{"vulnerability": "cve-2024-3804", "sightings": [{"uuid": "58339075-e2be-400f-9e63-d2f2a867fa7a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38046", "type": "seen", "source": "https://www.thezdi.com/blog/2024/9/10/the-september-2024-security-update-review", "content": "", "creation_timestamp": "2024-09-10T17:25:32.000000Z"}, {"uuid": "064429ec-d9f5-4885-8eeb-1b99809b1821", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38045", "type": "seen", "source": "https://www.thezdi.com/blog/2024/9/10/the-september-2024-security-update-review", "content": "", "creation_timestamp": "2024-09-10T17:25:32.000000Z"}, {"uuid": "c1d11cd0-281e-4eb9-aa1a-f7300cec651f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38041", "type": "published-proof-of-concept", "source": "https://t.me/cKure/13618", "content": "\u25a0\u25a0\u25a1\u25a1\u25a1 Exploiting Microsoft Kernel Applocker Driver (CVE-2024-38041).\n\nhttps://csa.limited/blog/20240916-Exploiting-Microsoft-Kernel-Applocker-Driver.html", "creation_timestamp": "2024-09-16T17:39:22.000000Z"}, {"uuid": "6252b9f9-a552-4481-b8dd-3996693ac085", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38041", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/11698", "content": "#exploit \n1. CVE-2024-9042:\nCommand Injection in Windows Kubernetes Nodes\nhttps://blog.amberwolf.com/blog/2025/january/reproducing-cve-2024-9042---command-injection-in-windows-kubernetes-nodes\n\n2. CVE-2024-38041:\nExploiting MS Kernel Applocker Driver\nhttps://csacyber.com/blog/exploiting-microsoft-kernel-applocker-driver-cve-2024-38041", "creation_timestamp": "2025-01-19T02:36:04.000000Z"}, {"uuid": "cbd57fe7-77e0-44be-88c6-6a017165ff4b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38040", "type": "seen", "source": "https://t.me/cvedetector/7006", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-38040 - Esri Portal for ArcGIS Local File Inclusion Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-38040 \nPublished : Oct. 4, 2024, 6:15 p.m. | 41\u00a0minutes ago \nDescription : There is a local file inclusion vulnerability in Esri Portal for ArcGIS 11.2. 11.1, 11.0 and 10.9.1 that may allow a remote, unauthenticated attacker to craft a URL that could potentially disclose sensitive configuration information by reading internal files. \nSeverity: 7.5 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"04 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-04T21:03:19.000000Z"}]}