{"vulnerability": "CVE-2024-26290", "sightings": [{"uuid": "c56fbef6-1632-485d-b95a-e26a50b1847b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-26290", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/7373", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-26290\n\ud83d\udd25 CVSS Score: 8.7 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N)\n\ud83d\udd39 Description: Improper Input Validation vulnerability in Avid Avid NEXIS E-series on Linux, Avid Avid NEXIS F-series on Linux, Avid Avid NEXIS PRO+ on Linux, Avid System Director Appliance (SDA+) on Linux allows code execution on underlying operating system with root permissions.This issue affects Avid NEXIS E-series: before 2024.6.0; Avid NEXIS F-series: before 2024.6.0; Avid NEXIS PRO+: before 2024.6.0; System Director Appliance (SDA+): before 2024.6.0.\n\ud83d\udccf Published: 2025-03-12T19:45:08.869Z\n\ud83d\udccf Modified: 2025-03-12T20:27:30.076Z\n\ud83d\udd17 References:\n1. https://www.drive-byte.de/en/blog/avid-nexis-agent-multiple-vulnerabilities\n2. https://kb.avid.com/pkb/articles/troubleshooting/en239659", "creation_timestamp": "2025-03-12T20:42:35.000000Z"}, {"uuid": "ed68f0b6-c985-4c57-8252-479422853a7d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-26290", "type": "seen", "source": "https://infosec.exchange/users/vuldb/statuses/114156212301691687", "content": "", "creation_timestamp": "2025-03-13T17:06:04.139657Z"}, {"uuid": "b6ff1fb7-b62b-4bef-a1d2-c31402b9d069", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-26290", "type": "seen", "source": "https://t.me/cvedetector/20166", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-26290 - Avid NEXIS E-series/F-series/PRO+/System Director Appliance (SDA+) Remote Code Execution Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-26290 \nPublished : March 12, 2025, 8:15 p.m. | 49\u00a0minutes ago \nDescription : Improper Input Validation vulnerability in Avid Avid NEXIS E-series on Linux, Avid Avid NEXIS F-series on Linux, Avid Avid NEXIS PRO+ on Linux, Avid System Director Appliance (SDA+) on Linux allows code execution on underlying operating system with root permissions.This issue affects Avid NEXIS E-series: before 2024.6.0; Avid NEXIS F-series: before 2024.6.0; Avid NEXIS PRO+: before 2024.6.0; System Director Appliance (SDA+): before 2024.6.0. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"12 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-12T22:53:42.000000Z"}, {"uuid": "0526db6f-b213-45a9-b468-da5500fc3c84", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-26290", "type": "seen", "source": "MISP/682bdba3-46b7-4a8f-b7be-c6bf4b4f9868", "content": "", "creation_timestamp": "2025-08-13T13:26:34.000000Z"}, {"uuid": "52b4a5f4-ac01-4ef2-8d02-2912ecb26ff6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-26290", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/11943", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-26290\n\ud83d\udd25 CVSS Score: 8.7 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N)\n\ud83d\udd39 Description: Improper Input Validation vulnerability in Avid Avid NEXIS E-series on Linux, Avid Avid NEXIS F-series on Linux, Avid Avid NEXIS PRO+ on Linux, Avid System Director Appliance (SDA+) on Linux allows code execution on underlying operating system with root permissions.This issue affects Avid NEXIS E-series: before 2024.6.0; Avid NEXIS F-series: before 2024.6.0; Avid NEXIS PRO+: before 2024.6.0; System Director Appliance (SDA+): before 2024.6.0.\n\ud83d\udccf Published: 2025-03-12T19:45:08.869Z\n\ud83d\udccf Modified: 2025-04-15T22:22:19.344Z\n\ud83d\udd17 References:\n1. https://www.drive-byte.de/en/blog/avid-nexis-agent-multiple-vulnerabilities\n2. https://kb.avid.com/pkb/articles/troubleshooting/en239659", "creation_timestamp": "2025-04-15T22:55:42.000000Z"}]}