{"vulnerability": "CVE-2024-4059", "sightings": [{"uuid": "c80882d9-55ff-4d83-a3cc-6c6e5ce3d162", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40590", "type": "seen", "source": "https://infosec.exchange/users/screaminggoat/statuses/113476053415922211", "content": "", "creation_timestamp": "2024-11-13T14:12:43.421544Z"}, {"uuid": "b7b86ded-7155-4197-abb7-6d899109f76e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40592", "type": "seen", "source": "https://infosec.exchange/users/screaminggoat/statuses/113471621703891497", "content": "", "creation_timestamp": "2024-11-12T19:25:40.926403Z"}, {"uuid": "19ae2c87-5209-4710-bd0f-abac538c0ee3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40591", "type": "seen", "source": "https://bsky.app/profile/dragstersystems.bsky.social/post/3li6bn5gvec2x", "content": "", "creation_timestamp": "2025-02-14T22:43:15.315418Z"}, {"uuid": "20833d21-fa6e-48ae-834c-949cf747a636", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40591", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113986285700594891", "content": "", "creation_timestamp": "2025-02-11T16:51:29.948827Z"}, {"uuid": "2094c04e-9ddd-421a-9638-3a7227841795", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40591", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lhw5ydxery2s", "content": "", "creation_timestamp": "2025-02-11T17:16:35.124849Z"}, {"uuid": "7fa89e17-0594-4db2-973a-4480783ef7a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40591", "type": "seen", "source": "https://infosec.exchange/users/screaminggoat/statuses/113986497919466758", "content": "", "creation_timestamp": "2025-02-11T17:45:29.327311Z"}, {"uuid": "9202c40c-4efd-4d1e-8fbf-0da9e6b4c202", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40591", "type": "seen", "source": "https://bsky.app/profile/hackread.bsky.social/post/3li2qlzf7is2o", "content": "", "creation_timestamp": "2025-02-13T13:00:22.555593Z"}, {"uuid": "bd6cfb8a-2410-42eb-af26-3ff9502766d1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40591", "type": "seen", "source": "https://bsky.app/profile/elhacker.net/post/3li7hicfhni2v", "content": "", "creation_timestamp": "2025-02-15T10:00:32.299401Z"}, {"uuid": "bf242422-d840-482b-acb0-0453f4e07d0a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40598", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/8700", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-40598\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: An issue was discovered in the CheckUser extension for MediaWiki through 1.42.1. The API can expose suppressed information for log events. (The log_deleted attribute is not applied to entries.)\n\ud83d\udccf Published: 2024-07-06T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-25T16:10:43.828Z\n\ud83d\udd17 References:\n1. https://phabricator.wikimedia.org/T326867", "creation_timestamp": "2025-03-25T16:25:05.000000Z"}, {"uuid": "20e568a7-459b-4ca4-badc-c3d4a9bf5614", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40591", "type": "seen", "source": "https://t.me/cvedetector/17731", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-40591 - Fortinet FortiOS Privilege Escalation Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-40591 \nPublished : Feb. 11, 2025, 5:15 p.m. | 58\u00a0minutes ago \nDescription : An incorrect privilege assignment vulnerability [CWE-266] in Fortinet FortiOS version 7.6.0, 7.4.0 through 7.4.4, 7.2.0 through 7.2.9 and before 7.0.15 allows an authenticated admin whose access profile has the Security Fabric permission to escalate their privileges to super-admin by connecting the targetted FortiGate to a malicious upstream FortiGate they control. \nSeverity: 8.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-11T19:53:04.000000Z"}, {"uuid": "cd53e20f-8254-420b-990d-81ba43fd791d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40590", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lke2qglnd72x", "content": "", "creation_timestamp": "2025-03-14T16:46:11.993268Z"}, {"uuid": "18099a90-cb2b-4362-ad0e-68e7d3bbe620", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40590", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114162103566286961", "content": "", "creation_timestamp": "2025-03-14T18:04:18.091266Z"}, {"uuid": "9bf9d43f-72b0-4f6d-a4d8-3c70185f26e0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40591", "type": "seen", "source": "MISP/71f05cce-2beb-4b80-8496-bbbabc032544", "content": "", "creation_timestamp": "2025-08-25T18:31:44.000000Z"}, {"uuid": "e6d2c61c-cc8c-45c7-a20e-3b48f5825e52", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40590", "type": "seen", "source": "https://t.me/cvedetector/20295", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-40590 - FortiPortal Certificate Validation Weakness\", \n  \"Content\": \"CVE ID : CVE-2024-40590 \nPublished : March 14, 2025, 3:15 p.m. | 15\u00a0minutes ago \nDescription : An\u00a0improper certificate validation vulnerability [CWE-295] in FortiPortal version 7.4.0, version 7.2.4 and below, version 7.0.8 and below, version 6.0.15 and below when connecting to a FortiManager device, a FortiAnalyzer device, or an SMTP server may allow an unauthenticated attacker in a Man-in-the-Middle position to intercept on and tamper with the encrypted communication channel established between the FortiPortal and those endpoints. \nSeverity: 4.8 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"14 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-14T16:42:25.000000Z"}, {"uuid": "3fc1a6cb-796f-4d1f-8f51-a762fd1b9ddb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40595", "type": "seen", "source": "https://t.me/cvedetector/8775", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-40595 - One Identity Safeguard for Privileged Sessions RDP Auth Bypass\", \n  \"Content\": \"CVE ID : CVE-2024-40595 \nPublished : Oct. 24, 2024, 6:15 a.m. | 45\u00a0minutes ago \nDescription : An authentication-bypass issue in the RDP component of One Identity Safeguard for Privileged Sessions (SPS) On Premise before 7.5.1 (and LTS before 7.0.5.1) allows man-in-the-middle attackers to obtain access to privileged sessions on target resources by intercepting cleartext RDP protocol information. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"24 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-24T09:17:31.000000Z"}, {"uuid": "77044c61-9455-435e-8446-d52b7aed441c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40599", "type": "seen", "source": "https://t.me/cvedetector/159", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-40599 - An issue was discovered in the GuMaxDD skin for Me\", \n  \"Content\": \"CVE ID : CVE-2024-40599 \nPublished : July 7, 2024, 12:15 a.m. | 38\u00a0minutes ago \nDescription : An issue was discovered in the GuMaxDD skin for MediaWiki through 1.42.1. There is stored XSS via MediaWiki:Sidebar top-level menu entries. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"07 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-07T02:57:32.000000Z"}, {"uuid": "5ecc0587-1700-4cb0-bb44-2c5885c96988", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40598", "type": "seen", "source": "https://t.me/cvedetector/153", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-40598 - An issue was discovered in the CheckUser extension\", \n  \"Content\": \"CVE ID : CVE-2024-40598 \nPublished : July 7, 2024, 12:15 a.m. | 38\u00a0minutes ago \nDescription : An issue was discovered in the CheckUser extension for MediaWiki through 1.42.1. The API can expose suppressed information for log events. (The log_deleted attribute is not applied to entries.) \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"07 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-07T02:57:26.000000Z"}, {"uuid": "553031cf-f7a5-477b-a474-4f8ad399dc0e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40597", "type": "seen", "source": "https://t.me/cvedetector/161", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-40597 - An issue was discovered in the CheckUser extension\", \n  \"Content\": \"CVE ID : CVE-2024-40597 \nPublished : July 7, 2024, 12:15 a.m. | 38\u00a0minutes ago \nDescription : An issue was discovered in the CheckUser extension for MediaWiki through 1.42.1. It can expose suppressed information for log events. (The log_deleted attribute is not respected.) \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"07 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-07T02:57:33.000000Z"}, {"uuid": "3fb0569a-941e-4b72-9c38-671a572824c3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40596", "type": "seen", "source": "https://t.me/cvedetector/157", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-40596 - An issue was discovered in the CheckUser extension\", \n  \"Content\": \"CVE ID : CVE-2024-40596 \nPublished : July 7, 2024, 12:15 a.m. | 38\u00a0minutes ago \nDescription : An issue was discovered in the CheckUser extension for MediaWiki through 1.42.1. The Special:Investigate feature can expose suppressed information for log events. (TimelineService does not support properly suppressing.) \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"07 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-07T02:57:29.000000Z"}, {"uuid": "1bf1c810-9045-49df-9396-4a7fe49b4e33", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40594", "type": "seen", "source": "https://t.me/cvedetector/139", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-40594 - The OpenAI ChatGPT app before 2024-07-05 for macOS\", \n  \"Content\": \"CVE ID : CVE-2024-40594 \nPublished : July 6, 2024, 5:15 a.m. | 23\u00a0minutes ago \nDescription : The OpenAI ChatGPT app before 2024-07-05 for macOS opts out of the sandbox, and stores conversations in cleartext in a location accessible to other apps. \nSeverity: 2.3 | LOW \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"06 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-06T07:43:33.000000Z"}]}