{"vulnerability": "CVE-2024-4201", "sightings": [{"uuid": "a8a59c1f-5a87-4e65-a02d-f6dd4a048da3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "af0120d0-3dac-4a6a-974b-a9f33d2a9846", "vulnerability": "CVE-2024-42011", "type": "seen", "source": null, "content": "", "creation_timestamp": "2024-10-28T20:26:03.222847Z"}, {"uuid": "7d621014-5201-4ba9-88ed-de2ffa27ba28", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-42011", "type": "seen", "source": "MISP/af790da0-9e28-4cb7-bd4e-46ad005115c6", "content": "", "creation_timestamp": "2025-10-08T21:59:29.000000Z"}, {"uuid": "5c059ee2-85b5-4abd-9684-c87448384aa6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-42012", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lgdrbvhedz2t", "content": "", "creation_timestamp": "2025-01-22T16:16:09.861558Z"}, {"uuid": "9bb5c5b2-a647-4fba-8243-5065fc296c07", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-42013", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lgdrbxvyem2n", "content": "", "creation_timestamp": "2025-01-22T16:16:12.734713Z"}, {"uuid": "ad934b56-0c7f-4998-abfc-86a672687c6b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-42012", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lgdsv5q3pz2b", "content": "", "creation_timestamp": "2025-01-22T16:44:53.621718Z"}, {"uuid": "62846370-eeb1-4811-aad3-b2feaaff2ea9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-42013", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lgdsv5tew62q", "content": "", "creation_timestamp": "2025-01-22T16:44:54.135324Z"}, {"uuid": "e88925a4-b206-4d7f-bd0e-c29d91809b9d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-42018", "type": "seen", "source": "https://t.me/cvedetector/7716", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-42018 - Atos Eviden SMC xScale Privilege Escalation\", \n  \"Content\": \"CVE ID : CVE-2024-42018 \nPublished : Oct. 11, 2024, 5:15 p.m. | 16\u00a0minutes ago \nDescription : An issue was discovered in Atos Eviden SMC xScale before 1.6.6. During initialization of nodes, some configuration parameters are retrieved from management nodes. These parameters embed credentials whose integrity and confidentiality may be important to the security of the HPC configuration. Because these parameters are needed for initialization, there is no available mechanism to ensure access control on the management node, and a mitigation measure is normally put in place to prevent access to unprivileged users. It was discovered that this mitigation measure does not survive a reboot of diskful nodes. (Diskless nodes are not at risk.) The mistake lies in the cloudinit configuration: the iptables configuration should have been in the bootcmd instead of the runcmd section. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-11T19:33:29.000000Z"}, {"uuid": "92b12d81-86b9-4a95-9360-a99cbbed318e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-42019", "type": "seen", "source": "https://t.me/HackingInsights/12473", "content": "\u200aCritical Flaws in Veeam ONE Expose Systems to RCE (CVE-2024-42024) and Credential Theft (CVE-2024-42019)\n\nhttps://securityonline.info/critical-flaws-in-veeam-one-expose-systems-to-rce-cve-2024-42024-and-credential-theft-cve-2024-42019/", "creation_timestamp": "2024-09-08T17:48:02.000000Z"}, {"uuid": "79822dbc-1b7c-4cfa-bacb-2c262672e5c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-42011", "type": "seen", "source": "MISP/af790da0-9e28-4cb7-bd4e-46ad005115c6", "content": "", "creation_timestamp": "2025-10-01T18:11:57.000000Z"}, {"uuid": "6469524e-5084-43e9-b5b5-906dec48f397", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-42012", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/2555", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-42012\n\ud83d\udd39 Description: GRAU DATA Blocky before 3.1 stores passwords encrypted rather than hashed. At the login screen, the user's password is compared to the user's decrypted cleartext password. An attacker with Windows admin or debugging rights can therefore steal the user's Blocky password and from there impersonate that local user.\n\ud83d\udccf Published: 2025-01-22T00:00:00\n\ud83d\udccf Modified: 2025-01-22T15:49:07.655274\n\ud83d\udd17 References:\n1. https://www.graudata.com/en/products/protection-against-ransomware/blocky-for-veeam/\n2. https://www.blockyforveeam.com/en/security-bulletin-2024-06-25/", "creation_timestamp": "2025-01-22T16:01:40.000000Z"}, {"uuid": "a0f40272-86a8-4c55-ad0f-7037b29ee03e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-42013", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/2554", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-42013\n\ud83d\udd39 Description: In GRAU DATA Blocky before 3.1, Blocky-Gui has a Client-Side Enforcement of Server-Side Security vulnerability. An attacker with Windows administrative or debugging privileges can patch a binary in memory or on disk to bypass the password login requirement and gain full access to all functions of the program.\n\ud83d\udccf Published: 2025-01-22T00:00:00\n\ud83d\udccf Modified: 2025-01-22T15:51:30.856830\n\ud83d\udd17 References:\n1. https://www.graudata.com/en/products/protection-against-ransomware/blocky-for-veeam/\n2. https://www.blockyforveeam.com/en/security-bulletin-2024-06-25/", "creation_timestamp": "2025-01-22T16:01:39.000000Z"}, {"uuid": "f0fb3de8-4101-411f-bc7c-eb1be7c2dcef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-42012", "type": "seen", "source": "https://t.me/cvedetector/16116", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-42012 - GRau DATA Password Disclosure\", \n  \"Content\": \"CVE ID : CVE-2024-42012 \nPublished : Jan. 22, 2025, 4:15 p.m. | 44\u00a0minutes ago \nDescription : GRAU DATA Blocky before 3.1 stores passwords encrypted rather than hashed. At the login screen, the user's password is compared to the user's decrypted cleartext password. An attacker with Windows admin or debugging rights can therefore steal the user's Blocky password and from there impersonate that local user. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-22T18:04:05.000000Z"}, {"uuid": "1e4cc838-e603-4df8-bcdf-8ccffe5724f9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-42013", "type": "seen", "source": "https://t.me/cvedetector/16117", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-42013 - GRAU DATA Blocky Client-Side Server-Side Bypass Privilege Escalation\", \n  \"Content\": \"CVE ID : CVE-2024-42013 \nPublished : Jan. 22, 2025, 4:15 p.m. | 44\u00a0minutes ago \nDescription : In GRAU DATA Blocky before 3.1, Blocky-Gui has a Client-Side Enforcement of Server-Side Security vulnerability. An attacker with Windows administrative or debugging privileges can patch a binary in memory or on disk to bypass the password login requirement and gain full access to all functions of the program. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-22T18:04:09.000000Z"}, {"uuid": "ff4bfda0-b3ca-4d7a-ae9b-ca0c3c285cc3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-42017", "type": "seen", "source": "https://t.me/cvedetector/6677", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-42017 - Atos Eviden iCare Unauthenticated Arbitrary Command Execution Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-42017 \nPublished : Sept. 30, 2024, 6:15 p.m. | 31\u00a0minutes ago \nDescription : An issue was discovered in Atos Eviden iCare 2.7.1 through 2.7.11. The application exposes a web interface locally. In the worst-case scenario, if the application is remotely accessible, it allows an attacker to execute arbitrary commands with system privilege on the endpoint hosting the application, without any authentication. \nSeverity: 10.0 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"30 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-30T20:50:31.000000Z"}, {"uuid": "0d4cd63f-8d6c-4792-bb65-f97fb6e8589c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-42010", "type": "seen", "source": "https://t.me/cvedetector/2483", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-42010 - Roundcube CSS Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-42010 \nPublished : Aug. 5, 2024, 7:15 p.m. | 37\u00a0minutes ago \nDescription : mod_css_styles in Roundcube through 1.5.7 and 1.6.x through 1.6.7 allows a insufficiently filters Cascading Style Sheets (CSS) token sequences in rendered e-mail messages, allowing a remote attacker to obtain sensitive information. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"05 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-05T22:16:35.000000Z"}, {"uuid": "d9826341-9903-4daf-8bf7-7380ac48c944", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-42019", "type": "seen", "source": "https://t.me/cvedetector/5043", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-42019 - Veeam Reporter Service NTLM Hash Disclosure\", \n  \"Content\": \"CVE ID : CVE-2024-42019 \nPublished : Sept. 7, 2024, 5:15 p.m. | 41\u00a0minutes ago \nDescription : A vulnerability that allows an attacker to access the NTLM hash of the Veeam Reporter Service service account. This attack requires user interaction and data collected from Veeam Backup & Replication. \nSeverity: 9.0 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"07 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-07T20:10:54.000000Z"}, {"uuid": "afc2639e-4dc8-42d9-a1da-844228628648", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-42010", "type": "published-proof-of-concept", "source": "Telegram/NACc5Eo4EB7Xq0dUp83B5WgZwGl5w1aAQ7nULJ6Iy2xlHAA", "content": "", "creation_timestamp": "2025-02-13T22:00:06.000000Z"}]}