Most recent sightings.

Most recent sightings. https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Tue, 05 May 2026 13:32:41 +0000 612e2f0c-7ffe-42e9-a4e1-8b2ba00c1692 https://vulnerability.circl.lu/sighting/612e2f0c-7ffe-42e9-a4e1-8b2ba00c1692/export {"uuid": "612e2f0c-7ffe-42e9-a4e1-8b2ba00c1692", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-28371", "type": "seen", "source": "https://t.me/cibsecurity/46230", "content": "\u203c CVE-2022-28371 \u203c\n\nOn Verizon 5G Home LVSKIHP InDoorUnit (IDU) 3.4.66.162 and OutDoorUnit (ODU) 3.33.101.0 devices, the CRTC and ODU RPC endpoints rely on a static certificate for access control. This certificate is embedded in the firmware, and is identical across the fleet of devices. An attacker need only download this firmware and extract the private components of these certificates (from /etc/lighttpd.d/ca.pem and /etc/lighttpd.d/server.pem) to gain access. (The firmware download location is shown in a device's upgrade logs.)\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-07-14T16:27:35.000000Z"} {"uuid": "612e2f0c-7ffe-42e9-a4e1-8b2ba00c1692", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-28371", "type": "seen", "source": "https://t.me/cibsecurity/46230", "content": "\u203c CVE-2022-28371 \u203c\n\nOn Verizon 5G Home LVSKIHP InDoorUnit (IDU) 3.4.66.162 and OutDoorUnit (ODU) 3.33.101.0 devices, the CRTC and ODU RPC endpoints rely on a static certificate for access control. This certificate is embedded in the firmware, and is identical across the fleet of devices. An attacker need only download this firmware and extract the private components of these certificates (from /etc/lighttpd.d/ca.pem and /etc/lighttpd.d/server.pem) to gain access. (The firmware download location is shown in a device's upgrade logs.)\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-07-14T16:27:35.000000Z"} https://vulnerability.circl.lu/sighting/612e2f0c-7ffe-42e9-a4e1-8b2ba00c1692/export Thu, 14 Jul 2022 16:27:35 +0000