{"vulnerability": "CVE-2024-49820", "sightings": [{"uuid": "9503d504-55be-4d32-b302-985e3c504fc5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49820", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113669408261272276", "content": "", "creation_timestamp": "2024-12-17T17:45:24.879023Z"}, {"uuid": "f46e1f98-3f7d-410a-b705-0202eda3dd61", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49820", "type": "seen", "source": "https://t.me/cvedetector/13119", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49820 - IBM Security Guardium Key Lifecycle Manager Insecure HSTS Disablement\", \n  \"Content\": \"CVE ID : CVE-2024-49820 \nPublished : Dec. 17, 2024, 6:15 p.m. | 43\u00a0minutes ago \nDescription : IBM Security Guardium Key Lifecycle Manager 4.1, 4.1.1, 4.2.0, and 4.2.1\u00a0could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using man in the middle techniques. \nSeverity: 3.7 | LOW \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-17T20:07:41.000000Z"}]}