{"vulnerability": "cve-2024-3828", "sightings": [{"uuid": "5ceabb50-3e6b-4550-9b14-1b45bf881914", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38286", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113440528377402060", "content": "", "creation_timestamp": "2024-11-07T07:38:14.096193Z"}, {"uuid": "753ff16d-adea-49db-b82d-4d7e492d3e25", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38289", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-03-29)", "content": "", "creation_timestamp": "2025-03-29T00:00:00.000000Z"}, {"uuid": "2f2b23e1-4de3-4b97-97ee-b3245b8bb087", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38289", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2024-12-14)", "content": "", "creation_timestamp": "2024-12-14T00:00:00.000000Z"}, {"uuid": "389a1ac1-0f7b-483e-b1e8-66ef94d18d07", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38289", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-05-15)", "content": "", "creation_timestamp": "2025-05-15T00:00:00.000000Z"}, {"uuid": "e0bd7c68-4056-4e76-b328-f9227f820310", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38289", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-06-26)", "content": "", "creation_timestamp": "2025-06-26T00:00:00.000000Z"}, {"uuid": "789d18a6-960c-4df9-9406-827acf57b000", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38289", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-10-05)", "content": "", "creation_timestamp": "2025-10-05T00:00:00.000000Z"}, {"uuid": "cfea8afe-76be-4c5d-b3fd-8abe90ca60d5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38289", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-07-04)", "content": "", "creation_timestamp": "2025-07-04T00:00:00.000000Z"}, {"uuid": "302bc29f-8074-4c90-b006-d910811f517a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2024-38286", "type": "seen", "source": "https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0395/", "content": "", "creation_timestamp": "2026-04-02T17:00:00.000000Z"}, {"uuid": "d1821f28-9f6a-44c4-9709-70f2bfa53124", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38289", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-11-10)", "content": "", "creation_timestamp": "2025-11-10T00:00:00.000000Z"}, {"uuid": "c1deb8c7-0942-4fcb-b623-d4d2cb76edb0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38289", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-02-14)", "content": "", "creation_timestamp": "2026-02-14T00:00:00.000000Z"}, {"uuid": "6015ee4d-21fb-4939-9d0d-41128a3a2012", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38288", "type": "published-proof-of-concept", "source": "Telegram/KL_QRBMleu84GcJXOshkQNmmX2qNeO7yRQjwOd0XPZxWBw", "content": "", "creation_timestamp": "2024-09-21T16:07:01.000000Z"}, {"uuid": "e1973999-fddc-444f-a460-e73caeec4549", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38286", "type": "seen", "source": "https://t.me/cvedetector/10058", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-38286 - Apache Tomcat TLS Handshake Allocation Without Limits Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-38286 \nPublished : Nov. 7, 2024, 8:15 a.m. | 44\u00a0minutes ago \nDescription : Allocation of Resources Without Limits or Throttling vulnerability in Apache Tomcat.  \n  \nThis issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.0-M20, from 10.1.0-M1 through 10.1.24, from 9.0.13 through 9.0.89. Older, unsupported versions may also be affected.  \n  \n  \nUsers are recommended to upgrade to version 11.0.0-M21, 10.1.25, or 9.0.90, which fixes the issue.  \n  \n  \n  \nApache Tomcat, under certain configurations on any platform, allows an attacker to cause an OutOfMemoryError by abusing the TLS handshake process. \nSeverity: 8.6 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"07 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-07T10:13:54.000000Z"}, {"uuid": "6cf426cb-f722-4daa-bd5d-01389cefa1e6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38287", "type": "seen", "source": "https://t.me/cvedetector/1650", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-38287 - R-HUB TurboMeeting Password Reset Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-38287 \nPublished : July 25, 2024, 8:15 p.m. | 28\u00a0minutes ago \nDescription : The password-reset mechanism in the Forgot Password functionality in R-HUB TurboMeeting through 8.x allows unauthenticated remote attackers to force the application into resetting the administrator's password to a random insecure 8-digit value. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"25 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-25T22:46:22.000000Z"}, {"uuid": "96ec74c6-24de-4606-8701-d3dbb0c954ba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38286", "type": "seen", "source": "https://t.me/CyberBulletin/966", "content": "\u26a1\ufe0fVulnerabilidad de Apache Tomcat permite a atacantes lanzar ataques DoS.\n\nCVE-2024-38286\n\n#CyberBulletin", "creation_timestamp": "2024-09-27T16:41:28.000000Z"}, {"uuid": "9005b815-f966-4b66-ad42-ba5add9e6b1e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38289", "type": "seen", "source": "https://t.me/cvedetector/1645", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-38289 - R-HUB TurboMeeting SQL Injection\", \n  \"Content\": \"CVE ID : CVE-2024-38289 \nPublished : July 25, 2024, 8:15 p.m. | 28\u00a0minutes ago \nDescription : A boolean-based SQL injection issue in the Virtual Meeting Password (VMP) endpoint in R-HUB TurboMeeting through 8.x allows unauthenticated remote attackers to extract hashed passwords from the database, and authenticate to the application, via crafted SQL input. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"25 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-25T22:46:17.000000Z"}, {"uuid": "dc038555-e761-43b6-9588-a9e7929418b0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38288", "type": "seen", "source": "https://t.me/cvedetector/1648", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-38288 - R-HUB TurboMeeting Root Shell Command Injection\", \n  \"Content\": \"CVE ID : CVE-2024-38288 \nPublished : July 25, 2024, 8:15 p.m. | 28\u00a0minutes ago \nDescription : A command-injection issue in the Certificate Signing Request (CSR) functionality in R-HUB TurboMeeting through 8.x allows authenticated attackers with administrator privileges to execute arbitrary commands on the underlying server as root. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"25 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-25T22:46:20.000000Z"}, {"uuid": "6f21bc21-786a-4be1-b5d8-8d9a47d76fad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38288", "type": "published-proof-of-concept", "source": "https://t.me/realLulzSec/18820", "content": "", "creation_timestamp": "2024-09-21T16:06:46.000000Z"}, {"uuid": "4e729a1f-45e8-4262-ba23-969e7911bcb0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38288", "type": "published-proof-of-concept", "source": "https://t.me/HackerArsenal/412", "content": "", "creation_timestamp": "2024-09-21T20:25:51.000000Z"}, {"uuid": "18e5eb18-ee12-4ec3-ae2d-25c3355c6d2c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38288", "type": "published-proof-of-concept", "source": "https://t.me/realLulzSec/2037", "content": "", "creation_timestamp": "2024-09-21T16:06:46.000000Z"}, {"uuid": "7d963c83-3738-4b60-80de-be0668819e34", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38286", "type": "seen", "source": "https://t.me/HackingInsights/14182", "content": "\u200aCVE-2024-38286: Denial-of-Service Vulnerability Discovered in Apache Tomcat\n\nhttps://securityonline.info/cve-2024-38286-denial-of-service-vulnerability-discovered-in-apache-tomcat/", "creation_timestamp": "2024-09-24T10:52:18.000000Z"}, {"uuid": "8a5cbe5b-883c-4a18-b093-71891b12077d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38288", "type": "published-proof-of-concept", "source": "https://t.me/BackupLulz/242", "content": "", "creation_timestamp": "2024-11-03T04:41:27.000000Z"}, {"uuid": "cf627736-676c-412f-8616-556538709ae8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38286", "type": "seen", "source": "https://t.me/CyberBulletin/25848", "content": "\u26a1\ufe0fVulnerabilidad de Apache Tomcat permite a atacantes lanzar ataques DoS.\n\nCVE-2024-38286\n\n#CyberBulletin", "creation_timestamp": "2024-09-28T04:22:08.000000Z"}, {"uuid": "7b3f0b3b-7fae-418e-ad46-6124b9bf0eb5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38289", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-06-05)", "content": "", "creation_timestamp": "2026-06-05T00:00:00.000000Z"}]}