{"vulnerability": "CVE-2022-2513", "sightings": [{"uuid": "6d93ba02-4240-4d82-89ae-e900729226b2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-2513", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/13530", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-2513\n\ud83d\udd25 CVSS Score: 7.1 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N)\n\ud83d\udd39 Description: A vulnerability exists in the Intelligent Electronic Device (IED) Connectivity Package (ConnPack) credential storage function in Hitachi Energy\u2019s PCM600 product included in the versions listed below, where IEDs credentials are stored in a cleartext format in the PCM600 database and logs files. An attacker having get access to the exported backup file can exploit the vulnerability and obtain user credentials of the IEDs. Additionally, an attacker with administrator access to the PCM600 host machine can obtain other user credentials by analyzing database log files. The credentials may be used to perform unauthorized modifications such as loading incorrect configurations, reboot the IEDs or cause a denial-of-service on the IEDs.\n\ud83d\udccf Published: 2022-11-22T10:30:34.309Z\n\ud83d\udccf Modified: 2025-04-25T21:00:17.783Z\n\ud83d\udd17 References:\n1. https://publisher.hitachienergy.com/preview?DocumentID=8DBD000120&amp;LanguageCode=en&amp;DocumentPartId=&amp;Action=Launch", "creation_timestamp": "2025-04-25T21:08:08.000000Z"}, {"uuid": "e27496da-6a73-4b5f-b9c7-4bbe08c29869", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25136", "type": "seen", "source": "https://t.me/cibsecurity/37812", "content": "\u203c CVE-2022-25136 \u203c\n\nA command injection vulnerability in the function meshSlaveUpdate of TOTOLINK Technology routers T6 V3_Firmware T6_V3_V4.1.5cu.748_B20211015 and T10 V2_Firmware V4.1.8cu.5207_B20210320 allows attackers to execute arbitrary commands via a crafted MQTT packet.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-19T02:38:48.000000Z"}, {"uuid": "f1e0f52d-b4c7-484a-a860-146af8247872", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25137", "type": "seen", "source": "https://t.me/cibsecurity/37811", "content": "\u203c CVE-2022-25137 \u203c\n\nA command injection vulnerability in the function recvSlaveUpgstatus of TOTOLINK Technology routers T6 V3_Firmware T6_V3_V4.1.5cu.748_B20211015 and T10 V2_Firmware V4.1.8cu.5207_B20210320 allows attackers to execute arbitrary commands via a crafted MQTT packet.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-19T02:38:46.000000Z"}, {"uuid": "e1a58929-0358-49c7-9fe4-8620dfa728e1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25138", "type": "seen", "source": "https://t.me/cibsecurity/38371", "content": "\u203c CVE-2022-25138 \u203c\n\nAxelor Open Suite v5.0 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the Name parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-03T20:26:16.000000Z"}, {"uuid": "b0e00ff8-5802-4fad-a000-e5e34a7cc68d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25139", "type": "seen", "source": "https://t.me/cibsecurity/37471", "content": "\u203c CVE-2022-25139 \u203c\n\nnjs through 0.7.0, used in NGINX, was discovered to contain a heap use-after-free in njs_await_fulfilled.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-15T00:33:28.000000Z"}, {"uuid": "7c1e6760-5b9c-496a-a23c-c6e0290aff99", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25130", "type": "seen", "source": "https://t.me/cibsecurity/37804", "content": "\u203c CVE-2022-25130 \u203c\n\nA command injection vulnerability in the function updateWifiInfo of TOTOLINK Technology routers T6 V3_Firmware T6_V3_V4.1.5cu.748_B20211015 and T10 V2_Firmware V4.1.8cu.5207_B20210320 allows attackers to execute arbitrary commands via a crafted MQTT packet.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-19T02:38:34.000000Z"}, {"uuid": "ee842ff3-35d4-41d2-a9d8-3d73619676c8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25134", "type": "seen", "source": "https://t.me/cibsecurity/37803", "content": "\u203c CVE-2022-25134 \u203c\n\nA command injection vulnerability in the function setUpgradeFW of TOTOLINK Technology router T6 V3_Firmware T6_V3_V4.1.5cu.748_B20211015 allows attackers to execute arbitrary commands via a crafted MQTT packet.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-19T02:38:33.000000Z"}, {"uuid": "de28b526-7a75-46bd-95fd-bfa95562537f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25132", "type": "seen", "source": "https://t.me/cibsecurity/37809", "content": "\u203c CVE-2022-25132 \u203c\n\nA command injection vulnerability in the function meshSlaveDlfw of TOTOLINK Technology router T6 V3_Firmware T6_V3_V4.1.5cu.748_B20211015 allows attackers to execute arbitrary commands via a crafted MQTT packet.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-19T02:38:43.000000Z"}, {"uuid": "0dc4ec33-0bca-48e7-85c9-cd5c5794e028", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25135", "type": "seen", "source": "https://t.me/cibsecurity/37808", "content": "\u203c CVE-2022-25135 \u203c\n\nA command injection vulnerability in the function recv_mesh_info_sync of TOTOLINK Technology router T6 V3_Firmware T6_V3_V4.1.5cu.748_B20211015 allows attackers to execute arbitrary commands via a crafted MQTT packet.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-19T02:38:41.000000Z"}, {"uuid": "0559925d-ef6d-43e1-8612-d9d08de8755f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25133", "type": "seen", "source": "https://t.me/cibsecurity/37807", "content": "\u203c CVE-2022-25133 \u203c\n\nA command injection vulnerability in the function isAssocPriDevice of TOTOLINK Technology router T6 V3_Firmware T6_V3_V4.1.5cu.748_B20211015 allows attackers to execute arbitrary commands via a crafted MQTT packet.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-19T02:38:40.000000Z"}, {"uuid": "637143da-1733-4a15-bf1f-23321951253a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25131", "type": "seen", "source": "https://t.me/cibsecurity/37805", "content": "\u203c CVE-2022-25131 \u203c\n\nA command injection vulnerability in the function recvSlaveCloudCheckStatus of TOTOLINK Technology routers T6 V3_Firmware T6_V3_V4.1.5cu.748_B20211015 and T10 V2_Firmware V4.1.8cu.5207_B20210320 allows attackers to execute arbitrary commands via a crafted MQTT packet.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-19T02:38:36.000000Z"}]}