https://vulnerability.circl.lu/sightings/feed 2026-05-06T13:10:40.144376+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/c350099b-da54-4b81-a4b1-2964484bff85/export 2026-05-06T13:10:41.081672+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "c350099b-da54-4b81-a4b1-2964484bff85", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-3632", "type": "seen", "source": "https://t.me/cibsecurity/68069", "content": "\u203c CVE-2023-3632 \u203c\n\nUse of Hard-coded Cryptographic Key vulnerability in Sifir Bes Education and Informatics Kunduz - Homework Helper App allows Authentication Abuse, Authentication Bypass.This issue affects Kunduz - Homework Helper App: before 6.2.3.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-09T12:15:56.000000Z"} 2023-08-09T12:15:56+00:00 https://vulnerability.circl.lu/sighting/eb680c34-dd44-4e68-a22d-484ed8039ec0/export 2026-05-06T13:10:41.081587+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "eb680c34-dd44-4e68-a22d-484ed8039ec0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-36328", "type": "seen", "source": "https://t.me/cibsecurity/69659", "content": "\u203c CVE-2023-36328 \u203c\n\nInteger Overflow vulnerability in mp_grow in libtom libtommath before commit beba892bc0d4e4ded4d667ab1d2a94f4d75109a9, allows attackers to execute arbitrary code and cause a denial of service (DoS).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-01T20:15:09.000000Z"} 2023-09-01T20:15:09+00:00 https://vulnerability.circl.lu/sighting/3cca6c47-2bdf-48b5-8916-61fdf4ac37ae/export 2026-05-06T13:10:41.081490+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "3cca6c47-2bdf-48b5-8916-61fdf4ac37ae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-36327", "type": "seen", "source": "https://t.me/cibsecurity/69662", "content": "\u203c CVE-2023-36327 \u203c\n\nInteger Overflow vulnerability in RELIC before commit 421f2e91cf2ba42473d4d54daf24e295679e290e, allows attackers to execute arbitrary code and cause a denial of service in pos argument in bn_get_prime function.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-01T20:15:12.000000Z"} 2023-09-01T20:15:12+00:00 https://vulnerability.circl.lu/sighting/de0cd6eb-a34b-4406-b84c-c4ab5bb2b2f9/export 2026-05-06T13:10:41.081403+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "de0cd6eb-a34b-4406-b84c-c4ab5bb2b2f9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-36326", "type": "seen", "source": "https://t.me/cibsecurity/69665", "content": "\u203c CVE-2023-36326 \u203c\n\nInteger Overflow vulnerability in RELIC before commit 34580d840469361ba9b5f001361cad659687b9ab, allows attackers to execute arbitrary code, cause a denial of service, and escalate privileges when calling realloc function in bn_grow function.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-01T20:15:15.000000Z"} 2023-09-01T20:15:15+00:00 https://vulnerability.circl.lu/sighting/715685cc-9ad7-4c8a-8a13-e484c5d092ec/export 2026-05-06T13:10:41.081302+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "715685cc-9ad7-4c8a-8a13-e484c5d092ec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-36321", "type": "seen", "source": "https://t.me/cibsecurity/72467", "content": "\u203c CVE-2023-36321 \u203c\n\nConnected Vehicle Systems Alliance (COVESA) up to v2.18.8 wwas discovered to contain a buffer overflow via the component /shared/dlt_common.c.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-18T02:44:45.000000Z"} 2023-10-18T02:44:45+00:00 https://vulnerability.circl.lu/sighting/a1be50fa-9f38-4f73-9e48-56819caccbb2/export 2026-05-06T13:10:41.081204+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "a1be50fa-9f38-4f73-9e48-56819caccbb2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-36325", "type": "seen", "source": "https://t.me/cvedetector/7435", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2023-36325 - I2P Java De-Anonymization Vulnerability\", \n \"Content\": \"CVE ID : CVE-2023-36325 \nPublished : Oct. 9, 2024, 6:15 a.m. | 32\u00a0minutes ago \nDescription : i2p before 2.3.0 (Java) allows de-anonymizing the public IPv4 and IPv6 addresses of i2p hidden services (aka eepsites) via a correlation attack across the IPv4 and IPv6 addresses that occurs when a tunneled, replayed message has a behavior discrepancy (it may be dropped, or may result in a Wrong Destination response). An attack would take days to complete. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"09 Oct 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-09T08:57:28.000000Z"} 2024-10-09T08:57:28+00:00 https://vulnerability.circl.lu/sighting/a6ccc32e-c197-4508-b3a9-40721a133c7f/export 2026-05-06T13:10:41.081060+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "a6ccc32e-c197-4508-b3a9-40721a133c7f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-36328", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/18075", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-40914\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Perl CryptX before version 0.087 contains a dependency that may be susceptible to an integer overflow.\n\nCryptX embeds a version of the libtommath library that is susceptible to an integer overflow associated with CVE-2023-36328.\n\ud83d\udccf Published: 2025-06-11T14:06:53.418Z\n\ud83d\udccf Modified: 2025-06-11T14:06:53.418Z\n\ud83d\udd17 References:\n1. https://www.cve.org/CVERecord?id=CVE-2023-36328\n2. https://github.com/libtom/libtommath/pull/546\n3. https://github.com/advisories/GHSA-j3xv-6967-cv88\n4. https://metacpan.org/release/MIK/CryptX-0.086/source/src/ltm/bn_mp_grow.c", "creation_timestamp": "2025-06-11T14:31:27.000000Z"} 2025-06-11T14:31:27+00:00 https://vulnerability.circl.lu/sighting/13f0dc3f-488f-46df-9d0e-bba79101c2d2/export 2026-05-06T13:10:41.070170+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "13f0dc3f-488f-46df-9d0e-bba79101c2d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-36328", "type": "published-proof-of-concept", "source": "Telegram/ph88y4G5oeScgD258CchMKrpr3BuS4k3KcSxkFOuLvPbbMI", "content": "", "creation_timestamp": "2025-06-11T20:16:04.000000Z"} 2025-06-11T20:16:04+00:00