{"vulnerability": "cve-2024-4588", "sightings": [{"uuid": "e262f94f-35a5-4104-87b5-1dfe33e575f0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-45884", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lx3ulqwrlr2w", "content": "", "creation_timestamp": "2025-08-23T21:02:26.620758Z"}, {"uuid": "30d1ef09-82f2-446d-ae7f-8b70dc736c60", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-45885", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lx3ulr25vc2v", "content": "", "creation_timestamp": "2025-08-23T21:02:27.189227Z"}, {"uuid": "5fd0a16b-91cb-41ef-a821-5be4973ca364", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-45887", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lx3ulr4xe22v", "content": "", "creation_timestamp": "2025-08-23T21:02:27.735583Z"}, {"uuid": "f78b7944-56cd-412c-b641-2320e08ca882", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-45888", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lx3ulr7c2b2c", "content": "", "creation_timestamp": "2025-08-23T21:02:28.287961Z"}, {"uuid": "a4f75ea8-ab31-4548-bd17-758c54d1022f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-45884", "type": "seen", "source": "https://t.me/cvedetector/9765", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-45884 - DrayTek Vigor3900 Authentication Bypass\", \n  \"Content\": \"CVE ID : CVE-2024-45884 \nPublished : Nov. 4, 2024, 3:15 p.m. | 37\u00a0minutes ago \nDescription : DrayTek Vigor3900 1.5.1.3 contains a post-authentication command injection vulnerability. This vulnerability occurs when the `action` parameter in `cgi-bin/mainfunction.cgi` is set to `setSWMGroup.` \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"04 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-04T16:57:27.000000Z"}, {"uuid": "b69b4aab-ef4d-4bf5-9879-3a902d45c986", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-45888", "type": "seen", "source": "https://t.me/cvedetector/9763", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-45888 - DrayTek Vigor3900 Command Injection\", \n  \"Content\": \"CVE ID : CVE-2024-45888 \nPublished : Nov. 4, 2024, 3:15 p.m. | 37\u00a0minutes ago \nDescription : DrayTek Vigor3900 1.5.1.3 contains a command injection vulnerability. This vulnerability occurs when the `action` parameter in `cgi-bin/mainfunction.cgi` is set to `set_ap_map_config.' \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"04 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-04T16:57:21.000000Z"}, {"uuid": "63fec45f-ec70-4da7-a5d1-05cd79b6e115", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-45885", "type": "seen", "source": "https://t.me/cvedetector/9762", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-45885 - DrayTek Vigor3900 Command Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-45885 \nPublished : Nov. 4, 2024, 3:15 p.m. | 37\u00a0minutes ago \nDescription : DrayTek Vigor3900 1.5.1.3 contains a post-authentication command injection vulnerability. This vulnerability occurs when the `action` parameter in `cgi-bin/mainfunction.cgi` is set to `autodiscovery_clear.` \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"04 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-04T16:57:21.000000Z"}, {"uuid": "6d4a6a7a-9625-488f-8fea-ecee7c0dddfe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-45882", "type": "seen", "source": "https://t.me/cvedetector/9764", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-45882 - DrayTek Vigor3900 Command Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-45882 \nPublished : Nov. 4, 2024, 3:15 p.m. | 37\u00a0minutes ago \nDescription : DrayTek Vigor3900 1.5.1.3 contains a command injection vulnerability. This vulnerability occurs when the `action` parameter in `cgi-bin/mainfunction.cgi` is set to `delete_map_profile.` \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"04 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-04T16:57:26.000000Z"}, {"uuid": "7c55540b-fa0f-45c1-8f05-9291f13659d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-45889", "type": "seen", "source": "https://t.me/cvedetector/9756", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-45889 - DrayTek Vigor3900 Command Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-45889 \nPublished : Nov. 4, 2024, 3:15 p.m. | 37\u00a0minutes ago \nDescription : DrayTek Vigor3900 1.5.1.3 contains a post-authentication command injection vulnerability. This vulnerability occurs when the `action` parameter in `cgi-bin/mainfunction.cgi` is set to `commandTable.` \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"04 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-04T16:57:13.000000Z"}, {"uuid": "7b2358e1-03e4-4d76-a665-b716b07251a6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-45887", "type": "seen", "source": "https://t.me/cvedetector/9755", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-45887 - DrayTek Vigor3900 Remote Command Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-45887 \nPublished : Nov. 4, 2024, 3:15 p.m. | 37\u00a0minutes ago \nDescription : DrayTek Vigor3900 1.5.1.3 contains a post-authentication command injection vulnerability. This vulnerability occurs when the `action` parameter in `cgi-bin/mainfunction.cgi` is set to `doOpenVPN.` \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"04 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-04T16:57:12.000000Z"}, {"uuid": "c07423d8-2706-4f04-8760-3d3a2530be4a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-45880", "type": "seen", "source": "https://t.me/cvedetector/7363", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-45880 - Motorola CX2L Router Command Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-45880 \nPublished : Oct. 8, 2024, 3:15 p.m. | 31\u00a0minutes ago \nDescription : A command injection vulnerability exists in Motorola CX2L router v1.0.2 and below. The vulnerability is present in the SetStationSettings function. The system directly invokes the system function to execute commands for setting parameters such as MAC address without proper input filtering. This allows malicious users to inject and execute arbitrary commands. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"08 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-08T17:53:15.000000Z"}]}