{"vulnerability": "cve-2025-2479", "sightings": [{"uuid": "3653e131-be7b-44dd-8775-add3e9bb261c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24792", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113912358161091347", "content": "", "creation_timestamp": "2025-01-29T15:30:45.451866Z"}, {"uuid": "1f2c2b1e-1f9d-4917-89e7-e1db594be3e6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24790", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113912920293587523", "content": "", "creation_timestamp": "2025-01-29T17:53:42.763206Z"}, {"uuid": "e0cb773e-b4af-454b-8e76-a158133cc84e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24792", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lgvekraxd72w", "content": "", "creation_timestamp": "2025-01-29T16:16:24.061050Z"}, {"uuid": "04d440b8-e4b4-4f57-95c6-0c202c1ffe88", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24791", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113912714697083852", "content": "", "creation_timestamp": "2025-01-29T17:01:25.582496Z"}, {"uuid": "47dd3617-363b-47d2-a403-f2841db476b7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24790", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lgvlay3sun2w", "content": "", "creation_timestamp": "2025-01-29T18:16:12.437051Z"}, {"uuid": "f4400b6e-df65-4025-a470-3646a4371766", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24791", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lgvhvab7cu2h", "content": "", "creation_timestamp": "2025-01-29T17:15:56.838367Z"}, {"uuid": "db89f2fc-4eed-4758-b2a3-0455e6a3c6e5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24790", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lgvojt5guh2i", "content": "", "creation_timestamp": "2025-01-29T19:14:51.556732Z"}, {"uuid": "dc0540f8-8b1f-4733-9454-0ba4bcbf9f08", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24792", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lgvojsnlk62e", "content": "", "creation_timestamp": "2025-01-29T19:14:49.520721Z"}, {"uuid": "84bb0722-4024-466a-9351-3b162aaa517d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24791", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lgvojtupdy2r", "content": "", "creation_timestamp": "2025-01-29T19:14:55.817852Z"}, {"uuid": "995f6d61-dc55-475f-a32b-15a60c70a51d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-24799.yaml", "content": "", "creation_timestamp": "2025-03-31T08:48:23.000000Z"}, {"uuid": "4846091c-f4a0-4a2a-85a5-f9c46313ebe4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24793", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113913533939678038", "content": "", "creation_timestamp": "2025-01-29T20:29:46.477498Z"}, {"uuid": "01d9305f-2af4-48b3-a806-a11de4385643", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24794", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113913533956588236", "content": "", "creation_timestamp": "2025-01-29T20:29:46.728125Z"}, {"uuid": "66ae91cb-a639-4aa7-abd9-bb05f2d75c88", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24795", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113913558925506767", "content": "", "creation_timestamp": "2025-01-29T20:36:07.552776Z"}, {"uuid": "7fe388c0-0688-453e-a11d-a303d7e02f50", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24793", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lgvvbwchfe2b", "content": "", "creation_timestamp": "2025-01-29T21:15:41.137671Z"}, {"uuid": "741d1fa2-ffe7-4a93-ab3e-5a94cfe0fe8a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24794", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lgvvbysyx62h", "content": "", "creation_timestamp": "2025-01-29T21:15:43.638150Z"}, {"uuid": "1ad0a09a-e7e0-4a19-90a1-2a9158f31dbb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24795", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lgvvc36cce2c", "content": "", "creation_timestamp": "2025-01-29T21:15:46.113510Z"}, {"uuid": "0651c378-a971-4474-9604-3ac0d681f1af", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114185140719428080", "content": "", "creation_timestamp": "2025-03-18T19:42:57.176792Z"}, {"uuid": "7f6d6980-754d-4bec-a293-67e91f1ab6a8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24796", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3ljqit6465y2u", "content": "", "creation_timestamp": "2025-03-06T22:04:57.361835Z"}, {"uuid": "25077fc9-ab62-4b44-ab13-dc95b5dc06db", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "seen", "source": "https://bsky.app/profile/r-netsec-bot.bsky.social/post/3lkt4jwpsi22b", "content": "", "creation_timestamp": "2025-03-20T16:28:14.371564Z"}, {"uuid": "ea984133-ee02-4436-b84a-5f4ddd35dcb9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lkoihzjhl52s", "content": "", "creation_timestamp": "2025-03-18T20:18:39.657561Z"}, {"uuid": "c6e4c302-7c8d-4749-8c18-ebe1c27280ee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "seen", "source": "https://bsky.app/profile/r-netsec.bsky.social/post/3lk6kdzgvaa2a", "content": "", "creation_timestamp": "2025-03-12T12:09:32.722670Z"}, {"uuid": "e97a70b6-0c7e-43ee-baa1-1381b6d16279", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "seen", "source": "https://infosec.exchange/users/decio/statuses/114154763751292664", "content": "", "creation_timestamp": "2025-03-13T10:57:43.360502Z"}, {"uuid": "fc06e0c9-5814-4c46-8097-bcfe81d91f3e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "seen", "source": "https://bsky.app/profile/bearstech.com/post/3lknbcpxkch2n", "content": "", "creation_timestamp": "2025-03-18T08:37:42.657501Z"}, {"uuid": "2e68d1a6-68d1-4c6d-b37b-7323eaf42d58", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "seen", "source": "https://bsky.app/profile/r-netsec-bot.bsky.social/post/3lk6geieskt2j", "content": "", "creation_timestamp": "2025-03-12T10:58:14.165853Z"}, {"uuid": "3c0c8d8b-637f-46f2-bf27-470473697af2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "seen", "source": "https://bsky.app/profile/it-connect.bsky.social/post/3lkn3vvzuf32u", "content": "", "creation_timestamp": "2025-03-18T07:01:04.622200Z"}, {"uuid": "cd132d26-b01c-4902-9be9-4fe1850d139d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "seen", "source": "https://bsky.app/profile/buherator.bsky.social/post/3lk6i6evc3a2c", "content": "", "creation_timestamp": "2025-03-12T11:30:36.129089Z"}, {"uuid": "ef0f45b2-e190-4d2d-bc68-84411e2554f1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3llcon6jeob2f", "content": "", "creation_timestamp": "2025-03-26T21:02:14.641248Z"}, {"uuid": "5226b67e-1e77-44b4-a640-c41af8d46e2c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "seen", "source": "https://bsky.app/profile/dinosn.bsky.social/post/3lk6nzfq5z227", "content": "", "creation_timestamp": "2025-03-12T13:15:11.824772Z"}, {"uuid": "213cd1e4-f913-4f39-bbe0-2d0105a603cb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3llubw2s4662d", "content": "", "creation_timestamp": "2025-04-02T21:02:21.447220Z"}, {"uuid": "95e70183-ffd0-4827-bc54-94acd7baf3f2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24791", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114263601722430109", "content": "", "creation_timestamp": "2025-04-01T16:16:37.129891Z"}, {"uuid": "870d3fa4-25b3-4cd7-babf-c798285f072e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24791", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114263601722430109", "content": "", "creation_timestamp": "2025-04-01T16:16:37.177493Z"}, {"uuid": "6803dbfc-75ad-4f60-bde0-0197f251297e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "seen", "source": "https://bsky.app/profile/redteamnews.bsky.social/post/3llgwbglint2q", "content": "", "creation_timestamp": "2025-03-28T13:29:20.440701Z"}, {"uuid": "0d4506d7-a66f-470c-9cc4-08d9f8d580df", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24797", "type": "seen", "source": "https://bsky.app/profile/cecallihelper.bsky.social/post/3lmuduoifk22u", "content": "", "creation_timestamp": "2025-04-15T15:02:34.352244Z"}, {"uuid": "e7c1c3f7-77b2-4fbe-92ef-81feec7b3873", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-06-24)", "content": "", "creation_timestamp": "2025-06-24T00:00:00.000000Z"}, {"uuid": "224b9ba9-71b4-4b62-b2b0-5919c48a37aa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24797", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114339178869394068", "content": "", "creation_timestamp": "2025-04-15T00:36:52.737226Z"}, {"uuid": "8a5690e3-7fdc-4787-888b-8df8ffcc264d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "seen", "source": "https://infosec.exchange/users/obivan/statuses/114358698972932107", "content": "", "creation_timestamp": "2025-04-18T11:21:05.483081Z"}, {"uuid": "8d360253-fa02-4259-adc1-0d0061992f67", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24797", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lmt2bkpwbb2c", "content": "", "creation_timestamp": "2025-04-15T02:38:09.368195Z"}, {"uuid": "b35174f0-460a-431e-8b20-2b3ff760833b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24797", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114339696254321945", "content": "", "creation_timestamp": "2025-04-15T02:48:27.296108Z"}, {"uuid": "f8c17b10-8a62-4f67-aee2-5f8e4c234ec7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3ln6ztjwhil2h", "content": "", "creation_timestamp": "2025-04-19T21:02:19.584369Z"}, {"uuid": "47a5726a-e13d-4e6b-a908-3d1ec7ee127b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "seen", "source": "https://bsky.app/profile/obivan.infosec.exchange.ap.brid.gy/post/3ln3ivivgqpi2", "content": "", "creation_timestamp": "2025-04-18T11:26:57.178921Z"}, {"uuid": "1eb387f8-0614-41e1-b6a7-0fea8352376f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-05-24)", "content": "", "creation_timestamp": "2025-05-24T00:00:00.000000Z"}, {"uuid": "c9e3bec1-4f88-4d07-bd15-5705f7901b4d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-24797", "type": "seen", "source": "https://bsky.app/profile/shiojiri.com/post/3lncclmqqtk2m", "content": "", "creation_timestamp": "2025-04-21T04:16:52.377222Z"}, {"uuid": "44ac8a1e-cb74-4c30-ace8-708e544879fe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24797", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3lncesjbuzq24", "content": "", "creation_timestamp": "2025-04-21T04:56:31.845201Z"}, {"uuid": "9e95653a-d0e1-4dcd-8a84-493e417a84ab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24797", "type": "seen", "source": "https://mastodon.social/users/jpmens/statuses/114468221827666518", "content": "", "creation_timestamp": "2025-05-07T19:34:12.811924Z"}, {"uuid": "ed8fb391-f2f8-4ea3-91f7-dc4e592056cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24797", "type": "seen", "source": "https://poliverso.org/objects/0477a01e-a45bca37-2eeedf36bb4d3150", "content": "", "creation_timestamp": "2025-05-09T17:05:26.815421Z"}, {"uuid": "6ec00603-c0c3-4636-b38d-56ca74fe1b3e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-05-25)", "content": "", "creation_timestamp": "2025-05-25T00:00:00.000000Z"}, {"uuid": "ecafd530-20be-4f4f-acb5-486053400fcb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "seen", "source": "MISP/abd2a650-703d-4a2f-9f73-3051c1672e27", "content": "", "creation_timestamp": "2025-08-09T13:26:57.000000Z"}, {"uuid": "e68c01ca-63c2-4126-b8d5-c6c9d8c8abe9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-05-12)", "content": "", "creation_timestamp": "2025-05-12T00:00:00.000000Z"}, {"uuid": "14b1f6ce-8219-41eb-bc3c-6573c301943d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "seen", "source": "MISP/a9d21043-f825-4bac-8d2b-56fb9e8343e7", "content": "", "creation_timestamp": "2025-10-23T21:13:04.000000Z"}, {"uuid": "0dda3dbf-c55f-4782-a755-e5a956026281", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "seen", "source": "https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/gather/glpi_inventory_plugin_unauth_sqli.rb", "content": "", "creation_timestamp": "2025-03-25T18:52:31.000000Z"}, {"uuid": "29bd53ab-35f7-4fc7-8db0-d4c5c620c560", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "seen", "source": "MISP/abd2a650-703d-4a2f-9f73-3051c1672e27", "content": "", "creation_timestamp": "2025-08-11T18:47:40.000000Z"}, {"uuid": "068ff3a7-535d-46d5-a3af-7ff090dd55ef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24796", "type": "seen", "source": "MISP/4937e86f-f5bd-4d09-8bda-88a7440077f3", "content": "", "creation_timestamp": "2025-08-19T02:47:43.000000Z"}, {"uuid": "af1e1675-8604-4747-985e-9bf3f71a98e3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "seen", "source": "https://mastodon.social/ap/users/115426718704364579/statuses/115566745736477059", "content": "", "creation_timestamp": "2025-11-17T19:43:17.621719Z"}, {"uuid": "5e9474b2-665b-476c-9da5-2b71d235873f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "seen", "source": "https://bsky.app/profile/netsecio.bsky.social/post/3m5tybqq2uq24", "content": "", "creation_timestamp": "2025-11-17T19:43:29.962950Z"}, {"uuid": "115beaaa-5c3e-4b64-aac8-c1b50c6defd4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-11-11)", "content": "", "creation_timestamp": "2025-11-11T00:00:00.000000Z"}, {"uuid": "5e155dee-cf8a-41f2-a67b-1224e83d78e7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24796", "type": "seen", "source": "MISP/4937e86f-f5bd-4d09-8bda-88a7440077f3", "content": "", "creation_timestamp": "2025-08-18T13:31:23.000000Z"}, {"uuid": "8a9ad729-8fa3-4e30-9dbe-e989bf08a139", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "seen", "source": "MISP/f20bd5ae-cac7-43b7-aaa4-ff1d9fb419d8", "content": "", "creation_timestamp": "2026-02-23T13:44:40.000000Z"}, {"uuid": "1d0bb99a-be44-4726-b2d5-ef235ec45730", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-01-06)", "content": "", "creation_timestamp": "2026-01-06T00:00:00.000000Z"}, {"uuid": "a521cc4d-c352-4480-befa-a6ea3e8487f1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-02-14)", "content": "", "creation_timestamp": "2026-02-14T00:00:00.000000Z"}, {"uuid": "6baaf354-0483-4fea-b5a8-9eb11532b3b0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24790", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/3380", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-24790\n\ud83d\udd25 CVSS Score: 4.3 (CVSS_V3)\n\ud83d\udd39 Description: ### Issue\nSnowflake discovered and remediated a vulnerability in the Snowflake JDBC Driver. On Linux systems, when temporary credential caching is enabled, the Snowflake JDBC Driver will cache temporary credentials locally in a world-readable file.\n\nThis vulnerability affects versions 3.6.8 through 3.21.0. Snowflake fixed the issue in version 3.22.0.\n\n### Vulnerability Details\nOn Linux, when either EXTERNALBROWSER or USERNAME_PASSWORD_MFA authentication methods are used with temporary credential caching enabled, the Snowflake JDBC Driver will cache temporary credentials in a local file. In the vulnerable versions of the Driver, this file is created with world-readable permissions.\n\n### Solution\nSnowflake released version 3.22.0 of the Snowflake JDBC Driver, which fixes this issue. We recommend users upgrade to version 3.22.0.\n\n### Additional Information\nIf you discover a security vulnerability in one of our products or websites, please report the issue to HackerOne. For more information, please see our [Vulnerability Disclosure Policy](https://hackerone.com/snowflake?type=team).\n\ud83d\udccf Published: 2025-01-29T18:42:07Z\n\ud83d\udccf Modified: 2025-01-29T18:42:07Z\n\ud83d\udd17 References:\n1. https://github.com/snowflakedb/snowflake-jdbc/security/advisories/GHSA-33g6-495w-v8j2\n2. https://nvd.nist.gov/vuln/detail/CVE-2025-24790\n3. https://github.com/snowflakedb/snowflake-jdbc/commit/9e1a5acf12406b16c4780ca013f4c4db48b74b59\n4. https://github.com/snowflakedb/snowflake-jdbc", "creation_timestamp": "2025-01-29T19:11:16.000000Z"}, {"uuid": "03393be2-3640-49ed-a4a1-66a9ffc3cbec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/50739", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-24799 Exploit: GLPI - Unauthenticated SQL Injection\nURL\uff1ahttps://github.com/Rosemary1337/CVE-2025-24799\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-09-08T13:48:15.000000Z"}, {"uuid": "0c6b04fb-7d86-43e4-b0d9-fc33dd34fa63", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "c933734a-9be8-4142-889e-26e95c752803", "vulnerability": "CVE-2025-24799", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/2002296b-dd57-45e0-b127-feeaa53cc204", "content": "", "creation_timestamp": "2025-03-13T09:40:21.398312Z"}, {"uuid": "5eb62e43-eb54-4553-9f4e-404295f71592", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/50738", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-24799 Exploit: GLPI - Unauthenticated SQL Injection\nURL\uff1ahttps://github.com/Rosemary1337/CVE-2025-24799\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-09-08T13:45:30.000000Z"}, {"uuid": "132c35f9-d59e-46ca-9f12-1cf6d28b9ee9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "exploited", "source": "https://t.me/true_secator/7908", "content": "GreyNoise \u0441\u043e\u043e\u0431\u0449\u0430\u0435\u0442 \u043e 417 \u0441\u0435\u0430\u043d\u0441\u0430\u0445 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u043d\u0435\u0434\u0430\u0432\u043d\u043e \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u043d\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 Ivanti Endpoint Manager Mobile (EPMM), \u0441\u043e\u0432\u0435\u0440\u0448\u0435\u043d\u043d\u044b\u0445 \u0441 8 IP \u0432 \u043f\u0435\u0440\u0438\u043e\u0434 1-9 \u0444\u0435\u0432\u0440\u0430\u043b\u044f, \u0438\u0437 \u043a\u043e\u0442\u043e\u0440\u044b\u0445 346 (83% \u043e\u0442 \u0432\u0441\u0435\u0445 \u043f\u043e\u043f\u044b\u0442\u043e\u043a) \u043f\u0440\u0438\u0445\u043e\u0434\u0438\u043b\u0438\u0441\u044c \u043d\u0430 \u043e\u0434\u0438\u043d 193.24.123[.]42 \u0432 \u0445\u043e\u0441\u0442\u0438\u043d\u0433\u043e\u0432\u043e\u0439 \u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u0435 PROSPERO.\n\n\u0412\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u0430\u044f \u0430\u043a\u0442\u0438\u0432\u043d\u043e\u0441\u0442\u044c \u043d\u0430\u0446\u0435\u043b\u0435\u043d\u0430 \u043d\u0430 CVE-2026-1281\u00a0(CVSS: 9,8), \u043e\u0434\u043d\u0443 \u0438\u0437 \u0434\u0432\u0443\u0445 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0445 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u0432 EPMM, \u043d\u0430\u0440\u044f\u0434\u0443 \u0441\u00a0CVE-2026-1340,\u00a0\u043a\u043e\u0442\u043e\u0440\u0430\u044f \u043c\u043e\u0436\u0435\u0442 \u0431\u044b\u0442\u044c \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0430 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u043e\u043c \u0434\u043b\u044f RCE.\n\n\u0412 \u043a\u043e\u043d\u0446\u0435 \u043f\u0440\u043e\u0448\u043b\u043e\u0433\u043e \u043c\u0435\u0441\u044f\u0446\u0430 Ivanti \u043f\u0440\u0438\u0437\u043d\u0430\u043b\u0430, \u0447\u0442\u043e \u00ab\u043e\u0447\u0435\u043d\u044c \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u043d\u043e\u0435 \u0447\u0438\u0441\u043b\u043e \u043a\u043b\u0438\u0435\u043d\u0442\u043e\u0432\u00bb \u043f\u043e\u0441\u0442\u0440\u0430\u0434\u0430\u043b\u043e \u0432 \u0440\u0435\u0437\u0443\u043b\u044c\u0442\u0430\u0442\u0435 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 0-day.\n\n\u0421 \u0442\u0435\u0445 \u043f\u043e\u0440 \u0440\u044f\u0434 \u0435\u0432\u0440\u043e\u043f\u0435\u0439\u0441\u043a\u0438\u0445 \u0433\u043e\u0441\u0441\u0442\u0440\u0443\u0443\u043a\u0442\u0443\u0440, \u0432\u043a\u043b\u044e\u0447\u0430\u044f \u0423\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u043e \u0437\u0430\u0449\u0438\u0442\u0435 \u0434\u0430\u043d\u043d\u044b\u0445 \u041d\u0438\u0434\u0435\u0440\u043b\u0430\u043d\u0434\u043e\u0432 (AP), \u0421\u0443\u0434\u0435\u0431\u043d\u044b\u0439 \u0441\u043e\u0432\u0435\u0442, \u0415\u0432\u0440\u043e\u043f\u0435\u0439\u0441\u043a\u0443\u044e \u043a\u043e\u043c\u0438\u0441\u0441\u0438\u044e \u0438 \u0444\u0438\u043d\u0441\u043a\u0443\u044e \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u044e Valtori, \u0441\u0442\u0430\u043b\u0438 \u0436\u0435\u0440\u0442\u0432\u0430\u043c\u0438 \u0430\u0442\u0430\u043a \u043d\u0435\u0438\u0437\u0432\u0435\u0441\u0442\u043d\u044b\u0445 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u043e\u0432, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044e\u0449\u0438\u0445 \u044d\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438.\n\n\u0414\u0430\u043b\u044c\u043d\u0435\u0439\u0448\u0438\u0439 \u0430\u043d\u0430\u043b\u0438\u0437 \u043f\u043e\u043a\u0430\u0437\u0430\u043b, \u0447\u0442\u043e \u043d\u0430 \u0442\u043e\u0442 \u0436\u0435 \u0445\u043e\u0441\u0442 \u043e\u0434\u043d\u043e\u0432\u0440\u0435\u043c\u0435\u043d\u043d\u043e \u043e\u0442\u0440\u0430\u0431\u0430\u0442\u044b\u0432\u0430\u043b \u0442\u0440\u0438 \u0434\u0440\u0443\u0433\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432: CVE-2026-21962\u00a0(Oracle WebLogic) - 2902 \u0441\u0435\u0441\u0441\u0438\u0438; CVE-2026-24061\u00a0(GNU InetUtils telnetd) - 497 \u0441\u0435\u0430\u043d\u0441\u043e\u0432 \u0438 CVE-2025-24799\u00a0(GLPI) - 200 \u0441\u0435\u0430\u043d\u0441\u043e\u0432.\n\nIP \u043f\u0435\u0440\u0435\u043a\u043b\u044e\u0447\u0430\u0435\u0442\u0441\u044f \u043c\u0435\u0436\u0434\u0443 300 \u0443\u043d\u0438\u043a\u0430\u043b\u044c\u043d\u044b\u043c\u0438 \u0441\u0442\u0440\u043e\u043a\u0430\u043c\u0438 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044c\u0441\u043a\u0438\u0445 \u0430\u0433\u0435\u043d\u0442\u043e\u0432, \u043e\u0445\u0432\u0430\u0442\u044b\u0432\u0430\u044e\u0449\u0438\u043c\u0438 Chrome, Firefox, Safari \u0438 \u043c\u043d\u043e\u0436\u0435\u0441\u0442\u0432\u043e \u0432\u0430\u0440\u0438\u0430\u043d\u0442\u043e\u0432 \u041e\u0421. \n\n\u041a\u0430\u043a \u043f\u043e\u043b\u0430\u0433\u0430\u044e\u0442 \u0432 GreyNoise, \u0442\u0430\u043a\u043e\u0435 \u0440\u0430\u0437\u043d\u043e\u043e\u0431\u0440\u0430\u0437\u0438\u0435 \u0444\u0438\u043d\u0433\u0435\u0440\u043f\u0440\u0438\u043d\u0442\u043e\u0432 \u0432 \u0441\u043e\u0447\u0435\u0442\u0430\u043d\u0438\u0438 \u0441 \u043e\u0434\u043d\u043e\u0432\u0440\u0435\u043c\u0435\u043d\u043d\u043e\u0439 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0435\u0439 \u0447\u0435\u0442\u044b\u0440\u0435\u0445 \u043d\u0435\u0441\u0432\u044f\u0437\u0430\u043d\u043d\u044b\u0445 \u041f\u041e \u0441\u043e\u043e\u0442\u0432\u0435\u0442\u0441\u0442\u0432\u0443\u0435\u0442 \u043f\u0440\u0438\u0437\u043d\u0430\u043a\u0430\u043c \u0430\u0432\u0442\u043e\u043c\u0430\u0442\u0438\u0437\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u043e\u0433\u043e \u0442\u0435\u0441\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f.\n\n\u041f\u043e \u043d\u0435\u043a\u043e\u0442\u043e\u0440\u044b\u043c \u0434\u0430\u043d\u043d\u044b\u043c, PROSPERO \u0441\u0432\u044f\u0437\u0430\u043d \u0441 \u0434\u0440\u0443\u0433\u043e\u0439 \u0430\u0432\u0442\u043e\u043d\u043e\u043c\u043d\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u043e\u0439 \u043f\u043e\u0434 \u043d\u0430\u0437\u0432\u0430\u043d\u0438\u0435\u043c Proton66, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u0430 \u0440\u0430\u0441\u043f\u0440\u043e\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0435\u043c \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u0445 \u041f\u041e \u0434\u043b\u044f \u041f\u041a \u0438 Android, \u0432\u043a\u043b\u044e\u0447\u0430\u044f GootLoader, Matanbuchus, SpyNote, Coper (Octo) \u0438 SocGholish.\n\nGreyNoise \u0442\u0430\u043a\u0436\u0435 \u043e\u0442\u043c\u0435\u0442\u0438\u043b\u0430, \u0447\u0442\u043e \u0432 85% \u0441\u043b\u0443\u0447\u0430\u0435\u0432 \u0430\u0442\u0430\u043a\u0438 \u043e\u0441\u0443\u0449\u0435\u0441\u0442\u0432\u043b\u044f\u043b\u0430\u0441\u044c \u0447\u0435\u0440\u0435\u0437 DNS \u0434\u043b\u044f \u043f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0438\u044f \u0442\u043e\u0433\u043e, \u0447\u0442\u043e \"\u0446\u0435\u043b\u044c \u043f\u0440\u0438\u0433\u043e\u0434\u043d\u0430 \u0434\u043b\u044f \u0430\u0442\u0430\u043a\u0438\", \u0431\u0435\u0437 \u0440\u0430\u0437\u0432\u0435\u0440\u0442\u044b\u0432\u0430\u043d\u0438\u044f \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0433\u043e \u041f\u041e \u0438\u043b\u0438 \u043a\u0440\u0430\u0436\u0438 \u0434\u0430\u043d\u043d\u044b\u0445.\n\n\u0421\u0442\u043e\u0438\u0442 \u043e\u0442\u043c\u0435\u0442\u0438\u0442\u044c, \u0447\u0442\u043e \u043d\u0435\u0441\u043a\u043e\u043b\u044c\u043a\u043e \u0434\u043d\u0435\u0439 \u0440\u0430\u043d\u0435\u0435 Defused Cyber \u0442\u0430\u043a\u0436\u0435 \u0441\u043e\u043e\u0431\u0449\u0438\u043b\u0430 \u043e \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u0438 \u0441 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435\u043c \u00ab\u0441\u043f\u044f\u0449\u0435\u0439 \u043e\u0431\u043e\u043b\u043e\u0447\u043a\u0438\u00bb, \u0432 \u0440\u0430\u043c\u043a\u0430\u0445 \u043a\u043e\u0442\u043e\u0440\u043e\u0439 \u0432 \u0441\u043a\u043e\u043c\u043f\u0440\u043e\u043c\u0435\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0435 \u044d\u043a\u0437\u0435\u043c\u043f\u043b\u044f\u0440\u044b EPMM \u043f\u043e \u043f\u0443\u0442\u0438 /mifs/403.jsp \u0431\u044b\u043b \u0440\u0430\u0437\u0432\u0435\u0440\u043d\u0443\u0442 \u043d\u0435\u0430\u043a\u0442\u0438\u0432\u043d\u044b\u0439 \u0437\u0430\u0433\u0440\u0443\u0437\u0447\u0438\u043a \u043a\u043b\u0430\u0441\u0441\u043e\u0432 Java \u0432 \u043e\u043f\u0435\u0440\u0430\u0442\u0438\u0432\u043d\u043e\u0439 \u043f\u0430\u043c\u044f\u0442\u0438. \n\n\u041f\u0440\u0438 \u044d\u0442\u043e\u043c \u043e\u0431\u0440\u0430\u0442\u043d\u044b\u0435 \u0432\u044b\u0437\u043e\u0432\u044b OAST \u0443\u043a\u0430\u0437\u044b\u0432\u0430\u044e\u0442 \u043d\u0430 \u0442\u043e, \u0447\u0442\u043e \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u044f \u043d\u0430\u0446\u0435\u043b\u0435\u043d\u0430 \u043d\u0430 \u043a\u0430\u0442\u0430\u043b\u043e\u0433\u0438\u0437\u0430\u0446\u0438\u044e \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u0445 \u0446\u0435\u043b\u0435\u0439, \u0431\u0435\u0437 \u0440\u0430\u0437\u0432\u0435\u0440\u0442\u044b\u0432\u0430\u043d\u0438\u044f \u043f\u043e\u043b\u0435\u0437\u043d\u044b\u0445 \u043d\u0430\u0433\u0440\u0443\u0437\u043e\u043a, \u0447\u0442\u043e \u043c\u043e\u0436\u0435\u0442 \u0443\u043a\u0430\u0437\u044b\u0432\u0430\u0442\u044c \u043d\u0430 \u043f\u0440\u043e\u0432\u0435\u0434\u0435\u043d\u0438\u0435 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u0438 \u043f\u0435\u0440\u0432\u043e\u043d\u0430\u0447\u0430\u043b\u044c\u043d\u043e\u0433\u043e \u0434\u043e\u0441\u0442\u0443\u043f\u0430.\n\n\u041f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f\u043c Ivanti EPMM \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u043e\u0432\u0430\u043b\u0438 \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0442\u044c \u043f\u0430\u0442\u0447\u0438, \u043f\u0440\u043e\u0432\u0435\u0441\u0442\u0438 \u0430\u0443\u0434\u0438\u0442 \u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u044b MDM, \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u043e\u0439 \u0438\u0437 \u0438\u043d\u0442\u0435\u0440\u043d\u0435\u0442\u0430, \u043f\u0440\u043e\u0441\u043c\u043e\u0442\u0440\u0435\u0442\u044c \u0436\u0443\u0440\u043d\u0430\u043b\u044b DNS \u043d\u0430 \u043f\u0440\u0435\u0434\u043c\u0435\u0442 \u043e\u0431\u0440\u0430\u0442\u043d\u044b\u0445 \u0432\u044b\u0437\u043e\u0432\u043e\u0432 \u043f\u043e \u0448\u0430\u0431\u043b\u043e\u043d\u0443 OAST, \u043e\u0442\u0441\u043b\u0435\u0436\u0438\u0432\u0430\u0442\u044c \u043f\u0443\u0442\u044c /mifs/403.jsp \u043d\u0430 \u044d\u043a\u0437\u0435\u043c\u043f\u043b\u044f\u0440\u0430\u0445 EPMM \u0438 \u0437\u0430\u0431\u043b\u043e\u043a\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u0430\u0432\u0442\u043e\u043d\u043e\u043c\u043d\u0443\u044e \u0441\u0438\u0441\u0442\u0435\u043c\u0443 PROSPERO (AS200593) \u043d\u0430 \u0443\u0440\u043e\u0432\u043d\u0435 \u043f\u0435\u0440\u0438\u043c\u0435\u0442\u0440\u0430 \u0441\u0435\u0442\u0438.\n\n\u0412 \u0441\u0432\u043e\u044e \u043e\u0447\u0435\u0440\u0435\u0434\u044c, Ivanti \u043f\u0440\u0435\u0434\u043e\u0441\u0442\u0430\u0432\u0438\u043b\u0430 \u00ab\u0432\u044b\u0441\u043e\u043a\u043e\u0442\u043e\u0447\u043d\u044b\u0435\u00bb IOCs, \u0442\u0435\u0445\u043d\u0438\u0447\u0435\u0441\u043a\u0438\u0439 \u0430\u043d\u0430\u043b\u0438\u0437 \u043d\u0430 \u043c\u043e\u043c\u0435\u043d\u0442 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u044f \u0443\u0433\u0440\u043e\u0437, \u0430 \u0442\u0430\u043a\u0436\u0435 \u0441\u043a\u0440\u0438\u043f\u0442 \u0434\u043b\u044f \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u043e\u0432, \u043a\u043e\u0442\u043e\u0440\u044b\u0439 \u0431\u044b\u043b \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0430\u043d \u0441\u043e\u0432\u043c\u0435\u0441\u0442\u043d\u043e \u0441 NCSC-NL \u0432 \u0440\u0430\u043c\u043a\u0430\u0445 \u043f\u0440\u043e\u0442\u0438\u0432\u043e\u0434\u0435\u0439\u0441\u0442\u0432\u0438\u0438 \u044d\u0442\u043e\u0439 \u0443\u0433\u0440\u043e\u0437\u0435. \u0418, \u0435\u0449\u0435 \u043d\u043e\u0432\u044b\u0439 \u043c\u0435\u0440\u0447 \u0441 \u043a\u043e\u0440\u0438\u0447\u043d\u0435\u0432\u044b\u043c \u043e\u0442\u0442\u0435\u043d\u043a\u043e\u043c.", "creation_timestamp": "2026-02-13T12:00:09.000000Z"}, {"uuid": "15691ce2-9474-4fc5-944b-469505450cc4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24796", "type": "seen", "source": "Telegram/qjFeT16plrrbOZ9Xd7Mp93IR58vuP2pihJERS77vJEVOuT6n", "content": "", "creation_timestamp": "2025-03-08T04:34:11.000000Z"}, {"uuid": "9542ed88-c293-4db3-b5bb-604d916fcbb0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24791", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/3379", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-24791\n\ud83d\udd25 CVSS Score: 4.3 (CVSS_V3)\n\ud83d\udd39 Description: ### Issue\nSnowflake discovered and remediated a vulnerability in the Snowflake NodeJS Driver. File permissions checks of the temporary credential cache could be bypassed by an attacker with write access to the local cache directory.\n\nThis vulnerability affects versions 1.12.0 through 2.0.1 on Linux. Snowflake fixed the issue in version 2.0.2.\n\n### Vulnerability Details\nOn Linux, when either EXTERNALBROWSER or USERNAME_PASSWORD_MFA authentication methods are used with temporary credential caching enabled, the Snowflake NodeJS Driver will cache temporary credentials in a local file. Due to a bug, the check verifying that the cache file can be accessed only by the user running the Driver always succeeded, but didn\u2019t verify the permissions or the ownership correctly. An attacker with write access to the local cache folder could plant an empty file there and the Driver would use it to store temporary credentials instead of rejecting it due to overly broad permissions.\n\n### Solution\nSnowflake released version 2.0.2 of the Snowflake NodeJS Driver, which fixes this issue. We recommend users upgrade to version 2.0.2.\n\n### Additional Information\nIf you discover a security vulnerability in one of our products or websites, please report the issue to HackerOne. For more information, please see our [Vulnerability Disclosure Policy](https://hackerone.com/snowflake?type=team).\n\ud83d\udccf Published: 2025-01-29T18:42:26Z\n\ud83d\udccf Modified: 2025-01-29T18:42:26Z\n\ud83d\udd17 References:\n1. https://github.com/snowflakedb/snowflake-connector-nodejs/security/advisories/GHSA-xfhv-wqj6-rx99\n2. https://nvd.nist.gov/vuln/detail/CVE-2025-24791\n3. https://github.com/snowflakedb/snowflake-connector-nodejs/commit/89731b3a4d61a75b721d13d4e47a7a3712ffa45f\n4. https://github.com/snowflakedb/snowflake-connector-nodejs", "creation_timestamp": "2025-01-29T19:11:15.000000Z"}, {"uuid": "efc232a0-eca5-45cc-83da-e92762b0da04", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24796", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/6763", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-24796\n\ud83d\udd25 CVSS Score: 6.3 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N)\n\ud83d\udd39 Description: Collabora Online is a collaborative online office suite based on LibreOffice. Macro support is disabled by default in Collabora Online, but can be enabled by an administrator. Collabora Online typically hosts each document instance within a jail and is allowed to download content from locations controlled by the net.lok_allow configuration option, which by default include the private IP ranges to enable access to the local network. If enabled, macros were allowed run executable binaries. By combining an ability to host executables, typically in the local network, in an allowed accessible location, with a macro enabled Collabora Online, it was then possible to install arbitrary binaries within the jail and execute them. These executables are restricted to the same jail file system and user as the document instance but can be used to bypass the additional limits on what network hosts are accessible and provide more flexibility as a platform for further attempts. This is issue is fixed in 24.04.12.4, 23.05.19, 22.05.25 and later macros.\n\ud83d\udccf Published: 2025-03-06T18:37:32.268Z\n\ud83d\udccf Modified: 2025-03-06T20:37:41.914Z\n\ud83d\udd17 References:\n1. https://github.com/CollaboraOnline/online/security/advisories/GHSA-4jjq-vgqp-qw45", "creation_timestamp": "2025-03-06T21:34:34.000000Z"}, {"uuid": "51ac14cc-75d1-4e17-bb1b-8be6a0754a26", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/51849", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aScanner for GLPI CVE-2025-24799 vulnerability\nURL\uff1ahttps://github.com/airbus-cert/CVE-2025-24799-scanner\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-09-16T12:56:34.000000Z"}, {"uuid": "430dcf72-fdc0-48d8-b86a-f20a310020c7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24797", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/11732", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-24797\n\ud83d\udd25 CVSS Score: 9.4 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H)\n\ud83d\udd39 Description: Meshtastic is an open source mesh networking solution. A fault in the handling of mesh packets containing invalid protobuf data can result in an attacker-controlled buffer overflow, allowing an attacker to hijack execution flow, potentially resulting in remote code execution. This attack does not require authentication or user interaction, as long as the target device rebroadcasts packets on the default channel. This vulnerability fixed in 2.6.2.\n\ud83d\udccf Published: 2025-04-14T23:25:19.152Z\n\ud83d\udccf Modified: 2025-04-14T23:25:19.152Z\n\ud83d\udd17 References:\n1. https://github.com/meshtastic/firmware/security/advisories/GHSA-33hw-xhfh-944r", "creation_timestamp": "2025-04-14T23:53:47.000000Z"}, {"uuid": "de4aaf62-4416-449e-9de5-469b14de2e1d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/51851", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aScanner for GLPI CVE-2025-24799 vulnerability\nURL\uff1ahttps://github.com/airbus-cert/CVE-2025-24799-scanner\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-09-16T13:10:06.000000Z"}, {"uuid": "ae884cef-9ba9-4e61-ad92-9d196a21cd1e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24797", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/32302", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aMeshtastic buffer overflow vulnerability - CVE-2025-24797\nURL\uff1ahttps://github.com/Alainx277/CVE-2025-24797\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-16T19:32:30.000000Z"}, {"uuid": "ea4ee24c-eda9-42ab-86b7-59a596a1a2c7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/31993", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-24799 Exploit: GLPI - Unauthenticated SQL Injection\nURL\uff1ahttps://github.com/MatheuZSecurity/Exploit-CVE-2025-24799\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-15T11:32:36.000000Z"}, {"uuid": "6f3ffff6-5cc0-4959-bd35-20e5495b8f39", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "published-proof-of-concept", "source": "https://t.me/realcodeb0ss/15", "content": "", "creation_timestamp": "2025-03-31T15:46:31.000000Z"}, {"uuid": "aaafd6be-dcec-4fc2-8cf5-dc6c8e921422", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "published-proof-of-concept", "source": "https://t.me/NinjaSec/218", "content": "1. 4w4k3 tools\nhttps://github.com/4w4k3\n\n\n2. Wifiphisher\nhttps://github.com/wifiphisher/wifiphisher.git\n\n\n3. EasY_HaCk\nhttps://github.com/sabri-zaki/EasY_HaCk\n\n\n4. WishFish\nhttps://github.com/kinghacker0/WishFish\n\n\n5. BlackPhish\nhttps://github.com/iinc0gnit0/BlackPhish\n\n\n6. XLR8_BOMBER\nhttps://github.com/khansaad1275/XLR8_BOMBER\n\n\n7. BossAdv\nhttps://github.com/The-Boss-Hacker/BossAdv.git\n\n\n8. Lazymux\nhttps://github.com/Gameye98/Lazymux\n\n\n9. Infect\nhttps://github.com/noob-hackers/infect\n\n\n10. m-bomber2.O\nhttps://github.com/jatinkalwar/m-bomber2.O\n\n\n11. Phishing by lovehacker404\nhttps://github.com/lovehacker404/Phishing\n\n\n12. AsyncRAT Dark Mode\nhttps://github.com/MonsterCadd/AsyncRAT-Dark-Mode\n\n\n13. KitHack\nhttps://github.com/AdrMXR/KitHack\n\n\n14. ElfDoor (GCC)\nhttps://github.com/MatheuZSecurity/ElfDoor-gcc\n\n\n15. Dh-All\nhttps://github.com/DH-AL/Dh-All\n\n\n16. RedTiger Tools\nhttps://github.com/loxy0dev/RedTiger-Tools\n\n\n17. LazyXSS\nhttps://github.com/iamunixtz/LazyXss\n\n\n18. FinalRecon\nhttps://github.com/thewhiteh4t/finalrecon\n\n\n19. UFONet\nhttps://github.com/epsylon/ufonet.git\n\n\n20. Brutegram\nhttps://github.com/Err0r-ICA/Brutegram\n\n\n21. Commix (Command Injection)\nhttps://github.com/commixproject/commix.git\n\n\n22. Bbot (Recon tool)\nhttps://github.com/blacklanternsecurity/bbot\n\n\n23. Exploit CVE-2025-24799\nhttps://github.com/MatheuZSecurity/Exploit-CVE-2025-24799\n\n\n24. LFI_Racer\nhttps://github.com/OssamaN7/LFI_Racer\n\n\n25. Counter OSINT Guide (RU)\nhttps://github.com/soxoj/counter-osint-guide-ru\n\n\n26. YouTube OSINT\nhttps://github.com/cqcore/YouTube-Video-OSINT\n\n\n27. Web Check\nhttps://github.com/Lissy93/web-check\n\n\n28. Sherlock OSINT VM\nhttps://github.com/4m3rr0r/Sherlock\n\n\n29. DFW1N-OSINT Tools\nhttps://github.com/DFW1N/DFW1N-OSINT\n\n\n30. Netlas Cookbook\nhttps://github.com/netlas-io/netlas-cookbook\n\n\n31. OSINT Stuff Tool Collection\nhttps://github.com/cipher387/osint_stuff_tool_collection\n\n\n32. Nuclei SQLi/XSS Templates\nhttps://github.com/HackingTeamOficial/Nucleisqlixss\n\n\n33. urx (OSINT URL Extractor)\nhttps://github.com/hahwul/urx\n\n\n34. Koneko Shellcode Loader\nhttps://github.com/Meowmycks/koneko\n\n\n35. PANO (OSINT Platform)\nhttps://github.com/ALW1EZ/PANO.git\n\n\n36. SMWYG - Show Me What You Got\nhttps://github.com/Viralmaniar/SMWYG-Show-Me-What-You-Got.git\n\n\n37. SocialFish\nhttps://github.com/UndeadSec/SocialFish\n\n\n38. SnipRecover-CL (CVE-2023-28303)\nhttps://github.com/m31r0n/SnipRecover-CL\n\n\n39. Go Secdump (Windows SAM/LSA Extractor)\nhttps://github.com/jfjallid/go-secdump\n\n\n40. BlueSpy (Bluetooth Audio Recording)\nhttps://github.com/TarlogicSecurity/BlueSpy\n\n\n41. T-Remix\nhttps://github.com/Bhaviktutorials/T-Remix\n\n\n42. Ubuntu Tools\nhttps://github.com/tahmidrayat/ubuntu\n\n\n43. bash2mp4\nhttps://github.com/htr-tech/bash2mp4\n\n\n44. Insta_report_eyes\nhttps://github.com/z6il/Insta_report_eyes\n\n\n45. OSEP (Pentesting)\nhttps://github.com/In3x0rabl3/OSEP\n\n\n46. Snoop\nhttps://github.com/AnkhCorp/Snoop\n\n\n47. Radar (Recon)\nhttps://github.com/Elite-Security-Systems/radar\n\n\n48. cheat.sh (Command line cheats)\nhttps://github.com/chubin/cheat.sh?tab=readme-ov-file\n\n\n49. Cybersecurity AI (CAI)\nhttps://github.com/aliasrobotics/cai\n\n#GrayHats", "creation_timestamp": "2025-04-19T16:26:39.000000Z"}, {"uuid": "6baea7aa-5240-42a1-bcab-1a83f9c68633", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "published-proof-of-concept", "source": "Telegram/PyX2CQyw-n1m51Sr7KabJBRaKU-GcuQSz1wD8c6QM9N2FFM", "content": "", "creation_timestamp": "2025-09-16T21:00:04.000000Z"}, {"uuid": "5e72d0f4-67f2-4c4f-ad0f-8fef55b9f499", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "published-proof-of-concept", "source": "https://t.me/TopCyberTechNews/432", "content": "Top Security News for Today\n\nImpossible XXE in PHP  \nhttps://www.reddit.com/r/netsec/comments/1j9f0i7/impossible_xxe_in_php/\n\nAnalysis of CVE-2025-24813 Apache Tomcat Path Equivalence RCE  \nhttps://www.reddit.com/r/netsec/comments/1j9f0ur/analysis_of_cve202524813_apache_tomcat_path/\n\nCybersecurity Can\u2019t Wait: Modern Enterprises Must Adapt  \nhttps://www.tripwire.com/state-of-security/cybersecurity-cant-wait-modern-enterprises-must-adapt\n\nPre-authentication SQL injection to RCE in GLPI (CVE-2025-24799/CVE-2025-24801)  \nhttps://www.reddit.com/r/netsec/comments/1j9hcdw/preauthentication_sql_injection_to_rce_in_glpi/\n\nChina, Russia, Iran, and North Korea Intelligence Sharing  \nhttps://www.schneier.com/blog/archives/2025/03/china-russia-iran-and-north-korea-intelligence-sharing.html\n\nBehind the Scenes of Burp AI: How we built it, and what's next  \nhttps://portswigger.net/blog/behind-the-scenes-of-burp-ai-how-we-built-it-and-whats-next\n\nNew Lumma Stealer campaign abuses Reddit threads to drop malware via fake WeTransfer links  \nhttps://www.reddit.com/r/netsec/comments/1j9xq07/new_lumma_stealer_campaign_abuses_reddit_threads/\n\nRuthless Mantis - Modus Operandi  \nhttps://www.reddit.com/r/netsec/comments/1j9v0dh/ruthless_mantis_modus_operandi/\n\nFollow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman", "creation_timestamp": "2025-03-13T09:30:43.000000Z"}, {"uuid": "ee5b0477-b063-4e44-abdb-938f390924c5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "published-proof-of-concept", "source": "Telegram/oDgC7SboV_stqJmy_TZpePOrg5cgzErAhZJaKGoE5sYOBA4", "content": "", "creation_timestamp": "2025-09-08T21:00:05.000000Z"}, {"uuid": "c2b010e8-0dd3-46b2-ba70-540e3d0399ce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24794", "type": "seen", "source": "https://t.me/cvedetector/16706", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-24794 - Snowflake Connector for Python Pickle Deserialization Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-24794 \nPublished : Jan. 29, 2025, 9:15 p.m. | 1\u00a0hour, 9\u00a0minutes ago \nDescription : The Snowflake Connector for Python provides an interface for developing Python applications that can connect to Snowflake and perform all standard operations. Snowflake discovered and remediated a vulnerability in the Snowflake Connector for Python. The OCSP response cache uses pickle as the serialization format, potentially leading to local privilege escalation. This vulnerability affects versions 2.7.12 through 3.13.0. Snowflake fixed the issue in version 3.13.1. \nSeverity: 6.7 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"29 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-30T00:02:56.000000Z"}, {"uuid": "1478665b-d708-4fd6-bd16-41b287a0839d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24792", "type": "seen", "source": "https://t.me/cvedetector/16696", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-24792 - Snowflake PHP PDO Driver DOwner Defect\", \n  \"Content\": \"CVE ID : CVE-2025-24792 \nPublished : Jan. 29, 2025, 4:15 p.m. | 1\u00a0hour, 59\u00a0minutes ago \nDescription : Snowflake PHP PDO Driver is a driver that uses the PHP Data Objects (PDO) extension to connect to the Snowflake database. Snowflake discovered and remediated a vulnerability in the Snowflake PHP PDO Driver where executing unsupported queries like PUT or GET on stages causes a signed-to-unsigned conversion error that crashes the application using the Driver. This vulnerability affects versions 0.2.0 through 3.0.3. Snowflake fixed the issue in version 3.1.0. \nSeverity: 4.4 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"29 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-29T19:52:10.000000Z"}, {"uuid": "6f1d16f7-88f7-417d-b5bd-b3a486c4392f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24793", "type": "seen", "source": "https://t.me/cvedetector/16705", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-24793 - Snowflake Connector for Python SQL Injection\", \n  \"Content\": \"CVE ID : CVE-2025-24793 \nPublished : Jan. 29, 2025, 9:15 p.m. | 1\u00a0hour, 9\u00a0minutes ago \nDescription : The Snowflake Connector for Python provides an interface for developing Python applications that can connect to Snowflake and perform all standard operations. Snowflake discovered and remediated a vulnerability in the Snowflake Connector for Python. A function from the snowflake.connector.pandas_tools module is vulnerable to SQL injection. This vulnerability affects versions 2.2.5 through 3.13.0. Snowflake fixed the issue in version 3.13.1. \nSeverity: 7.0 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"29 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-30T00:02:56.000000Z"}, {"uuid": "884bf6a5-cb5b-4c84-9b11-fbb67926e71f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24795", "type": "seen", "source": "https://t.me/cvedetector/16704", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-24795 - Snowflake Connector for Python File Inheritance Allow Credentials Disclosure\", \n  \"Content\": \"CVE ID : CVE-2025-24795 \nPublished : Jan. 29, 2025, 9:15 p.m. | 1\u00a0hour, 9\u00a0minutes ago \nDescription : The Snowflake Connector for Python provides an interface for developing Python applications that can connect to Snowflake and perform all standard operations. Snowflake discovered and remediated a vulnerability in the Snowflake Connector for Python. On Linux systems, when temporary credential caching is enabled, the Snowflake Connector for Python will cache temporary credentials locally in a world-readable file. This vulnerability affects versions 2.3.7 through 3.13.0. Snowflake fixed the issue in version 3.13.1. \nSeverity: 4.4 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"29 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-30T00:02:55.000000Z"}, {"uuid": "925b5093-b577-4906-89c9-ba816f9e1b76", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24790", "type": "seen", "source": "https://t.me/cvedetector/16701", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-24790 - Snowflake JDBC Driver World-Readable Temporary Credential Cache Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-24790 \nPublished : Jan. 29, 2025, 6:15 p.m. | 2\u00a0hours, 6\u00a0minutes ago \nDescription : Snowflake JDBC provides a JDBC type 4 driver that supports core functionality, allowing Java program to connect to Snowflake. Snowflake discovered and remediated a vulnerability in the Snowflake JDBC Driver. On Linux systems, when temporary credential caching is enabled, the Snowflake JDBC Driver will cache temporary credentials locally in a world-readable file. This vulnerability affects versions 3.6.8 through 3.21.0. Snowflake fixed the issue in version 3.22.0. \nSeverity: 4.4 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"29 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-29T21:32:24.000000Z"}, {"uuid": "d8c4d290-ee57-4707-be6f-7c81488f4d5e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "seen", "source": "https://t.me/cvedetector/20607", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-24799 - \"GLPI SQL Injection\"\", \n  \"Content\": \"CVE ID : CVE-2025-24799 \nPublished : March 18, 2025, 7:15 p.m. | 1\u00a0hour, 22\u00a0minutes ago \nDescription : GLPI is a free asset and IT management software package. An unauthenticated user can perform a SQL injection through the inventory endpoint. This vulnerability is fixed in 10.0.18. \nSeverity: 7.5 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"18 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-18T21:55:42.000000Z"}, {"uuid": "9777a4c6-986d-46d2-bb44-d702e44e6156", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24791", "type": "seen", "source": "https://t.me/cvedetector/16689", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-24791 - Snowflake Connector NodeJS Local Privilege Escalation\", \n  \"Content\": \"CVE ID : CVE-2025-24791 \nPublished : Jan. 29, 2025, 5:15 p.m. | 59\u00a0minutes ago \nDescription : snowflake-connector-nodejs is a NodeJS driver for Snowflake. Snowflake discovered and remediated a vulnerability in the Snowflake NodeJS Driver. File permissions checks of the temporary credential cache could be bypassed by an attacker with write access to the local cache directory. This vulnerability affects versions 1.12.0 through 2.0.1 on Linux. Snowflake fixed the issue in version 2.0.2. \nSeverity: 4.4 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"29 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-29T19:52:01.000000Z"}, {"uuid": "15299b53-8cd6-447c-a65d-98b8dfc41ac6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24797", "type": "seen", "source": "https://t.me/cvedetector/22897", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-24797 - Meshtastic Protocol Buffer Overflow Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-24797 \nPublished : April 15, 2025, 12:15 a.m. | 34\u00a0minutes ago \nDescription : Meshtastic is an open source mesh networking solution. A fault in the handling of mesh packets containing invalid protobuf data can result in an attacker-controlled buffer overflow, allowing an attacker to hijack execution flow, potentially resulting in remote code execution. This attack does not require authentication or user interaction, as long as the target device rebroadcasts packets on the default channel. This vulnerability fixed in 2.6.2. \nSeverity: 9.4 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"15 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-15T03:13:11.000000Z"}, {"uuid": "1a9f2a69-03fa-4511-923a-d3c76622ea1c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "published-proof-of-concept", "source": "Telegram/aVBd3ldNRLl7Xo5CPtKzp3UErMxRgMRg31wU9VFi81ukDXk", "content": "", "creation_timestamp": "2025-04-04T01:00:08.000000Z"}, {"uuid": "6f56d880-801f-406b-abeb-cb33e9e11201", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24796", "type": "seen", "source": "https://t.me/cvedetector/19746", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-24796 - Collabora Online Macro Execution Privilege Escalation\", \n  \"Content\": \"CVE ID : CVE-2025-24796 \nPublished : March 6, 2025, 7:15 p.m. | 1\u00a0hour, 9\u00a0minutes ago \nDescription : Collabora Online is a collaborative online office suite based on LibreOffice. Macro support is disabled by default in Collabora Online, but can be enabled by an administrator. Collabora Online typically hosts each document instance within a jail and is allowed to download content from locations controlled by the net.lok_allow configuration option, which by default include the private IP ranges to enable access to the local network. If enabled, macros were allowed run executable binaries. By combining an ability to host executables, typically in the local network, in an allowed accessible location, with a macro enabled Collabora Online, it was then possible to install arbitrary binaries within the jail and execute them. These executables are restricted to the same jail file system and user as the document instance but can be used to bypass the additional limits on what network hosts are accessible and provide more flexibility as a platform for further attempts. This is issue is fixed in 24.04.12.4, 23.05.19, 22.05.25 and later macros. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"06 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-06T22:12:35.000000Z"}, {"uuid": "e40a5b63-525d-4877-9846-8e36fab9647e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2479", "type": "seen", "source": "https://t.me/cvedetector/20854", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-2479 - WordPress Easy Custom Admin Bar Reflected Cross-Site Scripting\", \n  \"Content\": \"CVE ID : CVE-2025-2479 \nPublished : March 22, 2025, 7:15 a.m. | 1\u00a0hour, 56\u00a0minutes ago \nDescription : The Easy Custom Admin Bar plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the \u2018msg\u2019 parameter in all versions up to, and including, 1.0 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link. \nSeverity: 6.1 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-22T10:22:23.000000Z"}, {"uuid": "ac7bb413-0672-4bc0-b5d1-59c65169a4f5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24793", "type": "published-proof-of-concept", "source": "Telegram/iPosWul0vPko4NOYwQGqcy8M6TKYF3_3U_ZMmp_mqwsDzY0", "content": "", "creation_timestamp": "2025-01-29T22:31:02.000000Z"}, {"uuid": "2f0799b7-1c2f-480e-91d4-339c63d919e1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "published-proof-of-concept", "source": "https://t.me/thebugbountyhunter/9727", "content": "Pre-authentication SQL injection to RCE in GLPI (CVE-2025-24799/CVE-2025-24801)\n\nhttps://blog.lexfo.fr/glpi-sql-to-rce.html", "creation_timestamp": "2025-03-13T17:55:31.000000Z"}, {"uuid": "e56011bd-1ff2-4519-8f13-acb31fd0010c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24797", "type": "published-proof-of-concept", "source": "Telegram/Y6MqGtLM5ccvEmlRJO9-JfH9jytI_xcSqG1WwKJD5suL4M0", "content": "", "creation_timestamp": "2025-04-17T05:00:06.000000Z"}, {"uuid": "1bfb8bfc-fe31-4a28-9bff-035c25611817", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "published-proof-of-concept", "source": "Telegram/qHV77kqm6XVuNwIC-e6t4w7DYjxc4sNZow0AdbHEShhdlTM", "content": "", "creation_timestamp": "2025-04-15T21:00:06.000000Z"}, {"uuid": "7b7f6d24-5686-4d59-85dc-d2d0992f6a5d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "published-proof-of-concept", "source": "Telegram/iV_Hls37ItUz1wy4WLxZWNvee-8cGc5zd1b2ndxyF9Mk_5s", "content": "", "creation_timestamp": "2025-04-15T11:00:05.000000Z"}, {"uuid": "63832bd8-6545-437c-8fef-b6c725b81919", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "published-proof-of-concept", "source": "https://t.me/NinjaSec/28344", "content": "Unzip the file and use it freely with the templates you choose.\nhttps://github.com/HackingTeamOficial/Nucleisqlixss\n\nExtracts URLs from OSINT Archives for Security Insights.\nhttps://github.com/hahwul/urx\n\nhttps://github.com/Meowmycks/koneko\n\nRobust Cobalt Strike shellcode loader with multiple advanced evasion features\n#github #CS #tools\nhttps://github.com/RainbowSoftwares/XWorm-RCE-Patch\n\nXWorm 4.0 Modded + RCE Patched\nhttps://github.com/MatheuZSecurity/Exploit-CVE-2025-24799\n\nCVE-2025-24799 Exploit: GLPI - Unauthenticated SQL Injection\nhttps://github.com/OssamaN7/LFI_Racer\n\nA tool to exploit Local File Inclusion (LFI) vulnerabilities for Remote Code Execution (RCE)\n#github #exploit\nhttps://github.com/OssamaN7/LFI_Racer\n\nRepository: Bbot - Recursive web crawler\n\nBEE bot is a multipurpose scanner inspired by Spiderfoot, designed to automate your reconnaissance, bug bounty, and ASM missions.\n\n\u2014 This tool is capable of performing the entire OSINT process in a single command, including subdomain enumeration, port scanning, web screenshots (with the gowitness module), vulnerability scanning (with kernels), and more.\nhttps://github.com/blacklanternsecurity/bbot\n\nCybersecurity AI (CAI) now includes full, nano, and mini versions of gpt-4.1 models \u2014 I believe they\u2019re still behind other top models, but they\u2019re a significant improvement for cybersecurity exercises compared to gpt-4o and o3-mini.\n\nTry it too: https://github.com/aliasrobotics/cai\n\nRepository: http://Cheat.sh : Helpful tips for commands and terminal languages\n\nhttp://Cheat.sh \u2014 is an online service accessible from the command line that searches through an impressive collection of community-curated cheat sheets.\n\n#GrayHats", "creation_timestamp": "2025-04-18T20:05:59.000000Z"}, {"uuid": "6a54c79d-9c5e-4dba-8647-d2a161c57288", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "published-proof-of-concept", "source": "https://t.me/softrinx/926", "content": "https://github.com/MatheuZSecurity/Exploit-CVE-2025-24799\n\nCVE-2025-24799 Exploit: GLPI - Unauthenticated SQL Injection\n#github #exploit\n\n\u0412\u043e\u0441\u0441\u0442\u0430\u043d\u043e\u0432\u043b\u0435\u043d\u043e \u0441 \u043f\u043e\u0441\u0442\u0430 \u043a\u0438\u0442\u0430\u0439\u0446\u0430", "creation_timestamp": "2025-04-19T03:10:38.000000Z"}, {"uuid": "bf2e7190-88ee-4f09-b1bf-5fd08b5902d5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "published-proof-of-concept", "source": "https://t.me/softrinx/923", "content": "https://github.com/MatheuZSecurity/Exploit-CVE-2025-24799\n\nCVE-2025-24799 Exploit: GLPI - Unauthenticated SQL Injection\n#github #exploit", "creation_timestamp": "2025-04-15T15:54:16.000000Z"}, {"uuid": "9a039248-6005-4c79-9ce5-1cda17feaab2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24799", "type": "seen", "source": "https://t.me/CyberSecurityTechnologies/11966", "content": "#exploit\n1. CVE-2025-1974, CVE-2025-24514:\nIngress(Nightmare) NGINX RCE\nhttps://www.wiz.io/blog/ingress-nginx-kubernetes-vulnerabilities\n\n2. CVE-2025-24799, CVE-2025-24801:\nPre-auth SQLi to RCE in GLPI\nhttps://blog.lexfo.fr/glpi-sql-to-rce.html\n\n3. CVE-2025-29927:\nAuthorization Bypass in Next.js Middleware\nhttps://github.com/arvion-agent/next-CVE-2025-29927\n]-&gt; Bypass Checker:\nhttps://github.com/RoyCampos/CVE-2025-29927", "creation_timestamp": "2025-03-26T00:36:58.000000Z"}]}