{"vulnerability": "CVE-2024-5545", "sightings": [{"uuid": "682700ca-2d20-4600-ba25-70625e7729e8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-55459", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113793673094523448", "content": "", "creation_timestamp": "2025-01-08T16:27:35.013902Z"}, {"uuid": "ce85e3e5-ece3-4c76-adc0-8acd4a0f9ca3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-55459", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfao3co7cw2k", "content": "", "creation_timestamp": "2025-01-08T17:15:36.934773Z"}, {"uuid": "1767215d-8336-4e27-a0ae-fc26877a4c87", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-55456", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/8001", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-55456\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: lunasvg v3.0.1 was discovered to contain a segmentation violation via the component gray_find_cell\n\ud83d\udccf Published: 2025-02-03T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-18T20:31:14.972Z\n\ud83d\udd17 References:\n1. https://github.com/sammycage/lunasvg/issues/199", "creation_timestamp": "2025-03-18T20:48:23.000000Z"}, {"uuid": "776990e6-6945-4b88-a7aa-45a106f3c187", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-55459", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lfapmjaoiq2h", "content": "", "creation_timestamp": "2025-01-08T17:43:08.309827Z"}, {"uuid": "c8ddd0f1-013a-4037-a545-6abed48fdef8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-55457", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lsrkx2crsk2e", "content": "", "creation_timestamp": "2025-06-29T21:02:20.735887Z"}, {"uuid": "8ec50a73-51e8-4a01-9773-3a3b8ef6b251", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-55457", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2025-06-29)", "content": "", "creation_timestamp": "2025-06-29T00:00:00.000000Z"}, {"uuid": "7c6f059c-3510-44ee-92ec-dadcf483ac99", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-55457", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2025-09-15)", "content": "", "creation_timestamp": "2025-09-15T00:00:00.000000Z"}, {"uuid": "1dcc4c2a-f365-4a07-a457-a1a42023e20e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-55456", "type": "seen", "source": "MISP/f7787455-9994-4047-b6f7-77347597c104", "content": "", "creation_timestamp": "2025-08-26T18:36:19.000000Z"}, {"uuid": "2fca7891-d026-4c68-8555-f107272ac167", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-55457", "type": "seen", "source": "https://t.me/cvedetector/18591", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-55457 - MasterSAM Star Gate Directory Traversal Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-55457 \nPublished : Feb. 20, 2025, 6:15 p.m. | 1\u00a0hour, 21\u00a0minutes ago \nDescription : MasterSAM Star Gate 11 is vulnerable to directory traversal via /adama/adama/downloadService. An attacker can exploit this vulnerability by manipulating the file parameter to access arbitrary files on the server, potentially exposing sensitive information. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"20 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-20T20:41:25.000000Z"}, {"uuid": "381157b9-e401-4b67-817b-5c650b7cf6da", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-55456", "type": "seen", "source": "https://t.me/cvedetector/17089", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-55456 - LunaSVG Buffer Overflow Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-55456 \nPublished : Feb. 3, 2025, 5:15 p.m. | 1\u00a0hour, 22\u00a0minutes ago \nDescription : lunasvg v3.0.1 was discovered to contain a segmentation violation via the component gray_find_cell \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"03 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-03T20:19:20.000000Z"}, {"uuid": "bf138849-6b87-45ae-abb7-8cba34290896", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-55459", "type": "seen", "source": "https://t.me/cvedetector/14700", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-55459 - Apache Keras Arbitrary File Write Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-55459 \nPublished : Jan. 8, 2025, 5:15 p.m. | 35\u00a0minutes ago \nDescription : An issue in keras 3.7.0 allows attackers to write arbitrary files to the user's machine via downloading a crafted tar file through the get_file function. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"08 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-08T19:09:29.000000Z"}, {"uuid": "a05e9609-4d3f-45d1-af0c-b0d8795547cb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-55452", "type": "seen", "source": "https://t.me/cvedetector/13054", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-55452 - UJCMS Open-Redirect\", \n  \"Content\": \"CVE ID : CVE-2024-55452 \nPublished : Dec. 16, 2024, 11:15 p.m. | 34\u00a0minutes ago \nDescription : A URL redirection vulnerability exists in UJCMS 9.6.3 due to improper validation of URLs in the upload and rendering of new block / carousel items. This vulnerability allows authenticated attackers to redirect unprivileged users to an arbitrary, attacker-controlled webpage. When an authenticated user clicks on the malicious block item, they are redirected to the arbitrary untrusted domains, where sensitive tokens, such as JSON Web Tokens, can be stolen via a crafted webpage. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-17T00:53:56.000000Z"}, {"uuid": "7287aa91-09cd-4e0a-b41b-ad293d45207e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-55451", "type": "seen", "source": "https://t.me/cvedetector/13053", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-55451 - UJCMS Stored Cross-Site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2024-55451 \nPublished : Dec. 16, 2024, 11:15 p.m. | 34\u00a0minutes ago \nDescription : A Stored Cross-Site Scripting (XSS) vulnerability exists in authenticated SVG file upload and viewing functionality in UJCMS 9.6.3. The vulnerability arises from insufficient sanitization of embedded attributes in uploaded SVG files. When a maliciously crafted SVG file is viewed by other backend users, it allows authenticated attackers to execute arbitrary JavaScript in the context of other backend users' browsers, potentially leading to the theft of sensitive tokens. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-17T00:53:55.000000Z"}, {"uuid": "e18f8b22-4d57-4655-b063-70bd21299ad1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-55457", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2024/CVE-2024-55457.yaml", "content": "", "creation_timestamp": "2025-01-06T13:20:48.000000Z"}, {"uuid": "578186cb-ccdd-4b4d-9db4-bc40aa3c43c2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-55456", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lhcdl2dgkh2q", "content": "", "creation_timestamp": "2025-02-03T20:03:16.484874Z"}, {"uuid": "657773f2-9507-4000-8fc4-4a02e290d797", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-55456", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lhc2cdvzsj2h", "content": "", "creation_timestamp": "2025-02-03T17:17:20.981813Z"}]}