https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Thu, 11 Jun 2026 22:33:24 +0000 https://vulnerability.circl.lu/sighting/c70c5c7e-541b-4b27-864d-42f5ad2379fd/export {"uuid": "c70c5c7e-541b-4b27-864d-42f5ad2379fd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12019", "type": "seen", "source": "https://t.me/cvedetector/20340", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-12019 - Adobe Document Server Local File Inclusion Vulnerability\", \n \"Content\": \"CVE ID : CVE-2024-12019 \nPublished : March 14, 2025, 6:15 p.m. | 1\u00a0hour, 22\u00a0minutes ago \nDescription : The API used to interact with documents in the application contains a flaw that allows an authenticated attacker to read the contents of files on the underlying operating system. An account with \u2018read\u2019 and \u2018download\u2019 privileges on at least one existing document in the application is required to exploit the vulnerability.\u00a0Exploitation of this vulnerability would allow an attacker to read the contents of any file available within the privileges of the system user running the application. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"14 Mar 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-14T20:53:51.000000Z"} {"uuid": "c70c5c7e-541b-4b27-864d-42f5ad2379fd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12019", "type": "seen", "source": "https://t.me/cvedetector/20340", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-12019 - Adobe Document Server Local File Inclusion Vulnerability\", \n \"Content\": \"CVE ID : CVE-2024-12019 \nPublished : March 14, 2025, 6:15 p.m. | 1\u00a0hour, 22\u00a0minutes ago \nDescription : The API used to interact with documents in the application contains a flaw that allows an authenticated attacker to read the contents of files on the underlying operating system. An account with \u2018read\u2019 and \u2018download\u2019 privileges on at least one existing document in the application is required to exploit the vulnerability.\u00a0Exploitation of this vulnerability would allow an attacker to read the contents of any file available within the privileges of the system user running the application. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"14 Mar 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-14T20:53:51.000000Z"} https://vulnerability.circl.lu/sighting/c70c5c7e-541b-4b27-864d-42f5ad2379fd/export Fri, 14 Mar 2025 20:53:51 +0000 https://vulnerability.circl.lu/sighting/3fbe7ee2-9843-4dc7-be44-d7d17d1a3a3d/export {"uuid": "3fbe7ee2-9843-4dc7-be44-d7d17d1a3a3d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12019", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/7932", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-12019\n\ud83d\udd25 CVSS Score: 7.1 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N)\n\ud83d\udd39 Description: The API used to interact with documents in the application contains a flaw that allows an authenticated attacker to read the contents of files on the underlying operating system. An account with \u2018read\u2019 and \u2018download\u2019 privileges on at least one existing document in the application is required to exploit the vulnerability.\u00a0Exploitation of this vulnerability would allow an attacker to read the contents of any file available within the privileges of the system user running the application.\n\ud83d\udccf Published: 2025-03-14T18:07:01.253Z\n\ud83d\udccf Modified: 2025-03-18T16:26:57.725Z\n\ud83d\udd17 References:\n1. https://www.blackduck.com/blog/cyrc-advisory-logicaldoc.html", "creation_timestamp": "2025-03-18T16:51:24.000000Z"} {"uuid": "3fbe7ee2-9843-4dc7-be44-d7d17d1a3a3d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12019", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/7932", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-12019\n\ud83d\udd25 CVSS Score: 7.1 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N)\n\ud83d\udd39 Description: The API used to interact with documents in the application contains a flaw that allows an authenticated attacker to read the contents of files on the underlying operating system. An account with \u2018read\u2019 and \u2018download\u2019 privileges on at least one existing document in the application is required to exploit the vulnerability.\u00a0Exploitation of this vulnerability would allow an attacker to read the contents of any file available within the privileges of the system user running the application.\n\ud83d\udccf Published: 2025-03-14T18:07:01.253Z\n\ud83d\udccf Modified: 2025-03-18T16:26:57.725Z\n\ud83d\udd17 References:\n1. https://www.blackduck.com/blog/cyrc-advisory-logicaldoc.html", "creation_timestamp": "2025-03-18T16:51:24.000000Z"} https://vulnerability.circl.lu/sighting/3fbe7ee2-9843-4dc7-be44-d7d17d1a3a3d/export Tue, 18 Mar 2025 16:51:24 +0000 https://vulnerability.circl.lu/sighting/7f35d87f-fac7-480b-8afc-d0e31d644ae2/export {"uuid": "7f35d87f-fac7-480b-8afc-d0e31d644ae2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12016", "type": "seen", "source": "https://bsky.app/profile/cyberalerts.bsky.social/post/3lkscf6j4s62p", "content": "", "creation_timestamp": "2025-03-20T08:40:16.593457Z"} {"uuid": "7f35d87f-fac7-480b-8afc-d0e31d644ae2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12016", "type": "seen", "source": "https://bsky.app/profile/cyberalerts.bsky.social/post/3lkscf6j4s62p", "content": "", "creation_timestamp": "2025-03-20T08:40:16.593457Z"} https://vulnerability.circl.lu/sighting/7f35d87f-fac7-480b-8afc-d0e31d644ae2/export Thu, 20 Mar 2025 08:40:16 +0000 https://vulnerability.circl.lu/sighting/f08a36b1-e751-4b56-8736-5aacca816992/export {"uuid": "f08a36b1-e751-4b56-8736-5aacca816992", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12016", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lksdoltrrq2j", "content": "", "creation_timestamp": "2025-03-20T09:03:27.160402Z"} {"uuid": "f08a36b1-e751-4b56-8736-5aacca816992", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12016", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lksdoltrrq2j", "content": "", "creation_timestamp": "2025-03-20T09:03:27.160402Z"} https://vulnerability.circl.lu/sighting/f08a36b1-e751-4b56-8736-5aacca816992/export Thu, 20 Mar 2025 09:03:27 +0000 https://vulnerability.circl.lu/sighting/38286db3-021b-4ab5-89b8-fec32ecaafdd/export {"uuid": "38286db3-021b-4ab5-89b8-fec32ecaafdd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12016", "type": "seen", "source": "https://bsky.app/profile/cyberalerts.bsky.social/post/3lksiy2bufs2u", "content": "", "creation_timestamp": "2025-03-20T10:38:12.087269Z"} {"uuid": "38286db3-021b-4ab5-89b8-fec32ecaafdd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12016", "type": "seen", "source": "https://bsky.app/profile/cyberalerts.bsky.social/post/3lksiy2bufs2u", "content": "", "creation_timestamp": "2025-03-20T10:38:12.087269Z"} https://vulnerability.circl.lu/sighting/38286db3-021b-4ab5-89b8-fec32ecaafdd/export Thu, 20 Mar 2025 10:38:12 +0000 https://vulnerability.circl.lu/sighting/e9e2dad1-55f8-4e5a-b408-f859f61276cb/export {"uuid": "e9e2dad1-55f8-4e5a-b408-f859f61276cb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12016", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114194363600674612", "content": "", "creation_timestamp": "2025-03-20T10:48:26.903129Z"} {"uuid": "e9e2dad1-55f8-4e5a-b408-f859f61276cb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12016", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114194363600674612", "content": "", "creation_timestamp": "2025-03-20T10:48:26.903129Z"} https://vulnerability.circl.lu/sighting/e9e2dad1-55f8-4e5a-b408-f859f61276cb/export Thu, 20 Mar 2025 10:48:26 +0000 https://vulnerability.circl.lu/sighting/409c2f40-38d0-4ec2-8d9c-fea56f464bf6/export {"uuid": "409c2f40-38d0-4ec2-8d9c-fea56f464bf6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12016", "type": "seen", "source": "https://t.me/cvedetector/20704", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-12016 - CM Informatics CM News SQL Injection\", \n \"Content\": \"CVE ID : CVE-2024-12016 \nPublished : March 20, 2025, 8:15 a.m. | 1\u00a0hour, 35\u00a0minutes ago \nDescription : Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in CM Informatics CM News allows SQL Injection.This issue affects CM News: through 6.0. \n \n \n \n \n \nNOTE: The vendor was contacted and it was learned that the product is not supported. \nSeverity: 9.8 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"20 Mar 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-20T11:32:44.000000Z"} {"uuid": "409c2f40-38d0-4ec2-8d9c-fea56f464bf6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12016", "type": "seen", "source": "https://t.me/cvedetector/20704", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-12016 - CM Informatics CM News SQL Injection\", \n \"Content\": \"CVE ID : CVE-2024-12016 \nPublished : March 20, 2025, 8:15 a.m. | 1\u00a0hour, 35\u00a0minutes ago \nDescription : Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in CM Informatics CM News allows SQL Injection.This issue affects CM News: through 6.0. \n \n \n \n \n \nNOTE: The vendor was contacted and it was learned that the product is not supported. \nSeverity: 9.8 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"20 Mar 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-20T11:32:44.000000Z"} https://vulnerability.circl.lu/sighting/409c2f40-38d0-4ec2-8d9c-fea56f464bf6/export Thu, 20 Mar 2025 11:32:44 +0000 https://vulnerability.circl.lu/sighting/88f2b8d2-df03-49c2-86b6-037caeea6e52/export {"uuid": "88f2b8d2-df03-49c2-86b6-037caeea6e52", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12016", "type": "seen", "source": "https://bsky.app/profile/vulnalerts.bsky.social/post/3lktsgno5gq27", "content": "", "creation_timestamp": "2025-03-20T23:00:05.763350Z"} {"uuid": "88f2b8d2-df03-49c2-86b6-037caeea6e52", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12016", "type": "seen", "source": "https://bsky.app/profile/vulnalerts.bsky.social/post/3lktsgno5gq27", "content": "", "creation_timestamp": "2025-03-20T23:00:05.763350Z"} https://vulnerability.circl.lu/sighting/88f2b8d2-df03-49c2-86b6-037caeea6e52/export Thu, 20 Mar 2025 23:00:05 +0000 https://vulnerability.circl.lu/sighting/bc7e6447-6878-4b69-9142-e6471c8bbbc0/export {"uuid": "bc7e6447-6878-4b69-9142-e6471c8bbbc0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12016", "type": "seen", "source": "https://bsky.app/profile/vulnalerts.bsky.social/post/3lkv2o4srrk2q", "content": "", "creation_timestamp": "2025-03-21T11:00:06.466332Z"} {"uuid": "bc7e6447-6878-4b69-9142-e6471c8bbbc0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12016", "type": "seen", "source": "https://bsky.app/profile/vulnalerts.bsky.social/post/3lkv2o4srrk2q", "content": "", "creation_timestamp": "2025-03-21T11:00:06.466332Z"} https://vulnerability.circl.lu/sighting/bc7e6447-6878-4b69-9142-e6471c8bbbc0/export Fri, 21 Mar 2025 11:00:06 +0000 https://vulnerability.circl.lu/sighting/c9b120ed-5f5c-440d-aa26-66c9bbc1d28b/export {"uuid": "c9b120ed-5f5c-440d-aa26-66c9bbc1d28b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-1201", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/18334", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-1201\n\ud83d\udd25 CVSS Score: 7.8 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: Search path or unquoted item vulnerability in HDD Health affecting versions 4.2.0.112 and earlier. This vulnerability could allow a local attacker to store a malicious executable file within the unquoted search path, resulting in privilege escalation.\n\ud83d\udccf Published: 2024-02-02T12:00:51.824Z\n\ud83d\udccf Modified: 2025-06-13T19:01:22.377Z\n\ud83d\udd17 References:\n1. https://www.incibe.es/en/incibe-cert/notices/aviso/panterasoft-hdd-health-search-path-or-unquoted-item-vulnerability", "creation_timestamp": "2025-06-13T19:35:08.000000Z"} {"uuid": "c9b120ed-5f5c-440d-aa26-66c9bbc1d28b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-1201", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/18334", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-1201\n\ud83d\udd25 CVSS Score: 7.8 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: Search path or unquoted item vulnerability in HDD Health affecting versions 4.2.0.112 and earlier. This vulnerability could allow a local attacker to store a malicious executable file within the unquoted search path, resulting in privilege escalation.\n\ud83d\udccf Published: 2024-02-02T12:00:51.824Z\n\ud83d\udccf Modified: 2025-06-13T19:01:22.377Z\n\ud83d\udd17 References:\n1. https://www.incibe.es/en/incibe-cert/notices/aviso/panterasoft-hdd-health-search-path-or-unquoted-item-vulnerability", "creation_timestamp": "2025-06-13T19:35:08.000000Z"} https://vulnerability.circl.lu/sighting/c9b120ed-5f5c-440d-aa26-66c9bbc1d28b/export Fri, 13 Jun 2025 19:35:08 +0000