https://vulnerability.circl.lu/sightings/feedMost recent sightings.2026-05-06T21:54:50.146195+00:00Vulnerability-Lookupinfo@circl.lupython-feedgenContains only the most 10 recent sightings.https://vulnerability.circl.lu/sighting/df14902b-f67c-4879-8063-08902350d302/exportdf14902b-f67c-4879-8063-08902350d3022026-05-06T21:54:50.564250+00:00Automation userhttp://vulnerability.circl.lu/user/automation{"uuid": "df14902b-f67c-4879-8063-08902350d302", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-20913", "type": "seen", "source": "https://t.me/cibsecurity/56943", "content": "\u203c CVE-2023-20913 \u203c\n\nIn onCreate of PhoneAccountSettingsActivity.java and related files, there is a possible way to mislead the user into enabling a malicious phone account due to a tapjacking/overlay attack. This could lead to local escalation of privilege with User execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-12L Android-13Android ID: A-246933785\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-01-27T00:33:55.000000Z"}2023-01-27T00:33:55+00:00https://vulnerability.circl.lu/sighting/ec3f9569-4330-4fe0-a8e6-bf1c06764ebc/exportec3f9569-4330-4fe0-a8e6-bf1c06764ebc2026-05-06T21:54:50.564168+00:00Automation userhttp://vulnerability.circl.lu/user/automation{"uuid": "ec3f9569-4330-4fe0-a8e6-bf1c06764ebc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-20916", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/3739", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2023\n\u63cf\u8ff0\uff1aCVE-2023-23924 PoC\nURL\uff1ahttps://github.com/Live-Hack-CVE/CVE-2023-20916\n\n\u6807\u7b7e\uff1a#CVE-2023", "creation_timestamp": "2023-02-01T20:21:44.000000Z"}2023-02-01T20:21:44+00:00https://vulnerability.circl.lu/sighting/11997707-b40f-4468-9479-45665df04b7a/export11997707-b40f-4468-9479-45665df04b7a2026-05-06T21:54:50.564083+00:00Automation userhttp://vulnerability.circl.lu/user/automation{"uuid": "11997707-b40f-4468-9479-45665df04b7a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-20916", "type": "published-proof-of-concept", "source": "https://t.me/BlueRedTeam/2618", "content": "#CVE-2023\nThis is a proof of concept for CVE-2023-24610\n\nhttps://github.com/abbisQQ/CVE-2023-24610\n\nCVE-2023-23924 PoC\n\nhttps://github.com/motikan2010/CVE-2023-23924\n\nCVE-2023-23924 PoC\n\nhttps://github.com/Live-Hack-CVE/CVE-2023-20916\n\nCVE-2023-23924 PoC\n\nhttps://github.com/Live-Hack-CVE/CVE-2023-22664\n\n@BlueRedTeam", "creation_timestamp": "2023-03-09T08:14:27.000000Z"}2023-03-09T08:14:27+00:00https://vulnerability.circl.lu/sighting/98e276fc-503e-4ebb-894b-45ac9364b5fd/export98e276fc-503e-4ebb-894b-45ac9364b5fd2026-05-06T21:54:50.563987+00:00Automation userhttp://vulnerability.circl.lu/user/automation{"uuid": "98e276fc-503e-4ebb-894b-45ac9364b5fd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-20916", "type": "published-proof-of-concept", "source": "https://t.me/BlueRedTeam/2623", "content": "#CVE-2023\n\nCVE-2023-23924 PoC\nhttps://github.com/Live-Hack-CVE/CVE-2023-20916\n\nCVE-2023-23924 PoC\nhttps://github.com/Live-Hack-CVE/CVE-2023-22664\n\n\nAdobe Acrobat Reader - CVE-2023-21608 - Remote Code Execution Exploit\nhttps://github.com/hacksysteam/CVE-2023-21608\n\n@BlueRedTeam", "creation_timestamp": "2023-03-17T09:11:32.000000Z"}2023-03-17T09:11:32+00:00https://vulnerability.circl.lu/sighting/5cb1c616-00b8-4da3-a2a7-885b897ffece/export5cb1c616-00b8-4da3-a2a7-885b897ffece2026-05-06T21:54:50.563892+00:00Automation userhttp://vulnerability.circl.lu/user/automation{"uuid": "5cb1c616-00b8-4da3-a2a7-885b897ffece", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-20910", "type": "seen", "source": "https://t.me/cibsecurity/60689", "content": "\u203c CVE-2023-20910 \u203c\n\nIn addNetworkSuggestions of WifiManager.java, there is a possible way to trigger permanent DoS due to resource exhaustion. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-12 Android-12L Android-13Android ID: A-245299920\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-24T23:47:49.000000Z"}2023-03-24T23:47:49+00:00https://vulnerability.circl.lu/sighting/2c318d8c-e293-4e80-b648-49ac7dff75ae/export2c318d8c-e293-4e80-b648-49ac7dff75ae2026-05-06T21:54:50.563793+00:00Automation userhttp://vulnerability.circl.lu/user/automation{"uuid": "2c318d8c-e293-4e80-b648-49ac7dff75ae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-20917", "type": "seen", "source": "https://t.me/cibsecurity/60704", "content": "\u203c CVE-2023-20917 \u203c\n\nIn onTargetSelected of ResolverActivity.java, there is a possible way to share a wrong file due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-12 Android-12L Android-13Android ID: A-242605257\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-24T23:50:44.000000Z"}2023-03-24T23:50:44+00:00https://vulnerability.circl.lu/sighting/a6591531-d7e3-4e03-b23b-b91f6b12c729/exporta6591531-d7e3-4e03-b23b-b91f6b12c7292026-05-06T21:54:50.563679+00:00Automation userhttp://vulnerability.circl.lu/user/automation{"uuid": "a6591531-d7e3-4e03-b23b-b91f6b12c729", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-20911", "type": "seen", "source": "https://t.me/cibsecurity/60711", "content": "\u203c CVE-2023-20911 \u203c\n\nIn addPermission of PermissionManagerServiceImpl.java , there is a possible failure to persist permission settings due to resource exhaustion. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-12 Android-12L Android-13Android ID: A-242537498\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-24T23:50:53.000000Z"}2023-03-24T23:50:53+00:00https://vulnerability.circl.lu/sighting/d3d225de-dee3-4160-a6b9-7aa03f590ab1/exportd3d225de-dee3-4160-a6b9-7aa03f590ab12026-05-06T21:54:50.563547+00:00Automation userhttp://vulnerability.circl.lu/user/automation{"uuid": "d3d225de-dee3-4160-a6b9-7aa03f590ab1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-20911", "type": "seen", "source": "https://t.me/arpsyndicate/548", "content": "#ExploitObserverAlert\n\nCVE-2023-20911\n\nDESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-20911. In addPermission of PermissionManagerServiceImpl.java , there is a possible failure to persist permission settings due to resource exhaustion. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-12 Android-12L Android-13Android ID: A-242537498\n\nFIRST-EPSS: 0.000420000\nNVD-IS: 5.9\nNVD-ES: 1.8", "creation_timestamp": "2023-11-24T23:02:13.000000Z"}2023-11-24T23:02:13+00:00https://vulnerability.circl.lu/sighting/aaa16c1a-4dd8-42db-9496-ba2ade98e394/exportaaa16c1a-4dd8-42db-9496-ba2ade98e3942026-05-06T21:54:50.561166+00:00Automation userhttp://vulnerability.circl.lu/user/automation{"uuid": "aaa16c1a-4dd8-42db-9496-ba2ade98e394", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2091", "type": "seen", "source": "https://t.me/arpsyndicate/2464", "content": "#ExploitObserverAlert\n\nCVE-2023-2091\n\nDESCRIPTION: Exploit Observer has 4 entries related to CVE-2023-2091. A vulnerability classified as critical was found in KylinSoft youker-assistant on KylinOS. Affected by this vulnerability is the function adjust_cpufreq_scaling_governer. The manipulation leads to os command injection. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be used. Upgrading to version 3.1.4.13 is able to address this issue. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-226099.\n\nFIRST-EPSS: 0.000650000\nNVD-IS: 5.9\nNVD-ES: 1.8", "creation_timestamp": "2024-01-04T13:36:51.000000Z"}2024-01-04T13:36:51+00:00