Most recent sightings.

Most recent sightings. https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Tue, 09 Jun 2026 16:33:46 +0000 2622d823-cfa7-478f-a91e-a9ac98c5cb2a https://vulnerability.circl.lu/sighting/2622d823-cfa7-478f-a91e-a9ac98c5cb2a/export {"uuid": "2622d823-cfa7-478f-a91e-a9ac98c5cb2a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49823", "type": "seen", "source": "Telegram/SxSx8U--99185zCwggK_3tweLBYZnm8XDZAJUgwUx4w2mMsU", "content": "", "creation_timestamp": "2025-03-11T04:41:14.000000Z"} {"uuid": "2622d823-cfa7-478f-a91e-a9ac98c5cb2a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49823", "type": "seen", "source": "Telegram/SxSx8U--99185zCwggK_3tweLBYZnm8XDZAJUgwUx4w2mMsU", "content": "", "creation_timestamp": "2025-03-11T04:41:14.000000Z"} https://vulnerability.circl.lu/sighting/2622d823-cfa7-478f-a91e-a9ac98c5cb2a/export Tue, 11 Mar 2025 04:41:14 +0000 eaf34d01-4e61-44dc-b79f-c4cca18fc2b4 https://vulnerability.circl.lu/sighting/eaf34d01-4e61-44dc-b79f-c4cca18fc2b4/export {"uuid": "eaf34d01-4e61-44dc-b79f-c4cca18fc2b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49822", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lkobidb2lj2j", "content": "", "creation_timestamp": "2025-03-18T18:13:33.590650Z"} {"uuid": "eaf34d01-4e61-44dc-b79f-c4cca18fc2b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49822", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lkobidb2lj2j", "content": "", "creation_timestamp": "2025-03-18T18:13:33.590650Z"} https://vulnerability.circl.lu/sighting/eaf34d01-4e61-44dc-b79f-c4cca18fc2b4/export Tue, 18 Mar 2025 18:13:33 +0000 77160fda-f4a8-4cbc-8624-0d0ce3d5ed74 https://vulnerability.circl.lu/sighting/77160fda-f4a8-4cbc-8624-0d0ce3d5ed74/export {"uuid": "77160fda-f4a8-4cbc-8624-0d0ce3d5ed74", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-4982", "type": "published-proof-of-concept", "source": "https://t.me/tech_b0lt_Genona/5127", "content": "PoC'\u0438 \u043a\u0440\u0430\u0441\u0438\u0432\u044b\u0435\n\n- \u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 CVE-2024-4981 \u0438 CVE-2024-47515 \u0432\u044b\u0437\u0432\u0430\u043d\u044b \u043d\u0435\u043a\u043e\u0440\u0440\u0435\u043a\u0442\u043d\u043e\u0439 \u043e\u0431\u0440\u0430\u0431\u043e\u0442\u043a\u043e\u0439 \u0441\u0438\u043c\u0432\u043e\u043b\u0438\u0447\u0435\u0441\u043a\u0438\u0445 \u0441\u0441\u044b\u043b\u043e\u043a \u0432 \u0444\u0443\u043d\u043a\u0446\u0438\u044f\u0445 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0444\u0430\u0439\u043b\u0430 \u0438 \u0433\u0435\u043d\u0435\u0440\u0430\u0446\u0438\u0438 \u0430\u0440\u0445\u0438\u0432\u043e\u0432. \u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0442 \u043f\u0440\u043e\u0447\u0438\u0442\u0430\u0442\u044c \u0441\u043e\u0434\u0435\u0440\u0436\u0438\u043c\u043e\u0435 \u043b\u043e\u043a\u0430\u043b\u044c\u043d\u044b\u0445 \u0444\u0430\u0439\u043b\u043e\u0432 \u043d\u0430 \u0441\u0435\u0440\u0432\u0435\u0440\n\n- \u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2024-4982 \u0432 \u0444\u0443\u043d\u043a\u0446\u0438\u0438 view_issue_raw_file() \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0432\u044b\u0439\u0442\u0438 \u0437\u0430 \u043f\u0440\u0435\u0434\u0435\u043b\u044b \u0431\u0430\u0437\u043e\u0432\u043e\u0433\u043e \u043a\u0430\u0442\u0430\u043b\u043e\u0433\u0430 \u0447\u0435\u0440\u0435\u0437 \u0443\u043a\u0430\u0437\u0430\u043d\u0438\u0435 \u0441\u0438\u043c\u0432\u043e\u043b\u043e\u0432 \"/..\" \u0432 \u043f\u0430\u0440\u0430\u043c\u0435\u0442\u0440\u0430\u0445 \u0437\u0430\u043f\u0440\u043e\u0448\u0435\u043d\u043d\u043e\u0433\u043e Issue. \u041f\u0440\u043e\u0431\u043b\u0435\u043c\u0430 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u043f\u0440\u043e\u0447\u0438\u0442\u0430\u0442\u044c \u0444\u0430\u0439\u043b\u044b \u0432 \u0441\u0438\u0441\u0442\u0435\u043c\u0435, \u043d\u0430\u0441\u043a\u043e\u043b\u044c\u043a\u043e \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0442 \u043f\u0440\u0430\u0432\u0430 \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043f\u0440\u043e\u0446\u0435\u0441\u0441\u0430 \u043f\u043e\u0434 \u043a\u043e\u0442\u043e\u0440\u044b\u043c \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u0435\u0442\u0441\u044f web-\u0438\u043d\u0442\u0435\u0440\u0444\u0435\u0439\u0441\n\n- \u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2024-47516 \u0432 \u0444\u0443\u043d\u043a\u0446\u0438\u0438 PagureRepo.log(), \u0434\u0430\u0451\u0442 \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u044c \u0434\u043e\u0431\u0438\u0442\u044c\u0441\u044f \u043f\u043e\u0434\u0441\u0442\u0430\u043d\u043e\u0432\u043a\u0438 \u0441\u0432\u043e\u0438\u0445 \u043a\u043e\u043c\u0430\u043d\u0434 \u0438 \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043a\u043e\u0434\u0430 \u043d\u0430 \u0441\u0435\u0440\u0432\u0435\u0440\u0435. \u041f\u0440\u043e\u0431\u043b\u0435\u043c\u0430 \u0432\u044b\u0437\u0432\u0430\u043d\u0430 \u0442\u0435\u043c, \u0447\u0442\u043e \u043f\u0440\u0438 \u043f\u0440\u043e\u0441\u043c\u043e\u0442\u0440\u0435 \u0438\u0441\u0442\u043e\u0440\u0438\u0438 \u0438\u0437\u043c\u0435\u043d\u0435\u043d\u0438\u044f \u0444\u0430\u0439\u043b\u0430 \u0447\u0435\u0440\u0435\u0437 web-\u0438\u043d\u0442\u0435\u0440\u0444\u0435\u0439\u0441 \u0432\u044b\u0437\u044b\u0432\u0430\u0435\u0442\u0441\u044f \u043a\u043e\u043c\u0430\u043d\u0434\u0430 \"git\" \u0441 \u043f\u0435\u0440\u0435\u0434\u0430\u0447\u0435\u0439 \u0438\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u0430 \u0432\u0435\u0442\u043a\u0438 \u0432 \u043a\u043e\u043c\u0430\u043d\u0434\u043d\u043e\u0439 \u0441\u0442\u0440\u043e\u043a\u0435 (\u043d\u0430\u043f\u0440\u0438\u043c\u0435\u0440, \"/usr/bin/git --pretty=oneline --abbrev-commit -- README.md\"). \u041a\u043e\u0440\u0440\u0435\u043a\u0442\u043d\u043e\u0441\u0442\u044c \u0438\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u0430 \u043d\u0435 \u043f\u0440\u043e\u0432\u0435\u0440\u044f\u0435\u0442\u0441\u044f, \u043f\u043e\u044d\u0442\u043e\u043c\u0443 \u043c\u043e\u0436\u043d\u043e \u0432\u043c\u0435\u0441\u0442\u043e \u043d\u0435\u0433\u043e \u043f\u0435\u0440\u0435\u0434\u0430\u0442\u044c \u043b\u044e\u0431\u0443\u044e \u043e\u043f\u0446\u0438\u044e \u043a\u043e\u043c\u0430\u043d\u0434\u043d\u043e\u0439 \u0441\u0442\u0440\u043e\u043a\u0438, \u043d\u0430\u043f\u0440\u0438\u043c\u0435\u0440, \"--output=/tmp/foo.bar\" \u0434\u043b\u044f \u043f\u0435\u0440\u0435\u043d\u0430\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0432\u044b\u0432\u043e\u0434\u0430 \u0432 \u0444\u0430\u0439\u043b. \u0410\u0442\u0430\u043a\u0443\u044e\u0449\u0438\u0439 \u043c\u043e\u0436\u0435\u0442 \u043f\u0435\u0440\u0435\u0437\u0430\u043f\u0438\u0441\u0430\u0442\u044c \u0444\u0430\u0439\u043b \u0432 \u0441\u0438\u0441\u0442\u0435\u043c\u0435 \u0447\u0435\u0440\u0435\u0437 \u043e\u0442\u043f\u0440\u0430\u0432\u043a\u0443 \u0437\u0430\u043f\u0440\u043e\u0441\u0430 \u0441\u043b\u0435\u0434\u0443\u044e\u0449\u0435\u0433\u043e \u0432\u0438\u0434\u0430:\n\n http://pagure.local:5000/test/history/README.md?identifier=--output=/tmp/foo.bar\n\n- \u0412 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u0435 OBS (Open Build Service), \u043f\u0440\u0438\u043c\u0435\u043d\u044f\u0435\u043c\u043e\u0439 \u0432 openSUSE \u0438 \u043d\u0435\u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u0434\u0440\u0443\u0433\u0438\u0445 \u0434\u0438\u0441\u0442\u0440\u0438\u0431\u0443\u0442\u0438\u0432\u0430\u0445 \u0434\u043b\u044f \u0441\u0431\u043e\u0440\u043a\u0438 \u043f\u0430\u043a\u0435\u0442\u043e\u0432, \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0430 \u043e\u0434\u043d\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c (CVE-2024-22033), \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u0441\u0432\u043e\u0439 \u043a\u043e\u0434 \u043d\u0430 \u0441\u0435\u0440\u0432\u0435\u0440\u0435. \u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0430 27 \u0438\u044e\u043d\u044f 2024 \u0433\u043e\u0434\u0430, \u0441\u043e\u043e\u0431\u0449\u0435\u043d\u0430 \u043f\u0440\u043e\u0435\u043a\u0442\u0443 openSUSE 29 \u0438\u044e\u043d\u044f \u0438 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430 10 \u0438\u044e\u043b\u044f.\n\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 Pagure \u0438 OBS, \u0434\u043e\u043f\u0443\u0441\u043a\u0430\u0432\u0448\u0438\u0435 \u043a\u043e\u043c\u043f\u0440\u043e\u043c\u0435\u0442\u0430\u0446\u0438\u044e \u043f\u0430\u043a\u0435\u0442\u043e\u0432 \u0432 \u0440\u0435\u043f\u043e\u0437\u0438\u0442\u043e\u0440\u0438\u044f\u0445 Fedora \u0438 openSUSE\nhttps://www.opennet.ru/opennews/art.shtml?num=62928\n\n\u041e\u0440\u0438\u0433\u0438\u043d\u0430\u043b\nhttps://fenrisk.com/supply-chain-attacks\n\n\u0414\u043e\u043a\u043b\u0430\u0434 \u0431\u044b\u043b \u0441\u0434\u0435\u043b\u0430\u043d \u0432 \u0440\u0430\u043c\u043a\u0430\u0445 insomni'hack 2025 (https://insomnihack.ch/), \u0441\u043b\u0430\u0439\u0434\u044b \u0441\u043a\u0438\u043d\u0443 \u0432 \u043a\u043e\u043c\u043c\u0435\u043d\u0442\u044b", "creation_timestamp": "2025-03-22T21:04:30.000000Z"} {"uuid": "77160fda-f4a8-4cbc-8624-0d0ce3d5ed74", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-4982", "type": "published-proof-of-concept", "source": "https://t.me/tech_b0lt_Genona/5127", "content": "PoC'\u0438 \u043a\u0440\u0430\u0441\u0438\u0432\u044b\u0435\n\n- \u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 CVE-2024-4981 \u0438 CVE-2024-47515 \u0432\u044b\u0437\u0432\u0430\u043d\u044b \u043d\u0435\u043a\u043e\u0440\u0440\u0435\u043a\u0442\u043d\u043e\u0439 \u043e\u0431\u0440\u0430\u0431\u043e\u0442\u043a\u043e\u0439 \u0441\u0438\u043c\u0432\u043e\u043b\u0438\u0447\u0435\u0441\u043a\u0438\u0445 \u0441\u0441\u044b\u043b\u043e\u043a \u0432 \u0444\u0443\u043d\u043a\u0446\u0438\u044f\u0445 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0444\u0430\u0439\u043b\u0430 \u0438 \u0433\u0435\u043d\u0435\u0440\u0430\u0446\u0438\u0438 \u0430\u0440\u0445\u0438\u0432\u043e\u0432. \u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0442 \u043f\u0440\u043e\u0447\u0438\u0442\u0430\u0442\u044c \u0441\u043e\u0434\u0435\u0440\u0436\u0438\u043c\u043e\u0435 \u043b\u043e\u043a\u0430\u043b\u044c\u043d\u044b\u0445 \u0444\u0430\u0439\u043b\u043e\u0432 \u043d\u0430 \u0441\u0435\u0440\u0432\u0435\u0440\n\n- \u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2024-4982 \u0432 \u0444\u0443\u043d\u043a\u0446\u0438\u0438 view_issue_raw_file() \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0432\u044b\u0439\u0442\u0438 \u0437\u0430 \u043f\u0440\u0435\u0434\u0435\u043b\u044b \u0431\u0430\u0437\u043e\u0432\u043e\u0433\u043e \u043a\u0430\u0442\u0430\u043b\u043e\u0433\u0430 \u0447\u0435\u0440\u0435\u0437 \u0443\u043a\u0430\u0437\u0430\u043d\u0438\u0435 \u0441\u0438\u043c\u0432\u043e\u043b\u043e\u0432 \"/..\" \u0432 \u043f\u0430\u0440\u0430\u043c\u0435\u0442\u0440\u0430\u0445 \u0437\u0430\u043f\u0440\u043e\u0448\u0435\u043d\u043d\u043e\u0433\u043e Issue. \u041f\u0440\u043e\u0431\u043b\u0435\u043c\u0430 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u043f\u0440\u043e\u0447\u0438\u0442\u0430\u0442\u044c \u0444\u0430\u0439\u043b\u044b \u0432 \u0441\u0438\u0441\u0442\u0435\u043c\u0435, \u043d\u0430\u0441\u043a\u043e\u043b\u044c\u043a\u043e \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0442 \u043f\u0440\u0430\u0432\u0430 \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043f\u0440\u043e\u0446\u0435\u0441\u0441\u0430 \u043f\u043e\u0434 \u043a\u043e\u0442\u043e\u0440\u044b\u043c \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u0435\u0442\u0441\u044f web-\u0438\u043d\u0442\u0435\u0440\u0444\u0435\u0439\u0441\n\n- \u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2024-47516 \u0432 \u0444\u0443\u043d\u043a\u0446\u0438\u0438 PagureRepo.log(), \u0434\u0430\u0451\u0442 \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u044c \u0434\u043e\u0431\u0438\u0442\u044c\u0441\u044f \u043f\u043e\u0434\u0441\u0442\u0430\u043d\u043e\u0432\u043a\u0438 \u0441\u0432\u043e\u0438\u0445 \u043a\u043e\u043c\u0430\u043d\u0434 \u0438 \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043a\u043e\u0434\u0430 \u043d\u0430 \u0441\u0435\u0440\u0432\u0435\u0440\u0435. \u041f\u0440\u043e\u0431\u043b\u0435\u043c\u0430 \u0432\u044b\u0437\u0432\u0430\u043d\u0430 \u0442\u0435\u043c, \u0447\u0442\u043e \u043f\u0440\u0438 \u043f\u0440\u043e\u0441\u043c\u043e\u0442\u0440\u0435 \u0438\u0441\u0442\u043e\u0440\u0438\u0438 \u0438\u0437\u043c\u0435\u043d\u0435\u043d\u0438\u044f \u0444\u0430\u0439\u043b\u0430 \u0447\u0435\u0440\u0435\u0437 web-\u0438\u043d\u0442\u0435\u0440\u0444\u0435\u0439\u0441 \u0432\u044b\u0437\u044b\u0432\u0430\u0435\u0442\u0441\u044f \u043a\u043e\u043c\u0430\u043d\u0434\u0430 \"git\" \u0441 \u043f\u0435\u0440\u0435\u0434\u0430\u0447\u0435\u0439 \u0438\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u0430 \u0432\u0435\u0442\u043a\u0438 \u0432 \u043a\u043e\u043c\u0430\u043d\u0434\u043d\u043e\u0439 \u0441\u0442\u0440\u043e\u043a\u0435 (\u043d\u0430\u043f\u0440\u0438\u043c\u0435\u0440, \"/usr/bin/git --pretty=oneline --abbrev-commit -- README.md\"). \u041a\u043e\u0440\u0440\u0435\u043a\u0442\u043d\u043e\u0441\u0442\u044c \u0438\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u0430 \u043d\u0435 \u043f\u0440\u043e\u0432\u0435\u0440\u044f\u0435\u0442\u0441\u044f, \u043f\u043e\u044d\u0442\u043e\u043c\u0443 \u043c\u043e\u0436\u043d\u043e \u0432\u043c\u0435\u0441\u0442\u043e \u043d\u0435\u0433\u043e \u043f\u0435\u0440\u0435\u0434\u0430\u0442\u044c \u043b\u044e\u0431\u0443\u044e \u043e\u043f\u0446\u0438\u044e \u043a\u043e\u043c\u0430\u043d\u0434\u043d\u043e\u0439 \u0441\u0442\u0440\u043e\u043a\u0438, \u043d\u0430\u043f\u0440\u0438\u043c\u0435\u0440, \"--output=/tmp/foo.bar\" \u0434\u043b\u044f \u043f\u0435\u0440\u0435\u043d\u0430\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0432\u044b\u0432\u043e\u0434\u0430 \u0432 \u0444\u0430\u0439\u043b. \u0410\u0442\u0430\u043a\u0443\u044e\u0449\u0438\u0439 \u043c\u043e\u0436\u0435\u0442 \u043f\u0435\u0440\u0435\u0437\u0430\u043f\u0438\u0441\u0430\u0442\u044c \u0444\u0430\u0439\u043b \u0432 \u0441\u0438\u0441\u0442\u0435\u043c\u0435 \u0447\u0435\u0440\u0435\u0437 \u043e\u0442\u043f\u0440\u0430\u0432\u043a\u0443 \u0437\u0430\u043f\u0440\u043e\u0441\u0430 \u0441\u043b\u0435\u0434\u0443\u044e\u0449\u0435\u0433\u043e \u0432\u0438\u0434\u0430:\n\n http://pagure.local:5000/test/history/README.md?identifier=--output=/tmp/foo.bar\n\n- \u0412 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u0435 OBS (Open Build Service), \u043f\u0440\u0438\u043c\u0435\u043d\u044f\u0435\u043c\u043e\u0439 \u0432 openSUSE \u0438 \u043d\u0435\u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u0434\u0440\u0443\u0433\u0438\u0445 \u0434\u0438\u0441\u0442\u0440\u0438\u0431\u0443\u0442\u0438\u0432\u0430\u0445 \u0434\u043b\u044f \u0441\u0431\u043e\u0440\u043a\u0438 \u043f\u0430\u043a\u0435\u0442\u043e\u0432, \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0430 \u043e\u0434\u043d\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c (CVE-2024-22033), \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u0441\u0432\u043e\u0439 \u043a\u043e\u0434 \u043d\u0430 \u0441\u0435\u0440\u0432\u0435\u0440\u0435. \u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0430 27 \u0438\u044e\u043d\u044f 2024 \u0433\u043e\u0434\u0430, \u0441\u043e\u043e\u0431\u0449\u0435\u043d\u0430 \u043f\u0440\u043e\u0435\u043a\u0442\u0443 openSUSE 29 \u0438\u044e\u043d\u044f \u0438 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430 10 \u0438\u044e\u043b\u044f.\n\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 Pagure \u0438 OBS, \u0434\u043e\u043f\u0443\u0441\u043a\u0430\u0432\u0448\u0438\u0435 \u043a\u043e\u043c\u043f\u0440\u043e\u043c\u0435\u0442\u0430\u0446\u0438\u044e \u043f\u0430\u043a\u0435\u0442\u043e\u0432 \u0432 \u0440\u0435\u043f\u043e\u0437\u0438\u0442\u043e\u0440\u0438\u044f\u0445 Fedora \u0438 openSUSE\nhttps://www.opennet.ru/opennews/art.shtml?num=62928\n\n\u041e\u0440\u0438\u0433\u0438\u043d\u0430\u043b\nhttps://fenrisk.com/supply-chain-attacks\n\n\u0414\u043e\u043a\u043b\u0430\u0434 \u0431\u044b\u043b \u0441\u0434\u0435\u043b\u0430\u043d \u0432 \u0440\u0430\u043c\u043a\u0430\u0445 insomni'hack 2025 (https://insomnihack.ch/), \u0441\u043b\u0430\u0439\u0434\u044b \u0441\u043a\u0438\u043d\u0443 \u0432 \u043a\u043e\u043c\u043c\u0435\u043d\u0442\u044b", "creation_timestamp": "2025-03-22T21:04:30.000000Z"} https://vulnerability.circl.lu/sighting/77160fda-f4a8-4cbc-8624-0d0ce3d5ed74/export Sat, 22 Mar 2025 21:04:30 +0000 a8370358-f4ba-4618-910c-14ff71b0577d https://vulnerability.circl.lu/sighting/a8370358-f4ba-4618-910c-14ff71b0577d/export {"uuid": "a8370358-f4ba-4618-910c-14ff71b0577d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49825", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lmryimzo222u", "content": "", "creation_timestamp": "2025-04-14T16:33:41.656355Z"} {"uuid": "a8370358-f4ba-4618-910c-14ff71b0577d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49825", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lmryimzo222u", "content": "", "creation_timestamp": "2025-04-14T16:33:41.656355Z"} https://vulnerability.circl.lu/sighting/a8370358-f4ba-4618-910c-14ff71b0577d/export Mon, 14 Apr 2025 16:33:41 +0000 bfdb3398-7f51-4824-8a6e-22ff8298e80a https://vulnerability.circl.lu/sighting/bfdb3398-7f51-4824-8a6e-22ff8298e80a/export {"uuid": "bfdb3398-7f51-4824-8a6e-22ff8298e80a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49825", "type": "seen", "source": "https://t.me/cvedetector/22877", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-49825 - IBM Robotic Process Automation Session Impersonation Vulnerability\", \n \"Content\": \"CVE ID : CVE-2024-49825 \nPublished : April 14, 2025, 3:15 p.m. | 1\u00a0hour, 19\u00a0minutes ago \nDescription : IBM Robotic Process Automation and Robotic Process Automation for Cloud Pak 21.0.0 through 21.0.7.20 and 23.0.0 through 23.0.20 does not invalidate session after a logout which could allow an authenticated user to impersonate another user on the system. \nSeverity: 6.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"14 Apr 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-14T18:51:38.000000Z"} {"uuid": "bfdb3398-7f51-4824-8a6e-22ff8298e80a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49825", "type": "seen", "source": "https://t.me/cvedetector/22877", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-49825 - IBM Robotic Process Automation Session Impersonation Vulnerability\", \n \"Content\": \"CVE ID : CVE-2024-49825 \nPublished : April 14, 2025, 3:15 p.m. | 1\u00a0hour, 19\u00a0minutes ago \nDescription : IBM Robotic Process Automation and Robotic Process Automation for Cloud Pak 21.0.0 through 21.0.7.20 and 23.0.0 through 23.0.20 does not invalidate session after a logout which could allow an authenticated user to impersonate another user on the system. \nSeverity: 6.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"14 Apr 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-14T18:51:38.000000Z"} https://vulnerability.circl.lu/sighting/bfdb3398-7f51-4824-8a6e-22ff8298e80a/export Mon, 14 Apr 2025 18:51:38 +0000 a2d13bba-edd4-4062-a0e9-0d79871a6030 https://vulnerability.circl.lu/sighting/a2d13bba-edd4-4062-a0e9-0d79871a6030/export {"uuid": "a2d13bba-edd4-4062-a0e9-0d79871a6030", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49829", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/15098", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-49829\n\ud83d\udd25 CVSS Score: 6.7 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: Memory corruption can occur during context user dumps due to inadequate checks on buffer length.\n\ud83d\udccf Published: 2025-05-06T08:32:14.738Z\n\ud83d\udccf Modified: 2025-05-06T13:14:46.682Z\n\ud83d\udd17 References:\n1. https://docs.qualcomm.com/product/publicresources/securitybulletin/may-2025-bulletin.html", "creation_timestamp": "2025-05-06T13:20:47.000000Z"} {"uuid": "a2d13bba-edd4-4062-a0e9-0d79871a6030", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49829", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/15098", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-49829\n\ud83d\udd25 CVSS Score: 6.7 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: Memory corruption can occur during context user dumps due to inadequate checks on buffer length.\n\ud83d\udccf Published: 2025-05-06T08:32:14.738Z\n\ud83d\udccf Modified: 2025-05-06T13:14:46.682Z\n\ud83d\udd17 References:\n1. https://docs.qualcomm.com/product/publicresources/securitybulletin/may-2025-bulletin.html", "creation_timestamp": "2025-05-06T13:20:47.000000Z"} https://vulnerability.circl.lu/sighting/a2d13bba-edd4-4062-a0e9-0d79871a6030/export Tue, 06 May 2025 13:20:47 +0000 58fe8188-5f94-4804-9bdf-31097ddd6859 https://vulnerability.circl.lu/sighting/58fe8188-5f94-4804-9bdf-31097ddd6859/export {"uuid": "58fe8188-5f94-4804-9bdf-31097ddd6859", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-4982", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/16022", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-4982\n\ud83d\udd25 CVSS Score: 7.6 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L)\n\ud83d\udd39 Description: A directory traversal vulnerability was discovered in Pagure server. If a malicious user submits a specially cratfted git repository they could discover secrets on the server.\n\ud83d\udccf Published: 2025-05-12T19:01:45.824Z\n\ud83d\udccf Modified: 2025-05-12T19:16:28.730Z\n\ud83d\udd17 References:\n1. https://access.redhat.com/security/cve/CVE-2024-4982\n2. https://bugzilla.redhat.com/show_bug.cgi?id=2279411\n3. https://bugzilla.redhat.com/show_bug.cgi?id=2280726\n4. https://pagure.io/pagure/c/c43844d23c919133fc983fe8c0f1dfb3b86e67d0", "creation_timestamp": "2025-05-12T19:29:10.000000Z"} {"uuid": "58fe8188-5f94-4804-9bdf-31097ddd6859", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-4982", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/16022", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-4982\n\ud83d\udd25 CVSS Score: 7.6 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L)\n\ud83d\udd39 Description: A directory traversal vulnerability was discovered in Pagure server. If a malicious user submits a specially cratfted git repository they could discover secrets on the server.\n\ud83d\udccf Published: 2025-05-12T19:01:45.824Z\n\ud83d\udccf Modified: 2025-05-12T19:16:28.730Z\n\ud83d\udd17 References:\n1. https://access.redhat.com/security/cve/CVE-2024-4982\n2. https://bugzilla.redhat.com/show_bug.cgi?id=2279411\n3. https://bugzilla.redhat.com/show_bug.cgi?id=2280726\n4. https://pagure.io/pagure/c/c43844d23c919133fc983fe8c0f1dfb3b86e67d0", "creation_timestamp": "2025-05-12T19:29:10.000000Z"} https://vulnerability.circl.lu/sighting/58fe8188-5f94-4804-9bdf-31097ddd6859/export Mon, 12 May 2025 19:29:10 +0000 27da770f-e6a6-4748-bebe-614f080fab6a https://vulnerability.circl.lu/sighting/27da770f-e6a6-4748-bebe-614f080fab6a/export {"uuid": "27da770f-e6a6-4748-bebe-614f080fab6a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-4982", "type": "seen", "source": "https://t.me/cvedetector/25112", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-4982 - Pagure Git Directory Traversal Vulnerability\", \n \"Content\": \"CVE ID : CVE-2024-4982 \nPublished : May 12, 2025, 7:15 p.m. | 1\u00a0hour, 13\u00a0minutes ago \nDescription : A directory traversal vulnerability was discovered in Pagure server. If a malicious user submits a specially cratfted git repository they could discover secrets on the server. \nSeverity: 7.6 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"12 May 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-05-12T22:48:37.000000Z"} {"uuid": "27da770f-e6a6-4748-bebe-614f080fab6a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-4982", "type": "seen", "source": "https://t.me/cvedetector/25112", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-4982 - Pagure Git Directory Traversal Vulnerability\", \n \"Content\": \"CVE ID : CVE-2024-4982 \nPublished : May 12, 2025, 7:15 p.m. | 1\u00a0hour, 13\u00a0minutes ago \nDescription : A directory traversal vulnerability was discovered in Pagure server. If a malicious user submits a specially cratfted git repository they could discover secrets on the server. \nSeverity: 7.6 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"12 May 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-05-12T22:48:37.000000Z"} https://vulnerability.circl.lu/sighting/27da770f-e6a6-4748-bebe-614f080fab6a/export Mon, 12 May 2025 22:48:37 +0000 631560ef-8633-4542-9686-e006ae86953b https://vulnerability.circl.lu/sighting/631560ef-8633-4542-9686-e006ae86953b/export {"uuid": "631560ef-8633-4542-9686-e006ae86953b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49822", "type": "seen", "source": "MISP/02fb130c-7874-4693-9b66-81ed91a2e996", "content": "", "creation_timestamp": "2025-08-12T13:33:28.000000Z"} {"uuid": "631560ef-8633-4542-9686-e006ae86953b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49822", "type": "seen", "source": "MISP/02fb130c-7874-4693-9b66-81ed91a2e996", "content": "", "creation_timestamp": "2025-08-12T13:33:28.000000Z"} https://vulnerability.circl.lu/sighting/631560ef-8633-4542-9686-e006ae86953b/export Tue, 12 Aug 2025 13:33:28 +0000 2992923b-3541-4441-be09-d97651590de6 https://vulnerability.circl.lu/sighting/2992923b-3541-4441-be09-d97651590de6/export {"uuid": "2992923b-3541-4441-be09-d97651590de6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49822", "type": "seen", "source": "MISP/02fb130c-7874-4693-9b66-81ed91a2e996", "content": "", "creation_timestamp": "2025-08-21T03:19:28.000000Z"} {"uuid": "2992923b-3541-4441-be09-d97651590de6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49822", "type": "seen", "source": "MISP/02fb130c-7874-4693-9b66-81ed91a2e996", "content": "", "creation_timestamp": "2025-08-21T03:19:28.000000Z"} https://vulnerability.circl.lu/sighting/2992923b-3541-4441-be09-d97651590de6/export Thu, 21 Aug 2025 03:19:28 +0000