{"vulnerability": "cve-2024-4377", "sightings": [{"uuid": "e6c47c3d-4e00-4039-bffd-e684d4231087", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-43771", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/7905", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-43771\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: In gatts_process_read_req of gatt_sr.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote (proximal/adjacent) code execution with no additional execution privileges needed. User interaction is not needed for exploitation.\n\ud83d\udccf Published: 2025-01-21T23:04:43.179Z\n\ud83d\udccf Modified: 2025-03-18T13:38:44.680Z\n\ud83d\udd17 References:\n1. https://source.android.com/security/bulletin/2025-01-01", "creation_timestamp": "2025-03-18T13:50:54.000000Z"}, {"uuid": "9de22691-9793-4f33-bb28-a2de11b014eb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-43770", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/113873498998469841", "content": "", "creation_timestamp": "2025-01-22T18:48:22.281417Z"}, {"uuid": "b13a3e51-a8d6-4985-9a67-45fd406a8091", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-43771", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/113873499058770545", "content": "", "creation_timestamp": "2025-01-22T18:48:22.913539Z"}, {"uuid": "62ee9ed6-96f1-47fd-ae97-4ea8a8f7dc20", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-43779", "type": "seen", "source": "https://t.me/cvedetector/17414", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-43779 - ClearML Enterprise Server Vault API Information Disclosure Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-43779 \nPublished : Feb. 6, 2025, 5:15 p.m. | 1\u00a0hour, 25\u00a0minutes ago \nDescription : An information disclosure vulnerability exists in the Vault API functionality of ClearML Enterprise Server 3.22.5-1533. A specially crafted HTTP request can lead to reading vaults that have been previously disabled, possibly leaking sensitive credentials. An attacker can send a series of HTTP requests to trigger this vulnerability. \nSeverity: 7.7 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"06 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-06T20:15:12.000000Z"}, {"uuid": "d897f401-9d70-47f2-8c81-524c73f26800", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-43771", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/2603", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-43771\n\ud83d\udd39 Description: In gatts_process_read_req of gatt_sr.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote (proximal/adjacent) code execution with no additional execution privileges needed. User interaction is not needed for exploitation.\n\ud83d\udccf Published: 2025-01-21T23:04:43.179Z\n\ud83d\udccf Modified: 2025-01-22T17:22:34.175Z\n\ud83d\udd17 References:\n1. https://source.android.com/security/bulletin/2025-01-01", "creation_timestamp": "2025-01-22T18:02:33.000000Z"}, {"uuid": "ae094ebb-1ec3-486c-b1c5-a7d5f4388300", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-43770", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/2602", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-43770\n\ud83d\udd39 Description: In gatts_process_find_info of gatt_sr.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote (proximal/adjacent) code execution with no additional execution privileges needed. User interaction is not needed for exploitation.\n\ud83d\udccf Published: 2025-01-21T23:04:43.090Z\n\ud83d\udccf Modified: 2025-01-22T17:24:35.869Z\n\ud83d\udd17 References:\n1. https://source.android.com/security/bulletin/2025-01-01", "creation_timestamp": "2025-01-22T18:02:32.000000Z"}, {"uuid": "abe76fcb-7e94-4188-bb55-831f90ec47ed", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-43779", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113957968769984214", "content": "", "creation_timestamp": "2025-02-06T16:50:07.901898Z"}, {"uuid": "7edef277-fa86-407f-b71c-019d9b87ca4c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-43770", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lgbydgnehr27", "content": "", "creation_timestamp": "2025-01-21T23:16:58.370652Z"}, {"uuid": "67227880-26d5-45c4-850e-fc90cb7ee165", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-43771", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lgbydkbpco2t", "content": "", "creation_timestamp": "2025-01-21T23:17:01.961971Z"}, {"uuid": "3e4786ee-4807-4f61-ae38-f795ed89c1c5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-43771", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lgc26iscxn2b", "content": "", "creation_timestamp": "2025-01-21T23:50:00.885654Z"}, {"uuid": "59fd2d71-cc40-44e0-9136-7fb2e7080772", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-43770", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lgc26j7zrj2e", "content": "", "creation_timestamp": "2025-01-21T23:50:03.138618Z"}, {"uuid": "a7dbcd30-9ea9-4745-bbb9-e5684db18b77", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-43779", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lhjln4aajs27", "content": "", "creation_timestamp": "2025-02-06T17:16:13.754861Z"}, {"uuid": "e133f5dc-2552-4066-9905-e1aace89cd98", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-43770", "type": "seen", "source": "https://t.me/cvedetector/16061", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-43770 - Bluetooth HID device Remote Code Execution\", \n  \"Content\": \"CVE ID : CVE-2024-43770 \nPublished : Jan. 21, 2025, 11:15 p.m. | 39\u00a0minutes ago \nDescription : In gatts_process_find_info of gatt_sr.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote (proximal/adjacent) code execution with no additional execution privileges needed. User interaction is not needed for exploitation. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-22T01:21:11.000000Z"}, {"uuid": "4e417dd2-e23d-44ba-b956-9b4bb61b9dc8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-43778", "type": "seen", "source": "https://t.me/cvedetector/5914", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-43778 - Takenaka Engineering DVR OS Command Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-43778 \nPublished : Sept. 18, 2024, 7:15 a.m. | 35\u00a0minutes ago \nDescription : OS command injection vulnerability in multiple digital video recorders provided by TAKENAKA ENGINEERING CO., LTD. allows a remote authenticated attacker to execute an arbitrary OS command on the device or alter the device settings. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"18 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-18T10:01:31.000000Z"}, {"uuid": "d1b053f1-a6d8-4731-85d6-b5170e9180e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-43772", "type": "seen", "source": "https://t.me/cvedetector/4592", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-43772 - Easytest Online Test Platform SQL Injection\", \n  \"Content\": \"CVE ID : CVE-2024-43772 \nPublished : Sept. 2, 2024, 5:15 a.m. | 44\u00a0minutes ago \nDescription : SQL Injection in download student learning course function of Easytest Online Test Platform ver.24E01 and earlier allow remote attackers to execute arbitrary SQL commands via the uid parameter. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"02 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-02T08:01:18.000000Z"}, {"uuid": "9ecbec3b-8165-46b6-aa92-45b93cf45d7f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-43776", "type": "seen", "source": "https://t.me/cvedetector/4590", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-43776 - Easytest Online Test Platform SQL Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-43776 \nPublished : Sept. 2, 2024, 5:15 a.m. | 44\u00a0minutes ago \nDescription : SQL Injection in mock exam function of Easytest Online Test Platform ver.24E01 and earlier allow remote authenticated users to execute arbitrary SQL commands via the qlevel parameter. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"02 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-02T08:01:16.000000Z"}, {"uuid": "e94269fa-f7ea-4eeb-91d9-153f6cd6cad8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-43774", "type": "seen", "source": "https://t.me/cvedetector/4589", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-43774 - Easytest Online Test Platform SQL Injection\", \n  \"Content\": \"CVE ID : CVE-2024-43774 \nPublished : Sept. 2, 2024, 5:15 a.m. | 44\u00a0minutes ago \nDescription : SQL Injection in download personal learning course function of Easytest Online Test Platform ver.24E01 and earlier allow remote authenticated users to execute arbitrary SQL commands via the uid parameter. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"02 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-02T08:01:15.000000Z"}, {"uuid": "238098aa-609a-44a8-82fe-d2272e4ae5fc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-43775", "type": "seen", "source": "https://t.me/cvedetector/4597", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-43775 - Easytest Online Test Platform SQL Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-43775 \nPublished : Sept. 2, 2024, 5:15 a.m. | 44\u00a0minutes ago \nDescription : SQL Injection in search course titles function of Easytest Online Test Platform ver.24E01 and earlier allow remote authenticated users to execute arbitrary SQL commands via the search parameter. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"02 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-02T08:01:25.000000Z"}, {"uuid": "cd3c7c3e-7419-41eb-b9d4-1bc39658ae8e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-43773", "type": "seen", "source": "https://t.me/cvedetector/4596", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-43773 - Easytest Online Test Platform SQL Injection\", \n  \"Content\": \"CVE ID : CVE-2024-43773 \nPublished : Sept. 2, 2024, 5:15 a.m. | 44\u00a0minutes ago \nDescription : SQL Injection in download class learning course function of Easytest Online Test Platform ver.24E01 and earlier allow remote attackers to execute arbitrary SQL commands via the cstr parameter. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"02 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-02T08:01:24.000000Z"}, {"uuid": "450668b4-a766-4fcc-aa0b-176562d4c442", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-43779", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lhjqsv6s3b2g", "content": "", "creation_timestamp": "2025-02-06T18:49:02.428709Z"}]}