{"vulnerability": "cve-2024-5595", "sightings": [{"uuid": "68a96594-34c9-4aa2-a2a9-114bdbb61400", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55952", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113675333546421490", "content": "", "creation_timestamp": "2024-12-18T18:52:16.726273Z"}, {"uuid": "544a3fc6-6c3a-404d-9368-0b12d5bd4e78", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55956", "type": "seen", "source": "https://infosec.exchange/users/catc0n/statuses/113647607008214402", "content": "", "creation_timestamp": "2024-12-13T21:21:03.383376Z"}, {"uuid": "89f3f3c3-131e-4322-8707-a8d18768e887", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55956", "type": "seen", "source": "https://social.circl.lu/users/vulnerability_lookup/statuses/113656290741715294", "content": "", "creation_timestamp": "2024-12-15T10:09:26.548270Z"}, {"uuid": "429ad6a3-510e-4375-9bbb-21a1b5b6b7c5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2024-55956", "type": "seen", "source": "https://infosec.exchange/users/shadowserver/statuses/113656947909919073", "content": "", "creation_timestamp": "2024-12-15T12:56:36.024199Z"}, {"uuid": "4bb1fc5e-b266-482a-9c77-fd043e2fc3e7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2024-55956", "type": "seen", "source": "https://infosec.exchange/users/catc0n/statuses/113662633470258921", "content": "", "creation_timestamp": "2024-12-16T13:02:28.884889Z"}, {"uuid": "74881772-364f-4312-bd60-906405d5359a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55956", "type": "seen", "source": "https://infosec.exchange/users/edwardk/statuses/113663744872730791", "content": "", "creation_timestamp": "2024-12-16T17:45:07.395158Z"}, {"uuid": "460485f4-46ed-4b34-ba24-a99adec383a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55951", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113664325321574528", "content": "", "creation_timestamp": "2024-12-16T20:12:44.472544Z"}, {"uuid": "06b5799b-98f1-49da-bed0-8d189d7212a1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55956", "type": "seen", "source": "MISP/ca790929-8e78-455e-903d-a68231af7b9c", "content": "", "creation_timestamp": "2024-12-16T13:06:59.000000Z"}, {"uuid": "78fc86d3-41f8-45f3-856f-0c018328647d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55953", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113675333560634722", "content": "", "creation_timestamp": "2024-12-18T18:52:16.802535Z"}, {"uuid": "83124a61-0360-44fd-8310-fd7f8b39739c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55956", "type": "seen", "source": "https://bsky.app/profile/bluecyber.bsky.social/post/3ldrtcuxj5s26", "content": "", "creation_timestamp": "2024-12-21T02:14:13.119182Z"}, {"uuid": "c17f173c-87d0-4d0e-9349-d351e018c5b5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55956", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2024/CVE-2024-55956.yaml", "content": "", "creation_timestamp": "2024-12-18T13:39:54.000000Z"}, {"uuid": "f9be9054-ef32-43aa-b391-0510d3e6e68d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55956", "type": "seen", "source": "https://infosec.exchange/users/screaminggoat/statuses/113668907290703264", "content": "", "creation_timestamp": "2024-12-17T15:38:00.577988Z"}, {"uuid": "b756faa4-2f43-44f0-ac44-0c25b0bae994", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55956", "type": "seen", "source": "https://feedsin.space/feed/CISAKevBot/items/2919426", "content": "", "creation_timestamp": "2024-12-17T16:19:11.156186Z"}, {"uuid": "770614ae-776a-4f5e-80ce-ebb5686d841e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55956", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2024-12-17T18:10:01.000000Z"}, {"uuid": "3e77fe76-9e06-40ee-be09-fb56600fd45a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55955", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-25-008/", "content": "", "creation_timestamp": "2025-01-08T05:00:00.000000Z"}, {"uuid": "022c2fad-b21b-4529-af3b-8177a4516226", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55954", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lfv5qqxmvb2u", "content": "", "creation_timestamp": "2025-01-16T20:49:17.224208Z"}, {"uuid": "a06ba4bf-43a4-4dfe-b2bf-99ef7a389b49", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55950", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113721360939391914", "content": "", "creation_timestamp": "2024-12-26T21:57:39.097481Z"}, {"uuid": "862cf340-35af-4179-917c-3de15e1e3f48", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55954", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113839713874243661", "content": "", "creation_timestamp": "2025-01-16T19:36:21.481123Z"}, {"uuid": "83737e11-0685-4888-b34f-9a8b1d5f30d3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55955", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lemkdv45om2k", "content": "", "creation_timestamp": "2024-12-31T17:15:37.397129Z"}, {"uuid": "22204fa3-161e-4608-9aa1-12c0c5a997fe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55955", "type": "seen", "source": "https://bsky.app/profile/ripjyr.bsky.social/post/3leyezbpont2d", "content": "", "creation_timestamp": "2025-01-05T10:12:07.183848Z"}, {"uuid": "714af342-b903-467c-af11-43cf2afba6c4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55954", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfv3vewomq2h", "content": "", "creation_timestamp": "2025-01-16T20:16:05.020306Z"}, {"uuid": "cd2a589f-8666-4bea-9953-4a9e6d5fd89f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55956", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lfvavuyhmc27", "content": "", "creation_timestamp": "2025-01-16T21:45:51.301789Z"}, {"uuid": "86f4118c-b95d-4815-8436-6450a100ab41", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55954", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/113839999099780527", "content": "", "creation_timestamp": "2025-01-16T20:48:54.148513Z"}, {"uuid": "31847728-81bf-43db-b2ef-1c5f9e8fa3db", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55956", "type": "seen", "source": "https://bsky.app/profile/stephenfewer.bsky.social/post/3lf6jv7gjrc26", "content": "", "creation_timestamp": "2025-01-07T20:55:20.048023Z"}, {"uuid": "0ee03a99-45f4-4432-9138-3daa474e58cc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55956", "type": "seen", "source": "https://bsky.app/profile/rajsamani.bsky.social/post/3lgaqupqg4c2h", "content": "", "creation_timestamp": "2025-01-21T11:30:50.682154Z"}, {"uuid": "3f67d098-3f20-46b9-a36b-6bce42f48914", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55956", "type": "seen", "source": "https://infosec.exchange/users/screaminggoat/statuses/113867636525001029", "content": "", "creation_timestamp": "2025-01-21T17:57:27.680218Z"}, {"uuid": "232a9cc1-903f-4eda-a245-0c95526f7f52", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55958", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lgbrkrhyls2p", "content": "", "creation_timestamp": "2025-01-21T21:15:48.372663Z"}, {"uuid": "a9d6dbda-d9be-424c-a908-a6969c3fe171", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55959", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lgbrktsix32n", "content": "", "creation_timestamp": "2025-01-21T21:15:50.639147Z"}, {"uuid": "4a64e9dc-bf7b-46b1-b2b8-c96e29319a42", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55957", "type": "seen", "source": "https://bsky.app/profile/r-netsec.bsky.social/post/3lhl3utztgr26", "content": "", "creation_timestamp": "2025-02-07T07:39:33.308329Z"}, {"uuid": "f3020b94-b801-42cc-a6d5-984b4a7645eb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55956", "type": "seen", "source": "MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd", "content": "", "creation_timestamp": "2025-02-06T03:13:46.000000Z"}, {"uuid": "145dfcfa-484e-4d49-87ea-a8a083a19a4b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55957", "type": "seen", "source": "https://bsky.app/profile/buherator.bsky.social/post/3lhkwjyfmx22j", "content": "", "creation_timestamp": "2025-02-07T06:04:00.409651Z"}, {"uuid": "1c3d7211-024f-4818-a5af-f0ba236c5822", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55956", "type": "seen", "source": "https://bsky.app/profile/hackingne.ws/post/3lkntltqrh62p", "content": "", "creation_timestamp": "2025-03-18T14:04:55.234914Z"}, {"uuid": "be36c0c2-527b-453b-aa39-0a651a3bba47", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55957", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lgdxxt2qyq2h", "content": "", "creation_timestamp": "2025-01-22T18:15:48.331434Z"}, {"uuid": "039e2389-c8da-468d-99c5-5af89c149d3e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55957", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lge5j62ojk2i", "content": "", "creation_timestamp": "2025-01-22T19:54:59.592593Z"}, {"uuid": "65828857-9290-414b-9e73-3ee7f2fdcce9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55956", "type": "seen", "source": "https://bsky.app/profile/ytroncal.bsky.social/post/3m26ucef2uc2m", "content": "", "creation_timestamp": "2025-10-02T05:50:44.235076Z"}, {"uuid": "b05dd9f8-13c4-4240-bc38-9473f2838d38", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55956", "type": "seen", "source": "MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd", "content": "", "creation_timestamp": "2025-02-23T04:11:05.000000Z"}, {"uuid": "c1f14d36-d0e3-4375-b210-8f75f4fe3d58", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55956", "type": "seen", "source": "https://swecyb.com/users/nopatience/statuses/114420886740732088", "content": "", "creation_timestamp": "2025-04-29T10:56:24.500127Z"}, {"uuid": "106e2656-59a3-419e-8f36-3fc369183d39", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55956", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2025-02-23T02:11:03.000000Z"}, {"uuid": "98d4d141-f4bd-4e2a-8ea8-23563a075d55", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55956", "type": "seen", "source": "https://bsky.app/profile/cecallihelper.bsky.social/post/3lmufq36wtc2u", "content": "", "creation_timestamp": "2025-04-15T15:35:50.488253Z"}, {"uuid": "f14e0474-9657-4c59-a0c4-a166b683cdeb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "c933734a-9be8-4142-889e-26e95c752803", "vulnerability": "CVE-2024-55956", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/cb44f848-2e46-430a-b089-517177296c87", "content": "", "creation_timestamp": "2024-12-15T10:09:25.481534Z"}, {"uuid": "1722871a-fb36-4e14-beec-df003c0dd7c7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55956", "type": "seen", "source": "MISP/a9d21043-f825-4bac-8d2b-56fb9e8343e7", "content": "", "creation_timestamp": "2025-10-23T21:13:04.000000Z"}, {"uuid": "bb6a694f-37e7-49c5-bb4c-c68feef7edd2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55957", "type": "seen", "source": "MISP/71f05cce-2beb-4b80-8496-bbbabc032544", "content": "", "creation_timestamp": "2025-08-25T18:31:44.000000Z"}, {"uuid": "3b69e3da-4044-474b-98a5-7516f9108eef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55956", "type": "seen", "source": "https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/cleo_rce_cve_2024_55956.rb", "content": "", "creation_timestamp": "2025-01-15T21:13:37.000000Z"}, {"uuid": "bf3d060d-a3a1-471d-9797-9f1d89845e1d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55956", "type": "seen", "source": "MISP/acd0294c-4561-4286-a04e-5c02a1c67b1f", "content": "", "creation_timestamp": "2025-09-15T13:28:32.000000Z"}, {"uuid": "0b35f022-67d9-4d77-ac12-e3dd57086dec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55956", "type": "seen", "source": "MISP/acd0294c-4561-4286-a04e-5c02a1c67b1f", "content": "", "creation_timestamp": "2025-09-16T03:45:03.000000Z"}, {"uuid": "e468e04b-3d17-4ae6-9204-a4585d6436f6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55957", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/2737", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-55957\n\ud83d\udd39 Description: In Thermo Fisher Scientific Xcalibur before 4.7 SP1 and Thermo Foundation Instrument Control Software (ICSW) before 3.1 SP10, the driver packages have a local privilege escalation vulnerability due to improper access control permissions on Windows systems.\n\ud83d\udccf Published: 2025-01-22T00:00:00.000Z\n\ud83d\udccf Modified: 2025-01-23T14:49:24.159Z\n\ud83d\udd17 References:\n1. https://thermofisher.com\n2. https://assets.thermofisher.com/TFS-Assets/CORP/Product-Guides/Thermo_Scientific_Xcalibur_and_Foundation.pdf", "creation_timestamp": "2025-01-23T15:02:57.000000Z"}, {"uuid": "10e166b3-b382-46d8-88d2-d3b85be88604", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55954", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/2020", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-55954\n\ud83d\udd39 Description: OpenObserve is a cloud-native observability platform. A vulnerability in the user management endpoint `/api/{org_id}/users/{email_id}` allows an \"Admin\" role user to remove a \"Root\" user from the organization. This violates the intended privilege hierarchy, enabling a non-root user to remove the highest-privileged account. Due to insufficient role checks, the `remove_user_from_org` function does not prevent an \"Admin\" user from removing a \"Root\" user. As a result, an attacker with an \"Admin\" role can remove critical \"Root\" users, potentially gaining effective full control by eliminating the highest-privileged accounts. The `DELETE /api/{org_id}/users/{email_id}` endpoint is affected. This issue has been addressed in release version `0.14.1` and all users are advised to upgrade. There are no known workarounds for this vulnerability.\n\ud83d\udccf Published: 2025-01-16T19:30:39.218Z\n\ud83d\udccf Modified: 2025-01-16T19:30:39.218Z\n\ud83d\udd17 References:\n1. https://github.com/openobserve/openobserve/security/advisories/GHSA-m8gj-6r85-3r6m\n2. https://github.com/gaby/openobserve/blob/main/src/service/users.rs#L631", "creation_timestamp": "2025-01-16T19:56:03.000000Z"}, {"uuid": "794b7604-6743-42f9-88ca-b6087726b955", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "af0120d0-3dac-4a6a-974b-a9f33d2a9846", "vulnerability": "CVE-2024-55956", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/e72315c2-2733-4a5e-8546-9752df9a8b82", "content": "", "creation_timestamp": "2026-02-02T12:26:18.369759Z"}, {"uuid": "13a5e54d-23bb-4cb4-8960-11e9ec7ab756", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55958", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/2678", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-55958\n\ud83d\udd39 Description: Northern.tech CFEngine Enterprise Mission Portal 3.24.0, 3.21.5, and below allows XSS. The fixed versions are 3.24.1 and 3.21.6.\n\ud83d\udccf Published: 2025-01-21T00:00:00.000Z\n\ud83d\udccf Modified: 2025-01-22T21:56:59.416Z\n\ud83d\udd17 References:\n1. https://Northern.tech\n2. https://cfengine.com/blog/2025/cve-2024-55958/", "creation_timestamp": "2025-01-22T23:02:26.000000Z"}, {"uuid": "448f7026-9151-4bb2-9cdb-5fdf5600b026", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55955", "type": "seen", "source": "https://t.me/cvedetector/14051", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-55955 - Trend Micro Deep Security Privilege Escalation Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-55955 \nPublished : Dec. 31, 2024, 5:15 p.m. | 25\u00a0minutes ago \nDescription : An incorrect permissions assignment vulnerability in Trend Micro Deep Security 20.0 agents between versions 20.0.1-9400 and 20.0.1-23340 could allow a local attacker to escalate privileges on affected installations.  \n  \nPlease note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. \nSeverity: 6.7 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"31 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-31T18:44:00.000000Z"}, {"uuid": "bb47109b-89ee-4df8-9883-ef8fbd6d0d08", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55959", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/2755", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-55959\n\ud83d\udd39 Description: Northern.tech Mender Client 4.x before 4.0.5 has Insecure Permissions.\n\ud83d\udccf Published: 2025-01-21T00:00:00.000Z\n\ud83d\udccf Modified: 2025-01-23T15:48:29.427Z\n\ud83d\udd17 References:\n1. https://Northern.tech\n2. https://mender.io/blog/cve-2024-55959", "creation_timestamp": "2025-01-23T16:03:00.000000Z"}, {"uuid": "5d1da14b-c841-4f34-845d-e0f1f2abb927", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55957", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/7578", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-55957\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: In Thermo Fisher Scientific Xcalibur before 4.7 SP1 and Thermo Foundation Instrument Control Software (ICSW) before 3.1 SP10, the driver packages have a local privilege escalation vulnerability due to improper access control permissions on Windows systems.\n\ud83d\udccf Published: 2025-01-22T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-14T15:35:57.261Z\n\ud83d\udd17 References:\n1. https://thermofisher.com\n2. https://assets.thermofisher.com/TFS-Assets/CORP/Product-Guides/Thermo_Scientific_Xcalibur_and_Foundation.pdf", "creation_timestamp": "2025-03-14T15:43:32.000000Z"}, {"uuid": "25be1d71-1d60-48ad-9822-517f2e526317", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55957", "type": "seen", "source": "https://t.me/cvedetector/16137", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-55957 - Thermo Fisher Scientific Xcalibur Local Privilege Escalation Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-55957 \nPublished : Jan. 22, 2025, 6:15 p.m. | 27\u00a0minutes ago \nDescription : In Thermo Fisher Scientific Xcalibur before 4.7 SP1 and Thermo Foundation Instrument Control Software (ICSW) before 3.1 SP10, the driver packages have a local privilege escalation vulnerability due to improper access control permissions on Windows systems. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-22T19:44:55.000000Z"}, {"uuid": "838aa34e-9dc2-4140-b5bb-fec16ae387f0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55950", "type": "seen", "source": "https://t.me/cvedetector/13698", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-55950 - Tabby Terminal Entitlements Elevated Privileges Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-55950 \nPublished : Dec. 26, 2024, 10:15 p.m. | 44\u00a0minutes ago \nDescription : Tabby (formerly Terminus) is a highly configurable terminal emulator. Prior to 1.0.216, Tabby terminal emulator contains overly permissive entitlements that are unnecessary for its core functionality and plugin system, creating potential security vulnerabilities. The application currently holds powerful permissions including camera, microphone access, and the ability to access personal folders (Downloads, Documents, etc.) through Apple Events, while also maintaining dangerous entitlements that enable code injection. The concerning entitlements are com.apple.security.cs.allow-dyld-environment-variables and com.apple.security.cs.disable-library-validation. Since Tabby's plugins and themes are NodeJS-based without native libraries or frameworks, and no environment variables are used in the codebase, it is recommended to review and remove at least one of the entitlements (com.apple.security.cs.disable-library-validation or com.apple.security.cs.allow-dyld-environment-variables) to prevent DYLD_INSERT_LIBRARIES injection while maintaining full application functionality. This vulnerability is fixed in 1.0.216. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"26 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-27T00:05:53.000000Z"}, {"uuid": "1d370b48-75e9-4aa1-8e71-d21d89335b32", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55951", "type": "seen", "source": "https://t.me/cvedetector/13032", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-55951 - Metabase Cross-Sandbox Field Filter Information Disclosure Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-55951 \nPublished : Dec. 16, 2024, 8:15 p.m. | 17\u00a0minutes ago \nDescription : Metabase is an open-source data analytics platform. For new sandboxing configurations created in 1.52.0 till 1.52.2.4, sandboxed users are able to see field filter values from other sandboxed users. This is fixed in 1.52.2.5. Users on 1.52.0 or 1.52.1 or 1.5.2 should upgrade to 1.52.2.5. There are no workarounds for this issue aside from upgrading. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"16 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-16T21:33:06.000000Z"}, {"uuid": "88bd019c-eeda-4657-8e9d-0fccabb584d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55950", "type": "seen", "source": "https://t.me/CyberBulletin/1864", "content": "\u26a1\ufe0fCVE-2024-55950: Tabby Terminal Emulator Vulnerability Exposes macOS Users to Privacy and Security Risks.\n\n#CyberBulletin", "creation_timestamp": "2024-12-30T13:07:44.000000Z"}, {"uuid": "bff09c09-fa4d-4c57-b3dd-e51fed107738", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55953", "type": "seen", "source": "https://t.me/cvedetector/20246", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-27103 - DataEase File Deserialization Bypass\", \n  \"Content\": \"CVE ID : CVE-2025-27103 \nPublished : March 13, 2025, 5:15 p.m. | 43\u00a0minutes ago \nDescription : DataEase is an open source business intelligence and data visualization tool. Prior to version 2.10.6, a bypass for the patch for CVE-2024-55953 allows authenticated users to read and deserialize arbitrary files through the background JDBC connection. The vulnerability has been fixed in v2.10.6. No known workarounds are available. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"13 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-13T19:48:26.000000Z"}, {"uuid": "a162e3f3-85b7-4813-9493-96ddadf9c538", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-5595", "type": "seen", "source": "https://t.me/cvedetector/2328", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-5595 - Essential Blocks Cross-Site Scripting (XSS) Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-5595 \nPublished : Aug. 2, 2024, 6:15 a.m. | 41\u00a0minutes ago \nDescription : The Essential Blocks  WordPress plugin before 4.7.0 does not validate and escape some of its block options before outputting them back in a page/post where the block is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"02 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-02T09:00:01.000000Z"}, {"uuid": "50165a4f-c039-48d9-9ef0-e5f192ee00ff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55956", "type": "seen", "source": "https://t.me/cvedetector/12902", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-55956 - Cleo Harmony/Linux LexiCom Arbitrary Command Execution Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-55956 \nPublished : Dec. 13, 2024, 9:15 p.m. | 38\u00a0minutes ago \nDescription : In Cleo Harmony before 5.8.0.24, VLTrader before 5.8.0.24, and LexiCom before 5.8.0.24, an unauthenticated user can import and execute arbitrary Bash or PowerShell commands on the host system by leveraging the default settings of the Autorun directory. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"13 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-13T23:18:15.000000Z"}, {"uuid": "28fb998f-4833-4885-b681-c999ddd98fef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55952", "type": "seen", "source": "https://t.me/cvedetector/13233", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-55952 - DataEase Remote Code Execution Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-55952 \nPublished : Dec. 18, 2024, 7:15 p.m. | 37\u00a0minutes ago \nDescription : DataEase is an open source business analytics tool. Authenticated users can remotely execute code through the backend JDBC connection. When constructing the jdbc connection string, the parameters are not filtered. Constructing the host as ip:5432/test/?socketFactory=org.springframework.context.support.ClassPathXmlApplicationContext&amp;socketFactoryArg=http://ip:5432/1.xml&amp;a= can trigger the ClassPathXmlApplicationContext construction method. The vulnerability has been fixed in v1.18.27. Users are advised to upgrade. There are no known workarounds for this vulnerability. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"18 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-18T21:13:33.000000Z"}, {"uuid": "f118ed0a-dacf-45f5-8a15-14223b6f29fa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55953", "type": "seen", "source": "https://t.me/cvedetector/13224", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-55953 - DataEase Unsandboxed File Deserialization Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-55953 \nPublished : Dec. 18, 2024, 7:15 p.m. | 37\u00a0minutes ago \nDescription : DataEase is an open source business analytics tool. Authenticated users can read and deserialize arbitrary files through the background JDBC connection. When constructing the jdbc connection string, the parameters are not filtered. This vulnerability has been fixed in v1.18.27. Users are advised to upgrade. There are no known workarounds for this vulnerability. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"18 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-18T21:13:20.000000Z"}, {"uuid": "53ff511f-021c-4ab7-b7e1-19db7b75de83", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55956", "type": "exploited", "source": "Telegram/KkEHZ8Kc4RxBBwVi2o3_RDYldlD_1czYpHbp-0IRhbjw880M", "content": "", "creation_timestamp": "2025-01-01T23:14:33.000000Z"}, {"uuid": "c7bde799-8bf2-47c9-ab94-4206a615b9d8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55953", "type": "seen", "source": "Telegram/epVQzs2fwKyiT0yyPJWGBQPSZ0FdTR1E4s44HAxhoKCkyPtt", "content": "", "creation_timestamp": "2025-02-20T23:26:55.000000Z"}, {"uuid": "7eefa5d3-0083-4a59-8a1f-4dd9c1654fb6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55952", "type": "seen", "source": "Telegram/dRP6a6Ya1aIndRCDkvnfQabYrA4rAxqYlALU4rFX9zu7zMmb", "content": "", "creation_timestamp": "2025-02-20T23:26:55.000000Z"}, {"uuid": "df956837-efa3-40e3-a48a-765e5ac7844f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55950", "type": "seen", "source": "https://t.me/CyberBulletin/26962", "content": "\u26a1\ufe0fCVE-2024-55950: Tabby Terminal Emulator Vulnerability Exposes macOS Users to Privacy and Security Risks.\n\n#CyberBulletin", "creation_timestamp": "2024-12-30T13:07:44.000000Z"}, {"uuid": "1175b8f9-baf2-4a35-a10f-32670cb02f53", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55956", "type": "exploited", "source": "https://t.me/true_secator/6595", "content": "\u0412 \u0431\u043b\u0438\u0436\u0430\u0439\u0448\u0435\u0435 \u0432\u0440\u0435\u043c\u044f \u0431\u0430\u043d\u0434\u0430 Cl0p \u043d\u0430\u043c\u0435\u0440\u0435\u043d\u0430 \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u044c \u0438\u043c\u0435\u043d\u0430 \u0441\u0432\u043e\u0438\u0445 66 \u0436\u0435\u0440\u0442\u0432, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043d\u0430 \u0434\u043d\u044f\u0445 \u0440\u0430\u0437\u043c\u0435\u0441\u0442\u0438\u043b\u0438\u0441\u044c \u043d\u0430 DLS \u0432\u044b\u043c\u043e\u0433\u0430\u0442\u0435\u043b\u0435\u0439 \u0432 \u0440\u0430\u043c\u043a\u0430\u0445 \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u0438 \u043f\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 0-day \u0432 \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u0430\u0445 \u0434\u043b\u044f \u043f\u0435\u0440\u0435\u0434\u0430\u0447\u0438 \u0444\u0430\u0439\u043b\u043e\u0432 \u043e\u0442 \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0447\u0438\u043a\u0430 \u043a\u043e\u0440\u043f\u043e\u0440\u0430\u0442\u0438\u0432\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Cleo.\n\n\u0412 \u0441\u0435\u0440\u0435\u0434\u0438\u043d\u0435 \u0434\u0435\u043a\u0430\u0431\u0440\u044f Cleo \u0432\u0437\u044f\u043b\u0438 \u043d\u0430 \u0441\u0435\u0431\u044f \u043e\u0442\u0432\u0435\u0440\u0436\u0435\u043d\u043d\u043e\u0441\u0442\u044c \u0437\u0430 \u0430\u0442\u0430\u043a\u0438 Cleo, \u0437\u0430\u044f\u0432\u0438\u0432 \u043e \u0432\u0437\u043b\u043e\u043c\u0435 \u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e\u0433\u043e \u0431\u043e\u043b\u044c\u0448\u043e\u0433\u043e \u0447\u0438\u0441\u043b\u0430 \u0446\u0435\u043b\u0435\u0439. \u041d\u0430 DLS \u043f\u043e\u043c\u0435\u0441\u0442\u0438\u043b\u0438 \u0442\u0435\u0445, \u0441 \u043a\u0435\u043c \u0435\u0449\u0435 \u0445\u0430\u043a\u0435\u0440\u0430\u043c \u043d\u0435 \u0443\u0434\u0430\u043b\u043e\u0441\u044c \u0441\u0432\u044f\u0437\u0430\u0442\u044c\u0441\u044f \u0434\u043b\u044f \u043e\u0431\u0441\u0443\u0436\u0434\u0435\u043d\u0438\u044f \u0443\u0441\u043b\u043e\u0432\u0438\u0439 \u0432\u044b\u043a\u0443\u043f\u0430.\n\n\u041e\u0434\u043d\u0443 \u0438\u0437 \u043d\u0438\u0445 \u0432\u0441\u0435 \u0436\u0435 \u043e\u043f\u0443\u0431\u043b\u0438\u0447\u0438\u043b\u0438 \u0434\u043b\u044f \u043f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0438\u044f \u0441\u0432\u043e\u0438\u0445 \u043f\u043b\u0430\u043d\u043e\u0432. \u0416\u0435\u0440\u0442\u0432\u043e\u0439 \u043e\u043a\u0430\u0437\u0430\u043b\u0441\u044f \u043f\u043e\u0441\u0442\u0430\u0432\u0449\u0438\u043a \u041f\u041e \u0434\u043b\u044f \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0446\u0435\u043f\u043e\u0447\u043a\u0430\u043c\u0438 \u043f\u043e\u0441\u0442\u0430\u0432\u043e\u043a Blue Yonder. \u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u044f \u043e\u0441\u0442\u0430\u0432\u0448\u0438\u0445\u0441\u044f \u043e\u0431\u0435\u0449\u0430\u044e\u0442 \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u044c 30 \u0434\u0435\u043a\u0430\u0431\u0440\u044f, \u0435\u0441\u043b\u0438 \u0442\u043e\u043b\u044c\u043a\u043e \u043f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u0438\u0442\u0435\u043b\u0438 \u043d\u0435 \u0432\u044b\u0439\u0434\u0435\u0442 \u043d\u0430 \u0441\u0432\u044f\u0437\u044c.\n\n\u041f\u0440\u0438 \u044d\u0442\u043e\u043c \u0441\u0443\u0449\u0435\u0441\u0442\u0432\u0443\u044e\u0442 \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u044b\u0435 \u043f\u043e\u0434\u043e\u0437\u0440\u0435\u043d\u0438\u044f, \u0447\u0442\u043e\u00a0\u0430\u0442\u0430\u043a\u0430 Blue Yonder, \u043f\u043e\u0440\u0430\u0437\u0438\u0432\u0448\u0430\u044f \u0441\u043b\u0435\u0434\u043e\u043c Starbucks \u0438 \u043d\u0435\u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043a\u0440\u0443\u043f\u043d\u044b\u0435 \u0441\u0435\u0442\u0438 \u043e\u0431\u0449\u0435\u043f\u0438\u0442\u0430, \u0431\u044b\u043b\u0430 \u043e\u0441\u0443\u0449\u0435\u0441\u0442\u0432\u043b\u0435\u043d\u0430 \u0441 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435\u043c \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 Cleo.\n\n\u041f\u0440\u0430\u0432\u0434\u0430 \u0442\u043e\u0433\u0434\u0430, \u043e\u0442\u0432\u0435\u0442\u0441\u0442\u0432\u0435\u043d\u043d\u043e\u0441\u0442\u044c\u00a0\u0437\u0430 \u0430\u0442\u0430\u043a\u0443 Blue Yonder \u0432\u0437\u044f\u043b\u0430 \u043d\u0430 \u0441\u0435\u0431\u044f \u043d\u043e\u0432\u0430\u044f \u0433\u0440\u0443\u043f\u043f\u0430 \u0432\u044b\u043c\u043e\u0433\u0430\u0442\u0435\u043b\u0435\u0439 \u043f\u043e\u0434 \u043d\u0430\u0437\u0432\u0430\u043d\u0438\u0435\u043c Termite, \u043d\u043e \u043f\u043e\u0437\u0436\u0435 \u0441\u0442\u0430\u043b\u043e \u043f\u043e\u043d\u044f\u0442\u043d\u043e, \u0447\u0442\u043e \u0437\u0430 \u043d\u0435\u0439 \u0441\u0442\u043e\u044f\u0442 \u0443\u0436\u0435 \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u044b\u0435 \u043f\u043e MOVEit \u0438 \u043f\u0440\u043e\u0447\u0438\u043c \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u044f\u043c \u0443\u0447\u0430\u0441\u0442\u043d\u0438\u043a\u0438 Cl0p.\n\n\u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 \u0442\u0430\u043a\u0436\u0435 \u043f\u043e\u043b\u0430\u0433\u0430\u044e\u0442, \u0447\u0442\u043e \u0437\u0430 \u0430\u0442\u0430\u043a\u0430\u043c\u0438 \u043d\u0430 Harmony, VLTrader \u0438 LexiCom \u0441 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435\u043c CVE-2024-50623 \u0438 CVE-2024-55956 \u043c\u043e\u0433\u0443\u0442 \u0441\u0442\u043e\u044f\u0442\u044c \u0438 \u0434\u0440\u0443\u0433\u0438\u0435 \u0433\u0440\u0443\u043f\u043f\u044b \u0443\u0433\u0440\u043e\u0437 \u0441 \u0442\u0435\u0445 \u043f\u043e\u0440, \u043a\u0430\u043a \u0441\u0442\u0430\u043b\u043e \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u043e \u043e \u0441\u0443\u0449\u0435\u0441\u0442\u0432\u043e\u0432\u0430\u043d\u0438\u0438 \u043f\u0440\u043e\u0431\u043b\u0435\u043c \u0432 \u0440\u0435\u0448\u0435\u043d\u0438\u044f\u0445 Cleo.\n\n\u0423\u0447\u0438\u0442\u044b\u0432\u0430\u044f, \u0447\u0442\u043e \u0443 Cleo \u0431\u043e\u043b\u0435\u0435 4000 \u043a\u043b\u0438\u0435\u043d\u0442\u043e\u0432, \u043c\u0430\u0441\u0448\u0442\u0430\u0431 \u043d\u043e\u0432\u043e\u0433\u043e \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430 \u043c\u043e\u0436\u0435\u0442 \u043e\u043a\u0430\u0437\u0430\u0442\u044c\u0441\u044f \u0441\u043e\u043f\u043e\u0441\u0442\u0430\u0432\u0438\u043c \u0441 \u043f\u0440\u043e\u0448\u043b\u044b\u043c\u0438 \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u044f\u043c\u0438 Cl0p. \u041d\u043e \u0431\u0443\u0434\u0435\u043c \u043f\u043e\u0441\u043c\u043e\u0442\u0440\u0435\u0442\u044c.", "creation_timestamp": "2024-12-28T13:06:09.000000Z"}, {"uuid": "79622dd7-254d-4203-9f9c-b582b16b0f4a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55956", "type": "published-proof-of-concept", "source": "https://t.me/CyberDilara/1448", "content": "Cleo LexiCom, VLTrader, and Harmony Unauthenticated Remote Code Execution (CVE-2024-55956) #19793\n\nhttps://github.com/rapid7/metasploit-framework/pull/19793", "creation_timestamp": "2025-01-14T12:27:32.000000Z"}]}