{"vulnerability": "cve-2024-5294", "sightings": [{"uuid": "c5469fcb-21a4-4f6e-ad9b-ea14c2d35de3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-52941", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113502347792230723", "content": "", "creation_timestamp": "2024-11-18T05:39:43.577488Z"}, {"uuid": "9a7d82f9-e1f8-4ca0-9e34-9732ed8a19b0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-52945", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113502406840649586", "content": "", "creation_timestamp": "2024-11-18T05:54:44.479833Z"}, {"uuid": "3c9c23fc-71ab-45ee-b33e-47ca72b307cc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-52943", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113502347820152179", "content": "", "creation_timestamp": "2024-11-18T05:39:44.212701Z"}, {"uuid": "5df30793-90da-402b-a8ee-28497fd0184a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-52940", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113502252668808044", "content": "", "creation_timestamp": "2024-11-18T05:15:32.395441Z"}, {"uuid": "b283c145-be4d-4cac-a4ea-0e2935626a6e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-52949", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/3373", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-52949\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: No description available\n\ud83d\udccf Published: 2024-12-16T22:15:06.863\n\ud83d\udccf Modified: N/A\n\ud83d\udd17 References:\n1. https://github.com/iptraf-ng/iptraf-ng/releases/tag/v1.2.1\n2. https://www.gruppotim.it/it/footer/red-team.html\n3. https://www.gruppotim.it/it/footer/red-team.html", "creation_timestamp": "2025-01-29T11:18:15.000000Z"}, {"uuid": "6c9103f2-4309-40f5-ab26-3044f8a89e8f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-52949", "type": "seen", "source": "https://t.me/cvedetector/13047", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-52949 - \"iptraf-ng Buffer Overflow Vulnerability\"\", \n  \"Content\": \"CVE ID : CVE-2024-52949 \nPublished : Dec. 16, 2024, 10:15 p.m. | 41\u00a0minutes ago \nDescription : iptraf-ng 1.2.1 has a stack-based buffer overflow. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"16 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-17T00:03:45.000000Z"}, {"uuid": "68117a0b-7444-4c97-8fec-4c64900a9abc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-52943", "type": "seen", "source": "https://t.me/cvedetector/11288", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-52943 - Veritas Enterprise Vault Cross-Site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2024-52943 \nPublished : Nov. 18, 2024, 6:15 a.m. | 36\u00a0minutes ago \nDescription : An issue was discovered in Veritas Enterprise Vault before 15.1 UPD882911, ZDI-CAN-24697. It allows an authenticated remote attacker to inject a parameter into an HTTP request, allowing for Cross-Site Scripting (XSS) while viewing archived content. This could reflect back to an authenticated user without sanitization if executed by that user. \nSeverity: 5.4 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"18 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-18T08:11:03.000000Z"}, {"uuid": "9acece0e-2cf4-4460-9b58-22439b6b08fa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-52942", "type": "seen", "source": "https://t.me/cvedetector/11287", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-52942 - Veritas Enterprise Vault Cross-Site Scripting (XSS) Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-52942 \nPublished : Nov. 18, 2024, 6:15 a.m. | 36\u00a0minutes ago \nDescription : An issue was discovered in Veritas Enterprise Vault before 15.1 UPD882911, ZDI-CAN-24696. It allows an authenticated remote attacker to inject a parameter into an HTTP request, allowing for Cross-Site Scripting (XSS) while viewing archived content. This could reflect back to an authenticated user without sanitization if executed by that user. \nSeverity: 5.4 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"18 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-18T08:11:02.000000Z"}, {"uuid": "63d47e12-6e0d-4941-be50-4ad901d23958", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-52941", "type": "seen", "source": "https://t.me/cvedetector/11286", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-52941 - Veritas Enterprise Vault XSS Injection\", \n  \"Content\": \"CVE ID : CVE-2024-52941 \nPublished : Nov. 18, 2024, 6:15 a.m. | 36\u00a0minutes ago \nDescription : An issue was discovered in Veritas Enterprise Vault before 15.1 UPD882911, ZDI-CAN-24695. It allows an authenticated remote attacker to inject a parameter into an HTTP request, allowing for Cross-Site Scripting (XSS) while viewing archived content. This could reflect back to an authenticated user without sanitization if executed by that user. \nSeverity: 5.4 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"18 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-18T08:11:01.000000Z"}, {"uuid": "303c75de-5424-4692-b3f9-82e1ec704ff5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-52945", "type": "seen", "source": "https://infosec.exchange/users/vuldb/statuses/113502585276947720", "content": "", "creation_timestamp": "2024-11-18T06:40:07.219790Z"}, {"uuid": "a31334ff-3667-40ef-9462-3255e253a61b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-52942", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113502347806550409", "content": "", "creation_timestamp": "2024-11-18T05:39:44.251248Z"}, {"uuid": "0df958b3-6dd5-4cc6-adc8-4b15fcf58289", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-52944", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113502347835771241", "content": "", "creation_timestamp": "2024-11-18T05:39:44.649759Z"}, {"uuid": "fe9198e3-a983-4815-8232-0c59a3eb7c53", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-52945", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113593075531730234", "content": "", "creation_timestamp": "2024-12-04T06:12:59.048300Z"}, {"uuid": "133c5469-f20c-44f6-8f8a-ae8b4692724a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-52949", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113664747172438621", "content": "", "creation_timestamp": "2024-12-16T22:00:01.373890Z"}, {"uuid": "d1f07993-f60e-4a69-8c56-582e4e5f69c9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-52940", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/9290", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1aAnySniff is a tool for monitoring TCP connections of processes like AnyDesk on Windows. It uses the CVE-2024-52940 vulnerability to track open connections and log IPs, ports, and other details.\nURL\uff1ahttps://github.com/MKultra6969/AnySniff\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-12-02T05:19:16.000000Z"}, {"uuid": "f9529773-0384-4000-9529-d76879851f57", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-52940", "type": "seen", "source": "https://t.me/ics_cert/970", "content": "\u06cc\u06a9 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u062f\u0631 \u0648\u06cc\u0698\u06af\u06cc Allow Direct Connections \u0646\u0631\u0645\u200c\u0627\u0641\u0632\u0627\u0631 \u0645\u062f\u06cc\u0631\u06cc\u062a \u0648 \u062f\u0633\u062a\u0631\u0633\u06cc \u0627\u0632 \u0631\u0627\u0647 \u062f\u0648\u0631 AnyDesk \u0628\u0647 \u062f\u0644\u06cc\u0644 \u0627\u0645\u0646\u06cc\u062a \u0646\u0627\u06a9\u0627\u0641\u06cc \u0627\u0639\u062a\u0628\u0627\u0631\u0646\u0627\u0645\u0647\u200c\u0647\u0627 \u0627\u0633\u062a. \u0628\u0647\u0631\u0647 \u0628\u0631\u062f\u0627\u0631\u06cc \u0627\u0632 \u0627\u06cc\u0646 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc \u0645\u06cc \u062a\u0648\u0627\u0646\u062f \u0628\u0647 \u0645\u0647\u0627\u062c\u0645 \u0627\u0632 \u0631\u0627\u0647 \u062f\u0648\u0631 \u0627\u062c\u0627\u0632\u0647 \u062f\u0647\u062f \u062a\u0627 \u0627\u0637\u0644\u0627\u0639\u0627\u062a \u0645\u062d\u0627\u0641\u0638\u062a \u0634\u062f\u0647 \u0645\u0631\u0628\u0648\u0637 \u0628\u0647 \u0622\u062f\u0631\u0633 IP \u0633\u06cc\u0633\u062a\u0645 \u0647\u062f\u0641 \u0631\u0627 \u0627\u0641\u0634\u0627 \u06a9\u0646\u062f.\n\nBDU: 2024-10229\nCVE-2024-52940\n\n\u0646\u0635\u0628 \u0628\u0647 \u0631\u0648\u0632 \u0631\u0633\u0627\u0646\u06cc \u0627\u0632 \u0645\u0646\u0627\u0628\u0639 \u0642\u0627\u0628\u0644 \u0627\u0639\u062a\u0645\u0627\u062f\n \u062a\u0648\u0635\u06cc\u0647 \u0645\u06cc \u0634\u0648\u062f \u0628\u0647 \u0631\u0648\u0632 \u0631\u0633\u0627\u0646\u06cc \u0646\u0631\u0645 \u0627\u0641\u0632\u0627\u0631 \u0631\u0627 \u062a\u0646\u0647\u0627 \u067e\u0633 \u0627\u0632 \u0627\u0631\u0632\u06cc\u0627\u0628\u06cc \u062a\u0645\u0627\u0645 \u062e\u0637\u0631\u0627\u062a \u0645\u0631\u062a\u0628\u0637 \u0646\u0635\u0628 \u06a9\u0646\u06cc\u062f.\n\n\u0627\u0642\u062f\u0627\u0645\u0627\u062a \u062c\u0628\u0631\u0627\u0646\u06cc:\n- \u0645\u062d\u062f\u0648\u062f\u06cc\u062a \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u0639\u0645\u0644\u06a9\u0631\u062f Allow Direct Connections \u0628\u0631\u0627\u06cc \u0633\u0627\u0632\u0645\u0627\u0646\u062f\u0647\u06cc \u0627\u062a\u0635\u0627\u0644\u0627\u062a \u0634\u0628\u06a9\u0647\u061b\n- \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u06cc\u06a9 \u067e\u0648\u0631\u062a \u063a\u06cc\u0631 \u0627\u0633\u062a\u0627\u0646\u062f\u0627\u0631\u062f (\u0627\u0633\u062a\u0627\u0646\u062f\u0627\u0631\u062f - 7070) \u0628\u0631\u0627\u06cc \u0633\u0627\u0632\u0645\u0627\u0646\u062f\u0647\u06cc \u0627\u062a\u0635\u0627\u0644\u0627\u062a \u0634\u0628\u06a9\u0647.\n- \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u0627\u0628\u0632\u0627\u0631\u0647\u0627\u06cc \u0641\u0627\u06cc\u0631\u0648\u0627\u0644 \u0628\u0631\u0627\u06cc \u0645\u062d\u062f\u0648\u062f \u06a9\u0631\u062f\u0646 \u062f\u0633\u062a\u0631\u0633\u06cc \u0628\u0647 \u0646\u0631\u0645 \u0627\u0641\u0632\u0627\u0631\u0647\u0627\u06cc \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631.\n- \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u0644\u06cc\u0633\u062a \u0633\u0641\u06cc\u062f \u0622\u062f\u0631\u0633 \u0647\u0627\u06cc IP \u0628\u0631\u0627\u06cc \u0645\u062d\u062f\u0648\u062f \u06a9\u0631\u062f\u0646 \u062f\u0633\u062a\u0631\u0633\u06cc \u0628\u0647 \u0646\u0631\u0645 \u0627\u0641\u0632\u0627\u0631\u0647\u0627\u06cc \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631.\n\n\u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u062a\u0648\u0635\u06cc\u0647 \u0647\u0627:\nhttps://download.anydesk.com/changelog.txt\n\u26a0\ufe0f\u0628\u06cc\u0627\u0646\u06cc\u0647 \u0633\u0644\u0628 \u0645\u0633\u0626\u0648\u0644\u06cc\u062a\n\ud83c\udfed\u0648\u0628\u0633\u0627\u06cc\u062a \u0648 \u06a9\u0627\u0646\u0627\u0644 \u062a\u062e\u0635\u0635\u06cc \u0627\u0645\u0646\u06cc\u062a \u0632\u06cc\u0631\u0633\u0627\u062e\u062a\u0647\u0627\u06cc \u0627\u062a\u0648\u0645\u0627\u0633\u06cc\u0648\u0646 \u0648 \u06a9\u0646\u062a\u0631\u0644 \u0635\u0646\u0639\u062a\u06cc\n\ud83d\udc6e\ud83c\udffd\u200d\u2640\ufe0f\u0647\u0631\u06af\u0648\u0646\u0647 \u0627\u0646\u062a\u0634\u0627\u0631 \u0648 \u0630\u06a9\u0631 \u0645\u0637\u0627\u0644\u0628 \u0628\u062f\u0648\u0646 \u0630\u06a9\u0631 \u062f\u0642\u06cc\u0642 \u0645\u0646\u0628\u0639 \u0648 \u0622\u062f\u0631\u0633 \u0644\u06cc\u0646\u06a9 \u0622\u0646 \u0645\u0645\u0646\u0648\u0639 \u0627\u0633\u062a. \n\u0627\u062f\u0645\u06cc\u0646:\n\u200fhttps://t.me/pedram_kiani\n\u06a9\u0627\u0646\u0627\u0644 \u062a\u0644\u06af\u0631\u0627\u0645:\nhttps://t.me/ics_cert\n\u06af\u0631\u0648\u0647 \u0648\u0627\u062a\u0633 \u0622\u067e :\nhttps://chat.whatsapp.com/FpB620AWEeSKvd8U6cFh33", "creation_timestamp": "2024-11-30T08:14:34.000000Z"}, {"uuid": "3d23d158-9d2e-4ef0-a61c-b48a513ae102", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-52946", "type": "seen", "source": "https://t.me/cvedetector/11283", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-52946 - LemonLDAP::NG Improper Authentication Privilege Escalation\", \n  \"Content\": \"CVE ID : CVE-2024-52946 \nPublished : Nov. 18, 2024, 6:15 a.m. | 36\u00a0minutes ago \nDescription : An issue was discovered in LemonLDAP::NG before 2.20.1. An Improper Check during session refresh allows an authenticated user to raise their authentication level if the admin configured an \"Adaptative authentication rule\" with an increment instead of an absolute value. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"18 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-18T08:10:56.000000Z"}, {"uuid": "0046cb81-5e1d-48c8-ad1b-d0ecb28bd366", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-52944", "type": "seen", "source": "https://t.me/cvedetector/11281", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-52944 - Veritas Enterprise Vault Cross-Site Scripting Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-52944 \nPublished : Nov. 18, 2024, 6:15 a.m. | 36\u00a0minutes ago \nDescription : An issue was discovered in Veritas Enterprise Vault before 15.1 UPD882911, ZDI-CAN-24698. It allows an authenticated remote attacker to inject a parameter into an HTTP request, allowing for Cross-Site Scripting while viewing archived content. This could reflect back to an authenticated user without sanitization if executed by that user. \nSeverity: 5.4 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"18 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-18T08:10:54.000000Z"}, {"uuid": "c6268384-4c55-46f0-969a-f52aec5a0a56", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-52940", "type": "seen", "source": "https://t.me/cvedetector/11279", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-52940 - AnyDesk Public IP Exposre Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-52940 \nPublished : Nov. 18, 2024, 5:15 a.m. | 15\u00a0minutes ago \nDescription : AnyDesk through 8.1.0 on Windows, when Allow Direct Connections is enabled, inadvertently exposes a public IP address within network traffic. The attacker must know the victim's AnyDesk ID. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"18 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-18T06:30:38.000000Z"}, {"uuid": "51ee0832-9731-4a46-927a-ea0e9559a4aa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-52940", "type": "published-proof-of-concept", "source": "https://t.me/DEVIL_La_RSx/738", "content": "AnyDesk IP Leak Vulnerability CVE-2024-52940\n\nhttps://github.com/ebrasha/abdal-anydesk-remote-ip-detector", "creation_timestamp": "2024-11-22T10:05:08.000000Z"}, {"uuid": "c56901e3-a2a6-41f4-b074-1b9c23d6c1d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-52940", "type": "published-proof-of-concept", "source": "https://t.me/DEVIL_La_RSx/1576", "content": "AnyDesk IP Leak Vulnerability CVE-2024-52940\n\nhttps://github.com/ebrasha/abdal-anydesk-remote-ip-detector", "creation_timestamp": "2024-12-02T01:56:48.000000Z"}, {"uuid": "ffe5ca02-7e5a-4a21-9232-d41916be4f63", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "cve-2024-52940", "type": "seen", "source": "https://infosec.exchange/users/DarkWebInformer/statuses/113505483762832722", "content": "", "creation_timestamp": "2024-11-18T18:57:14.632199Z"}, {"uuid": "185c90cf-d27d-4dab-81f6-4d010e040f84", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-52941", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-24-1662/", "content": "", "creation_timestamp": "2024-12-11T05:00:00.000000Z"}, {"uuid": "ab0a43cd-2877-4032-b346-85621f34e8a1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-52942", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-24-1661/", "content": "", "creation_timestamp": "2024-12-11T05:00:00.000000Z"}, {"uuid": "346d65f7-826a-45ef-8392-f91f566a2dbe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-52943", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-24-1660/", "content": "", "creation_timestamp": "2024-12-11T05:00:00.000000Z"}, {"uuid": "0f3bc4ba-91d7-4cc7-9d4a-304d3f90350f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-52944", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-24-1659/", "content": "", "creation_timestamp": "2024-12-11T05:00:00.000000Z"}, {"uuid": "7fcca7a6-9597-4a30-82e5-f4c7d4085cc7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-52943", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/7978", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-52943\n\ud83d\udd25 CVSS Score: 5.4 (cvssV3_1, Vector: CVSS:3.1/AC:L/AV:N/A:N/C:L/I:L/PR:L/S:C/UI:R)\n\ud83d\udd39 Description: An issue was discovered in Veritas Enterprise Vault before 15.1 UPD882911, ZDI-CAN-24697. It allows an authenticated remote attacker to inject a parameter into an HTTP request, allowing for Cross-Site Scripting (XSS) while viewing archived content. This could reflect back to an authenticated user without sanitization if executed by that user.\n\ud83d\udccf Published: 2024-11-18T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-18T19:29:30.756Z\n\ud83d\udd17 References:\n1. https://www.veritas.com/support/en_US/security/VTS24-013", "creation_timestamp": "2025-03-18T19:48:51.000000Z"}, {"uuid": "068161f4-9108-4723-9f30-ebb5f991962a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-52947", "type": "seen", "source": "https://t.me/cvedetector/11284", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-52947 - LemonLDAP::NG Cross-Site Scripting Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-52947 \nPublished : Nov. 18, 2024, 6:15 a.m. | 36\u00a0minutes ago \nDescription : A cross-site scripting (XSS) vulnerability in LemonLDAP::NG before 2.20.1 allows remote attackers to inject arbitrary web script or HTML via the url parameter of the upgrade session confirmation page (upgradeSession / forceUpgrade) if the \"Upgrade session\" plugin has been enabled by an admin \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"18 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-18T08:10:57.000000Z"}, {"uuid": "ea23280a-9e7d-4015-b08e-4a6f2825ae41", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-52945", "type": "seen", "source": "https://t.me/cvedetector/11282", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-52945 - Veritas NetBackup DLL Load Hijacking\", \n  \"Content\": \"CVE ID : CVE-2024-52945 \nPublished : Nov. 18, 2024, 6:15 a.m. | 36\u00a0minutes ago \nDescription : An issue was discovered in Veritas NetBackup before 10.5. This only applies to NetBackup components running on a Windows Operating System. If a user executes specific NetBackup commands or an attacker uses social engineering techniques to impel the user to execute the commands, a malicious DLL could be loaded, resulting in execution of the attacker's code in the user's security context. \nSeverity: 7.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"18 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-18T08:10:55.000000Z"}, {"uuid": "4aab7178-2604-49d9-8183-00711f91a9bb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-52945", "type": "seen", "source": "https://t.me/cvedetector/11951", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-54664 - An issue was discovered in Veritas NetBackup befor\", \n  \"Content\": \"CVE ID : CVE-2024-54664 \nPublished : Dec. 4, 2024, 6:15 a.m. | 41\u00a0minutes ago \nDescription : An issue was discovered in Veritas NetBackup before 10.5. This only applies to NetBackup components running on a Windows Operating System. If a user executes specific NetBackup commands or an attacker uses social engineering techniques to impel the user to execute the commands, a malicious DLL could be loaded, resulting in execution of the attacker's code in the user's security context, a different vulnerability than CVE-2024-52945. \nSeverity: 7.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"04 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-04T08:23:20.000000Z"}, {"uuid": "0e98bc4b-b400-4ac4-b18e-a6c7be548dd0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-52940", "type": "published-proof-of-concept", "source": "https://t.me/TheDarkWebInformer/7551", "content": "\ud83d\udca1AnyDesk IP Leak Vulnerability CVE-2024-52940\n\nhttps://darkwebinformer.com/anydesk-ip-leak-vulnerability-cve-2024-52940/", "creation_timestamp": "2024-11-19T00:18:21.000000Z"}, {"uuid": "0db5f19c-f56d-4fa7-8829-b0787cb89507", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-52940", "type": "seen", "source": "https://t.me/six5zeroexploit/86", "content": "Attention AnyDesk Users! A critical security flaw (CVE-2024-52940) has been discovered, exposing user IP addresses and leaving networks vulnerable to attacks -patch your systems immediately and secure your organization", "creation_timestamp": "2024-11-27T10:26:27.000000Z"}]}