{"vulnerability": "CVE-2024-2162", "sightings": [{"uuid": "2c7bafeb-e161-41e7-9c0c-81f687e100c1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21629", "type": "seen", "source": "https://t.me/cibsecurity/74214", "content": "\u203c\ufe0fCVE-2024-21629\u203c\ufe0f\n\nRust EVM is an Ethereum Virtual Machine interpreter. In rustevm, a feature called recordexternaloperation was introduced, allowing library users to record custom gas changes. This feature can have some bogus interactions with the call stack. In particular, during finalization of a CREATE or CREATE2, in the case that the substack execution happens successfully, rustevm will first commit the substate, and then call recordexternaloperationWriteoutcode.len. If recordexternaloperation later fails, this error is returned to the parent call stack, instead of Succeeded. Yet, the substate commitment already happened. This causes smart contracts able to commit state changes, when the parent caller contract receives zero address which usually indicates that the execution has failed. This issue only impacts library users with custom recordexternaloperation that returns errors. The issue is patched in release 0.41.1. No known workarounds are available.\n\n\ud83d\udcd6 Read more\n\nVia \"National Vulnerability Database\"", "creation_timestamp": "2024-01-03T01:38:22.000000Z"}, {"uuid": "3215b20b-00df-48d0-b242-3230cd51f688", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21628", "type": "seen", "source": "https://t.me/cibsecurity/74213", "content": "\u203c\ufe0fCVE-2024-21628\u203c\ufe0f\n\nPrestaShop is an opensource ecommerce platform. Prior to version 8.1.3, the isCleanHtml method is not used on this this form, which makes it possible to store a crosssite scripting payload in the database. The impact is low because the HTML is not interpreted in BO, thanks to twig's escape mechanism. In FO, the crosssite scripting attack is effective, but only impacts the customer sending it, or the customer session from which it was sent. This issue affects those who have a module fetching these messages from the DB and displaying it without escaping HTML. Version 8.1.3 contains a patch for this issue.\n\n\ud83d\udcd6 Read more\n\nVia \"National Vulnerability Database\"", "creation_timestamp": "2024-01-03T01:38:17.000000Z"}, {"uuid": "f86995f8-2f7f-4ca6-9427-3a3aa2d1d2f9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21627", "type": "seen", "source": "https://t.me/cibsecurity/74204", "content": "\u203c\ufe0fCVE-2024-21627\u203c\ufe0f\n\nPrestaShop is an opensource ecommerce platform. Prior to versions 8.1.3 and 1.7.8.11, some event attributes are not detected by the isCleanHTML method. Some modules using the isCleanHTML method could be vulnerable to crosssite scripting. Versions 8.1.3 and 1.7.8.11 contain a patch for this issue. The best workaround is to use the HTMLPurifier library to sanitize html input coming from users. The library is already available as a dependency in the PrestaShop project. Beware though that in legacy object models, fields of HTML type will call isCleanHTML.\n\n\ud83d\udcd6 Read more\n\nVia \"National Vulnerability Database\"", "creation_timestamp": "2024-01-03T01:37:33.000000Z"}, {"uuid": "93291254-fbca-4fcb-89c4-b142f6fd0aa7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21623", "type": "seen", "source": "https://t.me/cibsecurity/74203", "content": "\u203c\ufe0fCVE-2024-21623\u203c\ufe0f\n\nOTCLient is an alternative tibia client for otserv. Prior to commit db560de0b56476c87a2f967466407939196dd254, the mehahotclient \"Analysis  SonarCloud\" workflow is vulnerable to an expression injection in Actions, allowing an attacker to run commands remotely on the runner, leak secrets, and alter the repository using this workflow. Commit db560de0b56476c87a2f967466407939196dd254 contains a fix for this issue.\n\n\ud83d\udcd6 Read more\n\nVia \"National Vulnerability Database\"", "creation_timestamp": "2024-01-03T01:37:28.000000Z"}, {"uuid": "8f5ca646-833a-44f3-965c-598487019a69", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21626", "type": "seen", "source": "https://t.me/true_secator/5364", "content": "Snyk\u00a0Leaky Vessels \u0441\u043e\u043e\u0431\u0449\u0430\u044e\u0442 \u043e\u0431 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u0438 \u043c\u043d\u043e\u0436\u0435\u0441\u0442\u0432\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u0432 runC, \u0438\u043d\u0441\u0442\u0440\u0443\u043c\u0435\u043d\u0442\u0435 CLI \u0434\u043b\u044f \u0441\u043e\u0437\u0434\u0430\u043d\u0438\u044f \u0438 \u0437\u0430\u043f\u0443\u0441\u043a\u0430 \u043a\u043e\u043d\u0442\u0435\u0439\u043d\u0435\u0440\u043e\u0432 \u0432 Linux, \u043a\u043e\u0442\u043e\u0440\u044b\u0439 \u0432 2015 \u0433\u043e\u0434\u0443\u00a0\u0431\u044b\u043b \u0432\u044b\u0434\u0435\u043b\u0435\u043d\u00a0\u0432 \u043e\u0442\u0434\u0435\u043b\u044c\u043d\u0443\u044e \u0431\u0438\u0431\u043b\u0438\u043e\u0442\u0435\u043a\u0443 \u0441 \u043e\u0442\u043a\u0440\u044b\u0442\u044b\u043c \u0438\u0441\u0445\u043e\u0434\u043d\u044b\u043c \u043a\u043e\u0434\u043e\u043c.\n\n\u041e\u0441\u043d\u043e\u0432\u043d\u044b\u0435 \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u044b \u043e\u0442\u0441\u043b\u0435\u0436\u0438\u0432\u0430\u044e\u0442\u0441\u044f \u043a\u0430\u043a: CVE-2024-21626\u00a0(CVSS: 8,6), CVE-2024-23651\u00a0(CVSS: 8,7), CVE-2024-23652\u00a0(CVSS: 10,0), CVE-2024-23653\u00a0(CVSS: 9,8) \u0438 \u043c\u043e\u0433\u0443\u0442 \u0431\u044b\u0442\u044c \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u044b \u0434\u043b\u044f \u0432\u044b\u0445\u043e\u0434\u0430 \u0437\u0430 \u043f\u0440\u0435\u0434\u0435\u043b\u044b \u043a\u043e\u043d\u0442\u0435\u0439\u043d\u0435\u0440\u0430. \u0418\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u044b \u0432 \u0432\u0435\u0440\u0441\u0438\u0438 runC 1.1.12.\n\n\u042d\u0442\u043e \u043e\u0442\u043a\u0440\u044b\u0432\u0430\u0435\u0442 \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u0438 \u0434\u043b\u044f \u043d\u0435\u0441\u0430\u043d\u043a\u0446\u0438\u043e\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u043e\u0433\u043e \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043a \u0431\u0430\u0437\u043e\u0432\u043e\u0439 \u041e\u0421 \u0445\u043e\u0441\u0442\u0430 \u0438\u0437\u043d\u0443\u0442\u0440\u0438 \u043a\u043e\u043d\u0442\u0435\u0439\u043d\u0435\u0440\u0430 \u0438 \u043a\u043e\u043d\u0444\u0438\u0434\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u044b\u043c \u0434\u0430\u043d\u043d\u044b\u043c (\u0443\u0447\u0435\u0442\u043d\u044b\u0435 \u0434\u0430\u043d\u043d\u044b\u0435, \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044e \u043e \u043a\u043b\u0438\u0435\u043d\u0442\u0435 \u0438 \u0442.\u0434.), \u0430 \u0442\u0430\u043a\u0436\u0435 \u0437\u0430\u043f\u0443\u0441\u043a\u0430\u0442\u044c \u043f\u043e\u0441\u043b\u0435\u0434\u0443\u044e\u0449\u0438\u0435 \u0430\u0442\u0430\u043a\u0438, \u043e\u0441\u043e\u0431\u0435\u043d\u043d\u043e \u043f\u0440\u0438 \u043f\u043e\u043b\u0443\u0447\u0435\u043d\u0438\u0438 \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u0441 \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u044f\u043c\u0438 \u0441\u0443\u043f\u0435\u0440\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f.\n\n\u0421\u0430\u043c\u0430\u044f \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u0430\u044f \u0438\u0437 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u2014 CVE-2024-21626, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u043c\u043e\u0436\u0435\u0442 \u043f\u0440\u0438\u0432\u0435\u0441\u0442\u0438 \u043a \u0432\u044b\u0445\u043e\u0434\u0443 \u0438\u0437 \u043a\u043e\u043d\u0442\u0435\u0439\u043d\u0435\u0440\u0430, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u043e\u043c\u0443 \u0441 \u043a\u043e\u043c\u0430\u043d\u0434\u043e\u0439 WORKDIR. \u0420\u0435\u0430\u043b\u0438\u0437\u0443\u0435\u0442\u0441\u044f \u043f\u0440\u0438 \u0437\u0430\u043f\u0443\u0441\u043a\u0435 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0433\u043e \u043e\u0431\u0440\u0430\u0437\u0430 \u0438\u043b\u0438 \u0441\u043e\u0437\u0434\u0430\u043d\u0438\u0438 \u043e\u0431\u0440\u0430\u0437\u0430 \u043a\u043e\u043d\u0442\u0435\u0439\u043d\u0435\u0440\u0430 \u0441 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435\u043c \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0433\u043e \u0444\u0430\u0439\u043b\u0430 Dockerfile \u0438\u043b\u0438 \u0438\u0441\u0445\u043e\u0434\u043d\u043e\u0433\u043e \u043e\u0431\u0440\u0430\u0437\u0430.\n\n\u041d\u0430 \u0441\u0435\u0433\u043e\u0434\u043d\u044f\u0448\u043d\u0438\u0439 \u0434\u0435\u043d\u044c \u043d\u0435\u0442 \u043d\u0438\u043a\u0430\u043a\u0438\u0445 \u0434\u043e\u043a\u0430\u0437\u0430\u0442\u0435\u043b\u044c\u0441\u0442\u0432 \u0442\u043e\u0433\u043e, \u0447\u0442\u043e \u043a\u0430\u043a\u043e\u0439-\u043b\u0438\u0431\u043e \u0438\u0437 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u043d\u044b\u0445 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043a\u043e\u0432 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043b\u0441\u044f \u0432 \u0434\u0438\u043a\u043e\u0439 \u043f\u0440\u0438\u0440\u043e\u0434\u0435. \n\n\u0422\u0435\u043c \u043d\u0435 \u043c\u0435\u043d\u0435\u0435, \u043f\u043e\u0441\u043a\u043e\u043b\u044c\u043a\u0443 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u044e\u0442 \u0448\u0438\u0440\u043e\u043a\u043e \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u043c\u044b\u0435 \u043d\u0438\u0437\u043a\u043e\u0443\u0440\u043e\u0432\u043d\u0435\u0432\u044b\u0435 \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u044b \u043a\u043e\u043d\u0442\u0435\u0439\u043d\u0435\u0440\u043d\u043e\u0433\u043e \u0434\u0432\u0438\u0436\u043a\u0430 \u0438 \u0438\u043d\u0441\u0442\u0440\u0443\u043c\u0435\u043d\u0442\u044b \u0441\u0431\u043e\u0440\u043a\u0438 \u043a\u043e\u043d\u0442\u0435\u0439\u043d\u0435\u0440\u043e\u0432, Snyk \u043d\u0430\u0441\u0442\u043e\u044f\u0442\u0435\u043b\u044c\u043d\u043e \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u0435\u0442 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f\u043c \u0441\u043b\u0435\u0434\u0438\u0442\u044c \u0437\u0430 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f\u043c\u0438 \u043e\u0442 \u043f\u043e\u0441\u0442\u0430\u0432\u0449\u0438\u043a\u043e\u0432, \u043f\u0440\u0435\u0434\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u044e\u0449\u0438\u0445 \u0441\u0432\u043e\u0438 \u0441\u0440\u0435\u0434\u044b \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043a\u043e\u043d\u0442\u0435\u0439\u043d\u0435\u0440\u043e\u0432.\n\n\u0412 \u0441\u0432\u043e\u044e \u043e\u0447\u0435\u0440\u0435\u0434\u044c, Docker \u0441\u043e\u043e\u0431\u0449\u0430\u0435\u0442, \u0447\u0442\u043e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u043d\u043e \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c \u0442\u043e\u043b\u044c\u043a\u043e \u0432 \u0442\u043e\u043c \u0441\u043b\u0443\u0447\u0430\u0435, \u0435\u0441\u043b\u0438 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044c \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u0432\u0437\u0430\u0438\u043c\u043e\u0434\u0435\u0439\u0441\u0442\u0432\u0443\u0435\u0442 \u0441 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u043c \u043a\u043e\u043d\u0442\u0435\u043d\u0442\u043e\u043c, \u0432\u043a\u043b\u044e\u0447\u0430\u044f \u0435\u0433\u043e \u0432 \u043f\u0440\u043e\u0446\u0435\u0441\u0441 \u0441\u0431\u043e\u0440\u043a\u0438 \u0438\u043b\u0438 \u0437\u0430\u043f\u0443\u0441\u043a\u0430\u044f \u043a\u043e\u043d\u0442\u0435\u0439\u043d\u0435\u0440 \u0438\u0437 \u043c\u043e\u0448\u0435\u043d\u043d\u0438\u0447\u0435\u0441\u043a\u043e\u0433\u043e \u043e\u0431\u0440\u0430\u0437\u0430.\n\nAWS \u0438 Google Cloud \u0442\u0430\u043a\u0436\u0435 \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0438 \u0441\u043e\u0431\u0441\u0442\u0432\u0435\u043d\u043d\u044b\u0435 \u043e\u043f\u043e\u0432\u0435\u0449\u0435\u043d\u0438\u044f, \u043f\u0440\u0438\u0437\u044b\u0432\u0430\u044f \u043a\u043b\u0438\u0435\u043d\u0442\u043e\u0432 \u043f\u0440\u0438\u043d\u044f\u0442\u044c \u0441\u043e\u043e\u0442\u0432\u0435\u0442\u0441\u0442\u0432\u0443\u044e\u0449\u0438\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u043c\u0435\u0440\u0435 \u043d\u0435\u043e\u0431\u0445\u043e\u0434\u0438\u043c\u043e\u0441\u0442\u0438.", "creation_timestamp": "2024-02-01T17:55:34.000000Z"}, {"uuid": "df42950d-a0b9-45ba-b604-c75ac7767b52", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21620", "type": "seen", "source": "https://t.me/true_secator/5350", "content": "Juniper Networks \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0430 \u0441\u0440\u043e\u0447\u043d\u044b\u0435 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u041e\u0421 Junos \u0434\u043b\u044f\u00a0\u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u044b\u0445 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043a\u043e\u0432 \u0432 \u0441\u0435\u0440\u0438\u044f\u0445 SRX \u0438 EX, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043c\u043e\u0433\u0443\u0442 \u0431\u044b\u0442\u044c \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u044b \u0434\u043b\u044f \u043f\u043e\u043b\u0443\u0447\u0435\u043d\u0438\u044f \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u044f \u043d\u0430\u0434 \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u043c\u0438 \u0441\u0438\u0441\u0442\u0435\u043c\u0430\u043c\u0438.\n\n\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043e\u0442\u0441\u043b\u0435\u0436\u0438\u0432\u0430\u044e\u0442\u0441\u044f \u043a\u0430\u043a\u00a0CVE-2024-21619 \u0438 CVE-2024-21620\u00a0\u0438 \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u044e\u0442 \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442 J-Web, \u0432\u043b\u0438\u044f\u044f \u043d\u0430 \u0432\u0441\u0435 \u0432\u0435\u0440\u0441\u0438\u0438 \u041e\u0421 Junos.\n\nCVE-2024-21619\u00a0(CVSS: 5,3) \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043e\u0442\u0441\u0443\u0442\u0441\u0442\u0432\u0438\u0435\u043c \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438 \u0434\u043b\u044f \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u043e\u0439 \u0444\u0443\u043d\u043a\u0446\u0438\u0438, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u043c\u043e\u0436\u0435\u0442 \u043f\u0440\u0438\u0432\u0435\u0441\u0442\u0438 \u043a \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u0438\u044e \u043a\u043e\u043d\u0444\u0438\u0434\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u043d\u043e\u0439 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438 \u043e \u043a\u043e\u043d\u0444\u0438\u0433\u0443\u0440\u0430\u0446\u0438\u0438.\n\n\u0414\u0440\u0443\u0433\u0430\u044f CVE-2024-21620\u00a0(CVSS: 8,8) \u043f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 \u0441\u043e\u0431\u043e\u0439 XSS-\u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u043c\u043e\u0436\u0435\u0442 \u043f\u0440\u0438\u0432\u0435\u0441\u0442\u0438 \u043a \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044e \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0445 \u043a\u043e\u043c\u0430\u043d\u0434 \u0441 \u0440\u0430\u0437\u0440\u0435\u0448\u0435\u043d\u0438\u044f\u043c\u0438 \u0446\u0435\u043b\u0438, \u0430\u0434\u043c\u0438\u043d\u0438\u0441\u0442\u0440\u0430\u0442\u043e\u0440\u0430, \u043f\u043e\u0441\u0440\u0435\u0434\u0441\u0442\u0432\u043e\u043c \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u0441\u043e\u0437\u0434\u0430\u043d\u043d\u043e\u0433\u043e \u0437\u0430\u043f\u0440\u043e\u0441\u0430.\n\n\u041e\u0431\u0435 \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u044b \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0438\u043b\u0438 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 watchTowr Labs, \u043e \u0447\u0435\u043c \u0441\u043e\u043e\u0442\u0432\u0435\u0442\u0441\u0442\u0432\u0443\u044e\u0449\u0438\u043c \u043e\u0431\u0440\u0430\u0437\u043e\u043c \u043f\u0440\u043e\u0438\u043d\u0444\u043e\u0440\u043c\u0438\u0440\u043e\u0432\u0430\u043b\u0438 \u043f\u043e\u0441\u0442\u0430\u0432\u0449\u0438\u043a\u0430.\n\n\u0412\u044b\u043f\u0443\u0449\u0435\u043d\u044b \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f, \u0430 \u0432 \u043a\u0430\u0447\u0435\u0441\u0442\u0432\u0435 \u0432\u0440\u0435\u043c\u0435\u043d\u043d\u043e\u0439 \u043c\u0435\u0440\u044b, \u043f\u043e\u043a\u0430 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u043d\u0435 \u0431\u0443\u0434\u0443\u0442 \u0440\u0430\u0437\u0432\u0435\u0440\u043d\u0443\u0442\u044b, Juniper \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u0435\u0442 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f\u043c \u043e\u0442\u043a\u043b\u044e\u0447\u0438\u0442\u044c J-Web \u0438\u043b\u0438 \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0438\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f \u0442\u043e\u043b\u044c\u043a\u043e \u0434\u043e\u0432\u0435\u0440\u0435\u043d\u043d\u044b\u043c \u0445\u043e\u0441\u0442\u0430\u043c.", "creation_timestamp": "2024-01-30T12:24:12.000000Z"}, {"uuid": "b6f8a20e-98e7-4676-89e0-f5e0653c8f62", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21624", "type": "seen", "source": "https://t.me/ctinow/198611", "content": "https://ift.tt/PncDXHk\nCVE-2024-21624 | nonebot2 Message Template special elements used in a template engine (GHSA-59j8-776v-xxxg)", "creation_timestamp": "2024-03-03T09:16:25.000000Z"}, {"uuid": "37608b09-09ea-4ad0-9dd3-1b77d1c14c25", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21626", "type": "published-proof-of-concept", "source": "https://t.me/ctinow/195999", "content": "https://ift.tt/UYHqt2e\nGitHub: CVE-2024-21626 Container breakout through process.cwd trickery and leaked fds", "creation_timestamp": "2024-02-28T23:56:48.000000Z"}, {"uuid": "da9d9394-0e6c-4812-b5ca-9528c7790481", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21620", "type": "seen", "source": "https://t.me/ctinow/187348", "content": "https://ift.tt/u0qf4vI\nCVE-2024-21620 | Juniper Junos OS prior 23.4R2 on SRX/EX URL webauth_operation.php emit_debug_note cross site scripting (JSA76390)", "creation_timestamp": "2024-02-18T19:46:14.000000Z"}, {"uuid": "c8f74090-ba0b-4445-a42c-7ea710331a85", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21624", "type": "seen", "source": "https://t.me/ctinow/182354", "content": "https://ift.tt/sZmpYUt\nCVE-2024-21624", "creation_timestamp": "2024-02-10T00:21:24.000000Z"}, {"uuid": "ac147937-ef8e-46be-89d7-5cd813e17419", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21626", "type": "seen", "source": "https://t.me/ctinow/177764", "content": "https://ift.tt/ztbDLl6\nCVE-2024-21626 Exploit", "creation_timestamp": "2024-02-01T20:16:34.000000Z"}, {"uuid": "04786524-488a-48b9-83f9-fef1341eeaef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21626", "type": "seen", "source": "https://t.me/ctinow/177539", "content": "https://ift.tt/p6WuzJI\nCVE-2024-21626 | opencontainers runc up to 1.1.11 on Linux Internal File Descriptor file descriptor (GHSA-xr7r-f8xq-vfvv)", "creation_timestamp": "2024-02-01T12:41:13.000000Z"}, {"uuid": "6baee0dc-a194-482d-abd9-28b7c9f35d52", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21626", "type": "seen", "source": "https://t.me/ctinow/177172", "content": "https://ift.tt/IkOAouq\nCVE-2024-21626", "creation_timestamp": "2024-01-31T23:26:18.000000Z"}, {"uuid": "76c9a1b6-85b0-4291-a323-f2f3cb551d07", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21626", "type": "seen", "source": "https://t.me/ctinow/177150", "content": "https://ift.tt/aHqr1yx\nCVE-2024-21626", "creation_timestamp": "2024-01-31T22:56:31.000000Z"}, {"uuid": "d3982206-98a8-47fb-902b-d24df76c0656", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21628", "type": "seen", "source": "https://t.me/ctinow/171831", "content": "https://ift.tt/1cverQ5\nCVE-2024-21628 | PrestaShop up to 8.1.2 Form isCleanHtml cross site scripting (GHSA-vr7m-r9vm-m4wf)", "creation_timestamp": "2024-01-23T10:26:57.000000Z"}, {"uuid": "20d81416-0f8a-41a2-8dcd-f220deef659c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21627", "type": "seen", "source": "https://t.me/ctinow/171833", "content": "https://ift.tt/t4xMLbF\nCVE-2024-21627 | PrestaShop isCleanHTML cross site scripting (GHSA-xgpm-q3mq-46rq)", "creation_timestamp": "2024-01-23T10:26:59.000000Z"}, {"uuid": "f74a91d6-2b13-4bf7-a6c3-41a2d593f199", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21629", "type": "seen", "source": "https://t.me/ctinow/171785", "content": "https://ift.tt/56scvZS\nCVE-2024-21629 | rust-ethereum EVM up to 0.41.0 record_external_operation unknown vulnerability (GHSA-27wg-99g8-2v4v)", "creation_timestamp": "2024-01-23T09:21:30.000000Z"}, {"uuid": "74b0d96f-845e-49f5-a34d-47c81c19804f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21620", "type": "seen", "source": "https://t.me/ctinow/173889", "content": "https://ift.tt/z7sVCKT\nCVE-2024-21620", "creation_timestamp": "2024-01-26T00:26:38.000000Z"}, {"uuid": "e4b145fc-e9ad-4855-acdf-5a1482058f3f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21622", "type": "seen", "source": "https://t.me/ctinow/162525", "content": "https://ift.tt/AC2WslR\nCVE-2024-21622", "creation_timestamp": "2024-01-03T18:31:55.000000Z"}, {"uuid": "36ca98dd-c50e-4991-94ff-1f9b81f35720", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21622", "type": "seen", "source": "https://t.me/ctinow/172332", "content": "https://ift.tt/5Jwxi0F\nCVE-2024-21622 | Craft CMS up to 3.9.5/4.4.15 privileges management (GHSA-j5g9-j7r4-6qvx)", "creation_timestamp": "2024-01-23T22:01:55.000000Z"}, {"uuid": "f64e03b6-071d-4d86-aca2-d87f92649568", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21627", "type": "seen", "source": "https://t.me/ctinow/162058", "content": "https://ift.tt/IMx3gG1\nCVE-2024-21627", "creation_timestamp": "2024-01-02T22:26:55.000000Z"}, {"uuid": "c6021c2d-af0b-4709-abf6-9a355e709d6e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21623", "type": "seen", "source": "https://t.me/ctinow/162057", "content": "https://ift.tt/dAT7Ibr\nCVE-2024-21623", "creation_timestamp": "2024-01-02T22:26:53.000000Z"}, {"uuid": "be6058e9-a407-438e-a32b-a3a48d9a22eb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21629", "type": "seen", "source": "https://t.me/ctinow/162096", "content": "https://ift.tt/v3wYQ2K\nCVE-2024-21629", "creation_timestamp": "2024-01-02T23:26:57.000000Z"}, {"uuid": "9b917a6c-2ae5-4088-a36f-19824abc439b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21628", "type": "seen", "source": "https://t.me/ctinow/162095", "content": "https://ift.tt/42t6oaG\nCVE-2024-21628", "creation_timestamp": "2024-01-02T23:26:56.000000Z"}, {"uuid": "81ce03d7-300e-4edc-9cab-0553748a32aa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21623", "type": "seen", "source": "https://t.me/ctinow/164700", "content": "https://ift.tt/Mm7S6yz\nCVE-2024-21623 Exploit", "creation_timestamp": "2024-01-08T23:17:28.000000Z"}, {"uuid": "65e0e08e-668a-4925-aa5c-8e05dbbec045", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21625", "type": "seen", "source": "https://t.me/ctinow/163089", "content": "https://ift.tt/F4blZkE\nCVE-2024-21625", "creation_timestamp": "2024-01-04T16:32:09.000000Z"}, {"uuid": "76cca118-7a94-4098-81f1-d97529764ea8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21620", "type": "seen", "source": "https://t.me/thehackernews/4472", "content": "\ud83d\udea8 Patch now! High-severity Junos OS vulnerabilities exposed (CVE-2024-21619, CVE-2024-21620). These flaws could let attackers steal sensitive data or even take control of your devices. \n \nDetails here: https://thehackernews.com/2024/01/juniper-networks-releases-urgent-junos.html \n \nDon't wait - update your Junos OS now!", "creation_timestamp": "2024-01-30T06:04:06.000000Z"}, {"uuid": "310d7f5b-6f67-4c9f-81f8-bb0a66657ef2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21626", "type": "published-proof-of-concept", "source": "https://t.me/CNArsenal/1949", "content": "https://snyk.io/blog/cve-2024-21626-runc-process-cwd-container-breakout/\n#poc", "creation_timestamp": "2024-02-04T05:15:59.000000Z"}, {"uuid": "202bc035-0466-489e-b138-5f933e8bec29", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21626", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/9896", "content": "#exploit\n1. CVE-2024-1019:\nModSecurity v3 WAF bypass\nhttps://owasp.org/www-project-modsecurity/tab_cves#cve-2024-1019-2024-01-30\n\n2. CVE-2024-21626:\nRunc container issue\nhttps://github.com/Wall1e/CVE-2024-21626-POC\n]-&gt; https://github.com/NitroCao/CVE-2024-21626\n\n3. CVE-2023-40140:\nAndroid_view_InputDevice_create of android_view_InputDevice.cpp - LPE/UaF\nhttps://github.com/hshivhare67/platform_frameworks_base_AOSP6_r22_CVE-2023-40140", "creation_timestamp": "2024-02-07T17:55:40.000000Z"}, {"uuid": "1c431e7c-0529-4880-8ec9-1a6329662386", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21626", "type": "published-proof-of-concept", "source": "https://t.me/Rootsec_2/2700", "content": "#exploit\n1. CVE-2024-1019:\nModSecurity v3 WAF bypass\nhttps://owasp.org/www-project-modsecurity/tab_cves#cve-2024-1019-2024-01-30\n\n2. CVE-2024-21626:\nRunc container issue\nhttps://github.com/Wall1e/CVE-2024-21626-POC\n\n3. CVE-2023-40140:\nAndroid_view_InputDevice_create of android_view_InputDevice.cpp - LPE/UaF\nhttps://github.com/hshivhare67/platform_frameworks_base_AOSP6_r22_CVE-2023-40140", "creation_timestamp": "2024-08-16T09:13:11.000000Z"}, {"uuid": "521034ee-28d2-4522-9b91-05e0964dad24", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2024-21626", "type": "seen", "source": "https://gist.github.com/deepk2u/b2e677daa29dcaa75f6cf6f3b6474085", "content": "", "creation_timestamp": "2026-05-19T20:16:26.000000Z"}, {"uuid": "8f620782-c855-4b18-8d7a-120677320008", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2024-21623", "type": "seen", "source": "https://bsky.app/profile/hugovalters.bsky.social/post/3mn5qgi3lmk2h", "content": "", "creation_timestamp": "2026-05-31T14:07:25.018340Z"}, {"uuid": "75f0b784-d7aa-4951-8f59-3f2e9f245239", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2024-21626", "type": "seen", "source": "https://poliverso.org/objects/0477a01e-2e54eb0a-d667ea69d57c98d8", "content": "", "creation_timestamp": "2026-06-01T10:17:00.344171Z"}, {"uuid": "895a3d28-c49e-4382-b9a2-6aa044cd0bab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2024-21626", "type": "seen", "source": "https://bsky.app/profile/boredchilada.bsky.social/post/3mna3ohgkys2y", "content": "", "creation_timestamp": "2026-06-01T12:34:03.831491Z"}, {"uuid": "764bcc5d-5b02-4ef9-90ad-1a16b163fab4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21626", "type": "seen", "source": "MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd", "content": "", "creation_timestamp": "2025-02-06T03:13:46.000000Z"}, {"uuid": "04d605d8-818b-4b7c-970d-32dfa9411c07", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21626", "type": "seen", "source": "MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd", "content": "", "creation_timestamp": "2025-02-23T04:11:00.000000Z"}, {"uuid": "d297fe18-fff5-4cf8-aadf-0e4b69d2b24a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21626", "type": "seen", "source": "https://bsky.app/profile/opsmatters.com/post/3lrymbhliym2c", "content": "", "creation_timestamp": "2025-06-19T22:49:29.511997Z"}, {"uuid": "d7ceb04f-87ff-4880-bbfb-105d91bef103", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21626", "type": "seen", "source": "https://bsky.app/profile/opsmatters.com/post/3lqtbaujps32v", "content": "", "creation_timestamp": "2025-06-05T02:23:47.933572Z"}, {"uuid": "4fefd04c-4734-4a5c-9448-c9d8b0483c92", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21626", "type": "seen", "source": "MISP/a9d21043-f825-4bac-8d2b-56fb9e8343e7", "content": "", "creation_timestamp": "2025-10-23T21:13:02.000000Z"}, {"uuid": "9ebfdfd0-8c22-4321-8284-6efc603bf203", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21626", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3m5236uir5o2p", "content": "", "creation_timestamp": "2025-11-07T12:26:16.001041Z"}, {"uuid": "1198cb91-147b-4ae4-b212-cf88e488887c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21626", "type": "seen", "source": "https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/local/runc_cwd_priv_esc.rb", "content": "", "creation_timestamp": "2024-02-05T12:35:04.000000Z"}, {"uuid": "bb576aa4-7368-4e78-ad92-b263cf3c5a05", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21626", "type": "seen", "source": "https://gist.github.com/namishelex01/c45e91ffc78335e7a096670758f310e6", "content": "", "creation_timestamp": "2025-12-17T18:58:48.000000Z"}, {"uuid": "aeabc5f1-2da0-4f5c-be76-471af1232a68", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "cve-2024-21626", "type": "seen", "source": "https://gist.github.com/alon710/2797ff918da18cd8efb7dd0b447a880e", "content": "", "creation_timestamp": "2026-01-24T21:32:25.000000Z"}, {"uuid": "f038d20f-9edd-4a12-b7e5-e826eae21506", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2024-21626", "type": "seen", "source": "https://gist.github.com/denhamparry/5ab60bf197097628223cf296dd65b22d", "content": "", "creation_timestamp": "2026-04-13T16:47:38.000000Z"}, {"uuid": "60378792-6644-43a3-b3de-c963269107d7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21626", "type": "seen", "source": "https://gist.github.com/jonathan-gruber-1/05724c8f2229fceca85cb5694e67abbd", "content": "", "creation_timestamp": "2026-02-13T10:12:10.000000Z"}, {"uuid": "f945ff73-214f-496f-b91e-8b0c58aeaf2a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2024-21626", "type": "seen", "source": "https://gist.github.com/ayinedjimi/45cff4a28b338e552246322477338cbb", "content": "", "creation_timestamp": "2026-02-20T20:02:56.000000Z"}, {"uuid": "ac0fc351-45ab-4892-99f3-f1064ae4faa5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21620", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-03-07)", "content": "", "creation_timestamp": "2026-03-07T00:00:00.000000Z"}, {"uuid": "541dda24-091f-4c24-bf1b-a0fba1a2a450", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21620", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2026-03-23)", "content": "", "creation_timestamp": "2026-03-23T00:00:00.000000Z"}, {"uuid": "c23df3de-a807-4b68-965e-b04c1e403914", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21620", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-03-23)", "content": "", "creation_timestamp": "2026-03-23T00:00:00.000000Z"}, {"uuid": "6cf95baa-140a-46b2-8e1c-879f885f35ca", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21626", "type": "seen", "source": "https://www.kyberturvallisuuskeskus.fi/fi/haavoittuvuus_06/2024", "content": "", "creation_timestamp": "2024-02-02T10:26:42.000000Z"}, {"uuid": "2ad53223-b4e0-4839-8a10-7622a42356f0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2024-21626", "type": "seen", "source": "https://gist.github.com/podhmo/1168c22d1738865f4e2d61018afadf8e", "content": "", "creation_timestamp": "2026-04-10T18:28:46.000000Z"}, {"uuid": "fa3b5425-2a0d-4afe-89dd-60b9a745d750", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21620", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2026-04-11)", "content": "", "creation_timestamp": "2026-04-11T00:00:00.000000Z"}, {"uuid": "919ee3bc-e3ae-4035-aa40-2072b47c6c5e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21620", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-04-11)", "content": "", "creation_timestamp": "2026-04-11T00:00:00.000000Z"}, {"uuid": "37cdda80-7825-4850-a380-89a4937a46b5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21626", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/6549", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1aCVE-2024-21626-poc-research-Reappearance-andtodo\nURL\uff1ahttps://github.com/cdxiaodong/CVE-2024-21626\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-02-02T03:59:01.000000Z"}, {"uuid": "f037b728-3318-40f1-a159-d929325d2633", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21626", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/9143", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1aSome scripts to simulate an attack (used for CVE-2024-21626)\nURL\uff1ahttps://github.com/adaammmeeee/little-joke\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-11-22T21:57:26.000000Z"}, {"uuid": "2c1dbf1c-4225-4fc7-8575-5cebe4145414", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21626", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/6541", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1aPoC and Detection for CVE-2024-21626\nURL\uff1ahttps://github.com/NitroCao/CVE-2024-21626\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-02-01T15:33:19.000000Z"}, {"uuid": "6b087dff-4e8a-450c-86fc-f6ab1febf613", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21626", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/6542", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1aPoC and Detection for CVE-2024-21626\nURL\uff1ahttps://github.com/White-Hat-HackerX/CVE-2024-0652\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-02-01T16:31:58.000000Z"}, {"uuid": "e70629ce-10e1-4805-a3e6-fc0b10ffa5ee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21626", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/16539", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-21626\n\ud83d\udd25 CVSS Score: 8.6 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H)\n\ud83d\udd39 Description: runc is a CLI tool for spawning and running containers on Linux according to the OCI specification. In runc 1.1.11 and earlier, due to an internal file descriptor leak, an attacker could cause a newly-spawned container process (from runc exec) to have a working directory in the host filesystem namespace, allowing for a container escape by giving access to the host filesystem (\"attack 2\"). The same attack could be used by a malicious image to allow a container process to gain access to the host filesystem through runc run (\"attack 1\"). Variants of attacks 1 and 2 could be also be used to overwrite semi-arbitrary host binaries, allowing for complete container escapes (\"attack 3a\" and \"attack 3b\"). runc 1.1.12 includes patches for this issue.\n\ud83d\udccf Published: 2024-01-31T21:31:14.391Z\n\ud83d\udccf Modified: 2025-05-15T16:02:34.619Z\n\ud83d\udd17 References:\n1. https://github.com/opencontainers/runc/security/advisories/GHSA-xr7r-f8xq-vfvv\n2. https://github.com/opencontainers/runc/commit/02120488a4c0fc487d1ed2867e901eeed7ce8ecf\n3. https://github.com/opencontainers/runc/releases/tag/v1.1.12\n4. http://www.openwall.com/lists/oss-security/2024/02/01/1\n5. http://www.openwall.com/lists/oss-security/2024/02/02/3\n6. http://packetstormsecurity.com/files/176993/runc-1.1.11-File-Descriptor-Leak-Privilege-Escalation.html\n7. https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SYMO3BANINS6RGFQFKPRG4FIOJ7GWYTL/\n8. https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2NLXNE23Q5ESQUAI22Z7A63JX2WMPJ2J/\n9. https://lists.debian.org/debian-lts-announce/2024/02/msg00005.html", "creation_timestamp": "2025-05-15T16:35:37.000000Z"}, {"uuid": "65a81a6c-572d-4527-b9e7-36a6abe3ab95", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21626", "type": "published-proof-of-concept", "source": "Telegram/voWFATsXOPuLWeKD8k0cV5Sa9L4yFNoX7u_A-GhWeg1v_OM", "content": "", "creation_timestamp": "2025-08-02T21:00:05.000000Z"}, {"uuid": "82844a68-df7d-43fc-af86-4bad098c4516", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21626", "type": "seen", "source": "https://t.me/kasperskyb2b/1123", "content": "\ud83c\udf81\ud83d\udde3 \u0421\u043b\u043e\u0436\u043d\u0430\u044f \u043d\u0435\u0434\u0435\u043b\u044f \u043d\u0430\u043c\u0435\u0447\u0430\u0435\u0442\u0441\u044f \u0443 \u0434\u0435\u0432\u043e\u043f\u0441-\u0438\u043d\u0436\u0435\u043d\u0435\u0440\u043e\u0432 \u0438 \u0432\u0441\u0435\u0445, \u043a\u0442\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u0442 \u043a\u043e\u043d\u0442\u0435\u0439\u043d\u0435\u0440\u043d\u044b\u0435 \u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u044b. \u0427\u0435\u0442\u044b\u0440\u0435 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 runc \u0438 BuildKit, \u043a\u043e\u043b\u043b\u0435\u043a\u0442\u0438\u0432\u043d\u043e \u043d\u0430\u0437\u0432\u0430\u043d\u043d\u044b\u0435 Leaky Vessels, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0442 \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0435\u043c\u0443 \u043e\u0441\u0443\u0449\u0435\u0441\u0442\u0432\u0438\u0442\u044c \u043f\u043e\u0431\u0435\u0433 \u0438\u0437 \u043a\u043e\u043d\u0442\u0435\u0439\u043d\u0435\u0440\u0430 \u0438 \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u043d\u0435\u0430\u0432\u0442\u043e\u0440\u0438\u0437\u043e\u0432\u0430\u043d\u043d\u044b\u0439 \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u041e\u0421 \u0445\u043e\u0441\u0442\u0430. \u0425\u043e\u0442\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043d\u0430\u0439\u0434\u0435\u043d\u044b \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u044f\u043c\u0438 \u0438 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u043f\u043e\u043a\u0430 \u043d\u0435 \u043f\u043e\u0434\u0432\u0435\u0440\u0433\u0430\u043b\u0438\u0441\u044c, \u0432\u0435\u0441\u044c\u043c\u0430 \u0432\u0435\u0440\u043e\u044f\u0442\u043d\u043e, \u0447\u0442\u043e \u043d\u0435\u043b\u0435\u0433\u0430\u043b\u044c\u043d\u044b\u0435 \u043a\u0440\u0438\u043f\u0442\u043e\u043c\u0430\u0439\u043d\u0435\u0440\u044b \u0438 \u043f\u0440\u043e\u0447\u0438\u0435 \u043d\u0435\u043f\u0440\u0438\u044f\u0442\u043d\u044b\u0435 \u043b\u044e\u0434\u0438 \u043d\u0430\u0447\u043d\u0443\u0442 \u0438\u043c\u0438 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c\u0441\u044f \u0432 \u0441\u043a\u043e\u0440\u043e\u043c \u0431\u0443\u0434\u0443\u0449\u0435\u043c.\n\nCVE-2024-23652 (CVSS 10) \u0432 BuildKit \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u043c\u0443 \u0444\u0440\u043e\u043d\u0442\u0435\u043d\u0434\u0443 \u0438\u043b\u0438 dockerfile \u0443\u0434\u0430\u043b\u044f\u0442\u044c \u0444\u0430\u0439\u043b\u044b \u0438 \u043f\u0430\u043f\u043a\u0438 \u0437\u0430 \u043f\u0440\u0435\u0434\u0435\u043b\u0430\u043c\u0438 \u043a\u043e\u043d\u0442\u0435\u0439\u043d\u0435\u0440\u0430, \u0432 \u0445\u043e\u0441\u0442-\u0441\u0438\u0441\u0442\u0435\u043c\u0435.  \u0418\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u043e \u0432 \u0432\u0435\u0440\u0441\u0438\u0438 0.12.5.\nCVE-2024-21626 (CVSS 8.6) \u0432 runc \u044f\u0432\u043b\u044f\u0435\u0442\u0441\u044f \u0443\u0442\u0435\u0447\u043a\u043e\u0439 \u0434\u0435\u0441\u043a\u0440\u0438\u043f\u0442\u043e\u0440\u0430 \u0444\u0430\u0439\u043b\u0430 \u0438 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u043c\u0443 \u043e\u0431\u0440\u0430\u0437\u0443 \u0437\u0430\u043f\u0443\u0441\u0442\u0438\u0442\u044c \u043a\u043e\u043d\u0442\u0435\u0439\u043d\u0435\u0440 \u0441 \u0440\u0430\u0431\u043e\u0447\u0435\u0439 \u043f\u0430\u043f\u043a\u043e\u0439 \u0432 \u043f\u0440\u043e\u0441\u0442\u0440\u0430\u043d\u0441\u0442\u0432\u0435 \u0445\u043e\u0441\u0442-\u041e\u0421. \u0418\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u043e \u0432 runc 1.1.12\nCVE-2024-23653 (CVSS 9.8) \u0432 BuildKit  \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0437\u0430\u043f\u0443\u0441\u0442\u0438\u0442\u044c \u043a\u043e\u043d\u0442\u0435\u0439\u043d\u0435\u0440 \u0441 \u043f\u043e\u0432\u044b\u0448\u0435\u043d\u043d\u044b\u043c\u0438 \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u044f\u043c\u0438, \u0430 CVE-2024-23651 (CVSS 8.7) \u043f\u0440\u0438\u0432\u043e\u0434\u0438\u0442 \u043a \u0433\u043e\u043d\u043a\u0435, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0435\u0439 \u043a\u043e\u043d\u0442\u0435\u0439\u043d\u0435\u0440\u0443 \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u0444\u0430\u0439\u043b\u0430\u043c \u0445\u043e\u0441\u0442\u0430.\n\n\u041f\u043e\u0441\u043a\u043e\u043b\u044c\u043a\u0443 \u043d\u0430 runc \u0438 Buildkit \u043e\u0441\u043d\u043e\u0432\u0430\u043d\u044b \u0431\u043e\u043b\u044c\u0448\u0438\u043d\u0441\u0442\u0432\u043e \u0448\u0438\u0440\u043e\u043a\u043e \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u043c\u044b\u0445 \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u043e\u0432 \u0434\u043b\u044f \u043a\u043e\u043d\u0442\u0435\u0439\u043d\u0435\u0440\u0438\u0437\u0430\u0446\u0438\u0438, \u0432\u043a\u043b\u044e\u0447\u0430\u044f Kubernetes \u0438 Docker, \u0432\u0435\u0441\u044c\u043c\u0430 \u0432\u0430\u0436\u043d\u043e \u0438\u0437\u0443\u0447\u0438\u0442\u044c \u0431\u044e\u043b\u043b\u0435\u0442\u0435\u043d\u0438 \u0432\u0430\u0448\u0435\u0433\u043e \u043f\u043e\u0441\u0442\u0430\u0432\u0449\u0438\u043a\u0430 \u044d\u0442\u0438\u0445 \u0440\u0435\u0448\u0435\u043d\u0438\u0439 (\u0443\u0436\u0435 \u043e\u0442\u043c\u0435\u0442\u0438\u043b\u0438\u0441\u044c AWS, Docker, Google \u0438 \u0434\u0440\u0443\u0433\u0438\u0435, \u043d\u0435 \u0433\u043e\u0432\u043e\u0440\u044f \u0443\u0436\u0435 \u043f\u0440\u043e runc \u0438 containerd) \u0438 \u0441\u0432\u043e\u0435\u0432\u0440\u0435\u043c\u0435\u043d\u043d\u043e \u043e\u0431\u043d\u043e\u0432\u0438\u0442\u044c \u0432\u0441\u0435 \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u044b \u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u044b, \u0432\u043a\u043b\u044e\u0447\u0430\u044f \u0438\u043d\u0441\u0442\u0440\u0443\u043c\u0435\u043d\u0442\u044b \u0441\u0431\u043e\u0440\u043a\u0438 \u043a\u043e\u043d\u0442\u0435\u0439\u043d\u0435\u0440\u043e\u0432 \u0432 \u043f\u0430\u0439\u043f\u043b\u0430\u0439\u043d\u0435 CI/CD, \u0434\u0435\u043c\u043e\u043d\u044b Docker \u0438 \u043e\u0440\u043a\u0435\u0441\u0442\u0440\u0430\u0442\u043e\u0440\u044b.  \n\n\u041d\u0443 \u0438 \u043a\u043e\u043d\u0435\u0447\u043d\u043e, \u044d\u0442\u043e \u0435\u0449\u0451 \u0440\u0430\u0437 \u043d\u0430\u043f\u043e\u043c\u0438\u043d\u0430\u0435\u0442, \u0447\u0442\u043e \u043a\u043e\u043c\u043f\u043b\u0435\u043a\u0441\u043d\u0430\u044f \u0437\u0430\u0449\u0438\u0442\u0430 \u043a\u043e\u043d\u0442\u0435\u0439\u043d\u0435\u0440\u043d\u043e\u0439 \u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u044b \u0441\u0442\u0430\u043b\u0430 \u043e\u0441\u0442\u0440\u043e\u0439 \u043d\u0435\u043e\u0431\u0445\u043e\u0434\u0438\u043c\u043e\u0441\u0442\u044c\u044e, \u0430 \u043d\u0435 \u0431\u043b\u0430\u0436\u044c\u044e \u0418\u0411-\u0448\u043d\u0438\u043a\u043e\u0432.\n\n#\u043d\u043e\u0432\u043e\u0441\u0442\u0438 @\u041f2\u0422", "creation_timestamp": "2024-02-02T10:20:07.000000Z"}, {"uuid": "98c6db88-7c3f-4091-8ce6-ad830f9da14d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21622", "type": "seen", "source": "https://t.me/cibsecurity/74336", "content": "\u203c\ufe0fCVE-2024-21622\u203c\ufe0f\n\nCraft is a content management system. This is a potential moderate impact, low complexity privilege escalation vulnerability in Craft starting in 3.x prior to 3.9.6 and 4.x prior to 4.4.16 with certain user permissions setups. This has been fixed in Craft 4.4.16 and Craft 3.9.6. Users should ensure they are running at least those versions.\n\n\ud83d\udcd6 Read more\n\nVia \"National Vulnerability Database\"", "creation_timestamp": "2024-01-04T01:37:13.000000Z"}, {"uuid": "7cde01ea-2c10-4476-8208-b5806cbd1f6c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21625", "type": "seen", "source": "https://t.me/cibsecurity/74425", "content": "\u203c\ufe0fCVE-2024-21625\u203c\ufe0f\n\nSideQuest is a place to get virtual reality applications for Oculus Quest. The SideQuest desktop application uses deep links with a custom protocol sidequest to trigger actions in the application from its web contents. Because, prior to version 0.10.35, the deep link URLs were not sanitized properly in all cases, a oneclick remote code execution can be achieved in cases when a device is connected, the user is presented with a malicious link and clicks it from within the application. As of version 0.10.35, the custom protocol links within the electron application are now being parsed and sanitized properly.\n\n\ud83d\udcd6 Read more\n\nVia \"National Vulnerability Database\"", "creation_timestamp": "2024-01-05T01:34:49.000000Z"}, {"uuid": "8ebe241f-d675-42fe-87aa-54c54fdf8af8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21626", "type": "seen", "source": "Telegram/_g77oYQgQgNWeGzTKzEzBqvOnDry1Bvbe5EDmpRTUMlzAQ", "content": "", "creation_timestamp": "2024-01-31T22:35:37.000000Z"}, {"uuid": "c10ace02-706c-4aaf-801a-227a2e5bb92b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21620", "type": "seen", "source": "Telegram/T8CptkEFwmnfPrOC-4_7FcOqV8e0JbkQMT40Z6rw5ORX4A", "content": "", "creation_timestamp": "2024-01-30T12:22:47.000000Z"}, {"uuid": "81c36a40-d2fb-44ca-9902-d9ea2bf943a5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21620", "type": "seen", "source": "https://t.me/KomunitiSiber/1411", "content": "Juniper Networks Releases Urgent Junos OS Updates for High-Severity Flaws\nhttps://thehackernews.com/2024/01/juniper-networks-releases-urgent-junos.html\n\nJuniper Networks has released out-of-band updates to\u00a0address high-severity flaws\u00a0in SRX Series and EX Series that could be exploited by a threat actor to take control of susceptible systems.\nThe vulnerabilities, tracked as\u00a0CVE-2024-21619 and CVE-2024-21620, are rooted in the J-Web component and impact all versions of Junos OS. Two other shortcomings, CVE-2023-36846 and", "creation_timestamp": "2024-01-30T06:41:04.000000Z"}, {"uuid": "8f8b6364-f407-442d-af1e-b4c83b8d7e31", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21626", "type": "seen", "source": "https://t.me/KomunitiSiber/1424", "content": "RunC Flaws Enable Container Escapes, Granting Attackers Host Access\nhttps://thehackernews.com/2024/02/runc-flaws-enable-container-escapes.html\n\nMultiple security vulnerabilities have been disclosed in the runC command line tool that could be exploited by threat actors to escape the bounds of the container and stage follow-on attacks.\nThe vulnerabilities, tracked as CVE-2024-21626, CVE-2024-23651, CVE-2024-23652, and CVE-2024-23653, have been collectively dubbed\u00a0Leaky Vessels\u00a0by cybersecurity vendor Snyk.\n\"These container", "creation_timestamp": "2024-01-31T23:07:57.000000Z"}]}