{"vulnerability": "cve-2024-5328", "sightings": [{"uuid": "85a5fbb2-532c-4cce-91ef-2f19468301a3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-53284", "type": "seen", "source": "https://t.me/cvedetector/12354", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-53284 - Synology Router Manager (SRM) Cross-Site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2024-53284 \nPublished : Dec. 9, 2024, 4:15 a.m. | 38\u00a0minutes ago \nDescription : Improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability in WiFi Connect Setting functionality in Synology Router Manager (SRM) before 1.3.1-9346-10 allows remote authenticated users with administrator privileges to inject arbitrary web script or HTML via unspecified vectors. \nSeverity: 5.9 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-09T06:19:51.000000Z"}, {"uuid": "995bd8d8-cfc2-46a3-b2d3-c34b71e36dd1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-53283", "type": "seen", "source": "https://t.me/cvedetector/12353", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-53283 - Synology Router Manager SRM Cross-site Scripting Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-53283 \nPublished : Dec. 9, 2024, 4:15 a.m. | 38\u00a0minutes ago \nDescription : Improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability in Router Port Forward functionality in Synology Router Manager (SRM) before 1.3.1-9346-10 allows remote authenticated users with administrator privileges to inject arbitrary web script or HTML via unspecified vectors. \nSeverity: 5.9 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-09T06:19:51.000000Z"}, {"uuid": "8ba13c23-ff7c-4d62-aef1-7970748d036b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-53281", "type": "seen", "source": "https://t.me/cvedetector/12358", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-53281 - Synology Router Manager SRM Cross-Site Scripting Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-53281 \nPublished : Dec. 9, 2024, 4:15 a.m. | 38\u00a0minutes ago \nDescription : Improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability in Network WOL functionality in Synology Router Manager (SRM) before 1.3.1-9346-10 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors. \nSeverity: 5.9 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-09T06:19:57.000000Z"}, {"uuid": "ac5b2b8e-86d7-42a1-b947-7d347869f5dd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-53280", "type": "seen", "source": "https://t.me/cvedetector/12357", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-53280 - Synology Router Manager SRM Cross-site Scripting Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-53280 \nPublished : Dec. 9, 2024, 4:15 a.m. | 38\u00a0minutes ago \nDescription : Improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability in network center policy route functionality in Synology Router Manager (SRM) before 1.3.1-9346-10 allows remote authenticated users with administrator privileges to inject arbitrary web script or HTML via unspecified vectors. \nSeverity: 5.9 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-09T06:19:54.000000Z"}, {"uuid": "65373a69-3216-4578-9949-620375256c16", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-53285", "type": "seen", "source": "https://t.me/cvedetector/12355", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-53285 - Synology Router Manager (SRM) Cross-site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2024-53285 \nPublished : Dec. 9, 2024, 4:15 a.m. | 38\u00a0minutes ago \nDescription : Improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability in DDNS Record functionality in Synology Router Manager (SRM) before 1.3.1-9346-10 allows remote authenticated users with administrator privileges to inject arbitrary web script or HTML via unspecified vectors. \nSeverity: 5.9 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-09T06:19:52.000000Z"}, {"uuid": "e057295a-1187-47ed-9a42-66100f5293c7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-53282", "type": "seen", "source": "https://t.me/cvedetector/12359", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-53282 - Synology Router Manager SRM Cross-Site Scripting Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-53282 \nPublished : Dec. 9, 2024, 4:15 a.m. | 38\u00a0minutes ago \nDescription : Improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability in WiFi Connect MAC Filter functionality in Synology Router Manager (SRM) before 1.3.1-9346-10 allows remote authenticated users with administrator privileges to inject arbitrary web script or HTML via unspecified vectors. \nSeverity: 5.9 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-09T06:19:58.000000Z"}, {"uuid": "bfcdf3f5-2218-4fea-af31-377188e835d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-53284", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113620866677904538", "content": "", "creation_timestamp": "2024-12-09T04:00:38.297784Z"}, {"uuid": "54c6c8ff-b0eb-43c6-80af-251d10af73f3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-53289", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113633069625418861", "content": "", "creation_timestamp": "2024-12-11T07:44:01.157582Z"}, {"uuid": "3ad893de-f76b-4dfc-8985-e0f4662c79d3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-53289", "type": "seen", "source": "MISP/be792712-f638-4d7d-b62d-4f5032e86764", "content": "", "creation_timestamp": "2025-09-18T16:44:34.000000Z"}, {"uuid": "24b6d2f2-e0fe-4254-b05f-62aef5ff7fbf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-53282", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113620807664691140", "content": "", "creation_timestamp": "2024-12-09T03:45:37.883775Z"}, {"uuid": "2520e867-d5a5-4132-878b-00067308422e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-53283", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113620866663767740", "content": "", "creation_timestamp": "2024-12-09T04:00:37.894450Z"}, {"uuid": "b5e0c896-80a4-4a3c-8d81-fd1d2b546cc5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-53289", "type": "seen", "source": "https://t.me/cvedetector/12616", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-53289 - Dell ThinOS Elevation of Privileges TOCTOU Race Condition\", \n  \"Content\": \"CVE ID : CVE-2024-53289 \nPublished : Dec. 11, 2024, 8:15 a.m. | 38\u00a0minutes ago \nDescription : Dell ThinOS version 2408 contains a Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of Privileges. \nSeverity: 7.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-11T10:13:20.000000Z"}, {"uuid": "9931610b-551d-40e3-be7d-397cf8d3a05b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-53281", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113620807648712763", "content": "", "creation_timestamp": "2024-12-09T03:45:37.548371Z"}, {"uuid": "55ee2a9a-8a90-454a-9591-452e62d557aa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-53280", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113620807634053810", "content": "", "creation_timestamp": "2024-12-09T03:45:37.258221Z"}, {"uuid": "463e9a85-dc96-4fa8-8b2a-4c3bf9ac3195", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-53285", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113620866691495786", "content": "", "creation_timestamp": "2024-12-09T04:00:38.516830Z"}, {"uuid": "c9e2c59c-dc7c-41f3-9121-ed1fa0c79abb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-53289", "type": "seen", "source": "MISP/be792712-f638-4d7d-b62d-4f5032e86764", "content": "", "creation_timestamp": "2025-09-16T23:16:38.000000Z"}]}