{"vulnerability": "CVE-2024-42185", "sightings": [{"uuid": "ed316821-f17d-4e2c-be30-9aaca9d8f575", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-42185", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lgew5oc5c42h", "content": "", "creation_timestamp": "2025-01-23T03:15:56.609141Z"}, {"uuid": "9774ea9c-ee2e-4595-96b9-354a3182bd9b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-42185", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lgexahpxu525", "content": "", "creation_timestamp": "2025-01-23T03:35:24.631342Z"}, {"uuid": "f871b33e-55b3-4b37-9222-fceedb28b6bc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-42185", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/2709", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-42185\n\ud83d\udd39 Description: BigFix Patch Download Plug-ins are affected by an insecure package which is susceptible to XML injection attacks.  This allows an attacker to exploit this vulnerability by injecting malicious XML content, which can lead to various issues including denial of service and unauthorized access.\n\ud83d\udccf Published: 2025-01-23T02:10:02.525Z\n\ud83d\udccf Modified: 2025-01-23T02:21:15.016Z\n\ud83d\udd17 References:\n1. https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0118565", "creation_timestamp": "2025-01-23T03:02:49.000000Z"}, {"uuid": "0f31be9c-8276-4bee-a7a8-84887a5a0334", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-42185", "type": "seen", "source": "https://t.me/cvedetector/16159", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-42185 - IBM BigFix XML Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-42185 \nPublished : Jan. 23, 2025, 3:15 a.m. | 39\u00a0minutes ago \nDescription : BigFix Patch Download Plug-ins are affected by an insecure package which is susceptible to XML injection attacks.  This allows an attacker to exploit this vulnerability by injecting malicious XML content, which can lead to various issues including denial of service and unauthorized access. \nSeverity: 2.5 | LOW \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"23 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-23T04:56:38.000000Z"}]}