{"vulnerability": "CVE-2024-4725", "sightings": [{"uuid": "15848063-2eee-4c50-b3a1-de3c6cc60f1d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47255", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-24-319-17", "content": "", "creation_timestamp": "2024-11-14T12:00:00.000000Z"}, {"uuid": "03241a79-be08-4994-b2b9-e67fd990fc3b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47253", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-24-319-17", "content": "", "creation_timestamp": "2024-11-14T12:00:00.000000Z"}, {"uuid": "bf19cf55-25c8-42f5-a2be-734724a74ad9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47254", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-24-319-17", "content": "", "creation_timestamp": "2024-11-14T12:00:00.000000Z"}, {"uuid": "66a63398-bc2b-404f-a065-6a1d9fd1bbc6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47257", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113548087510320019", "content": "", "creation_timestamp": "2024-11-26T07:31:56.346700Z"}, {"uuid": "36dacbca-f76c-4335-ba09-d3c08149a963", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47258", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lhkdkgyjc52a", "content": "", "creation_timestamp": "2025-02-07T00:24:16.112826Z"}, {"uuid": "f22415d0-0ef9-4ce7-884d-14a1c83c5b5e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47256", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113958559487031600", "content": "", "creation_timestamp": "2025-02-06T19:20:21.530666Z"}, {"uuid": "7dc61f59-f2cf-48c3-a9d1-072a61579a97", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47258", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113958559501650306", "content": "", "creation_timestamp": "2025-02-06T19:20:21.865250Z"}, {"uuid": "418a6304-c044-4902-ad94-9a035505bbe4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47256", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lhjvoszcyn27", "content": "", "creation_timestamp": "2025-02-06T20:16:08.610623Z"}, {"uuid": "dc9b4ef7-6528-4858-9bf8-40b33fbafa60", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47258", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lhjvowds5w26", "content": "", "creation_timestamp": "2025-02-06T20:16:12.057272Z"}, {"uuid": "38f272a0-8d95-4b35-b07b-195b15e9a85f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47258", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/113958906267481273", "content": "", "creation_timestamp": "2025-02-06T20:48:33.296122Z"}, {"uuid": "e915bb7d-f673-4b37-a0a1-782dd994b9fc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47259", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114104471150686454", "content": "", "creation_timestamp": "2025-03-04T13:47:37.518949Z"}, {"uuid": "14a7a379-4394-4356-b724-eb4a960d1a89", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47252", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114830011674092966", "content": "", "creation_timestamp": "2025-07-10T17:02:07.488227Z"}, {"uuid": "ba89ce8b-113b-4e37-8d8a-84112d53f89c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47252", "type": "seen", "source": "https://bsky.app/profile/bluesky.awakari.com/post/3lxz62klhk72v", "content": "", "creation_timestamp": "2025-09-04T12:38:55.272992Z"}, {"uuid": "8c9e263a-e5dc-434c-82c8-f5169a4c104c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2024-47252", "type": "seen", "source": "https://gist.github.com/stanibaj/bbac7fc0cdd8d4b9e30419a14d192f0e", "content": "", "creation_timestamp": "2026-04-19T16:07:53.000000Z"}, {"uuid": "e4840f64-f43b-4567-9077-5ca1a45e0902", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2024-47252", "type": "seen", "source": "https://gist.github.com/stanibaj/9c1b6c8cb546658ba97b0f661fddf7f9", "content": "", "creation_timestamp": "2026-04-18T17:28:14.000000Z"}, {"uuid": "26411234-64de-460b-bb01-66386776354b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2024-47252", "type": "seen", "source": "https://gist.github.com/stanibaj/308dc15c19dd64e8379269614a768afb", "content": "", "creation_timestamp": "2026-04-18T17:45:51.000000Z"}, {"uuid": "ee9af6e7-1697-4d3d-b200-44eed610d6f5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2024-47252", "type": "seen", "source": "https://gist.github.com/stanibaj/0c272d06ca7cc073f1d673642e2e3e93", "content": "", "creation_timestamp": "2026-04-18T18:19:31.000000Z"}, {"uuid": "eb7d0835-a80d-4921-a6fb-63df4de98c72", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47259", "type": "seen", "source": "https://t.me/cvedetector/19466", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-47259 - Axis VAPIX API Command Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-47259 \nPublished : March 4, 2025, 6:15 a.m. | 23\u00a0minutes ago \nDescription : Girishunawane, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API dynamicoverlay.cgi did not have a sufficient input validation allowing for a possible command injection leading to being able to transfer files to the Axis device with the purpose to exhaust system resources.   \nAxis has released patched AXIS OS versions for the highlighted flaw. Please refer to the Axis security advisory for more information and solution. \nSeverity: 3.5 | LOW \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"04 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-04T08:18:25.000000Z"}, {"uuid": "e2519c67-2aaf-4604-bba4-fedfd5c835de", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47258", "type": "seen", "source": "https://t.me/cvedetector/17423", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-47258 - 2N Access Commander TLS Certificate Verification Weakness\", \n  \"Content\": \"CVE ID : CVE-2024-47258 \nPublished : Feb. 6, 2025, 8:15 p.m. | 26\u00a0minutes ago \nDescription : 2N Access Commander version 2.1 and prior is vulnerable in default settings to Man In The Middle attack due to not verifying certificates of 2N edge devices. \nSeverity: 8.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"06 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-06T21:55:29.000000Z"}, {"uuid": "220f4cbb-9f2b-43de-abd6-41ecc52257dc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47259", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/9273", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-47259\n\ud83d\udd25 CVSS Score: 3.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:N)\n\ud83d\udd39 Description: Girishunawane, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API dynamicoverlay.cgi did not have a sufficient input validation allowing for a possible command injection leading to being able to transfer files to the Axis device with the purpose to exhaust system resources. \nAxis has released patched AXIS OS versions for the highlighted flaw. Please refer to the Axis security advisory for more information and solution.\n\ud83d\udccf Published: 2025-03-04T05:15:16.499Z\n\ud83d\udccf Modified: 2025-03-28T07:15:06.622Z\n\ud83d\udd17 References:\n1. https://www.axis.com/dam/public/13/cd/4a/cve-2024-47259pdf-en-US-466882.pdf", "creation_timestamp": "2025-03-28T07:27:18.000000Z"}, {"uuid": "ccfd2f58-7cbb-4d1c-a078-eceeb4b36861", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47258", "type": "seen", "source": "Telegram/KxxEJ7RcNOrcWabPm9tNX9485-MM4pscZYvv4RDkqim0gbTd", "content": "", "creation_timestamp": "2025-02-21T15:03:13.000000Z"}, {"uuid": "22081f01-a805-42ab-adf5-d92d1aeb1847", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47256", "type": "seen", "source": "Telegram/EwvAMLQaC2rGZHbw8XskBSmMb2j9Xp7EawnhRLxWatpqnmOs", "content": "", "creation_timestamp": "2025-02-21T15:03:13.000000Z"}, {"uuid": "7b7ebc4e-bed7-46cd-9879-157b37a51f8f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47252", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/bbcbc485-b88d-4831-b8e9-6e37e7bd9875", "content": "", "creation_timestamp": "2026-01-21T21:18:16.771453Z"}, {"uuid": "881cdf35-ee8e-4799-8b01-03e87f96a387", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47258", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/4886", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-47258\n\ud83d\udd25 CVSS Score: 8.1 (cvssV3_1, Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N)\n\ud83d\udd39 Description: 2N Access Commander version 2.1 and prior is vulnerable in default settings to Man In The Middle attack due to not verifying certificates of 2N edge devices. \n\n\n\n\n\n2N has currently released an updated version 3.3 of 2N Access Commander, with added Certificate Fingerprint Verification. Since version 2.2 of 2N Access Commander (released in February 2022) it is also possible to enforce TLS certificate validation.It is recommended that all customers update 2N Access Commander to the latest version and use one of two mentioned practices.\n\ud83d\udccf Published: 2025-02-06T19:10:40.660Z\n\ud83d\udccf Modified: 2025-02-21T12:20:21.019Z\n\ud83d\udd17 References:\n1. https://www.2n.com/en-GB/download/cve_2024_47258_acom_3_3_v1pdf", "creation_timestamp": "2025-02-21T13:18:13.000000Z"}, {"uuid": "85db549f-6805-4dfd-8df5-fd0292f4f9b2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47253", "type": "seen", "source": "https://t.me/cvedetector/9854", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-47253 - 2N Access Commander Path Traversal Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-47253 \nPublished : Nov. 5, 2024, 10:20 a.m. | 33\u00a0minutes ago \nDescription : In 2N Access Commander versions 3.1.1.2 and prior, a Path Traversal   \nvulnerability could allow an attacker to write files on the filesystem   \nto achieve arbitrary remote code execution. \nSeverity: 7.2 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"05 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-05T12:11:38.000000Z"}, {"uuid": "725914b6-3c31-48ce-9be8-3d688a12be6b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47254", "type": "seen", "source": "https://t.me/cvedetector/9853", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-47254 - 2N Access Commander Privilege Escalation Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-47254 \nPublished : Nov. 5, 2024, 10:20 a.m. | 33\u00a0minutes ago \nDescription : In 2N Access Commander versions 3.1.1.2 and prior, an Insufficient   \nVerification of Data Authenticity vulnerability could allow an attacker   \nto escalate their privileges and gain root access to the system. \nSeverity: 6.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"05 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-05T12:11:38.000000Z"}, {"uuid": "9c719ba8-039e-4354-8bbf-f9a20852049a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47255", "type": "seen", "source": "https://t.me/cvedetector/9852", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-47255 - \"2N Access Commander Privilege Escalation Vulnerability\"\", \n  \"Content\": \"CVE ID : CVE-2024-47255 \nPublished : Nov. 5, 2024, 10:20 a.m. | 33\u00a0minutes ago \nDescription : In 2N Access Commander versions 3.1.1.2 and prior, a local attacker can escalate their privileges in the system which could allow for arbitrary   \ncode execution with root permissions. \nSeverity: 4.7 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"05 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-05T12:11:34.000000Z"}, {"uuid": "dcde9e4f-0656-492f-afde-c3b423d7095d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47252", "type": "seen", "source": "https://seclists.org/oss-sec/2025/q3/24", "content": "", "creation_timestamp": "2025-07-10T15:46:04.000000Z"}, {"uuid": "dff193a8-a252-4f75-9fd3-7752a79a6099", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47252", "type": "seen", "source": "https://bsky.app/profile/omo.bsky.social/post/3ltnpxyrxfk2s", "content": "", "creation_timestamp": "2025-07-11T01:46:56.259248Z"}, {"uuid": "a42956f5-a761-4f57-a501-1dba084f5941", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47252", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3ltmx2ptdqv2h", "content": "", "creation_timestamp": "2025-07-10T18:21:00.416844Z"}, {"uuid": "b041055a-7dd6-4b0c-bc1b-5b12063b536f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47252", "type": "seen", "source": "https://bsky.app/profile/bluesky.awakari.com/post/3lz3cho2gs426", "content": "", "creation_timestamp": "2025-09-18T02:28:20.693535Z"}, {"uuid": "429c97d8-da69-40db-b547-4e8b6c8ea877", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2024-47252", "type": "seen", "source": "https://gist.github.com/stanibaj/346930313ada772d78a7279f1ab1bd08", "content": "", "creation_timestamp": "2026-04-19T12:47:41.000000Z"}, {"uuid": "8dcae339-5872-415f-8138-305000c4d741", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2024-47252", "type": "seen", "source": "https://gist.github.com/stanibaj/b9432d60d00ca372cc2cfc88f4bff31b", "content": "", "creation_timestamp": "2026-04-19T14:35:21.000000Z"}, {"uuid": "429d46d3-855f-4815-915c-232537049adb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2024-47252", "type": "seen", "source": "https://gist.github.com/stanibaj/56e4f7f7ddeea4834f49ef60dafd3eb0", "content": "", "creation_timestamp": "2026-04-14T17:02:31.000000Z"}, {"uuid": "7644bd17-ac86-4d2b-a521-b86e8a3c65d6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2024-47252", "type": "seen", "source": "https://gist.github.com/stanibaj/f1eecd7ed798506a268661c2be536136", "content": "", "creation_timestamp": "2026-04-14T18:32:12.000000Z"}, {"uuid": "302bc1d0-d71a-44d1-8c06-03625836ca27", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47256", "type": "seen", "source": "https://t.me/cvedetector/17422", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-47256 - 2N Access Commander AES Passphrase Information Disclosure Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-47256 \nPublished : Feb. 6, 2025, 8:15 p.m. | 26\u00a0minutes ago \nDescription : Successful exploitation of this vulnerability could allow an attacker (who needs to have Admin access privileges) to read hardcoded AES passphrase, which may be used for decryption of certain data within backup files of 2N Access Commander version 1.14 and older. \nSeverity: 6.0 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"06 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-06T21:55:28.000000Z"}, {"uuid": "85d808e9-65aa-4d39-8bd5-4c3bcca24604", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47256", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/4887", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-47256\n\ud83d\udd25 CVSS Score: 6 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N)\n\ud83d\udd39 Description: Successful exploitation of this vulnerability could allow an attacker (who needs to have Admin access privileges) to read hardcoded AES passphrase, which may be used for decryption of certain data within backup files of 2N Access Commander version 1.14 and older.\n\n\n\n\n\n\n2N has released an updated version 3.3 of 2N Access Commander, where this vulnerability is mitigated. It is recommended that all customers update 2N Access Commander to the latest version.\n\ud83d\udccf Published: 2025-02-06T19:10:03.820Z\n\ud83d\udccf Modified: 2025-02-21T12:19:43.180Z\n\ud83d\udd17 References:\n1. https://www.2n.com/en-GB/download/cve_2024_47256_acom_3_3_v1pdf", "creation_timestamp": "2025-02-21T13:18:14.000000Z"}, {"uuid": "7c9965e7-04cb-4860-9320-3eb826225df9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47259", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/6339", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-47259\n\ud83d\udd25 CVSS Score: 3.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:N)\n\ud83d\udd39 Description: Girishunawane, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API dynamicoverlay.cgi did not have a sufficient input validation allowing for a possible command injection leading to being able to transfer files to the Axis device with the purpose to exhaust system resources. \nAxis has released patched AXIS OS versions for the highlighted flaw. Please refer to the Axis security advisory for more information and solution.\n\ud83d\udccf Published: 2025-03-04T05:15:16.499Z\n\ud83d\udccf Modified: 2025-03-04T05:15:16.499Z\n\ud83d\udd17 References:\n1. https://www.axis.com/dam/public/13/cd/4a/cve-2024-47259pdf-en-US-466882.pdf", "creation_timestamp": "2025-03-04T05:30:27.000000Z"}]}