{"vulnerability": "CVE-2024-48885", "sightings": [{"uuid": "7931131e-bfe2-4dd7-bbf1-42374f751596", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-48885", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113837230346110730", "content": "", "creation_timestamp": "2025-01-16T09:04:45.873658Z"}, {"uuid": "dc1ccb6a-837f-4229-9cc0-67889b3e8e75", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-48885", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lftwxtgaet2t", "content": "", "creation_timestamp": "2025-01-16T09:15:18.980094Z"}, {"uuid": "4239ecf3-fc49-4e6c-9531-40b00dc3d44b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-48885", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lftykc67wr2g", "content": "", "creation_timestamp": "2025-01-16T09:43:32.272562Z"}, {"uuid": "7ab5dbaa-ffc5-4bd5-8ffe-0baa9663745d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-48885", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-044-06", "content": "", "creation_timestamp": "2025-02-13T11:00:00.000000Z"}, {"uuid": "be278776-6a7a-4858-ab85-f97d9c914dc6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-48885", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/1934", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-48885\n\ud83d\udd39 Description: A improper limitation of a pathname to a restricted directory ('path traversal') in Fortinet FortiRecorder versions 7.2.0 through 7.2.1, 7.0.0 through 7.0.4, FortiWeb versions 7.6.0, 7.4.0 through 7.4.4, 7.2.0 through 7.2.10, 7.0.0 through 7.0.10, 6.4.0 through 6.4.3, FortiVoice versions 7.0.0 through 7.0.4, 6.4.0 through 6.4.9, 6.0.0 through 6.0.12 allows attacker to escalate privilege via specially crafted packets.\n\ud83d\udccf Published: 2025-01-16T09:01:52.958Z\n\ud83d\udccf Modified: 2025-01-16T09:01:52.958Z\n\ud83d\udd17 References:\n1. https://fortiguard.fortinet.com/psirt/FG-IR-24-259", "creation_timestamp": "2025-01-16T09:55:38.000000Z"}, {"uuid": "666ff2fd-1510-4ae6-80d6-5a873c5129dc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-48885", "type": "seen", "source": "https://t.me/cvedetector/15571", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-48885 - Fortinet FortiRecorder, FortiWeb, FortiVoice Path Traversal Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-48885 \nPublished : Jan. 16, 2025, 9:15 a.m. | 39\u00a0minutes ago \nDescription : A improper limitation of a pathname to a restricted directory ('path traversal') in Fortinet FortiRecorder versions 7.2.0 through 7.2.1, 7.0.0 through 7.0.4, FortiWeb versions 7.6.0, 7.4.0 through 7.4.4, 7.2.0 through 7.2.10, 7.0.0 through 7.0.10, 6.4.0 through 6.4.3, FortiVoice versions 7.0.0 through 7.0.4, 6.4.0 through 6.4.9, 6.0.0 through 6.0.12 allows attacker to escalate privilege via specially crafted packets. \nSeverity: 5.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"16 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-16T11:12:59.000000Z"}]}