{"vulnerability": "CVE-2024-25718", "sightings": [{"uuid": "cf9dd81b-c74d-4a6e-a4ff-c9f8f3445e95", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-25718", "type": "seen", "source": "https://t.me/arpsyndicate/3513", "content": "#ExploitObserverAlert\n\nCVE-2024-25718\n\nDESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to CVE-2024-25718. In the Samly package before 1.4.0 for Elixir, Samly.State.Store.get_assertion/3 can return an expired session, which interferes with access control because Samly.AuthHandler uses a cached session and does not replace it, even after expiry.\n\nFIRST-EPSS: 0.000440000", "creation_timestamp": "2024-02-13T02:13:03.000000Z"}, {"uuid": "fc6bce43-346e-48ca-ba76-28af5cec7c9f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-25718", "type": "seen", "source": "https://t.me/ctinow/182692", "content": "https://ift.tt/49LyCRU\nCVE-2024-25718", "creation_timestamp": "2024-02-11T06:26:51.000000Z"}]}