{"vulnerability": "cve-2024-8584", "sightings": [{"uuid": "38aef37e-ad8e-4961-83ac-29f766f27096", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-8584", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/1011", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-8584\n\ud83d\udd39 Description: Orca HCM from LEARNING DIGITAL does not properly restrict access to a specific functionality, allowing unauthenticated remote attacker to exploit this functionality to create an account with administrator privilege and subsequently use it to log in. (\u00a0The vendor is currently addressing the vulnerability. Once the fix is completed, we will provide information on the affected versions.)\n\ud83d\udccf Published: 2024-09-09T02:57:22.560Z\n\ud83d\udccf Modified: 2025-01-09T17:37:06.075Z\n\ud83d\udd17 References:\n1. https://www.twcert.org.tw/tw/cp-132-8039-24e48-1.html\n2. https://www.twcert.org.tw/en/cp-139-8040-948ef-2.html", "creation_timestamp": "2025-01-09T18:20:24.000000Z"}, {"uuid": "fc16a607-7400-416f-b505-498c7bc813d9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-8584", "type": "seen", "source": "Telegram/PfoCPqR3wpm4gDvULwnMqHj-hBqx4OYWM7MMOL3AhpQBKh54", "content": "", "creation_timestamp": "2025-02-17T06:39:26.000000Z"}]}