{"vulnerability": "cve-2024-4576", "sightings": [{"uuid": "fbbfbdca-306f-44f9-9e59-5535f5444105", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-45764", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113448204258373928", "content": "", "creation_timestamp": "2024-11-08T16:10:18.882531Z"}, {"uuid": "34f686b0-13c3-4cc0-af30-62052014e9dc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-45765", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113448204292519306", "content": "", "creation_timestamp": "2024-11-08T16:10:19.179983Z"}, {"uuid": "409e7414-f4b1-454d-bf82-c0a0e5000985", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-45763", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113448255577528839", "content": "", "creation_timestamp": "2024-11-08T16:23:21.684871Z"}, {"uuid": "96e97f04-5fb0-4873-abed-2a3d5ad5fcd9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-45764", "type": "seen", "source": "https://infosec.exchange/users/vuldb/statuses/113451777571181194", "content": "", "creation_timestamp": "2024-11-09T07:19:03.067927Z"}, {"uuid": "6f431f25-9126-4649-afe7-bc4e044a23e7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-45760", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113623787022579437", "content": "", "creation_timestamp": "2024-12-09T16:23:19.132994Z"}, {"uuid": "36ad7760-d5ee-44c4-8aa6-cfeb454193a4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-45769", "type": "seen", "source": "https://t.me/codeby_sec/8388", "content": "\u2753 \u041e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u044b \u0434\u0432\u0435 \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u044b\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 Performance Co-Pilot (PCP). \u041f\u0435\u0440\u0432\u0430\u044f, CVE-2024-45770, \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u0443\u0442\u0438\u043b\u0438\u0442\u043e\u0439 pmpost \u0438 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u0442\u044c \u043a\u043e\u0434 \u0441 \u043f\u0440\u0430\u0432\u0430\u043c\u0438 root, \u043d\u043e \u0442\u043e\u043b\u044c\u043a\u043e \u0435\u0441\u043b\u0438 \u0443 \u043d\u0438\u0445 \u0443\u0436\u0435 \u0435\u0441\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u0441\u0438\u0441\u0442\u0435\u043c\u0435. \u0412\u0442\u043e\u0440\u0430\u044f, CVE-2024-45769, \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u0435\u0442 \u043f\u0440\u043e\u0446\u0435\u0441\u0441 pcmd \u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u0440\u0438\u0432\u0435\u0441\u0442\u0438 \u043a \u0438\u0441\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044e \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u043e\u0433\u043e \u043a\u043e\u0434\u0430. \u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u0434\u043e \u0432\u0435\u0440\u0441\u0438\u0438 PCP 6.3.1 \u0443\u0441\u0442\u0440\u0430\u043d\u044f\u0435\u0442 \u043e\u0431\u0430 \u0440\u0438\u0441\u043a\u0430.\n\n\u23fa\ufe0f\u0422\u0430\u043a\u0436\u0435 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 Nix (CVE-2024-45593), \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u044e\u0449\u0430\u044f \u0430\u0440\u0445\u0438\u0432\u044b NAR \u0438 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u0437\u0430\u043f\u0438\u0441\u044b\u0432\u0430\u0442\u044c \u0434\u0430\u043d\u043d\u044b\u0435 \u0432 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0435 \u043e\u0431\u043b\u0430\u0441\u0442\u0438 \u0444\u0430\u0439\u043b\u043e\u0432\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u044b. \u041f\u0440\u043e\u0431\u043b\u0435\u043c\u0443 \u0443\u0441\u0442\u0440\u0430\u043d\u0438\u043b\u0438 \u0432 \u0432\u0435\u0440\u0441\u0438\u0438 Nix 2.24.6.\n\n\ud83c\udf1a \u041e\u0431\u043d\u043e\u0432\u043b\u044f\u0439\u0442\u0435\u0441\u044c, \u0447\u0442\u043e\u0431\u044b \u043e\u0431\u0435\u0437\u043e\u043f\u0430\u0441\u0438\u0442\u044c \u0441\u0432\u043e\u0438 \u0441\u0438\u0441\u0442\u0435\u043c\u044b.", "creation_timestamp": "2024-09-26T10:10:56.000000Z"}, {"uuid": "094405af-5faf-4f15-8891-a4f399f63f2a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-45761", "type": "seen", "source": "https://t.me/cvedetector/12417", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-45761 - Dell OpenManage Server Administrator Java Deserialization Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-45761 \nPublished : Dec. 9, 2024, 5:15 p.m. | 33\u00a0minutes ago \nDescription : Dell OpenManage Server Administrator, versions 11.0.1.0 and prior, contains an improper input validation vulnerability. A remote low-privileged malicious user could potentially exploit this vulnerability to load any web plugins or Java class leading to the possibility of altering the behavior of certain apps/OS or Denial of Service. \nSeverity: 5.4 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-09T18:53:06.000000Z"}, {"uuid": "f96e70bb-b67f-4aee-834c-ed6bc2f3c2a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-45763", "type": "seen", "source": "https://t.me/cvedetector/10207", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-45763 - \"Dell Enterprise SONiC OS OS Command Injection Vulnerability\"\", \n  \"Content\": \"CVE ID : CVE-2024-45763 \nPublished : Nov. 8, 2024, 5:15 p.m. | 32\u00a0minutes ago \nDescription : Dell Enterprise SONiC OS, version(s) 4.1.x, 4.2.x, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Command execution. This is a critical severity vulnerability so Dell recommends customers to upgrade at the earliest opportunity. \nSeverity: 9.1 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"08 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-08T18:52:57.000000Z"}, {"uuid": "ec70d8dc-2616-4545-83ff-ce6525da0152", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-45760", "type": "seen", "source": "https://t.me/cvedetector/12416", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-45760 - Dell OpenManage Server Administrator Privilege Escalation Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-45760 \nPublished : Dec. 9, 2024, 5:15 p.m. | 33\u00a0minutes ago \nDescription : Dell OpenManage Server Administrator, versions 11.0.1.0 and prior, contains an improper access control vulnerability. A remote low privileged user could potentially exploit this vulnerability via the HTTP GET method leading to unauthorized action with elevated privileges. \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-09T18:53:05.000000Z"}, {"uuid": "83d5583d-572b-414a-9e33-6c6db509e54d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-45765", "type": "seen", "source": "https://t.me/cvedetector/10204", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-45765 - Dell Enterprise SONiC OS OS Command Injection\", \n  \"Content\": \"CVE ID : CVE-2024-45765 \nPublished : Nov. 8, 2024, 4:15 p.m. | 41\u00a0minutes ago \nDescription : Dell Enterprise SONiC OS, version(s) 4.1.x, 4.2.x, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Command execution. This is a critical severity vulnerability as it allows high privilege OS commands to be executed with a less privileged role; so Dell recommends customers to upgrade at the earliest opportunity. \nSeverity: 9.1 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"08 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-08T18:02:43.000000Z"}, {"uuid": "19298611-3cb2-4998-8a85-0f39aec7d03e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-45764", "type": "seen", "source": "https://t.me/cvedetector/10203", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-45764 - Dell Enterprise SONiC OS Authentication Protection Bypass Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-45764 \nPublished : Nov. 8, 2024, 4:15 p.m. | 41\u00a0minutes ago \nDescription : Dell Enterprise SONiC OS, version(s) 4.1.x, 4.2.x, contain(s) a Missing Critical Step in Authentication vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Protection mechanism bypass. This is a critical severity vulnerability so Dell recommends customers to upgrade at the earliest opportunity. \nSeverity: 9.0 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"08 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-08T18:02:42.000000Z"}, {"uuid": "b6487554-6d2f-4dce-8e92-1a5af610ecf4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-45761", "type": "seen", "source": "Telegram/9vf3Kl5IoP2NwvIdzXFKh9PljG43WO4JdUFFoce8REIWpXmA", "content": "", "creation_timestamp": "2025-02-06T02:42:28.000000Z"}, {"uuid": "2b65c953-e4d1-4498-a230-9c55aa531ca9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-45769", "type": "seen", "source": "https://t.me/cvedetector/6048", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-45769 - \"PCP Denial of Service/Code Execution\"\", \n  \"Content\": \"CVE ID : CVE-2024-45769 \nPublished : Sept. 19, 2024, 9:15 a.m. | 32\u00a0minutes ago \nDescription : A vulnerability was found in Performance Co-Pilot (PCP).\u00a0 This flaw allows an attacker to send specially crafted data to the system, which could cause the program to misbehave or crash. \nSeverity: 5.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"19 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-19T11:58:38.000000Z"}, {"uuid": "acf50fb5-1b5b-46a6-b825-ab6a99762344", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-45767", "type": "seen", "source": "https://t.me/cvedetector/8139", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-45767 - Dell OpenManage Enterprise SQL Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-45767 \nPublished : Oct. 17, 2024, 2:15 a.m. | 31\u00a0minutes ago \nDescription : Dell OpenManage Enterprise, version(s) OME 4.1 and prior, contain(s) an Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Information disclosure. \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-17T04:56:14.000000Z"}, {"uuid": "b746f726-eb41-4abf-95bb-7bb8a447404d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-45766", "type": "seen", "source": "https://t.me/cvedetector/8138", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-45766 - Dell OpenManage Enterprise Code Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-45766 \nPublished : Oct. 17, 2024, 2:15 a.m. | 31\u00a0minutes ago \nDescription : Dell OpenManage Enterprise, version(s) OME 4.1 and prior, contain(s) an Improper Control of Generation of Code ('Code Injection') vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Code execution. \nSeverity: 8.0 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-17T04:56:14.000000Z"}, {"uuid": "7af3bc1e-559b-4506-9ccd-dd2077f7636a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-45760", "type": "seen", "source": "Telegram/E8XJNTulVa9fqgrg5bailv2aE9gnEdnHFFBgemxn2sqe5Zv7", "content": "", "creation_timestamp": "2025-02-06T02:42:28.000000Z"}, {"uuid": "00e3d3a9-f67b-4cfe-ac9d-d0a831f883b0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-45761", "type": "seen", "source": "Telegram/ngnRRkl3prhObdnqrDmTDU_SlK3JqMM0siEGWM24ay-JoDBb", "content": "", "creation_timestamp": "2025-02-06T02:41:38.000000Z"}]}