{"vulnerability": "CVE-2024-4625", "sightings": [{"uuid": "8ac1f839-b0c9-404e-80f1-b7e630a3d7ba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-4625", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lhulteohja27", "content": "", "creation_timestamp": "2025-02-11T02:19:01.020574Z"}, {"uuid": "047c3512-5b5f-439d-8347-bcd4ed997249", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-46258", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/7581", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-46258\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: cute_png v1.05 was discovered to contain a heap buffer overflow via the cp_load_png_mem() function at cute_png.h.\n\ud83d\udccf Published: 2024-10-01T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-14T15:30:41.157Z\n\ud83d\udd17 References:\n1. https://github.com/Helson-S/FuzzyTesting/blob/master/cute_headers/cute_png/heapof-r1-cp_load_png_mem-cute_png-1105c15\n2. https://github.com/Helson-S/FuzzyTesting/blob/master/cute_headers/cute_png/heapof-r1-cp_load_png_mem-cute_png-1105c15/vulDescription.md\n3. https://github.com/Helson-S/FuzzyTesting/blob/master/cute_headers/cute_png/heapof-r1-cp_load_png_mem-cute_png-1105c15/poc\n4. https://github.com/Helson-S/FuzzyTesting/blob/master/cute_headers/cute_png/heapof-r1-cp_load_png_mem-cute_png-1105c15/poc/sample2.png\n5. https://github.com/Helson-S/FuzzyTesting/blob/master/cute_headers/cute_png/heapof-r1-cp_load_png_mem-cute_png-1105c15/vulDescription.assets/image-20240527231514578.png", "creation_timestamp": "2025-03-14T15:43:34.000000Z"}, {"uuid": "e787a40a-83b6-41d1-861e-939b755fbb06", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-46259", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/7939", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-46259\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: cute_png v1.05 was discovered to contain a heap buffer overflow via the cp_unfilter() function at cute_png.h.\n\ud83d\udccf Published: 2024-10-01T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-18T16:21:27.136Z\n\ud83d\udd17 References:\n1. https://github.com/Helson-S/FuzzyTesting/blob/master/cute_headers/cute_png/heapof-r1-cp_unfilter-cute_png-1019c11\n2. https://github.com/Helson-S/FuzzyTesting/blob/master/cute_headers/cute_png/heapof-r1-cp_unfilter-cute_png-1019c11/vulDescription.md\n3. https://github.com/Helson-S/FuzzyTesting/blob/master/cute_headers/cute_png/heapof-r1-cp_unfilter-cute_png-1019c11/poc\n4. https://github.com/Helson-S/FuzzyTesting/blob/master/cute_headers/cute_png/heapof-r1-cp_unfilter-cute_png-1019c11/poc/sample6.png\n5. https://github.com/Helson-S/FuzzyTesting/blob/master/cute_headers/cute_png/heapof-r1-cp_unfilter-cute_png-1019c11/vulDescription.assets/image-20240527232602298.png", "creation_timestamp": "2025-03-18T16:51:33.000000Z"}, {"uuid": "a29332dc-95d6-4d01-9dda-e107959b4028", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-46259", "type": "seen", "source": "https://t.me/cvedetector/6752", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-46259 - CutePNG Heap Buffer Overflow\", \n  \"Content\": \"CVE ID : CVE-2024-46259 \nPublished : Oct. 1, 2024, 2:15 p.m. | 30\u00a0minutes ago \nDescription : cute_png v1.05 was discovered to contain a heap buffer overflow via the cp_unfilter() function at cute_png.h. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"01 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-01T16:55:34.000000Z"}, {"uuid": "bcf60b06-0ab6-442a-b29d-e88e64d67f45", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-46258", "type": "seen", "source": "https://t.me/cvedetector/6751", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-46258 - CutePNG Heap Buffer Overflow\", \n  \"Content\": \"CVE ID : CVE-2024-46258 \nPublished : Oct. 1, 2024, 2:15 p.m. | 30\u00a0minutes ago \nDescription : cute_png v1.05 was discovered to contain a heap buffer overflow via the cp_load_png_mem() function at cute_png.h. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"01 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-01T16:55:33.000000Z"}, {"uuid": "37fd432a-9111-4540-9f0c-69de53130bd1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-46257", "type": "seen", "source": "https://t.me/cvedetector/6566", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-46257 - NginxProxyManager Command Injection Remote Code Execution\", \n  \"Content\": \"CVE ID : CVE-2024-46257 \nPublished : Sept. 27, 2024, 6:15 p.m. | 34\u00a0minutes ago \nDescription : A Command injection vulnerability in requestLetsEncryptSslWithDnsChallenge in NginxProxyManager 2.11.3 allows an attacker to achieve remote code execution via Add Let's Encrypt Certificate. NOTE: this is not part of any NGINX software shipped by F5. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"27 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-27T20:55:14.000000Z"}, {"uuid": "897be0cf-6427-4a22-bbe6-5a3c1af45a54", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-46256", "type": "seen", "source": "https://t.me/cvedetector/6570", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-46256 - NginxProxyManager Command Injection RCE\", \n  \"Content\": \"CVE ID : CVE-2024-46256 \nPublished : Sept. 27, 2024, 6:15 p.m. | 34\u00a0minutes ago \nDescription : A Command injection vulnerability in requestLetsEncryptSsl in NginxProxyManager 2.11.3 allows an attacker to RCE via Add Let's Encrypt Certificate. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"27 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-27T20:55:20.000000Z"}]}