{"vulnerability": "CVE-2024-4516", "sightings": [{"uuid": "beab669e-d0fd-4243-83a8-27440ed3b5fe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-45169", "type": "seen", "source": "https://t.me/cvedetector/3877", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-45169 - Apache UCI IDOL Buffer Overflow and Denial-of-Service Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-45169 \nPublished : Aug. 22, 2024, 4:15 a.m. | 31\u00a0minutes ago \nDescription : An issue was discovered in UCI IDOL 2 (aka uciIDOL or IDOL2) through 2.12. Due to improper input validation, improper deserialization, and improper restriction of operations within the bounds of a memory buffer, IDOL2 is vulnerable to Denial-of-Service (DoS) attacks and possibly remote code execution via the \\xB0\\x00\\x3c byte sequence. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-22T06:49:10.000000Z"}, {"uuid": "e3060e10-eb95-47ea-8740-953bbfb9825e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-45163", "type": "seen", "source": "https://t.me/CyberBulletin/465", "content": "\u26a1\ufe0fHacking the Hacker: Researcher Found Critical Flaw (CVE-2024-45163) in Mirai Botnet.\n\n#CyberBulletin", "creation_timestamp": "2024-08-26T09:47:47.000000Z"}, {"uuid": "4a1845c4-35cd-4b90-b5d7-7ef55347a7ef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-45163", "type": "exploited", "source": "https://t.me/InfoSecInsider/62", "content": "\u26a1\ufe0fHacking the Hacker: Researcher Found Critical Flaw (CVE-2024-45163) in Mirai Botnet.\n\n#CyberBulletin", "creation_timestamp": "2024-08-26T09:47:53.000000Z"}, {"uuid": "b88211b0-778b-44a9-99a7-9fe66374ea13", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-45162", "type": "seen", "source": "https://bsky.app/profile/blackwiremedia.bsky.social/post/3m4fl3hqxmp22", "content": "", "creation_timestamp": "2025-10-30T08:44:47.521959Z"}, {"uuid": "36bfd04c-f908-4d6a-a5af-11510af3c625", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-45164", "type": "seen", "source": "https://t.me/cvedetector/9746", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-45164 - Akamai SIA ThreatAvert Unauthorized Policy Disabling\", \n  \"Content\": \"CVE ID : CVE-2024-45164 \nPublished : Nov. 4, 2024, 2:15 p.m. | 36\u00a0minutes ago \nDescription : Akamai SIA (Secure Internet Access Enterprise) ThreatAvert, in SPS (Security and Personalization Services) before the latest 19.2.0 patch and Apps Portal before 19.2.0.3 or 19.2.0.20240814, has incorrect authorization controls for the Admin functionality on the ThreatAvert Policy page. An authenticated user can navigate directly to the /#app/intelligence/threatAvertPolicies URI and disable policy enforcement. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"04 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-04T16:06:52.000000Z"}, {"uuid": "7d10355d-8c7d-4204-b3d2-99c70630b8d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-45163", "type": "seen", "source": "https://t.me/InfoSecInsider/23531", "content": "\u26a1\ufe0fHacking the Hacker: Researcher Found Critical Flaw (CVE-2024-45163) in Mirai Botnet.\n\n#CyberBulletin", "creation_timestamp": "2024-08-26T09:47:53.000000Z"}, {"uuid": "b3ac7449-c474-41d4-9de7-c4c3b8680872", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-45160", "type": "seen", "source": "https://t.me/cvedetector/7427", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-45160 - LemonLDAP::NG OAuth2 Authentication Credential Validation Bypass\", \n  \"Content\": \"CVE ID : CVE-2024-45160 \nPublished : Oct. 9, 2024, 5:15 a.m. | 42\u00a0minutes ago \nDescription : Incorrect credential validation in LemonLDAP::NG 2.18.x and 2.19.x before 2.19.2 allows attackers to bypass OAuth2 client authentication via an empty client_password parameter (client secret). \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-09T08:07:11.000000Z"}, {"uuid": "3145b276-9428-41c6-a426-4671cec69f69", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-45163", "type": "seen", "source": "https://t.me/cvedetector/3882", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-45163 - Cisco DNS: Unauthenticated TCP Connection Handling Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-45163 \nPublished : Aug. 22, 2024, 4:15 a.m. | 31\u00a0minutes ago \nDescription : The Mirai botnet through 2024-08-19 mishandles simultaneous TCP connections to the CNC (command and control) server. Unauthenticated sessions remain open, causing resource consumption. For example, an attacker can send a recognized username (such as root), or can send arbitrary data. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-22T06:49:16.000000Z"}, {"uuid": "373452b2-ed48-488a-8cfa-2d06655a3e41", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-45165", "type": "seen", "source": "https://t.me/cvedetector/3881", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-45165 - \"UCI IDOL 2 Hardcoded Key Weakness\"\", \n  \"Content\": \"CVE ID : CVE-2024-45165 \nPublished : Aug. 22, 2024, 4:15 a.m. | 31\u00a0minutes ago \nDescription : An issue was discovered in UCI IDOL 2 (aka uciIDOL or IDOL2) through 2.12. Data is sent between client and server with encryption. However, the key is derived from the string \"(c)2007 UCI Software GmbH B.Boll\" (without quotes). The key is both static and hardcoded. With access to messages, this results in message decryption and encryption by an attacker. Thus, it enables passive and active man-in-the-middle attacks. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-22T06:49:13.000000Z"}, {"uuid": "a84e6111-fe83-4d77-a813-285bd4068c3e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-45166", "type": "seen", "source": "https://t.me/cvedetector/3880", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-45166 - IBM UCI IDOL Buffer Overflow/Deserialization Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-45166 \nPublished : Aug. 22, 2024, 4:15 a.m. | 31\u00a0minutes ago \nDescription : An issue was discovered in UCI IDOL 2 (aka uciIDOL or IDOL2) through 2.12. Due to improper input validation, improper deserialization, and improper restriction of operations within the bounds of a memory buffer, IDOL2 is vulnerable to Denial-of-Service (DoS) attacks and possibly remote code execution. There is an access violation and EIP overwrite after five logins. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-22T06:49:12.000000Z"}, {"uuid": "9c22967b-ef58-4ee4-bff4-436453282b37", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-45167", "type": "seen", "source": "https://t.me/cvedetector/3879", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-45167 - \"IDOL2 XmlMessage Denial-of-Service and Remote Code Execution Vulnerability\"\", \n  \"Content\": \"CVE ID : CVE-2024-45167 \nPublished : Aug. 22, 2024, 4:15 a.m. | 31\u00a0minutes ago \nDescription : An issue was discovered in UCI IDOL 2 (aka uciIDOL or IDOL2) through 2.12. Due to improper input validation, improper deserialization, and improper restriction of operations within the bounds of a memory buffer, IDOL2 is vulnerable to Denial-of-Service (DoS) attacks and possibly remote code execution. A certain XmlMessage document causes 100% CPU consumption. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-22T06:49:11.000000Z"}, {"uuid": "2946f0b3-8efc-4abc-94e9-fa33b5420ffe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-45168", "type": "seen", "source": "https://t.me/cvedetector/3878", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-45168 - \"UCI IDOL Unauthenticated Raw Socket Vulnerability\"\", \n  \"Content\": \"CVE ID : CVE-2024-45168 \nPublished : Aug. 22, 2024, 4:15 a.m. | 31\u00a0minutes ago \nDescription : An issue was discovered in UCI IDOL 2 (aka uciIDOL or IDOL2) through 2.12. Data is transferred over a raw socket without any authentication mechanism. Thus, communication endpoints are not verifiable. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-22T06:49:11.000000Z"}, {"uuid": "4d41de2f-fe8f-4262-a8f4-9c089871dc6a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-45163", "type": "published-proof-of-concept", "source": "https://t.me/HackingInsights/11352", "content": "\u200aHacking the Hacker: Researcher Found Critical Flaw (CVE-2024-45163) in Mirai Botnet\n\nhttps://securityonline.info/hacking-the-hacker-researcher-found-critical-flaw-cve-2024-45163-in-mirai-botnet/", "creation_timestamp": "2024-08-26T16:57:49.000000Z"}, {"uuid": "02c19f92-b407-4cb0-9b50-ebb1ca7e09b9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-4516", "type": "seen", "source": "Telegram/nqerfjkFbGBKewO79wqQxInebYV4ip3YmAge_dZEI2Rt6dhJ", "content": "", "creation_timestamp": "2025-02-19T19:13:56.000000Z"}]}