{"vulnerability": "cve-2024-4919", "sightings": [{"uuid": "8b7aeb53-7892-4507-9523-4f099bd83458", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49194", "type": "seen", "source": "https://bsky.app/profile/bolhasec.com/post/3ldqg6yvakw2j", "content": "", "creation_timestamp": "2024-12-20T12:46:44.826188Z"}, {"uuid": "5594aaa3-08b2-4466-ac76-9965aee6c259", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49194", "type": "seen", "source": "https://bsky.app/profile/dinosn.bsky.social/post/3ldpqun5z7c2g", "content": "", "creation_timestamp": "2024-12-20T06:25:11.143897Z"}, {"uuid": "f18ec399-3c95-4511-a0fb-a3bdaea77777", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49194", "type": "seen", "source": "https://bsky.app/profile/thedigitalempress.bsky.social/post/3ldu5nfwfw22h", "content": "", "creation_timestamp": "2024-12-22T00:24:22.882731Z"}, {"uuid": "1be67d10-73c3-4848-85e5-b9182ea36b5c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49194", "type": "seen", "source": "https://bsky.app/profile/areyou1or0.bsky.social/post/3ldrnjb3lhs2l", "content": "", "creation_timestamp": "2024-12-21T00:30:25.479569Z"}, {"uuid": "d16b6efa-4a18-40c3-95c3-138e17ca0da9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2024-49194", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113669928710434373", "content": "", "creation_timestamp": "2024-12-17T19:57:45.407861Z"}, {"uuid": "8b8ca1a2-ab5f-4f52-8296-e20f3f2f8d98", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49196", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lq6aocfs2ij2", "content": "", "creation_timestamp": "2025-05-27T17:47:33.779533Z"}, {"uuid": "adcbb715-a92b-4b88-b8d4-51cb90e62fe3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49197", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lq6aoflxhnn2", "content": "", "creation_timestamp": "2025-05-27T17:47:42.667779Z"}, {"uuid": "dd7c90d1-65af-47ca-b846-7a73bfb1a786", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49196", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lq6mvhz6vx2r", "content": "", "creation_timestamp": "2025-05-27T21:26:15.841944Z"}, {"uuid": "912f81d0-b959-453f-83de-128203164980", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49197", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lq6oqndhcy2q", "content": "", "creation_timestamp": "2025-05-27T21:59:21.307243Z"}, {"uuid": "bc60bc21-311b-428b-b840-3629cbd37099", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49196", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/17687", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-49196\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: An issue was discovered in the GPU in Samsung Mobile Processor Exynos 1480 and 2400. Type confusion leads to a Denial of Service.\n\ud83d\udccf Published: 2025-05-27T00:00:00.000Z\n\ud83d\udccf Modified: 2025-05-27T17:07:30.972Z\n\ud83d\udd17 References:\n1. https://semiconductor.samsung.com/support/quality-support/product-security-updates/\n2. https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2024-49196/", "creation_timestamp": "2025-05-27T17:48:56.000000Z"}, {"uuid": "4419f085-9075-441f-b21f-ac456cae97b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49197", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/17686", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-49197\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: An issue was discovered in Wi-Fi in Samsung Mobile Processor and Wearable Processor Exynos 980, 850, 1080, 1280, 1330, 1380, 1480, W920, W930, and W1000. Lack of a boundary check in STOP_KEEP_ALIVE_OFFLOAD leads to out-of-bounds access.\n\ud83d\udccf Published: 2025-05-27T00:00:00.000Z\n\ud83d\udccf Modified: 2025-05-27T17:12:16.673Z\n\ud83d\udd17 References:\n1. https://semiconductor.samsung.com/support/quality-support/product-security-updates/\n2. https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2024-49197/", "creation_timestamp": "2025-05-27T17:48:55.000000Z"}, {"uuid": "d0c2845c-a5d7-4362-affd-f65c115823fd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49194", "type": "seen", "source": "https://t.me/cvedetector/13127", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49194 - Apache Databricks JDBC Driver JNDI Injection Remote Code Execution (RCE)\", \n  \"Content\": \"CVE ID : CVE-2024-49194 \nPublished : Dec. 17, 2024, 8:15 p.m. | 25\u00a0minutes ago \nDescription : Databricks JDBC Driver before 2.6.40 could potentially allow remote code execution (RCE) by triggering a JNDI injection via a JDBC URL parameter. The vulnerability is rooted in the improper handling of the krbJAASFile parameter. An attacker could potentially exploit this vulnerability to achieve Remote Code Execution in the context of the driver by tricking a victim into using a crafted connection URL that uses the property krbJAASFile. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-17T21:48:09.000000Z"}, {"uuid": "92375bb2-31fb-4546-9247-07d762f9e57a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49193", "type": "seen", "source": "https://t.me/cvedetector/7775", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49193 - Zendesk Email Spoofing Information Disclosure\", \n  \"Content\": \"CVE ID : CVE-2024-49193 \nPublished : Oct. 12, 2024, 2:15 p.m. | 38\u00a0minutes ago \nDescription : Zendesk before 2024-07-02 allows remote attackers to read ticket history via e-mail spoofing, because Cc fields are extracted from incoming e-mail messages and used to grant additional authorization for ticket viewing, the mechanism for detecting spoofed e-mail messages is insufficient, and the support e-mail addresses associated with individual tickets are predictable. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"12 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-12T16:59:46.000000Z"}, {"uuid": "8eea39b0-c643-48d7-9c9f-c9399f8ae8cb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49195", "type": "seen", "source": "https://t.me/cvedetector/7947", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49195 - Mbed TLS Buffer Underrun in Opaque Key Pair Write\", \n  \"Content\": \"CVE ID : CVE-2024-49195 \nPublished : Oct. 15, 2024, 8:15 p.m. | 30\u00a0minutes ago \nDescription : Mbed TLS 3.5.x through 3.6.x before 3.6.2 has a buffer underrun in pkwrite when writing an opaque key pair \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"15 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-15T22:47:52.000000Z"}, {"uuid": "a028452e-b33a-458d-b908-97a1d8ba03bd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49194", "type": "published-proof-of-concept", "source": "https://t.me/CyberBulletin/1794", "content": "\u26a1\ufe0fPoC Exploit Released for Databricks Remote Code Execution Vulnerability CVE-2024-49194.\n\n#CyberBulletin", "creation_timestamp": "2024-12-20T16:22:48.000000Z"}, {"uuid": "dd5fa582-3242-4436-b7ce-062e3ff0e5a8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49194", "type": "published-proof-of-concept", "source": "https://t.me/proxy_bar/2441", "content": "CVE-2024-49194 \n*\nDatabricks JDBC Attack via JAAS \n*\nWriteUP + POC", "creation_timestamp": "2024-12-20T08:20:41.000000Z"}, {"uuid": "76b348fe-fe7b-440a-95cf-b590cc58debb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49194", "type": "published-proof-of-concept", "source": "https://t.me/CyberBulletin/26870", "content": "\u26a1\ufe0fPoC Exploit Released for Databricks Remote Code Execution Vulnerability CVE-2024-49194.\n\n#CyberBulletin", "creation_timestamp": "2024-12-20T16:22:47.000000Z"}]}