{"vulnerability": "CVE-2024-4568", "sightings": [{"uuid": "7b142a4d-e015-4447-8f21-f89f230e0155", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-45689", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113514815716516736", "content": "", "creation_timestamp": "2024-11-20T10:30:29.093521Z"}, {"uuid": "fc472683-ff76-4a45-90fc-861d0dac2be3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-45687", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113867340763127015", "content": "", "creation_timestamp": "2025-01-21T16:42:15.682186Z"}, {"uuid": "28096ae6-cd10-4206-8c54-5338825a4a27", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-45687", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lgbe5wrluc2n", "content": "", "creation_timestamp": "2025-01-21T17:15:59.152954Z"}, {"uuid": "6d94e823-f867-4fca-ad39-0d9bc7ef741c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-45687", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lgbgv2vkhx2h", "content": "", "creation_timestamp": "2025-01-21T18:04:43.398095Z"}, {"uuid": "7bc473fd-3dcd-4b1c-b8c0-781e556ee747", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-45689", "type": "seen", "source": "https://t.me/cvedetector/11578", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-45689 - Moodle Impactful Table Access Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-45689 \nPublished : Nov. 20, 2024, 11:15 a.m. | 38\u00a0minutes ago \nDescription : A flaw was found in Moodle. Dynamic tables did not enforce capability checks, which resulted in users having the ability to retrieve information they did not have permission to access. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"20 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-20T12:54:03.000000Z"}, {"uuid": "0629f365-5228-4fab-9b16-46ef5ae4b1d7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-45687", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/2427", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-45687\n\ud83d\udd39 Description: Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Request/Response Splitting') vulnerability in Payara Platform Payara Server (Grizzly, REST Management Interface modules), Payara Platform Payara Micro (Grizzly modules) allows Manipulating State, Identity Spoofing.This issue affects Payara Server: from 4.1.151 through 4.1.2.191.51, from 5.20.0 through 5.70.0, from 5.2020.2 through 5.2022.5, from 6.2022.1 through 6.2024.12, from 6.0.0 through 6.21.0; Payara Micro: from 4.1.152 through 4.1.2.191.51, from 5.20.0 through 5.70.0, from 5.2020.2 through 5.2022.5, from 6.2022.1 through 6.2024.12, from 6.0.0 through 6.21.0.\n\ud83d\udccf Published: 2025-01-21T16:35:43.932Z\n\ud83d\udccf Modified: 2025-01-21T16:35:43.932Z\n\ud83d\udd17 References:\n1. https://docs.payara.fish/enterprise/docs/Release%20Notes/Release%20Notes%206.22.0.html\n2. https://docs.payara.fish/enterprise/docs/5.71.0/Release%20Notes/Release%20Notes%205.71.0.html\n3. https://docs.payara.fish/community/docs/6.2025.1/Release%20Notes/Release%20Notes%206.2025.1.html", "creation_timestamp": "2025-01-21T17:00:45.000000Z"}, {"uuid": "7b4e3511-7de3-4d5f-a5c0-d27acca3a660", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-45687", "type": "seen", "source": "https://t.me/cvedetector/15983", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-45687 - Payara Platform HTTP Request Response Splitting\", \n  \"Content\": \"CVE ID : CVE-2024-45687 \nPublished : Jan. 21, 2025, 5:15 p.m. | 17\u00a0minutes ago \nDescription : Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Request/Response Splitting') vulnerability in Payara Platform Payara Server (Grizzly, REST Management Interface modules), Payara Platform Payara Micro (Grizzly modules) allows Manipulating State, Identity Spoofing.This issue affects Payara Server: from 4.1.151 through 4.1.2.191.51, from 5.20.0 through 5.70.0, from 5.2020.2 through 5.2022.5, from 6.2022.1 through 6.2024.12, from 6.0.0 through 6.21.0; Payara Micro: from 4.1.152 through 4.1.2.191.51, from 5.20.0 through 5.70.0, from 5.2020.2 through 5.2022.5, from 6.2022.1 through 6.2024.12, from 6.0.0 through 6.21.0. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"21 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-21T18:38:46.000000Z"}, {"uuid": "3b44542d-1849-47a2-9d7b-be62f54d82fa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-45682", "type": "seen", "source": "https://t.me/cvedetector/5829", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-45682 - Cisco Device Command Injection\", \n  \"Content\": \"CVE ID : CVE-2024-45682 \nPublished : Sept. 17, 2024, 6:15 p.m. | 16\u00a0minutes ago \nDescription : There is a command injection vulnerability that may allow an attacker to inject malicious input on the device's operating system. \nSeverity: 8.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-17T20:37:44.000000Z"}]}