{"vulnerability": "cve-2024-3489", "sightings": [{"uuid": "54061624-8187-40ed-aa78-d1eddb871295", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-34896", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113941835887559643", "content": "", "creation_timestamp": "2025-02-03T20:27:19.690925Z"}, {"uuid": "2ea13ace-dd0c-4dd9-867d-f959195f6f0e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-34897", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113941835902112417", "content": "", "creation_timestamp": "2025-02-03T20:27:20.017402Z"}, {"uuid": "5205a78c-176a-4f0c-a7cd-25104b7ad2eb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-34896", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lhchmbimar2b", "content": "", "creation_timestamp": "2025-02-03T21:15:32.520504Z"}, {"uuid": "1fddb9ff-1414-4b76-b586-ee357ff97cd5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-34897", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lhchmdwfaz2e", "content": "", "creation_timestamp": "2025-02-03T21:15:35.346273Z"}, {"uuid": "d05455fc-8465-4ce8-b4db-9df3bdd43af0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-34897", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lhckkrp56b2g", "content": "", "creation_timestamp": "2025-02-03T22:08:26.231620Z"}, {"uuid": "0103ffa1-9fca-45ae-8a9d-8f79f5a3c560", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-34896", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lhckkt3opd2h", "content": "", "creation_timestamp": "2025-02-03T22:08:33.791247Z"}, {"uuid": "9f94fa0d-273e-4a6c-b0c0-19be3c877bdb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-34891", "type": "seen", "source": "https://gist.github.com/sergkurilenko/55cbff41f8ef423d7ee6fc274e5e79a9", "content": "", "creation_timestamp": "2026-04-27T20:30:12.000000Z"}, {"uuid": "7a620b41-d1e4-4470-b577-7aae8ce64a0e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-34897", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/8002", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-34897\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Nedis SmartLife android app v1.4.0 was discovered to contain an API key disclosure vulnerability.\n\ud83d\udccf Published: 2025-02-03T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-18T20:29:23.505Z\n\ud83d\udd17 References:\n1. http://nedis.com\n2. https://urn.kb.se/resolve?urn=urn:nbn:se:kth:diva-359419", "creation_timestamp": "2025-03-18T20:48:24.000000Z"}, {"uuid": "b9536c78-4dde-498c-8917-d6b246ad7c6f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-34896", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/7585", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-34896\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: An issue in Nedis SmartLife Video Doorbell (WIFICDP10GY), Nedis SmartLife IOS v1.4.0 causes users who are disconnected from a previous peer-to-peer connection with the device to still have access to live video feed.\n\ud83d\udccf Published: 2025-02-03T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-14T16:32:06.603Z\n\ud83d\udd17 References:\n1. http://nedis.com\n2. https://urn.kb.se/resolve?urn=urn:nbn:se:kth:diva-359419", "creation_timestamp": "2025-03-14T16:44:00.000000Z"}, {"uuid": "bac5215f-16c8-448d-a5dd-5bf66fa0170c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-34899", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/9197", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-34899\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: WWBN AVideo 12.4 is vulnerable to Cross Site Scripting (XSS).\n\ud83d\udccf Published: 2024-05-13T18:40:25.814Z\n\ud83d\udccf Modified: 2025-03-27T20:14:43.775Z\n\ud83d\udd17 References:\n1. https://hackerdna.com/courses/cve/cve-2024-34899", "creation_timestamp": "2025-03-27T20:27:14.000000Z"}, {"uuid": "09235bde-5883-4126-935b-ae32c9b64cbb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-34891", "type": "seen", "source": "https://t.me/cvedetector/9785", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-34891 - \"Bitrix24 DAV Server Unauthenticated Credentials Disclosure\"\", \n  \"Content\": \"CVE ID : CVE-2024-34891 \nPublished : Nov. 4, 2024, 7:15 p.m. | 38\u00a0minutes ago \nDescription : Insufficiently protected credentials in DAV server settings in 1C-Bitrix Bitrix24 23.300.100 allows remote administrators to read Exchange account passwords via HTTP GET request. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"04 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-04T21:08:16.000000Z"}]}