{"vulnerability": "cve-2024-4711", "sightings": [{"uuid": "f4248f87-acb6-400a-9b03-18fd407fed6b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-47115", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113611655226022131", "content": "", "creation_timestamp": "2024-12-07T12:58:02.595544Z"}, {"uuid": "ae76501c-ce9b-4d55-86a1-ca194053b467", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-47115", "type": "seen", "source": "https://infosec.exchange/users/vuldb/statuses/113612095761749853", "content": "", "creation_timestamp": "2024-12-07T14:50:04.524163Z"}, {"uuid": "c4268af9-15a1-414a-b375-1c322e90c3d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-47119", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113674546694813988", "content": "", "creation_timestamp": "2024-12-18T15:32:10.324418Z"}, {"uuid": "b36c1cd8-b5e2-4a9f-ba98-d032b7e58d1c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-47113", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113850086550006285", "content": "", "creation_timestamp": "2025-01-18T15:34:15.954660Z"}, {"uuid": "69dce60b-a773-4f26-883a-12355492f7e5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-47113", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfzpftzzun2p", "content": "", "creation_timestamp": "2025-01-18T16:15:57.781451Z"}, {"uuid": "0b311545-a9bb-4bde-9315-055e1be71e77", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-47113", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/113850379047664974", "content": "", "creation_timestamp": "2025-01-18T16:48:40.342930Z"}, {"uuid": "d72bc6b3-ae10-4d42-b256-9c0d70b77c9a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-47113", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lfzues3yxe2g", "content": "", "creation_timestamp": "2025-01-18T17:44:52.004468Z"}, {"uuid": "8f4ea344-3a8b-40fe-861e-f2e0032e07ac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-47113", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lfzues7j752g", "content": "", "creation_timestamp": "2025-01-18T17:44:52.592085Z"}, {"uuid": "38e4c071-1912-486a-84c8-86f86cfb7999", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-47116", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lh2fi5saud2t", "content": "", "creation_timestamp": "2025-01-31T16:16:09.034983Z"}, {"uuid": "675a1c3f-550a-433e-9f12-8afcf4256ee6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-47116", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lh2qmh2csu2i", "content": "", "creation_timestamp": "2025-01-31T19:35:27.981875Z"}, {"uuid": "f3bffa83-a729-4ea1-aed8-926022b5d844", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-47119", "type": "seen", "source": "MISP/acd0294c-4561-4286-a04e-5c02a1c67b1f", "content": "", "creation_timestamp": "2025-09-15T13:28:32.000000Z"}, {"uuid": "cb0e110a-cc09-49c2-bb0f-74a3008601d6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-47119", "type": "seen", "source": "MISP/acd0294c-4561-4286-a04e-5c02a1c67b1f", "content": "", "creation_timestamp": "2025-09-16T03:45:06.000000Z"}, {"uuid": "ef9cf948-af4b-4dfe-8b59-2d69604ab657", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-47113", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/2296", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-47113\n\ud83d\udd39 Description: IBM ICP - Voice Gateway\u00a01.0.2, 1.0.2.4, 1.0.3, 1.0.4, 1.0.5, 1.0.6. 1.0.7, 1.0.7.1, and 1.0.8 could allow remote attacker to send specially crafted XML statements, which would allow them to attacker to view or modify information in the XML document.\n\ud83d\udccf Published: 2025-01-18T15:29:40.728Z\n\ud83d\udccf Modified: 2025-01-18T15:29:40.728Z\n\ud83d\udd17 References:\n1. https://www.ibm.com/support/pages/node/7175791", "creation_timestamp": "2025-01-18T15:58:00.000000Z"}, {"uuid": "a78460dc-d559-4eff-b0f7-b8ad05813f31", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-47116", "type": "seen", "source": "https://t.me/cvedetector/16969", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-47116 - IBM Sterling B2B Integrator Cross-Site Scripting (XSS) Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-47116 \nPublished : Jan. 31, 2025, 4:15 p.m. | 1\u00a0hour, 46\u00a0minutes ago \nDescription : IBM Sterling B2B Integrator 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.3 Standard Edition is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. \nSeverity: 5.4 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"31 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-31T19:34:29.000000Z"}, {"uuid": "2e0579fc-65e3-474c-85a1-53d3ce8ccd5d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-47113", "type": "seen", "source": "https://t.me/cvedetector/15808", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-47113 - IBM ICP Voice Gateway XML Injection\", \n  \"Content\": \"CVE ID : CVE-2024-47113 \nPublished : Jan. 18, 2025, 4:15 p.m. | 37\u00a0minutes ago \nDescription : IBM ICP - Voice Gateway\u00a01.0.2, 1.0.2.4, 1.0.3, 1.0.4, 1.0.5, 1.0.6. 1.0.7, 1.0.7.1, and 1.0.8 could allow remote attacker to send specially crafted XML statements, which would allow them to attacker to view or modify information in the XML document. \nSeverity: 8.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"18 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-18T17:54:05.000000Z"}, {"uuid": "001e4ba7-f67e-496f-b8c5-f7e13a7a75a5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-47117", "type": "seen", "source": "https://t.me/cvedetector/12510", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-47117 - IBM Carbon Design System Carbon Charts Cross-Site Scripting Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-47117 \nPublished : Dec. 10, 2024, 2:30 p.m. | 38\u00a0minutes ago \nDescription : IBM Carbon Design System (Carbon Charts 0.4.0 through 1.13.16) is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. \nSeverity: 5.4 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"10 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-10T16:38:21.000000Z"}, {"uuid": "f0a5a73b-05cd-4bf3-8e05-fe9abd41cfa6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-47115", "type": "seen", "source": "https://t.me/cvedetector/12325", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-47115 - IBM AIX Vulnerability: Command Injection\", \n  \"Content\": \"CVE ID : CVE-2024-47115 \nPublished : Dec. 7, 2024, 1:19 p.m. | 38\u00a0minutes ago \nDescription : IBM AIX 7.2, 7.3 and VIOS 3.1 and 4.1\u00a0could allow a local user to execute arbitrary commands on the system due to improper neutralization of input. \nSeverity: 7.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"07 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-07T15:02:44.000000Z"}, {"uuid": "07f98193-1c81-42d9-8501-c3df4d6e3708", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-47115", "type": "published-proof-of-concept", "source": "https://t.me/ton618cyber/4721", "content": "#Threat_Research\n1. Watchguard Unauthenticated and Unencrypted SSO Protocol\nhttps://www.redteam-pentesting.de/en/advisories/rt-sa-2024-006\n2. Attacking UNIX Systems via CUPS (CVE-2024-47076, CVE-2024-47115, CVE-2024-47176, CVE-2024-47177)\nhttps://www.evilsocket.net/2024/09/26/Attacking-UNIX-systems-via-CUPS-Part-I\n]-> https://github.com/RickdeJager/cupshax", "creation_timestamp": "2024-09-27T19:48:09.000000Z"}, {"uuid": "c758c4ea-46fb-4884-b4d5-b82c514b251d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-47119", "type": "seen", "source": "https://t.me/cvedetector/13205", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-47119 - IBM Storage Defender - Man-in-the-Middle Certificate Validation Weakness\", \n  \"Content\": \"CVE ID : CVE-2024-47119 \nPublished : Dec. 18, 2024, 4:15 p.m. | 36\u00a0minutes ago \nDescription : IBM Storage Defender - Resiliency Service 2.0.0 through 2.0.9 does not properly validate a certificate which could allow an attacker to spoof a trusted entity by interfering in the communication path between the host and client. \nSeverity: 5.9 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"18 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-18T17:52:36.000000Z"}, {"uuid": "bf49ad8f-00e5-4b89-a989-fbd991e28ebf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-47115", "type": "published-proof-of-concept", "source": "https://t.me/ton618cyber/1491", "content": "#Threat_Research\n1. Watchguard Unauthenticated and Unencrypted SSO Protocol\nhttps://www.redteam-pentesting.de/en/advisories/rt-sa-2024-006\n2. Attacking UNIX Systems via CUPS (CVE-2024-47076, CVE-2024-47115, CVE-2024-47176, CVE-2024-47177)\nhttps://www.evilsocket.net/2024/09/26/Attacking-UNIX-systems-via-CUPS-Part-I\n]-> https://github.com/RickdeJager/cupshax", "creation_timestamp": "2024-09-27T19:48:09.000000Z"}, {"uuid": "d4af10c0-d4db-45b0-944e-f24edcc76de3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-47115", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/11196", "content": "#Threat_Research\n1. Watchguard Unauthenticated and Unencrypted SSO Protocol\nhttps://www.redteam-pentesting.de/en/advisories/rt-sa-2024-006\n2. Attacking UNIX Systems via CUPS (CVE-2024-47076, CVE-2024-47115, CVE-2024-47176, CVE-2024-47177)\nhttps://www.evilsocket.net/2024/09/26/Attacking-UNIX-systems-via-CUPS-Part-I\n]-> https://github.com/RickdeJager/cupshax", "creation_timestamp": "2024-09-28T07:25:32.000000Z"}]}