https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Sun, 07 Jun 2026 01:57:29 +0000 https://vulnerability.circl.lu/sighting/1da76363-7a73-4afd-89f7-3e0e7b0841ed/export {"uuid": "1da76363-7a73-4afd-89f7-3e0e7b0841ed", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10498", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lfwpzrce3l2g", "content": "", "creation_timestamp": "2025-01-17T11:49:07.500697Z"} {"uuid": "1da76363-7a73-4afd-89f7-3e0e7b0841ed", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10498", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lfwpzrce3l2g", "content": "", "creation_timestamp": "2025-01-17T11:49:07.500697Z"} https://vulnerability.circl.lu/sighting/1da76363-7a73-4afd-89f7-3e0e7b0841ed/export Fri, 17 Jan 2025 11:49:07 +0000 https://vulnerability.circl.lu/sighting/e5cd7e7f-c06e-4907-9fbb-ea2123f771a6/export {"uuid": "e5cd7e7f-c06e-4907-9fbb-ea2123f771a6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10497", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lfwpzrrhlm2k", "content": "", "creation_timestamp": "2025-01-17T11:49:09.777998Z"} {"uuid": "e5cd7e7f-c06e-4907-9fbb-ea2123f771a6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10497", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lfwpzrrhlm2k", "content": "", "creation_timestamp": "2025-01-17T11:49:09.777998Z"} https://vulnerability.circl.lu/sighting/e5cd7e7f-c06e-4907-9fbb-ea2123f771a6/export Fri, 17 Jan 2025 11:49:09 +0000 https://vulnerability.circl.lu/sighting/f8a3ac39-5eeb-4d02-b7c3-49458a1de57e/export {"uuid": "f8a3ac39-5eeb-4d02-b7c3-49458a1de57e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10498", "type": "seen", "source": "https://t.me/cvedetector/15699", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-10498 - Schneider Electric Modbus Buffer Overflow\", \n \"Content\": \"CVE ID : CVE-2024-10498 \nPublished : Jan. 17, 2025, 11:15 a.m. | 19\u00a0minutes ago \nDescription : CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that \ncould allow an unauthorized attacker to modify configuration values outside of the normal range when the \nattacker sends specific Modbus write packets to the device which could result in invalid data or loss of web \ninterface functionality. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"17 Jan 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-17T12:36:37.000000Z"} {"uuid": "f8a3ac39-5eeb-4d02-b7c3-49458a1de57e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10498", "type": "seen", "source": "https://t.me/cvedetector/15699", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-10498 - Schneider Electric Modbus Buffer Overflow\", \n \"Content\": \"CVE ID : CVE-2024-10498 \nPublished : Jan. 17, 2025, 11:15 a.m. | 19\u00a0minutes ago \nDescription : CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that \ncould allow an unauthorized attacker to modify configuration values outside of the normal range when the \nattacker sends specific Modbus write packets to the device which could result in invalid data or loss of web \ninterface functionality. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"17 Jan 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-17T12:36:37.000000Z"} https://vulnerability.circl.lu/sighting/f8a3ac39-5eeb-4d02-b7c3-49458a1de57e/export Fri, 17 Jan 2025 12:36:37 +0000 https://vulnerability.circl.lu/sighting/c9ce514e-62c1-46f3-ac10-05336cd62093/export {"uuid": "c9ce514e-62c1-46f3-ac10-05336cd62093", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10497", "type": "seen", "source": "https://t.me/cvedetector/15702", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-10497 - Apache Device Authorization Bypass Vulnerability\", \n \"Content\": \"CVE ID : CVE-2024-10497 \nPublished : Jan. 17, 2025, 11:15 a.m. | 19\u00a0minutes ago \nDescription : CWE-639: Authorization Bypass Through User-Controlled Key vulnerability exists that could allow an \nauthorized attacker to modify values outside those defined by their privileges (Elevation of Privileges) when the \nattacker sends modified HTTPS requests to the device. \nSeverity: 8.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"17 Jan 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-17T12:36:40.000000Z"} {"uuid": "c9ce514e-62c1-46f3-ac10-05336cd62093", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10497", "type": "seen", "source": "https://t.me/cvedetector/15702", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-10497 - Apache Device Authorization Bypass Vulnerability\", \n \"Content\": \"CVE ID : CVE-2024-10497 \nPublished : Jan. 17, 2025, 11:15 a.m. | 19\u00a0minutes ago \nDescription : CWE-639: Authorization Bypass Through User-Controlled Key vulnerability exists that could allow an \nauthorized attacker to modify values outside those defined by their privileges (Elevation of Privileges) when the \nattacker sends modified HTTPS requests to the device. \nSeverity: 8.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"17 Jan 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-17T12:36:40.000000Z"} https://vulnerability.circl.lu/sighting/c9ce514e-62c1-46f3-ac10-05336cd62093/export Fri, 17 Jan 2025 12:36:40 +0000 https://vulnerability.circl.lu/sighting/7d32c256-48f8-444b-a16b-2a503ede2f18/export {"uuid": "7d32c256-48f8-444b-a16b-2a503ede2f18", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10497", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/113843982218783924", "content": "", "creation_timestamp": "2025-01-17T13:41:51.899053Z"} {"uuid": "7d32c256-48f8-444b-a16b-2a503ede2f18", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10497", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/113843982218783924", "content": "", "creation_timestamp": "2025-01-17T13:41:51.899053Z"} https://vulnerability.circl.lu/sighting/7d32c256-48f8-444b-a16b-2a503ede2f18/export Fri, 17 Jan 2025 13:41:51 +0000 https://vulnerability.circl.lu/sighting/341a4faa-3078-4c97-bc35-a9f0858a4420/export {"uuid": "341a4faa-3078-4c97-bc35-a9f0858a4420", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10498", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/113843982218783924", "content": "", "creation_timestamp": "2025-01-17T13:41:51.944844Z"} {"uuid": "341a4faa-3078-4c97-bc35-a9f0858a4420", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10498", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/113843982218783924", "content": "", "creation_timestamp": "2025-01-17T13:41:51.944844Z"} https://vulnerability.circl.lu/sighting/341a4faa-3078-4c97-bc35-a9f0858a4420/export Fri, 17 Jan 2025 13:41:51 +0000 https://vulnerability.circl.lu/sighting/0589d9b6-9c9a-4c28-942b-22e899d26882/export {"uuid": "0589d9b6-9c9a-4c28-942b-22e899d26882", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10498", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-028-02", "content": "", "creation_timestamp": "2025-01-28T11:00:00.000000Z"} {"uuid": "0589d9b6-9c9a-4c28-942b-22e899d26882", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10498", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-028-02", "content": "", "creation_timestamp": "2025-01-28T11:00:00.000000Z"} https://vulnerability.circl.lu/sighting/0589d9b6-9c9a-4c28-942b-22e899d26882/export Tue, 28 Jan 2025 11:00:00 +0000 https://vulnerability.circl.lu/sighting/9b7307c2-33a2-48d1-ba99-35b5c4c16448/export {"uuid": "9b7307c2-33a2-48d1-ba99-35b5c4c16448", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10497", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-028-02", "content": "", "creation_timestamp": "2025-01-28T11:00:00.000000Z"} {"uuid": "9b7307c2-33a2-48d1-ba99-35b5c4c16448", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10497", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-028-02", "content": "", "creation_timestamp": "2025-01-28T11:00:00.000000Z"} https://vulnerability.circl.lu/sighting/9b7307c2-33a2-48d1-ba99-35b5c4c16448/export Tue, 28 Jan 2025 11:00:00 +0000 https://vulnerability.circl.lu/sighting/7664435a-9b2d-4b58-b704-243b28b2cf51/export {"uuid": "7664435a-9b2d-4b58-b704-243b28b2cf51", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-1049", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/4274", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-1049\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: No description available\n\ud83d\udccf Published: 2024-03-23T04:15:08.190\n\ud83d\udccf Modified: N/A\n\ud83d\udd17 References:\n1. https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3049222%40vimeography&new=3049222%40vimeography&sfp_email=&sfph_mail=\n2. https://www.wordfence.com/threat-intel/vulnerabilities/id/56d1d152-946f-47c9-b0d5-76513370677f?source=cve\n3. https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3049222%40vimeography&new=3049222%40vimeography&sfp_email=&sfph_mail=\n4. https://www.wordfence.com/threat-intel/vulnerabilities/id/56d1d152-946f-47c9-b0d5-76513370677f?source=cve", "creation_timestamp": "2025-02-13T17:10:55.000000Z"} {"uuid": "7664435a-9b2d-4b58-b704-243b28b2cf51", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-1049", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/4274", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-1049\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: No description available\n\ud83d\udccf Published: 2024-03-23T04:15:08.190\n\ud83d\udccf Modified: N/A\n\ud83d\udd17 References:\n1. https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3049222%40vimeography&new=3049222%40vimeography&sfp_email=&sfph_mail=\n2. https://www.wordfence.com/threat-intel/vulnerabilities/id/56d1d152-946f-47c9-b0d5-76513370677f?source=cve\n3. https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3049222%40vimeography&new=3049222%40vimeography&sfp_email=&sfph_mail=\n4. https://www.wordfence.com/threat-intel/vulnerabilities/id/56d1d152-946f-47c9-b0d5-76513370677f?source=cve", "creation_timestamp": "2025-02-13T17:10:55.000000Z"} https://vulnerability.circl.lu/sighting/7664435a-9b2d-4b58-b704-243b28b2cf51/export Thu, 13 Feb 2025 17:10:55 +0000 https://vulnerability.circl.lu/sighting/ea55cb15-727f-4d1e-92ec-07e8bb4fe1bf/export {"uuid": "ea55cb15-727f-4d1e-92ec-07e8bb4fe1bf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10492", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/5457", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-10492\n\ud83d\udd25 CVSS Score: 2.7 (cvssV3_0, Vector: CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N)\n\ud83d\udd39 Description: A vulnerability was found in Keycloak. A user with high privileges could read sensitive information from a Vault file that is not within the expected context. This attacker must have previous high access to the Keycloak server in order to perform resource creation, for example, an LDAP provider configuration and set up a Vault read file, which will only inform whether that file exists or not.\n\ud83d\udccf Published: 2024-11-25T07:37:30.572Z\n\ud83d\udccf Modified: 2025-02-26T04:23:59.830Z\n\ud83d\udd17 References:\n1. https://access.redhat.com/errata/RHSA-2024:10175\n2. https://access.redhat.com/errata/RHSA-2024:10176\n3. https://access.redhat.com/errata/RHSA-2024:10177\n4. https://access.redhat.com/errata/RHSA-2024:10178\n5. https://access.redhat.com/security/cve/CVE-2024-10492\n6. https://bugzilla.redhat.com/show_bug.cgi?id=2322447", "creation_timestamp": "2025-02-26T05:26:43.000000Z"} {"uuid": "ea55cb15-727f-4d1e-92ec-07e8bb4fe1bf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10492", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/5457", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-10492\n\ud83d\udd25 CVSS Score: 2.7 (cvssV3_0, Vector: CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N)\n\ud83d\udd39 Description: A vulnerability was found in Keycloak. A user with high privileges could read sensitive information from a Vault file that is not within the expected context. This attacker must have previous high access to the Keycloak server in order to perform resource creation, for example, an LDAP provider configuration and set up a Vault read file, which will only inform whether that file exists or not.\n\ud83d\udccf Published: 2024-11-25T07:37:30.572Z\n\ud83d\udccf Modified: 2025-02-26T04:23:59.830Z\n\ud83d\udd17 References:\n1. https://access.redhat.com/errata/RHSA-2024:10175\n2. https://access.redhat.com/errata/RHSA-2024:10176\n3. https://access.redhat.com/errata/RHSA-2024:10177\n4. https://access.redhat.com/errata/RHSA-2024:10178\n5. https://access.redhat.com/security/cve/CVE-2024-10492\n6. https://bugzilla.redhat.com/show_bug.cgi?id=2322447", "creation_timestamp": "2025-02-26T05:26:43.000000Z"} https://vulnerability.circl.lu/sighting/ea55cb15-727f-4d1e-92ec-07e8bb4fe1bf/export Wed, 26 Feb 2025 05:26:43 +0000