{"vulnerability": "CVE-2024-4910", "sightings": [{"uuid": "cd8a4d6b-b393-464b-9909-af291514378b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49106", "type": "seen", "source": "https://infosec.exchange/users/shadowserver/statuses/113645234449739068", "content": "", "creation_timestamp": "2024-12-13T11:17:43.810720Z"}, {"uuid": "deff1eb5-c074-45d3-9f45-757e4767f1f6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49108", "type": "seen", "source": "https://infosec.exchange/users/shadowserver/statuses/113645234449739068", "content": "", "creation_timestamp": "2024-12-13T11:17:43.854643Z"}, {"uuid": "02c807e3-f699-455b-95f6-00f47bcde204", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49109", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/795", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-49109\n\ud83d\udd39 Description: Wireless Wide Area Network Service (WwanSvc) Elevation of Privilege Vulnerability\n\ud83d\udccf Published: 2024-12-10T17:49:43.471Z\n\ud83d\udccf Modified: 2025-01-08T18:54:26.181Z\n\ud83d\udd17 References:\n1. https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49109", "creation_timestamp": "2025-01-08T19:16:21.000000Z"}, {"uuid": "efdb4748-f37e-4027-a183-7cacea3b9ca2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49108", "type": "seen", "source": "https://t.me/Russian_OSINT/5000", "content": "\ud83e\udd77\u2757\ufe0f \u0425\u0430\u043a\u0435\u0440\u044b \u043d\u0430\u0446\u0435\u043b\u0438\u043b\u0438\u0441\u044c \u043d\u0430 RDP: \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u0441\u043a\u0430\u043d\u0438\u0440\u0443\u044e\u0442 \u043f\u043e\u0440\u0442 1098/TCP\n\n\u0412 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0438\u0435 \u043d\u0435\u0434\u0435\u043b\u0438 \u043d\u0430\u0431\u043b\u044e\u0434\u0430\u0435\u0442\u0441\u044f \u0440\u043e\u0441\u0442 \u0430\u043a\u0442\u0438\u0432\u043d\u043e\u0441\u0442\u0438 \u0445\u0430\u043a\u0435\u0440\u043e\u0432, \u0441\u043a\u0430\u043d\u0438\u0440\u0443\u044e\u0449\u0438\u0445 \u0441\u043b\u0443\u0436\u0431\u044b \u0443\u0434\u0430\u043b\u0451\u043d\u043d\u043e\u0433\u043e \u0440\u0430\u0431\u043e\u0447\u0435\u0433\u043e \u0441\u0442\u043e\u043b\u0430 (RDP). \u041e\u0441\u043e\u0431\u043e\u0435 \u0432\u043d\u0438\u043c\u0430\u043d\u0438\u0435 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u043e\u0432 \u0443\u0434\u0435\u043b\u044f\u0435\u0442\u0441\u044f \u043d\u0430 \u043f\u043e\u0440\u0442\u0443 1098/TCP, \u043a\u043e\u0442\u043e\u0440\u044b\u0439 \u043e\u0431\u044b\u0447\u043d\u043e \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f \u0434\u043b\u044f \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0435\u0440\u0432\u0438\u0441\u043e\u0432.\n\n\u041f\u043e \u0434\u0430\u043d\u043d\u044b\u043c Shadowserver Foundation, \u0438\u0445 \u0445\u0430\u043d\u0438\u043f\u043e\u0442 \u0435\u0436\u0435\u0434\u043d\u0435\u0432\u043d\u043e \u0440\u0435\u0433\u0438\u0441\u0442\u0440\u0438\u0440\u0443\u0435\u0442 \u0434\u043e 740 \u0442\u044b\u0441\u044f\u0447 \u0443\u043d\u0438\u043a\u0430\u043b\u044c\u043d\u044b\u0445 IP-\u0430\u0434\u0440\u0435\u0441\u043e\u0432, \u0438\u043d\u0438\u0446\u0438\u0438\u0440\u0443\u044e\u0449\u0438\u0445 \u0442\u0430\u043a\u0438\u0435 \u0441\u043a\u0430\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f. \u041e\u043a\u043e\u043b\u043e 405 000 \u0438\u0437 \u043d\u0438\u0445 \u043f\u0440\u0438\u0445\u043e\u0434\u0438\u0442\u0441\u044f \u043d\u0430 \u0411\u0440\u0430\u0437\u0438\u043b\u0438\u044e.\n\n\u0421\u043e\u0431\u044b\u0442\u0438\u044f \u0441\u043e\u0432\u043f\u0430\u043b\u0438 \u0441 \u0434\u0435\u043a\u0430\u0431\u0440\u044c\u0441\u043a\u0438\u043c \u0432\u044b\u043f\u0443\u0441\u043a\u043e\u043c \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0439 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u043e\u0442 \ud83d\udcbb Microsoft. \u0411\u044b\u043b\u0438 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u044b \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 RDP, \u0432\u043a\u043b\u044e\u0447\u0430\u044f CVE-2024-49106, CVE-2024-49108, CVE-2024-49115 \u0438 \u0434\u0440\u0443\u0433\u0438\u0435. \u041d\u0435\u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043f\u043e\u043b\u0443\u0447\u0438\u043b\u0438 \u0441\u0442\u0430\u0442\u0443\u0441 \u00ab\u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u043e\u0439\u00bb \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438, \u0430 \u0442\u0430\u043a\u0436\u0435 \u0432\u044b\u0441\u043e\u043a\u0438\u0439 CVSS \u2014 8.1 \u0438 \u0432\u044b\u0448\u0435.\n\n\ud83d\udee1\u0414\u043b\u044f \u0437\u0430\u0449\u0438\u0442\u044b RDP (\u043f\u0440\u043e\u0442\u043e\u043a\u043e\u043b \u0443\u0434\u0430\u043b\u0451\u043d\u043d\u043e\u0433\u043e \u0440\u0430\u0431\u043e\u0447\u0435\u0433\u043e \u0441\u0442\u043e\u043b\u0430) \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u0438\u0441\u0442\u044b \u043d\u0430\u0441\u0442\u043e\u044f\u0442\u0435\u043b\u044c\u043d\u043e \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u044e\u0442:\n\n\u2705\u041e\u0433\u0440\u0430\u043d\u0438\u0447\u0438\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f \u043a RDP \u0438\u0437 \u0438\u043d\u0442\u0435\u0440\u043d\u0435\u0442\u0430.\n\u2705\u0412\u043a\u043b\u044e\u0447\u0438\u0442\u044c \u043c\u043d\u043e\u0433\u043e\u0444\u0430\u043a\u0442\u043e\u0440\u043d\u0443\u044e \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u044e (MFA) \u0434\u043b\u044f \u0432\u0441\u0435\u0445 \u043f\u043e\u0434\u043a\u043b\u044e\u0447\u0435\u043d\u0438\u0439.\n\u2705\u0423\u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0442\u044c \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0438\u0435 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438, \u0432\u043a\u043b\u044e\u0447\u0430\u044f \u0434\u0435\u043a\u0430\u0431\u0440\u044c\u0441\u043a\u0438\u0439 \u043f\u0430\u0442\u0447 Microsoft.\n\u2705\u0421\u043b\u043e\u0436\u043d\u044b\u0435 \u043f\u0430\u0440\u043e\u043b\u0438 \u0438 \u043f\u0440\u0438\u043d\u044f\u0442\u044c \u043c\u0435\u0440\u044b \u043f\u0440\u043e\u0442\u0438\u0432 \u0431\u0440\u0443\u0442\u0444\u043e\u0440\u0441\u0430.\n\u2705\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u044e \u043d\u0430 \u0443\u0440\u043e\u0432\u043d\u0435 \u0441\u0435\u0442\u0438 (NLA) \u0434\u043b\u044f \u0434\u043e\u043f\u043e\u043b\u043d\u0438\u0442\u0435\u043b\u044c\u043d\u043e\u0439 \u0437\u0430\u0449\u0438\u0442\u044b.\n\n\u270b @Russian_OSINT", "creation_timestamp": "2024-12-16T09:06:20.000000Z"}, {"uuid": "12597bde-39df-4f6f-a381-adcae4715452", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49104", "type": "seen", "source": "https://infosec.exchange/users/vuldb/statuses/113630006689181275", "content": "", "creation_timestamp": "2024-12-10T18:45:03.630965Z"}, {"uuid": "e56938e2-7643-456b-bbe0-9bbbeacc3dc4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49106", "type": "seen", "source": "https://www.thezdi.com/blog/2024/12/10/the-december-2024-security-update-review", "content": "", "creation_timestamp": "2024-12-10T17:33:56.000000Z"}, {"uuid": "c436098d-3052-4f1b-a43b-b6727357d245", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49101", "type": "seen", "source": "https://www.thezdi.com/blog/2024/12/10/the-december-2024-security-update-review", "content": "", "creation_timestamp": "2024-12-10T17:33:56.000000Z"}, {"uuid": "e24cc4b0-206b-4fdb-b8dd-0b63914365d1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49109", "type": "seen", "source": "https://www.thezdi.com/blog/2024/12/10/the-december-2024-security-update-review", "content": "", "creation_timestamp": "2024-12-10T17:33:56.000000Z"}, {"uuid": "945a2e97-53a4-45d7-9eec-87d1584d7c96", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49108", "type": "seen", "source": "https://www.thezdi.com/blog/2024/12/10/the-december-2024-security-update-review", "content": "", "creation_timestamp": "2024-12-10T17:33:56.000000Z"}, {"uuid": "117cabbd-2355-401c-a058-127c554a0d32", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49107", "type": "seen", "source": "https://www.thezdi.com/blog/2024/12/10/the-december-2024-security-update-review", "content": "", "creation_timestamp": "2024-12-10T17:33:56.000000Z"}, {"uuid": "52b8851a-beb8-4d2e-9ce0-38d5a59db0c6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49102", "type": "seen", "source": "https://www.thezdi.com/blog/2024/12/10/the-december-2024-security-update-review", "content": "", "creation_timestamp": "2024-12-10T17:33:56.000000Z"}, {"uuid": "f1b6b4fd-dff2-4683-90f1-bda2e2300c20", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49104", "type": "seen", "source": "https://www.thezdi.com/blog/2024/12/10/the-december-2024-security-update-review", "content": "", "creation_timestamp": "2024-12-10T17:33:56.000000Z"}, {"uuid": "3afdfb69-414a-4754-8819-a2f4dd980316", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49103", "type": "seen", "source": "https://www.thezdi.com/blog/2024/12/10/the-december-2024-security-update-review", "content": "", "creation_timestamp": "2024-12-10T17:33:56.000000Z"}, {"uuid": "6900084c-b5c8-44dc-bfd8-e5d93220be26", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49101", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113630331175468128", "content": "", "creation_timestamp": "2024-12-10T20:07:35.431874Z"}, {"uuid": "6653d334-6a27-44fe-b68c-d09b5d364010", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49103", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113630390194786458", "content": "", "creation_timestamp": "2024-12-10T20:22:35.679788Z"}, {"uuid": "99bbe04b-6d91-417d-9c2c-45eac1deb1e2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49102", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113630390179000817", "content": "", "creation_timestamp": "2024-12-10T20:22:35.844335Z"}, {"uuid": "ab45072f-57fd-424e-b1db-6bb6cbcafaca", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49104", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113630390211692722", "content": "", "creation_timestamp": "2024-12-10T20:22:36.201385Z"}, {"uuid": "9f5023af-7751-43cb-8409-3200000cac34", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49106", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113630390227389899", "content": "", "creation_timestamp": "2024-12-10T20:22:36.494097Z"}, {"uuid": "c020c75e-7683-437f-b04f-637a751000a0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49107", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113630449230572034", "content": "", "creation_timestamp": "2024-12-10T20:37:36.825619Z"}, {"uuid": "3210b7b5-f203-4cf7-80fe-12f7e2d801a8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49108", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113630449245466585", "content": "", "creation_timestamp": "2024-12-10T20:37:37.108984Z"}, {"uuid": "f67226f7-17e7-4069-b361-b2855c3f6179", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49109", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113630449259637227", "content": "", "creation_timestamp": "2024-12-10T20:37:37.643389Z"}, {"uuid": "3b305cf8-22b2-4e01-8d04-571eed4d9dda", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49105", "type": "seen", "source": "https://infosec.exchange/users/vuldb/statuses/113635749627048903", "content": "", "creation_timestamp": "2024-12-11T19:05:34.445309Z"}, {"uuid": "f103a752-a84a-4051-89c4-0449e9b3d9c3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49105", "type": "seen", "source": "https://bsky.app/profile/andresbohren.bsky.social/post/3lfrpsqh6tc24", "content": "", "creation_timestamp": "2025-01-15T12:01:53.320289Z"}, {"uuid": "650b96d2-8f34-4686-a155-7a72d3299bdd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49109", "type": "seen", "source": "https://bsky.app/profile/cti-news.bsky.social/post/3lgbnbxzh362k", "content": "", "creation_timestamp": "2025-01-21T19:59:18.456746Z"}, {"uuid": "a3cc4ba9-9432-4c8c-b6ff-e2353c3cb345", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49109", "type": "seen", "source": "MISP/be792712-f638-4d7d-b62d-4f5032e86764", "content": "", "creation_timestamp": "2025-09-16T23:16:38.000000Z"}, {"uuid": "9b2893fb-3cb7-4fb1-9aca-a63c57020fba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49106", "type": "seen", "source": "MISP/be792712-f638-4d7d-b62d-4f5032e86764", "content": "", "creation_timestamp": "2025-09-18T16:44:35.000000Z"}, {"uuid": "8cc75d42-43c5-43dc-bbcc-0d105d6a2dd5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49109", "type": "seen", "source": "MISP/be792712-f638-4d7d-b62d-4f5032e86764", "content": "", "creation_timestamp": "2025-09-18T16:44:37.000000Z"}, {"uuid": "371f16b1-f174-4d5a-b874-e95c4b65db6f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49106", "type": "seen", "source": "MISP/be792712-f638-4d7d-b62d-4f5032e86764", "content": "", "creation_timestamp": "2025-09-16T23:16:38.000000Z"}]}