{"vulnerability": "CVE-2024-21305", "sightings": [{"uuid": "504fce56-0a49-4eb2-b657-a605ea6aa4fe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21305", "type": "published-proof-of-concept", "source": "https://t.me/HackerArsenal/630", "content": "#exploit\n1. CVE-2024-46538:\nPfSense Stored XSS lead to RCE\nhttps://github.com/EQSTLab/CVE-2024-46538\n\n2. CVE-2024-8353:\nGiveWP PHP Object Injection\nhttps://github.com/EQSTLab/CVE-2024-8353\n\n3. CVE-2024-21305:\nHypervisor-Protected Code Integrity (HVCI) Security Feature Bypass Vulnerability\nhttps://github.com/tandasat/CVE-2024-21305", "creation_timestamp": "2024-10-25T04:45:13.000000Z"}, {"uuid": "8cab7e41-d2c0-404f-bf36-fea12cc45d15", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21305", "type": "seen", "source": "https://t.me/arpsyndicate/2954", "content": "#ExploitObserverAlert\n\nCVE-2024-21305\n\nDESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to CVE-2024-21305. Hypervisor-Protected Code Integrity (HVCI) Security Feature Bypass Vulnerability\n\nFIRST-EPSS: 0.000480000\nNVD-IS: 3.6\nNVD-ES: 0.8", "creation_timestamp": "2024-01-19T19:41:04.000000Z"}, {"uuid": "1d516ccb-10e8-486c-a3e0-e0d42ce30269", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21305", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/3827", "content": "Exploit\n\n1. CVE-2024-46538:\nPfSense Stored XSS lead to RCE\n\nhttps://github.com/EQSTLab/CVE-2024-46538\n\n2. CVE-2024-8353:\nGiveWP PHP Object Injection\n\nhttps://github.com/EQSTLab/CVE-2024-8353\n\n3. CVE-2024-21305:\nHypervisor-Protected Code Integrity (HVCI) Security Feature Bypass Vulnerability\n\nhttps://github.com/tandasat/CVE-2024-21305\n\n#CyberDilara", "creation_timestamp": "2024-10-29T04:16:04.000000Z"}, {"uuid": "c87e9325-0afe-48b5-b057-a53526875b9d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21305", "type": "published-proof-of-concept", "source": "https://t.me/CyberDilara/1119", "content": "Exploit\n\n1. CVE-2024-46538:\nPfSense Stored XSS lead to RCE\n\nhttps://github.com/EQSTLab/CVE-2024-46538\n\n2. CVE-2024-8353:\nGiveWP PHP Object Injection\n\nhttps://github.com/EQSTLab/CVE-2024-8353\n\n3. CVE-2024-21305:\nHypervisor-Protected Code Integrity (HVCI) Security Feature Bypass Vulnerability\n\nhttps://github.com/tandasat/CVE-2024-21305\n\n#CyberDilara", "creation_timestamp": "2024-10-28T04:16:04.000000Z"}, {"uuid": "04044c43-66a0-48bc-9793-99d8eb487899", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21305", "type": "published-proof-of-concept", "source": "https://t.me/GrayHatsHack/8928", "content": "Exploit\n\n1. CVE-2024-46538:\nPfSense Stored XSS lead to RCE\n\nhttps://github.com/EQSTLab/CVE-2024-46538\n\n2. CVE-2024-8353:\nGiveWP PHP Object Injection\n\nhttps://github.com/EQSTLab/CVE-2024-8353\n\n3. CVE-2024-21305:\nHypervisor-Protected Code Integrity (HVCI) Security Feature Bypass Vulnerability\n\nhttps://github.com/tandasat/CVE-2024-21305\n\n#CyberDilara", "creation_timestamp": "2024-10-28T04:16:24.000000Z"}, {"uuid": "ea07052f-9466-40bc-aae2-9da13122aa76", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21305", "type": "published-proof-of-concept", "source": "https://t.me/InfoSecInsider/24219", "content": "Exploit\n\n1. CVE-2024-46538:\nPfSense Stored XSS lead to RCE\n\nhttps://github.com/EQSTLab/CVE-2024-46538\n\n2. CVE-2024-8353:\nGiveWP PHP Object Injection\n\nhttps://github.com/EQSTLab/CVE-2024-8353\n\n3. CVE-2024-21305:\nHypervisor-Protected Code Integrity (HVCI) Security Feature Bypass Vulnerability\n\nhttps://github.com/tandasat/CVE-2024-21305\n\n#CyberDilara", "creation_timestamp": "2024-10-29T12:21:04.000000Z"}, {"uuid": "e9f8971a-20a6-4ea0-958d-d0545c8408ca", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21305", "type": "published-proof-of-concept", "source": "https://t.me/CNArsenal/1860", "content": "https://tandasat.github.io/blog/2024/01/15/CVE-2024-21305\nCVE-2024-21305\n\n#\u5206\u6790", "creation_timestamp": "2024-01-18T04:20:15.000000Z"}, {"uuid": "1ec1cbcd-ae05-4950-a885-11b588a9005f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21305", "type": "published-proof-of-concept", "source": "https://t.me/InfoSecInsider/587", "content": "Exploit\n\n1. CVE-2024-46538:\nPfSense Stored XSS lead to RCE\n\nhttps://github.com/EQSTLab/CVE-2024-46538\n\n2. CVE-2024-8353:\nGiveWP PHP Object Injection\n\nhttps://github.com/EQSTLab/CVE-2024-8353\n\n3. CVE-2024-21305:\nHypervisor-Protected Code Integrity (HVCI) Security Feature Bypass Vulnerability\n\nhttps://github.com/tandasat/CVE-2024-21305\n\n#CyberDilara", "creation_timestamp": "2024-10-29T12:21:04.000000Z"}, {"uuid": "8d6712d7-17f1-4ff9-ba4d-d0f21b0559a1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21305", "type": "published-proof-of-concept", "source": "https://t.me/GrayHatsHack/7554", "content": "Exploit\n\n1. CVE-2024-46538:\nPfSense Stored XSS lead to RCE\n\nhttps://github.com/EQSTLab/CVE-2024-46538\n\n2. CVE-2024-8353:\nGiveWP PHP Object Injection\n\nhttps://github.com/EQSTLab/CVE-2024-8353\n\n3. CVE-2024-21305:\nHypervisor-Protected Code Integrity (HVCI) Security Feature Bypass Vulnerability\n\nhttps://github.com/tandasat/CVE-2024-21305\n\n#CyberDilara", "creation_timestamp": "2024-10-28T04:16:24.000000Z"}, {"uuid": "255a4fcc-62ef-46cf-b7cb-de582458aa48", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21305", "type": "seen", "source": "https://t.me/ctinow/165332", "content": "https://ift.tt/qnBDkV1\nCVE-2024-21305 | Microsoft Windows up to Server 2022 23H2 Hypervisor-Protected Code Integrity unknown vulnerability", "creation_timestamp": "2024-01-09T20:16:40.000000Z"}, {"uuid": "85e1ea22-5836-4f90-8e20-957b342196cb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21305", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/11333", "content": "#exploit\n1. CVE-2024-46538:\nPfSense Stored XSS lead to RCE\nhttps://github.com/EQSTLab/CVE-2024-46538\n\n2. CVE-2024-8353:\nGiveWP PHP Object Injection\nhttps://github.com/EQSTLab/CVE-2024-8353\n\n3. CVE-2024-21305:\nHypervisor-Protected Code Integrity (HVCI) Security Feature Bypass Vulnerability\nhttps://github.com/tandasat/CVE-2024-21305", "creation_timestamp": "2024-10-24T23:42:45.000000Z"}]}