{"vulnerability": "cve-2024-20140", "sightings": [{"uuid": "f4b67604-3dfd-4630-af90-e9f4a0b5dcc3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-20140", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113779288490361023", "content": "", "creation_timestamp": "2025-01-06T03:29:23.441715Z"}, {"uuid": "39663f4c-935f-43fc-825a-dd6bfe4afc79", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-20140", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113779302282688630", "content": "", "creation_timestamp": "2025-01-06T03:32:53.821700Z"}, {"uuid": "5fde50b0-dd5b-4acc-9c40-1357ab39a55e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-20140", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lf2bkf2kqs2a", "content": "", "creation_timestamp": "2025-01-06T04:15:25.614852Z"}, {"uuid": "adbcc277-00c3-480f-9567-6f4796d4e5a8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-20140", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lf2d3ar3kt2b", "content": "", "creation_timestamp": "2025-01-06T04:42:45.344741Z"}, {"uuid": "7842c314-5662-4335-b7f3-f31e5e3c9242", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "af0120d0-3dac-4a6a-974b-a9f33d2a9846", "vulnerability": "CVE-2024-20140", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/a5165ebe-ef02-4a51-b2a6-2950b3c37690", "content": "", "creation_timestamp": "2025-01-07T07:03:20.063825Z"}, {"uuid": "3cc6c565-d66b-4c2d-a91e-0d2b97b571ed", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "af0120d0-3dac-4a6a-974b-a9f33d2a9846", "vulnerability": "CVE-2024-20140", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/a30ff14f-a073-49be-8c0c-6b6afd6a19f3", "content": "", "creation_timestamp": "2025-01-07T07:09:05.334532Z"}, {"uuid": "4b12248d-f15c-4de0-97fd-e9101969fd73", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-20140", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/653", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-20140\n\ud83d\udd39 Description: In power, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS09270402; Issue ID: MSV-2020.\n\ud83d\udccf Published: 2025-01-06T03:17:43.276Z\n\ud83d\udccf Modified: 2025-01-08T04:55:57.387Z\n\ud83d\udd17 References:\n1. https://corp.mediatek.com/product-security-bulletin/January-2025", "creation_timestamp": "2025-01-08T05:39:12.000000Z"}, {"uuid": "eda40c56-1340-4854-bf8b-1efe1d791782", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-20140", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/153", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: GHSA-pvvw-qrf9-xpmc\n\ud83d\udd17 Aliases: CVE-2024-20140\n\ud83d\udd39 Details: In power, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS09270402; Issue ID: MSV-2020.\n\ud83d\uddd3\ufe0f Modified: 2025-01-06T06:30:45Z\n\ud83d\uddd3\ufe0f Published: 2025-01-06T06:30:45Z\n\ud83c\udff7\ufe0f CWE IDs: CWE-787\n\ud83d\udd17 References:\n1. https://nvd.nist.gov/vuln/detail/CVE-2024-20140\n2. https://corp.mediatek.com/product-security-bulletin/January-2025", "creation_timestamp": "2025-01-06T06:40:22.000000Z"}, {"uuid": "6504c910-203a-49f3-b7ba-133725d3fe17", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-20140", "type": "seen", "source": "https://t.me/cvedetector/14329", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-20140 - Apache Power Missing Bounds Check Privilege Escalation Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-20140 \nPublished : Jan. 6, 2025, 4:15 a.m. | 44\u00a0minutes ago \nDescription : In power, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS09270402; Issue ID: MSV-2020. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"06 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-06T06:03:26.000000Z"}]}