APT41

aptCNvia MISP

2 CVEs attributed

Aliases20

AmoebaBARIUMBRONZE ATLASBRONZE EXPORTBlackflyBrass TyphoonDouble DragonEarth BakuG0044G0096GrayflyHOODOOLEADLeopard TyphoonRed KelpieTA415TG-2633WICKED PANDAWICKED SPIDERWinnti

Motivation1

State-sponsored

APT41 is a prolific cyber threat group that carries out Chinese state-sponsored espionage activity in addition to financially motivated activity potentially outside of state control.

Attributed CVEs2

CVE	Description	Severity	EPSS	Flags	Modified
CVE-2015-5119	Use-after-free vulnerability in the ByteArray class in the ActionScript 3 (AS3) implementation in Adobe Flash Player 13.x through 13.0.0.296 and 14.x through 18.0.0.194 on Windows and OS X and 11.x through 11.2.202.468 on Linux allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted Flash content that overrides a valueOf function, as exploited in the wild in July 2015.	CRITICAL9.8	99%p100	KEVWeaponized	2026-04-21
CVE-2010-0806	Use-after-free vulnerability in the Peer Objects component (aka iepeers.dll) in Microsoft Internet Explorer 6, 6 SP1, and 7 allows remote attackers to execute arbitrary code via vectors involving access to an invalid pointer after the deletion of an object, as exploited in the wild in March 2010, aka "Uninitialized Memory Corruption Vulnerability."	HIGH8.8	82%p100	KEVWeaponized	2026-05-21