{"vulnerability": "CVE-2024-49352", "sightings": [{"uuid": "d0b6cfcd-4373-4ff6-94ad-f17b328a456c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49352", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113950951524128691", "content": "", "creation_timestamp": "2025-02-05T11:05:34.431756Z"}, {"uuid": "a9cddd37-ef91-484c-a78d-0c239a355bea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49352", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lhggzubrbp2t", "content": "", "creation_timestamp": "2025-02-05T11:15:53.974497Z"}, {"uuid": "1a113ab1-1489-484b-8573-a1d3d7f9fbc2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49352", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/5046", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-49352\n\ud83d\udd25 CVSS Score: 7.1 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L)\n\ud83d\udd39 Description: IBM Cognos Analytics 11.2.0, 11.2.1, 11.2.2, 11.2.3, 11.2.4, 12.0.0, 12.0.1, 12.0.2, 12.0.3, and 12.0.4 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources.\n\ud83d\udccf Published: 2025-02-05T10:58:33.935Z\n\ud83d\udccf Modified: 2025-02-22T21:00:55.875Z\n\ud83d\udd17 References:\n1. https://www.ibm.com/support/pages/node/7181480", "creation_timestamp": "2025-02-22T21:25:46.000000Z"}, {"uuid": "50dabe3c-920a-49f6-b95f-888380057722", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49352", "type": "seen", "source": "https://t.me/cvedetector/17279", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49352 - IBM Cognos Analytics XXE Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-49352 \nPublished : Feb. 5, 2025, 11:15 a.m. | 36\u00a0minutes ago \nDescription : IBM Cognos Analytics 11.2.0, 11.2.1, 11.2.2, 11.2.3, 11.2.4, 12.0.0, 12.0.1, 12.0.2, 12.0.3, and 12.0.4 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"05 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-05T13:17:48.000000Z"}, {"uuid": "2199925a-f8f3-4837-a2a8-4f4579c480ad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49352", "type": "seen", "source": "Telegram/q_PjS6G5RFkYnNKKi8wippS68k8WB09PcavQUZj4JBtwoWdo", "content": "", "creation_timestamp": "2025-02-06T02:43:28.000000Z"}]}