From 7faf59b89d4e7b1c7471305fdd5490bd7937db1a Mon Sep 17 00:00:00 2001 From: cristianovisk Date: Wed, 25 Dec 2024 05:09:53 +0000 Subject: [PATCH] New Tweets Addeds --- social_media/x/2019/CVE-2019-1289.json | 30 +++ social_media/x/2024/CVE-2024-30085.json | 318 +++++++++++++++++++++--- social_media/x/2024/CVE-2024-30088.json | 98 ++++++-- social_media/x/2024/CVE-2024-38819.json | 23 ++ social_media/x/2024/CVE-2024-45337.json | 23 ++ social_media/x/2024/CVE-2024-47575.json | 28 +++ social_media/x/2024/CVE-2024-50379.json | 171 +++++++++---- social_media/x/2024/CVE-2024-53961.json | 122 +++++++-- social_media/x/2024/CVE-2024-56337.json | 137 +++++----- social_media/x/tweet_cves_resumo.csv | 17 +- 10 files changed, 782 insertions(+), 185 deletions(-) create mode 100644 social_media/x/2019/CVE-2019-1289.json diff --git a/social_media/x/2019/CVE-2019-1289.json b/social_media/x/2019/CVE-2019-1289.json new file mode 100644 index 000000000..84a583edf --- /dev/null +++ b/social_media/x/2019/CVE-2019-1289.json @@ -0,0 +1,30 @@ +[ + { + "cve": "CVE-2019-1289", + "created_datetime": "2024-12-25T03:20:11", + "author_id": "176535703", + "data_id": "1871757805931360680", + "reposts": 0, + "post": "@glask1d why are you playing with cve-2019-1289\n? someone is on the naughty list and doest patch.", + "audience": 1254, + "audience_total": 1254, + "total_reposts": 0, + "post_count": 1, + "author": "mike", + "username": "rgrmike", + "v_score": 0.27098, + "e_score": 0.01376, + "base_score": "5.5", + "description": "AN ELEVATION OF PRIVILEGE VULNERABILITY EXISTS WHEN THE WINDOWS UPDATE DELIVERY OPTIMIZATION DOES NOT PROPERLY ENFORCE FILE SHARE PERMISSIONS, AKA WINDOWS UPDATE DELIVERY OPTIMIZATION ELEVATION OF PRIVILEGE VULNERABILITY.", + "last_modified_datetime": "2020-08-24 17:37:00", + "published_datetime": "2019-09-11 22:15:00", + "vendor_logo": [ + [ + "microsoft", + "https://kazepublic.blob.core.windows.net/vendor-logos/data/microsoft/microsoft_logo.webp" + ] + ], + "profile_url": null, + "feed_name": "twitter" + } +] \ No newline at end of file diff --git a/social_media/x/2024/CVE-2024-30085.json b/social_media/x/2024/CVE-2024-30085.json index e243ff53f..a53c7d49e 100644 --- a/social_media/x/2024/CVE-2024-30085.json +++ b/social_media/x/2024/CVE-2024-30085.json @@ -389,12 +389,12 @@ "reposts": 1, "post": "rt @dinosn: poc exploit released for cve-2024-30085: windows elevation of privilege vulnerability https://t.co/atld3uukym", "audience": 11, - "audience_total": 34616, - "total_reposts": 28, + "audience_total": 77016, + "total_reposts": 37, "post_count": 0, "author": "ver_02", "username": "ver__02", - "v_score": 0.440797, + "v_score": 0.49149, "e_score": 0.00046, "base_score": "7.8", "description": "WINDOWS CLOUD FILES MINI FILTER DRIVER ELEVATION OF PRIVILEGE VULNERABILITY", @@ -417,12 +417,12 @@ "reposts": 1, "post": "rt @dinosn: poc exploit released for cve-2024-30085: windows elevation of privilege vulnerability https://t.co/atld3uukym", "audience": 598, - "audience_total": 34616, - "total_reposts": 28, + "audience_total": 77016, + "total_reposts": 37, "post_count": 0, "author": "a k i n a r i", "username": "sekigawaakinari", - "v_score": 0.440797, + "v_score": 0.49149, "e_score": 0.00046, "base_score": "7.8", "description": "WINDOWS CLOUD FILES MINI FILTER DRIVER ELEVATION OF PRIVILEGE VULNERABILITY", @@ -473,12 +473,12 @@ "reposts": 1, "post": "rt @dinosn: poc exploit released for cve-2024-30085: windows elevation of privilege vulnerability https://t.co/atld3uukym", "audience": 8, - "audience_total": 34616, - "total_reposts": 28, + "audience_total": 77016, + "total_reposts": 37, "post_count": 0, "author": "bob hope", "username": "bobhope688462", - "v_score": 0.440797, + "v_score": 0.49149, "e_score": 0.00046, "base_score": "7.8", "description": "WINDOWS CLOUD FILES MINI FILTER DRIVER ELEVATION OF PRIVILEGE VULNERABILITY", @@ -585,12 +585,12 @@ "reposts": 1, "post": "rt @dinosn: poc exploit released for cve-2024-30085: windows elevation of privilege vulnerability https://t.co/atld3uukym", "audience": 153, - "audience_total": 34616, - "total_reposts": 28, + "audience_total": 77016, + "total_reposts": 37, "post_count": 0, "author": "kelvin arcelay", "username": "karcelay", - "v_score": 0.440797, + "v_score": 0.49149, "e_score": 0.00046, "base_score": "7.8", "description": "WINDOWS CLOUD FILES MINI FILTER DRIVER ELEVATION OF PRIVILEGE VULNERABILITY", @@ -641,12 +641,12 @@ "reposts": 1, "post": "rt @dinosn: poc exploit released for cve-2024-30085: windows elevation of privilege vulnerability https://t.co/atld3uukym", "audience": 1211, - "audience_total": 34616, - "total_reposts": 28, + "audience_total": 77016, + "total_reposts": 37, "post_count": 0, "author": "mercedes mu\u00f1oz (m)", "username": "mikiminoru", - "v_score": 0.440797, + "v_score": 0.49149, "e_score": 0.00046, "base_score": "7.8", "description": "WINDOWS CLOUD FILES MINI FILTER DRIVER ELEVATION OF PRIVILEGE VULNERABILITY", @@ -669,12 +669,12 @@ "reposts": 1, "post": "rt @dinosn: poc exploit released for cve-2024-30085: windows elevation of privilege vulnerability https://t.co/atld3uukym", "audience": 2501, - "audience_total": 34616, - "total_reposts": 28, + "audience_total": 77016, + "total_reposts": 37, "post_count": 0, "author": "saxhornet \ud83c\udfb7\ud83c\uddee\ud83c\uddf1\ud83c\uddeb\ud83c\uddf7\ud83c\uddfa\ud83c\uddf8\ud83c\uddf7\ud83c\uddfa", "username": "saxboatsec", - "v_score": 0.440797, + "v_score": 0.49149, "e_score": 0.00046, "base_score": "7.8", "description": "WINDOWS CLOUD FILES MINI FILTER DRIVER ELEVATION OF PRIVILEGE VULNERABILITY", @@ -697,12 +697,12 @@ "reposts": 1, "post": "rt @dinosn: poc exploit released for cve-2024-30085: windows elevation of privilege vulnerability https://t.co/atld3uukym", "audience": 13, - "audience_total": 34616, - "total_reposts": 28, + "audience_total": 77016, + "total_reposts": 37, "post_count": 0, "author": "adnan shaikh", "username": "xanroot", - "v_score": 0.440797, + "v_score": 0.49149, "e_score": 0.00046, "base_score": "7.8", "description": "WINDOWS CLOUD FILES MINI FILTER DRIVER ELEVATION OF PRIVILEGE VULNERABILITY", @@ -725,12 +725,12 @@ "reposts": 1, "post": "rt @the_yellow_fall: poc exploit released for cve-2024-30085: windows elevation of privilege vulnerability\n\nresearcher published the techni\u2026", "audience": 2600, - "audience_total": 34616, - "total_reposts": 28, + "audience_total": 77016, + "total_reposts": 37, "post_count": 0, "author": "merl", "username": "merlax_", - "v_score": 0.440797, + "v_score": 0.49149, "e_score": 0.00046, "base_score": "7.8", "description": "WINDOWS CLOUD FILES MINI FILTER DRIVER ELEVATION OF PRIVILEGE VULNERABILITY", @@ -753,12 +753,12 @@ "reposts": 1, "post": "rt @dinosn: poc exploit released for cve-2024-30085: windows elevation of privilege vulnerability https://t.co/atld3uukym", "audience": 141, - "audience_total": 34616, - "total_reposts": 28, + "audience_total": 77016, + "total_reposts": 37, "post_count": 0, "author": "theyak", "username": "peter_profess", - "v_score": 0.440797, + "v_score": 0.49149, "e_score": 0.00046, "base_score": "7.8", "description": "WINDOWS CLOUD FILES MINI FILTER DRIVER ELEVATION OF PRIVILEGE VULNERABILITY", @@ -781,12 +781,12 @@ "reposts": 1, "post": "rt @dinosn: poc exploit released for cve-2024-30085: windows elevation of privilege vulnerability https://t.co/atld3uukym", "audience": 123, - "audience_total": 34616, - "total_reposts": 28, + "audience_total": 77016, + "total_reposts": 37, "post_count": 0, "author": "ricardo loor ramos", "username": "ricardoloor_r", - "v_score": 0.440797, + "v_score": 0.49149, "e_score": 0.00046, "base_score": "7.8", "description": "WINDOWS CLOUD FILES MINI FILTER DRIVER ELEVATION OF PRIVILEGE VULNERABILITY", @@ -809,12 +809,264 @@ "reposts": 1, "post": "rt @dinosn: poc exploit released for cve-2024-30085: windows elevation of privilege vulnerability https://t.co/atld3uukym", "audience": 20, - "audience_total": 34616, - "total_reposts": 28, + "audience_total": 77016, + "total_reposts": 37, "post_count": 0, "author": "mrh4t", "username": "mrh4t", - "v_score": 0.440797, + "v_score": 0.49149, + "e_score": 0.00046, + "base_score": "7.8", + "description": "WINDOWS CLOUD FILES MINI FILTER DRIVER ELEVATION OF PRIVILEGE VULNERABILITY", + "last_modified_datetime": "2024-06-21 19:04:00", + "published_datetime": "2024-06-11 17:15:00", + "vendor_logo": [ + [ + "microsoft", + "https://kazepublic.blob.core.windows.net/vendor-logos/data/microsoft/microsoft_logo.webp" + ] + ], + "profile_url": null, + "feed_name": "twitter" + }, + { + "cve": "CVE-2024-30085", + "created_datetime": "2024-12-25T01:59:07", + "author_id": "57032086", + "data_id": "1871737404459196697", + "reposts": 1, + "post": "rt @dinosn: poc exploit released for cve-2024-30085: windows elevation of privilege vulnerability https://t.co/atld3uukym", + "audience": 761, + "audience_total": 77016, + "total_reposts": 37, + "post_count": 0, + "author": "andres galvan", + "username": "andres_gal", + "v_score": 0.49149, + "e_score": 0.00046, + "base_score": "7.8", + "description": "WINDOWS CLOUD FILES MINI FILTER DRIVER ELEVATION OF PRIVILEGE VULNERABILITY", + "last_modified_datetime": "2024-06-21 19:04:00", + "published_datetime": "2024-06-11 17:15:00", + "vendor_logo": [ + [ + "microsoft", + "https://kazepublic.blob.core.windows.net/vendor-logos/data/microsoft/microsoft_logo.webp" + ] + ], + "profile_url": null, + "feed_name": "twitter" + }, + { + "cve": "CVE-2024-30085", + "created_datetime": "2024-12-25T02:40:40", + "author_id": "1028202650905468928", + "data_id": "1871747864013213960", + "reposts": 1, + "post": "rt @the_yellow_fall: poc exploit released for cve-2024-30085: windows elevation of privilege vulnerability\n\nresearcher published the techni\u2026", + "audience": 12, + "audience_total": 77016, + "total_reposts": 37, + "post_count": 0, + "author": "\u0435\u0431\u0430\u0442\u044c \u043f\u0440\u0430\u0432\u0438\u0442\u0435\u043b\u044c\u0441\u0442\u0432\u043e", + "username": "bbuk121", + "v_score": 0.49149, + "e_score": 0.00046, + "base_score": "7.8", + "description": "WINDOWS CLOUD FILES MINI FILTER DRIVER ELEVATION OF PRIVILEGE VULNERABILITY", + "last_modified_datetime": "2024-06-21 19:04:00", + "published_datetime": "2024-06-11 17:15:00", + "vendor_logo": [ + [ + "microsoft", + "https://kazepublic.blob.core.windows.net/vendor-logos/data/microsoft/microsoft_logo.webp" + ] + ], + "profile_url": null, + "feed_name": "twitter" + }, + { + "cve": "CVE-2024-30085", + "created_datetime": "2024-12-25T01:12:16", + "author_id": "733964421794406400", + "data_id": "1871725615705198791", + "reposts": 1, + "post": "rt @dinosn: poc exploit released for cve-2024-30085: windows elevation of privilege vulnerability https://t.co/atld3uukym", + "audience": 113, + "audience_total": 77016, + "total_reposts": 37, + "post_count": 0, + "author": "fatgrass", + "username": "micro0x01", + "v_score": 0.49149, + "e_score": 0.00046, + "base_score": "7.8", + "description": "WINDOWS CLOUD FILES MINI FILTER DRIVER ELEVATION OF PRIVILEGE VULNERABILITY", + "last_modified_datetime": "2024-06-21 19:04:00", + "published_datetime": "2024-06-11 17:15:00", + "vendor_logo": [ + [ + "microsoft", + "https://kazepublic.blob.core.windows.net/vendor-logos/data/microsoft/microsoft_logo.webp" + ] + ], + "profile_url": "https://abs.twimg.com/sticky/default_profile_images/default_profile_normal.png", + "feed_name": "twitter" + }, + { + "cve": "CVE-2024-30085", + "created_datetime": "2024-12-25T03:36:21", + "author_id": "565373746", + "data_id": "1871761873764548731", + "reposts": 1, + "post": "rt @starlabs_sg: \ud83c\udf84 all i want for christmas is a cve-2024-30085 exploit \ud83c\udf84\nas always, we at @starlabs_sg are sharing what we learnt. this ti\u2026", + "audience": 32310, + "audience_total": 77016, + "total_reposts": 37, + "post_count": 0, + "author": "b33f | \ud83c\uddfa\ud83c\udde6\u270a", + "username": "fuzzysec", + "v_score": 0.49149, + "e_score": 0.00046, + "base_score": "7.8", + "description": "WINDOWS CLOUD FILES MINI FILTER DRIVER ELEVATION OF PRIVILEGE VULNERABILITY", + "last_modified_datetime": "2024-06-21 19:04:00", + "published_datetime": "2024-06-11 17:15:00", + "vendor_logo": [ + [ + "microsoft", + "https://kazepublic.blob.core.windows.net/vendor-logos/data/microsoft/microsoft_logo.webp" + ] + ], + "profile_url": null, + "feed_name": "twitter" + }, + { + "cve": "CVE-2024-30085", + "created_datetime": "2024-12-25T01:54:21", + "author_id": "761086298329223168", + "data_id": "1871736204930273338", + "reposts": 1, + "post": "rt @dinosn: poc exploit released for cve-2024-30085: windows elevation of privilege vulnerability https://t.co/atld3uukym", + "audience": 111, + "audience_total": 77016, + "total_reposts": 37, + "post_count": 0, + "author": "hardy chang", + "username": "vaexdanny", + "v_score": 0.49149, + "e_score": 0.00046, + "base_score": "7.8", + "description": "WINDOWS CLOUD FILES MINI FILTER DRIVER ELEVATION OF PRIVILEGE VULNERABILITY", + "last_modified_datetime": "2024-06-21 19:04:00", + "published_datetime": "2024-06-11 17:15:00", + "vendor_logo": [ + [ + "microsoft", + "https://kazepublic.blob.core.windows.net/vendor-logos/data/microsoft/microsoft_logo.webp" + ] + ], + "profile_url": null, + "feed_name": "twitter" + }, + { + "cve": "CVE-2024-30085", + "created_datetime": "2024-12-25T02:44:44", + "author_id": "811366450090774528", + "data_id": "1871748885762494646", + "reposts": 1, + "post": "rt @starlabs_sg: \ud83c\udf84 all i want for christmas is a cve-2024-30085 exploit \ud83c\udf84\nas always, we at @starlabs_sg are sharing what we learnt. this ti\u2026", + "audience": 6564, + "audience_total": 77016, + "total_reposts": 37, + "post_count": 0, + "author": "k0shl", + "username": "keyz3r0", + "v_score": 0.49149, + "e_score": 0.00046, + "base_score": "7.8", + "description": "WINDOWS CLOUD FILES MINI FILTER DRIVER ELEVATION OF PRIVILEGE VULNERABILITY", + "last_modified_datetime": "2024-06-21 19:04:00", + "published_datetime": "2024-06-11 17:15:00", + "vendor_logo": [ + [ + "microsoft", + "https://kazepublic.blob.core.windows.net/vendor-logos/data/microsoft/microsoft_logo.webp" + ] + ], + "profile_url": null, + "feed_name": "twitter" + }, + { + "cve": "CVE-2024-30085", + "created_datetime": "2024-12-25T04:06:27", + "author_id": "1645688856455557120", + "data_id": "1871769451982733626", + "reposts": 1, + "post": "rt @dinosn: poc exploit released for cve-2024-30085: windows elevation of privilege vulnerability https://t.co/atld3uukym", + "audience": 16, + "audience_total": 77016, + "total_reposts": 37, + "post_count": 0, + "author": "chackr", + "username": "caitlinnn88", + "v_score": 0.49149, + "e_score": 0.00046, + "base_score": "7.8", + "description": "WINDOWS CLOUD FILES MINI FILTER DRIVER ELEVATION OF PRIVILEGE VULNERABILITY", + "last_modified_datetime": "2024-06-21 19:04:00", + "published_datetime": "2024-06-11 17:15:00", + "vendor_logo": [ + [ + "microsoft", + "https://kazepublic.blob.core.windows.net/vendor-logos/data/microsoft/microsoft_logo.webp" + ] + ], + "profile_url": null, + "feed_name": "twitter" + }, + { + "cve": "CVE-2024-30085", + "created_datetime": "2024-12-25T03:32:09", + "author_id": "954363747111354369", + "data_id": "1871760816812462300", + "reposts": 1, + "post": "rt @starlabs_sg: \ud83c\udf84 all i want for christmas is a cve-2024-30085 exploit \ud83c\udf84\nas always, we at @starlabs_sg are sharing what we learnt. this ti\u2026", + "audience": 2371, + "audience_total": 77016, + "total_reposts": 37, + "post_count": 0, + "author": "l\u00ea h\u1eefu quang linh \ud83c\uddfb\ud83c\uddf3", + "username": "linhlhq", + "v_score": 0.49149, + "e_score": 0.00046, + "base_score": "7.8", + "description": "WINDOWS CLOUD FILES MINI FILTER DRIVER ELEVATION OF PRIVILEGE VULNERABILITY", + "last_modified_datetime": "2024-06-21 19:04:00", + "published_datetime": "2024-06-11 17:15:00", + "vendor_logo": [ + [ + "microsoft", + "https://kazepublic.blob.core.windows.net/vendor-logos/data/microsoft/microsoft_logo.webp" + ] + ], + "profile_url": null, + "feed_name": "twitter" + }, + { + "cve": "CVE-2024-30085", + "created_datetime": "2024-12-25T02:45:06", + "author_id": "1464574417154023427", + "data_id": "1871748980281131204", + "reposts": 1, + "post": "rt @starlabs_sg: \ud83c\udf84 all i want for christmas is a cve-2024-30085 exploit \ud83c\udf84\nas always, we at @starlabs_sg are sharing what we learnt. this ti\u2026", + "audience": 142, + "audience_total": 77016, + "total_reposts": 37, + "post_count": 0, + "author": "waterbucket", + "username": "dharanisanjaiy", + "v_score": 0.49149, "e_score": 0.00046, "base_score": "7.8", "description": "WINDOWS CLOUD FILES MINI FILTER DRIVER ELEVATION OF PRIVILEGE VULNERABILITY", diff --git a/social_media/x/2024/CVE-2024-30088.json b/social_media/x/2024/CVE-2024-30088.json index f6f01a294..622bebc74 100644 --- a/social_media/x/2024/CVE-2024-30088.json +++ b/social_media/x/2024/CVE-2024-30088.json @@ -3474,12 +3474,12 @@ "reposts": 1, "post": "rt @picussecurity: oilrig (apt34) specializes in:\n\u2699\ufe0f exploiting zero-days (cve-2024-30088)\n\ud83d\udcca obfuscation & evasion tactics\n\ud83d\udd11 credential the\u2026", "audience": 580, - "audience_total": 19623, - "total_reposts": 7, + "audience_total": 24555, + "total_reposts": 9, "post_count": 0, "author": "sergio dias", "username": "stdiasp", - "v_score": 0.555369, + "v_score": 0.439744, "e_score": 0.00424, "base_score": "7", "description": "WINDOWS KERNEL ELEVATION OF PRIVILEGE VULNERABILITY", @@ -3502,12 +3502,12 @@ "reposts": 1, "post": "rt @picussecurity: oilrig (apt34) specializes in:\n\u2699\ufe0f exploiting zero-days (cve-2024-30088)\n\ud83d\udcca obfuscation & evasion tactics\n\ud83d\udd11 credential the\u2026", "audience": 8127, - "audience_total": 19623, - "total_reposts": 7, + "audience_total": 24555, + "total_reposts": 9, "post_count": 0, "author": "moto_sato", "username": "58_158_177_102", - "v_score": 0.555369, + "v_score": 0.439744, "e_score": 0.00424, "base_score": "7", "description": "WINDOWS KERNEL ELEVATION OF PRIVILEGE VULNERABILITY", @@ -3530,12 +3530,12 @@ "reposts": 1, "post": "rt @picussecurity: oilrig (apt34) specializes in:\n\u2699\ufe0f exploiting zero-days (cve-2024-30088)\n\ud83d\udcca obfuscation & evasion tactics\n\ud83d\udd11 credential the\u2026", "audience": 33, - "audience_total": 19623, - "total_reposts": 7, + "audience_total": 24555, + "total_reposts": 9, "post_count": 0, "author": "samano", "username": "samano_security", - "v_score": 0.555369, + "v_score": 0.439744, "e_score": 0.00424, "base_score": "7", "description": "WINDOWS KERNEL ELEVATION OF PRIVILEGE VULNERABILITY", @@ -3558,12 +3558,12 @@ "reposts": 1, "post": "rt @picussecurity: oilrig (apt34) specializes in:\n\u2699\ufe0f exploiting zero-days (cve-2024-30088)\n\ud83d\udcca obfuscation & evasion tactics\n\ud83d\udd11 credential the\u2026", "audience": 2725, - "audience_total": 19623, - "total_reposts": 7, + "audience_total": 24555, + "total_reposts": 9, "post_count": 0, "author": "andre gironda", "username": "andregironda", - "v_score": 0.555369, + "v_score": 0.439744, "e_score": 0.00424, "base_score": "7", "description": "WINDOWS KERNEL ELEVATION OF PRIVILEGE VULNERABILITY", @@ -3586,12 +3586,12 @@ "reposts": 1, "post": "rt @picussecurity: oilrig (apt34) specializes in:\n\u2699\ufe0f exploiting zero-days (cve-2024-30088)\n\ud83d\udcca obfuscation & evasion tactics\n\ud83d\udd11 credential the\u2026", "audience": 8016, - "audience_total": 19623, - "total_reposts": 7, + "audience_total": 24555, + "total_reposts": 9, "post_count": 0, "author": "stefan tanase \ud83c\udd93", "username": "stefant", - "v_score": 0.555369, + "v_score": 0.439744, "e_score": 0.00424, "base_score": "7", "description": "WINDOWS KERNEL ELEVATION OF PRIVILEGE VULNERABILITY", @@ -3614,12 +3614,12 @@ "reposts": 1, "post": "rt @picussecurity: oilrig (apt34) specializes in:\n\u2699\ufe0f exploiting zero-days (cve-2024-30088)\n\ud83d\udcca obfuscation & evasion tactics\n\ud83d\udd11 credential the\u2026", "audience": 52, - "audience_total": 19623, - "total_reposts": 7, + "audience_total": 24555, + "total_reposts": 9, "post_count": 0, "author": "root-mk", "username": "root_muku", - "v_score": 0.555369, + "v_score": 0.439744, "e_score": 0.00424, "base_score": "7", "description": "WINDOWS KERNEL ELEVATION OF PRIVILEGE VULNERABILITY", @@ -3642,12 +3642,68 @@ "reposts": 1, "post": "rt @picussecurity: oilrig (apt34) specializes in:\n\u2699\ufe0f exploiting zero-days (cve-2024-30088)\n\ud83d\udcca obfuscation & evasion tactics\n\ud83d\udd11 credential the\u2026", "audience": 90, - "audience_total": 19623, - "total_reposts": 7, + "audience_total": 24555, + "total_reposts": 9, "post_count": 0, "author": "orion", "username": "orion_elcan", - "v_score": 0.555369, + "v_score": 0.439744, + "e_score": 0.00424, + "base_score": "7", + "description": "WINDOWS KERNEL ELEVATION OF PRIVILEGE VULNERABILITY", + "last_modified_datetime": "2024-10-16 01:00:00", + "published_datetime": "2024-06-11 17:15:00", + "vendor_logo": [ + [ + "microsoft", + "https://kazepublic.blob.core.windows.net/vendor-logos/data/microsoft/microsoft_logo.webp" + ] + ], + "profile_url": null, + "feed_name": "twitter" + }, + { + "cve": "CVE-2024-30088", + "created_datetime": "2024-12-25T02:44:02", + "author_id": "498631199", + "data_id": "1871748708246905197", + "reposts": 1, + "post": "rt @picussecurity: oilrig (apt34) specializes in:\n\u2699\ufe0f exploiting zero-days (cve-2024-30088)\n\ud83d\udcca obfuscation & evasion tactics\n\ud83d\udd11 credential the\u2026", + "audience": 4305, + "audience_total": 24555, + "total_reposts": 9, + "post_count": 0, + "author": "priya joseph", + "username": "ayirpelle", + "v_score": 0.439744, + "e_score": 0.00424, + "base_score": "7", + "description": "WINDOWS KERNEL ELEVATION OF PRIVILEGE VULNERABILITY", + "last_modified_datetime": "2024-10-16 01:00:00", + "published_datetime": "2024-06-11 17:15:00", + "vendor_logo": [ + [ + "microsoft", + "https://kazepublic.blob.core.windows.net/vendor-logos/data/microsoft/microsoft_logo.webp" + ] + ], + "profile_url": null, + "feed_name": "twitter" + }, + { + "cve": "CVE-2024-30088", + "created_datetime": "2024-12-25T01:05:18", + "author_id": "776624580873981952", + "data_id": "1871723861164822859", + "reposts": 1, + "post": "rt @__kokumoto: \u30cf\u30c3\u30ab\u30fc\u96c6\u56e3oilrig/apt34\u304c\u3001windows\u30ab\u30fc\u30cd\u30eb\u306e\u30bc\u30ed\u30c7\u30a4\u8106\u5f31\u6027\u3092\u4f7f\u7528\u3057uae\u7b49\u6e7e\u5cb8\u8af8\u56fd\u306e\u91cd\u8981\u30a4\u30f3\u30d5\u30e9\u53ca\u3073\u653f\u5e9c\u7d44\u7e54\u3092\u653b\u6483\u3002picus security\u793e\u5831\u544a\u3002\u60aa\u7528\u3055\u308c\u305fcve-2024-30088\u306f\u6a29\u9650\u6607\u683c\u3002stealhook\u30d0\u30c3\u30af\u2026", + "audience": 627, + "audience_total": 24555, + "total_reposts": 9, + "post_count": 0, + "author": "\u304b\u3093\u3079", + "username": "kanbeworks", + "v_score": 0.439744, "e_score": 0.00424, "base_score": "7", "description": "WINDOWS KERNEL ELEVATION OF PRIVILEGE VULNERABILITY", diff --git a/social_media/x/2024/CVE-2024-38819.json b/social_media/x/2024/CVE-2024-38819.json index dccd915ed..a64cb605b 100644 --- a/social_media/x/2024/CVE-2024-38819.json +++ b/social_media/x/2024/CVE-2024-38819.json @@ -1102,5 +1102,28 @@ "vendor_logo": null, "profile_url": null, "feed_name": "twitter" + }, + { + "cve": "CVE-2024-38819", + "created_datetime": "2024-12-25T01:03:28", + "author_id": "22899183", + "data_id": "1871723400936464719", + "reposts": 1, + "post": "rt @iototsecnews: spring framework \u306e\u30d1\u30b9\u30fb\u30c8\u30e9\u30d0\u30fc\u30b5\u30eb\u8106\u5f31\u6027 cve-2024-38819\uff1apoc \u304c\u516c\u958b\nhttps://t.co/zx01wpr36t\n\u4eca\u5e74\u306f\u3001\u8907\u6570\u306e spring framework \u8106\u5f31\u6027\u304c\u516c\u958b\u3055\u308c\u305f\u5e74\u3067\u3082\u3042\u308a\u307e\u3057\u305f\u3002\u2026", + "audience": 3520, + "audience_total": 3520, + "total_reposts": 1, + "post_count": 0, + "author": "agile cat", + "username": "agile_cat", + "v_score": 0.387886, + "e_score": null, + "base_score": "7.5", + "description": "APPLICATIONS SERVING STATIC RESOURCES THROUGH THE FUNCTIONAL WEB FRAMEWORKS WEBMVC.FN OR WEBFLUX.FN ARE VULNERABLE TO PATH TRAVERSAL ATTACKS. AN ATTACKER CAN CRAFT MALICIOUS HTTP REQUESTS AND OBTAIN ANY FILE ON THE FILE SYSTEM THAT IS ALSO ACCESSIBLE TO THE PROCESS IN WHICH THE SPRING APPLICATION IS RUNNING.", + "last_modified_datetime": "2024-12-19 18:15:00", + "published_datetime": "2024-12-19 18:15:00", + "vendor_logo": null, + "profile_url": null, + "feed_name": "twitter" } ] \ No newline at end of file diff --git a/social_media/x/2024/CVE-2024-45337.json b/social_media/x/2024/CVE-2024-45337.json index 4498d076c..b5fa54e53 100644 --- a/social_media/x/2024/CVE-2024-45337.json +++ b/social_media/x/2024/CVE-2024-45337.json @@ -67,5 +67,28 @@ "vendor_logo": null, "profile_url": null, "feed_name": "twitter" + }, + { + "cve": "CVE-2024-45337", + "created_datetime": "2024-12-25T01:03:25", + "author_id": "22899183", + "data_id": "1871723387380490738", + "reposts": 1, + "post": "rt @iototsecnews: golang \u306e\u6697\u53f7\u30e9\u30a4\u30d6\u30e9\u30ea\u306e\u8106\u5f31\u6027 cve-2024-45337 \u304c fix\uff1a\u8a8d\u53ef\u30d0\u30a4\u30d1\u30b9\u306e\u53ef\u80fd\u6027\nhttps://t.co/xcachgc9eo\n\u3044\u308d\u3093\u306a\u3068\u3053\u308d\u306b\u3001\u8106\u5f31\u6027\u306e\u6750\u6599\u304c\u3042\u308b\u306e\u3060\u3068\u611f\u3058\u3066\u3057\u307e\u3044\u307e\u3059\u306d\u3002\u4eba\u6c17\u306e golang \u3060\u3051\u306b\u2026", + "audience": 3520, + "audience_total": 3520, + "total_reposts": 1, + "post_count": 0, + "author": "agile cat", + "username": "agile_cat", + "v_score": 0.332087, + "e_score": 0.00045, + "base_score": "9.1", + "description": "APPLICATIONS AND LIBRARIES WHICH MISUSE THE SERVERCONFIG.PUBLICKEYCALLBACK CALLBACK MAY BE SUSCEPTIBLE TO AN AUTHORIZATION BYPASS. THE DOCUMENTATION FOR SERVERCONFIG.PUBLICKEYCALLBACK SAYS THAT A CALL TO THIS FUNCTION DOES NOT GUARANTEE THAT THE KEY OFFERED IS IN FACT USED TO AUTHENTICATE. SPECIFICALLY, THE SSH PROTOCOL ALLOWS CLIENTS TO INQUIRE ABOUT WHETHER A PUBLIC KEY IS ACCEPTABLE BEFORE PROVING CONTROL OF THE CORRESPONDING PRIVATE KEY. PUBLICKEYCALLBACK MAY BE CALLED WITH MULTIPLE KEYS, AND THE ORDER IN WHICH THE KEYS WERE PROVIDED CANNOT BE USED TO INFER WHICH KEY THE CLIENT SUCCESSFULLY AUTHENTICATED WITH, IF ANY. SOME APPLICATIONS, WHICH STORE THE KEY(S) PASSED TO PUBLICKEYCALLBACK (OR DERIVED INFORMATION) AND MAKE SECURITY RELEVANT DETERMINATIONS BASED ON IT ONCE THE CONNECTION IS ESTABLISHED, MAY MAKE INCORRECT ASSUMPTIONS. FOR EXAMPLE, AN ATTACKER MAY SEND PUBLIC KEYS A AND B, AND THEN AUTHENTICATE WITH A. PUBLICKEYCALLBACK WOULD BE CALLED ONLY TWICE, FIRST WITH A AND THEN WITH B. A VULNERABLE APPLICATION MAY THEN MAKE AUTHORIZATION DECISIONS BASED ON KEY B FOR WHICH THE ATTACKER DOES NOT ACTUALLY CONTROL THE PRIVATE KEY. SINCE THIS API IS WIDELY MISUSED, AS A PARTIAL MITIGATION GOLANG.ORG/X/CRY...@V0.31.0 ENFORCES THE PROPERTY THAT, WHEN SUCCESSFULLY AUTHENTICATING VIA PUBLIC KEY, THE LAST KEY PASSED TO SERVERCONFIG.PUBLICKEYCALLBACK WILL BE THE KEY USED TO AUTHENTICATE THE CONNECTION. PUBLICKEYCALLBACK WILL NOW BE CALLED MULTIPLE TIMES WITH THE SAME KEY, IF NECESSARY. NOTE THAT THE CLIENT MAY STILL NOT CONTROL THE LAST KEY PASSED TO PUBLICKEYCALLBACK IF THE CONNECTION IS THEN AUTHENTICATED WITH A DIFFERENT METHOD, SUCH AS PASSWORDCALLBACK, KEYBOARDINTERACTIVECALLBACK, OR NOCLIENTAUTH. USERS SHOULD BE USING THE EXTENSIONS FIELD OF THE PERMISSIONS RETURN VALUE FROM THE VARIOUS AUTHENTICATION CALLBACKS TO RECORD DATA ASSOCIATED WITH THE AUTHENTICATION ATTEMPT INSTEAD OF REFERENCING EXTERNAL STATE. ONCE THE CONNECTION IS ESTABLISHED THE STATE CORRESPONDING TO THE SUCCESSFUL AUTHENTICATION ATTEMPT CAN BE RETRIEVED VIA THE SERVERCONN.PERMISSIONS FIELD. NOTE THAT SOME THIRD-PARTY LIBRARIES MISUSE THE PERMISSIONS TYPE BY SHARING IT ACROSS AUTHENTICATION ATTEMPTS; USERS OF THIRD-PARTY LIBRARIES SHOULD REFER TO THE RELEVANT PROJECTS FOR GUIDANCE.", + "last_modified_datetime": "2024-12-12 21:15:00", + "published_datetime": "2024-12-12 02:02:00", + "vendor_logo": null, + "profile_url": null, + "feed_name": "twitter" } ] \ No newline at end of file diff --git a/social_media/x/2024/CVE-2024-47575.json b/social_media/x/2024/CVE-2024-47575.json index ca1c67cdb..c80910907 100644 --- a/social_media/x/2024/CVE-2024-47575.json +++ b/social_media/x/2024/CVE-2024-47575.json @@ -10249,5 +10249,33 @@ ], "profile_url": null, "feed_name": "twitter" + }, + { + "cve": "CVE-2024-47575", + "created_datetime": "2024-12-25T01:55:47", + "author_id": "1081778653808058369", + "data_id": "1871736567490085355", + "reposts": 1, + "post": "rt @ehimepolice: \u3010fortimanager\u306e\u8106\u5f31\u6027\u60c5\u5831\u304c\u516c\u958b\u3055\u308c\u307e\u3057\u305f(cve-2024-47575)\u3011\n\u5229\u7528\u8005\u306e\u7686\u69d8\u306f\u88ab\u5bb3\u9632\u6b62\u5bfe\u7b56\u3092\u304a\u9858\u3044\u3044\u305f\u3057\u307e\u3059\u3002\n\nfortinet\u793ehp\u261e https://t.co/5co6fgkqcg\n\n#\u611b\u5a9b\u770c\u8b66 #\u30b5\u30a4\u30d0\u30fc\u30bb\u30ad\u30e5\u2026", + "audience": 1979, + "audience_total": 1979, + "total_reposts": 1, + "post_count": 0, + "author": "\u53e4\u6fa4\u907c\u592a_8878", + "username": "h_hurusawa8878", + "v_score": 0.608714, + "e_score": 0.05179, + "base_score": "9.8", + "description": "A MISSING AUTHENTICATION FOR CRITICAL FUNCTION IN FORTIMANAGER 7.6.0, FORTIMANAGER 7.4.0 THROUGH 7.4.4, FORTIMANAGER 7.2.0 THROUGH 7.2.7, FORTIMANAGER 7.0.0 THROUGH 7.0.12, FORTIMANAGER 6.4.0 THROUGH 6.4.14, FORTIMANAGER 6.2.0 THROUGH 6.2.12, FORTINET FORTIMANAGER CLOUD 7.4.1 THROUGH 7.4.4, FORTIMANAGER CLOUD 7.2.1 THROUGH 7.2.7, FORTIMANAGER CLOUD 7.0.1 THROUGH 7.0.12, FORTIMANAGER CLOUD 6.4.1 THROUGH 6.4.7 ALLOWS ATTACKER TO EXECUTE ARBITRARY CODE OR COMMANDS VIA SPECIALLY CRAFTED REQUESTS.", + "last_modified_datetime": "2024-11-08 21:16:00", + "published_datetime": "2024-10-23 15:15:00", + "vendor_logo": [ + [ + "fortinet", + "https://kazepublic.blob.core.windows.net/vendor-logos/data/fortinet/fortinet.png" + ] + ], + "profile_url": null, + "feed_name": "twitter" } ] \ No newline at end of file diff --git a/social_media/x/2024/CVE-2024-50379.json b/social_media/x/2024/CVE-2024-50379.json index 8c8fa7cac..6a93015d2 100644 --- a/social_media/x/2024/CVE-2024-50379.json +++ b/social_media/x/2024/CVE-2024-50379.json @@ -1755,12 +1755,12 @@ "reposts": 1, "post": "rt @huntermapping: \ud83c\udd95updates\ud83c\udd95cve-2024-50379/cve-2024-56337 : apache tomcat patches critical rce vulnerability\n\ud83d\udd25exp : https://t.co/xstqckfapt\u2026", "audience": 14, - "audience_total": 161456, - "total_reposts": 88, + "audience_total": 161560, + "total_reposts": 91, "post_count": 2, "author": "luis gavilanes", "username": "luisgav35640542", - "v_score": 0.600868, + "v_score": 0.716123, "e_score": 0.00043, "base_score": "9.8", "description": "TIME-OF-CHECK TIME-OF-USE (TOCTOU) RACE CONDITION VULNERABILITY DURING JSP COMPILATION IN APACHE TOMCAT PERMITS AN RCE ON CASE INSENSITIVE FILE SYSTEMS WHEN THE DEFAULT SERVLET IS ENABLED FOR WRITE (NON-DEFAULT CONFIGURATION).\n\nTHIS ISSUE AFFECTS APACHE TOMCAT: FROM 11.0.0-M1 THROUGH 11.0.1, FROM 10.1.0-M1 THROUGH 10.1.33, FROM 9.0.0.M1 THROUGH 9.0.97.\n\nUSERS ARE RECOMMENDED TO UPGRADE TO VERSION 11.0.2, 10.1.34 OR 9.0.98, WHICH FIXES THE ISSUE.", @@ -1847,12 +1847,12 @@ "reposts": 1, "post": "rt @huntermapping: \ud83c\udd95updates\ud83c\udd95cve-2024-50379/cve-2024-56337 : apache tomcat patches critical rce vulnerability\n\ud83d\udd25exp : https://t.co/xstqckfapt\u2026", "audience": 1374, - "audience_total": 161456, - "total_reposts": 88, + "audience_total": 161560, + "total_reposts": 91, "post_count": 2, "author": "\u0645\u0640\u062d\u0640\u0645\u0640\u0640\u062f\u0647\u0640\u0640\u0640\u0640\u0640\u0640\u0640\u0627\u062f\u06cc", "username": "fhosna2103", - "v_score": 0.600868, + "v_score": 0.716123, "e_score": 0.00043, "base_score": "9.8", "description": "TIME-OF-CHECK TIME-OF-USE (TOCTOU) RACE CONDITION VULNERABILITY DURING JSP COMPILATION IN APACHE TOMCAT PERMITS AN RCE ON CASE INSENSITIVE FILE SYSTEMS WHEN THE DEFAULT SERVLET IS ENABLED FOR WRITE (NON-DEFAULT CONFIGURATION).\n\nTHIS ISSUE AFFECTS APACHE TOMCAT: FROM 11.0.0-M1 THROUGH 11.0.1, FROM 10.1.0-M1 THROUGH 10.1.33, FROM 9.0.0.M1 THROUGH 9.0.97.\n\nUSERS ARE RECOMMENDED TO UPGRADE TO VERSION 11.0.2, 10.1.34 OR 9.0.98, WHICH FIXES THE ISSUE.", @@ -1870,12 +1870,12 @@ "reposts": 1, "post": "rt @huntermapping: \ud83c\udd95updates\ud83c\udd95cve-2024-50379/cve-2024-56337 : apache tomcat patches critical rce vulnerability\n\ud83d\udd25exp : https://t.co/xstqckfapt\u2026", "audience": 2, - "audience_total": 161456, - "total_reposts": 88, + "audience_total": 161560, + "total_reposts": 91, "post_count": 2, "author": "yahahahaha", "username": "ggilangr1135", - "v_score": 0.600868, + "v_score": 0.716123, "e_score": 0.00043, "base_score": "9.8", "description": "TIME-OF-CHECK TIME-OF-USE (TOCTOU) RACE CONDITION VULNERABILITY DURING JSP COMPILATION IN APACHE TOMCAT PERMITS AN RCE ON CASE INSENSITIVE FILE SYSTEMS WHEN THE DEFAULT SERVLET IS ENABLED FOR WRITE (NON-DEFAULT CONFIGURATION).\n\nTHIS ISSUE AFFECTS APACHE TOMCAT: FROM 11.0.0-M1 THROUGH 11.0.1, FROM 10.1.0-M1 THROUGH 10.1.33, FROM 9.0.0.M1 THROUGH 9.0.97.\n\nUSERS ARE RECOMMENDED TO UPGRADE TO VERSION 11.0.2, 10.1.34 OR 9.0.98, WHICH FIXES THE ISSUE.", @@ -1893,12 +1893,12 @@ "reposts": 1, "post": "rt @huntermapping: \ud83c\udd95updates\ud83c\udd95cve-2024-50379/cve-2024-56337 : apache tomcat patches critical rce vulnerability\n\ud83d\udd25exp : https://t.co/xstqckfapt\u2026", "audience": 156, - "audience_total": 161456, - "total_reposts": 88, + "audience_total": 161560, + "total_reposts": 91, "post_count": 2, "author": "elcabron", "username": "clatapiat", - "v_score": 0.600868, + "v_score": 0.716123, "e_score": 0.00043, "base_score": "9.8", "description": "TIME-OF-CHECK TIME-OF-USE (TOCTOU) RACE CONDITION VULNERABILITY DURING JSP COMPILATION IN APACHE TOMCAT PERMITS AN RCE ON CASE INSENSITIVE FILE SYSTEMS WHEN THE DEFAULT SERVLET IS ENABLED FOR WRITE (NON-DEFAULT CONFIGURATION).\n\nTHIS ISSUE AFFECTS APACHE TOMCAT: FROM 11.0.0-M1 THROUGH 11.0.1, FROM 10.1.0-M1 THROUGH 10.1.33, FROM 9.0.0.M1 THROUGH 9.0.97.\n\nUSERS ARE RECOMMENDED TO UPGRADE TO VERSION 11.0.2, 10.1.34 OR 9.0.98, WHICH FIXES THE ISSUE.", @@ -1916,12 +1916,12 @@ "reposts": 1, "post": "rt @huntermapping: \ud83c\udd95updates\ud83c\udd95cve-2024-50379/cve-2024-56337 : apache tomcat patches critical rce vulnerability\n\ud83d\udd25exp : https://t.co/xstqckfapt\u2026", "audience": 23, - "audience_total": 161456, - "total_reposts": 88, + "audience_total": 161560, + "total_reposts": 91, "post_count": 2, "author": "___devi_c___", "username": "pankajc19843300", - "v_score": 0.600868, + "v_score": 0.716123, "e_score": 0.00043, "base_score": "9.8", "description": "TIME-OF-CHECK TIME-OF-USE (TOCTOU) RACE CONDITION VULNERABILITY DURING JSP COMPILATION IN APACHE TOMCAT PERMITS AN RCE ON CASE INSENSITIVE FILE SYSTEMS WHEN THE DEFAULT SERVLET IS ENABLED FOR WRITE (NON-DEFAULT CONFIGURATION).\n\nTHIS ISSUE AFFECTS APACHE TOMCAT: FROM 11.0.0-M1 THROUGH 11.0.1, FROM 10.1.0-M1 THROUGH 10.1.33, FROM 9.0.0.M1 THROUGH 9.0.97.\n\nUSERS ARE RECOMMENDED TO UPGRADE TO VERSION 11.0.2, 10.1.34 OR 9.0.98, WHICH FIXES THE ISSUE.", @@ -1939,12 +1939,12 @@ "reposts": 1, "post": "rt @wtf_brut: \u26a1\ufe0fcve-2024-50379/cve-2024-56337 : apache tomcat patches critical rce vulnerability\n\n\ud83d\udd25exploit : https://t.co/qu5xkgvb55\n\n\ud83d\udc47dork\u2026", "audience": 23, - "audience_total": 161456, - "total_reposts": 88, + "audience_total": 161560, + "total_reposts": 91, "post_count": 2, "author": "saifuddin amri", "username": "saifuddinamri__", - "v_score": 0.600868, + "v_score": 0.716123, "e_score": 0.00043, "base_score": "9.8", "description": "TIME-OF-CHECK TIME-OF-USE (TOCTOU) RACE CONDITION VULNERABILITY DURING JSP COMPILATION IN APACHE TOMCAT PERMITS AN RCE ON CASE INSENSITIVE FILE SYSTEMS WHEN THE DEFAULT SERVLET IS ENABLED FOR WRITE (NON-DEFAULT CONFIGURATION).\n\nTHIS ISSUE AFFECTS APACHE TOMCAT: FROM 11.0.0-M1 THROUGH 11.0.1, FROM 10.1.0-M1 THROUGH 10.1.33, FROM 9.0.0.M1 THROUGH 9.0.97.\n\nUSERS ARE RECOMMENDED TO UPGRADE TO VERSION 11.0.2, 10.1.34 OR 9.0.98, WHICH FIXES THE ISSUE.", @@ -1962,12 +1962,12 @@ "reposts": 1, "post": "rt @wtf_brut: \u26a1\ufe0fcve-2024-50379/cve-2024-56337 : apache tomcat patches critical rce vulnerability\n\n\ud83d\udd25exploit : https://t.co/qu5xkgvb55\n\n\ud83d\udc47dork\u2026", "audience": 21, - "audience_total": 161456, - "total_reposts": 88, + "audience_total": 161560, + "total_reposts": 91, "post_count": 2, "author": "r-rad hasan", "username": "rradhasan", - "v_score": 0.600868, + "v_score": 0.716123, "e_score": 0.00043, "base_score": "9.8", "description": "TIME-OF-CHECK TIME-OF-USE (TOCTOU) RACE CONDITION VULNERABILITY DURING JSP COMPILATION IN APACHE TOMCAT PERMITS AN RCE ON CASE INSENSITIVE FILE SYSTEMS WHEN THE DEFAULT SERVLET IS ENABLED FOR WRITE (NON-DEFAULT CONFIGURATION).\n\nTHIS ISSUE AFFECTS APACHE TOMCAT: FROM 11.0.0-M1 THROUGH 11.0.1, FROM 10.1.0-M1 THROUGH 10.1.33, FROM 9.0.0.M1 THROUGH 9.0.97.\n\nUSERS ARE RECOMMENDED TO UPGRADE TO VERSION 11.0.2, 10.1.34 OR 9.0.98, WHICH FIXES THE ISSUE.", @@ -1985,12 +1985,12 @@ "reposts": 1, "post": "rt @wtf_brut: \u26a1\ufe0fcve-2024-50379/cve-2024-56337 : apache tomcat patches critical rce vulnerability\n\n\ud83d\udd25exploit : https://t.co/qu5xkgvb55\n\n\ud83d\udc47dork\u2026", "audience": 1562, - "audience_total": 161456, - "total_reposts": 88, + "audience_total": 161560, + "total_reposts": 91, "post_count": 2, "author": "karim jaber", "username": "exfil0", - "v_score": 0.600868, + "v_score": 0.716123, "e_score": 0.00043, "base_score": "9.8", "description": "TIME-OF-CHECK TIME-OF-USE (TOCTOU) RACE CONDITION VULNERABILITY DURING JSP COMPILATION IN APACHE TOMCAT PERMITS AN RCE ON CASE INSENSITIVE FILE SYSTEMS WHEN THE DEFAULT SERVLET IS ENABLED FOR WRITE (NON-DEFAULT CONFIGURATION).\n\nTHIS ISSUE AFFECTS APACHE TOMCAT: FROM 11.0.0-M1 THROUGH 11.0.1, FROM 10.1.0-M1 THROUGH 10.1.33, FROM 9.0.0.M1 THROUGH 9.0.97.\n\nUSERS ARE RECOMMENDED TO UPGRADE TO VERSION 11.0.2, 10.1.34 OR 9.0.98, WHICH FIXES THE ISSUE.", @@ -2008,12 +2008,12 @@ "reposts": 1, "post": "rt @huntermapping: \ud83c\udd95updates\ud83c\udd95cve-2024-50379/cve-2024-56337 : apache tomcat patches critical rce vulnerability\n\ud83d\udd25exp : https://t.co/xstqckfapt\u2026", "audience": 280, - "audience_total": 161456, - "total_reposts": 88, + "audience_total": 161560, + "total_reposts": 91, "post_count": 2, "author": "/grater\u00f3n/jairo", "username": "jgrateron", - "v_score": 0.600868, + "v_score": 0.716123, "e_score": 0.00043, "base_score": "9.8", "description": "TIME-OF-CHECK TIME-OF-USE (TOCTOU) RACE CONDITION VULNERABILITY DURING JSP COMPILATION IN APACHE TOMCAT PERMITS AN RCE ON CASE INSENSITIVE FILE SYSTEMS WHEN THE DEFAULT SERVLET IS ENABLED FOR WRITE (NON-DEFAULT CONFIGURATION).\n\nTHIS ISSUE AFFECTS APACHE TOMCAT: FROM 11.0.0-M1 THROUGH 11.0.1, FROM 10.1.0-M1 THROUGH 10.1.33, FROM 9.0.0.M1 THROUGH 9.0.97.\n\nUSERS ARE RECOMMENDED TO UPGRADE TO VERSION 11.0.2, 10.1.34 OR 9.0.98, WHICH FIXES THE ISSUE.", @@ -2031,12 +2031,12 @@ "reposts": 1, "post": "rt @wtf_brut: \u26a1\ufe0fcve-2024-50379/cve-2024-56337 : apache tomcat patches critical rce vulnerability\n\n\ud83d\udd25exploit : https://t.co/qu5xkgvb55\n\n\ud83d\udc47dork\u2026", "audience": 426, - "audience_total": 161456, - "total_reposts": 88, + "audience_total": 161560, + "total_reposts": 91, "post_count": 2, "author": "x_kelvin", "username": "254_society_", - "v_score": 0.600868, + "v_score": 0.716123, "e_score": 0.00043, "base_score": "9.8", "description": "TIME-OF-CHECK TIME-OF-USE (TOCTOU) RACE CONDITION VULNERABILITY DURING JSP COMPILATION IN APACHE TOMCAT PERMITS AN RCE ON CASE INSENSITIVE FILE SYSTEMS WHEN THE DEFAULT SERVLET IS ENABLED FOR WRITE (NON-DEFAULT CONFIGURATION).\n\nTHIS ISSUE AFFECTS APACHE TOMCAT: FROM 11.0.0-M1 THROUGH 11.0.1, FROM 10.1.0-M1 THROUGH 10.1.33, FROM 9.0.0.M1 THROUGH 9.0.97.\n\nUSERS ARE RECOMMENDED TO UPGRADE TO VERSION 11.0.2, 10.1.34 OR 9.0.98, WHICH FIXES THE ISSUE.", @@ -2054,12 +2054,12 @@ "reposts": 1, "post": "rt @huntermapping: \ud83c\udd95updates\ud83c\udd95cve-2024-50379/cve-2024-56337 : apache tomcat patches critical rce vulnerability\n\ud83d\udd25exp : https://t.co/xstqckfapt\u2026", "audience": 1857, - "audience_total": 161456, - "total_reposts": 88, + "audience_total": 161560, + "total_reposts": 91, "post_count": 2, "author": "0x4d", "username": "0x4d_", - "v_score": 0.600868, + "v_score": 0.716123, "e_score": 0.00043, "base_score": "9.8", "description": "TIME-OF-CHECK TIME-OF-USE (TOCTOU) RACE CONDITION VULNERABILITY DURING JSP COMPILATION IN APACHE TOMCAT PERMITS AN RCE ON CASE INSENSITIVE FILE SYSTEMS WHEN THE DEFAULT SERVLET IS ENABLED FOR WRITE (NON-DEFAULT CONFIGURATION).\n\nTHIS ISSUE AFFECTS APACHE TOMCAT: FROM 11.0.0-M1 THROUGH 11.0.1, FROM 10.1.0-M1 THROUGH 10.1.33, FROM 9.0.0.M1 THROUGH 9.0.97.\n\nUSERS ARE RECOMMENDED TO UPGRADE TO VERSION 11.0.2, 10.1.34 OR 9.0.98, WHICH FIXES THE ISSUE.", @@ -2077,12 +2077,12 @@ "reposts": 1, "post": "rt @wtf_brut: \u26a1\ufe0fcve-2024-50379/cve-2024-56337 : apache tomcat patches critical rce vulnerability\n\n\ud83d\udd25exploit : https://t.co/qu5xkgvb55\n\n\ud83d\udc47dork\u2026", "audience": 33, - "audience_total": 161456, - "total_reposts": 88, + "audience_total": 161560, + "total_reposts": 91, "post_count": 2, "author": "~", "username": "rizxiprawiro", - "v_score": 0.600868, + "v_score": 0.716123, "e_score": 0.00043, "base_score": "9.8", "description": "TIME-OF-CHECK TIME-OF-USE (TOCTOU) RACE CONDITION VULNERABILITY DURING JSP COMPILATION IN APACHE TOMCAT PERMITS AN RCE ON CASE INSENSITIVE FILE SYSTEMS WHEN THE DEFAULT SERVLET IS ENABLED FOR WRITE (NON-DEFAULT CONFIGURATION).\n\nTHIS ISSUE AFFECTS APACHE TOMCAT: FROM 11.0.0-M1 THROUGH 11.0.1, FROM 10.1.0-M1 THROUGH 10.1.33, FROM 9.0.0.M1 THROUGH 9.0.97.\n\nUSERS ARE RECOMMENDED TO UPGRADE TO VERSION 11.0.2, 10.1.34 OR 9.0.98, WHICH FIXES THE ISSUE.", @@ -2100,12 +2100,12 @@ "reposts": 1, "post": "rt @huntermapping: \ud83c\udd95updates\ud83c\udd95cve-2024-50379/cve-2024-56337 : apache tomcat patches critical rce vulnerability\n\ud83d\udd25exp : https://t.co/xstqckfapt\u2026", "audience": 162, - "audience_total": 161456, - "total_reposts": 88, + "audience_total": 161560, + "total_reposts": 91, "post_count": 2, "author": "mrsandman", "username": "cmhacks", - "v_score": 0.600868, + "v_score": 0.716123, "e_score": 0.00043, "base_score": "9.8", "description": "TIME-OF-CHECK TIME-OF-USE (TOCTOU) RACE CONDITION VULNERABILITY DURING JSP COMPILATION IN APACHE TOMCAT PERMITS AN RCE ON CASE INSENSITIVE FILE SYSTEMS WHEN THE DEFAULT SERVLET IS ENABLED FOR WRITE (NON-DEFAULT CONFIGURATION).\n\nTHIS ISSUE AFFECTS APACHE TOMCAT: FROM 11.0.0-M1 THROUGH 11.0.1, FROM 10.1.0-M1 THROUGH 10.1.33, FROM 9.0.0.M1 THROUGH 9.0.97.\n\nUSERS ARE RECOMMENDED TO UPGRADE TO VERSION 11.0.2, 10.1.34 OR 9.0.98, WHICH FIXES THE ISSUE.", @@ -2123,12 +2123,12 @@ "reposts": 1, "post": "rt @huntermapping: \ud83c\udd95updates\ud83c\udd95cve-2024-50379/cve-2024-56337 : apache tomcat patches critical rce vulnerability\n\ud83d\udd25exp : https://t.co/xstqckfapt\u2026", "audience": 644, - "audience_total": 161456, - "total_reposts": 88, + "audience_total": 161560, + "total_reposts": 91, "post_count": 2, "author": "battosai #freeassange \ud83c\udf40", "username": "battosai_kensi", - "v_score": 0.600868, + "v_score": 0.716123, "e_score": 0.00043, "base_score": "9.8", "description": "TIME-OF-CHECK TIME-OF-USE (TOCTOU) RACE CONDITION VULNERABILITY DURING JSP COMPILATION IN APACHE TOMCAT PERMITS AN RCE ON CASE INSENSITIVE FILE SYSTEMS WHEN THE DEFAULT SERVLET IS ENABLED FOR WRITE (NON-DEFAULT CONFIGURATION).\n\nTHIS ISSUE AFFECTS APACHE TOMCAT: FROM 11.0.0-M1 THROUGH 11.0.1, FROM 10.1.0-M1 THROUGH 10.1.33, FROM 9.0.0.M1 THROUGH 9.0.97.\n\nUSERS ARE RECOMMENDED TO UPGRADE TO VERSION 11.0.2, 10.1.34 OR 9.0.98, WHICH FIXES THE ISSUE.", @@ -2146,12 +2146,12 @@ "reposts": 1, "post": "rt @huntermapping: \ud83d\udea8alert\ud83d\udea8cve-2024-50379: apache tomcat - rce via write-enabled default servlet.\n\ud83d\udcca 11.9m+ services are found on https://t.c\u2026", "audience": 779, - "audience_total": 161456, - "total_reposts": 88, + "audience_total": 161560, + "total_reposts": 91, "post_count": 2, "author": "\u03b6", "username": "c3097ce", - "v_score": 0.600868, + "v_score": 0.716123, "e_score": 0.00043, "base_score": "9.8", "description": "TIME-OF-CHECK TIME-OF-USE (TOCTOU) RACE CONDITION VULNERABILITY DURING JSP COMPILATION IN APACHE TOMCAT PERMITS AN RCE ON CASE INSENSITIVE FILE SYSTEMS WHEN THE DEFAULT SERVLET IS ENABLED FOR WRITE (NON-DEFAULT CONFIGURATION).\n\nTHIS ISSUE AFFECTS APACHE TOMCAT: FROM 11.0.0-M1 THROUGH 11.0.1, FROM 10.1.0-M1 THROUGH 10.1.33, FROM 9.0.0.M1 THROUGH 9.0.97.\n\nUSERS ARE RECOMMENDED TO UPGRADE TO VERSION 11.0.2, 10.1.34 OR 9.0.98, WHICH FIXES THE ISSUE.", @@ -2169,12 +2169,12 @@ "reposts": 1, "post": "rt @huntermapping: \ud83c\udd95updates\ud83c\udd95cve-2024-50379/cve-2024-56337 : apache tomcat patches critical rce vulnerability\n\ud83d\udd25exp : https://t.co/xstqckfapt\u2026", "audience": 225, - "audience_total": 161456, - "total_reposts": 88, + "audience_total": 161560, + "total_reposts": 91, "post_count": 2, "author": "root access hacks", "username": "cangetrootacces", - "v_score": 0.600868, + "v_score": 0.716123, "e_score": 0.00043, "base_score": "9.8", "description": "TIME-OF-CHECK TIME-OF-USE (TOCTOU) RACE CONDITION VULNERABILITY DURING JSP COMPILATION IN APACHE TOMCAT PERMITS AN RCE ON CASE INSENSITIVE FILE SYSTEMS WHEN THE DEFAULT SERVLET IS ENABLED FOR WRITE (NON-DEFAULT CONFIGURATION).\n\nTHIS ISSUE AFFECTS APACHE TOMCAT: FROM 11.0.0-M1 THROUGH 11.0.1, FROM 10.1.0-M1 THROUGH 10.1.33, FROM 9.0.0.M1 THROUGH 9.0.97.\n\nUSERS ARE RECOMMENDED TO UPGRADE TO VERSION 11.0.2, 10.1.34 OR 9.0.98, WHICH FIXES THE ISSUE.", @@ -2192,12 +2192,81 @@ "reposts": 1, "post": "rt @wtf_brut: \u26a1\ufe0fcve-2024-50379/cve-2024-56337 : apache tomcat patches critical rce vulnerability\n\n\ud83d\udd25exploit : https://t.co/qu5xkgvb55\n\n\ud83d\udc47dork\u2026", "audience": 225, - "audience_total": 161456, - "total_reposts": 88, + "audience_total": 161560, + "total_reposts": 91, "post_count": 2, "author": "root access hacks", "username": "cangetrootacces", - "v_score": 0.600868, + "v_score": 0.716123, + "e_score": 0.00043, + "base_score": "9.8", + "description": "TIME-OF-CHECK TIME-OF-USE (TOCTOU) RACE CONDITION VULNERABILITY DURING JSP COMPILATION IN APACHE TOMCAT PERMITS AN RCE ON CASE INSENSITIVE FILE SYSTEMS WHEN THE DEFAULT SERVLET IS ENABLED FOR WRITE (NON-DEFAULT CONFIGURATION).\n\nTHIS ISSUE AFFECTS APACHE TOMCAT: FROM 11.0.0-M1 THROUGH 11.0.1, FROM 10.1.0-M1 THROUGH 10.1.33, FROM 9.0.0.M1 THROUGH 9.0.97.\n\nUSERS ARE RECOMMENDED TO UPGRADE TO VERSION 11.0.2, 10.1.34 OR 9.0.98, WHICH FIXES THE ISSUE.", + "last_modified_datetime": "2024-12-19 18:15:00", + "published_datetime": "2024-12-17 13:15:00", + "vendor_logo": null, + "profile_url": null, + "feed_name": "twitter" + }, + { + "cve": "CVE-2024-50379", + "created_datetime": "2024-12-25T03:26:40", + "author_id": "1590235164357324800", + "data_id": "1871759439294075353", + "reposts": 1, + "post": "rt @huntermapping: \ud83c\udd95updates\ud83c\udd95cve-2024-50379/cve-2024-56337 : apache tomcat patches critical rce vulnerability\n\ud83d\udd25exp : https://t.co/xstqckfapt\u2026", + "audience": 3, + "audience_total": 161560, + "total_reposts": 91, + "post_count": 2, + "author": "allen yen", + "username": "allen_taiwansec", + "v_score": 0.716123, + "e_score": 0.00043, + "base_score": "9.8", + "description": "TIME-OF-CHECK TIME-OF-USE (TOCTOU) RACE CONDITION VULNERABILITY DURING JSP COMPILATION IN APACHE TOMCAT PERMITS AN RCE ON CASE INSENSITIVE FILE SYSTEMS WHEN THE DEFAULT SERVLET IS ENABLED FOR WRITE (NON-DEFAULT CONFIGURATION).\n\nTHIS ISSUE AFFECTS APACHE TOMCAT: FROM 11.0.0-M1 THROUGH 11.0.1, FROM 10.1.0-M1 THROUGH 10.1.33, FROM 9.0.0.M1 THROUGH 9.0.97.\n\nUSERS ARE RECOMMENDED TO UPGRADE TO VERSION 11.0.2, 10.1.34 OR 9.0.98, WHICH FIXES THE ISSUE.", + "last_modified_datetime": "2024-12-19 18:15:00", + "published_datetime": "2024-12-17 13:15:00", + "vendor_logo": null, + "profile_url": null, + "feed_name": "twitter" + }, + { + "cve": "CVE-2024-50379", + "created_datetime": "2024-12-25T01:12:24", + "author_id": "1047829832837545984", + "data_id": "1871725648122970444", + "reposts": 1, + "post": "rt @huntermapping: \ud83c\udd95updates\ud83c\udd95cve-2024-50379/cve-2024-56337 : apache tomcat patches critical rce vulnerability\n\ud83d\udd25exp : https://t.co/xstqckfapt\u2026", + "audience": 85, + "audience_total": 161560, + "total_reposts": 91, + "post_count": 2, + "author": "avi oz", + "username": "avioz7", + "v_score": 0.716123, + "e_score": 0.00043, + "base_score": "9.8", + "description": "TIME-OF-CHECK TIME-OF-USE (TOCTOU) RACE CONDITION VULNERABILITY DURING JSP COMPILATION IN APACHE TOMCAT PERMITS AN RCE ON CASE INSENSITIVE FILE SYSTEMS WHEN THE DEFAULT SERVLET IS ENABLED FOR WRITE (NON-DEFAULT CONFIGURATION).\n\nTHIS ISSUE AFFECTS APACHE TOMCAT: FROM 11.0.0-M1 THROUGH 11.0.1, FROM 10.1.0-M1 THROUGH 10.1.33, FROM 9.0.0.M1 THROUGH 9.0.97.\n\nUSERS ARE RECOMMENDED TO UPGRADE TO VERSION 11.0.2, 10.1.34 OR 9.0.98, WHICH FIXES THE ISSUE.", + "last_modified_datetime": "2024-12-19 18:15:00", + "published_datetime": "2024-12-17 13:15:00", + "vendor_logo": null, + "profile_url": null, + "feed_name": "twitter" + }, + { + "cve": "CVE-2024-50379", + "created_datetime": "2024-12-25T04:05:23", + "author_id": "1645688856455557120", + "data_id": "1871769180766417156", + "reposts": 1, + "post": "rt @huntermapping: \ud83c\udd95updates\ud83c\udd95cve-2024-50379/cve-2024-56337 : apache tomcat patches critical rce vulnerability\n\ud83d\udd25exp : https://t.co/xstqckfapt\u2026", + "audience": 16, + "audience_total": 161560, + "total_reposts": 91, + "post_count": 2, + "author": "chackr", + "username": "caitlinnn88", + "v_score": 0.716123, "e_score": 0.00043, "base_score": "9.8", "description": "TIME-OF-CHECK TIME-OF-USE (TOCTOU) RACE CONDITION VULNERABILITY DURING JSP COMPILATION IN APACHE TOMCAT PERMITS AN RCE ON CASE INSENSITIVE FILE SYSTEMS WHEN THE DEFAULT SERVLET IS ENABLED FOR WRITE (NON-DEFAULT CONFIGURATION).\n\nTHIS ISSUE AFFECTS APACHE TOMCAT: FROM 11.0.0-M1 THROUGH 11.0.1, FROM 10.1.0-M1 THROUGH 10.1.33, FROM 9.0.0.M1 THROUGH 9.0.97.\n\nUSERS ARE RECOMMENDED TO UPGRADE TO VERSION 11.0.2, 10.1.34 OR 9.0.98, WHICH FIXES THE ISSUE.", diff --git a/social_media/x/2024/CVE-2024-53961.json b/social_media/x/2024/CVE-2024-53961.json index cfb7b6231..43f385761 100644 --- a/social_media/x/2024/CVE-2024-53961.json +++ b/social_media/x/2024/CVE-2024-53961.json @@ -7,12 +7,12 @@ "reposts": 1, "post": "rt @__kokumoto: adobe\u304ccoldfusion\u306e\u91cd\u5927(critical)\u306a\u8106\u5f31\u6027\u3092\u5b9a\u4f8b\u5916\u4fee\u6b63\u3002poc\uff08\u653b\u6483\u306e\u6982\u5ff5\u5b9f\u8a3c\u30b3\u30fc\u30c9\uff09\u516c\u958b\u6e08\u307f\u3002cve-2024-53961\u306f\u30d1\u30b9\u30c8\u30e9\u30d0\u30fc\u30b5\u30eb\u8106\u5f31\u6027\u3067\u3001\u30b5\u30fc\u30d0\u4e0a\u306e\u4efb\u610f\u30d5\u30a1\u30a4\u30eb\u306e\u8aad\u307f\u51fa\u3057\u304c\u53ef\u80fd\u3002\u516c\u5f0f\u512a\u5148\u5ea6\u306f\u6700\u9ad8\u306epriori\u2026", "audience": 231, - "audience_total": 28164, - "total_reposts": 5, + "audience_total": 103822, + "total_reposts": 9, "post_count": 0, "author": "tachibana", "username": "natnihs", - "v_score": 0.355697, + "v_score": 0.422326, "e_score": null, "base_score": "7.4", "description": "COLDFUSION VERSIONS 2023.11, 2021.17 AND EARLIER ARE AFFECTED BY AN IMPROPER LIMITATION OF A PATHNAME TO A RESTRICTED DIRECTORY (PATH TRAVERSAL) VULNERABILITY THAT COULD LEAD TO ARBITRARY FILE SYSTEM READ. AN ATTACKER COULD EXPLOIT THIS VULNERABILITY TO ACCESS FILES OR DIRECTORIES THAT ARE OUTSIDE OF THE RESTRICTED DIRECTORY SET BY THE APPLICATION. THIS COULD LEAD TO THE DISCLOSURE OF SENSITIVE INFORMATION OR THE MANIPULATION OF SYSTEM DATA.", @@ -30,12 +30,12 @@ "reposts": 1, "post": "rt @icatalerts: adobe coldfusion\u306e\u8106\u5f31\u6027\u5bfe\u7b56\u306b\u3064\u3044\u3066(cve-2024-53961) https://t.co/fojxcyg2oe", "audience": 45, - "audience_total": 28164, - "total_reposts": 5, + "audience_total": 103822, + "total_reposts": 9, "post_count": 0, "author": "masa", "username": "naka_mura_masa", - "v_score": 0.355697, + "v_score": 0.422326, "e_score": null, "base_score": "7.4", "description": "COLDFUSION VERSIONS 2023.11, 2021.17 AND EARLIER ARE AFFECTED BY AN IMPROPER LIMITATION OF A PATHNAME TO A RESTRICTED DIRECTORY (PATH TRAVERSAL) VULNERABILITY THAT COULD LEAD TO ARBITRARY FILE SYSTEM READ. AN ATTACKER COULD EXPLOIT THIS VULNERABILITY TO ACCESS FILES OR DIRECTORIES THAT ARE OUTSIDE OF THE RESTRICTED DIRECTORY SET BY THE APPLICATION. THIS COULD LEAD TO THE DISCLOSURE OF SENSITIVE INFORMATION OR THE MANIPULATION OF SYSTEM DATA.", @@ -53,12 +53,12 @@ "reposts": 1, "post": "rt @autumn_good_35: \u5831\u544a\u8005\u7684\u306b\u306f\u3044\u3064\u3082\u901a\u308a\u30d6\u30ed\u30b0\u3067\u516c\u958b\u3057\u305d\u3046\u3067\u3059\u306d\u3002\n\n\u300eadobe is aware that cve-2024-53961 has a known proof-of-concept that could cause an arbitra\u2026", "audience": 2725, - "audience_total": 28164, - "total_reposts": 5, + "audience_total": 103822, + "total_reposts": 9, "post_count": 0, "author": "andre gironda", "username": "andregironda", - "v_score": 0.355697, + "v_score": 0.422326, "e_score": null, "base_score": "7.4", "description": "COLDFUSION VERSIONS 2023.11, 2021.17 AND EARLIER ARE AFFECTED BY AN IMPROPER LIMITATION OF A PATHNAME TO A RESTRICTED DIRECTORY (PATH TRAVERSAL) VULNERABILITY THAT COULD LEAD TO ARBITRARY FILE SYSTEM READ. AN ATTACKER COULD EXPLOIT THIS VULNERABILITY TO ACCESS FILES OR DIRECTORIES THAT ARE OUTSIDE OF THE RESTRICTED DIRECTORY SET BY THE APPLICATION. THIS COULD LEAD TO THE DISCLOSURE OF SENSITIVE INFORMATION OR THE MANIPULATION OF SYSTEM DATA.", @@ -76,12 +76,12 @@ "reposts": 1, "post": "rt @lhackingupdates: the flaw, tracked as cve-2024-53961, is a path traversal vulnerability is adobe coldfusion that could allow malicious\u2026", "audience": 948, - "audience_total": 28164, - "total_reposts": 5, + "audience_total": 103822, + "total_reposts": 9, "post_count": 0, "author": "rahul thakur", "username": "rahulthakurhack", - "v_score": 0.355697, + "v_score": 0.422326, "e_score": null, "base_score": "7.4", "description": "COLDFUSION VERSIONS 2023.11, 2021.17 AND EARLIER ARE AFFECTED BY AN IMPROPER LIMITATION OF A PATHNAME TO A RESTRICTED DIRECTORY (PATH TRAVERSAL) VULNERABILITY THAT COULD LEAD TO ARBITRARY FILE SYSTEM READ. AN ATTACKER COULD EXPLOIT THIS VULNERABILITY TO ACCESS FILES OR DIRECTORIES THAT ARE OUTSIDE OF THE RESTRICTED DIRECTORY SET BY THE APPLICATION. THIS COULD LEAD TO THE DISCLOSURE OF SENSITIVE INFORMATION OR THE MANIPULATION OF SYSTEM DATA.", @@ -99,12 +99,12 @@ "reposts": 1, "post": "rt @netlas_io: cve-2024-53961: path traversal in adobe coldfusion, 7.4 rating\u2757\ufe0f\n\nfresh vuln allows attackers to read arbitrary files on the\u2026", "audience": 24215, - "audience_total": 28164, - "total_reposts": 5, + "audience_total": 103822, + "total_reposts": 9, "post_count": 0, "author": "\u071b\u0714\u0714\u0714\u071b\u0714\u071b\u0714\u071b", "username": "skocherhan", - "v_score": 0.355697, + "v_score": 0.422326, "e_score": null, "base_score": "7.4", "description": "COLDFUSION VERSIONS 2023.11, 2021.17 AND EARLIER ARE AFFECTED BY AN IMPROPER LIMITATION OF A PATHNAME TO A RESTRICTED DIRECTORY (PATH TRAVERSAL) VULNERABILITY THAT COULD LEAD TO ARBITRARY FILE SYSTEM READ. AN ATTACKER COULD EXPLOIT THIS VULNERABILITY TO ACCESS FILES OR DIRECTORIES THAT ARE OUTSIDE OF THE RESTRICTED DIRECTORY SET BY THE APPLICATION. THIS COULD LEAD TO THE DISCLOSURE OF SENSITIVE INFORMATION OR THE MANIPULATION OF SYSTEM DATA.", @@ -113,5 +113,97 @@ "vendor_logo": null, "profile_url": "https://pbs.twimg.com/profile_images/1652349428236181504/kApHVpHV_normal.jpg", "feed_name": "twitter" + }, + { + "cve": "CVE-2024-53961", + "created_datetime": "2024-12-25T02:47:54", + "author_id": "107888057", + "data_id": "1871749681820352879", + "reposts": 1, + "post": "rt @icatalerts: adobe coldfusion\u306e\u8106\u5f31\u6027\u5bfe\u7b56\u306b\u3064\u3044\u3066(cve-2024-53961) https://t.co/fojxcyg2oe", + "audience": 370, + "audience_total": 103822, + "total_reposts": 9, + "post_count": 0, + "author": "\u548c\u6708\u9f8d\u5f25", + "username": "watsu_09", + "v_score": 0.422326, + "e_score": null, + "base_score": "7.4", + "description": "COLDFUSION VERSIONS 2023.11, 2021.17 AND EARLIER ARE AFFECTED BY AN IMPROPER LIMITATION OF A PATHNAME TO A RESTRICTED DIRECTORY (PATH TRAVERSAL) VULNERABILITY THAT COULD LEAD TO ARBITRARY FILE SYSTEM READ. AN ATTACKER COULD EXPLOIT THIS VULNERABILITY TO ACCESS FILES OR DIRECTORIES THAT ARE OUTSIDE OF THE RESTRICTED DIRECTORY SET BY THE APPLICATION. THIS COULD LEAD TO THE DISCLOSURE OF SENSITIVE INFORMATION OR THE MANIPULATION OF SYSTEM DATA.", + "last_modified_datetime": "2024-12-23 21:15:00", + "published_datetime": "2024-12-23 21:15:00", + "vendor_logo": null, + "profile_url": null, + "feed_name": "twitter" + }, + { + "cve": "CVE-2024-53961", + "created_datetime": "2024-12-25T02:48:21", + "author_id": "3876351", + "data_id": "1871749796127777275", + "reposts": 1, + "post": "rt @icatalerts: adobe coldfusion\u306e\u8106\u5f31\u6027\u5bfe\u7b56\u306b\u3064\u3044\u3066(cve-2024-53961) https://t.co/fojxcyg2oe", + "audience": 4348, + "audience_total": 103822, + "total_reposts": 9, + "post_count": 0, + "author": "\u6d41\u77f3", + "username": "sasuga", + "v_score": 0.422326, + "e_score": null, + "base_score": "7.4", + "description": "COLDFUSION VERSIONS 2023.11, 2021.17 AND EARLIER ARE AFFECTED BY AN IMPROPER LIMITATION OF A PATHNAME TO A RESTRICTED DIRECTORY (PATH TRAVERSAL) VULNERABILITY THAT COULD LEAD TO ARBITRARY FILE SYSTEM READ. AN ATTACKER COULD EXPLOIT THIS VULNERABILITY TO ACCESS FILES OR DIRECTORIES THAT ARE OUTSIDE OF THE RESTRICTED DIRECTORY SET BY THE APPLICATION. THIS COULD LEAD TO THE DISCLOSURE OF SENSITIVE INFORMATION OR THE MANIPULATION OF SYSTEM DATA.", + "last_modified_datetime": "2024-12-23 21:15:00", + "published_datetime": "2024-12-23 21:15:00", + "vendor_logo": null, + "profile_url": null, + "feed_name": "twitter" + }, + { + "cve": "CVE-2024-53961", + "created_datetime": "2024-12-25T02:46:55", + "author_id": "2978242225", + "data_id": "1871749435178598808", + "reposts": 1, + "post": "rt @icatalerts: adobe coldfusion\u306e\u8106\u5f31\u6027\u5bfe\u7b56\u306b\u3064\u3044\u3066(cve-2024-53961) https://t.co/fojxcyg2oe", + "audience": 70940, + "audience_total": 103822, + "total_reposts": 9, + "post_count": 0, + "author": "ipa\uff08\u60c5\u5831\u51e6\u7406\u63a8\u9032\u6a5f\u69cb\uff09", + "username": "ipajp", + "v_score": 0.422326, + "e_score": null, + "base_score": "7.4", + "description": "COLDFUSION VERSIONS 2023.11, 2021.17 AND EARLIER ARE AFFECTED BY AN IMPROPER LIMITATION OF A PATHNAME TO A RESTRICTED DIRECTORY (PATH TRAVERSAL) VULNERABILITY THAT COULD LEAD TO ARBITRARY FILE SYSTEM READ. AN ATTACKER COULD EXPLOIT THIS VULNERABILITY TO ACCESS FILES OR DIRECTORIES THAT ARE OUTSIDE OF THE RESTRICTED DIRECTORY SET BY THE APPLICATION. THIS COULD LEAD TO THE DISCLOSURE OF SENSITIVE INFORMATION OR THE MANIPULATION OF SYSTEM DATA.", + "last_modified_datetime": "2024-12-23 21:15:00", + "published_datetime": "2024-12-23 21:15:00", + "vendor_logo": null, + "profile_url": null, + "feed_name": "twitter" + }, + { + "cve": "CVE-2024-53961", + "created_datetime": "2024-12-25T04:13:57", + "author_id": "1832762659961524224", + "data_id": "1871771339729871342", + "reposts": 1, + "post": "rt @huntermapping: \ud83d\udea8alert\ud83d\udea8cve-2024-53961 : poc exploit emerges-severe path traversal vulnerability in adobe coldfusion\n\ud83d\udcca 8.5m+ services are\u2026", + "audience": 0, + "audience_total": 103822, + "total_reposts": 9, + "post_count": 0, + "author": "marsupilamii", + "username": "tmbtuanmud60435", + "v_score": 0.422326, + "e_score": null, + "base_score": "7.4", + "description": "COLDFUSION VERSIONS 2023.11, 2021.17 AND EARLIER ARE AFFECTED BY AN IMPROPER LIMITATION OF A PATHNAME TO A RESTRICTED DIRECTORY (PATH TRAVERSAL) VULNERABILITY THAT COULD LEAD TO ARBITRARY FILE SYSTEM READ. AN ATTACKER COULD EXPLOIT THIS VULNERABILITY TO ACCESS FILES OR DIRECTORIES THAT ARE OUTSIDE OF THE RESTRICTED DIRECTORY SET BY THE APPLICATION. THIS COULD LEAD TO THE DISCLOSURE OF SENSITIVE INFORMATION OR THE MANIPULATION OF SYSTEM DATA.", + "last_modified_datetime": "2024-12-23 21:15:00", + "published_datetime": "2024-12-23 21:15:00", + "vendor_logo": null, + "profile_url": null, + "feed_name": "twitter" } ] \ No newline at end of file diff --git a/social_media/x/2024/CVE-2024-56337.json b/social_media/x/2024/CVE-2024-56337.json index 4dce6b833..cb005dc90 100644 --- a/social_media/x/2024/CVE-2024-56337.json +++ b/social_media/x/2024/CVE-2024-56337.json @@ -191,12 +191,12 @@ "reposts": 1, "post": "rt @thecybersechub: apache tomcat vulnerability cve-2024-56337 exposes servers to rce attacks https://t.co/jqdml95j2t", "audience": 1317, - "audience_total": 41167, - "total_reposts": 31, + "audience_total": 41833, + "total_reposts": 32, "post_count": 1, "author": "world cyber expert\ud83d\udcbb\ud83c\udf0e", "username": "wrldcyberexpert", - "v_score": 0.0793805, + "v_score": 0.645375, "e_score": null, "base_score": null, "description": "TIME-OF-CHECK TIME-OF-USE (TOCTOU) RACE CONDITION VULNERABILITY IN APACHE TOMCAT.\n\nTHIS ISSUE AFFECTS APACHE TOMCAT: FROM 11.0.0-M1 THROUGH 11.0.1, FROM 10.1.0-M1 THROUGH 10.1.33, FROM 9.0.0.M1 THROUGH 9.0.97.\n\nTHE MITIGATION FOR CVE-2024-50379 WAS INCOMPLETE.\n\nUSERS RUNNING TOMCAT ON A CASE INSENSITIVE FILE SYSTEM WITH THE DEFAULT SERVLET WRITE ENABLED (READONLY INITIALISATION \nPARAMETER SET TO THE NON-DEFAULT VALUE OF FALSE) MAY NEED ADDITIONAL CONFIGURATION TO FULLY MITIGATE CVE-2024-50379 DEPENDING ON WHICH VERSION OF JAVA THEY ARE USING WITH TOMCAT:\n- RUNNING ON JAVA 8 OR JAVA 11: THE SYSTEM PROPERTY\u00a0SUN.IO.USECANONCACHES MUST BE EXPLICITLY SET TO FALSE (IT DEFAULTS TO TRUE)\n- RUNNING ON JAVA 17: THE\u00a0SYSTEM PROPERTY SUN.IO.USECANONCACHES, IF SET, MUST BE SET TO FALSE\u00a0(IT DEFAULTS TO FALSE)\n- RUNNING ON JAVA 21 ONWARDS: NO FURTHER CONFIGURATION IS REQUIRED\u00a0(THE SYSTEM PROPERTY AND THE PROBLEMATIC CACHE HAVE BEEN REMOVED)\n\nTOMCAT 11.0.3, 10.1.35 AND 9.0.99 ONWARDS WILL INCLUDE CHECKS THAT\u00a0SUN.IO.USECANONCACHES IS SET APPROPRIATELY BEFORE ALLOWING THE DEFAULT SERVLET TO BE WRITE ENABLED ON A CASE INSENSITIVE FILE SYSTEM. TOMCAT WILL ALSO SET\u00a0SUN.IO.USECANONCACHES TO FALSE BY DEFAULT WHERE IT CAN.", @@ -237,12 +237,12 @@ "reposts": 1, "post": "rt @dinosn: apache tomcat vulnerability cve-2024-56337 exposes servers to rce attacks https://t.co/wpcdpq19ts", "audience": 0, - "audience_total": 41167, - "total_reposts": 31, + "audience_total": 41833, + "total_reposts": 32, "post_count": 1, "author": "\u0916\u091c\u094d\u091c\u0932 \u092a\u091f\u094d\u091f\u0940", "username": "sudarshanank", - "v_score": 0.0793805, + "v_score": 0.645375, "e_score": null, "base_score": null, "description": "TIME-OF-CHECK TIME-OF-USE (TOCTOU) RACE CONDITION VULNERABILITY IN APACHE TOMCAT.\n\nTHIS ISSUE AFFECTS APACHE TOMCAT: FROM 11.0.0-M1 THROUGH 11.0.1, FROM 10.1.0-M1 THROUGH 10.1.33, FROM 9.0.0.M1 THROUGH 9.0.97.\n\nTHE MITIGATION FOR CVE-2024-50379 WAS INCOMPLETE.\n\nUSERS RUNNING TOMCAT ON A CASE INSENSITIVE FILE SYSTEM WITH THE DEFAULT SERVLET WRITE ENABLED (READONLY INITIALISATION \nPARAMETER SET TO THE NON-DEFAULT VALUE OF FALSE) MAY NEED ADDITIONAL CONFIGURATION TO FULLY MITIGATE CVE-2024-50379 DEPENDING ON WHICH VERSION OF JAVA THEY ARE USING WITH TOMCAT:\n- RUNNING ON JAVA 8 OR JAVA 11: THE SYSTEM PROPERTY\u00a0SUN.IO.USECANONCACHES MUST BE EXPLICITLY SET TO FALSE (IT DEFAULTS TO TRUE)\n- RUNNING ON JAVA 17: THE\u00a0SYSTEM PROPERTY SUN.IO.USECANONCACHES, IF SET, MUST BE SET TO FALSE\u00a0(IT DEFAULTS TO FALSE)\n- RUNNING ON JAVA 21 ONWARDS: NO FURTHER CONFIGURATION IS REQUIRED\u00a0(THE SYSTEM PROPERTY AND THE PROBLEMATIC CACHE HAVE BEEN REMOVED)\n\nTOMCAT 11.0.3, 10.1.35 AND 9.0.99 ONWARDS WILL INCLUDE CHECKS THAT\u00a0SUN.IO.USECANONCACHES IS SET APPROPRIATELY BEFORE ALLOWING THE DEFAULT SERVLET TO BE WRITE ENABLED ON A CASE INSENSITIVE FILE SYSTEM. TOMCAT WILL ALSO SET\u00a0SUN.IO.USECANONCACHES TO FALSE BY DEFAULT WHERE IT CAN.", @@ -260,12 +260,12 @@ "reposts": 1, "post": "rt @thehackersnews: \u26a1 a new remote code execution flaw in apache tomcat (cve-2024-56337) exposes organizations to serious risk.\n\n\u00bb affected\u2026", "audience": 314, - "audience_total": 41167, - "total_reposts": 31, + "audience_total": 41833, + "total_reposts": 32, "post_count": 1, "author": "manuel barrera", "username": "manuel_bx", - "v_score": 0.0793805, + "v_score": 0.645375, "e_score": null, "base_score": null, "description": "TIME-OF-CHECK TIME-OF-USE (TOCTOU) RACE CONDITION VULNERABILITY IN APACHE TOMCAT.\n\nTHIS ISSUE AFFECTS APACHE TOMCAT: FROM 11.0.0-M1 THROUGH 11.0.1, FROM 10.1.0-M1 THROUGH 10.1.33, FROM 9.0.0.M1 THROUGH 9.0.97.\n\nTHE MITIGATION FOR CVE-2024-50379 WAS INCOMPLETE.\n\nUSERS RUNNING TOMCAT ON A CASE INSENSITIVE FILE SYSTEM WITH THE DEFAULT SERVLET WRITE ENABLED (READONLY INITIALISATION \nPARAMETER SET TO THE NON-DEFAULT VALUE OF FALSE) MAY NEED ADDITIONAL CONFIGURATION TO FULLY MITIGATE CVE-2024-50379 DEPENDING ON WHICH VERSION OF JAVA THEY ARE USING WITH TOMCAT:\n- RUNNING ON JAVA 8 OR JAVA 11: THE SYSTEM PROPERTY\u00a0SUN.IO.USECANONCACHES MUST BE EXPLICITLY SET TO FALSE (IT DEFAULTS TO TRUE)\n- RUNNING ON JAVA 17: THE\u00a0SYSTEM PROPERTY SUN.IO.USECANONCACHES, IF SET, MUST BE SET TO FALSE\u00a0(IT DEFAULTS TO FALSE)\n- RUNNING ON JAVA 21 ONWARDS: NO FURTHER CONFIGURATION IS REQUIRED\u00a0(THE SYSTEM PROPERTY AND THE PROBLEMATIC CACHE HAVE BEEN REMOVED)\n\nTOMCAT 11.0.3, 10.1.35 AND 9.0.99 ONWARDS WILL INCLUDE CHECKS THAT\u00a0SUN.IO.USECANONCACHES IS SET APPROPRIATELY BEFORE ALLOWING THE DEFAULT SERVLET TO BE WRITE ENABLED ON A CASE INSENSITIVE FILE SYSTEM. TOMCAT WILL ALSO SET\u00a0SUN.IO.USECANONCACHES TO FALSE BY DEFAULT WHERE IT CAN.", @@ -283,12 +283,12 @@ "reposts": 1, "post": "rt @thehackersnews: \u26a1 a new remote code execution flaw in apache tomcat (cve-2024-56337) exposes organizations to serious risk.\n\n\u00bb affected\u2026", "audience": 402, - "audience_total": 41167, - "total_reposts": 31, + "audience_total": 41833, + "total_reposts": 32, "post_count": 1, "author": "ssuite office software", "username": "ssuitesoftware", - "v_score": 0.0793805, + "v_score": 0.645375, "e_score": null, "base_score": null, "description": "TIME-OF-CHECK TIME-OF-USE (TOCTOU) RACE CONDITION VULNERABILITY IN APACHE TOMCAT.\n\nTHIS ISSUE AFFECTS APACHE TOMCAT: FROM 11.0.0-M1 THROUGH 11.0.1, FROM 10.1.0-M1 THROUGH 10.1.33, FROM 9.0.0.M1 THROUGH 9.0.97.\n\nTHE MITIGATION FOR CVE-2024-50379 WAS INCOMPLETE.\n\nUSERS RUNNING TOMCAT ON A CASE INSENSITIVE FILE SYSTEM WITH THE DEFAULT SERVLET WRITE ENABLED (READONLY INITIALISATION \nPARAMETER SET TO THE NON-DEFAULT VALUE OF FALSE) MAY NEED ADDITIONAL CONFIGURATION TO FULLY MITIGATE CVE-2024-50379 DEPENDING ON WHICH VERSION OF JAVA THEY ARE USING WITH TOMCAT:\n- RUNNING ON JAVA 8 OR JAVA 11: THE SYSTEM PROPERTY\u00a0SUN.IO.USECANONCACHES MUST BE EXPLICITLY SET TO FALSE (IT DEFAULTS TO TRUE)\n- RUNNING ON JAVA 17: THE\u00a0SYSTEM PROPERTY SUN.IO.USECANONCACHES, IF SET, MUST BE SET TO FALSE\u00a0(IT DEFAULTS TO FALSE)\n- RUNNING ON JAVA 21 ONWARDS: NO FURTHER CONFIGURATION IS REQUIRED\u00a0(THE SYSTEM PROPERTY AND THE PROBLEMATIC CACHE HAVE BEEN REMOVED)\n\nTOMCAT 11.0.3, 10.1.35 AND 9.0.99 ONWARDS WILL INCLUDE CHECKS THAT\u00a0SUN.IO.USECANONCACHES IS SET APPROPRIATELY BEFORE ALLOWING THE DEFAULT SERVLET TO BE WRITE ENABLED ON A CASE INSENSITIVE FILE SYSTEM. TOMCAT WILL ALSO SET\u00a0SUN.IO.USECANONCACHES TO FALSE BY DEFAULT WHERE IT CAN.", @@ -306,12 +306,12 @@ "reposts": 1, "post": "rt @thehackersnews: \u26a1 a new remote code execution flaw in apache tomcat (cve-2024-56337) exposes organizations to serious risk.\n\n\u00bb affected\u2026", "audience": 1431, - "audience_total": 41167, - "total_reposts": 31, + "audience_total": 41833, + "total_reposts": 32, "post_count": 1, "author": "cyber sec bae\ud83c\uddf5\ud83c\udde6", "username": "siedoestech", - "v_score": 0.0793805, + "v_score": 0.645375, "e_score": null, "base_score": null, "description": "TIME-OF-CHECK TIME-OF-USE (TOCTOU) RACE CONDITION VULNERABILITY IN APACHE TOMCAT.\n\nTHIS ISSUE AFFECTS APACHE TOMCAT: FROM 11.0.0-M1 THROUGH 11.0.1, FROM 10.1.0-M1 THROUGH 10.1.33, FROM 9.0.0.M1 THROUGH 9.0.97.\n\nTHE MITIGATION FOR CVE-2024-50379 WAS INCOMPLETE.\n\nUSERS RUNNING TOMCAT ON A CASE INSENSITIVE FILE SYSTEM WITH THE DEFAULT SERVLET WRITE ENABLED (READONLY INITIALISATION \nPARAMETER SET TO THE NON-DEFAULT VALUE OF FALSE) MAY NEED ADDITIONAL CONFIGURATION TO FULLY MITIGATE CVE-2024-50379 DEPENDING ON WHICH VERSION OF JAVA THEY ARE USING WITH TOMCAT:\n- RUNNING ON JAVA 8 OR JAVA 11: THE SYSTEM PROPERTY\u00a0SUN.IO.USECANONCACHES MUST BE EXPLICITLY SET TO FALSE (IT DEFAULTS TO TRUE)\n- RUNNING ON JAVA 17: THE\u00a0SYSTEM PROPERTY SUN.IO.USECANONCACHES, IF SET, MUST BE SET TO FALSE\u00a0(IT DEFAULTS TO FALSE)\n- RUNNING ON JAVA 21 ONWARDS: NO FURTHER CONFIGURATION IS REQUIRED\u00a0(THE SYSTEM PROPERTY AND THE PROBLEMATIC CACHE HAVE BEEN REMOVED)\n\nTOMCAT 11.0.3, 10.1.35 AND 9.0.99 ONWARDS WILL INCLUDE CHECKS THAT\u00a0SUN.IO.USECANONCACHES IS SET APPROPRIATELY BEFORE ALLOWING THE DEFAULT SERVLET TO BE WRITE ENABLED ON A CASE INSENSITIVE FILE SYSTEM. TOMCAT WILL ALSO SET\u00a0SUN.IO.USECANONCACHES TO FALSE BY DEFAULT WHERE IT CAN.", @@ -329,12 +329,12 @@ "reposts": 1, "post": "rt @thehackersnews: \u26a1 a new remote code execution flaw in apache tomcat (cve-2024-56337) exposes organizations to serious risk.\n\n\u00bb affected\u2026", "audience": 265, - "audience_total": 41167, - "total_reposts": 31, + "audience_total": 41833, + "total_reposts": 32, "post_count": 1, "author": "plinio devanier", "username": "pdevanier", - "v_score": 0.0793805, + "v_score": 0.645375, "e_score": null, "base_score": null, "description": "TIME-OF-CHECK TIME-OF-USE (TOCTOU) RACE CONDITION VULNERABILITY IN APACHE TOMCAT.\n\nTHIS ISSUE AFFECTS APACHE TOMCAT: FROM 11.0.0-M1 THROUGH 11.0.1, FROM 10.1.0-M1 THROUGH 10.1.33, FROM 9.0.0.M1 THROUGH 9.0.97.\n\nTHE MITIGATION FOR CVE-2024-50379 WAS INCOMPLETE.\n\nUSERS RUNNING TOMCAT ON A CASE INSENSITIVE FILE SYSTEM WITH THE DEFAULT SERVLET WRITE ENABLED (READONLY INITIALISATION \nPARAMETER SET TO THE NON-DEFAULT VALUE OF FALSE) MAY NEED ADDITIONAL CONFIGURATION TO FULLY MITIGATE CVE-2024-50379 DEPENDING ON WHICH VERSION OF JAVA THEY ARE USING WITH TOMCAT:\n- RUNNING ON JAVA 8 OR JAVA 11: THE SYSTEM PROPERTY\u00a0SUN.IO.USECANONCACHES MUST BE EXPLICITLY SET TO FALSE (IT DEFAULTS TO TRUE)\n- RUNNING ON JAVA 17: THE\u00a0SYSTEM PROPERTY SUN.IO.USECANONCACHES, IF SET, MUST BE SET TO FALSE\u00a0(IT DEFAULTS TO FALSE)\n- RUNNING ON JAVA 21 ONWARDS: NO FURTHER CONFIGURATION IS REQUIRED\u00a0(THE SYSTEM PROPERTY AND THE PROBLEMATIC CACHE HAVE BEEN REMOVED)\n\nTOMCAT 11.0.3, 10.1.35 AND 9.0.99 ONWARDS WILL INCLUDE CHECKS THAT\u00a0SUN.IO.USECANONCACHES IS SET APPROPRIATELY BEFORE ALLOWING THE DEFAULT SERVLET TO BE WRITE ENABLED ON A CASE INSENSITIVE FILE SYSTEM. TOMCAT WILL ALSO SET\u00a0SUN.IO.USECANONCACHES TO FALSE BY DEFAULT WHERE IT CAN.", @@ -352,12 +352,12 @@ "reposts": 1, "post": "rt @thehackersnews: \u26a1 a new remote code execution flaw in apache tomcat (cve-2024-56337) exposes organizations to serious risk.\n\n\u00bb affected\u2026", "audience": 594, - "audience_total": 41167, - "total_reposts": 31, + "audience_total": 41833, + "total_reposts": 32, "post_count": 1, "author": "robertson", "username": "rsalinasg", - "v_score": 0.0793805, + "v_score": 0.645375, "e_score": null, "base_score": null, "description": "TIME-OF-CHECK TIME-OF-USE (TOCTOU) RACE CONDITION VULNERABILITY IN APACHE TOMCAT.\n\nTHIS ISSUE AFFECTS APACHE TOMCAT: FROM 11.0.0-M1 THROUGH 11.0.1, FROM 10.1.0-M1 THROUGH 10.1.33, FROM 9.0.0.M1 THROUGH 9.0.97.\n\nTHE MITIGATION FOR CVE-2024-50379 WAS INCOMPLETE.\n\nUSERS RUNNING TOMCAT ON A CASE INSENSITIVE FILE SYSTEM WITH THE DEFAULT SERVLET WRITE ENABLED (READONLY INITIALISATION \nPARAMETER SET TO THE NON-DEFAULT VALUE OF FALSE) MAY NEED ADDITIONAL CONFIGURATION TO FULLY MITIGATE CVE-2024-50379 DEPENDING ON WHICH VERSION OF JAVA THEY ARE USING WITH TOMCAT:\n- RUNNING ON JAVA 8 OR JAVA 11: THE SYSTEM PROPERTY\u00a0SUN.IO.USECANONCACHES MUST BE EXPLICITLY SET TO FALSE (IT DEFAULTS TO TRUE)\n- RUNNING ON JAVA 17: THE\u00a0SYSTEM PROPERTY SUN.IO.USECANONCACHES, IF SET, MUST BE SET TO FALSE\u00a0(IT DEFAULTS TO FALSE)\n- RUNNING ON JAVA 21 ONWARDS: NO FURTHER CONFIGURATION IS REQUIRED\u00a0(THE SYSTEM PROPERTY AND THE PROBLEMATIC CACHE HAVE BEEN REMOVED)\n\nTOMCAT 11.0.3, 10.1.35 AND 9.0.99 ONWARDS WILL INCLUDE CHECKS THAT\u00a0SUN.IO.USECANONCACHES IS SET APPROPRIATELY BEFORE ALLOWING THE DEFAULT SERVLET TO BE WRITE ENABLED ON A CASE INSENSITIVE FILE SYSTEM. TOMCAT WILL ALSO SET\u00a0SUN.IO.USECANONCACHES TO FALSE BY DEFAULT WHERE IT CAN.", @@ -375,12 +375,12 @@ "reposts": 1, "post": "rt @thehackersnews: \u26a1 a new remote code execution flaw in apache tomcat (cve-2024-56337) exposes organizations to serious risk.\n\n\u00bb affected\u2026", "audience": 3296, - "audience_total": 41167, - "total_reposts": 31, + "audience_total": 41833, + "total_reposts": 32, "post_count": 1, "author": "\ud83c\udff4\u200d\u2620\ufe0f gardener \ud83c\udff4\u200d\u2620\ufe0f", "username": "gardenersantana", - "v_score": 0.0793805, + "v_score": 0.645375, "e_score": null, "base_score": null, "description": "TIME-OF-CHECK TIME-OF-USE (TOCTOU) RACE CONDITION VULNERABILITY IN APACHE TOMCAT.\n\nTHIS ISSUE AFFECTS APACHE TOMCAT: FROM 11.0.0-M1 THROUGH 11.0.1, FROM 10.1.0-M1 THROUGH 10.1.33, FROM 9.0.0.M1 THROUGH 9.0.97.\n\nTHE MITIGATION FOR CVE-2024-50379 WAS INCOMPLETE.\n\nUSERS RUNNING TOMCAT ON A CASE INSENSITIVE FILE SYSTEM WITH THE DEFAULT SERVLET WRITE ENABLED (READONLY INITIALISATION \nPARAMETER SET TO THE NON-DEFAULT VALUE OF FALSE) MAY NEED ADDITIONAL CONFIGURATION TO FULLY MITIGATE CVE-2024-50379 DEPENDING ON WHICH VERSION OF JAVA THEY ARE USING WITH TOMCAT:\n- RUNNING ON JAVA 8 OR JAVA 11: THE SYSTEM PROPERTY\u00a0SUN.IO.USECANONCACHES MUST BE EXPLICITLY SET TO FALSE (IT DEFAULTS TO TRUE)\n- RUNNING ON JAVA 17: THE\u00a0SYSTEM PROPERTY SUN.IO.USECANONCACHES, IF SET, MUST BE SET TO FALSE\u00a0(IT DEFAULTS TO FALSE)\n- RUNNING ON JAVA 21 ONWARDS: NO FURTHER CONFIGURATION IS REQUIRED\u00a0(THE SYSTEM PROPERTY AND THE PROBLEMATIC CACHE HAVE BEEN REMOVED)\n\nTOMCAT 11.0.3, 10.1.35 AND 9.0.99 ONWARDS WILL INCLUDE CHECKS THAT\u00a0SUN.IO.USECANONCACHES IS SET APPROPRIATELY BEFORE ALLOWING THE DEFAULT SERVLET TO BE WRITE ENABLED ON A CASE INSENSITIVE FILE SYSTEM. TOMCAT WILL ALSO SET\u00a0SUN.IO.USECANONCACHES TO FALSE BY DEFAULT WHERE IT CAN.", @@ -398,12 +398,12 @@ "reposts": 1, "post": "rt @thehackersnews: \u26a1 a new remote code execution flaw in apache tomcat (cve-2024-56337) exposes organizations to serious risk.\n\n\u00bb affected\u2026", "audience": 97, - "audience_total": 41167, - "total_reposts": 31, + "audience_total": 41833, + "total_reposts": 32, "post_count": 1, "author": "valkrider", "username": "valkrider", - "v_score": 0.0793805, + "v_score": 0.645375, "e_score": null, "base_score": null, "description": "TIME-OF-CHECK TIME-OF-USE (TOCTOU) RACE CONDITION VULNERABILITY IN APACHE TOMCAT.\n\nTHIS ISSUE AFFECTS APACHE TOMCAT: FROM 11.0.0-M1 THROUGH 11.0.1, FROM 10.1.0-M1 THROUGH 10.1.33, FROM 9.0.0.M1 THROUGH 9.0.97.\n\nTHE MITIGATION FOR CVE-2024-50379 WAS INCOMPLETE.\n\nUSERS RUNNING TOMCAT ON A CASE INSENSITIVE FILE SYSTEM WITH THE DEFAULT SERVLET WRITE ENABLED (READONLY INITIALISATION \nPARAMETER SET TO THE NON-DEFAULT VALUE OF FALSE) MAY NEED ADDITIONAL CONFIGURATION TO FULLY MITIGATE CVE-2024-50379 DEPENDING ON WHICH VERSION OF JAVA THEY ARE USING WITH TOMCAT:\n- RUNNING ON JAVA 8 OR JAVA 11: THE SYSTEM PROPERTY\u00a0SUN.IO.USECANONCACHES MUST BE EXPLICITLY SET TO FALSE (IT DEFAULTS TO TRUE)\n- RUNNING ON JAVA 17: THE\u00a0SYSTEM PROPERTY SUN.IO.USECANONCACHES, IF SET, MUST BE SET TO FALSE\u00a0(IT DEFAULTS TO FALSE)\n- RUNNING ON JAVA 21 ONWARDS: NO FURTHER CONFIGURATION IS REQUIRED\u00a0(THE SYSTEM PROPERTY AND THE PROBLEMATIC CACHE HAVE BEEN REMOVED)\n\nTOMCAT 11.0.3, 10.1.35 AND 9.0.99 ONWARDS WILL INCLUDE CHECKS THAT\u00a0SUN.IO.USECANONCACHES IS SET APPROPRIATELY BEFORE ALLOWING THE DEFAULT SERVLET TO BE WRITE ENABLED ON A CASE INSENSITIVE FILE SYSTEM. TOMCAT WILL ALSO SET\u00a0SUN.IO.USECANONCACHES TO FALSE BY DEFAULT WHERE IT CAN.", @@ -421,12 +421,12 @@ "reposts": 1, "post": "rt @thehackersnews: \u26a1 a new remote code execution flaw in apache tomcat (cve-2024-56337) exposes organizations to serious risk.\n\n\u00bb affected\u2026", "audience": 487, - "audience_total": 41167, - "total_reposts": 31, + "audience_total": 41833, + "total_reposts": 32, "post_count": 1, "author": "tony lima", "username": "gonzoecon", - "v_score": 0.0793805, + "v_score": 0.645375, "e_score": null, "base_score": null, "description": "TIME-OF-CHECK TIME-OF-USE (TOCTOU) RACE CONDITION VULNERABILITY IN APACHE TOMCAT.\n\nTHIS ISSUE AFFECTS APACHE TOMCAT: FROM 11.0.0-M1 THROUGH 11.0.1, FROM 10.1.0-M1 THROUGH 10.1.33, FROM 9.0.0.M1 THROUGH 9.0.97.\n\nTHE MITIGATION FOR CVE-2024-50379 WAS INCOMPLETE.\n\nUSERS RUNNING TOMCAT ON A CASE INSENSITIVE FILE SYSTEM WITH THE DEFAULT SERVLET WRITE ENABLED (READONLY INITIALISATION \nPARAMETER SET TO THE NON-DEFAULT VALUE OF FALSE) MAY NEED ADDITIONAL CONFIGURATION TO FULLY MITIGATE CVE-2024-50379 DEPENDING ON WHICH VERSION OF JAVA THEY ARE USING WITH TOMCAT:\n- RUNNING ON JAVA 8 OR JAVA 11: THE SYSTEM PROPERTY\u00a0SUN.IO.USECANONCACHES MUST BE EXPLICITLY SET TO FALSE (IT DEFAULTS TO TRUE)\n- RUNNING ON JAVA 17: THE\u00a0SYSTEM PROPERTY SUN.IO.USECANONCACHES, IF SET, MUST BE SET TO FALSE\u00a0(IT DEFAULTS TO FALSE)\n- RUNNING ON JAVA 21 ONWARDS: NO FURTHER CONFIGURATION IS REQUIRED\u00a0(THE SYSTEM PROPERTY AND THE PROBLEMATIC CACHE HAVE BEEN REMOVED)\n\nTOMCAT 11.0.3, 10.1.35 AND 9.0.99 ONWARDS WILL INCLUDE CHECKS THAT\u00a0SUN.IO.USECANONCACHES IS SET APPROPRIATELY BEFORE ALLOWING THE DEFAULT SERVLET TO BE WRITE ENABLED ON A CASE INSENSITIVE FILE SYSTEM. TOMCAT WILL ALSO SET\u00a0SUN.IO.USECANONCACHES TO FALSE BY DEFAULT WHERE IT CAN.", @@ -444,12 +444,12 @@ "reposts": 1, "post": "rt @thehackersnews: \u26a1 a new remote code execution flaw in apache tomcat (cve-2024-56337) exposes organizations to serious risk.\n\n\u00bb affected\u2026", "audience": 725, - "audience_total": 41167, - "total_reposts": 31, + "audience_total": 41833, + "total_reposts": 32, "post_count": 1, "author": "liki\ud83e\uddd1\ud83c\udffc\u200d\ud83d\udcbb", "username": "likhithkumar_s", - "v_score": 0.0793805, + "v_score": 0.645375, "e_score": null, "base_score": null, "description": "TIME-OF-CHECK TIME-OF-USE (TOCTOU) RACE CONDITION VULNERABILITY IN APACHE TOMCAT.\n\nTHIS ISSUE AFFECTS APACHE TOMCAT: FROM 11.0.0-M1 THROUGH 11.0.1, FROM 10.1.0-M1 THROUGH 10.1.33, FROM 9.0.0.M1 THROUGH 9.0.97.\n\nTHE MITIGATION FOR CVE-2024-50379 WAS INCOMPLETE.\n\nUSERS RUNNING TOMCAT ON A CASE INSENSITIVE FILE SYSTEM WITH THE DEFAULT SERVLET WRITE ENABLED (READONLY INITIALISATION \nPARAMETER SET TO THE NON-DEFAULT VALUE OF FALSE) MAY NEED ADDITIONAL CONFIGURATION TO FULLY MITIGATE CVE-2024-50379 DEPENDING ON WHICH VERSION OF JAVA THEY ARE USING WITH TOMCAT:\n- RUNNING ON JAVA 8 OR JAVA 11: THE SYSTEM PROPERTY\u00a0SUN.IO.USECANONCACHES MUST BE EXPLICITLY SET TO FALSE (IT DEFAULTS TO TRUE)\n- RUNNING ON JAVA 17: THE\u00a0SYSTEM PROPERTY SUN.IO.USECANONCACHES, IF SET, MUST BE SET TO FALSE\u00a0(IT DEFAULTS TO FALSE)\n- RUNNING ON JAVA 21 ONWARDS: NO FURTHER CONFIGURATION IS REQUIRED\u00a0(THE SYSTEM PROPERTY AND THE PROBLEMATIC CACHE HAVE BEEN REMOVED)\n\nTOMCAT 11.0.3, 10.1.35 AND 9.0.99 ONWARDS WILL INCLUDE CHECKS THAT\u00a0SUN.IO.USECANONCACHES IS SET APPROPRIATELY BEFORE ALLOWING THE DEFAULT SERVLET TO BE WRITE ENABLED ON A CASE INSENSITIVE FILE SYSTEM. TOMCAT WILL ALSO SET\u00a0SUN.IO.USECANONCACHES TO FALSE BY DEFAULT WHERE IT CAN.", @@ -467,12 +467,12 @@ "reposts": 1, "post": "rt @thehackersnews: \u26a1 a new remote code execution flaw in apache tomcat (cve-2024-56337) exposes organizations to serious risk.\n\n\u00bb affected\u2026", "audience": 2948, - "audience_total": 41167, - "total_reposts": 31, + "audience_total": 41833, + "total_reposts": 32, "post_count": 1, "author": "tony lima", "username": "tonylimapol", - "v_score": 0.0793805, + "v_score": 0.645375, "e_score": null, "base_score": null, "description": "TIME-OF-CHECK TIME-OF-USE (TOCTOU) RACE CONDITION VULNERABILITY IN APACHE TOMCAT.\n\nTHIS ISSUE AFFECTS APACHE TOMCAT: FROM 11.0.0-M1 THROUGH 11.0.1, FROM 10.1.0-M1 THROUGH 10.1.33, FROM 9.0.0.M1 THROUGH 9.0.97.\n\nTHE MITIGATION FOR CVE-2024-50379 WAS INCOMPLETE.\n\nUSERS RUNNING TOMCAT ON A CASE INSENSITIVE FILE SYSTEM WITH THE DEFAULT SERVLET WRITE ENABLED (READONLY INITIALISATION \nPARAMETER SET TO THE NON-DEFAULT VALUE OF FALSE) MAY NEED ADDITIONAL CONFIGURATION TO FULLY MITIGATE CVE-2024-50379 DEPENDING ON WHICH VERSION OF JAVA THEY ARE USING WITH TOMCAT:\n- RUNNING ON JAVA 8 OR JAVA 11: THE SYSTEM PROPERTY\u00a0SUN.IO.USECANONCACHES MUST BE EXPLICITLY SET TO FALSE (IT DEFAULTS TO TRUE)\n- RUNNING ON JAVA 17: THE\u00a0SYSTEM PROPERTY SUN.IO.USECANONCACHES, IF SET, MUST BE SET TO FALSE\u00a0(IT DEFAULTS TO FALSE)\n- RUNNING ON JAVA 21 ONWARDS: NO FURTHER CONFIGURATION IS REQUIRED\u00a0(THE SYSTEM PROPERTY AND THE PROBLEMATIC CACHE HAVE BEEN REMOVED)\n\nTOMCAT 11.0.3, 10.1.35 AND 9.0.99 ONWARDS WILL INCLUDE CHECKS THAT\u00a0SUN.IO.USECANONCACHES IS SET APPROPRIATELY BEFORE ALLOWING THE DEFAULT SERVLET TO BE WRITE ENABLED ON A CASE INSENSITIVE FILE SYSTEM. TOMCAT WILL ALSO SET\u00a0SUN.IO.USECANONCACHES TO FALSE BY DEFAULT WHERE IT CAN.", @@ -490,12 +490,12 @@ "reposts": 1, "post": "rt @thehackersnews: \u26a1 a new remote code execution flaw in apache tomcat (cve-2024-56337) exposes organizations to serious risk.\n\n\u00bb affected\u2026", "audience": 277, - "audience_total": 41167, - "total_reposts": 31, + "audience_total": 41833, + "total_reposts": 32, "post_count": 1, "author": "umua mua", "username": "4constellation", - "v_score": 0.0793805, + "v_score": 0.645375, "e_score": null, "base_score": null, "description": "TIME-OF-CHECK TIME-OF-USE (TOCTOU) RACE CONDITION VULNERABILITY IN APACHE TOMCAT.\n\nTHIS ISSUE AFFECTS APACHE TOMCAT: FROM 11.0.0-M1 THROUGH 11.0.1, FROM 10.1.0-M1 THROUGH 10.1.33, FROM 9.0.0.M1 THROUGH 9.0.97.\n\nTHE MITIGATION FOR CVE-2024-50379 WAS INCOMPLETE.\n\nUSERS RUNNING TOMCAT ON A CASE INSENSITIVE FILE SYSTEM WITH THE DEFAULT SERVLET WRITE ENABLED (READONLY INITIALISATION \nPARAMETER SET TO THE NON-DEFAULT VALUE OF FALSE) MAY NEED ADDITIONAL CONFIGURATION TO FULLY MITIGATE CVE-2024-50379 DEPENDING ON WHICH VERSION OF JAVA THEY ARE USING WITH TOMCAT:\n- RUNNING ON JAVA 8 OR JAVA 11: THE SYSTEM PROPERTY\u00a0SUN.IO.USECANONCACHES MUST BE EXPLICITLY SET TO FALSE (IT DEFAULTS TO TRUE)\n- RUNNING ON JAVA 17: THE\u00a0SYSTEM PROPERTY SUN.IO.USECANONCACHES, IF SET, MUST BE SET TO FALSE\u00a0(IT DEFAULTS TO FALSE)\n- RUNNING ON JAVA 21 ONWARDS: NO FURTHER CONFIGURATION IS REQUIRED\u00a0(THE SYSTEM PROPERTY AND THE PROBLEMATIC CACHE HAVE BEEN REMOVED)\n\nTOMCAT 11.0.3, 10.1.35 AND 9.0.99 ONWARDS WILL INCLUDE CHECKS THAT\u00a0SUN.IO.USECANONCACHES IS SET APPROPRIATELY BEFORE ALLOWING THE DEFAULT SERVLET TO BE WRITE ENABLED ON A CASE INSENSITIVE FILE SYSTEM. TOMCAT WILL ALSO SET\u00a0SUN.IO.USECANONCACHES TO FALSE BY DEFAULT WHERE IT CAN.", @@ -513,12 +513,12 @@ "reposts": 1, "post": "rt @thehackersnews: \u26a1 a new remote code execution flaw in apache tomcat (cve-2024-56337) exposes organizations to serious risk.\n\n\u00bb affected\u2026", "audience": 1846, - "audience_total": 41167, - "total_reposts": 31, + "audience_total": 41833, + "total_reposts": 32, "post_count": 1, "author": "mr. bolton, eng.\ud83e\uddf8\ud83c\uddfa\ud83c\udde6\ud83d\ude37\ud83c\udde8\ud83c\uddf4\ud83c\uddee\ud83c\uddf1", "username": "mrbolton_sql", - "v_score": 0.0793805, + "v_score": 0.645375, "e_score": null, "base_score": null, "description": "TIME-OF-CHECK TIME-OF-USE (TOCTOU) RACE CONDITION VULNERABILITY IN APACHE TOMCAT.\n\nTHIS ISSUE AFFECTS APACHE TOMCAT: FROM 11.0.0-M1 THROUGH 11.0.1, FROM 10.1.0-M1 THROUGH 10.1.33, FROM 9.0.0.M1 THROUGH 9.0.97.\n\nTHE MITIGATION FOR CVE-2024-50379 WAS INCOMPLETE.\n\nUSERS RUNNING TOMCAT ON A CASE INSENSITIVE FILE SYSTEM WITH THE DEFAULT SERVLET WRITE ENABLED (READONLY INITIALISATION \nPARAMETER SET TO THE NON-DEFAULT VALUE OF FALSE) MAY NEED ADDITIONAL CONFIGURATION TO FULLY MITIGATE CVE-2024-50379 DEPENDING ON WHICH VERSION OF JAVA THEY ARE USING WITH TOMCAT:\n- RUNNING ON JAVA 8 OR JAVA 11: THE SYSTEM PROPERTY\u00a0SUN.IO.USECANONCACHES MUST BE EXPLICITLY SET TO FALSE (IT DEFAULTS TO TRUE)\n- RUNNING ON JAVA 17: THE\u00a0SYSTEM PROPERTY SUN.IO.USECANONCACHES, IF SET, MUST BE SET TO FALSE\u00a0(IT DEFAULTS TO FALSE)\n- RUNNING ON JAVA 21 ONWARDS: NO FURTHER CONFIGURATION IS REQUIRED\u00a0(THE SYSTEM PROPERTY AND THE PROBLEMATIC CACHE HAVE BEEN REMOVED)\n\nTOMCAT 11.0.3, 10.1.35 AND 9.0.99 ONWARDS WILL INCLUDE CHECKS THAT\u00a0SUN.IO.USECANONCACHES IS SET APPROPRIATELY BEFORE ALLOWING THE DEFAULT SERVLET TO BE WRITE ENABLED ON A CASE INSENSITIVE FILE SYSTEM. TOMCAT WILL ALSO SET\u00a0SUN.IO.USECANONCACHES TO FALSE BY DEFAULT WHERE IT CAN.", @@ -536,12 +536,12 @@ "reposts": 1, "post": "rt @cyberwald_talks: a new remote code execution flaw in apache tomcat (cve-2024-56337) exposes organizations to serious risk.\n\nan uploaded\u2026", "audience": 37, - "audience_total": 41167, - "total_reposts": 31, + "audience_total": 41833, + "total_reposts": 32, "post_count": 1, "author": "trunorth", "username": "trunorth_pak", - "v_score": 0.0793805, + "v_score": 0.645375, "e_score": null, "base_score": null, "description": "TIME-OF-CHECK TIME-OF-USE (TOCTOU) RACE CONDITION VULNERABILITY IN APACHE TOMCAT.\n\nTHIS ISSUE AFFECTS APACHE TOMCAT: FROM 11.0.0-M1 THROUGH 11.0.1, FROM 10.1.0-M1 THROUGH 10.1.33, FROM 9.0.0.M1 THROUGH 9.0.97.\n\nTHE MITIGATION FOR CVE-2024-50379 WAS INCOMPLETE.\n\nUSERS RUNNING TOMCAT ON A CASE INSENSITIVE FILE SYSTEM WITH THE DEFAULT SERVLET WRITE ENABLED (READONLY INITIALISATION \nPARAMETER SET TO THE NON-DEFAULT VALUE OF FALSE) MAY NEED ADDITIONAL CONFIGURATION TO FULLY MITIGATE CVE-2024-50379 DEPENDING ON WHICH VERSION OF JAVA THEY ARE USING WITH TOMCAT:\n- RUNNING ON JAVA 8 OR JAVA 11: THE SYSTEM PROPERTY\u00a0SUN.IO.USECANONCACHES MUST BE EXPLICITLY SET TO FALSE (IT DEFAULTS TO TRUE)\n- RUNNING ON JAVA 17: THE\u00a0SYSTEM PROPERTY SUN.IO.USECANONCACHES, IF SET, MUST BE SET TO FALSE\u00a0(IT DEFAULTS TO FALSE)\n- RUNNING ON JAVA 21 ONWARDS: NO FURTHER CONFIGURATION IS REQUIRED\u00a0(THE SYSTEM PROPERTY AND THE PROBLEMATIC CACHE HAVE BEEN REMOVED)\n\nTOMCAT 11.0.3, 10.1.35 AND 9.0.99 ONWARDS WILL INCLUDE CHECKS THAT\u00a0SUN.IO.USECANONCACHES IS SET APPROPRIATELY BEFORE ALLOWING THE DEFAULT SERVLET TO BE WRITE ENABLED ON A CASE INSENSITIVE FILE SYSTEM. TOMCAT WILL ALSO SET\u00a0SUN.IO.USECANONCACHES TO FALSE BY DEFAULT WHERE IT CAN.", @@ -559,12 +559,12 @@ "reposts": 1, "post": "rt @thehackersnews: \u26a1 a new remote code execution flaw in apache tomcat (cve-2024-56337) exposes organizations to serious risk.\n\n\u00bb affected\u2026", "audience": 235, - "audience_total": 41167, - "total_reposts": 31, + "audience_total": 41833, + "total_reposts": 32, "post_count": 1, "author": "\u8106\u5f31\u30a8\u30f3\u30b8\u30cb\u30a2", "username": "nsaito_tokyo", - "v_score": 0.0793805, + "v_score": 0.645375, "e_score": null, "base_score": null, "description": "TIME-OF-CHECK TIME-OF-USE (TOCTOU) RACE CONDITION VULNERABILITY IN APACHE TOMCAT.\n\nTHIS ISSUE AFFECTS APACHE TOMCAT: FROM 11.0.0-M1 THROUGH 11.0.1, FROM 10.1.0-M1 THROUGH 10.1.33, FROM 9.0.0.M1 THROUGH 9.0.97.\n\nTHE MITIGATION FOR CVE-2024-50379 WAS INCOMPLETE.\n\nUSERS RUNNING TOMCAT ON A CASE INSENSITIVE FILE SYSTEM WITH THE DEFAULT SERVLET WRITE ENABLED (READONLY INITIALISATION \nPARAMETER SET TO THE NON-DEFAULT VALUE OF FALSE) MAY NEED ADDITIONAL CONFIGURATION TO FULLY MITIGATE CVE-2024-50379 DEPENDING ON WHICH VERSION OF JAVA THEY ARE USING WITH TOMCAT:\n- RUNNING ON JAVA 8 OR JAVA 11: THE SYSTEM PROPERTY\u00a0SUN.IO.USECANONCACHES MUST BE EXPLICITLY SET TO FALSE (IT DEFAULTS TO TRUE)\n- RUNNING ON JAVA 17: THE\u00a0SYSTEM PROPERTY SUN.IO.USECANONCACHES, IF SET, MUST BE SET TO FALSE\u00a0(IT DEFAULTS TO FALSE)\n- RUNNING ON JAVA 21 ONWARDS: NO FURTHER CONFIGURATION IS REQUIRED\u00a0(THE SYSTEM PROPERTY AND THE PROBLEMATIC CACHE HAVE BEEN REMOVED)\n\nTOMCAT 11.0.3, 10.1.35 AND 9.0.99 ONWARDS WILL INCLUDE CHECKS THAT\u00a0SUN.IO.USECANONCACHES IS SET APPROPRIATELY BEFORE ALLOWING THE DEFAULT SERVLET TO BE WRITE ENABLED ON A CASE INSENSITIVE FILE SYSTEM. TOMCAT WILL ALSO SET\u00a0SUN.IO.USECANONCACHES TO FALSE BY DEFAULT WHERE IT CAN.", @@ -582,12 +582,12 @@ "reposts": 1, "post": "rt @thecybersechub: apache tomcat vulnerability cve-2024-56337 exposes servers to rce attacks https://t.co/jqdml95j2t", "audience": 61, - "audience_total": 41167, - "total_reposts": 31, + "audience_total": 41833, + "total_reposts": 32, "post_count": 1, "author": "patrick o.", "username": "patrick_othmer", - "v_score": 0.0793805, + "v_score": 0.645375, "e_score": null, "base_score": null, "description": "TIME-OF-CHECK TIME-OF-USE (TOCTOU) RACE CONDITION VULNERABILITY IN APACHE TOMCAT.\n\nTHIS ISSUE AFFECTS APACHE TOMCAT: FROM 11.0.0-M1 THROUGH 11.0.1, FROM 10.1.0-M1 THROUGH 10.1.33, FROM 9.0.0.M1 THROUGH 9.0.97.\n\nTHE MITIGATION FOR CVE-2024-50379 WAS INCOMPLETE.\n\nUSERS RUNNING TOMCAT ON A CASE INSENSITIVE FILE SYSTEM WITH THE DEFAULT SERVLET WRITE ENABLED (READONLY INITIALISATION \nPARAMETER SET TO THE NON-DEFAULT VALUE OF FALSE) MAY NEED ADDITIONAL CONFIGURATION TO FULLY MITIGATE CVE-2024-50379 DEPENDING ON WHICH VERSION OF JAVA THEY ARE USING WITH TOMCAT:\n- RUNNING ON JAVA 8 OR JAVA 11: THE SYSTEM PROPERTY\u00a0SUN.IO.USECANONCACHES MUST BE EXPLICITLY SET TO FALSE (IT DEFAULTS TO TRUE)\n- RUNNING ON JAVA 17: THE\u00a0SYSTEM PROPERTY SUN.IO.USECANONCACHES, IF SET, MUST BE SET TO FALSE\u00a0(IT DEFAULTS TO FALSE)\n- RUNNING ON JAVA 21 ONWARDS: NO FURTHER CONFIGURATION IS REQUIRED\u00a0(THE SYSTEM PROPERTY AND THE PROBLEMATIC CACHE HAVE BEEN REMOVED)\n\nTOMCAT 11.0.3, 10.1.35 AND 9.0.99 ONWARDS WILL INCLUDE CHECKS THAT\u00a0SUN.IO.USECANONCACHES IS SET APPROPRIATELY BEFORE ALLOWING THE DEFAULT SERVLET TO BE WRITE ENABLED ON A CASE INSENSITIVE FILE SYSTEM. TOMCAT WILL ALSO SET\u00a0SUN.IO.USECANONCACHES TO FALSE BY DEFAULT WHERE IT CAN.", @@ -605,12 +605,12 @@ "reposts": 1, "post": "rt @thehackersnews: \u26a1 a new remote code execution flaw in apache tomcat (cve-2024-56337) exposes organizations to serious risk.\n\n\u00bb affected\u2026", "audience": 2487, - "audience_total": 41167, - "total_reposts": 31, + "audience_total": 41833, + "total_reposts": 32, "post_count": 1, "author": "g\u00fcnter born", "username": "etguenni", - "v_score": 0.0793805, + "v_score": 0.645375, "e_score": null, "base_score": null, "description": "TIME-OF-CHECK TIME-OF-USE (TOCTOU) RACE CONDITION VULNERABILITY IN APACHE TOMCAT.\n\nTHIS ISSUE AFFECTS APACHE TOMCAT: FROM 11.0.0-M1 THROUGH 11.0.1, FROM 10.1.0-M1 THROUGH 10.1.33, FROM 9.0.0.M1 THROUGH 9.0.97.\n\nTHE MITIGATION FOR CVE-2024-50379 WAS INCOMPLETE.\n\nUSERS RUNNING TOMCAT ON A CASE INSENSITIVE FILE SYSTEM WITH THE DEFAULT SERVLET WRITE ENABLED (READONLY INITIALISATION \nPARAMETER SET TO THE NON-DEFAULT VALUE OF FALSE) MAY NEED ADDITIONAL CONFIGURATION TO FULLY MITIGATE CVE-2024-50379 DEPENDING ON WHICH VERSION OF JAVA THEY ARE USING WITH TOMCAT:\n- RUNNING ON JAVA 8 OR JAVA 11: THE SYSTEM PROPERTY\u00a0SUN.IO.USECANONCACHES MUST BE EXPLICITLY SET TO FALSE (IT DEFAULTS TO TRUE)\n- RUNNING ON JAVA 17: THE\u00a0SYSTEM PROPERTY SUN.IO.USECANONCACHES, IF SET, MUST BE SET TO FALSE\u00a0(IT DEFAULTS TO FALSE)\n- RUNNING ON JAVA 21 ONWARDS: NO FURTHER CONFIGURATION IS REQUIRED\u00a0(THE SYSTEM PROPERTY AND THE PROBLEMATIC CACHE HAVE BEEN REMOVED)\n\nTOMCAT 11.0.3, 10.1.35 AND 9.0.99 ONWARDS WILL INCLUDE CHECKS THAT\u00a0SUN.IO.USECANONCACHES IS SET APPROPRIATELY BEFORE ALLOWING THE DEFAULT SERVLET TO BE WRITE ENABLED ON A CASE INSENSITIVE FILE SYSTEM. TOMCAT WILL ALSO SET\u00a0SUN.IO.USECANONCACHES TO FALSE BY DEFAULT WHERE IT CAN.", @@ -628,12 +628,35 @@ "reposts": 1, "post": "rt @thehackersnews: \u26a1 a new remote code execution flaw in apache tomcat (cve-2024-56337) exposes organizations to serious risk.\n\n\u00bb affected\u2026", "audience": 1269, - "audience_total": 41167, - "total_reposts": 31, + "audience_total": 41833, + "total_reposts": 32, "post_count": 1, "author": "jorge v\u00e1zquez del r\u00edo", "username": "jorge_delrio", - "v_score": 0.0793805, + "v_score": 0.645375, + "e_score": null, + "base_score": null, + "description": "TIME-OF-CHECK TIME-OF-USE (TOCTOU) RACE CONDITION VULNERABILITY IN APACHE TOMCAT.\n\nTHIS ISSUE AFFECTS APACHE TOMCAT: FROM 11.0.0-M1 THROUGH 11.0.1, FROM 10.1.0-M1 THROUGH 10.1.33, FROM 9.0.0.M1 THROUGH 9.0.97.\n\nTHE MITIGATION FOR CVE-2024-50379 WAS INCOMPLETE.\n\nUSERS RUNNING TOMCAT ON A CASE INSENSITIVE FILE SYSTEM WITH THE DEFAULT SERVLET WRITE ENABLED (READONLY INITIALISATION \nPARAMETER SET TO THE NON-DEFAULT VALUE OF FALSE) MAY NEED ADDITIONAL CONFIGURATION TO FULLY MITIGATE CVE-2024-50379 DEPENDING ON WHICH VERSION OF JAVA THEY ARE USING WITH TOMCAT:\n- RUNNING ON JAVA 8 OR JAVA 11: THE SYSTEM PROPERTY\u00a0SUN.IO.USECANONCACHES MUST BE EXPLICITLY SET TO FALSE (IT DEFAULTS TO TRUE)\n- RUNNING ON JAVA 17: THE\u00a0SYSTEM PROPERTY SUN.IO.USECANONCACHES, IF SET, MUST BE SET TO FALSE\u00a0(IT DEFAULTS TO FALSE)\n- RUNNING ON JAVA 21 ONWARDS: NO FURTHER CONFIGURATION IS REQUIRED\u00a0(THE SYSTEM PROPERTY AND THE PROBLEMATIC CACHE HAVE BEEN REMOVED)\n\nTOMCAT 11.0.3, 10.1.35 AND 9.0.99 ONWARDS WILL INCLUDE CHECKS THAT\u00a0SUN.IO.USECANONCACHES IS SET APPROPRIATELY BEFORE ALLOWING THE DEFAULT SERVLET TO BE WRITE ENABLED ON A CASE INSENSITIVE FILE SYSTEM. TOMCAT WILL ALSO SET\u00a0SUN.IO.USECANONCACHES TO FALSE BY DEFAULT WHERE IT CAN.", + "last_modified_datetime": "2024-12-20 16:15:00", + "published_datetime": "2024-12-20 16:15:00", + "vendor_logo": null, + "profile_url": null, + "feed_name": "twitter" + }, + { + "cve": "CVE-2024-56337", + "created_datetime": "2024-12-25T00:15:41", + "author_id": "129975974", + "data_id": "1871711377720844722", + "reposts": 1, + "post": "rt @foxbook: apache tomcat \u306e\u8106\u5f31\u6027 cve-2024-56337 \u306b\u3088\u308a\u30b5\u30fc\u30d0\u30fc\u304c rce \u653b\u6483\u306b\u3055\u3089\u3055\u308c\u308b \n\napache tomcat vulnerability cve-2024-56337 exposes servers to rce at\u2026", + "audience": 666, + "audience_total": 41833, + "total_reposts": 32, + "post_count": 1, + "author": "\u5c0f\u6797\u826f\u6d69", + "username": "kobayayo", + "v_score": 0.645375, "e_score": null, "base_score": null, "description": "TIME-OF-CHECK TIME-OF-USE (TOCTOU) RACE CONDITION VULNERABILITY IN APACHE TOMCAT.\n\nTHIS ISSUE AFFECTS APACHE TOMCAT: FROM 11.0.0-M1 THROUGH 11.0.1, FROM 10.1.0-M1 THROUGH 10.1.33, FROM 9.0.0.M1 THROUGH 9.0.97.\n\nTHE MITIGATION FOR CVE-2024-50379 WAS INCOMPLETE.\n\nUSERS RUNNING TOMCAT ON A CASE INSENSITIVE FILE SYSTEM WITH THE DEFAULT SERVLET WRITE ENABLED (READONLY INITIALISATION \nPARAMETER SET TO THE NON-DEFAULT VALUE OF FALSE) MAY NEED ADDITIONAL CONFIGURATION TO FULLY MITIGATE CVE-2024-50379 DEPENDING ON WHICH VERSION OF JAVA THEY ARE USING WITH TOMCAT:\n- RUNNING ON JAVA 8 OR JAVA 11: THE SYSTEM PROPERTY\u00a0SUN.IO.USECANONCACHES MUST BE EXPLICITLY SET TO FALSE (IT DEFAULTS TO TRUE)\n- RUNNING ON JAVA 17: THE\u00a0SYSTEM PROPERTY SUN.IO.USECANONCACHES, IF SET, MUST BE SET TO FALSE\u00a0(IT DEFAULTS TO FALSE)\n- RUNNING ON JAVA 21 ONWARDS: NO FURTHER CONFIGURATION IS REQUIRED\u00a0(THE SYSTEM PROPERTY AND THE PROBLEMATIC CACHE HAVE BEEN REMOVED)\n\nTOMCAT 11.0.3, 10.1.35 AND 9.0.99 ONWARDS WILL INCLUDE CHECKS THAT\u00a0SUN.IO.USECANONCACHES IS SET APPROPRIATELY BEFORE ALLOWING THE DEFAULT SERVLET TO BE WRITE ENABLED ON A CASE INSENSITIVE FILE SYSTEM. TOMCAT WILL ALSO SET\u00a0SUN.IO.USECANONCACHES TO FALSE BY DEFAULT WHERE IT CAN.", diff --git a/social_media/x/tweet_cves_resumo.csv b/social_media/x/tweet_cves_resumo.csv index 161238898..4729e4ec6 100644 --- a/social_media/x/tweet_cves_resumo.csv +++ b/social_media/x/tweet_cves_resumo.csv @@ -106,6 +106,7 @@ CVE-2019-10758,45,1,2024-12-09T05:21:19 CVE-2019-11358,272,1,2024-03-20T07:28:40 CVE-2019-1161,90,1,2024-05-19T20:54:01 CVE-2019-12384,10,1,2024-03-04T20:29:26 +CVE-2019-1289,1254,1,2024-12-25T03:20:11 CVE-2019-1388,458,1,2024-08-02T15:27:50 CVE-2019-14083,253,1,2024-11-14T14:07:12 CVE-2019-14234,245,1,2024-12-17T21:51:34 @@ -1402,8 +1403,8 @@ CVE-2024-30056,666,15,2024-05-31T06:15:06 CVE-2024-30078,2613,210,2024-11-21T13:25:34 CVE-2024-30080,158437,45,2024-06-23T17:04:32 CVE-2024-30084,184,5,2024-10-20T07:27:35 -CVE-2024-30085,34616,30,2024-12-24T23:39:00 -CVE-2024-30088,19623,131,2024-12-24T19:35:03 +CVE-2024-30085,77016,39,2024-12-25T04:06:27 +CVE-2024-30088,24555,133,2024-12-25T02:44:02 CVE-2024-30090,254588,33,2024-10-30T01:17:14 CVE-2024-30103,12961,109,2024-09-13T12:35:06 CVE-2024-30104,289,1,2024-06-11T17:22:19 @@ -1680,7 +1681,7 @@ CVE-2024-38812,177000,191,2024-11-25T14:08:07 CVE-2024-38814,7053,7,2024-11-04T22:38:49 CVE-2024-38815,1211,1,2024-10-09T20:26:28 CVE-2024-38816,267,32,2024-10-08T00:04:05 -CVE-2024-38819,14416,48,2024-12-18T05:52:05 +CVE-2024-38819,3520,49,2024-12-25T01:03:28 CVE-2024-38820,7,1,2024-10-24T23:10:45 CVE-2024-38821,115645,35,2024-11-04T05:09:25 CVE-2024-38828,8,1,2024-11-16T02:46:03 @@ -1883,7 +1884,7 @@ CVE-2024-45241,275,1,2024-09-20T13:43:45 CVE-2024-45315,375,1,2024-10-13T22:06:09 CVE-2024-45316,66,1,2024-10-12T08:33:35 CVE-2024-45321,245,2,2024-12-05T20:41:20 -CVE-2024-45337,16913,3,2024-12-19T00:05:16 +CVE-2024-45337,3520,4,2024-12-25T01:03:25 CVE-2024-45388,216,2,2024-12-06T03:48:00 CVE-2024-45396,66,1,2024-10-12T08:33:52 CVE-2024-45409,1207,155,2024-12-22T18:50:30 @@ -1948,7 +1949,7 @@ CVE-2024-47374,22088,12,2024-10-10T01:52:17 CVE-2024-47533,516,1,2024-11-20T07:15:53 CVE-2024-47561,148,9,2024-10-27T09:23:42 CVE-2024-47574,2560,1,2024-11-15T07:26:18 -CVE-2024-47575,643,382,2024-12-22T17:35:24 +CVE-2024-47575,1979,383,2024-12-25T01:55:47 CVE-2024-4761,3553,8,2024-05-23T04:44:43 CVE-2024-47782,116,1,2024-10-08T02:07:48 CVE-2024-47814,116,1,2024-10-08T02:08:03 @@ -2013,7 +2014,7 @@ CVE-2024-5035,732,3,2024-05-28T17:43:28 CVE-2024-50354,5835,4,2024-11-18T15:38:00 CVE-2024-5037,13,1,2024-06-08T20:18:55 CVE-2024-50370,2708,3,2024-11-29T23:15:31 -CVE-2024-50379,161456,96,2024-12-25T00:09:07 +CVE-2024-50379,161560,99,2024-12-25T04:05:23 CVE-2024-50498,44352,5,2024-11-19T12:09:16 CVE-2024-50526,45690,8,2024-11-22T22:32:15 CVE-2024-50550,2149,11,2024-11-15T07:35:06 @@ -2064,7 +2065,7 @@ CVE-2024-53677,324016,99,2024-12-21T21:28:28 CVE-2024-53844,505,3,2024-12-02T17:59:17 CVE-2024-53907,3520,2,2024-12-13T01:08:41 CVE-2024-53947,3519,2,2024-12-19T01:35:20 -CVE-2024-53961,28164,5,2024-12-24T20:28:10 +CVE-2024-53961,103822,9,2024-12-25T04:13:57 CVE-2024-53982,40042,7,2024-12-20T16:32:58 CVE-2024-53985,24121,1,2024-12-03T21:47:05 CVE-2024-5404,342,1,2024-06-04T07:00:59 @@ -2098,7 +2099,7 @@ CVE-2024-56128,13578,1,2024-12-19T00:06:44 CVE-2024-5614,3649,2,2024-12-19T23:08:33 CVE-2024-56145,201386,75,2024-12-24T07:40:07 CVE-2024-56334,2801,3,2024-12-24T16:32:01 -CVE-2024-56337,41167,28,2024-12-25T00:06:38 +CVE-2024-56337,41833,29,2024-12-25T00:15:41 CVE-2024-56375,24216,1,2024-12-24T11:46:52 CVE-2024-5650,150,1,2024-06-20T23:52:11 CVE-2024-5655,84,49,2024-07-16T06:31:19