{"vulnerability": "cve-2024-3511", "sightings": [{"uuid": "b1dbfbae-fe50-41e4-9102-f93c7b65d719", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-35117", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113631631686659935", "content": "", "creation_timestamp": "2024-12-11T01:38:19.295647Z"}, {"uuid": "943edcdd-8ec2-42d2-8025-1886cf31ecb6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-35111", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113889257478861428", "content": "", "creation_timestamp": "2025-01-25T13:35:57.369570Z"}, {"uuid": "100c4173-6180-45e4-bab6-309b82f95d1e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-35112", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113889257493842708", "content": "", "creation_timestamp": "2025-01-25T13:35:57.517262Z"}, {"uuid": "ef2f866e-ac30-4fa6-8281-9bd2378e05c4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-35113", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113889257507999762", "content": "", "creation_timestamp": "2025-01-25T13:35:57.658494Z"}, {"uuid": "69fb8dac-ecb8-4e21-af1b-09d9e886ef3f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-35114", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113889257542244683", "content": "", "creation_timestamp": "2025-01-25T13:35:57.915712Z"}, {"uuid": "965aaf92-fa57-4a2e-a386-1d96cd2be108", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-35111", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lglk73bwz52e", "content": "", "creation_timestamp": "2025-01-25T18:30:39.365589Z"}, {"uuid": "8d11dd91-db1b-46d9-8aac-ba3e23e4c3ef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-35112", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lglk74cghh2w", "content": "", "creation_timestamp": "2025-01-25T18:30:44.395542Z"}, {"uuid": "b0605f6f-760c-44e8-be64-5a5a5dffa341", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-35113", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/3093", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: GHSA-vwpm-799j-8hxq\n\ud83d\udd25 CVSS Score: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N\n\ud83d\udd39 Description: IBM Control Center 6.2.1 and 6.3.1 \n\n\n\ncould allow an authenticated user to obtain sensitive information exposed through a directory listing.\n\ud83d\udccf Published: 2025-01-25T15:30:31Z\n\ud83d\udccf Modified: 2025-01-25T15:30:31Z\n\ud83d\udd17 References:\n1. https://nvd.nist.gov/vuln/detail/CVE-2024-35113\n2. https://www.ibm.com/support/pages/node/7174796", "creation_timestamp": "2025-01-25T17:06:07.000000Z"}, {"uuid": "d6fbd0c0-16d5-4a67-8115-b19a51adade2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-35117", "type": "seen", "source": "MISP/be792712-f638-4d7d-b62d-4f5032e86764", "content": "", "creation_timestamp": "2025-09-16T23:16:38.000000Z"}, {"uuid": "382775dc-b995-4ec0-8bdb-606692d392f8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-35114", "type": "seen", "source": "https://bsky.app/profile/ferramentaslinux.bsky.social/post/3m6fs53g6d22e", "content": "", "creation_timestamp": "2025-11-24T21:41:23.253485Z"}, {"uuid": "3402d073-32c8-4af3-90ba-bd1a55d0c860", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-35117", "type": "seen", "source": "MISP/be792712-f638-4d7d-b62d-4f5032e86764", "content": "", "creation_timestamp": "2025-09-18T16:44:34.000000Z"}, {"uuid": "4916db6c-10d9-4616-9f5f-bbe4e8610836", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-35114", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/3105", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: GHSA-466p-j3vq-mwq3\n\ud83d\udd25 CVSS Score: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N\n\ud83d\udd39 Description: IBM Control Center 6.2.1 and 6.3.1 \n\n\n\n\n\ncould allow a remote attacker to enumerate usernames due to an observable discrepancy between login attempts.\n\ud83d\udccf Published: 2025-01-25T15:30:31Z\n\ud83d\udccf Modified: 2025-01-25T15:30:31Z\n\ud83d\udd17 References:\n1. https://nvd.nist.gov/vuln/detail/CVE-2024-35114\n2. https://www.ibm.com/support/pages/node/7174842", "creation_timestamp": "2025-01-25T17:06:22.000000Z"}, {"uuid": "07760176-fdfd-4c4c-89c0-9e80d78ec614", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-35111", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/3104", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: GHSA-4wp5-fm78-39wq\n\ud83d\udd25 CVSS Score: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N\n\ud83d\udd39 Description: IBM Control Center 6.2.1 and 6.3.1 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system.\n\ud83d\udccf Published: 2025-01-25T15:30:31Z\n\ud83d\udccf Modified: 2025-01-25T15:30:31Z\n\ud83d\udd17 References:\n1. https://nvd.nist.gov/vuln/detail/CVE-2024-35111\n2. https://www.ibm.com/support/pages/node/7174806", "creation_timestamp": "2025-01-25T17:06:22.000000Z"}, {"uuid": "b5827ebe-2ee6-49f4-90e8-fd4835894f2e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-35111", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/3083", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-35111\n\ud83d\udd39 Description: IBM Control Center 6.2.1 and 6.3.1 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system.\n\ud83d\udccf Published: 2025-01-25T13:29:55.296Z\n\ud83d\udccf Modified: 2025-01-25T13:29:55.296Z\n\ud83d\udd17 References:\n1. https://www.ibm.com/support/pages/node/7174806", "creation_timestamp": "2025-01-25T14:05:21.000000Z"}, {"uuid": "999abc89-1c57-4d13-b262-114d5ca128ce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-35112", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/3082", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-35112\n\ud83d\udd39 Description: IBM Control Center 6.2.1 and 6.3.1 \n\ncould allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system.\n\ud83d\udccf Published: 2025-01-25T13:31:25.755Z\n\ud83d\udccf Modified: 2025-01-25T13:31:25.755Z\n\ud83d\udd17 References:\n1. https://www.ibm.com/support/pages/node/7174794", "creation_timestamp": "2025-01-25T14:05:21.000000Z"}, {"uuid": "7aeb5202-b551-477e-a4f1-7a843ef9389f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-35112", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/3107", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: GHSA-2cwp-85p5-6fwc\n\ud83d\udd25 CVSS Score: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N\n\ud83d\udd39 Description: IBM Control Center 6.2.1 and 6.3.1 \n\ncould allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system.\n\ud83d\udccf Published: 2025-01-25T15:30:31Z\n\ud83d\udccf Modified: 2025-01-25T15:30:31Z\n\ud83d\udd17 References:\n1. https://nvd.nist.gov/vuln/detail/CVE-2024-35112\n2. https://www.ibm.com/support/pages/node/7174794", "creation_timestamp": "2025-01-25T17:06:27.000000Z"}, {"uuid": "f8f551ac-b11e-4592-9d02-6c632f96c4fe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-35113", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/3081", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-35113\n\ud83d\udd39 Description: IBM Control Center 6.2.1 and 6.3.1 \n\n\n\ncould allow an authenticated user to obtain sensitive information exposed through a directory listing.\n\ud83d\udccf Published: 2025-01-25T13:32:39.872Z\n\ud83d\udccf Modified: 2025-01-25T13:32:39.872Z\n\ud83d\udd17 References:\n1. https://www.ibm.com/support/pages/node/7174796", "creation_timestamp": "2025-01-25T14:05:20.000000Z"}, {"uuid": "c7d3896a-1ffb-47e4-9d5b-8b3c1f04e64a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-35114", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/3080", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-35114\n\ud83d\udd39 Description: IBM Control Center 6.2.1 and 6.3.1 \n\n\n\n\n\ncould allow a remote attacker to enumerate usernames due to an observable discrepancy between login attempts.\n\ud83d\udccf Published: 2025-01-25T13:33:25.352Z\n\ud83d\udccf Modified: 2025-01-25T13:33:25.352Z\n\ud83d\udd17 References:\n1. https://www.ibm.com/support/pages/node/7174842", "creation_timestamp": "2025-01-25T14:05:19.000000Z"}, {"uuid": "77334a58-22ab-4134-a803-87b9754b83d1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-3511", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/19193", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-3511\n\ud83d\udd25 CVSS Score: 4.3 (cvssV3_1, Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)\n\ud83d\udd39 Description: An incorrect authorization vulnerability exists in multiple WSO2 products that allows unauthorized access to versioned files stored in the registry. Due to flawed authorization logic, a malicious actor with access to the management console can exploit a specific bypass method to retrieve versioned files without proper authorization.\n\nSuccessful exploitation of this vulnerability could lead to unauthorized disclosure of configuration or resource files that may be stored as registry versions, potentially aiding further attacks or system reconnaissance.\n\ud83d\udccf Published: 2025-06-23T08:47:55.266Z\n\ud83d\udccf Modified: 2025-06-23T08:47:55.266Z\n\ud83d\udd17 References:\n1. https://security.docs.wso2.com/en/latest/security-announcements/security-advisories/2025/WSO2-2024-2702/", "creation_timestamp": "2025-06-23T09:44:46.000000Z"}, {"uuid": "070d1ddf-8f98-4886-adc1-aa019ae87c54", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-35114", "type": "seen", "source": "https://t.me/cvedetector/16388", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-35114 - IBM Control Center Authentication Information Disclosure\", \n  \"Content\": \"CVE ID : CVE-2024-35114 \nPublished : Jan. 25, 2025, 2:15 p.m. | 1\u00a0hour, 9\u00a0minutes ago \nDescription : IBM Control Center 6.2.1 and 6.3.1   \n  \n  \n  \n  \n  \ncould allow a remote attacker to enumerate usernames due to an observable discrepancy between login attempts. \nSeverity: 5.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"25 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-25T17:10:05.000000Z"}, {"uuid": "477ac4a4-85d4-4266-bb3f-2c39c51f8ae7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-35113", "type": "seen", "source": "https://t.me/cvedetector/16387", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-35113 - IBM Control Center Information Disclosure\", \n  \"Content\": \"CVE ID : CVE-2024-35113 \nPublished : Jan. 25, 2025, 2:15 p.m. | 1\u00a0hour, 9\u00a0minutes ago \nDescription : IBM Control Center 6.2.1 and 6.3.1   \n  \n  \n  \ncould allow an authenticated user to obtain sensitive information exposed through a directory listing. \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"25 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-25T17:10:04.000000Z"}, {"uuid": "398dc00f-20d0-4444-b491-6e0cc9424973", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-35112", "type": "seen", "source": "https://t.me/cvedetector/16396", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-35112 - IBM Control Center Information Disclosure Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-35112 \nPublished : Jan. 25, 2025, 2:15 p.m. | 1\u00a0hour, 9\u00a0minutes ago \nDescription : IBM Control Center 6.2.1 and 6.3.1   \n  \ncould allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. \nSeverity: 5.4 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"25 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-25T17:10:14.000000Z"}, {"uuid": "8be592b0-f8c1-44d4-a00d-52617473bd7b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-35111", "type": "seen", "source": "https://t.me/cvedetector/16395", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-35111 - IBM Control Center Information Disclosure\", \n  \"Content\": \"CVE ID : CVE-2024-35111 \nPublished : Jan. 25, 2025, 2:15 p.m. | 1\u00a0hour, 9\u00a0minutes ago \nDescription : IBM Control Center 6.2.1 and 6.3.1 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"25 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-25T17:10:13.000000Z"}, {"uuid": "d694d651-0814-4a9a-95fa-8a13b73e9f3c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-35117", "type": "seen", "source": "https://t.me/cvedetector/12614", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-35117 - IBM OpenPages with Watson Unprivileged Access to Sensitive Information\", \n  \"Content\": \"CVE ID : CVE-2024-35117 \nPublished : Dec. 11, 2024, 2:15 a.m. | 1\u00a0hour, 6\u00a0minutes ago \nDescription : IBM OpenPages with Watson 9.0 may write sensitive information, under specific configurations, in clear text to the system tracing log files that could be obtained by a privileged user. \nSeverity: 4.4 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-11T04:22:10.000000Z"}, {"uuid": "64ac6cbe-c0a9-4261-a728-58aea5375f4e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-35118", "type": "seen", "source": "https://t.me/cvedetector/4428", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-35118 - IBM MaaS360 Android Hardcoded Credential Exposure Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-35118 \nPublished : Aug. 29, 2024, 4:15 p.m. | 21\u00a0minutes ago \nDescription : IBM MaaS360 for Android 6.31 through 8.60 is using hard coded credentials that can be obtained by a user with physical access to the device. \nSeverity: 4.6 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"29 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-29T18:44:17.000000Z"}]}