{"vulnerability": "cve-2024-4433", "sightings": [{"uuid": "06b6bef6-2f4b-4844-99ac-06b0a5441057", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-44336", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lhws2nap6c2g", "content": "", "creation_timestamp": "2025-02-11T23:15:46.955477Z"}, {"uuid": "3f3f218b-32be-4478-9046-42df7e389ff4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-44337", "type": "seen", "source": "https://gist.github.com/Darkcrai86/dbc5c1df72a4aef2544ad90951ed4b75", "content": "", "creation_timestamp": "2025-11-17T10:44:32.000000Z"}, {"uuid": "7995552c-a20b-41a6-83ab-46051cb22077", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-44336", "type": "seen", "source": "https://t.me/cvedetector/17772", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-44336 - AnkiDroid Internal File Disclosure\", \n  \"Content\": \"CVE ID : CVE-2024-44336 \nPublished : Feb. 11, 2025, 11:15 p.m. | 1\u00a0hour, 7\u00a0minutes ago \nDescription : An issue in AnkiDroid Android Application v2.17.6 allows attackers to retrieve internal files from the /data/data/com.ichi2.anki/ directory and save it into publicly available storage. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"12 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-12T01:45:12.000000Z"}, {"uuid": "aa7946d2-5ee0-46c8-976d-62f75255fef1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-44336", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/3965", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-44336\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: An issue in AnkiDroid Android Application v2.17.6 allows attackers to retrieve internal files from the /data/data/com.ichi2.anki/ directory and save it into publicly available storage.\n\ud83d\udccf Published: 2025-02-12T00:32:16Z\n\ud83d\udccf Modified: 2025-02-12T00:32:16Z\n\ud83d\udd17 References:\n1. https://nvd.nist.gov/vuln/detail/CVE-2024-44336\n2. https://github.com/blackbeard666/security-research/tree/main/CVE-2024-44336", "creation_timestamp": "2025-02-12T01:10:18.000000Z"}, {"uuid": "4b869419-d00a-43a3-ac05-63453e4f0b8b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-44336", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/4163", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-44336\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: No description available\n\ud83d\udccf Published: 2025-02-11T23:15:09.020\n\ud83d\udccf Modified: N/A\n\ud83d\udd17 References:\n1. https://github.com/blackbeard666/security-research/tree/main/CVE-2024-44336", "creation_timestamp": "2025-02-12T23:10:36.000000Z"}, {"uuid": "93c2d066-c13b-437f-8196-045302fa542d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-44331", "type": "seen", "source": "https://t.me/cvedetector/8660", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-44331 - GStreamer RTSP Server Denial of Service Access Bypass\", \n  \"Content\": \"CVE ID : CVE-2024-44331 \nPublished : Oct. 22, 2024, 10:15 p.m. | 22\u00a0minutes ago \nDescription : Incorrect Access Control in GStreamer RTSP server 1.25.0 in gst-rtsp-server/rtsp-media.c allows remote attackers to cause a denial of service via a series of specially crafted hexstream requests. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"23 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-23T00:39:57.000000Z"}, {"uuid": "ebc05bea-c28a-4364-a2c1-886c11700b65", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-44337", "type": "seen", "source": "https://t.me/cvedetector/7943", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-44337 - \"Gomarkdown Denial of Service Vulnerability\"\", \n  \"Content\": \"CVE ID : CVE-2024-44337 \nPublished : Oct. 15, 2024, 8:15 p.m. | 30\u00a0minutes ago \nDescription : The package `github.com/gomarkdown/markdown` is a Go library for parsing Markdown text and rendering as HTML. Prior to pseudoversion `v0.0.0-20240729232818-a2a9c4f`, which corresponds with commit `a2a9c4f76ef5a5c32108e36f7c47f8d310322252`, there was a logical problem in the paragraph function of the parser/block.go file, which allowed a remote attacker to cause a denial of service (DoS) condition by providing a tailor-made input that caused an infinite loop, causing the program to hang and consume resources indefinitely. Submit `a2a9c4f76ef5a5c32108e36f7c47f8d310322252` contains fixes to this problem. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"15 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-15T22:47:47.000000Z"}, {"uuid": "f1dd6094-b981-437d-acd6-3bea287dfc60", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-44334", "type": "seen", "source": "https://t.me/cvedetector/5119", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-44334 - D-Link Remote Command Execution Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-44334 \nPublished : Sept. 9, 2024, 6:15 p.m. | 23\u00a0minutes ago \nDescription : D-Link DI-7003GV2 v24.04.18D1, DI-7100G+V2 v24.04.18D1, DI-7100GV2 v24.04.18D1, DI-7200GV2 v24.04.18E1, DI-7300G+V2 v24.04.18D1, and DI-7400G+V2 v24.04.18D1 are vulnerable to Remote Command Execution due to insufficient parameter filtering in the CGI handling function of upgrade_filter.asp. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-09T20:40:00.000000Z"}, {"uuid": "0decebbb-45f8-499b-a896-e3e1f68f8242", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-44335", "type": "seen", "source": "https://t.me/cvedetector/5118", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-44335 - D-Link RCE\", \n  \"Content\": \"CVE ID : CVE-2024-44335 \nPublished : Sept. 9, 2024, 6:15 p.m. | 23\u00a0minutes ago \nDescription : D-Link DI-7003G v19.12.24A1, DI-7003GV2 v24.04.18D1, DI-7100G+V2 v24.04.18D1, DI-7100GV2 v24.04.18D1, DI-7200GV2 v24.04.18E1, DI-7300G+V2 v24.04.18D1, and DI-7400G+V2 v24.04.18D1 are vulnerable to Remote Command Execution (RCE) via version_upgrade.asp. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-09T20:40:00.000000Z"}, {"uuid": "5e97a358-d2c2-4b3b-b885-5fefe89ae20f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-44333", "type": "seen", "source": "https://t.me/cvedetector/5115", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-44333 - D-Link Remote Command Execution Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-44333 \nPublished : Sept. 9, 2024, 5:15 p.m. | 31\u00a0minutes ago \nDescription : D-Link DI-7003GV2 v24.04.18D1, DI-7100G+V2 v24.04.18D1, DI-7100GV2 v24.04.18D1, DI-7200GV2 v24.04.18E1, DI-7300G+V2 v24.04.18D1, and DI-7400G+V2 v24.04.18D1 are vulnerable to Remote Command Execution. An attacker can achieve arbitrary command execution by sending a carefully crafted malicious string to the CGI function responsible for handling usb_paswd.asp. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-09T19:49:51.000000Z"}, {"uuid": "7418af6a-8186-4a21-b850-8804f0291c46", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-44336", "type": "seen", "source": "Telegram/TUiiRI60VSvwJLw4GFyA9WWPXBo5nbypoIBum9-eUHgXWdBY", "content": "", "creation_timestamp": "2025-02-14T10:06:01.000000Z"}]}