{"vulnerability": "cve-2024-4411", "sightings": [{"uuid": "e9ca5bc5-db88-4eb5-a669-99a0bdb383a3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-44114", "type": "seen", "source": "https://t.me/cvedetector/5151", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-44114 - SAP NetWeaver Information Disclosure\", \n  \"Content\": \"CVE ID : CVE-2024-44114 \nPublished : Sept. 10, 2024, 3:15 a.m. | 35\u00a0minutes ago \nDescription : SAP NetWeaver Application Server for ABAP and ABAP Platform allow users with high privileges to execute a program that reveals data over the network. This results in a minimal impact on confidentiality of the application. \nSeverity: 2.0 | LOW \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"10 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-10T05:51:53.000000Z"}, {"uuid": "83c03d34-cbe0-4c85-a638-ea905c007a40", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-44116", "type": "seen", "source": "https://t.me/cvedetector/5150", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-44116 - SAP Enabled Function Module Workspace Tainting\", \n  \"Content\": \"CVE ID : CVE-2024-44116 \nPublished : Sept. 10, 2024, 3:15 a.m. | 35\u00a0minutes ago \nDescription : The RFC enabled function module allows a low privileged user to add any workbook to any user's workplace favourites. This vulnerability could be utilized to identify usernames and access information about targeted user's workplaces. There is low impact on integrity of the application. \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"10 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-10T05:51:52.000000Z"}, {"uuid": "dd57f0e6-1771-4b1d-bcc0-c7fb4766740c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-44117", "type": "seen", "source": "https://t.me/cvedetector/5172", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-44117 - Apache WebSense Unauthorized Functionality Execution\", \n  \"Content\": \"CVE ID : CVE-2024-44117 \nPublished : Sept. 10, 2024, 5:15 a.m. | 15\u00a0minutes ago \nDescription : The RFC enabled function module allows a low privileged user to perform various actions, such as modifying the URLs of any user's favourite nodes and workbook ID. There is low impact on integrity and availability of the application. \nSeverity: 5.4 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"10 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-10T07:32:32.000000Z"}, {"uuid": "d6d4d0a1-2a10-4b3b-a6dd-cfbbf030cdeb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-44112", "type": "seen", "source": "https://t.me/cvedetector/5159", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-44112 - SAP for Oil & Gas Information Disclosure volontary Deletion\", \n  \"Content\": \"CVE ID : CVE-2024-44112 \nPublished : Sept. 10, 2024, 4:15 a.m. | 22\u00a0minutes ago \nDescription : Due to missing authorization check in SAP for Oil & Gas (Transportation and Distribution), an attacker authenticated as a non-administrative user could call a remote-enabled function which will allow them to delete non-sensitive entries in a user data table. There is no effect on confidentiality or availability. \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"10 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-10T06:42:07.000000Z"}, {"uuid": "36307f3a-400a-462b-afa8-142514887bdf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-44113", "type": "seen", "source": "https://t.me/cvedetector/5154", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-44113 - SAP Business Warehouse BEx Analyzer Missing Authorization Checks Information Disclosure\", \n  \"Content\": \"CVE ID : CVE-2024-44113 \nPublished : Sept. 10, 2024, 3:15 a.m. | 35\u00a0minutes ago \nDescription : Due to missing authorization checks, SAP Business Warehouse (BEx Analyzer) allows an authenticated attacker to access information over the network which is otherwise restricted. On successful exploitation the attacker can enumerate information causing a limited impact on confidentiality of the application. \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"10 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-10T05:51:58.000000Z"}, {"uuid": "5d8d1749-e0dd-4776-9805-fe85aa4c9119", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-44115", "type": "seen", "source": "https://t.me/cvedetector/5148", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-44115 - SAP RFC Workplace Favourites Information Disclosure\", \n  \"Content\": \"CVE ID : CVE-2024-44115 \nPublished : Sept. 10, 2024, 3:15 a.m. | 35\u00a0minutes ago \nDescription : The RFC enabled function module allows a low privileged user to add URLs to any user's workplace favourites. This vulnerability could be utilized to identify usernames and access information about targeted user's workplaces, and nodes. There is low impact on integrity of the application \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"10 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-10T05:51:51.000000Z"}]}