{"vulnerability": "CVE-2024-26218", "sightings": [{"uuid": "2e3f0f29-65cf-4a4d-94b6-82096213c3d7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-26218", "type": "seen", "source": "https://t.me/arpsyndicate/4495", "content": "#ExploitObserverAlert\n\nCVE-2024-26218\n\nDESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to CVE-2024-26218. Windows Kernel Elevation of Privilege Vulnerability\n\nFIRST-EPSS: 0.000430000\nNVD-IS: 5.9\nNVD-ES: 1.8", "creation_timestamp": "2024-04-11T09:44:18.000000Z"}, {"uuid": "dccbffb4-9354-4455-8f12-a816ed27945b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-26218", "type": "published-proof-of-concept", "source": "https://t.me/Teamx1945x/5565", "content": "#exploit\n1. Telegram Web app XSS/Session Hijacking 1-click\nhttps://seclists.org/oss-sec/2024/q2/183\n\n2. CVE-2019-2703:\nVirtualBox VM Escape\nhttps://j0nathanj.github.io/Dusting-off-the-VM-Escape\n\n3. CVE-2024-26218:\nWindows PspBuildCreateProcessContext Double-Fetch / Buffer Overflow\nhttps://packetstormsecurity.com/files/178377/Windows-PspBuildCreateProcessContext-Double-Fetch-Buffer-Overflow.html", "creation_timestamp": "2024-05-01T13:09:31.000000Z"}, {"uuid": "3587466e-db31-4576-a585-84e1398d45d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-26218", "type": "published-proof-of-concept", "source": "https://t.me/TheDarkWebInformer/116", "content": "\ud83d\udea8EXPLOIT POC\ud83d\udea8PoC Exploit Released For Windows Kernel EoP Vulnerability.\n\n#Clearnet #DarkWebInformer #DarkWeb #Exploit #Cyberattack #Cybercrime #Windows #Infosec #CTI #CVE202426218 #Vulnerability\n\nOne of the vulnerabilities addressed was CVE-2024-26218, associated with the Windows Kernel Privilege Escalation vulnerability, which had a severity of 7.8 (High).\n\nhttps://github.com/exploits-forsale/CVE-2024-26218\n\nX Link: https://twitter.com/DarkWebInformer/status/1784930649805029824", "creation_timestamp": "2024-04-29T15:04:41.000000Z"}, {"uuid": "54ce0f1b-9d34-4f7c-bf71-fb627577b61e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-26218", "type": "published-proof-of-concept", "source": "https://t.me/proxy_bar/2024", "content": "\u0414\u043e\u0431\u0440\u043e\u0433\u043e \u0443\u0442\u0440\u0430\nCVE-2024-26218 Windows Kernel Elevation of Privilege Vulnerability\n*\nProof-of-Concept\n\n#win #lpe", "creation_timestamp": "2024-04-27T06:38:23.000000Z"}, {"uuid": "f271a9a1-f96f-41b6-b5ad-09b83bc74f40", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-26218", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/10428", "content": "#exploit\n1. Telegram Web app XSS/Session Hijacking 1-click\nhttps://seclists.org/oss-sec/2024/q2/183\n\n2. CVE-2019-2703:\nVirtualBox VM Escape\nhttps://j0nathanj.github.io/Dusting-off-the-VM-Escape\n\n3. CVE-2024-26218:\nWindows PspBuildCreateProcessContext Double-Fetch / Buffer Overflow\nhttps://packetstormsecurity.com/files/178377/Windows-PspBuildCreateProcessContext-Double-Fetch-Buffer-Overflow.html", "creation_timestamp": "2024-05-01T23:39:10.000000Z"}]}