{"vulnerability": "CVE-2024-4063", "sightings": [{"uuid": "75ed3595-e3e1-475e-888d-a91a645bc082", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40638", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113488323439962524", "content": "", "creation_timestamp": "2024-11-15T18:13:08.944478Z"}, {"uuid": "fd448152-c490-4989-8f68-a7de95a2b963", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40635", "type": "seen", "source": "MISP/02fb130c-7874-4693-9b66-81ed91a2e996", "content": "", "creation_timestamp": "2025-08-12T13:33:28.000000Z"}, {"uuid": "0ed8a57b-fd75-4ffd-b4c4-fd90d2f9fcce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40635", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/14813", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-40635\n\ud83d\udd25 CVSS Score: 4.6 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:N)\n\ud83d\udd39 Description: containerd is an open-source container runtime. A bug was found in containerd prior to versions 1.6.38, 1.7.27, and 2.0.4 where containers launched with a User set as a `UID:GID` larger than the maximum 32-bit signed integer can cause an overflow condition where the container ultimately runs as root (UID 0). This could cause unexpected behavior for environments that require containers to run as a non-root user. This bug has been fixed in containerd 1.6.38, 1.7.27, and 2.04. As a workaround, ensure that only trusted images are used and that only trusted users have permissions to import images.\n\ud83d\udccf Published: 2025-03-17T21:32:37.894Z\n\ud83d\udccf Modified: 2025-05-04T22:02:39.748Z\n\ud83d\udd17 References:\n1. https://github.com/containerd/containerd/security/advisories/GHSA-265r-hfxg-fhmg\n2. https://github.com/containerd/containerd/commit/05044ec0a9a75232cad458027ca83437aae3f4da\n3. https://github.com/containerd/containerd/commit/1a43cb6a1035441f9aca8f5666a9b3ef9e70ab20\n4. https://github.com/containerd/containerd/commit/cf158e884cfe4812a6c371b59e4ea9bc4c46e51a", "creation_timestamp": "2025-05-04T22:18:50.000000Z"}, {"uuid": "05d07bc0-801b-4d48-8f32-c9b2f017c887", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40635", "type": "seen", "source": "MISP/02fb130c-7874-4693-9b66-81ed91a2e996", "content": "", "creation_timestamp": "2025-08-21T03:19:30.000000Z"}, {"uuid": "12dd3033-c28e-47d5-b9ab-ee73bdfe21b9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40635", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/7865", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-40635\n\ud83d\udd25 CVSS Score: 4.6 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:N)\n\ud83d\udd39 Description: containerd is an open-source container runtime. A bug was found in containerd prior to versions 1.6.38, 1.7.27, and 2.0.4 where containers launched with a User set as a `UID:GID` larger than the maximum 32-bit signed integer can cause an overflow condition where the container ultimately runs as root (UID 0). This could cause unexpected behavior for environments that require containers to run as a non-root user. This bug has been fixed in containerd 1.6.38, 1.7.27, and 2.04. As a workaround, ensure that only trusted images are used and that only trusted users have permissions to import images.\n\ud83d\udccf Published: 2025-03-17T21:32:37.894Z\n\ud83d\udccf Modified: 2025-03-17T21:32:37.894Z\n\ud83d\udd17 References:\n1. https://github.com/containerd/containerd/security/advisories/GHSA-265r-hfxg-fhmg\n2. https://github.com/containerd/containerd/commit/05044ec0a9a75232cad458027ca83437aae3f4da\n3. https://github.com/containerd/containerd/commit/1a43cb6a1035441f9aca8f5666a9b3ef9e70ab20\n4. https://github.com/containerd/containerd/commit/cf158e884cfe4812a6c371b59e4ea9bc4c46e51a", "creation_timestamp": "2025-03-17T21:47:32.000000Z"}, {"uuid": "d2d97a88-8bd3-4f2a-bcaf-5807d9e28205", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40639", "type": "seen", "source": "https://t.me/cvedetector/1113", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-40639 - Gotenberg Chromium Information Disclosure Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-40639 \nPublished : July 17, 2024, 6:15 p.m. | 25\u00a0minutes ago \nDescription : Gotenberg provides a developer-friendly API to interact with powerful tools like Chromium and LibreOffice for converting numerous document formats (HTML, Markdown, Word, Excel, etc.) into PDF files, and more! Prior to version 8.1.0, the default value for the flag `--chromium-deny-list` allowed to display some internal files from the Gotenberg container. Version 8.1.0 provides a new default value fixing the issue. Prior to version 8.1.0, Gotenberg uses the standard `regexp` Go library, which does not support negative lookahead. Therefore, the new default value for the `--chromium-deny-list` is not applicable. However, one could find an alternative using either or both `--chromium-deny-list` and `--chromium-allow-list` flags. Users are advised to upgrade. There are no known workarounds for this vulnerability. \nSeverity: 8.2 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-17T20:44:04.000000Z"}, {"uuid": "66f99f4b-db6b-4a6d-accd-1c894f9309b6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40638", "type": "seen", "source": "https://t.me/cvedetector/11148", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-40638 - GLPI SQL Injection Vulnerability Allows Account Takeover\", \n  \"Content\": \"CVE ID : CVE-2024-40638 \nPublished : Nov. 15, 2024, 6:15 p.m. | 42\u00a0minutes ago \nDescription : GLPI is a free asset and IT management software package. An authenticated user can exploit multiple SQL injection vulnerabilities. One of them can be used to alter another user account data and take control of it. Upgrade to 10.0.17. \nSeverity: 8.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"15 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-15T19:58:28.000000Z"}, {"uuid": "0301a504-fad1-4744-a0a5-78609023c1c8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40634", "type": "seen", "source": "https://t.me/cvedetector/1467", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-40634 - Argo CD JSON payload Denial of Service (DoS)\", \n  \"Content\": \"CVE ID : CVE-2024-40634 \nPublished : July 22, 2024, 6:15 p.m. | 40\u00a0minutes ago \nDescription : Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. This report details a security vulnerability in Argo CD, where an unauthenticated attacker can send a specially crafted large JSON payload to the /api/webhook endpoint, causing excessive memory allocation that leads to service disruption by triggering an Out Of Memory (OOM) kill. The issue poses a high risk to the availability of Argo CD deployments. This vulnerability is fixed in 2.11.6, 2.10.15, and 2.9.20. \nSeverity: 7.5 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-22T21:10:29.000000Z"}, {"uuid": "de4d1b3e-1072-4621-ae5a-c3ddd4130363", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40633", "type": "seen", "source": "https://t.me/cvedetector/1112", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-40633 - Sylius Exposed Order Tokens through Adjustment ID Enumeration\", \n  \"Content\": \"CVE ID : CVE-2024-40633 \nPublished : July 17, 2024, 6:15 p.m. | 25\u00a0minutes ago \nDescription : Sylius is an Open Source eCommerce Framework on Symfony. A security vulnerability was discovered in the `/api/v2/shop/adjustments/{id}` endpoint, which retrieves order adjustments based on incremental integer IDs. The vulnerability allows an attacker to enumerate valid adjustment IDs and retrieve order tokens. Using these tokens, an attacker can access guest customer order details - sensitive guest customer information.  The issue is fixed in versions: 1.12.19, 1.13.4 and above. The `/api/v2/shop/adjustments/{id}` will always return `404` status. Users are advised to upgrade. Users unable to upgrade may alter their config to mitigate this issue. Please see the linked GHSA for details. \nSeverity: 5.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-17T20:44:03.000000Z"}, {"uuid": "8165ea67-2257-405e-bc92-6ad325c8e494", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40632", "type": "seen", "source": "https://t.me/cvedetector/909", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-40632 - Linkerd SSRF Denial-of-Service Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-40632 \nPublished : July 15, 2024, 10:15 p.m. | 42\u00a0minutes ago \nDescription : Linkerd is an open source, ultralight, security-first service mesh for Kubernetes. In affected versions when the application being run by linkerd is susceptible to SSRF, an attacker could potentially trigger a denial-of-service (DoS) attack by making requests to localhost:4191/shutdown. Linkerd could introduce an optional environment variable to control a token that must be passed as a header. Linkerd should reject shutdown requests that do not include this header. This issue has been addressed in release version edge-24.6.2 and all users are advised to upgrade. There are no known workarounds for this vulnerability. \nSeverity: 3.7 | LOW \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"16 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-16T01:13:05.000000Z"}, {"uuid": "454ac325-f88f-4ec3-83db-95a28826cf57", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40636", "type": "seen", "source": "https://t.me/cvedetector/1115", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-40636 - Steeltoe Eureka Basic Auth Log Leak Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-40636 \nPublished : July 17, 2024, 6:15 p.m. | 25\u00a0minutes ago \nDescription : Steeltoe is an open source project that provides a collection of libraries that helps users build production-grade cloud-native applications using externalized configuration, service discovery, distributed tracing, application management, and more. When utilizing multiple Eureka server service URLs with basic auth and encountering an issue with fetching the service registry, an error is logged with the Eureka server service URLs but only the first URL is masked. The code in question is  `_logger.LogError(e, \"FetchRegistry Failed for Eureka service urls: {EurekaServerServiceUrls}\", new Uri(ClientConfig.EurekaServerServiceUrls).ToMaskedString());` in the `DiscoveryClient.cs` file which may leak credentials into logs. This issue has been addressed in version 3.2.8 of the Steeltoe.Discovery.Eureka nuget package. \nSeverity: 5.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-17T20:44:06.000000Z"}, {"uuid": "d8560ccb-bb55-4927-ac85-8ff445dc63de", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40637", "type": "seen", "source": "https://t.me/cvedetector/1026", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-40637 - Apache dbt Package Overriding Arbitrary Code Execution Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-40637 \nPublished : July 16, 2024, 11:15 p.m. | 44\u00a0minutes ago \nDescription : dbt enables data analysts and engineers to transform their data using the same practices that software engineers use to build applications. When a user installs a package in dbt, it has the ability to override macros, materializations, and other core components of dbt. This is by design, as it allows packages to extend and customize dbt's functionality. However, this also means that a malicious package could potentially override these components with harmful code. This issue has been fixed in versions 1.8.0, 1.6.14 and 1.7.14. Users are advised to upgrade. There are no kn own workarounds for this vulnerability. Users updating to either 1.6.14 or 1.7.14 will need to set `flags.require_explicit_package_overrides_for_builtin_materializations: False` in their configuration in `dbt_project.yml`. \nSeverity: 4.2 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-17T02:19:51.000000Z"}, {"uuid": "8f9f0410-566c-41e9-bc86-ad73cfa0fad2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40631", "type": "seen", "source": "https://t.me/cvedetector/896", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-40631 - \"Plate Media XSS Injection\"\", \n  \"Content\": \"CVE ID : CVE-2024-40631 \nPublished : July 15, 2024, 7:15 p.m. | 34\u00a0minutes ago \nDescription : Plate media is an open source, rich-text editor for React. Editors that use `MediaEmbedElement` and pass custom `urlParsers` to the `useMediaState` hook may be vulnerable to XSS if a custom parser allows `javascript:`, `data:` or `vbscript:` URLs to be embedded. Editors that do not use `urlParsers` and consume the `url` property directly may also be vulnerable if the URL is not sanitised. The default parsers `parseTwitterUrl` and `parseVideoUrl` are not affected. `@udecode/plate-media` 36.0.10 resolves this issue by only allowing HTTP and HTTPS URLs during parsing. This affects only the `embed` property returned from `useMediaState`. In addition, the `url` property returned from `useMediaState` has been renamed to `unsafeUrl` to indicate that it has not been sanitised. The `url` property on `element` is also unsafe, but has not been renamed. If you're using either of these properties directly, you will still need to validate the URL yourself. Users are advised to upgrade. Users unable to upgrade should ensure that any custom `urlParsers` do not allow `javascript:`, `data:` or `vbscript:` URLs to be returned in the `url` property of their return values. If `url` is consumed directly, validate the URL protocol before passing it to the `iframe` element. \nSeverity: 8.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"15 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-15T21:52:10.000000Z"}, {"uuid": "e8ced603-4181-466e-9761-667356d77ced", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40635", "type": "published-proof-of-concept", "source": "Telegram/Z0ari8MHZAzBUd7K9yxhwtBySsURYEVG61pidF9swyP9zTE", "content": "", "creation_timestamp": "2025-05-01T13:00:06.000000Z"}, {"uuid": "93055415-2dfb-4f6d-8291-2c08e040dbb4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40630", "type": "seen", "source": "https://t.me/cvedetector/901", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-40630 - OpenImageIO Heif Input Information Disclosure Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-40630 \nPublished : July 15, 2024, 8:15 p.m. | 22\u00a0minutes ago \nDescription : OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation via a format-agnostic API with a feature set, scalability, and robustness needed for feature film production. In affected versions there is a bug in the heif input functionality of OpenImageIO. Specifically, in `HeifInput::seek_subimage()`.  In the worst case, this can lead to an information disclosure vulnerability, particularly for programs that directly use the `ImageInput` APIs. This bug has been addressed in commit `0a2dcb4c` which is included in the 2.5.13.1 release. Users are advised to upgrade. There are no known workarounds for this issue. \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"15 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-15T22:42:25.000000Z"}, {"uuid": "994a790b-4556-4695-a387-d8f0b31d7dd0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2024-40634", "type": "published-proof-of-concept", "source": "https://github.com/argoproj/argo-cd/security/advisories/GHSA-jmvp-698c-4x3w", "content": "", "creation_timestamp": "2024-07-22T15:41:48.000000Z"}, {"uuid": "be28ec11-54d2-4bfa-853a-406defe96c63", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2024-40636", "type": "published-proof-of-concept", "source": "https://github.com/SteeltoeOSS/security-advisories/security/advisories/GHSA-vmcp-66r5-3pcp", "content": "", "creation_timestamp": "2024-07-17T13:44:40.000000Z"}]}