{"vulnerability": "cve-2024-5059", "sightings": [{"uuid": "3a47f5b1-8fc2-4636-92b9-94ec58267a6d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50599", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113443732594424567", "content": "", "creation_timestamp": "2024-11-07T21:13:06.634655Z"}, {"uuid": "52c6b8fb-bc17-4eb0-999c-8e0b5fee8b52", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50590", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113447182733607853", "content": "", "creation_timestamp": "2024-11-08T11:50:31.525303Z"}, {"uuid": "41def19a-91c8-4a6f-9676-b0fad15cfe5b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50591", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113447263135426691", "content": "", "creation_timestamp": "2024-11-08T12:10:58.660246Z"}, {"uuid": "281f3df0-e9a4-492a-98d5-8413e0c860e2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50593", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113447263150943448", "content": "", "creation_timestamp": "2024-11-08T12:10:58.705279Z"}, {"uuid": "e338697e-c4e9-4b3a-9f82-5cf53fe7a384", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50592", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113447321476036755", "content": "", "creation_timestamp": "2024-11-08T12:25:48.520137Z"}, {"uuid": "bcb2b31f-a506-4976-ba7b-49ce8d7161c9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50594", "type": "seen", "source": "https://t.me/cvedetector/21892", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-50594 - STMicroelectronics X-CUBE-AZRTOS-WL HTTP Server Integer Underflow Denial of Service\", \n  \"Content\": \"CVE ID : CVE-2024-50594 \nPublished : April 2, 2025, 2:15 p.m. | 2\u00a0hours, 13\u00a0minutes ago \nDescription : An integer underflow vulnerability exists in the HTTP server PUT request functionality of STMicroelectronics X-CUBE-AZRTOS-WL 2.0.0. A specially crafted series of network requests can lead to denial of service. An attacker can send a sequence of malicious packets to trigger this vulnerability.This vulnerability affects the NetX Duo Web Component HTTP Server implementation which can be found in x-cube-azrtos-f7\\Middlewares\\ST\\netxduo\\addons\\web\\nx_web_http_server.c \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"02 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-02T19:10:13.000000Z"}, {"uuid": "78a8c4a4-9fe9-4fd1-a7e0-f98d514097f0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50595", "type": "seen", "source": "https://infosec.place/objects/0ac53b9b-a988-4381-a754-afe76a375871", "content": "", "creation_timestamp": "2025-04-02T14:00:22.684892Z"}, {"uuid": "6856d0ec-0570-4f22-9774-9362f1bc48a5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50594", "type": "seen", "source": "https://infosec.place/objects/0ac53b9b-a988-4381-a754-afe76a375871", "content": "", "creation_timestamp": "2025-04-02T14:00:22.781123Z"}, {"uuid": "d7513fc6-fa2a-4601-b1ed-4063563e2cd3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50595", "type": "seen", "source": "https://infosec.place/objects/0ac53b9b-a988-4381-a754-afe76a375871", "content": "", "creation_timestamp": "2025-04-02T14:00:22.682676Z"}, {"uuid": "57928b3b-29bf-4fd7-9b20-531c2ba99865", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50594", "type": "seen", "source": "https://infosec.place/objects/0ac53b9b-a988-4381-a754-afe76a375871", "content": "", "creation_timestamp": "2025-04-02T14:00:22.752450Z"}, {"uuid": "ff0017dc-bced-4b13-b9e5-e51ef138730f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50596", "type": "seen", "source": "https://infosec.place/objects/4077c091-5b83-4d8b-a78f-12aa15a3ce38", "content": "", "creation_timestamp": "2025-04-02T14:00:28.345322Z"}, {"uuid": "fa4693b6-118e-4df4-9f82-c03f33e81a39", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50597", "type": "seen", "source": "https://infosec.place/objects/4077c091-5b83-4d8b-a78f-12aa15a3ce38", "content": "", "creation_timestamp": "2025-04-02T14:00:28.406846Z"}, {"uuid": "d8618f39-53b1-4a29-a498-23f774831dbf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50596", "type": "seen", "source": "https://infosec.place/objects/4077c091-5b83-4d8b-a78f-12aa15a3ce38", "content": "", "creation_timestamp": "2025-04-02T14:00:28.341528Z"}, {"uuid": "91d74832-3579-43fc-af3b-f701a318dce5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50594", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lltuidbvu324", "content": "", "creation_timestamp": "2025-04-02T17:02:00.960032Z"}, {"uuid": "58c18c90-ca77-4e3d-b054-1c5976ed2671", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50595", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lltuidlv6t24", "content": "", "creation_timestamp": "2025-04-02T17:02:01.741359Z"}, {"uuid": "ef0ca7de-784e-4402-8486-8fe264596f77", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50596", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lltuidt73w2j", "content": "", "creation_timestamp": "2025-04-02T17:02:03.026500Z"}, {"uuid": "8e53aa33-1587-41ff-afc0-cf0607710b29", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50597", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lltuidzcwa2o", "content": "", "creation_timestamp": "2025-04-02T17:02:04.176940Z"}, {"uuid": "ada2fe7c-f70a-4b80-aa06-65314db5b373", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50597", "type": "seen", "source": "https://t.me/cvedetector/21888", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-50597 - STMicroelectronics X-CUBE-AZRTOS-WL HTTP Server Integer Underflow Denial of Service\", \n  \"Content\": \"CVE ID : CVE-2024-50597 \nPublished : April 2, 2025, 2:15 p.m. | 2\u00a0hours, 13\u00a0minutes ago \nDescription : An integer underflow vulnerability exists in the HTTP server PUT request functionality of STMicroelectronics X-CUBE-AZRTOS-WL 2.0.0. A specially crafted network packet can lead to denial of service. An attacker can send a malicious packet to trigger this vulnerability.This vulnerability affects the NetX Duo Component HTTP Server implementation which can be found in x-cube-azrtos-f7\\Middlewares\\ST\\netxduo\\addons\\http\\nxd_http_server.c \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"02 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-02T19:10:07.000000Z"}, {"uuid": "1847066d-d019-4281-a353-a475814709cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50596", "type": "seen", "source": "https://t.me/cvedetector/21887", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-50596 - STMicroelectronics X-CUBE-AZRTOS-WL Denial of Service Integer Underflow\", \n  \"Content\": \"CVE ID : CVE-2024-50596 \nPublished : April 2, 2025, 2:15 p.m. | 2\u00a0hours, 13\u00a0minutes ago \nDescription : An integer underflow vulnerability exists in the HTTP server PUT request functionality of STMicroelectronics X-CUBE-AZRTOS-WL 2.0.0. A specially crafted network packet can lead to denial of service. An attacker can send a malicious packet to trigger this vulnerability.This vulnerability affects the NetX Duo Web Component HTTP Server implementation which can be found in x-cube-azrtos-f7\\Middlewares\\ST\\netxduo\\addons\\web\\nx_web_http_server.c \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"02 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-02T19:10:06.000000Z"}, {"uuid": "39717268-af6f-462d-9c62-97514aa9f7f0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50592", "type": "seen", "source": "https://t.me/cvedetector/10198", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-50592 - Elefant Update Service Local Privilege Escalation Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-50592 \nPublished : Nov. 8, 2024, 1:15 p.m. | 20\u00a0minutes ago \nDescription : An attacker with local access the to medical office computer can   \nescalate his Windows user privileges to \"NT AUTHORITY\\SYSTEM\" by   \nexploiting a race condition in the Elefant Update Service during the   \nrepair or update process.\u00a0When using the repair function, the service queries the server for a   \nlist of files and their hashes. In addition, instructions to execute   \nbinaries to finalize the repair process are included.\u00a0The executables are executed as \"NT AUTHORITY\\SYSTEM\" after they are   \ncopied over to the user writable installation folder (C:\\Elefant1). This  \n means that a user can overwrite either \"PostESUUpdate.exe\" or   \n\"Update_OpenJava.exe\" in the time frame after the copy and before the   \nexecution of the final repair step. The overwritten executable is then executed as \"NT AUTHORITY\\SYSTEM\". \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"08 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-08T14:40:50.000000Z"}, {"uuid": "5004e54e-7254-4862-8e22-75d162c9f4d4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50595", "type": "seen", "source": "https://t.me/cvedetector/21893", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-50595 - STMicroelectronics X-CUBE-AZRTOS-WL HTTP Server Integer Underflow Denial of Service\", \n  \"Content\": \"CVE ID : CVE-2024-50595 \nPublished : April 2, 2025, 2:15 p.m. | 2\u00a0hours, 13\u00a0minutes ago \nDescription : An integer underflow vulnerability exists in the HTTP server PUT request functionality of STMicroelectronics X-CUBE-AZRTOS-WL 2.0.0. A specially crafted series of network requests can lead to denial of service. An attacker can send a sequence of malicious packets to trigger this vulnerability.This vulnerability affects the NetX Duo Component HTTP Server implementation which can be found in x-cube-azrtos-f7\\Middlewares\\ST\\netxduo\\addons\\http\\nxd_http_server.c \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"02 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-02T19:10:14.000000Z"}, {"uuid": "9877c65b-732e-43b9-8999-3f26bd23e5c1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50591", "type": "seen", "source": "https://t.me/cvedetector/10194", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-50591 - Elefant Software Updater Windows Command Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-50591 \nPublished : Nov. 8, 2024, 12:15 p.m. | 29\u00a0minutes ago \nDescription : An attacker with local access the to medical office computer can   \nescalate his Windows user privileges to \"NT AUTHORITY\\SYSTEM\" by   \nexploiting a command injection vulnerability in the Elefant Update   \nService. The command injection can be exploited by communicating with   \nthe Elefant Update Service which is running as \"SYSTEM\" via Windows   \nNamed Pipes.The Elefant Software Updater (ESU) consists of two components. An ESU  \n service which runs as \"NT AUTHORITY\\SYSTEM\" and an ESU tray client   \nwhich communicates with the service to update or repair the installation  \n and is running with user permissions. The communication is implemented   \nusing named pipes. A crafted message of type   \n\"MessageType.SupportServiceInfos\" can be sent to the local ESU service   \nto inject commands, which are then executed as \"NT AUTHORITY\\SYSTEM\". \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"08 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-08T13:50:40.000000Z"}, {"uuid": "f0f926ff-ec65-4d90-8f48-96b1c8315771", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50593", "type": "seen", "source": "https://t.me/cvedetector/10193", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-50593 - Elefant Service Hard-Coded Password Weakness\", \n  \"Content\": \"CVE ID : CVE-2024-50593 \nPublished : Nov. 8, 2024, 12:15 p.m. | 29\u00a0minutes ago \nDescription : An attacker with local access to the medical office computer can   \naccess restricted functions of the Elefant Service tool by using a   \nhard-coded \"Hotline\" password in the Elefant service binary, which is shipped with the software. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"08 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-08T13:50:39.000000Z"}, {"uuid": "10596832-9b3b-4b59-b75b-f0d92dbfc703", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50599", "type": "seen", "source": "https://t.me/cvedetector/10130", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-50599 - Zimbra Collaboration Suite (ZCS) Cross-Site Scripting (XSS) Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-50599 \nPublished : Nov. 7, 2024, 9:15 p.m. | 22\u00a0minutes ago \nDescription : A reflected Cross-Site Scripting (XSS) vulnerability has been identified in Zimbra Collaboration Suite (ZCS) 8.8.15, affecting one of the webmail calendar endpoints. This arises from improper handling of user-supplied input, allowing an attacker to inject malicious code that is reflected back in the HTML response. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"07 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-07T22:47:38.000000Z"}, {"uuid": "3b0c407b-ed98-40b5-9032-b9d00c646dfa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50590", "type": "seen", "source": "https://t.me/cvedetector/10197", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-50590 - Elefant Windows Privilege Escalation vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-50590 \nPublished : Nov. 8, 2024, 12:15 p.m. | 29\u00a0minutes ago \nDescription : Attackers with local access to the medical office computer can   \nescalate their Windows user privileges to \"NT AUTHORITY\\SYSTEM\" by   \noverwriting one of two Elefant service binaries with weak permissions.\u00a0The default installation directory of Elefant is \"C:\\Elefant1\" which is   \nwritable for all users. In addition, the Elefant installer registers two  \n Firebird database services which are running as \u201cNT AUTHORITY\\SYSTEM\u201d.\u00a0  \n  \nPath: C:\\Elefant1\\Firebird_2\\bin\\fbserver.exe  \n  \nPath: C:\\Elefant1\\Firebird_2\\bin\\fbguard.exe  \n  \n  \nBoth service binaries are user writable. This means that a local   \nattacker can rename one of the service binaries, replace the service   \nexecutable with a new executable, and then restart the system. Once the   \nsystem has rebooted, the new service binary is executed as \"NT   \nAUTHORITY\\SYSTEM\". \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"08 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-08T13:50:42.000000Z"}]}