https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Thu, 04 Jun 2026 10:54:30 +0000 https://vulnerability.circl.lu/sighting/26fb3f4f-69a5-4e11-9934-4e9953961803/export {"uuid": "26fb3f4f-69a5-4e11-9934-4e9953961803", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27974", "type": "seen", "source": "https://t.me/cibsecurity/59711", "content": "\u203c CVE-2023-27974 \u203c\n\n** DISPUTED ** Bitwarden through 2023.2.1 offers password auto-fill when the second-level domain matches, e.g., a password stored for an example.com hosting provider when customer-website.example.com is visited. NOTE: the vendor's position is that \"Auto-fill on page load\" is not enabled by default.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-09T02:23:33.000000Z"} {"uuid": "26fb3f4f-69a5-4e11-9934-4e9953961803", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27974", "type": "seen", "source": "https://t.me/cibsecurity/59711", "content": "\u203c CVE-2023-27974 \u203c\n\n** DISPUTED ** Bitwarden through 2023.2.1 offers password auto-fill when the second-level domain matches, e.g., a password stored for an example.com hosting provider when customer-website.example.com is visited. NOTE: the vendor's position is that \"Auto-fill on page load\" is not enabled by default.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-09T02:23:33.000000Z"} https://vulnerability.circl.lu/sighting/26fb3f4f-69a5-4e11-9934-4e9953961803/export Thu, 09 Mar 2023 02:23:33 +0000 https://vulnerability.circl.lu/sighting/a4243da3-c524-4897-8a9a-1afc331d8258/export {"uuid": "a4243da3-c524-4897-8a9a-1afc331d8258", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27979", "type": "seen", "source": "https://t.me/cibsecurity/60369", "content": "\u203c CVE-2023-27979 \u203c\n\nA CWE-345: Insufficient Verification of Data Authenticity vulnerability exists in the Data Server that could allow the renaming of files in the IGSS project report directory, this could lead to denial of service when an attacker sends specific crafted messages to the Data Server TCP port. Affected Products: IGSS Data Server(IGSSdataServer.exe)(V16.0.0.23040 and prior), IGSS Dashboard(DashBoard.exe)(V16.0.0.23040 and prior), Custom Reports(RMS16.dll)(V16.0.0.23040 and prior).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-21T15:34:52.000000Z"} {"uuid": "a4243da3-c524-4897-8a9a-1afc331d8258", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27979", "type": "seen", "source": "https://t.me/cibsecurity/60369", "content": "\u203c CVE-2023-27979 \u203c\n\nA CWE-345: Insufficient Verification of Data Authenticity vulnerability exists in the Data Server that could allow the renaming of files in the IGSS project report directory, this could lead to denial of service when an attacker sends specific crafted messages to the Data Server TCP port. Affected Products: IGSS Data Server(IGSSdataServer.exe)(V16.0.0.23040 and prior), IGSS Dashboard(DashBoard.exe)(V16.0.0.23040 and prior), Custom Reports(RMS16.dll)(V16.0.0.23040 and prior).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-21T15:34:52.000000Z"} https://vulnerability.circl.lu/sighting/a4243da3-c524-4897-8a9a-1afc331d8258/export Tue, 21 Mar 2023 15:34:52 +0000 https://vulnerability.circl.lu/sighting/971f1005-8403-4c46-bac0-bcde494451aa/export {"uuid": "971f1005-8403-4c46-bac0-bcde494451aa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27977", "type": "seen", "source": "https://t.me/cibsecurity/60371", "content": "\u203c CVE-2023-27977 \u203c\n\nA CWE-345: Insufficient Verification of Data Authenticity vulnerability exists in the Data Server that could cause access to delete files in the IGSS project report directory, this could lead to loss of data when an attacker sends specific crafted messages to the Data Server TCP port. Affected Products: IGSS Data Server(IGSSdataServer.exe)(V16.0.0.23040 and prior), IGSS Dashboard(DashBoard.exe)(V16.0.0.23040 and prior), Custom Reports(RMS16.dll)(V16.0.0.23040 and prior).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-21T15:34:53.000000Z"} {"uuid": "971f1005-8403-4c46-bac0-bcde494451aa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27977", "type": "seen", "source": "https://t.me/cibsecurity/60371", "content": "\u203c CVE-2023-27977 \u203c\n\nA CWE-345: Insufficient Verification of Data Authenticity vulnerability exists in the Data Server that could cause access to delete files in the IGSS project report directory, this could lead to loss of data when an attacker sends specific crafted messages to the Data Server TCP port. Affected Products: IGSS Data Server(IGSSdataServer.exe)(V16.0.0.23040 and prior), IGSS Dashboard(DashBoard.exe)(V16.0.0.23040 and prior), Custom Reports(RMS16.dll)(V16.0.0.23040 and prior).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-21T15:34:53.000000Z"} https://vulnerability.circl.lu/sighting/971f1005-8403-4c46-bac0-bcde494451aa/export Tue, 21 Mar 2023 15:34:53 +0000 https://vulnerability.circl.lu/sighting/5ac767a1-c3ea-4d2d-9ca5-e632d3de5fc2/export {"uuid": "5ac767a1-c3ea-4d2d-9ca5-e632d3de5fc2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27973", "type": "seen", "source": "https://t.me/cibsecurity/63076", "content": "\u203c CVE-2023-27973 \u203c\n\nCertain HP LaserJet Pro print products are potentially vulnerable to Heap Overflow and/or Remote Code Execution.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-28T20:27:24.000000Z"} {"uuid": "5ac767a1-c3ea-4d2d-9ca5-e632d3de5fc2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27973", "type": "seen", "source": "https://t.me/cibsecurity/63076", "content": "\u203c CVE-2023-27973 \u203c\n\nCertain HP LaserJet Pro print products are potentially vulnerable to Heap Overflow and/or Remote Code Execution.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-28T20:27:24.000000Z"} https://vulnerability.circl.lu/sighting/5ac767a1-c3ea-4d2d-9ca5-e632d3de5fc2/export Fri, 28 Apr 2023 20:27:24 +0000 https://vulnerability.circl.lu/sighting/c2dd9ff0-46f9-4437-96a8-5142c46a5dbf/export {"uuid": "c2dd9ff0-46f9-4437-96a8-5142c46a5dbf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27971", "type": "seen", "source": "https://t.me/cibsecurity/63083", "content": "\u203c CVE-2023-27971 \u203c\n\nCertain HP LaserJet Pro print products are potentially vulnerable to Buffer Overflow and/or Elevation of Privilege.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-28T20:27:34.000000Z"} {"uuid": "c2dd9ff0-46f9-4437-96a8-5142c46a5dbf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27971", "type": "seen", "source": "https://t.me/cibsecurity/63083", "content": "\u203c CVE-2023-27971 \u203c\n\nCertain HP LaserJet Pro print products are potentially vulnerable to Buffer Overflow and/or Elevation of Privilege.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-28T20:27:34.000000Z"} https://vulnerability.circl.lu/sighting/c2dd9ff0-46f9-4437-96a8-5142c46a5dbf/export Fri, 28 Apr 2023 20:27:34 +0000 https://vulnerability.circl.lu/sighting/8ca06a2e-9fb3-4582-a49b-6225c9542d7d/export {"uuid": "8ca06a2e-9fb3-4582-a49b-6225c9542d7d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27972", "type": "seen", "source": "https://t.me/cibsecurity/63088", "content": "\u203c CVE-2023-27972 \u203c\n\nCertain HP LaserJet Pro print products are potentially vulnerable to Buffer Overflow and/or Remote Code Execution.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-28T20:27:39.000000Z"} {"uuid": "8ca06a2e-9fb3-4582-a49b-6225c9542d7d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27972", "type": "seen", "source": "https://t.me/cibsecurity/63088", "content": "\u203c CVE-2023-27972 \u203c\n\nCertain HP LaserJet Pro print products are potentially vulnerable to Buffer Overflow and/or Remote Code Execution.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-28T20:27:39.000000Z"} https://vulnerability.circl.lu/sighting/8ca06a2e-9fb3-4582-a49b-6225c9542d7d/export Fri, 28 Apr 2023 20:27:39 +0000 https://vulnerability.circl.lu/sighting/0c913fe1-dcdb-429c-9d9b-54c4e78823c2/export {"uuid": "0c913fe1-dcdb-429c-9d9b-54c4e78823c2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27976", "type": "seen", "source": "https://t.me/cibsecurity/62364", "content": "\u203c CVE-2023-27976 \u203c\n\nA CWE-668: Exposure of Resource to Wrong Sphere vulnerability exists that could cause remote code execution when a valid user visits a malicious link provided through the web endpoints. Affected Products:\u00c2\u00a0EcoStruxure Control Expert (V15.1 and above)\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-12T10:02:10.000000Z"} {"uuid": "0c913fe1-dcdb-429c-9d9b-54c4e78823c2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27976", "type": "seen", "source": "https://t.me/cibsecurity/62364", "content": "\u203c CVE-2023-27976 \u203c\n\nA CWE-668: Exposure of Resource to Wrong Sphere vulnerability exists that could cause remote code execution when a valid user visits a malicious link provided through the web endpoints. Affected Products:\u00c2\u00a0EcoStruxure Control Expert (V15.1 and above)\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-12T10:02:10.000000Z"} https://vulnerability.circl.lu/sighting/0c913fe1-dcdb-429c-9d9b-54c4e78823c2/export Fri, 12 May 2023 10:02:10 +0000 https://vulnerability.circl.lu/sighting/4d95376e-bb75-489b-ac6a-69f4c65455e7/export {"uuid": "4d95376e-bb75-489b-ac6a-69f4c65455e7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27975", "type": "seen", "source": "https://t.me/ctinow/201555", "content": "https://ift.tt/HR8axyT\nCVE-2023-27975 | Schneider Electric EcoStruxure Control Expert Project File insufficiently protected credentials (SEVD-2024-044-01)", "creation_timestamp": "2024-03-06T17:46:20.000000Z"} {"uuid": "4d95376e-bb75-489b-ac6a-69f4c65455e7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27975", "type": "seen", "source": "https://t.me/ctinow/201555", "content": "https://ift.tt/HR8axyT\nCVE-2023-27975 | Schneider Electric EcoStruxure Control Expert Project File insufficiently protected credentials (SEVD-2024-044-01)", "creation_timestamp": "2024-03-06T17:46:20.000000Z"} https://vulnerability.circl.lu/sighting/4d95376e-bb75-489b-ac6a-69f4c65455e7/export Wed, 06 Mar 2024 17:46:20 +0000 https://vulnerability.circl.lu/sighting/7f493d6f-485a-479a-b073-428237a766db/export {"uuid": "7f493d6f-485a-479a-b073-428237a766db", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27975", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-24-331-03", "content": "", "creation_timestamp": "2024-11-26T11:00:00.000000Z"} {"uuid": "7f493d6f-485a-479a-b073-428237a766db", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27975", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-24-331-03", "content": "", "creation_timestamp": "2024-11-26T11:00:00.000000Z"} https://vulnerability.circl.lu/sighting/7f493d6f-485a-479a-b073-428237a766db/export Tue, 26 Nov 2024 11:00:00 +0000 https://vulnerability.circl.lu/sighting/c3790dbe-9b2a-402e-b41a-9367e1a57133/export {"uuid": "c3790dbe-9b2a-402e-b41a-9367e1a57133", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27971", "type": "seen", "source": "Telegram/IDx02ZtbTig8lJq19VjYZcJJwRiMouSLv3H7V1knuQVCh1I1", "content": "", "creation_timestamp": "2025-01-30T23:28:04.000000Z"} {"uuid": "c3790dbe-9b2a-402e-b41a-9367e1a57133", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27971", "type": "seen", "source": "Telegram/IDx02ZtbTig8lJq19VjYZcJJwRiMouSLv3H7V1knuQVCh1I1", "content": "", "creation_timestamp": "2025-01-30T23:28:04.000000Z"} https://vulnerability.circl.lu/sighting/c3790dbe-9b2a-402e-b41a-9367e1a57133/export Thu, 30 Jan 2025 23:28:04 +0000