https://db.gcve.eu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Sun, 03 May 2026 04:21:48 +0000 https://db.gcve.eu/sighting/8af397d4-3eb5-4652-b3a2-b7ef32f6485b/export {"uuid": "8af397d4-3eb5-4652-b3a2-b7ef32f6485b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-55656", "type": "seen", "source": "https://t.me/cvedetector/14693", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-55656 - Redis RedisBloom Probabilistic Data Structures Integer Overflow Information Leak Out-of-Bounds Write\", \n \"Content\": \"CVE ID : CVE-2024-55656 \nPublished : Jan. 8, 2025, 4:15 p.m. | 43\u00a0minutes ago \nDescription : RedisBloom adds a set of probabilistic data structures to Redis. There is an integer overflow vulnerability in RedisBloom, which is a module used in Redis. The integer overflow vulnerability allows an attacker (a redis client which knows the password) to allocate memory in the heap lesser than the required memory due to wraparound. Then read and write can be performed beyond this allocated memory, leading to info leak and OOB write. The integer overflow is in CMS.INITBYDIM command, which initialize a Count-Min Sketch to dimensions specified by user. It accepts two values (width and depth) and uses them to allocate memory in NewCMSketch(). This vulnerability is fixed in 2.2.19, 2.4.12, 2.6.14, and 2.8.2. \nSeverity: 8.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"08 Jan 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-08T18:19:13.000000Z"} {"uuid": "8af397d4-3eb5-4652-b3a2-b7ef32f6485b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-55656", "type": "seen", "source": "https://t.me/cvedetector/14693", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-55656 - Redis RedisBloom Probabilistic Data Structures Integer Overflow Information Leak Out-of-Bounds Write\", \n \"Content\": \"CVE ID : CVE-2024-55656 \nPublished : Jan. 8, 2025, 4:15 p.m. | 43\u00a0minutes ago \nDescription : RedisBloom adds a set of probabilistic data structures to Redis. There is an integer overflow vulnerability in RedisBloom, which is a module used in Redis. The integer overflow vulnerability allows an attacker (a redis client which knows the password) to allocate memory in the heap lesser than the required memory due to wraparound. Then read and write can be performed beyond this allocated memory, leading to info leak and OOB write. The integer overflow is in CMS.INITBYDIM command, which initialize a Count-Min Sketch to dimensions specified by user. It accepts two values (width and depth) and uses them to allocate memory in NewCMSketch(). This vulnerability is fixed in 2.2.19, 2.4.12, 2.6.14, and 2.8.2. \nSeverity: 8.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"08 Jan 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-08T18:19:13.000000Z"} https://db.gcve.eu/sighting/8af397d4-3eb5-4652-b3a2-b7ef32f6485b/export Wed, 08 Jan 2025 18:19:13 +0000 https://db.gcve.eu/sighting/80154ef4-aa47-48cc-a5b4-1ab05d5b6975/export {"uuid": "80154ef4-aa47-48cc-a5b4-1ab05d5b6975", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-55656", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-25-009/", "content": "", "creation_timestamp": "2025-01-09T05:00:00.000000Z"} {"uuid": "80154ef4-aa47-48cc-a5b4-1ab05d5b6975", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-55656", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-25-009/", "content": "", "creation_timestamp": "2025-01-09T05:00:00.000000Z"} https://db.gcve.eu/sighting/80154ef4-aa47-48cc-a5b4-1ab05d5b6975/export Thu, 09 Jan 2025 05:00:00 +0000 https://db.gcve.eu/sighting/682f7ab1-ff55-40f2-84cf-967d2385f169/export {"uuid": "682f7ab1-ff55-40f2-84cf-967d2385f169", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-55651", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/15463", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-55651\n\ud83d\udd25 CVSS Score: 2 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:P)\n\ud83d\udd39 Description: i-Educar is free, fully online school management software. Version 2.9 of the application fails to properly validate and sanitize user supplied input, leading to a stored cross-site scripting vulnerability that resides within the user type (Tipo de Usu\u00e1rio) input field. Through this attacker vector a malicious user might be able to retrieve information belonging to another user, which may lead to sensitive information leakage or other malicious actions. As of time of publication, no patched versions are known to exist.\n\ud83d\udccf Published: 2025-05-07T23:49:46.016Z\n\ud83d\udccf Modified: 2025-05-07T23:50:09.438Z\n\ud83d\udd17 References:\n1. https://github.com/portabilis/i-educar/security/advisories/GHSA-8fjj-9937-g84w", "creation_timestamp": "2025-05-08T00:23:30.000000Z"} {"uuid": "682f7ab1-ff55-40f2-84cf-967d2385f169", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-55651", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/15463", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-55651\n\ud83d\udd25 CVSS Score: 2 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:P)\n\ud83d\udd39 Description: i-Educar is free, fully online school management software. Version 2.9 of the application fails to properly validate and sanitize user supplied input, leading to a stored cross-site scripting vulnerability that resides within the user type (Tipo de Usu\u00e1rio) input field. Through this attacker vector a malicious user might be able to retrieve information belonging to another user, which may lead to sensitive information leakage or other malicious actions. As of time of publication, no patched versions are known to exist.\n\ud83d\udccf Published: 2025-05-07T23:49:46.016Z\n\ud83d\udccf Modified: 2025-05-07T23:50:09.438Z\n\ud83d\udd17 References:\n1. https://github.com/portabilis/i-educar/security/advisories/GHSA-8fjj-9937-g84w", "creation_timestamp": "2025-05-08T00:23:30.000000Z"} https://db.gcve.eu/sighting/682f7ab1-ff55-40f2-84cf-967d2385f169/export Thu, 08 May 2025 00:23:30 +0000 https://db.gcve.eu/sighting/9b937143-4874-4a02-b014-733ab6d51da2/export {"uuid": "9b937143-4874-4a02-b014-733ab6d51da2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-55651", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lompe4jfghk2", "content": "", "creation_timestamp": "2025-05-08T00:57:16.131121Z"} {"uuid": "9b937143-4874-4a02-b014-733ab6d51da2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-55651", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lompe4jfghk2", "content": "", "creation_timestamp": "2025-05-08T00:57:16.131121Z"} https://db.gcve.eu/sighting/9b937143-4874-4a02-b014-733ab6d51da2/export Thu, 08 May 2025 00:57:16 +0000 https://db.gcve.eu/sighting/162dbfea-1f39-4607-80ac-97ee96190fe5/export {"uuid": "162dbfea-1f39-4607-80ac-97ee96190fe5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-55651", "type": "seen", "source": "https://t.me/cvedetector/24782", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-55651 - i-Educar Stored Cross-Site Scripting Vulnerability\", \n \"Content\": \"CVE ID : CVE-2024-55651 \nPublished : May 8, 2025, 12:15 a.m. | 40\u00a0minutes ago \nDescription : i-Educar is free, fully online school management software. Version 2.9 of the application fails to properly validate and sanitize user supplied input, leading to a stored cross-site scripting vulnerability that resides within the user type (Tipo de Usu\u00e1rio) input field. Through this attacker vector a malicious user might be able to retrieve information belonging to another user, which may lead to sensitive information leakage or other malicious actions. As of time of publication, no patched versions are known to exist. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"08 May 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-05-08T03:23:23.000000Z"} {"uuid": "162dbfea-1f39-4607-80ac-97ee96190fe5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-55651", "type": "seen", "source": "https://t.me/cvedetector/24782", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-55651 - i-Educar Stored Cross-Site Scripting Vulnerability\", \n \"Content\": \"CVE ID : CVE-2024-55651 \nPublished : May 8, 2025, 12:15 a.m. | 40\u00a0minutes ago \nDescription : i-Educar is free, fully online school management software. Version 2.9 of the application fails to properly validate and sanitize user supplied input, leading to a stored cross-site scripting vulnerability that resides within the user type (Tipo de Usu\u00e1rio) input field. Through this attacker vector a malicious user might be able to retrieve information belonging to another user, which may lead to sensitive information leakage or other malicious actions. As of time of publication, no patched versions are known to exist. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"08 May 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-05-08T03:23:23.000000Z"} https://db.gcve.eu/sighting/162dbfea-1f39-4607-80ac-97ee96190fe5/export Thu, 08 May 2025 03:23:23 +0000 https://db.gcve.eu/sighting/3347279b-d558-4c5f-a915-a5ddaf8e8708/export {"uuid": "3347279b-d558-4c5f-a915-a5ddaf8e8708", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-55651", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lon3dasgqu2n", "content": "", "creation_timestamp": "2025-05-08T04:31:23.431622Z"} {"uuid": "3347279b-d558-4c5f-a915-a5ddaf8e8708", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-55651", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lon3dasgqu2n", "content": "", "creation_timestamp": "2025-05-08T04:31:23.431622Z"} https://db.gcve.eu/sighting/3347279b-d558-4c5f-a915-a5ddaf8e8708/export Thu, 08 May 2025 04:31:23 +0000 https://db.gcve.eu/sighting/7a46509e-fa1d-447d-a6a8-e18e437d0a32/export {"uuid": "7a46509e-fa1d-447d-a6a8-e18e437d0a32", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-55655", "type": "seen", "source": "MISP/be792712-f638-4d7d-b62d-4f5032e86764", "content": "", "creation_timestamp": "2025-09-16T23:16:38.000000Z"} {"uuid": "7a46509e-fa1d-447d-a6a8-e18e437d0a32", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-55655", "type": "seen", "source": "MISP/be792712-f638-4d7d-b62d-4f5032e86764", "content": "", "creation_timestamp": "2025-09-16T23:16:38.000000Z"} https://db.gcve.eu/sighting/7a46509e-fa1d-447d-a6a8-e18e437d0a32/export Tue, 16 Sep 2025 23:16:38 +0000 https://db.gcve.eu/sighting/67fd9066-a402-4cb5-ab72-c262e4368b03/export {"uuid": "67fd9066-a402-4cb5-ab72-c262e4368b03", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-55653", "type": "seen", "source": "MISP/be792712-f638-4d7d-b62d-4f5032e86764", "content": "", "creation_timestamp": "2025-09-16T23:16:38.000000Z"} {"uuid": "67fd9066-a402-4cb5-ab72-c262e4368b03", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-55653", "type": "seen", "source": "MISP/be792712-f638-4d7d-b62d-4f5032e86764", "content": "", "creation_timestamp": "2025-09-16T23:16:38.000000Z"} https://db.gcve.eu/sighting/67fd9066-a402-4cb5-ab72-c262e4368b03/export Tue, 16 Sep 2025 23:16:38 +0000 https://db.gcve.eu/sighting/e411ba09-a31a-4932-8e35-787a27d133cc/export {"uuid": "e411ba09-a31a-4932-8e35-787a27d133cc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-55655", "type": "seen", "source": "MISP/be792712-f638-4d7d-b62d-4f5032e86764", "content": "", "creation_timestamp": "2025-09-18T16:44:34.000000Z"} {"uuid": "e411ba09-a31a-4932-8e35-787a27d133cc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-55655", "type": "seen", "source": "MISP/be792712-f638-4d7d-b62d-4f5032e86764", "content": "", "creation_timestamp": "2025-09-18T16:44:34.000000Z"} https://db.gcve.eu/sighting/e411ba09-a31a-4932-8e35-787a27d133cc/export Thu, 18 Sep 2025 16:44:34 +0000 https://db.gcve.eu/sighting/c0c4bc02-ef10-4a6d-abaf-5896947254ff/export {"uuid": "c0c4bc02-ef10-4a6d-abaf-5896947254ff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-55653", "type": "seen", "source": "MISP/be792712-f638-4d7d-b62d-4f5032e86764", "content": "", "creation_timestamp": "2025-09-18T16:44:34.000000Z"} {"uuid": "c0c4bc02-ef10-4a6d-abaf-5896947254ff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-55653", "type": "seen", "source": "MISP/be792712-f638-4d7d-b62d-4f5032e86764", "content": "", "creation_timestamp": "2025-09-18T16:44:34.000000Z"} https://db.gcve.eu/sighting/c0c4bc02-ef10-4a6d-abaf-5896947254ff/export Thu, 18 Sep 2025 16:44:34 +0000