{"uuid": "0fafd0a1-ff3e-42f1-9d2f-a16ac9691e8c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-54454", "type": "seen", "source": "https://t.me/cvedetector/13800", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-54454 - Kurmi Provisioning Suite Observable Response Discrepancy Directory Brute Force\", \n  \"Content\": \"CVE ID : CVE-2024-54454 \nPublished : Dec. 27, 2024, 8:15 p.m. | 26\u00a0minutes ago \nDescription : An issue was discovered in Kurmi Provisioning Suite before 7.9.0.35, 7.10.x through 7.10.0.18, and 7.11.x through 7.11.0.15. An Observable Response Discrepancy vulnerability in the sendPasswordReinitLink action of the unlogged.do page allows remote attackers to test whether a username is valid or not. This allows confirmation of valid usernames. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"27 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-27T21:52:52.000000Z"}