Overview
- Description
- ScienceLogic SL1 (formerly EM7) is affected by an unspecified vulnerability involving an unspecified third-party component packaged with SL1. The vulnerability is addressed in SL1 versions 12.1.3+, 12.2.3+, and 12.3+. Remediations have been made available for all SL1 versions back to version lines 10.1.x, 10.2.x, 11.1.x, 11.2.x, and 11.3.x.
- Source
- 9119a7d8-5eab-497f-8521-727c672e3725
- NVD status
- Analyzed
Risk scores
CVSS 4.0
- Type
- Secondary
- Base score
- 9.3
- Impact score
- -
- Exploitability score
- -
- Vector string
- CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Red
- Severity
- CRITICAL
CVSS 3.1
- Type
- Primary
- Base score
- 9.8
- Impact score
- 5.9
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- Severity
- CRITICAL
Known exploits
Data from CISA
- Vulnerability name
- ScienceLogic SL1 Unspecified Vulnerability
- Exploit added on
- Oct 21, 2024
- Exploit action due
- Nov 11, 2024
- Required action
- Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Weaknesses
- nvd@nist.gov
- NVD-CWE-noinfo
Social media
- Hype score
- Not currently trending
Actively exploited CVE : CVE-2024-9537
@transilienceai
4 Nov 2024
5 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
ScienceLogic EM7 の脆弱性 CVE-2024-9537 とインシデント:CISA KEV にも登録 https://t.co/qWB8menrRm #CISA #KEV #Cloud #DataBreach #Exploit #Rackspace #RCE #ScienceLogic #ScienceLogicEM7 #SL1 #Vulnerability #ZeroDay
@iototsecnews
30 Oct 2024
77 Impressions
1 Retweet
0 Likes
0 Bookmarks
0 Replies
0 Quotes
IT統合管理製品のScienceLogic SL1 (旧EM7) のゼロデイCVE-2024-9537がKEVにのったのでShodanで調査したところグローバルで729台のホストを発見。なお、国内外ともに日系企業資産は発見していません。 https://t.co/U7hNWKZStJ https://t.co/rplV8WDlur
@nekono_naha
25 Oct 2024
46 Impressions
0 Retweets
2 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-9537 is getting exploited #inthewild. Find out more at https://t.co/YxvFKMWntZ CVE-2024-38094 is getting exploited #inthewild. Find out more at https://t.co/V1ffPVq2Tc CVE-2024-10234 is getting exploited #inthewild. Find out more at https://t.co/EVZrv1vtKQ
@inthewildio
23 Oct 2024
61 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
⚠️⚠️ CVE-2024-9537 (CVSS 9.8): Critical Zero-Day in ScienceLogic EM7 Leads to Rackspace Security Incident 🎯528 Results are found on the https://t.co/pb16tGYaKe nearly year. 🔗FOFA Link:https://t.co/lLkrmXoYOH FOFA Query: app="ScienceLogic-EM7" 🔖Refer:https://t.co/UYXBmAcj4x
@fofabot
22 Oct 2024
964 Impressions
1 Retweet
11 Likes
4 Bookmarks
0 Replies
0 Quotes
🚨CVE Alert: ScienceLogic SL1 Unspecified Vulnerability Exploited In-the-wild🚨 Vulnerability Details: CVE-2024-9537(CVSS 9.8/10) ScienceLogic SL1 Unspecified Vulnerability Impact A Successful exploit may allow a attacker can exploit over the network without requiring user… h
@CyberxtronTech
22 Oct 2024
55 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
TheHackersNews: ⚠️ CISA has added a critical zero-day #vulnerability (CVE-2024-9537) affecting ScienceLogic SL1 to its KEV catalog. This flaw, with a staggering CVSS score of 9.3, allows for remote code execution. Read 👉 https://t.co/aoLhI9f0X2 Apply the latest patches.
@jvquantum
22 Oct 2024
29 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
⚠️ CISA has added a critical zero-day #vulnerability (CVE-2024-9537) affecting ScienceLogic SL1 to its KEV catalog. This flaw, with a staggering CVSS score of 9.3, allows for remote code execution. Read 👉 https://t.co/HDXzWCCzpI Apply the latest patches.
@TheHackersNews
22 Oct 2024
13191 Impressions
41 Retweets
83 Likes
8 Bookmarks
1 Reply
0 Quotes
📌 أضافت وكالة الأمن السيبراني والبنية التحتية الأمريكية (CISA) أمس ثغرة أمنية حرجة في ScienceLogic SL1 إلى قائمة الثغرات المستغلة بعد تقارير عن استغلال نشط لها. الثغرة، المعروفة باسم CVE-2024-9537، تحمل درجة خطورة 9.3 وفقًا لمقياس CVSS v4. #الامن_السيبراني https://t.co/qSrJqGnK
@cyberetweet
22 Oct 2024
20 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CISA adds ScienceLogic flaw CVE-2024-9537 to its KEV Catalog #ScienceLogic #CVE-2024-9537 #CISAKEV https://t.co/QsCNq5bu3x
@pravin_karthik
21 Oct 2024
34 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CISA Adds New Cyber Threat: Is Your Network Safe from CVE-2024-9537? Hot Take: It seems ScienceLogic SL1 has taken the spotlight in the world of cybersecurity vulnerabilities, and not exactly in a good way. Is it just me, or does "unspecified vulnerability" sound like the cyber
@TheNimbleNerd
21 Oct 2024
56 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Latest Known Exploited Vulnerabilities (#KEV) : #CVE-2024-9537 #ScienceLogic #SL1 Unspecified Vulnerability https://t.co/a5EKgEpMqC
@ScyScan
21 Oct 2024
8 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🛡️ We added #ScienceLogic SL1 vulnerability CVE-2024-9537 to our Known Exploited Vulnerabilities Catalog. Visit https://t.co/myxOwap1Tf & apply mitigations to protect your org from cyberattacks. #Cybersecurity #InfoSec https://t.co/HynWQFaz61
@CISACyber
21 Oct 2024
4979 Impressions
19 Retweets
30 Likes
3 Bookmarks
0 Replies
3 Quotes
[CVE-2024-9537: CRITICAL] Cybersecurity alert: Unspecified vulnerability in ScienceLogic SL1 versions. Update to versions 12.1.3+ to 12.3+ to patch the issue. Remediations available for versions back to 10.1.x.#cybersecurity,#vulnerability https://t.co/nVHaY05DKX https://t.co/jx6
@CveFindCom
27 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-9537 ScienceLogic SL1 (formerly EM7) is affected by an unspecified vulnerability involving an unspecified third-party component packaged with SL1. The vulnerability is addre… https://t.co/9rXGeR5BOA
@CVEnew
442 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:sciencelogic:sl1:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4BFE7072-C420-4186-8441-AD5A531382EE",
"versionEndExcluding": "12.1.3",
"versionStartIncluding": "10.1.0"
},
{
"criteria": "cpe:2.3:a:sciencelogic:sl1:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "BE089841-BC12-4DF6-86A3-71AF46CC2345",
"versionEndExcluding": "12.2.3",
"versionStartIncluding": "12.2.0"
}
],
"operator": "OR"
}
]
}
]