{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-9537", "assignerOrgId": "9119a7d8-5eab-497f-8521-727c672e3725", "state": "PUBLISHED", "assignerShortName": "cisa-cg", "dateReserved": "2024-10-04T17:48:28.986Z", "datePublished": "2024-10-18T14:45:02.147Z", "dateUpdated": "2024-10-21T16:20:22.738Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unknown", "product": "SL1", "vendor": "ScienceLogic", "versions": [{"lessThan": "12.1.3", "status": "affected", "version": "0", "versionType": "custom"}, {"lessThan": "12.2.3", "status": "affected", "version": "0", "versionType": "custom"}, {"lessThan": "12.3", "status": "affected", "version": "0", "versionType": "custom"}, {"lessThan": "10.1.x", "status": "affected", "version": "0", "versionType": "custom"}, {"lessThan": "10.2.x", "status": "affected", "version": "0", "versionType": "custom"}, {"lessThan": "11.1.x", "status": "affected", "version": "0", "versionType": "custom"}, {"lessThan": "11.2.x", "status": "affected", "version": "0", "versionType": "custom"}, {"lessThan": "11.3.x", "status": "affected", "version": "0", "versionType": "custom"}]}], "datePublic": "2024-09-24T00:00:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<span style=\"background-color: rgb(255, 255, 255);\">ScienceLogic SL1 (formerly EM7) is affected by an unspecified vulnerability involving an unspecified third-party component packaged with SL1. The vulnerability is addressed in SL1 versions 12.1.3+, 12.2.3+, and 12.3+. Remediations have been made available for all SL1 versions back to version lines 10.1.x, 10.2.x, 11.1.x, 11.2.x, and 11.3.x.</span><br>"}], "value": "ScienceLogic SL1 (formerly EM7) is affected by an unspecified vulnerability involving an unspecified third-party component packaged with SL1. The vulnerability is addressed in SL1 versions 12.1.3+, 12.2.3+, and 12.3+. Remediations have been made available for all SL1 versions back to version lines 10.1.x, 10.2.x, 11.1.x, 11.2.x, and 11.3.x."}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}, {"cvssV4_0": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "NETWORK", "baseScore": 9.3, "baseSeverity": "CRITICAL", "privilegesRequired": "NONE", "providerUrgency": "RED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/U:Red", "version": "4.0", "vulnAvailabilityImpact": "HIGH", "vulnConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "HIGH", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "providerMetadata": {"orgId": "9119a7d8-5eab-497f-8521-727c672e3725", "shortName": "cisa-cg", "dateUpdated": "2024-10-21T15:50:25.109Z"}, "references": [{"url": "https://rackspace.service-now.com/system_status?id=detailed_status&service=4dafca5a87f41610568b206f8bbb35a6"}, {"url": "https://twitter.com/ynezzor/status/1839931641172467907"}, {"tags": ["media-coverage"], "url": "https://www.theregister.com/2024/09/30/rackspace_zero_day_attack/"}, {"tags": ["third-party-advisory"], "url": "https://arcticwolf.com/resources/blog/rackspace-breach-linked-to-zero-day-vulnerability-sciencelogic-sl1s-third-party-utility/"}, {"tags": ["media-coverage"], "url": "https://www.bleepingcomputer.com/news/security/rackspace-monitoring-data-stolen-in-sciencelogic-zero-day-attack/"}, {"tags": ["vendor-advisory"], "url": "https://support.sciencelogic.com/s/article/15465"}, {"tags": ["vendor-advisory"], "url": "https://support.sciencelogic.com/s/article/15527"}, {"tags": ["release-notes"], "url": "https://community.sciencelogic.com/blog/latest-kb-articles-and-known-issues-blog-board/week-of-september-30-2024---latest-kb-articles-and-known-issues-part-1-of-2/1690"}, {"tags": ["government-resource"], "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?search_api_fulltext=CVE-2024-9537"}], "source": {"discovery": "EXTERNAL"}, "tags": ["x_known-exploited-vulnerability"], "title": "ScienceLogic SL1 unspecified vulnerability", "x_generator": {"engine": "Vulnogram 0.2.0"}}, "adp": [{"problemTypes": [{"descriptions": [{"type": "CWE", "lang": "en", "description": "CWE-noinfo Not enough information"}]}], "affected": [{"vendor": "sciencelogic", "product": "sl1", "cpes": ["cpe:2.3:a:sciencelogic:sl1:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "12.1.3", "versionType": "custom"}, {"version": "0", "status": "affected", "lessThan": "12.2.3", "versionType": "custom"}, {"version": "0", "status": "affected", "lessThan": "12.3", "versionType": "custom"}, {"version": "0", "status": "affected", "lessThan": "10.1.x", "versionType": "custom"}, {"version": "0", "status": "affected", "lessThan": "10.2.x", "versionType": "custom"}, {"version": "0", "status": "affected", "lessThan": "11.1.x", "versionType": "custom"}, {"version": "0", "status": "affected", "lessThan": "11.2.x", "versionType": "custom"}, {"version": "0", "status": "affected", "lessThan": "11.3.x", "versionType": "custom"}]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-10-21T15:09:27.600862Z", "id": "CVE-2024-9537", "options": [{"Exploitation": "active"}, {"Automatable": "yes"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}, {"other": {"type": "kev", "content": {"dateAdded": "2024-10-21", "reference": "https://www.cisa.gov/sites/default/files/feeds/known_exploited_vulnerabilities.json"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-10-21T16:20:22.738Z"}, "timeline": [{"time": "2024-10-21T00:00:00+00:00", "lang": "en", "value": "CVE-2024-9537 added to CISA KEV"}]}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-9537", "role": "CISA Coordinator", "options": [{"Exploitation": "active"}, {"Automatable": "yes"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2024-10-21T15:09:27.600862Z"}}}, {"other": {"type": "kev", "content": {"dateAdded": "2024-10-21", "reference": "https://www.cisa.gov/sites/default/files/feeds/known_exploited_vulnerabilities.json"}}}], "affected": [{"cpes": ["cpe:2.3:a:sciencelogic:sl1:*:*:*:*:*:*:*:*"], "vendor": "sciencelogic", "product": "sl1", "versions": [{"status": "affected", "version": "0", "lessThan": "12.1.3", "versionType": "custom"}, {"status": "affected", "version": "0", "lessThan": "12.2.3", "versionType": "custom"}, {"status": "affected", "version": "0", "lessThan": "12.3", "versionType": "custom"}, {"status": "affected", "version": "0", "lessThan": "10.1.x", "versionType": "custom"}, {"status": "affected", "version": "0", "lessThan": "10.2.x", "versionType": "custom"}, {"status": "affected", "version": "0", "lessThan": "11.1.x", "versionType": "custom"}, {"status": "affected", "version": "0", "lessThan": "11.2.x", "versionType": "custom"}, {"status": "affected", "version": "0", "lessThan": "11.3.x", "versionType": "custom"}], "defaultStatus": "unknown"}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "description": "CWE-noinfo Not enough information"}]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-10-18T16:29:35.552Z"}, "timeline": [{"lang": "en", "time": "2024-10-21T00:00:00+00:00", "value": "CVE-2024-9537 added to CISA KEV"}]}], "cna": {"tags": ["x_known-exploited-vulnerability"], "title": "ScienceLogic SL1 unspecified vulnerability", "source": {"discovery": "EXTERNAL"}, "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}, {"format": "CVSS", "cvssV4_0": {"Safety": "NOT_DEFINED", "version": "4.0", "Recovery": "NOT_DEFINED", "baseScore": 9.3, "Automatable": "NOT_DEFINED", "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/U:Red", "providerUrgency": "RED", "userInteraction": "NONE", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "NONE", "subIntegrityImpact": "NONE", "vulnIntegrityImpact": "HIGH", "subAvailabilityImpact": "NONE", "vulnAvailabilityImpact": "HIGH", "subConfidentialityImpact": "NONE", "vulnConfidentialityImpact": "HIGH", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "ScienceLogic", "product": "SL1", "versions": [{"status": "affected", "version": "0", "lessThan": "12.1.3", "versionType": "custom"}, {"status": "affected", "version": "0", "lessThan": "12.2.3", "versionType": "custom"}, {"status": "affected", "version": "0", "lessThan": "12.3", "versionType": "custom"}, {"status": "affected", "version": "0", "lessThan": "10.1.x", "versionType": "custom"}, {"status": "affected", "version": "0", "lessThan": "10.2.x", "versionType": "custom"}, {"status": "affected", "version": "0", "lessThan": "11.1.x", "versionType": "custom"}, {"status": "affected", "version": "0", "lessThan": "11.2.x", "versionType": "custom"}, {"status": "affected", "version": "0", "lessThan": "11.3.x", "versionType": "custom"}], "defaultStatus": "unknown"}], "datePublic": "2024-09-24T00:00:00.000Z", "references": [{"url": "https://rackspace.service-now.com/system_status?id=detailed_status&service=4dafca5a87f41610568b206f8bbb35a6"}, {"url": "https://twitter.com/ynezzor/status/1839931641172467907"}, {"url": "https://www.theregister.com/2024/09/30/rackspace_zero_day_attack/", "tags": ["media-coverage"]}, {"url": "https://arcticwolf.com/resources/blog/rackspace-breach-linked-to-zero-day-vulnerability-sciencelogic-sl1s-third-party-utility/", "tags": ["third-party-advisory"]}, {"url": "https://www.bleepingcomputer.com/news/security/rackspace-monitoring-data-stolen-in-sciencelogic-zero-day-attack/", "tags": ["media-coverage"]}, {"url": "https://support.sciencelogic.com/s/article/15465", "tags": ["vendor-advisory"]}, {"url": "https://support.sciencelogic.com/s/article/15527", "tags": ["vendor-advisory"]}, {"url": "https://community.sciencelogic.com/blog/latest-kb-articles-and-known-issues-blog-board/week-of-september-30-2024---latest-kb-articles-and-known-issues-part-1-of-2/1690", "tags": ["release-notes"]}, {"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?search_api_fulltext=CVE-2024-9537", "tags": ["government-resource"]}], "x_generator": {"engine": "Vulnogram 0.2.0"}, "descriptions": [{"lang": "en", "value": "ScienceLogic SL1 (formerly EM7) is affected by an unspecified vulnerability involving an unspecified third-party component packaged with SL1. The vulnerability is addressed in SL1 versions 12.1.3+, 12.2.3+, and 12.3+. Remediations have been made available for all SL1 versions back to version lines 10.1.x, 10.2.x, 11.1.x, 11.2.x, and 11.3.x.", "supportingMedia": [{"type": "text/html", "value": "<span style=\"background-color: rgb(255, 255, 255);\">ScienceLogic SL1 (formerly EM7) is affected by an unspecified vulnerability involving an unspecified third-party component packaged with SL1. The vulnerability is addressed in SL1 versions 12.1.3+, 12.2.3+, and 12.3+. Remediations have been made available for all SL1 versions back to version lines 10.1.x, 10.2.x, 11.1.x, 11.2.x, and 11.3.x.</span><br>", "base64": false}]}], "providerMetadata": {"orgId": "9119a7d8-5eab-497f-8521-727c672e3725", "shortName": "cisa-cg", "dateUpdated": "2024-10-21T15:50:25.109Z"}}}, "cveMetadata": {"cveId": "CVE-2024-9537", "state": "PUBLISHED", "dateUpdated": "2024-10-21T16:20:22.738Z", "dateReserved": "2024-10-04T17:48:28.986Z", "assignerOrgId": "9119a7d8-5eab-497f-8521-727c672e3725", "datePublished": "2024-10-18T14:45:02.147Z", "assignerShortName": "cisa-cg"}, "dataVersion": "5.1"}

{"cisaActionDue": "2024-11-11", "cisaExploitAdd": "2024-10-21", "cisaRequiredAction": "Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.", "cisaVulnerabilityName": "ScienceLogic SL1 Unspecified Vulnerability", "configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:sciencelogic:sl1:*:*:*:*:*:*:*:*", "matchCriteriaId": "4BFE7072-C420-4186-8441-AD5A531382EE", "versionEndExcluding": "12.1.3", "versionStartIncluding": "10.1.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:sciencelogic:sl1:*:*:*:*:*:*:*:*", "matchCriteriaId": "BE089841-BC12-4DF6-86A3-71AF46CC2345", "versionEndExcluding": "12.2.3", "versionStartIncluding": "12.2.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "ScienceLogic SL1 (formerly EM7) is affected by an unspecified vulnerability involving an unspecified third-party component packaged with SL1. The vulnerability is addressed in SL1 versions 12.1.3+, 12.2.3+, and 12.3+. Remediations have been made available for all SL1 versions back to version lines 10.1.x, 10.2.x, 11.1.x, 11.2.x, and 11.3.x."}, {"lang": "es", "value": "ScienceLogic SL1 (anteriormente EM7) se ve afectado por una vulnerabilidad no especificada que involucra un componente de terceros no especificado incluido en el paquete de SL1. La vulnerabilidad se solucion\u00f3 en las versiones 12.1.3+, 12.2.3+ y 12.3+ de SL1. Se han puesto a disposici\u00f3n soluciones para todas las versiones de SL1 hasta las l\u00edneas de versi\u00f3n 10.1.x, 10.2.x, 11.1.x, 11.2.x y 11.3.x."}], "id": "CVE-2024-9537", "lastModified": "2024-10-22T17:33:23.837", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "9119a7d8-5eab-497f-8521-727c672e3725", "type": "Secondary"}], "cvssMetricV40": [{"cvssData": {"attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "NETWORK", "automatable": "NOT_DEFINED", "availabilityRequirements": "NOT_DEFINED", "baseScore": 9.3, "baseSeverity": "CRITICAL", "confidentialityRequirements": "NOT_DEFINED", "exploitMaturity": "NOT_DEFINED", "integrityRequirements": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubsequentSystemAvailability": "NOT_DEFINED", "modifiedSubsequentSystemConfidentiality": "NOT_DEFINED", "modifiedSubsequentSystemIntegrity": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnerableSystemAvailability": "NOT_DEFINED", "modifiedVulnerableSystemConfidentiality": "NOT_DEFINED", "modifiedVulnerableSystemIntegrity": "NOT_DEFINED", "privilegesRequired": "NONE", "providerUrgency": "RED", "recovery": "NOT_DEFINED", "safety": "NOT_DEFINED", "subsequentSystemAvailability": "NONE", "subsequentSystemConfidentiality": "NONE", "subsequentSystemIntegrity": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Red", "version": "4.0", "vulnerabilityResponseEffort": "NOT_DEFINED", "vulnerableSystemAvailability": "HIGH", "vulnerableSystemConfidentiality": "HIGH", "vulnerableSystemIntegrity": "HIGH"}, "source": "9119a7d8-5eab-497f-8521-727c672e3725", "type": "Secondary"}]}, "published": "2024-10-18T15:15:04.170", "references": [{"source": "9119a7d8-5eab-497f-8521-727c672e3725", "tags": ["Press/Media Coverage"], "url": "https://arcticwolf.com/resources/blog/rackspace-breach-linked-to-zero-day-vulnerability-sciencelogic-sl1s-third-party-utility/"}, {"source": "9119a7d8-5eab-497f-8521-727c672e3725", "tags": ["Vendor Advisory"], "url": "https://community.sciencelogic.com/blog/latest-kb-articles-and-known-issues-blog-board/week-of-september-30-2024---latest-kb-articles-and-known-issues-part-1-of-2/1690"}, {"source": "9119a7d8-5eab-497f-8521-727c672e3725", "tags": ["Third Party Advisory"], "url": "https://rackspace.service-now.com/system_status?id=detailed_status&service=4dafca5a87f41610568b206f8bbb35a6"}, {"source": "9119a7d8-5eab-497f-8521-727c672e3725", "tags": ["Permissions Required"], "url": "https://support.sciencelogic.com/s/article/15465"}, {"source": "9119a7d8-5eab-497f-8521-727c672e3725", "tags": ["Permissions Required"], "url": "https://support.sciencelogic.com/s/article/15527"}, {"source": "9119a7d8-5eab-497f-8521-727c672e3725", "tags": ["Third Party Advisory"], "url": "https://twitter.com/ynezzor/status/1839931641172467907"}, {"source": "9119a7d8-5eab-497f-8521-727c672e3725", "tags": ["Press/Media Coverage"], "url": "https://www.bleepingcomputer.com/news/security/rackspace-monitoring-data-stolen-in-sciencelogic-zero-day-attack/"}, {"source": "9119a7d8-5eab-497f-8521-727c672e3725", "tags": ["Third Party Advisory", "US Government Resource"], "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?search_api_fulltext=CVE-2024-9537"}, {"source": "9119a7d8-5eab-497f-8521-727c672e3725", "tags": ["Press/Media Coverage"], "url": "https://www.theregister.com/2024/09/30/rackspace_zero_day_attack/"}], "sourceIdentifier": "9119a7d8-5eab-497f-8521-727c672e3725", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}