{"vulnerability": "CVE-2024-48890", "sightings": [{"uuid": "b6db19fd-33b7-45bb-a055-48b7b1daa9af", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-48890", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfpgwyuidj2r", "content": "", "creation_timestamp": "2025-01-14T14:17:52.189761Z"}, {"uuid": "5967ed71-3e0d-46f9-8828-1e90372db7a3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-48890", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113827650404483352", "content": "", "creation_timestamp": "2025-01-14T16:28:27.482103Z"}, {"uuid": "0157695c-a1ca-4ed2-bbd6-c133d3ba7e6f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-48890", "type": "seen", "source": "Telegram/iOL0w_xhGiQpN9Umu6rSOXS7BqlaQewze_NhaWr2_uwA5HJ9", "content": "", "creation_timestamp": "2025-02-06T02:40:20.000000Z"}, {"uuid": "462a52a6-c434-4d79-aa6f-fd0d8ff85537", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-48890", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/1770", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-48890\n\ud83d\udd39 Description: An improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerability [CWE-78] in FortiSOAR IMAP connector version 3.5.7 and below may allow an authenticated attacker to execute unauthorized code or commands via a specifically crafted playbook\n\ud83d\udccf Published: 2025-01-14T14:09:50.944Z\n\ud83d\udccf Modified: 2025-01-15T14:55:00.652Z\n\ud83d\udd17 References:\n1. https://fortiguard.fortinet.com/psirt/FG-IR-24-415", "creation_timestamp": "2025-01-15T15:10:50.000000Z"}, {"uuid": "8b26a089-1acf-4794-a35f-b43ecdc8df5a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-48890", "type": "seen", "source": "https://t.me/cvedetector/15255", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-48890 - FortiSOAR OS Command Injection\", \n  \"Content\": \"CVE ID : CVE-2024-48890 \nPublished : Jan. 14, 2025, 2:15 p.m. | 21\u00a0minutes ago \nDescription : An improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerability [CWE-78] in FortiSOAR IMAP connector version 3.5.7 and below may allow an authenticated attacker to execute unauthorized code or commands via a specifically crafted playbook \nSeverity: 6.6 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"14 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-14T15:39:39.000000Z"}]}