_CyberCloud_	https://buff.ly/3KFPzPR	Source _CyberCloud_ 1646045762164236295	2023/04/12
_CyberCloud_	https://twitter.com/_CyberCloud_/status/1646045762164236295...	Source _CyberCloud_ 1646045762164236295	2023/04/12
MalwareJake	https://twitter.com/bettersafetynet/status/1646479595493785601	Source MalwareJake 1646482184675401730	2023/04/13
CVEtrends	https://cvetrends.com	Source CVEtrends 1646498482583228416	2023/04/13
kaito834	https://www.bleepingcomputer.com/news/security/3cx-confirms...	Source kaito834 1646525602806247428	2023/04/13

List of frequently cited URLs

URL	Num of Times Referred to
cyberiqs.com	66
www.fortinet.com	4
securityonline.info	3

▼ Show Information from Twitter(60)

User	URL	Info Source
CVEreport	cve.report	Show Tweet
threatintelctr	nvd.nist.gov	Show Tweet
CVEnew	cve.mitre.org	Show Tweet
satnam	3cx.com	Show Tweet
satnam	twitter.com	Show Tweet
satnam	nvd.nist.gov	Show Tweet
satnam	nvd.nist.gov	Show Tweet
eyeTSystems	cve.mitre.org	Show Tweet
WolfgangSesin	sesin.at	Show Tweet
WolfgangSesin	sesin.at	Show Tweet
www_sesin_at	sesin.at	Show Tweet
www_sesin_at	sesin.at	Show Tweet
VulmonFeeds	vulmon.com	Show Tweet
WolfgangSesin	sesin.at	Show Tweet
WolfgangSesin	sesin.at	Show Tweet
www_sesin_at	sesin.at	Show Tweet
www_sesin_at	sesin.at	Show Tweet
vulnonym		Show Tweet
InfoSecPhysa	fortinet.com	Show Tweet
threatintelctr	nvd.nist.gov	Show Tweet
the_yellow_fall	securityonline.info	Show Tweet
Cyber_O51NT	fortinet.com	Show Tweet
AcooEdi	dlvr.it	Show Tweet
AcooEdi	twitter.com	Show Tweet
Sebdraven	cvedetails.com	Show Tweet
AP_Hofleitner	fortinet.com	Show Tweet
lazarusholic	fortinet.com	Show Tweet
PentestingN	securityonline.info	Show Tweet
Komodosec	securityonline.info	Show Tweet
_JohnHammond	cve.mitre.org	Show Tweet
_JohnHammond	twitter.com	Show Tweet
voldimmoral	cve.mitre.org	Show Tweet
voldimmoral	twitter.com	Show Tweet
ov3rflow1	nvd.nist.gov	Show Tweet
ov3rflow1	twitter.com	Show Tweet
Har_sia	har-sia.info	Show Tweet
threatintelctr	nvd.nist.gov	Show Tweet
housu_jp	cve.mitre.org	Show Tweet
orpheuscyber	eu1.hubs.ly	Show Tweet
orpheuscyber	twitter.com	Show Tweet
threatintelctr	nvd.nist.gov	Show Tweet
ThreatFeed	dlvr.it	Show Tweet
NaveedHamid	ift.tt	Show Tweet
InfoSecPhysa	asec.ahnlab.com	Show Tweet
CyberIQs_	cyberiqs.com	Show Tweet
buaqbot	ift.tt	Show Tweet
buaqbot	ift.tt	Show Tweet
threatintelctr	nvd.nist.gov	Show Tweet
threatintelctr	nvd.nist.gov	Show Tweet
WolfgangSesin	sesin.at	Show Tweet
WolfgangSesin	sesin.at	Show Tweet
www_sesin_at	sesin.at	Show Tweet
www_sesin_at	sesin.at	Show Tweet
buaqbot	ift.tt	Show Tweet
buaqbot	ift.tt	Show Tweet
_CyberCloud_	buff.ly	Show Tweet
_CyberCloud_	twitter.com	Show Tweet
MalwareJake	twitter.com	Show Tweet
CVEtrends	cvetrends.com	Show Tweet
kaito834	bleepingcomputer.com	Show Tweet

GitHub Search Results: Up to 10

Name	URL
No Data

GitHub Search Results: Up to 10

Name	URL
No Data

2023/04/13 Score : 0
Added Har-sia Database : 2023/03/31
Last Modified : 2023/04/13
Highest Scored Date : 2023/03/31
Highest Score : 28