{"vulnerability": "cve-2024-4940", "sightings": [{"uuid": "9234052a-3b17-474c-80cb-606c49d45619", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49401", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113433783232142466", "content": "", "creation_timestamp": "2024-11-06T03:02:51.673053Z"}, {"uuid": "7633f544-e08d-4388-b87f-a32cd757ca3b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49402", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113433783247453158", "content": "", "creation_timestamp": "2024-11-06T03:02:51.756409Z"}, {"uuid": "d4003d6b-fb01-439f-8979-2c2e221c7844", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49403", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113433842249429608", "content": "", "creation_timestamp": "2024-11-06T03:17:51.853347Z"}, {"uuid": "859df5f3-8cd8-4da8-bdc1-d1a8e01d8856", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49404", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113433842263478240", "content": "", "creation_timestamp": "2024-11-06T03:17:52.092993Z"}, {"uuid": "72715654-4088-4e53-8e1c-1ead3c90d999", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49405", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113433842277087841", "content": "", "creation_timestamp": "2024-11-06T03:17:52.454558Z"}, {"uuid": "a65cc43c-9b0d-4258-9368-8721c3b981f6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49406", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113433842291514380", "content": "", "creation_timestamp": "2024-11-06T03:17:52.546369Z"}, {"uuid": "31de358c-367b-4a15-ae5d-2941c0cfefce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49407", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113433901291247166", "content": "", "creation_timestamp": "2024-11-06T03:32:52.960789Z"}, {"uuid": "243a080a-5ed3-4118-bf93-dbd6d871e0f0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49408", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113433901305275202", "content": "", "creation_timestamp": "2024-11-06T03:32:53.206806Z"}, {"uuid": "3a148b2b-05b8-4668-91d1-f95b53f76ab0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49409", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113433901318917443", "content": "", "creation_timestamp": "2024-11-06T03:32:53.292466Z"}, {"uuid": "08c5ea68-2a06-490b-b89c-19246973a595", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49401", "type": "seen", "source": "https://t.me/cvedetector/9980", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49401 - Citrix Settings Suggestions Local Privilege Escalation Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-49401 \nPublished : Nov. 6, 2024, 3:15 a.m. | 34\u00a0minutes ago \nDescription : Improper input validation in Settings Suggestions prior to SMR Nov-2024 Release 1 allows local attackers to launch privileged activities. \nSeverity: 5.1 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"06 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-06T04:57:44.000000Z"}, {"uuid": "1f6252a2-8a8c-43f9-b60d-400bfa9646e8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49407", "type": "seen", "source": "https://t.me/cvedetector/9976", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49407 - Samsung Flow Access Control Weakness\", \n  \"Content\": \"CVE ID : CVE-2024-49407 \nPublished : Nov. 6, 2024, 3:15 a.m. | 34\u00a0minutes ago \nDescription : Improper access control in Samsung Flow prior to version 4.9.15.7 allows physical attackers to access data across multiple user profiles. \nSeverity: 4.6 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"06 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-06T04:57:38.000000Z"}, {"uuid": "04e16679-e691-402e-98d6-0f3217950acf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49406", "type": "seen", "source": "https://t.me/cvedetector/9975", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49406 - Ethereum Blockchain Keystore Biometric Spoofing\", \n  \"Content\": \"CVE ID : CVE-2024-49406 \nPublished : Nov. 6, 2024, 3:15 a.m. | 34\u00a0minutes ago \nDescription : Improper validation of integrity check value in Blockchain Keystore prior to version 1.3.16 allows local attackers to modify transaction. Root privilege is required for triggering this vulnerability. \nSeverity: 6.7 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"06 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-06T04:57:37.000000Z"}, {"uuid": "da8f3764-4243-40e2-b04e-3538fd4a51cf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49405", "type": "seen", "source": "https://t.me/cvedetector/9974", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49405 - Samsung Pass Authentication Bypass Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-49405 \nPublished : Nov. 6, 2024, 3:15 a.m. | 34\u00a0minutes ago \nDescription : Improper authentication in Private Info in Samsung Pass in prior to version 4.4.04.7 allows physical attackers to access sensitive information in a specific scenario. \nSeverity: 5.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"06 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-06T04:57:36.000000Z"}, {"uuid": "14212d99-3342-413b-9e78-754876ea3202", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49404", "type": "seen", "source": "https://t.me/cvedetector/9973", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49404 - Samsung Video Player File Access Violation\", \n  \"Content\": \"CVE ID : CVE-2024-49404 \nPublished : Nov. 6, 2024, 3:15 a.m. | 34\u00a0minutes ago \nDescription : Improper Access Control in Samsung Video Player prior to versions 7.3.29.1 in Android 12, 7.3.36.1 in Android 13, and 7.3.41.230 in Android 14 allows physical attackers to access video file of other users. \nSeverity: 5.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"06 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-06T04:57:33.000000Z"}, {"uuid": "c73a3ffb-1e46-4baf-bc36-beaa664b43c1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49403", "type": "seen", "source": "https://t.me/cvedetector/9972", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49403 - Samsung Voice Recorder Lock Screen File Access Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-49403 \nPublished : Nov. 6, 2024, 3:15 a.m. | 34\u00a0minutes ago \nDescription : Improper access control in Samsung Voice Recorder prior to version 21.5.40.37 allows physical attackers to access recording files on the lock screen. \nSeverity: 4.6 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"06 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-06T04:57:32.000000Z"}, {"uuid": "b66d405d-0c7c-4777-8c31-5d319b79d143", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49402", "type": "seen", "source": "https://t.me/cvedetector/9971", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49402 - Dressroom Profile Data Access Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-49402 \nPublished : Nov. 6, 2024, 3:15 a.m. | 34\u00a0minutes ago \nDescription : Improper input validation in Dressroom prior to SMR Nov-2024 Release 1 allow physical attackers to access data across multiple user profiles. \nSeverity: 4.6 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"06 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-06T04:57:31.000000Z"}, {"uuid": "878d26b4-d6b4-4938-8158-6468f69e136e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49408", "type": "seen", "source": "https://t.me/cvedetector/9970", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49408 - Samsung Galaxy S24 USB Driver Out-of-Bounds Write Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-49408 \nPublished : Nov. 6, 2024, 3:15 a.m. | 34\u00a0minutes ago \nDescription : Out-of-bounds write in usb driver prior to Firmware update Sep-2024 Release on Galaxy S24 allows local attackers to write out-of-bounds memory. System privilege is required for triggering this vulnerability. \nSeverity: 6.4 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"06 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-06T04:57:31.000000Z"}, {"uuid": "b405a8c1-71ec-411a-9c3a-a16521f247d6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49409", "type": "seen", "source": "https://t.me/cvedetector/9969", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49409 - Samsung Galaxy S24 Firmware Stack Buffer Overflow\", \n  \"Content\": \"CVE ID : CVE-2024-49409 \nPublished : Nov. 6, 2024, 3:15 a.m. | 34\u00a0minutes ago \nDescription : Out-of-bounds write in Battery Full Capacity node prior to Firmware update Sep-2024 Release on Galaxy S24 allows local attackers to write out-of-bounds memory. System privilege is required for triggering this vulnerability. \nSeverity: 6.4 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"06 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-06T04:57:30.000000Z"}, {"uuid": "3a0e4dec-1009-4a4f-8c6b-ea058b6a0427", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49400", "type": "seen", "source": "https://t.me/cvedetector/8204", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49400 - Cloudflare Tacquito regex Injection\", \n  \"Content\": \"CVE ID : CVE-2024-49400 \nPublished : Oct. 17, 2024, 6:15 p.m. | 26\u00a0minutes ago \nDescription : Tacquito prior to commit 07b49d1358e6ec0b5aa482fcd284f509191119e2 was not properly performing regex matches on authorized commands and arguments. Configured allowed commands/arguments were intended to require a match on the entire string, but instead only enforced a match on a sub-string. That would have potentially allowed unauthorized commands to be executed. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-17T20:49:35.000000Z"}]}