{"vulnerability": "cve-2024-2887", "sightings": [{"uuid": "cd4c27d3-1b7e-45fb-89ba-fd60ecf08106", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-2887", "type": "seen", "source": "https://bsky.app/profile/ssd-disclsoure.bsky.social/post/3lu2zquvvoc2j", "content": "", "creation_timestamp": "2025-07-16T08:46:29.892924Z"}, {"uuid": "0f80c08d-c4d8-480a-adaf-df21ddb0db16", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-2887", "type": "published-proof-of-concept", "source": "https://t.me/HackerArsenal/168", "content": "#exploit\n1. CVE-2024-6768:\nMicrosoft CLFS.sys DoS\nhttps://packetstormsecurity.com/files/180132/Microsoft-CLFS.sys-Denial-of-Service.html\n\n2. CVE-2024-2887:\nGoogle Chrome RCE\nhttps://ssd-disclosure.com/ssd-advisory-google-chrome-rce\n]-&gt; https://www.zerodayinitiative.com/blog/2024/5/2/cve-2024-2887-a-pwn2own-winning-bug-in-google-chrome", "creation_timestamp": "2024-08-15T08:28:39.000000Z"}, {"uuid": "001b49a8-492c-43df-91fc-01bafd405ae7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-2887", "type": "published-proof-of-concept", "source": "https://t.me/cKure/12839", "content": "\u27a1\ufe0f CVE-2024-2887: A Pwn2own Winning Bug In Google Chrome.\n\nhttps://www.zerodayinitiative.com/blog/2024/5/2/cve-2024-2887-a-pwn2own-winning-bug-in-google-chrome", "creation_timestamp": "2024-05-03T19:06:04.000000Z"}, {"uuid": "74413003-e8fc-4915-a3ed-97bb87a9677e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-2887", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/8362", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1aChrome-RCE-Poc\nURL\uff1ahttps://github.com/PumpkinBridge/Chrome-CVE-2024-2887-RCE-Poc\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-08-25T07:30:07.000000Z"}, {"uuid": "1091f727-c740-4e5e-8d14-f92c45edd569", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-2887", "type": "exploited", "source": "https://t.me/itsec_news/4434", "content": "\u200b\u26a1\ufe0fCVE-2024-4947: Google \u0443\u0441\u0442\u0440\u0430\u043d\u0438\u043b\u0430 \u0435\u0449\u0451 \u043e\u0434\u043d\u0443 0day \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 Chrome\n\n\ud83d\udcac \u041a\u043e\u043c\u043f\u0430\u043d\u0438\u044f Google \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0430 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0434\u043b\u044f \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f \u0434\u0435\u0432\u044f\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u0432 \u0431\u0440\u0430\u0443\u0437\u0435\u0440\u0435 Chrome, \u0432\u043a\u043b\u044e\u0447\u0430\u044f \u043d\u043e\u0432\u0443\u044e zero-day \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c, \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u043c\u0443\u044e \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c\u0438. \u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043f\u043e\u043b\u0443\u0447\u0438\u043b\u0430 \u0438\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440 CVE-2024-4947 \u0438 \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043e\u0448\u0438\u0431\u043a\u043e\u0439 Type Confusion \u0432 \u0434\u0432\u0438\u0436\u043a\u0435 JavaScript V8 \u0438 WebAssembly.\n\n\u041e\u0448\u0438\u0431\u043a\u0430 \u0431\u044b\u043b\u0430 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0430 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u044f\u043c\u0438 \u0438\u0437 \u041b\u0430\u0431\u043e\u0440\u0430\u0442\u043e\u0440\u0438\u0438 \u041a\u0430\u0441\u043f\u0435\u0440\u0441\u043a\u043e\u0433\u043e \u2014 \u0412\u0430\u0441\u0438\u043b\u0438\u0435\u043c \u0411\u0435\u0440\u0434\u043d\u0438\u043a\u043e\u0432\u044b\u043c \u0438 \u0411\u043e\u0440\u0438\u0441\u043e\u043c \u041b\u0430\u0440\u0438\u043d\u044b\u043c 13 \u043c\u0430\u044f 2024 \u0433\u043e\u0434\u0430. \u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 Type Confusion \u0432\u043e\u0437\u043d\u0438\u043a\u0430\u044e\u0442, \u043a\u043e\u0433\u0434\u0430 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u0430 \u043f\u044b\u0442\u0430\u0435\u0442\u0441\u044f \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u0440\u0435\u0441\u0443\u0440\u0441\u0443 \u0441 \u043d\u0435\u0441\u043e\u0432\u043c\u0435\u0441\u0442\u0438\u043c\u044b\u043c \u0442\u0438\u043f\u043e\u043c. \u042d\u0442\u043e \u043c\u043e\u0436\u0435\u0442 \u043f\u0440\u0438\u0432\u0435\u0441\u0442\u0438 \u043a \u0441\u0435\u0440\u044c\u0451\u0437\u043d\u044b\u043c \u043f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f\u043c, \u0442\u0430\u043a\u0438\u043c \u043a\u0430\u043a \u0432\u044b\u0445\u043e\u0434 \u0437\u0430 \u0433\u0440\u0430\u043d\u0438\u0446\u044b \u043c\u0430\u0441\u0441\u0438\u0432\u0430 \u043f\u0430\u043c\u044f\u0442\u0438 (Memory Out-of-bounds), \u0441\u0431\u043e\u0438 \u0432 \u0440\u0430\u0431\u043e\u0442\u0435 \u0438 \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u043e\u0433\u043e \u043a\u043e\u0434\u0430.\n\n\u042d\u0442\u043e\u0442 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442 \u0441\u0442\u0430\u043b \u0442\u0440\u0435\u0442\u044c\u0435\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c\u044e \u043d\u0443\u043b\u0435\u0432\u043e\u0433\u043e \u0434\u043d\u044f, \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u043d\u043e\u0439 Google \u0437\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u044e\u044e \u043d\u0435\u0434\u0435\u043b\u044e, \u043f\u043e\u0441\u043b\u0435 CVE-2024-4671 \u0438 CVE-2024-4761. \u0414\u043e\u043f\u043e\u043b\u043d\u0438\u0442\u0435\u043b\u044c\u043d\u044b\u0435 \u0434\u0435\u0442\u0430\u043b\u0438 \u043e\u0431 \u0430\u0442\u0430\u043a\u0430\u0445 \u043d\u0435 \u0440\u0430\u0437\u0433\u043b\u0430\u0448\u0430\u044e\u0442\u0441\u044f, \u0447\u0442\u043e\u0431\u044b \u043f\u0440\u0435\u0434\u043e\u0442\u0432\u0440\u0430\u0442\u0438\u0442\u044c \u0434\u0430\u043b\u044c\u043d\u0435\u0439\u0448\u0435\u0435 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438, \u043e\u0434\u043d\u0430\u043a\u043e \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u044f \u0437\u0430\u044f\u0432\u043b\u044f\u0435\u0442, \u0447\u0442\u043e \u0435\u0439 \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u043e \u043e \u0441\u0443\u0449\u0435\u0441\u0442\u0432\u043e\u0432\u0430\u043d\u0438\u0438 \u0438 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0438 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430 \u0434\u043b\u044f CVE-2024-4947 \u0432 \u0440\u0435\u0430\u043b\u044c\u043d\u044b\u0445 \u0430\u0442\u0430\u043a\u0430\u0445.\n\n\u0421 \u0443\u0447\u0451\u0442\u043e\u043c CVE-2024-4947, \u0441 \u043d\u0430\u0447\u0430\u043b\u0430 \u0433\u043e\u0434\u0430 Google \u0443\u0441\u0442\u0440\u0430\u043d\u0438\u043b\u0430 \u0441\u0435\u043c\u044c \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u043d\u0443\u043b\u0435\u0432\u043e\u0433\u043e \u0434\u043d\u044f \u0432 Chrome:\n\nCVE-2024-0519 \u2014 \u0432\u044b\u0445\u043e\u0434 \u0437\u0430 \u0433\u0440\u0430\u043d\u0438\u0446\u044b \u043c\u0430\u0441\u0441\u0438\u0432\u0430 \u043f\u0430\u043c\u044f\u0442\u0438 \u0432 V8;\nCVE-2024-2886 \u2014 Use-After-Free \u0432 WebCodecs;\nCVE-2024-2887 \u2014 \u043e\u0448\u0438\u0431\u043a\u0430 \u0442\u0438\u043f\u0430 confusion \u0432 WebAssembly;\nCVE-2024-3159 \u2014 \u0432\u044b\u0445\u043e\u0434 \u0437\u0430 \u0433\u0440\u0430\u043d\u0438\u0446\u044b \u043c\u0430\u0441\u0441\u0438\u0432\u0430 \u043f\u0430\u043c\u044f\u0442\u0438 \u0432 V8;\nCVE-2024-4671 \u2014 Use-After-Free \u0432 Visuals;\nCVE-2024-4761 \u2014 \u0437\u0430\u043f\u0438\u0441\u044c \u0437\u0430 \u0433\u0440\u0430\u043d\u0438\u0446\u0430\u043c\u0438 \u043c\u0430\u0441\u0441\u0438\u0432\u0430 \u0432 V8.\n\n\u041f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f\u043c Chrome \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u0435\u0442\u0441\u044f \u043e\u0431\u043d\u043e\u0432\u0438\u0442\u044c\u0441\u044f \u0434\u043e \u0432\u0435\u0440\u0441\u0438\u0438 125.0.6422.60/.61, \u0447\u0442\u043e\u0431\u044b \u0441\u043d\u0438\u0437\u0438\u0442\u044c \u043f\u043e\u0442\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u044b\u0435 \u0443\u0433\u0440\u043e\u0437\u044b. \u0412 \u0442\u043e \u0432\u0440\u0435\u043c\u044f, \u043a\u0430\u043a \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f\u043c \u0434\u0440\u0443\u0433\u0438\u0445 \u0431\u0440\u0430\u0443\u0437\u0435\u0440\u043e\u0432 \u043d\u0430 \u0431\u0430\u0437\u0435 Chromium, \u0442\u0430\u043a\u0438\u0445 \u043a\u0430\u043a Edge, Brave, Opera \u0438 Vivaldi \u2014 \u0441\u0442\u043e\u0438\u0442 \u043f\u0440\u0438\u043c\u0435\u043d\u0438\u0442\u044c \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0441\u0440\u0430\u0437\u0443, \u043a\u0430\u043a \u0442\u043e\u043b\u044c\u043a\u043e \u043e\u043d\u0438 \u0441\u0442\u0430\u043d\u0443\u0442 \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u044b.\n\n\ud83d\udd14 ITsec NEWS", "creation_timestamp": "2024-05-16T15:41:15.000000Z"}, {"uuid": "71cd9434-a047-45a8-ba95-c85d46d1c1ab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-2887", "type": "published-proof-of-concept", "source": "https://t.me/true_secator/5578", "content": "\u0412\u0441\u043b\u0435\u0434 \u0437\u0430 Mozilla \u043f\u0440\u0435\u043f\u0430\u0440\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0435 \u043d\u0430 Pwn2Own 2024 \u0432 \u0412\u0430\u043d\u043a\u0443\u0432\u0435\u0440\u0435 \u0434\u0432\u0435 0-day \u0438\u0441\u043f\u0440\u0430\u0432\u0438\u043b\u0430 Google \u0432 \u0441\u0432\u043e\u0435\u043c Chrome.\n\n\u0412 \u043e\u0431\u0449\u0435\u0439 \u0441\u043b\u043e\u0436\u043d\u043e\u0441\u0442\u0438 \u0432 \u0440\u0430\u043c\u043a\u0430\u0445 \u0432\u044b\u043f\u0443\u0449\u0435\u043d\u043d\u043e\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u043f\u043e\u0441\u0442\u0430\u0432\u0449\u0438\u043a \u0437\u0430\u043a\u0440\u044b\u043b \u0441\u0435\u043c\u044c \u043f\u0440\u043e\u0431\u043b\u0435\u043c \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438.\n\n\u041f\u0435\u0440\u0432\u0430\u044f 0-day \u043e\u0442\u0441\u043b\u0435\u0436\u0438\u0432\u0430\u0435\u0442\u0441\u044f \u043a\u0430\u043a CVE-2024-2887 \u0438 \u043f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 \u0441\u043e\u0431\u043e\u0439 \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u0443\u044e\u00a0\u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u0443\u044e \u0441 \u043f\u0443\u0442\u0430\u043d\u0438\u0446\u0435\u0439 \u0442\u0438\u043f\u043e\u0432,\u00a0\u0432 WebAssembly (Wasm).\n\n\u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u044c \u041c\u0430\u043d\u0444\u0440\u0435\u0434 \u041f\u043e\u043b \u043f\u0440\u043e\u0434\u0435\u043c\u043e\u043d\u0441\u0442\u0440\u0438\u0440\u043e\u0432\u0430\u043b \u0435\u0435\u00a0\u0432 \u043f\u0435\u0440\u0432\u044b\u0439 \u0434\u0435\u043d\u044c Pwn2Own\u00a0\u043a\u0430\u043a \u0447\u0430\u0441\u0442\u044c RCE-\u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430 \u0441 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435\u043c \u0441\u043e\u0437\u0434\u0430\u043d\u043d\u043e\u0439 HTML-\u0441\u0442\u0440\u0430\u043d\u0438\u0446\u044b \u0438 \u043d\u0430\u0446\u0435\u043b\u0435\u043d\u043d\u043e\u0433\u043e \u043a\u0430\u043a \u043d\u0430 Chrome, \u0442\u0430\u043a \u0438 \u043d\u0430 Edge.\n\n\u0412\u0442\u043e\u0440\u043e\u0439 \u043d\u043e\u043b\u044c \u043e\u0442\u0441\u043b\u0435\u0436\u0438\u0432\u0430\u0435\u0442\u0441\u044f \u043a\u0430\u043a CVE-2024-2886 \u0438 \u0431\u044b\u043b \u0440\u0435\u0430\u043b\u0438\u0437\u043e\u0432\u0430\u043d \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u043c KAIST Hacking Lab \u043d\u0430\u00a0\u0432\u0442\u043e\u0440\u043e\u0439 \u0434\u0435\u043d\u044c \u043a\u043e\u043d\u043a\u0443\u0440\u0441\u0430 CanSecWest Pwn2Own.\n\n\u041e\u0448\u0438\u0431\u043a\u0430 \u043e\u0442\u043d\u043e\u0441\u0438\u0442\u0441\u044f \u043a \u043a\u0430\u0442\u0435\u0433\u043e\u0440\u0438\u0438 UAF \u0438 \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u0435\u0442 API WebCodecs, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044f \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u044b\u043c \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0435 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u0438 \u0447\u0442\u0435\u043d\u0438\u044f/\u0437\u0430\u043f\u0438\u0441\u0438 \u0447\u0435\u0440\u0435\u0437 \u0441\u043e\u0437\u0434\u0430\u043d\u043d\u044b\u0435 HTML-\u0441\u0442\u0440\u0430\u043d\u0438\u0446\u044b.\n\nKAIST Hacking Lab \u0442\u0430\u043a\u0436\u0435 \u0441\u043c\u043e\u0433\u043b\u0430 \u0437\u0430\u0434\u0435\u0439\u0441\u0442\u0432\u043e\u0432\u0430\u0442\u044c CVE-2024-2886 \u0434\u043b\u044f \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u0433\u043e \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043a\u043e\u0434\u0430 \u0441 \u043f\u043e\u043c\u043e\u0449\u044c\u044e \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430, \u043d\u0430\u0446\u0435\u043b\u0435\u043d\u043d\u043e\u0433\u043e \u043a\u0430\u043a \u043d\u0430 Google Chrome, \u0442\u0430\u043a \u0438 \u043d\u0430 Microsoft Edge.\n\n\u041e\u0431\u0430 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043a\u0430 \u0442\u0435\u043f\u0435\u0440\u044c \u0437\u0430\u043a\u0440\u044b\u0442\u044b \u0441 \u0432\u044b\u043f\u0443\u0441\u043a\u043e\u043c Google Chrome \u0432\u0435\u0440\u0441\u0438\u0438 123.0.6312.86/.87 \u0434\u043b\u044f Windows \u0438 Mac \u0438 123.0.6312.86 \u0434\u043b\u044f \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u0439 Linux.", "creation_timestamp": "2024-03-28T11:01:12.000000Z"}, {"uuid": "ee2830aa-ea96-4bc3-9f84-6031509f40c2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-28875", "type": "published-proof-of-concept", "source": "https://t.me/cvedetector/9437", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-28875 - \"LevelOne WBR-6012 Web Services Remote Command Execution Backdoor\"\", \n  \"Content\": \"CVE ID : CVE-2024-28875 \nPublished : Oct. 30, 2024, 2:15 p.m. | 27\u00a0minutes ago \nDescription : A security flaw involving hard-coded credentials in LevelOne WBR-6012's web services allows attackers to gain unauthorized access during the first 30 seconds post-boot. Other vulnerabilities can force a reboot, circumventing the initial time restriction for exploitation.The backdoor string can be found at address 0x80100910  \n  \n    80100910 40 6d 21 74        ds         \"@m!t2K1\"  \n             32 4b 31 00  \n               \nIt is referenced by the function located at 0x800b78b0 and is used as shown in the pseudocode below:  \n  \n    if ((SECOND_FROM_BOOT_TIME &lt; 300) &amp;&amp;  \n        (is_equal = strcmp(password,\"@m!t2K1\")) {  \n            return 1;}  \n              \nWhere 1 is the return value to admin-level access (0 being fail and 3 being user). \nSeverity: 8.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"30 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-30T15:52:13.000000Z"}, {"uuid": "90660a16-1091-41d9-bd0a-48a99bd8ae6c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-2887", "type": "exploited", "source": "Telegram/hXBVtq_vQALtVQeIFAgKK-S2hj8k3D51My4YiCPF4vPfe-M", "content": "", "creation_timestamp": "2024-05-14T22:53:21.000000Z"}, {"uuid": "5ab75528-e322-45b6-8fb5-fefd96bb55e5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-28876", "type": "seen", "source": "https://t.me/cvedetector/3140", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-28876 - Intel MPI Library Path Truncation Privilege Escalation Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-28876 \nPublished : Aug. 14, 2024, 2:15 p.m. | 39\u00a0minutes ago \nDescription : Uncontrolled search path for some Intel(R) MPI Library software before version 2021.12 may allow an authenticated user to potentially enable escalation of privilege via local access. \nSeverity: 6.7 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"14 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-14T17:23:06.000000Z"}, {"uuid": "e371549f-7e18-464a-a63b-b3f278c06c85", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-28872", "type": "seen", "source": "https://t.me/cvedetector/660", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-28872 - The TLS certificate validation code is flawed. An\", \n  \"Content\": \"CVE ID : CVE-2024-28872 \nPublished : July 11, 2024, 3:15 p.m. | 39\u00a0minutes ago \nDescription : The TLS certificate validation code is flawed. An attacker can obtain a TLS certificate from the Stork server and use it to connect to the Stork agent. Once this connection is established with the valid certificate, the attacker can send malicious commands to a monitored service (Kea or BIND 9), possibly resulting in confidential data loss and/or denial of service. It should be noted that this vulnerability is not related to BIND 9 or Kea directly, and only customers using the Stork management tool are potentially affected.  \nThis issue affects Stork versions 0.15.0 through 1.15.0. \nSeverity: 8.9 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-11T18:19:17.000000Z"}, {"uuid": "2584cdf9-cec1-4a95-ae13-716d0b1afcdb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-2887", "type": "seen", "source": "Telegram/96N7i3D7Z35F_lyBaGYdULYNyA1cjJy47ztBP51blrvCf_cskw", "content": "", "creation_timestamp": "2024-08-15T11:35:57.000000Z"}, {"uuid": "a03c366c-e2b7-4e02-b288-a3881582955c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-2887", "type": "published-proof-of-concept", "source": "https://t.me/CNArsenal/3004", "content": "https://www.zerodayinitiative.com/blog/2024/5/2/cve-2024-2887-a-pwn2own-winning-bug-in-google-chrome\n\nhttps://ssd-disclosure.com/ssd-advisory-google-chrome-rce\n\nCVE-2024-2887\n#\u5206\u6790", "creation_timestamp": "2024-08-15T06:22:26.000000Z"}, {"uuid": "31f49110-a4d9-4de3-b009-fae65d4f24b2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-2887", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/10986", "content": "#exploit\n1. CVE-2024-6768:\nMicrosoft CLFS.sys DoS\nhttps://packetstormsecurity.com/files/180132/Microsoft-CLFS.sys-Denial-of-Service.html\n\n2. CVE-2024-2887:\nGoogle Chrome RCE\nhttps://ssd-disclosure.com/ssd-advisory-google-chrome-rce\n]-&gt; https://www.zerodayinitiative.com/blog/2024/5/2/cve-2024-2887-a-pwn2own-winning-bug-in-google-chrome", "creation_timestamp": "2024-08-15T15:08:57.000000Z"}]}