{"vulnerability": "cve-2024-20105", "sightings": [{"uuid": "43b78525-85f7-491a-b480-5526a664184e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-20105", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113779288474528794", "content": "", "creation_timestamp": "2025-01-06T03:29:23.266583Z"}, {"uuid": "c52643fd-1ecf-43ec-b0a2-e1d68ab710e4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-20105", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113779302266400341", "content": "", "creation_timestamp": "2025-01-06T03:32:53.520311Z"}, {"uuid": "5e351a47-488b-43a7-801d-c6ff368a33b1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-20105", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lf2bkc72em2c", "content": "", "creation_timestamp": "2025-01-06T04:15:22.711872Z"}, {"uuid": "f2cf437f-df56-4a72-abd9-481e16281f22", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-20105", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lf2d3b2hd42e", "content": "", "creation_timestamp": "2025-01-06T04:42:45.937593Z"}, {"uuid": "91778f5d-5ae7-4afa-9b04-90f55d357908", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-20105", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/164", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: GHSA-5669-3g9q-8x32\n\ud83d\udd17 Aliases: CVE-2024-20105\n\ud83d\udd39 Details: In m4u, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS09062027; Issue ID: MSV-1743.\n\ud83d\uddd3\ufe0f Modified: 2025-01-06T06:30:45Z\n\ud83d\uddd3\ufe0f Published: 2025-01-06T06:30:45Z\n\ud83c\udff7\ufe0f CWE IDs: CWE-787\n\ud83d\udd17 References:\n1. https://nvd.nist.gov/vuln/detail/CVE-2024-20105\n2. https://corp.mediatek.com/product-security-bulletin/January-2025", "creation_timestamp": "2025-01-06T06:40:42.000000Z"}, {"uuid": "567eb936-2c95-416f-8134-cd6d23205bdf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "af0120d0-3dac-4a6a-974b-a9f33d2a9846", "vulnerability": "CVE-2024-20105", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/a5165ebe-ef02-4a51-b2a6-2950b3c37690", "content": "", "creation_timestamp": "2025-01-07T07:03:20.063825Z"}, {"uuid": "7c2ecc5e-38f7-4766-88cb-de0a8d7d3787", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "af0120d0-3dac-4a6a-974b-a9f33d2a9846", "vulnerability": "CVE-2024-20105", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/a30ff14f-a073-49be-8c0c-6b6afd6a19f3", "content": "", "creation_timestamp": "2025-01-07T07:09:05.334532Z"}, {"uuid": "e07b852c-7429-49a0-8854-de0268513bae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-20105", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/656", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-20105\n\ud83d\udd39 Description: In m4u, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS09062027; Issue ID: MSV-1743.\n\ud83d\udccf Published: 2025-01-06T03:17:53.258Z\n\ud83d\udccf Modified: 2025-01-08T04:55:53.805Z\n\ud83d\udd17 References:\n1. https://corp.mediatek.com/product-security-bulletin/January-2025", "creation_timestamp": "2025-01-08T05:39:35.000000Z"}, {"uuid": "a5b19855-31dc-4602-82d3-351060cbdc75", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-20105", "type": "seen", "source": "https://t.me/cvedetector/14334", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-20105 - Apache Maven m4u Out-of-Bounds Write Privilege Escalation Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-20105 \nPublished : Jan. 6, 2025, 4:15 a.m. | 44\u00a0minutes ago \nDescription : In m4u, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS09062027; Issue ID: MSV-1743. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"06 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-06T06:03:32.000000Z"}]}