{"vulnerability": "CVE-2022-2210", "sightings": [{"uuid": "3c9f9818-f1b3-4ec4-87b4-f64997e21b6d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-22104", "type": "seen", "source": "https://t.me/cibsecurity/49232", "content": "\u203c CVE-2022-22104 \u203c\n\nMemory corruption in multimedia due to improper check on the messages received. in Snapdragon Auto\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-02T16:39:22.000000Z"}, {"uuid": "92bf99ab-41db-437b-af1d-1d8149d92c34", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-22103", "type": "seen", "source": "https://t.me/cibsecurity/44378", "content": "\u203c CVE-2022-22103 \u203c\n\nMemory corruption in multimedia driver due to double free while processing data from user in Snapdragon Auto\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-14T14:23:24.000000Z"}, {"uuid": "c211f834-ba37-4763-8ac0-5e01890d1922", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-22101", "type": "seen", "source": "https://t.me/cibsecurity/49228", "content": "\u203c CVE-2022-22101 \u203c\n\nDenial of service in multimedia due to uncontrolled resource consumption while parsing an incoming HAB message in Snapdragon Auto\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-02T16:39:15.000000Z"}, {"uuid": "6dbcfe93-4ef2-4276-8efc-d3486b12434a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-2210", "type": "seen", "source": "https://t.me/cibsecurity/45205", "content": "\u203c CVE-2022-2210 \u203c\n\nOut-of-bounds Write in GitHub repository vim/vim prior to 8.2.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-27T20:35:03.000000Z"}, {"uuid": "6449beaf-d163-4719-9ddf-5cc9d5c7bbe5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-22108", "type": "seen", "source": "https://t.me/cibsecurity/34985", "content": "\u203c CVE-2022-22108 \u203c\n\nIn Daybyday CRM, versions 2.0.0 through 2.2.0 are vulnerable to Missing Authorization. An attacker that has the lowest privileges account (employee type user), can view the absences of all users in the system including administrators. This type of user is not authorized to view this kind of information.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-01-05T18:40:15.000000Z"}, {"uuid": "fd9ed8d0-db66-44d6-b751-39f9050d2e8d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-22107", "type": "seen", "source": "https://t.me/cibsecurity/34988", "content": "\u203c CVE-2022-22107 \u203c\n\nIn Daybyday CRM, versions 2.0.0 through 2.2.0 are vulnerable to Missing Authorization. An attacker that has the lowest privileges account (employee type user), can view the appointments of all users in the system including administrators. However, this type of user is not authorized to view the calendar at all.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-01-05T18:40:20.000000Z"}, {"uuid": "720b5d1a-66c2-4ff1-8a15-2ad1e8b38e16", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-22109", "type": "seen", "source": "https://t.me/cibsecurity/34987", "content": "\u203c CVE-2022-22109 \u203c\n\nIn Daybyday CRM, version 2.2.0 is vulnerable to Stored Cross-Site Scripting (XSS) vulnerability that allows low privileged application users to store malicious scripts in the title field of new tasks. These scripts are executed in a victim\u00e2\u20ac\u2122s browser when they open the \u00e2\u20ac\u0153/tasks\u00e2\u20ac\ufffd page to view all the tasks.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-01-05T18:40:19.000000Z"}]}