{"vulnerability": "cve-2024-4873", "sightings": [{"uuid": "301698f5-ebf2-4c64-aaf1-399c035cc299", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-48735", "type": "seen", "source": "MISP/af790da0-9e28-4cb7-bd4e-46ad005115c6", "content": "", "creation_timestamp": "2025-10-08T21:59:27.000000Z"}, {"uuid": "d0e2cc95-1d49-4e62-9ced-925248e420c8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-48735", "type": "seen", "source": "MISP/af790da0-9e28-4cb7-bd4e-46ad005115c6", "content": "", "creation_timestamp": "2025-10-01T18:11:56.000000Z"}, {"uuid": "51c6622b-b6d0-49f5-8cc2-d874430a9f7e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-48735", "type": "seen", "source": "https://t.me/cvedetector/9469", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-48735 - SAS Studio Directory Traversal Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-48735 \nPublished : Oct. 30, 2024, 9:15 p.m. | 16\u00a0minutes ago \nDescription : Directory Traversal in /SASStudio/sasexec/sessions/{sessionID}/workspace/{InternalPath} in SAS Studio 9.4 allows remote attacker to access internal files by manipulating default path during file download. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"30 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-30T22:33:34.000000Z"}, {"uuid": "a36a6dff-66bb-4989-8476-bdcc21469d1f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-48734", "type": "seen", "source": "https://t.me/cvedetector/9468", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-48734 - SAS Studio Unrestricted File Upload Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-48734 \nPublished : Oct. 30, 2024, 9:15 p.m. | 16\u00a0minutes ago \nDescription : *Unrestricted file upload in /SASStudio/SASStudio/sasexec/{sessionID}/{InternalPath} in SAS Studio 9.4 allows remote attacker to upload malicious files. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"30 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-30T22:33:34.000000Z"}, {"uuid": "fc1cf6d9-e76e-4e3b-b7e0-ec83ee6f20c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-48733", "type": "seen", "source": "https://t.me/cvedetector/9467", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-48733 - SAS Studio SQL Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-48733 \nPublished : Oct. 30, 2024, 9:15 p.m. | 16\u00a0minutes ago \nDescription : SQL injection vulnerability in /SASStudio/sasexec/sessions/{sessionID}/sql in SAS Studio 9.4 allows remote attacker to execute arbitrary SQL commands via the POST body request. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"30 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-30T22:33:33.000000Z"}]}