{"vulnerability": "cve-2024-5636", "sightings": [{"uuid": "a45a7a24-8dde-49b9-8f5b-ac357a4de4f1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2024-56368", "type": "seen", "source": "https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0316/", "content": "", "creation_timestamp": "2026-03-19T00:00:00.000000Z"}, {"uuid": "1327a934-ba77-4e34-a17b-a5c902668b5b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56369", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/816dcc8e-f25a-4895-9b59-1bbd9caeccb8", "content": "", "creation_timestamp": "2025-12-03T14:14:49.267740Z"}, {"uuid": "e130c2e1-7b5d-4ae6-81fc-cd17adc2b9bb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56368", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lfhtoc24jl2e", "content": "", "creation_timestamp": "2025-01-11T13:44:20.657433Z"}, {"uuid": "b940edfd-5594-4ba8-9fdd-2f3fa12e6136", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56369", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/1304", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-56369\n\ud83d\udd39 Description: In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/modes: Avoid divide by zero harder in drm_mode_vrefresh()\n\ndrm_mode_vrefresh() is trying to avoid divide by zero\nby checking whether htotal or vtotal are zero. But we may\nstill end up with a div-by-zero of vtotal*htotal*...\n\ud83d\udccf Published: 2025-01-11T12:35:46.439Z\n\ud83d\udccf Modified: 2025-01-11T12:35:46.439Z\n\ud83d\udd17 References:\n1. https://git.kernel.org/stable/c/e7c7b48a0fc5ed83baae400a1b15e33978c25d7f\n2. https://git.kernel.org/stable/c/69fbb01e891701e6d04db1ddb5ad49e42c4dd963\n3. https://git.kernel.org/stable/c/b39de5a71bac5641d0fda33d1cf5682d82cf1ae5\n4. https://git.kernel.org/stable/c/47c8b6cf1d08f0ad40d7ea7b025442e51b35ee1f\n5. https://git.kernel.org/stable/c/9398332f23fab10c5ec57c168b44e72997d6318e", "creation_timestamp": "2025-01-11T13:06:18.000000Z"}, {"uuid": "97eea46c-3173-48d8-acd9-b7c60b6ac1ff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56369", "type": "seen", "source": "https://t.me/cvedetector/15073", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-56369 - AMD Linux Divide by Zero Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-56369 \nPublished : Jan. 11, 2025, 1:15 p.m. | 35\u00a0minutes ago \nDescription : In the Linux kernel, the following vulnerability has been resolved:  \n  \ndrm/modes: Avoid divide by zero harder in drm_mode_vrefresh()  \n  \ndrm_mode_vrefresh() is trying to avoid divide by zero  \nby checking whether htotal or vtotal are zero. But we may  \nstill end up with a div-by-zero of vtotal*htotal*... \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-11T14:55:29.000000Z"}, {"uuid": "37fa8e08-7297-4c72-b958-6d48f7e72c22", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56368", "type": "seen", "source": "https://t.me/cvedetector/15070", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-56368 - Linux Kernel Ring-Buffer Overflow\", \n  \"Content\": \"CVE ID : CVE-2024-56368 \nPublished : Jan. 11, 2025, 1:15 p.m. | 35\u00a0minutes ago \nDescription : In the Linux kernel, the following vulnerability has been resolved:  \n  \nring-buffer: Fix overflow in __rb_map_vma  \n  \nAn overflow occurred when performing the following calculation:  \n  \n   nr_pages = ((nr_subbufs + 1) <<<-------------------------/sys/kernel/tracing/buffer_size_kb\");  \n fd = open(\"/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\", O_RDONLY);  \n  \n meta = mmap(NULL, page_size, PROT_READ, MAP_SHARED, fd, page_size * 5);  \n }  \n------------------------>8------------------------- \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-11T14:55:24.000000Z"}, {"uuid": "d049a403-a9ed-4a23-9468-247be7638275", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56363", "type": "seen", "source": "https://t.me/cvedetector/13547", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-56363 - APTRS Jinja2 Code Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-56363 \nPublished : Dec. 23, 2024, 6:15 p.m. | 34\u00a0minutes ago \nDescription : APTRS (Automated Penetration Testing Reporting System) is a Python and Django-based automated reporting tool designed for penetration testers and security organizations. In 1.0, there is a vulnerability in the web application's handling of user-supplied input that is incorporated into a Jinja2 template. Specifically, when user input is improperly sanitized or validated, an attacker can inject Jinja2 syntax into the template, causing the server to execute arbitrary code. For example, an attacker might be able to inject expressions like {{ config }}, {{ self.class.mro[1].subclasses() }}, or more dangerous payloads that trigger execution of arbitrary Python code. The vulnerability can be reproduced by submitting crafted input to all the template fields handled by ckeditor, that are passed directly to a Jinja2 template. If the input is rendered without sufficient sanitization, it results in the execution of malicious Jinja2 code on the server. \nSeverity: 7.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"23 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-23T20:00:28.000000Z"}, {"uuid": "8b3e0313-741d-44fc-9481-e804619d3573", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56362", "type": "seen", "source": "https://t.me/cvedetector/13546", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-56362 - Navidrome Insecure Secret Storage\", \n  \"Content\": \"CVE ID : CVE-2024-56362 \nPublished : Dec. 23, 2024, 6:15 p.m. | 34\u00a0minutes ago \nDescription : Navidrome is an open source web-based music collection server and streamer. Navidrome stores the JWT secret in plaintext in the navidrome.db database file under the property table. This practice introduces a security risk because anyone with access to the database file can retrieve the secret. This vulnerability is fixed in 0.54.1. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"23 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-23T20:00:27.000000Z"}, {"uuid": "c14f1a40-c650-4a73-a416-6648d4be56fa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56366", "type": "seen", "source": "https://t.me/cvedetector/14232", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-56366 - PhpSpreadsheet Reflected Cross-Site Scripting Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-56366 \nPublished : Jan. 3, 2025, 5:15 p.m. | 16\u00a0minutes ago \nDescription : PhpSpreadsheet is a PHP library for reading and writing spreadsheet files. Versions prior to 3.7.0, 2.3.5, 2.1.6, and 1.29.7 are vulnerable to unauthorized reflected cross-site scripting in the `Accounting.php` file. Using the `/vendor/phpoffice/phpspreadsheet/samples/Wizards/NumberFormat/Accounting.php` script, an attacker can perform a cross-site scripting attack. Versions  3.7.0, 2.3.5, 2.1.6, and 1.29.7 contain a patch for the issue. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"03 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-03T18:41:42.000000Z"}, {"uuid": "461c714a-39d8-4685-aa66-a8b11aac09d1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56365", "type": "seen", "source": "https://t.me/cvedetector/14231", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-56365 - PhpSpreadsheet Cross-Site Scripting (XSS) Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-56365 \nPublished : Jan. 3, 2025, 5:15 p.m. | 16\u00a0minutes ago \nDescription : PhpSpreadsheet is a PHP library for reading and writing spreadsheet files. Versions prior to 3.7.0, 2.3.5, 2.1.6, and 1.29.7 are vulnerable to unauthorized reflected cross-site scripting in the constructor of the `Downloader` class. Using the `/vendor/phpoffice/phpspreadsheet/samples/download.php` script, an attacker can perform a cross-site scripting attack. Versions  3.7.0, 2.3.5, 2.1.6, and 1.29.7 contain a patch for the issue. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"03 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-03T18:41:41.000000Z"}, {"uuid": "1e9a2ff1-72d6-463e-aef3-54d676fb645e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56364", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113702950354491013", "content": "", "creation_timestamp": "2024-12-23T15:55:36.181166Z"}, {"uuid": "7ce5cd40-8028-4a5f-b2fd-84731cf2fcaf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56362", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113703315087550013", "content": "", "creation_timestamp": "2024-12-23T17:28:21.245349Z"}, {"uuid": "755e6263-5622-42f3-9407-a3942945883a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56363", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113703315103089292", "content": "", "creation_timestamp": "2024-12-23T17:28:21.637005Z"}, {"uuid": "e04371ff-3007-4c39-a96b-fee16691edcf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56369", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfhs5ytygn2e", "content": "", "creation_timestamp": "2025-01-11T13:17:20.220663Z"}, {"uuid": "4fcae23f-a2a5-424e-8d56-fb896aa115f8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56361", "type": "seen", "source": "https://t.me/cvedetector/13697", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-56361 - LGSL Stored Cross-Site Scripting (XSS) Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-56361 \nPublished : Dec. 26, 2024, 10:15 p.m. | 44\u00a0minutes ago \nDescription : LGSL (Live Game Server List) provides online status for games. Before 7.0.0, a stored cross-site scripting (XSS) vulnerability was identified in lgsl. The function lgsl_query_40 in lgsl_protocol.php has implemented an HTTP crawler. This function makes a request to the registered game server, and upon crawling the malicious /info endpoint with our payload, will render our javascript on the info page. This information is being displayed via lgsl_details.php. This vulnerability is fixed in 7.0.0. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"26 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-27T00:05:53.000000Z"}, {"uuid": "c88f1c87-a8ff-41ca-aaa4-c8dcb9e8ea8a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56364", "type": "seen", "source": "https://t.me/cvedetector/13539", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-56364 - SimpleXLSX Cross-Site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2024-56364 \nPublished : Dec. 23, 2024, 4:15 p.m. | 43\u00a0minutes ago \nDescription : SimpleXLSX is software for parsing and retrieving data from Excel XLSx files. Starting in 1.0.12 and ending in 1.1.13, when calling the extended toHTMLEx method, it is possible to execute arbitrary JavaScript code. This vulnerability is fixed in 1.1.13. \nSeverity: 5.4 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"23 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-23T18:20:02.000000Z"}, {"uuid": "fb91a607-9534-4bf1-87cf-2fa515c154f9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56361", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113721385324840578", "content": "", "creation_timestamp": "2024-12-26T22:03:51.144909Z"}, {"uuid": "8ecd9497-77f1-45b8-a087-83b466d256b9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56365", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113765493050087439", "content": "", "creation_timestamp": "2025-01-03T17:01:09.908717Z"}, {"uuid": "2e9deaeb-4a5b-4859-8e02-81904fee0717", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56366", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113765525080037063", "content": "", "creation_timestamp": "2025-01-03T17:09:10.823443Z"}, {"uuid": "26467989-cc45-4746-b2e4-bd9ad0eaff6c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56368", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfhs5w4okp2a", "content": "", "creation_timestamp": "2025-01-11T13:17:17.512469Z"}, {"uuid": "e0865955-8fb7-4b19-bba3-fa1e134435c7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56369", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lfhtod7fjn2g", "content": "", "creation_timestamp": "2025-01-11T13:44:25.452916Z"}]}