Most recent sightings.

Most recent sightings. https://db.gcve.eu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Fri, 15 May 2026 10:41:10 +0000 af4b33a1-dff7-4e27-ac73-f62a63eb510e https://db.gcve.eu/sighting/af4b33a1-dff7-4e27-ac73-f62a63eb510e/export {"uuid": "af4b33a1-dff7-4e27-ac73-f62a63eb510e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "RHSA-2025:2600", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/7648", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-12747\n\ud83d\udd25 CVSS Score: 5.6 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N)\n\ud83d\udd39 Description: A flaw was found in rsync. This vulnerability arises from a race condition during rsync's handling of symbolic links. Rsync's default behavior when encountering symbolic links is to skip them. If an attacker replaced a regular file with a symbolic link at the right time, it was possible to bypass the default behavior and traverse symbolic links. Depending on the privileges of the rsync process, an attacker could leak sensitive information, potentially leading to privilege escalation.\n\ud83d\udccf Published: 2025-01-14T17:39:16.031Z\n\ud83d\udccf Modified: 2025-03-15T00:15:23.593Z\n\ud83d\udd17 References:\n1. https://access.redhat.com/errata/RHSA-2025:2600\n2. https://access.redhat.com/security/cve/CVE-2024-12747\n3. https://bugzilla.redhat.com/show_bug.cgi?id=2332968\n4. https://kb.cert.org/vuls/id/952657", "creation_timestamp": "2025-03-15T00:45:40.000000Z"} {"uuid": "af4b33a1-dff7-4e27-ac73-f62a63eb510e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "RHSA-2025:2600", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/7648", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-12747\n\ud83d\udd25 CVSS Score: 5.6 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N)\n\ud83d\udd39 Description: A flaw was found in rsync. This vulnerability arises from a race condition during rsync's handling of symbolic links. Rsync's default behavior when encountering symbolic links is to skip them. If an attacker replaced a regular file with a symbolic link at the right time, it was possible to bypass the default behavior and traverse symbolic links. Depending on the privileges of the rsync process, an attacker could leak sensitive information, potentially leading to privilege escalation.\n\ud83d\udccf Published: 2025-01-14T17:39:16.031Z\n\ud83d\udccf Modified: 2025-03-15T00:15:23.593Z\n\ud83d\udd17 References:\n1. https://access.redhat.com/errata/RHSA-2025:2600\n2. https://access.redhat.com/security/cve/CVE-2024-12747\n3. https://bugzilla.redhat.com/show_bug.cgi?id=2332968\n4. https://kb.cert.org/vuls/id/952657", "creation_timestamp": "2025-03-15T00:45:40.000000Z"} https://db.gcve.eu/sighting/af4b33a1-dff7-4e27-ac73-f62a63eb510e/export Sat, 15 Mar 2025 00:45:40 +0000 7ed246b3-7efe-4625-b6d5-9a36975e0d2f https://db.gcve.eu/sighting/7ed246b3-7efe-4625-b6d5-9a36975e0d2f/export {"uuid": "7ed246b3-7efe-4625-b6d5-9a36975e0d2f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "RHSA-2025:2600", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/18474", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-12747\n\ud83d\udd25 CVSS Score: 5.6 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N)\n\ud83d\udd39 Description: A flaw was found in rsync. This vulnerability arises from a race condition during rsync's handling of symbolic links. Rsync's default behavior when encountering symbolic links is to skip them. If an attacker replaced a regular file with a symbolic link at the right time, it was possible to bypass the default behavior and traverse symbolic links. Depending on the privileges of the rsync process, an attacker could leak sensitive information, potentially leading to privilege escalation.\n\ud83d\udccf Published: 2025-01-14T17:39:16.031Z\n\ud83d\udccf Modified: 2025-06-16T17:24:34.857Z\n\ud83d\udd17 References:\n1. https://access.redhat.com/errata/RHSA-2025:2600\n2. https://access.redhat.com/errata/RHSA-2025:7050\n3. https://access.redhat.com/errata/RHSA-2025:8385\n4. https://access.redhat.com/security/cve/CVE-2024-12747\n5. https://bugzilla.redhat.com/show_bug.cgi?id=2332968\n6. https://kb.cert.org/vuls/id/952657", "creation_timestamp": "2025-06-16T17:37:46.000000Z"} {"uuid": "7ed246b3-7efe-4625-b6d5-9a36975e0d2f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "RHSA-2025:2600", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/18474", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-12747\n\ud83d\udd25 CVSS Score: 5.6 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N)\n\ud83d\udd39 Description: A flaw was found in rsync. This vulnerability arises from a race condition during rsync's handling of symbolic links. Rsync's default behavior when encountering symbolic links is to skip them. If an attacker replaced a regular file with a symbolic link at the right time, it was possible to bypass the default behavior and traverse symbolic links. Depending on the privileges of the rsync process, an attacker could leak sensitive information, potentially leading to privilege escalation.\n\ud83d\udccf Published: 2025-01-14T17:39:16.031Z\n\ud83d\udccf Modified: 2025-06-16T17:24:34.857Z\n\ud83d\udd17 References:\n1. https://access.redhat.com/errata/RHSA-2025:2600\n2. https://access.redhat.com/errata/RHSA-2025:7050\n3. https://access.redhat.com/errata/RHSA-2025:8385\n4. https://access.redhat.com/security/cve/CVE-2024-12747\n5. https://bugzilla.redhat.com/show_bug.cgi?id=2332968\n6. https://kb.cert.org/vuls/id/952657", "creation_timestamp": "2025-06-16T17:37:46.000000Z"} https://db.gcve.eu/sighting/7ed246b3-7efe-4625-b6d5-9a36975e0d2f/export Mon, 16 Jun 2025 17:37:46 +0000 66c323f8-1253-4c8a-b17e-b494a63e3b8a https://db.gcve.eu/sighting/66c323f8-1253-4c8a-b17e-b494a63e3b8a/export {"uuid": "66c323f8-1253-4c8a-b17e-b494a63e3b8a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "RHSA-2025:2600", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/18777", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-12088\n\ud83d\udd25 CVSS Score: 6.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N)\n\ud83d\udd39 Description: A flaw was found in rsync. When using the `--safe-links` option, the rsync client fails to properly verify if a symbolic link destination sent from the server contains another symbolic link within it. This results in a path traversal vulnerability, which may lead to arbitrary file write outside the desired directory.\n\ud83d\udccf Published: 2025-01-14T17:38:34.890Z\n\ud83d\udccf Modified: 2025-06-18T16:34:57.892Z\n\ud83d\udd17 References:\n1. https://access.redhat.com/errata/RHSA-2025:2600\n2. https://access.redhat.com/errata/RHSA-2025:7050\n3. https://access.redhat.com/errata/RHSA-2025:8385\n4. https://access.redhat.com/security/cve/CVE-2024-12088\n5. https://bugzilla.redhat.com/show_bug.cgi?id=2330676\n6. https://kb.cert.org/vuls/id/952657", "creation_timestamp": "2025-06-18T16:43:22.000000Z"} {"uuid": "66c323f8-1253-4c8a-b17e-b494a63e3b8a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "RHSA-2025:2600", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/18777", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-12088\n\ud83d\udd25 CVSS Score: 6.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N)\n\ud83d\udd39 Description: A flaw was found in rsync. When using the `--safe-links` option, the rsync client fails to properly verify if a symbolic link destination sent from the server contains another symbolic link within it. This results in a path traversal vulnerability, which may lead to arbitrary file write outside the desired directory.\n\ud83d\udccf Published: 2025-01-14T17:38:34.890Z\n\ud83d\udccf Modified: 2025-06-18T16:34:57.892Z\n\ud83d\udd17 References:\n1. https://access.redhat.com/errata/RHSA-2025:2600\n2. https://access.redhat.com/errata/RHSA-2025:7050\n3. https://access.redhat.com/errata/RHSA-2025:8385\n4. https://access.redhat.com/security/cve/CVE-2024-12088\n5. https://bugzilla.redhat.com/show_bug.cgi?id=2330676\n6. https://kb.cert.org/vuls/id/952657", "creation_timestamp": "2025-06-18T16:43:22.000000Z"} https://db.gcve.eu/sighting/66c323f8-1253-4c8a-b17e-b494a63e3b8a/export Wed, 18 Jun 2025 16:43:22 +0000