{"vulnerability": "CVE-2024-1283", "sightings": [{"uuid": "ebc876e8-80c6-4127-8dd1-d96ec8711d85", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12831", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-24-1720/", "content": "", "creation_timestamp": "2024-12-19T05:00:00.000000Z"}, {"uuid": "5ddc37cd-2806-426d-9a6d-8485a573e87e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12830", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-24-1718/", "content": "", "creation_timestamp": "2024-12-19T05:00:00.000000Z"}, {"uuid": "17f7cf47-7440-4bba-a3b5-7d4b51d7420b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12832", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-24-1719/", "content": "", "creation_timestamp": "2024-12-19T05:00:00.000000Z"}, {"uuid": "2df937f8-91f0-4fc9-8cbe-4ec32e1fb9e5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12836", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-24-1724/", "content": "", "creation_timestamp": "2024-12-20T05:00:00.000000Z"}, {"uuid": "0975da65-a559-46ea-bdfb-9c28cdae5762", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12835", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-24-1723/", "content": "", "creation_timestamp": "2024-12-20T05:00:00.000000Z"}, {"uuid": "77e3d457-66eb-440c-aa86-35c704860ddd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12834", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-24-1722/", "content": "", "creation_timestamp": "2024-12-20T05:00:00.000000Z"}, {"uuid": "c93ab0bb-f89f-441f-98f8-ea6d368b9b1d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12832", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113682309323361191", "content": "", "creation_timestamp": "2024-12-20T00:26:18.708178Z"}, {"uuid": "e6172520-d151-4200-b050-3748eb9b6869", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12830", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113682309295404760", "content": "", "creation_timestamp": "2024-12-20T00:26:18.323123Z"}, {"uuid": "101b29a0-41aa-487b-a09c-932fa72b5893", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12831", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113682309309296151", "content": "", "creation_timestamp": "2024-12-20T00:26:18.666075Z"}, {"uuid": "861ece83-8ae2-412b-bdac-f06b8927e6ba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12830", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3ldp7lek4tv2t", "content": "", "creation_timestamp": "2024-12-20T01:15:42.925359Z"}, {"uuid": "ad841ffd-5627-42ca-b3c6-43f018aa2cb5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12831", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3ldp7lh547h2x", "content": "", "creation_timestamp": "2024-12-20T01:15:45.546953Z"}, {"uuid": "0d55457f-9a01-4924-aafe-23b2345949ef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12832", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3ldp7ljzril27", "content": "", "creation_timestamp": "2024-12-20T01:15:48.522217Z"}, {"uuid": "ad06ae2c-6ecb-443c-aae9-729831135d48", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12834", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-010-03-0", "content": "", "creation_timestamp": "2025-01-10T11:00:00.000000Z"}, {"uuid": "6bad9b5a-a0e7-4193-a404-9fd4a60a2f91", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12835", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-010-03-0", "content": "", "creation_timestamp": "2025-01-10T11:00:00.000000Z"}, {"uuid": "0810f8f4-7d5e-45c2-b42f-f58507ff65f1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12836", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-010-03-0", "content": "", "creation_timestamp": "2025-01-10T11:00:00.000000Z"}, {"uuid": "cc156fcc-b813-4775-84a7-a92e1ee1a456", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12834", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113742818750162019", "content": "", "creation_timestamp": "2024-12-30T16:54:39.128091Z"}, {"uuid": "0efac6c1-d800-48d4-8329-5846977653ba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12835", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113742818764786828", "content": "", "creation_timestamp": "2024-12-30T16:54:39.351964Z"}, {"uuid": "120caf63-4a3a-4765-a629-bd99c2f61d29", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12834", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113742833836935952", "content": "", "creation_timestamp": "2024-12-30T16:58:29.760175Z"}, {"uuid": "198a6802-75a6-498a-be12-9aa69d8f0def", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12835", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113742833851325687", "content": "", "creation_timestamp": "2024-12-30T16:58:29.899704Z"}, {"uuid": "3f5bfa97-d52f-4dcf-acd8-063c2c6f8347", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12836", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113742892883784558", "content": "", "creation_timestamp": "2024-12-30T17:13:30.602770Z"}, {"uuid": "b8f378f3-a630-44c0-87b0-ee8e2423cdeb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12833", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-24-1736/", "content": "", "creation_timestamp": "2024-12-30T05:00:00.000000Z"}, {"uuid": "0c61fead-b644-4691-b373-f2e9d2391522", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12838", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113744869181833797", "content": "", "creation_timestamp": "2024-12-31T01:36:06.332927Z"}, {"uuid": "95eeae06-1730-4f68-a5ec-fd09fb2b3730", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12839", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113744869196669712", "content": "", "creation_timestamp": "2024-12-31T01:36:06.530015Z"}, {"uuid": "e01b97a4-bd86-48d8-af40-e29057286b97", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12833", "type": "seen", "source": "https://bsky.app/profile/dirkfre.bsky.social/post/3leqz5mzovk23", "content": "", "creation_timestamp": "2025-01-02T11:51:13.017675Z"}, {"uuid": "b9c974a0-b443-4761-8e53-f623d6deb717", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12833", "type": "seen", "source": "https://infosec.exchange/users/vuldb/statuses/113763450436894788", "content": "", "creation_timestamp": "2025-01-03T08:21:33.649323Z"}, {"uuid": "4682ea11-f31f-4675-9351-4a81ffa19763", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12833", "type": "seen", "source": "https://bsky.app/profile/decrypt.lol/post/3lga5nilt5x2i", "content": "", "creation_timestamp": "2025-01-21T05:46:46.024832Z"}, {"uuid": "3f6f6a89-e9c3-44a2-bf7e-b23548ddbd16", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12833", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lhwhzi34xc2a", "content": "", "creation_timestamp": "2025-02-11T20:16:10.491034Z"}, {"uuid": "1bd43f83-9ca2-4d5e-89fa-6d6adb6ecb40", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12833", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/113987218940715523", "content": "", "creation_timestamp": "2025-02-11T20:48:52.388056Z"}, {"uuid": "88dff00b-dd5f-4937-9392-45c1193cc36d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12833", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lhwrgjprt22i", "content": "", "creation_timestamp": "2025-02-11T23:04:32.048828Z"}, {"uuid": "a54733e4-3e48-4c3a-84bc-fd7f27f188f1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12832", "type": "seen", "source": "https://t.me/cvedetector/13390", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-12832 - Arista NG Firewall SQL Injection RCE\", \n  \"Content\": \"CVE ID : CVE-2024-12832 \nPublished : Dec. 20, 2024, 1:15 a.m. | 40\u00a0minutes ago \nDescription : Arista NG Firewall ReportEntry SQL Injection Arbitrary File Read and Write Vulnerability. This vulnerability allows remote attackers to create arbitrary files and disclose sensitive information on affected installations of Arista NG Firewall. Authentication is required to exploit this vulnerability.  \n  \nThe specific flaw exists within the ReportEntry class. The issue results from the lack of proper validation of a user-supplied string before using it to construct SQL queries. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the www-data user. Was ZDI-CAN-24325. \nSeverity: 8.3 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"20 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-20T03:21:57.000000Z"}, {"uuid": "7fbe5d82-4957-4be4-abac-b34a2be5745d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12837", "type": "seen", "source": "https://t.me/cvedetector/19793", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-12837 - Oracle VirtualBox GPU Heap Corruption\", \n  \"Content\": \"CVE ID : CVE-2024-12837 \nPublished : March 7, 2025, 8:15 a.m. | 46\u00a0minutes ago \nDescription : Software installed and run as a non-privileged user may conduct improper GPU system calls to corrupt kernel heap memory. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"07 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-07T10:45:13.000000Z"}, {"uuid": "8b4ba4d5-2484-47e3-bc31-1dc380143da2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12833", "type": "seen", "source": "Telegram/N4LAoa0eCXSp1NarIiUkOrZo3F55hEMVHqAyE620STfhf8JP", "content": "", "creation_timestamp": "2025-02-18T23:42:23.000000Z"}, {"uuid": "2fa41074-2758-4049-af47-afd4aab9641f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12835", "type": "seen", "source": "https://t.me/cvedetector/13942", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-12835 - Delta Electronics DRASimuCAD ICS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-12835 \nPublished : Dec. 30, 2024, 5:15 p.m. | 44\u00a0minutes ago \nDescription : Delta Electronics DRASimuCAD ICS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics DRASimuCAD. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.  \n  \nThe specific flaw exists within the parsing of ICS files. The issue results from the lack of proper validation of user-supplied data, which can result in a write past the end of an allocated buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-22415. \nSeverity: 7.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"30 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-30T19:18:37.000000Z"}, {"uuid": "607ee4be-08cc-4512-86e0-f7a508f88fa9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12837", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/6822", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-12837\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Software installed and run as a non-privileged user may conduct improper GPU system calls to corrupt kernel heap memory.\n\ud83d\udccf Published: 2025-03-07T07:45:16.126Z\n\ud83d\udccf Modified: 2025-03-07T07:45:16.126Z\n\ud83d\udd17 References:\n1. https://www.imaginationtech.com/gpu-driver-vulnerabilities/", "creation_timestamp": "2025-03-07T08:35:12.000000Z"}, {"uuid": "7ea00a2e-dde8-444c-98cb-9cd09d101e0a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12831", "type": "seen", "source": "https://t.me/cvedetector/13389", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-12831 - Arista NG Firewall uvm_login Privilege Escalation Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-12831 \nPublished : Dec. 20, 2024, 1:15 a.m. | 40\u00a0minutes ago \nDescription : Arista NG Firewall uvm_login Incorrect Authorization Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Arista NG Firewall. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.  \n  \nThe specific flaw exists within the uvm_login module. The issue results from incorrect authorization. An attacker can leverage this to escalate privileges to resources normally protected from the user. Was ZDI-CAN-24324. \nSeverity: 6.6 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"20 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-20T03:21:56.000000Z"}, {"uuid": "cfd89526-f90a-4708-afbc-5c232a823d92", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12830", "type": "seen", "source": "https://t.me/cvedetector/13388", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-12830 - Arista NG Firewall Custom Handler Remote Code Execution Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-12830 \nPublished : Dec. 20, 2024, 1:15 a.m. | 40\u00a0minutes ago \nDescription : Arista NG Firewall custom_handler Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Arista NG Firewall. Authentication is not required to exploit this vulnerability.  \n  \nThe specific flaw exists within the implementation of the custom_handler method. The issue results from the lack of proper validation of a user-supplied path prior to using it in file operations. An attacker can leverage this vulnerability to execute code in the context of the www-data user. Was ZDI-CAN-24019. \nSeverity: 8.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"20 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-20T03:21:56.000000Z"}, {"uuid": "60b61c85-18cc-4123-871a-9854ee5d9888", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12838", "type": "seen", "source": "https://t.me/cvedetector/13969", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-12838 - \"CGFIDO Authentication Bypass Vulnerability\"\", \n  \"Content\": \"CVE ID : CVE-2024-12838 \nPublished : Dec. 31, 2024, 2:15 a.m. | 24\u00a0minutes ago \nDescription : The passwordless login mechanism in CGFIDO from Changing Information Technology has an Authentication Bypass vulnerability, allowing remote attackers with regular privileges to send a crafted request to switch to the identity of any user, including administrators. \nSeverity: 8.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"31 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-31T03:40:09.000000Z"}, {"uuid": "51330228-7321-4364-aa8f-8db26df73bd7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12836", "type": "seen", "source": "https://t.me/cvedetector/13943", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-12836 - Delta Electronics DRASimuCAD STP File Parsing Type Confusion Remote Code Execution Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-12836 \nPublished : Dec. 30, 2024, 5:15 p.m. | 44\u00a0minutes ago \nDescription : Delta Electronics DRASimuCAD STP File Parsing Type Confusion Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics DRASimuCAD. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.  \n  \nThe specific flaw exists within the parsing of STP files. The issue results from the lack of proper validation of user-supplied data, which can result in a type confusion condition. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-22450. \nSeverity: 7.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"30 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-30T19:18:38.000000Z"}, {"uuid": "45d52dc8-f065-4a70-bb96-1950a347b85e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12834", "type": "seen", "source": "https://t.me/cvedetector/13946", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-12834 - Delta Electronics DRASimuCAD STP File Parsing Type Confusion Remote Code Execution Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-12834 \nPublished : Dec. 30, 2024, 5:15 p.m. | 44\u00a0minutes ago \nDescription : Delta Electronics DRASimuCAD STP File Parsing Type Confusion Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics DRASimuCAD. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.  \n  \nThe specific flaw exists within the parsing of STP files. The issue results from the lack of proper validation of user-supplied data, which can result in a type confusion condition. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-22414. \nSeverity: 7.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"30 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-30T19:18:40.000000Z"}, {"uuid": "a01c3d93-5cf4-42fb-af05-2f51c1eac370", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-1283", "type": "seen", "source": "https://t.me/ctinow/197662", "content": "https://ift.tt/8uOoRiI\nCVE-2024-1283 | Google Chrome prior 121.0.6167.160 Skia heap-based overflow (ID 41494)", "creation_timestamp": "2024-03-01T14:46:51.000000Z"}, {"uuid": "db671ad6-34a7-4c01-95cd-cc5a2ac58e99", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12839", "type": "seen", "source": "https://t.me/cvedetector/13968", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-12839 - Changing Information Technology CGFIDO Session Hijacking Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-12839 \nPublished : Dec. 31, 2024, 2:15 a.m. | 24\u00a0minutes ago \nDescription : The login mechanism via device authentication of CGFIDO from Changing Information Technology has an Authentication Bypass vulnerability. If a user visits a forged website, the agent program deployed on their device will send an authentication signature to the website. An unauthenticated remote attacker who obtains this signature can use it to log into the system with any device. \nSeverity: 8.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"31 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-31T03:40:08.000000Z"}, {"uuid": "f66c49f9-1730-481d-be97-e3ef54e4cf2a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12837", "type": "seen", "source": "Telegram/FlG8x61V-znZvoIp_7YSsDCNrg0-5ybd9nom7Qh6ZcA3rlFq", "content": "", "creation_timestamp": "2025-03-08T04:34:57.000000Z"}, {"uuid": "97c28a37-ed44-4905-b546-a25c21151ee0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-1283", "type": "seen", "source": "https://t.me/ctinow/181645", "content": "https://ift.tt/qPCHD28\nChromium: CVE-2024-1283 Heap buffer overflow in Skia", "creation_timestamp": "2024-02-08T21:36:39.000000Z"}, {"uuid": "d3068799-6276-4ea3-8b71-c36140699668", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-1283", "type": "seen", "source": "https://t.me/ctinow/180455", "content": "https://ift.tt/YsQAWJk\nCVE-2024-1283", "creation_timestamp": "2024-02-07T01:26:43.000000Z"}]}