{"vulnerability": "cve-2024-42381", "sightings": [{"uuid": "0c7b418e-88b1-4f0b-8511-0ec653d15e16", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-42381", "type": "seen", "source": "https://t.me/cvedetector/2114", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-42381 - Homebrew ELF File Execution via Untrusted Source\", \n  \"Content\": \"CVE ID : CVE-2024-42381 \nPublished : July 31, 2024, 6:15 a.m. | 39\u00a0minutes ago \nDescription : os/linux/elf.rb in Homebrew brew before 4.2.20 uses ldd to load ELF files obtained from untrusted sources, which allows attackers to achieve code execution via an ELF file with a custom .interp section. NOTE: this code execution would occur during an un-sandboxed binary relocation phase, which occurs before a user would expect execution of downloaded package content. (237d1e783f7ee261beaba7d3f6bde22da7148b0a was the tested vulnerable version.) \nSeverity: 8.3 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"31 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-31T09:18:45.000000Z"}]}