{"vulnerability": "cve-2024-3851", "sightings": [{"uuid": "57779f23-8098-4a18-89b4-79821cf9d33b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38514", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-03-29)", "content": "", "creation_timestamp": "2025-03-29T00:00:00.000000Z"}, {"uuid": "946b8191-7187-4c7e-badc-97ec767fd7aa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38514", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-03-09)", "content": "", "creation_timestamp": "2025-03-09T00:00:00.000000Z"}, {"uuid": "e886b076-519c-48e4-825b-e3636d4ffae9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38514", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lj6s25smgr2t", "content": "", "creation_timestamp": "2025-02-27T21:02:06.017335Z"}, {"uuid": "677fdfc9-c993-4350-8711-e4904b749fbd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38514", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-05-15)", "content": "", "creation_timestamp": "2025-05-15T00:00:00.000000Z"}, {"uuid": "852bf08b-6db6-4466-abe3-db6981bb896b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38519", "type": "published-proof-of-concept", "source": "Telegram/V1bxD-jcgL_JhIO9UiHe8d1hYmveopVgEe6OZN4ebF4Ex04", "content": "", "creation_timestamp": "2024-07-05T05:10:16.000000Z"}, {"uuid": "20d4af8a-9b5a-4566-bd3d-f6a5c466c245", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38514", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-05-31)", "content": "", "creation_timestamp": "2025-05-31T00:00:00.000000Z"}, {"uuid": "25325edc-7604-4924-8731-eab39ee9e253", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38513", "type": "published-proof-of-concept", "source": "https://t.me/HackingInsights/4963", "content": "\u200aCVE-2024-38513 (CVSS 9.8): Critical Security Flaw in Popular Go Web Framework, Fiber\n\nhttps://securityonline.info/cve-2024-38513-cvss-9-8-critical-security-flaw-in-popular-go-web-framework-fiber/", "creation_timestamp": "2024-07-06T09:56:09.000000Z"}, {"uuid": "333d3fbd-64a5-48d6-88be-159d2f5009ba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38512", "type": "seen", "source": "https://t.me/cvedetector/1717", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-38512 - XCC IPMI Command Injection Privilege Escalation Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-38512 \nPublished : July 26, 2024, 8:15 p.m. | 44\u00a0minutes ago \nDescription : A privilege escalation vulnerability was discovered in XCC that could allow an authenticated XCC user with elevated privileges to perform command injection via specially crafted IPMI commands. \nSeverity: 7.2 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"26 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-26T23:03:25.000000Z"}, {"uuid": "4cf9c1c8-117b-4f3b-bbe9-ab9e84673950", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38510", "type": "seen", "source": "https://t.me/cvedetector/1716", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-38510 - XCC SSH Privilege Escalation Command Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-38510 \nPublished : July 26, 2024, 8:15 p.m. | 44\u00a0minutes ago \nDescription : A privilege escalation vulnerability was discovered in the SSH captive command shell interface that could allow an authenticated XCC user with elevated privileges to perform command injection via specially crafted file uploads. \nSeverity: 7.2 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"26 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-26T23:03:21.000000Z"}, {"uuid": "626c08ec-f2d6-4158-8f91-0a2685e275bd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38511", "type": "seen", "source": "https://t.me/cvedetector/1719", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-38511 - XCC Command Injection Privilege Escalation\", \n  \"Content\": \"CVE ID : CVE-2024-38511 \nPublished : July 26, 2024, 8:15 p.m. | 44\u00a0minutes ago \nDescription : A privilege escalation vulnerability was discovered in an upload processing functionality of XCC that could allow an authenticated XCC user with elevated privileges to perform command injection via specially crafted file uploads. \nSeverity: 7.2 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"26 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-26T23:03:27.000000Z"}, {"uuid": "58888a8c-0a43-4212-8fa6-6e01d6ee6da5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38517", "type": "seen", "source": "https://t.me/cvedetector/434", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-38517 - Tencent RapidJSON is vulnerable to privilege escal\", \n  \"Content\": \"CVE ID : CVE-2024-38517 \nPublished : July 9, 2024, 7:15 p.m. | 35\u00a0minutes ago \nDescription : Tencent RapidJSON is vulnerable to privilege escalation due to an integer underflow in the `GenericReader::ParseNumber()` function of `include/rapidjson/reader.h` when parsing JSON text from a stream. An attacker needs to send the victim a crafted file which needs to be opened; this triggers the integer underflow vulnerability (when the file is parsed), leading to elevation of privilege. \nSeverity: 7.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-09T21:55:33.000000Z"}, {"uuid": "3af0c1d7-9f54-4bf3-8bdf-bfb8a7637a9f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38519", "type": "seen", "source": "https://t.me/CyberSecurityTechnologies/10785", "content": "#exploit\n1. CVE-2024-38519:\nPath traversal in youtube-dl leading to RCE\nhttps://securitylab.github.com/advisories/GHSL-2024-089_youtube-dl\n\n2. CVE-2023-52168, CVE-2023-52169:\nBuffer overflow, over-read vulns in 7Zip\nhttps://seclists.org/oss-sec/2024/q3/24\n\n3. CVE-2024-3833:\nRCE in Chromium\nhttps://securitylab.github.com/advisories/GHSL-2024-070_Chromium", "creation_timestamp": "2024-07-05T15:57:33.000000Z"}, {"uuid": "83453b79-e5d0-4a55-8296-1cdd093ca158", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38519", "type": "published-proof-of-concept", "source": "https://t.me/CNArsenal/2756", "content": "https://securitylab.github.com/advisories/GHSL-2024-089_youtube-dl/\n\nGHSL-2024-089: Path traversal in youtube-dl leading to RCE - CVE-2024-38519\n#\u5206\u6790 #poc", "creation_timestamp": "2024-07-05T05:03:14.000000Z"}, {"uuid": "b0aa1af9-436e-43e1-a6bf-e268d7a03dfb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38519", "type": "published-proof-of-concept", "source": "https://t.me/darkcommunityofficial/1139", "content": "https://securitylab.github.com/advisories/GHSL-2024-089_youtube-dl/\n\nGHSL-2024-089: Path traversal in youtube-dl leading to RCE - CVE-2024-38519\n#\u5206\u6790 #poc", "creation_timestamp": "2024-07-05T19:24:33.000000Z"}]}