{"vulnerability": "cve-2024-2234", "sightings": [{"uuid": "0d0f0405-3d1e-4fa7-8669-a76212bc98e6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-22347", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lg6wzffje22p", "content": "", "creation_timestamp": "2025-01-20T18:15:28.479362Z"}, {"uuid": "ed7df0d1-0e0b-4427-96d9-9dd7674fd899", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-22348", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lg6wzhrzzg2e", "content": "", "creation_timestamp": "2025-01-20T18:15:31.505263Z"}, {"uuid": "c29a09a5-19a4-49c4-8e3a-f4bc692f642b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-22349", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lg6wzk6pk327", "content": "", "creation_timestamp": "2025-01-20T18:15:33.824224Z"}, {"uuid": "e607c22f-1a5f-4410-9930-6579f85c70b2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-22349", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lg72cy7g4f2w", "content": "", "creation_timestamp": "2025-01-20T19:14:31.565268Z"}, {"uuid": "e0658c6b-9428-4929-9a71-b0a1c13062ea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-22348", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lg72cyzufw2y", "content": "", "creation_timestamp": "2025-01-20T19:14:33.645606Z"}, {"uuid": "089bbe37-bbd8-460d-9af9-c0c35c2c1620", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-22347", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lg72cza63f2e", "content": "", "creation_timestamp": "2025-01-20T19:14:34.371706Z"}, {"uuid": "35bc376f-21f9-4a8d-a750-e243e921c90f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-22341", "type": "seen", "source": "https://t.me/cvedetector/18701", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-22341 - IBM Watson Query on Cloud Pak for Data Privilege Management Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-22341 \nPublished : Feb. 22, 2025, 1:15 a.m. | 1\u00a0hour, 39\u00a0minutes ago \nDescription : IBM Watson Query on Cloud Pak for Data 4.0.0 through 4.0.9, 4.5.0 through 4.5.3, 4.6.0 through 4.6.6, 4.7.0 through 4.7.4, and 4.8.0 through 4.8.7 could allow unauthorized data access from a remote data source object due to improper privilege management. \nSeverity: 5.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-22T04:08:04.000000Z"}, {"uuid": "730d181f-bd3d-4a4c-833e-5b49f0c9a3ec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-22340", "type": "seen", "source": "https://t.me/cvedetector/20025", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-22340 - IBM Common Cryptographic Architecture Timing Attack\", \n  \"Content\": \"CVE ID : CVE-2024-22340 \nPublished : March 11, 2025, 1:15 a.m. | 24\u00a0minutes ago \nDescription : IBM Common Cryptographic Architecture 7.0.0 through 7.5.51   \n  \n  \n  \ncould allow a remote attacker to obtain sensitive information during the creation of ECDSA signatures to perform a timing-based attack. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-11T03:24:48.000000Z"}, {"uuid": "382310e5-a79e-4899-b817-2addcbad05ee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-22349", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/2370", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-22349\n\ud83d\udd39 Description: IBM DevOps Velocity 5.0.0 and IBM UrbanCode Velocity 4.0.0 through 4.0. 25 allows web pages to be stored locally which can be read by another user on the system.\n\ud83d\udccf Published: 2025-01-20T17:42:37.885Z\n\ud83d\udccf Modified: 2025-01-20T17:42:37.885Z\n\ud83d\udd17 References:\n1. https://www.ibm.com/support/pages/node/7172750", "creation_timestamp": "2025-01-20T18:01:04.000000Z"}, {"uuid": "2be3a895-08a1-4284-90d3-8d9a8af46d19", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-22347", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/2371", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-22347\n\ud83d\udd39 Description: IBM DevOps Velocity 5.0.0 and IBM UrbanCode Velocity 4.0.0 through 4.0. 25 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.\n\ud83d\udccf Published: 2025-01-20T17:41:43.506Z\n\ud83d\udccf Modified: 2025-01-20T17:41:43.506Z\n\ud83d\udd17 References:\n1. https://www.ibm.com/support/pages/node/7172750", "creation_timestamp": "2025-01-20T18:01:04.000000Z"}, {"uuid": "c9371922-9028-4578-a36e-8c85b39debb6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-22341", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/5001", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-22341\n\ud83d\udd25 CVSS Score: 5.3 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N)\n\ud83d\udd39 Description: IBM Watson Query on Cloud Pak for Data 4.0.0 through 4.0.9, 4.5.0 through 4.5.3, 4.6.0 through 4.6.6, 4.7.0 through 4.7.4, and 4.8.0 through 4.8.7 could allow unauthorized data access from a remote data source object due to improper privilege management.\n\ud83d\udccf Published: 2025-02-22T00:38:24.208Z\n\ud83d\udccf Modified: 2025-02-22T00:38:24.208Z\n\ud83d\udd17 References:\n1. https://www.ibm.com/support/pages/node/7183851", "creation_timestamp": "2025-02-22T01:19:22.000000Z"}, {"uuid": "726ee765-ff5e-4d00-8598-72fbe18e0056", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-22348", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/2372", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-22348\n\ud83d\udd39 Description: IBM DevOps Velocity 5.0.0 and IBM UrbanCode Velocity 4.0.0 through 4.0. 25 uses Cross-Origin Resource Sharing (CORS) which could allow an attacker to carry out privileged actions and retrieve sensitive information as the domain name is not being limited to only trusted domains.\n\ud83d\udccf Published: 2025-01-20T17:40:31.965Z\n\ud83d\udccf Modified: 2025-01-20T17:40:31.965Z\n\ud83d\udd17 References:\n1. https://www.ibm.com/support/pages/node/7172750", "creation_timestamp": "2025-01-20T18:01:05.000000Z"}, {"uuid": "25562d73-4cd6-4501-8432-7d1225bfd19f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-22340", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/7077", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-22340\n\ud83d\udd25 CVSS Score: 6.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N)\n\ud83d\udd39 Description: IBM Common Cryptographic Architecture 7.0.0 through 7.5.51 \n\n\n\ncould allow a remote attacker to obtain sensitive information during the creation of ECDSA signatures to perform a timing-based attack.\n\ud83d\udccf Published: 2025-03-11T00:50:55.148Z\n\ud83d\udccf Modified: 2025-03-11T00:50:55.148Z\n\ud83d\udd17 References:\n1. https://www.ibm.com/support/pages/node/7185282", "creation_timestamp": "2025-03-11T01:41:13.000000Z"}, {"uuid": "5f17a0ba-8d0a-4f9a-ba49-336b8b600a04", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-22340", "type": "seen", "source": "Telegram/_bRMYldJCGIXUSb3ge3BtZK4Cut9JDSldXAwEW6FOUuyLP55", "content": "", "creation_timestamp": "2025-03-11T04:41:14.000000Z"}, {"uuid": "b8cd68d2-22ff-402b-8096-c175064612f4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-22344", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/9448", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-22344\n\ud83d\udd25 CVSS Score: 6.1 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N)\n\ud83d\udd39 Description: IBM TXSeries for Multiplatforms 8.2 is vulnerable to HTML injection. A remote attacker could inject malicious HTML code, which when viewed, would be executed in the victim's Web browser within the security context of the hosting site.  IBM X-Force ID:  280191.\n\ud83d\udccf Published: 2024-05-10T17:41:53.307Z\n\ud83d\udccf Modified: 2025-03-28T20:01:07.010Z\n\ud83d\udd17 References:\n1. https://www.ibm.com/support/pages/node/7150667\n2. https://exchange.xforce.ibmcloud.com/vulnerabilities/280191", "creation_timestamp": "2025-03-28T20:28:47.000000Z"}, {"uuid": "2f043214-5cc9-4009-af23-0595d113ab07", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-22347", "type": "seen", "source": "https://t.me/cvedetector/15902", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-22347 - IBM DevOps Velocity Weak Cryptographic Algorithms\", \n  \"Content\": \"CVE ID : CVE-2024-22347 \nPublished : Jan. 20, 2025, 6:15 p.m. | 41\u00a0minutes ago \nDescription : IBM DevOps Velocity 5.0.0 and IBM UrbanCode Velocity 4.0.0 through 4.0. 25 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. \nSeverity: 5.9 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"20 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-20T20:03:42.000000Z"}, {"uuid": "b932b736-e9e5-4be8-975b-6ebc62f7d728", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-22349", "type": "seen", "source": "https://t.me/cvedetector/15901", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-22349 - IBM DevOps Velocity/IBM UrbanCode Velocity Local File Inclusion Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-22349 \nPublished : Jan. 20, 2025, 6:15 p.m. | 41\u00a0minutes ago \nDescription : IBM DevOps Velocity 5.0.0 and IBM UrbanCode Velocity 4.0.0 through 4.0. 25 allows web pages to be stored locally which can be read by another user on the system. \nSeverity: 4.0 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"20 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-20T20:03:41.000000Z"}, {"uuid": "82244173-a813-43be-8b19-f6b783e72bdf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-22348", "type": "seen", "source": "https://t.me/cvedetector/15903", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-22348 - IBM DevOps Velocity Cross-Origin Resource Sharing (CORS) Privilege Escalation\", \n  \"Content\": \"CVE ID : CVE-2024-22348 \nPublished : Jan. 20, 2025, 6:15 p.m. | 41\u00a0minutes ago \nDescription : IBM DevOps Velocity 5.0.0 and IBM UrbanCode Velocity 4.0.0 through 4.0. 25 uses Cross-Origin Resource Sharing (CORS) which could allow an attacker to carry out privileged actions and retrieve sensitive information as the domain name is not being limited to only trusted domains. \nSeverity: 5.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"20 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-20T20:03:43.000000Z"}, {"uuid": "91c7cb0f-97ac-4df2-a8bf-819add63ad38", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-22346", "type": "seen", "source": "https://t.me/ctinow/208100", "content": "https://ift.tt/5HoJnWA\nCVE-2024-22346", "creation_timestamp": "2024-03-14T20:26:57.000000Z"}, {"uuid": "27a21d56-a86e-4116-b287-5e716f5a13c3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-22346", "type": "seen", "source": "https://t.me/ctinow/208114", "content": "https://ift.tt/5HoJnWA\nCVE-2024-22346", "creation_timestamp": "2024-03-14T20:31:58.000000Z"}]}