{"vulnerability": "CVE-2024-3974", "sightings": [{"uuid": "6014d500-069f-4de2-a8a3-5e58bb67163b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39744", "type": "seen", "source": "https://t.me/cvedetector/3911", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-39744 - IBM Sterling Connect:Direct Web Services Cross-Site Request Forgery\", \n  \"Content\": \"CVE ID : CVE-2024-39744 \nPublished : Aug. 22, 2024, 11:15 a.m. | 44\u00a0minutes ago \nDescription : IBM Sterling Connect:Direct Web Services 6.0, 6.1, 6.2, and 6.3 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-22T14:21:46.000000Z"}, {"uuid": "f4a97bac-0de7-4699-a341-bb3e3eed2b2a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39746", "type": "seen", "source": "https://t.me/cvedetector/3910", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-39746 - IBM Sterling Connect:Direct Web Services Information Disclosure\", \n  \"Content\": \"CVE ID : CVE-2024-39746 \nPublished : Aug. 22, 2024, 11:15 a.m. | 44\u00a0minutes ago \nDescription : IBM Sterling Connect:Direct Web Services 6.0, 6.1, 6.2, and 6.3 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using man in the middle techniques. \nSeverity: 5.9 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-22T14:21:45.000000Z"}, {"uuid": "36274e9d-b08e-478d-b08e-520c906ceac1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39740", "type": "seen", "source": "https://t.me/cvedetector/834", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-39740 - IBM Datacap Navigator 9.1.5, 9.1.6, 9.1.7, 9.1.8,\", \n  \"Content\": \"CVE ID : CVE-2024-39740 \nPublished : July 15, 2024, 3:15 a.m. | 34\u00a0minutes ago \nDescription : IBM Datacap Navigator 9.1.5, 9.1.6, 9.1.7, 9.1.8, and 9.1.9 displays version information in HTTP requests that could allow an attacker to gather information for future attacks against the system.  IBM X-Force ID:  296009. \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"15 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-15T05:58:18.000000Z"}, {"uuid": "169e3219-87df-45c1-92a6-3cfb9adaecb2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39745", "type": "seen", "source": "https://t.me/cvedetector/3912", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-39745 - IBM Sterling Connect:Direct Web Services Cryptographic Weakness\", \n  \"Content\": \"CVE ID : CVE-2024-39745 \nPublished : Aug. 22, 2024, 11:15 a.m. | 44\u00a0minutes ago \nDescription : IBM Sterling Connect:Direct Web Services 6.0, 6.1, 6.2, and 6.3 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. \nSeverity: 5.9 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-22T14:21:47.000000Z"}, {"uuid": "33efc345-3885-43fb-8ebf-7e2148b8840c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39747", "type": "seen", "source": "https://t.me/cvedetector/4561", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-39747 - IBM Sterling Connect:Direct Web Services Authentication Bypass\", \n  \"Content\": \"CVE ID : CVE-2024-39747 \nPublished : Aug. 31, 2024, 2:15 a.m. | 43\u00a0minutes ago \nDescription : IBM Sterling Connect:Direct Web Services 6.0, 6.1, 6.2, and 6.3 uses default credentials for potentially critical functionality. \nSeverity: 8.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"31 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-31T05:01:52.000000Z"}, {"uuid": "582eedc7-a6e0-47b4-a576-9ab478f99506", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39741", "type": "seen", "source": "https://t.me/cvedetector/835", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-39741 - IBM Datacap Navigator 9.1.5, 9.1.6, 9.1.7, 9.1.8,\", \n  \"Content\": \"CVE ID : CVE-2024-39741 \nPublished : July 15, 2024, 3:15 a.m. | 34\u00a0minutes ago \nDescription : IBM Datacap Navigator 9.1.5, 9.1.6, 9.1.7, 9.1.8, and 9.1.9 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing \"dot dot\" sequences (/../) to view arbitrary files on the system.  IBM X-Force ID:  296010. \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"15 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-15T05:58:18.000000Z"}, {"uuid": "e44fd9be-285f-415b-9b9b-483876bbf01d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39743", "type": "seen", "source": "https://t.me/cvedetector/181", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-39743 - IBM MQ Operator 3.2.2 and IBM MQ Operator 2.0.24 c\", \n  \"Content\": \"CVE ID : CVE-2024-39743 \nPublished : July 8, 2024, 2:15 p.m. | 18\u00a0minutes ago \nDescription : IBM MQ Operator 3.2.2 and IBM MQ Operator 2.0.24 could allow a user to cause a denial of service under certain configurations due to a partial string comparison vulnerability.  IBM X-Force ID:  297172. \nSeverity: 5.9 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"08 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-08T16:35:04.000000Z"}, {"uuid": "174f7662-c928-431a-ad50-fc49dcb5d453", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39742", "type": "seen", "source": "https://t.me/cvedetector/182", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-39742 - IBM MQ Operator 3.2.2 and IBM MQ Operator 2.0.24 c\", \n  \"Content\": \"CVE ID : CVE-2024-39742 \nPublished : July 8, 2024, 2:15 p.m. | 18\u00a0minutes ago \nDescription : IBM MQ Operator 3.2.2 and IBM MQ Operator 2.0.24 could allow a user to bypass authentication under certain configurations due to a partial string comparison vulnerability.  IBM X-Force ID:  297169. \nSeverity: 8.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"08 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-08T16:35:04.000000Z"}]}