{"vulnerability": "cve-2024-5401", "sightings": [{"uuid": "17e776e6-2e75-4f7d-9086-67353c298ef5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-5401", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3m7liw4fgrc27", "content": "", "creation_timestamp": "2025-12-09T21:37:34.094743Z"}, {"uuid": "37c3dc49-b894-4be6-8e6f-076901eaf9fe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2024-54017", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-26-134-13", "content": "", "creation_timestamp": "2026-05-14T10:00:00.000000Z"}, {"uuid": "a3346a18-78a2-4293-ad98-5f06b431adfd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-54014", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113597993390478897", "content": "", "creation_timestamp": "2024-12-05T03:03:39.564923Z"}, {"uuid": "a5d5724c-f400-4b1f-94ce-0bc36268e104", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-54018", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2025-0083", "content": "", "creation_timestamp": "2025-03-12T09:51:18.000000Z"}, {"uuid": "44852d33-30fd-4ab8-8b9a-eeb9a0ade4d6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-54015", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113984882026322529", "content": "", "creation_timestamp": "2025-02-11T10:54:31.959458Z"}, {"uuid": "70d218fa-a4e9-4766-886b-f11ab2100e47", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-54015", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lhvjta2qmb2c", "content": "", "creation_timestamp": "2025-02-11T11:15:48.481427Z"}, {"uuid": "6e8ba570-4864-4478-af9f-0caa4cc23552", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-54015", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lhvu4oy5p62l", "content": "", "creation_timestamp": "2025-02-11T14:20:04.671660Z"}, {"uuid": "13e24153-dc38-4d00-99bb-8a8fa45de120", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-54016", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3lkqpzfrfac2u", "content": "", "creation_timestamp": "2025-03-19T17:38:54.353918Z"}, {"uuid": "59c5659c-bd86-45de-bc61-55325f6a2ec4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-54015", "type": "seen", "source": "https://t.me/cvedetector/17696", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-54015 - SIPROTEC 5 SNMP Information Disclosure\", \n  \"Content\": \"CVE ID : CVE-2024-54015 \nPublished : Feb. 11, 2025, 11:15 a.m. | 52\u00a0minutes ago \nDescription : A vulnerability has been identified in SIPROTEC 5 6MD84 (CP300) (All versions < V9.90), SIPROTEC 5 6MD85 (CP300) (All versions >= V8.80 < V9.90), SIPROTEC 5 6MD86 (CP300) (All versions >= V8.80 < V9.90), SIPROTEC 5 6MD89 (CP300) (All versions >= V8.80 < V9.90), SIPROTEC 5 6MU85 (CP300) (All versions >= V8.80 < V9.90), SIPROTEC 5 7KE85 (CP300) (All versions >= V8.80), SIPROTEC 5 7SA82 (CP150) (All versions < V9.90), SIPROTEC 5 7SA86 (CP300) (All versions >= V8.80 < V9.90), SIPROTEC 5 7SA87 (CP300) (All versions >= V8.80 < V9.90), SIPROTEC 5 7SD82 (CP150) (All versions < V9.90), SIPROTEC 5 7SD86 (CP300) (All versions >= V8.80 < V9.90), SIPROTEC 5 7SD87 (CP300) (All versions >= V8.80 < V9.90), SIPROTEC 5 7SJ81 (CP150) (All versions < V9.90), SIPROTEC 5 7SJ82 (CP150) (All versions < V9.90), SIPROTEC 5 7SJ85 (CP300) (All versions >= V8.80 < V9.90), SIPROTEC 5 7SJ86 (CP300) (All versions >= V8.80 < V9.90), SIPROTEC 5 7SK82 (CP150) (All versions < V9.90), SIPROTEC 5 7SK85 (CP300) (All versions >= V8.80 < V9.90), SIPROTEC 5 7SL82 (CP150) (All versions < V9.90), SIPROTEC 5 7SL86 (CP300) (All versions >= V8.80 < V9.90), SIPROTEC 5 7SL87 (CP300) (All versions >= V8.80 < V9.90), SIPROTEC 5 7SS85 (CP300) (All versions >= V8.80 < V9.90), SIPROTEC 5 7ST85 (CP300) (All versions >= V8.80), SIPROTEC 5 7ST86 (CP300) (All versions), SIPROTEC 5 7SX82 (CP150) (All versions < V9.90), SIPROTEC 5 7SX85 (CP300) (All versions >= V8.80 < V9.90), SIPROTEC 5 7SY82 (CP150) (All versions < V9.90), SIPROTEC 5 7UM85 (CP300) (All versions >= V8.80 < V9.90), SIPROTEC 5 7UT82 (CP150) (All versions < V9.90), SIPROTEC 5 7UT85 (CP300) (All versions >= V8.80 < V9.90), SIPROTEC 5 7UT86 (CP300) (All versions >= V8.80 < V9.90), SIPROTEC 5 7UT87 (CP300) (All versions >= V8.80 < V9.90), SIPROTEC 5 7VE85 (CP300) (All versions >= V8.80 < V9.90), SIPROTEC 5 7VK87 (CP300) (All versions >= V8.80 < V9.90), SIPROTEC 5 7VU85 (CP300) (All versions < V9.90), SIPROTEC 5 Communication Module ETH-BA-2EL (Rev.2) (All versions < V9.90), SIPROTEC 5 Communication Module ETH-BB-2FO (Rev. 2) (All versions < V9.90), SIPROTEC 5 Communication Module ETH-BD-2FO (All versions >= V8.80 < V9.90), SIPROTEC 5 Compact 7SX800 (CP050) (All versions >= V9.50 < V9.90). Affected devices do not properly validate SNMP GET requests. This could allow an unauthenticated, remote attacker to retrieve sensitive information of the affected devices with SNMPv2 GET requests using default credentials. \nSeverity: 7.5 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-11T13:10:27.000000Z"}, {"uuid": "d2a75f85-0e1b-4d70-b247-fd2b1f65ce5c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-54016", "type": "seen", "source": "https://t.me/cvedetector/20702", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-54016 - Apache Seata Data Amplification Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-54016 \nPublished : March 20, 2025, 9:15 a.m. | 35\u00a0minutes ago \nDescription : Improper Handling of Highly Compressed Data (Data Amplification) vulnerability in Apache Seata (incubating).  \n  \nThis issue affects Apache Seata (incubating): through <=2.2.0.\nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"20 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-20T11:32:43.000000Z"}, {"uuid": "37ff5b80-8ccb-447e-9715-5ea7ac0f4e2d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-54014", "type": "seen", "source": "https://t.me/cvedetector/12060", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-54014 - Improper authorization in handler for custom URL s\", \n  \"Content\": \"CVE ID : CVE-2024-54014 \nPublished : Dec. 5, 2024, 3:15 a.m. | 45\u00a0minutes ago \nDescription : Improper authorization in handler for custom URL scheme issue in 'Skylark' App for Android 6.2.13 and earlier and 'Skylark' App for iOS 6.2.13 and earlier allows an attacker to lead the application to access an arbitrary web site via another application installed on the user's device. \nSeverity: 3.6 | LOW \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"05 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-05T05:18:59.000000Z"}, {"uuid": "7496d5b3-ab98-4452-a5ee-211b221273ce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-54010", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113794680050026419", "content": "", "creation_timestamp": "2025-01-08T20:43:41.618013Z"}, {"uuid": "c31c4ccf-271c-4f7b-9468-5ca291acbdff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-54016", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114194852293996029", "content": "", "creation_timestamp": "2025-03-20T12:52:43.960080Z"}, {"uuid": "066f6dda-9ee2-4812-8d32-1fe05f6808f8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-54015", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-044-05", "content": "", "creation_timestamp": "2025-02-13T11:00:00.000000Z"}, {"uuid": "0d753580-14ec-448f-9051-8ab215e6a850", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-54018", "type": "seen", "source": "https://t.me/cvedetector/20089", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-54018 - FortiSandbox OS Command Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-54018 \nPublished : March 11, 2025, 3:15 p.m. | 1\u00a0hour ago \nDescription : Multiple\u00a0improper neutralization of special elements used in an OS Command vulnerabilities [CWE-78] in FortiSandbox before 4.4.5 allows a privileged attacker to execute unauthorized commands via crafted requests. \nSeverity: 7.2 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-11T17:37:33.000000Z"}, {"uuid": "d55edb23-a495-4d76-939f-ec384c584093", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-54010", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/839", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-54010\n\ud83d\udd39 Description: A vulnerability in the firewall component of HPE Aruba Networking CX 10000 Series Switches  exists. It could allow an unauthenticated adjacent attacker to conduct a packet  forwarding attack against the ICMP and UDP protocol. For this attack to be successful an attacker requires a switch configuration that allows packets routing (at layer 3). Configurations that do not allow network traffic routing are not impacted. Successful exploitation could allow an attacker to bypass security policies, potentially leading to unauthorized data exposure.\n\ud83d\udccf Published: 2025-01-08T20:42:21.216Z\n\ud83d\udccf Modified: 2025-01-08T20:42:21.216Z\n\ud83d\udd17 References:\n1. https://csaf.arubanetworks.com/2024/hpe_aruba_networking_-_hpesbnw04772.txt", "creation_timestamp": "2025-01-08T21:13:49.000000Z"}, {"uuid": "69dd47bc-89d3-4c3c-bc30-88f8328aae12", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-54010", "type": "seen", "source": "https://t.me/cvedetector/14741", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-54010 - Aruba Networking CX 10000 Series Switches ICMP and UDP Packet Forwarding Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-54010 \nPublished : Jan. 8, 2025, 9:15 p.m. | 36\u00a0minutes ago \nDescription : A vulnerability in the firewall component of HPE Aruba Networking CX 10000 Series Switches  exists. It could allow an unauthenticated adjacent attacker to conduct a packet  forwarding attack against the ICMP and UDP protocol. For this attack to be successful an attacker requires a switch configuration that allows packets routing (at layer 3). Configurations that do not allow network traffic routing are not impacted. Successful exploitation could allow an attacker to bypass security policies, potentially leading to unauthorized data exposure. \nSeverity: 3.4 | LOW \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"08 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-08T23:21:24.000000Z"}, {"uuid": "3e72d3bf-d956-4ae6-9d52-daa30da722c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-54010", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfb3ipk5vf2l", "content": "", "creation_timestamp": "2025-01-08T21:15:45.141041Z"}]}