https://vulnerability.circl.lu/sightings/feed 2026-05-06T07:08:59.556018+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/50756d89-a7e2-4217-bd37-8c0c38f0d732/export 2026-05-06T07:08:59.905558+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "50756d89-a7e2-4217-bd37-8c0c38f0d732", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-41107", "type": "seen", "source": "https://t.me/cvedetector/1213", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-41107 - CloudStack SAML Authentication Spoofing Vulnerability\", \n \"Content\": \"CVE ID : CVE-2024-41107 \nPublished : July 19, 2024, 11:15 a.m. | 26\u00a0minutes ago \nDescription : The CloudStack SAML authentication (disabled by default) does not enforce signature check. In CloudStack environments where SAML authentication is enabled, an attacker that initiates CloudStack SAML single sign-on authentication can bypass SAML authentication by submitting a spoofed SAML response with no signature and known or guessed username and other user details of a SAML-enabled CloudStack user-account.\u00a0In such environments, this can result in a complete compromise of the resources owned and/or accessible by a SAML enabled user-account. \n \nAffected users are recommended to disable the SAML authentication plugin by setting the\u00a0\"saml2.enabled\" global setting to \"false\", or upgrade to version 4.18.2.2, 4.19.1.0 or later, which addresses this issue. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"19 Jul 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-19T13:42:10.000000Z"} 2024-07-19T13:42:10+00:00 https://vulnerability.circl.lu/sighting/ee9d461d-dffb-4fe3-831a-d4f0638d2a84/export 2026-05-06T07:08:59.905473+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "ee9d461d-dffb-4fe3-831a-d4f0638d2a84", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-41107", "type": "published-proof-of-concept", "source": "https://t.me/HackingInsights/6891", "content": "\u200aCVE-2024-41107: Apache CloudStack Vulnerability Exposes User Accounts to Compromise\n\nhttps://securityonline.info/cve-2024-41107-apache-cloudstack-vulnerability-exposes-user-accounts-to-compromise/", "creation_timestamp": "2024-07-22T10:18:14.000000Z"} 2024-07-22T10:18:14+00:00 https://vulnerability.circl.lu/sighting/50400824-f130-4943-b40a-b1bf3403248c/export 2026-05-06T07:08:59.905388+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "50400824-f130-4943-b40a-b1bf3403248c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-41107", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/8060", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1aThis repository contains an PoC for the critical vulnerability identified as CVE-2024-41107 in Apache CloudStack\nURL\uff1ahttps://github.com/d0rb/CVE-2024-41107\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-07-23T09:46:37.000000Z"} 2024-07-23T09:46:37+00:00 https://vulnerability.circl.lu/sighting/d5bad6c3-e866-4ff1-8d08-afab183a8ff1/export 2026-05-06T07:08:59.905309+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "d5bad6c3-e866-4ff1-8d08-afab183a8ff1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-41107", "type": "published-proof-of-concept", "source": "https://t.me/proxy_bar/2176", "content": "CVE-2024-41107\n*\nApache CloudStack \n*\n\u0412\u0435\u0440\u0441\u0438\u0438 \u0441 4.5.0 \u043f\u043e 4.18.2.1 \u0438 \u0441 4.19.0.0 \u043f\u043e 4.19.0.2.\n*\n\u0414\u044b\u0440\u043a\u0430 \u0432 \u043c\u0435\u0445\u0430\u043d\u0438\u0437\u043c\u0435 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438 SAML\n*\n\u0414\u043b\u044f \u0430\u0434\u043c\u0438\u043d\u043e\u0432\\white: saml2.enabled \u0437\u0430\u043c\u0435\u043d\u0438\u0442\u044c \u043d\u0430 saml2.false \u0431\u0433\u0433))\n\n#apache #saml", "creation_timestamp": "2024-07-23T17:36:44.000000Z"} 2024-07-23T17:36:44+00:00 https://vulnerability.circl.lu/sighting/9330841a-1eab-4735-864e-c1f4d78f5bc8/export 2026-05-06T07:08:59.905218+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "9330841a-1eab-4735-864e-c1f4d78f5bc8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-41107", "type": "published-proof-of-concept", "source": "https://t.me/HackerArsenal/70", "content": "CVE-2024-41107\n*\nApache CloudStack \n*\n\u0412\u0435\u0440\u0441\u0438\u0438 \u0441 4.5.0 \u043f\u043e 4.18.2.1 \u0438 \u0441 4.19.0.0 \u043f\u043e 4.19.0.2.\n*\n\u0414\u044b\u0440\u043a\u0430 \u0432 \u043c\u0435\u0445\u0430\u043d\u0438\u0437\u043c\u0435 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438 SAML\n*\n\u0414\u043b\u044f \u0430\u0434\u043c\u0438\u043d\u043e\u0432\\white: saml2.enabled \u0437\u0430\u043c\u0435\u043d\u0438\u0442\u044c \u043d\u0430 saml2.false \u0431\u0433\u0433))\n\n#apache #saml", "creation_timestamp": "2024-07-30T04:20:52.000000Z"} 2024-07-30T04:20:52+00:00 https://vulnerability.circl.lu/sighting/eda819aa-3dfb-4b9c-9bcc-cc3ddbba832d/export 2026-05-06T07:08:59.905018+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "eda819aa-3dfb-4b9c-9bcc-cc3ddbba832d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-41107", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/4302", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-41107\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: No description available\n\ud83d\udccf Published: 2024-07-19T11:15:03.323\n\ud83d\udccf Modified: N/A\n\ud83d\udd17 References:\n1. http://www.openwall.com/lists/oss-security/2024/07/19/1\n2. http://www.openwall.com/lists/oss-security/2024/07/19/2\n3. https://cloudstack.apache.org/blog/security-release-advisory-cve-2024-41107\n4. https://github.com/apache/cloudstack/issues/4519\n5. https://lists.apache.org/thread/5q06g8zvmhcw6w3tjr6r5prqdw6zckg3\n6. https://www.shapeblue.com/shapeblue-security-advisory-apache-cloudstack-cve-2024-41107\n7. http://www.openwall.com/lists/oss-security/2024/07/19/1\n8. http://www.openwall.com/lists/oss-security/2024/07/19/2\n9. https://cloudstack.apache.org/blog/security-release-advisory-cve-2024-41107\n10. https://github.com/apache/cloudstack/issues/4519\n11. https://lists.apache.org/thread/5q06g8zvmhcw6w3tjr6r5prqdw6zckg3\n12. https://www.shapeblue.com/shapeblue-security-advisory-apache-cloudstack-cve-2024-41107", "creation_timestamp": "2025-02-13T19:10:44.000000Z"} 2025-02-13T19:10:44+00:00 https://vulnerability.circl.lu/sighting/3f43025e-717e-46e4-bf8b-48c789258194/export 2026-05-06T07:08:59.901102+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "3f43025e-717e-46e4-bf8b-48c789258194", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-41107", "type": "seen", "source": "Telegram/wU-S_9jya7RZ2wvc-X65k6zed65yLtdSpRsjHNh-iDDt7Fu6", "content": "", "creation_timestamp": "2025-02-21T22:10:26.000000Z"} 2025-02-21T22:10:26+00:00