{"vulnerability": "CVE-2024-2812", "sightings": [{"uuid": "6f9f9dea-95e9-475b-b98c-3dd499879520", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-28127", "type": "seen", "source": "MISP/db121278-a8f5-4f36-a226-e45f3a86f55e", "content": "", "creation_timestamp": "2025-08-26T13:26:33.000000Z"}, {"uuid": "0fe391e2-7024-401c-8c39-ce3474a8d3a6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-28122", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/12079", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-28122\n\ud83d\udd25 CVSS Score: 6.8 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H)\n\ud83d\udd39 Description:  JWX is Go module implementing various JWx (JWA/JWE/JWK/JWS/JWT, otherwise known as JOSE) technologies. This vulnerability allows an attacker with a trusted public key to cause a Denial-of-Service (DoS) condition by crafting a malicious JSON Web Encryption (JWE) token with an exceptionally high compression ratio. This issue has been patched in versions 1.2.29 and 2.0.21.\n\ud83d\udccf Published: 2024-03-09T00:45:50.129Z\n\ud83d\udccf Modified: 2025-04-16T15:49:42.161Z\n\ud83d\udd17 References:\n1. https://github.com/lestrrat-go/jwx/security/advisories/GHSA-hj3v-m684-v259\n2. https://github.com/lestrrat-go/jwx/releases/tag/v1.2.29\n3. https://github.com/lestrrat-go/jwx/releases/tag/v2.0.21", "creation_timestamp": "2025-04-16T15:56:05.000000Z"}, {"uuid": "f835b8ca-6d41-44b9-8fd5-0ba715437be1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-28125", "type": "seen", "source": "https://t.me/ctinow/210300", "content": "https://ift.tt/IbsT4iW\nCVE-2024-28125", "creation_timestamp": "2024-03-18T09:26:12.000000Z"}, {"uuid": "c399e4d6-2cee-4b2a-b9b5-e6fc5ab2a0dc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-28121", "type": "seen", "source": "https://t.me/ctinow/207158", "content": "https://ift.tt/zd9Q2mG\nStimulusReflex CVE-2024-28121", "creation_timestamp": "2024-03-13T21:07:20.000000Z"}, {"uuid": "2133bfd5-0c0e-4bb5-b581-33f0ca0f06bd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-28121", "type": "seen", "source": "https://t.me/ctinow/206177", "content": "https://ift.tt/NaUmpi8\nCVE-2024-28121", "creation_timestamp": "2024-03-12T21:26:43.000000Z"}, {"uuid": "cfd1cf27-a73b-4619-b5f5-84bd30092e02", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-28128", "type": "seen", "source": "https://t.me/ctinow/210295", "content": "https://ift.tt/qJQI8Ui\nCVE-2024-28128", "creation_timestamp": "2024-03-18T09:21:52.000000Z"}, {"uuid": "e0200193-2678-4fd6-a04b-c15f1ff87cfc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-28122", "type": "seen", "source": "https://t.me/ctinow/203726", "content": "https://ift.tt/v4OV8J1\nCVE-2024-28122", "creation_timestamp": "2024-03-09T02:31:48.000000Z"}, {"uuid": "e59d4dec-7234-4b10-9f4e-add8f7ce8fc7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-28122", "type": "seen", "source": "https://t.me/ctinow/203722", "content": "https://ift.tt/v4OV8J1\nCVE-2024-28122", "creation_timestamp": "2024-03-09T02:26:39.000000Z"}, {"uuid": "b3a6ed4f-c314-4a4e-b751-aa8e3dd78418", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-28120", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/10140", "content": "#exploit\n1. CVE-2024-28120:\nAPI abuse in codeium-chrome\nhttps://securitylab.github.com/advisories/GHSL-2024-027_GHSL-2024-028_codeium-chrome\n\n2. CVE-2024-22857:\nArbitrary Code Execution in ZLOG\nhttps://www.ebryx.com/blogs/arbitrary-code-execution-in-zlog-cve-2024-22857", "creation_timestamp": "2024-03-13T15:53:39.000000Z"}, {"uuid": "5d7b3ba9-e9e1-4548-94cb-f6f61ed6dd17", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-28128", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/8259", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-28128\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Cross-site scripting vulnerability exists in FitNesse releases prior to 20220319, which may allow a remote unauthenticated attacker to execute an arbitrary script on the web browser of the user who is using the product and accessing a link with a specially crafted certain parameter.\n\ud83d\udccf Published: 2024-03-18T07:31:34.749Z\n\ud83d\udccf Modified: 2025-03-20T19:10:27.895Z\n\ud83d\udd17 References:\n1. https://github.com/unclebob/fitnesse\n2. http://fitnesse.org/FitNesseDownload\n3. https://github.com/unclebob/fitnesse/blob/master/SECURITY.md\n4. https://jvn.jp/en/jp/JVN94521208/", "creation_timestamp": "2025-03-20T19:18:20.000000Z"}, {"uuid": "0d025dbf-43ed-4af2-b1a7-6db487a01531", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-28121", "type": "seen", "source": "https://t.me/ctinow/206165", "content": "https://ift.tt/NaUmpi8\nCVE-2024-28121", "creation_timestamp": "2024-03-12T21:22:12.000000Z"}, {"uuid": "0424ad8e-2204-4a48-8bf4-9aa58cd27930", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-28128", "type": "seen", "source": "https://t.me/ctinow/210301", "content": "https://ift.tt/qJQI8Ui\nCVE-2024-28128", "creation_timestamp": "2024-03-18T09:26:16.000000Z"}, {"uuid": "3ef1d391-c40d-4278-8a8a-1e98170d5b09", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-28120", "type": "seen", "source": "https://t.me/ctinow/205137", "content": "https://ift.tt/KUGuEkT\nCVE-2024-28120", "creation_timestamp": "2024-03-11T23:27:09.000000Z"}, {"uuid": "b681e6b9-8343-4160-9f50-6cc1ba2c90d1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-28120", "type": "seen", "source": "https://t.me/ctinow/205145", "content": "https://ift.tt/KUGuEkT\nCVE-2024-28120", "creation_timestamp": "2024-03-11T23:27:23.000000Z"}, {"uuid": "38ec07b9-5918-4445-8a7b-8d73b1f8ad73", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-28127", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lhz7a3giqb2d", "content": "", "creation_timestamp": "2025-02-12T22:16:47.525372Z"}, {"uuid": "649c6093-7c6f-46db-b5c8-def7c64b865a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-28127", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113993271863559896", "content": "", "creation_timestamp": "2025-02-12T22:28:10.755808Z"}, {"uuid": "eee2a806-81bb-4e93-928b-75ca0d90b3cb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-28125", "type": "seen", "source": "https://t.me/ctinow/210294", "content": "https://ift.tt/IbsT4iW\nCVE-2024-28125", "creation_timestamp": "2024-03-18T09:21:52.000000Z"}, {"uuid": "df8bf97d-151c-48e2-8e6b-168034d850d4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-28122", "type": "seen", "source": "https://t.me/ctinow/204203", "content": "https://ift.tt/FJNQ4TH\nCVE-2024-28122", "creation_timestamp": "2024-03-10T10:46:12.000000Z"}]}