{"vulnerability": "CVE-2022-2671", "sightings": [{"uuid": "c6547003-15b0-44fe-abd6-931113ce0c72", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26712", "type": "published-proof-of-concept", "source": "Telegram/m2MEtejkEp4yOpntKii6ucLVNNthGc7DTbm8HilSEZO0Ako", "content": "", "creation_timestamp": "2023-02-04T17:02:30.000000Z"}, {"uuid": "947c4a03-a4d0-4ea0-bc55-251e9f41f4e8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26717", "type": "published-proof-of-concept", "source": "https://t.me/cKure/9576", "content": "\u25a0\u25a0\u25a0\u25a0\u25a0 Zero-Day: Safari WebGL XFB Use After Free Vulnerability.\n\nhttps://github.com/theori-io/CVE-2022-26717-Safari-WebGL-Exploit", "creation_timestamp": "2022-05-21T18:17:14.000000Z"}, {"uuid": "8f5c3313-59c7-470b-a56f-fa1af9112484", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26711", "type": "published-proof-of-concept", "source": "Telegram/fo9HSyervRu8zmZqDISxrEVJ89qXzcJOGMtymBsqB2XNIxc", "content": "", "creation_timestamp": "2026-01-01T15:00:08.000000Z"}, {"uuid": "d0d8fa8c-9d33-4b39-8f3f-9f7c6b12ea35", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26717", "type": "published-proof-of-concept", "source": "https://t.me/cKure/9561", "content": "\u25a0\u25a0\u25a0\u25a1\u25a1 Researchers created a PoC exploit for Safari CVE-2022-26717 bug.\n\nhttps://securityonline.info/researchers-created-a-poc-exploit-for-safari-cve-2022-26717-bug/", "creation_timestamp": "2022-05-20T06:08:28.000000Z"}, {"uuid": "9bf7f4b2-213b-4415-83ce-b870fd395d40", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26710", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/15192", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-26710\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: A use after free issue was addressed with improved memory management. This issue is fixed in iOS 15.5 and iPadOS 15.5, macOS Monterey 12.4, tvOS 15.5, watchOS 8.6. Processing maliciously crafted web content may lead to arbitrary code execution.\n\ud83d\udccf Published: 2022-11-01T00:00:00.000Z\n\ud83d\udccf Modified: 2025-05-06T19:05:58.772Z\n\ud83d\udd17 References:\n1. https://support.apple.com/en-us/HT213258\n2. https://support.apple.com/en-us/HT213253\n3. https://support.apple.com/en-us/HT213254\n4. https://support.apple.com/en-us/HT213257", "creation_timestamp": "2025-05-06T19:21:06.000000Z"}, {"uuid": "fc3db421-1557-4a92-b4f0-797d32e4d018", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26712", "type": "published-proof-of-concept", "source": "https://t.me/poxek/2162", "content": "CVE-2022-26712: The POC for SIP-Bypass Is Even Tweetable\nI found some new attack surfaces in the macOS PackageKit.framework, and successfully disclosed 15+ critical SIP-Bypass vulnerabilities. Apple has addressed 12 of them with CVE assigned so far. There are still some reports in the Apple\u2019s processing queue. All of them are interesting logic issues, and of course each has a successful exploit demonstration.\n\u25b6\ufe0f \u0418\u0441\u0442\u043e\u0447\u043d\u0438\u043a \n\n\u0414\u043d\u0435\u0432\u043d\u0438\u043a \u0411\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u0438\u043a\u0430 \ud83d\udee1", "creation_timestamp": "2022-08-09T18:49:23.000000Z"}, {"uuid": "58153569-5e15-4069-bf66-0c27ad7e0ab9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26718", "type": "seen", "source": "https://t.me/arpsyndicate/703", "content": "#ExploitObserverAlert\n\nCVE-2022-26718\n\nDESCRIPTION: Exploit Observer has 2 entries related to CVE-2022-26718. An out-of-bounds read issue was addressed with improved input validation. This issue is fixed in macOS Monterey 12.4, macOS Big Sur 11.6.6. An application may be able to gain elevated privileges.\n\nFIRST-EPSS: 0.000660000\nNVD-IS: 5.9\nNVD-ES: 1.8", "creation_timestamp": "2023-11-29T08:50:41.000000Z"}, {"uuid": "3e16864b-f09f-401d-bef6-e1d94776e57c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26712", "type": "published-proof-of-concept", "source": "https://t.me/hackingshadow/2875", "content": "#exploit\n1. CVE-2022-26712:\nApple System Integrity Protection (SIP) Bypass\nhttps://jhftss.github.io/CVE-2022-26712-The-POC-For-SIP-Bypass-Is-Even-Tweetable\n\n2. Netcomm NF20MESH/NL1902 - Unauthenticated RCE\nhttps://github.com/scarvell/advisories/blob/main/2022_netcomm_nf20mesh_unauth_rce.md", "creation_timestamp": "2023-01-04T14:18:09.000000Z"}, {"uuid": "6f30ff5a-ba8c-4b40-bb61-6130a002bd96", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26712", "type": "published-proof-of-concept", "source": "Telegram/K-NdsruMw1Fym1ldoCgIBSKfSnuSwSHmNQJK0ReNQEl6Hw", "content": "", "creation_timestamp": "2022-08-01T15:43:03.000000Z"}, {"uuid": "4b948526-ab43-4862-8f28-e60ea0d3a04a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26712", "type": "seen", "source": "https://t.me/proxy_bar/1248", "content": "\u041a\u043e\u043b\u043b\u0435\u043a\u0446\u0438\u044f Exploits - MacOS\n*\nCVE-2022-22583\nCVE-2022-22616\nCVE-2022-22639\nCVE-2022-26690\nCVE-2022-26712\nCVE-2022-26728\nCVE-2022-32786\nCVE-2022-32800\n*\ndownload\n\n#exploit #macOS", "creation_timestamp": "2022-12-27T14:07:57.000000Z"}, {"uuid": "33ca4a70-ac65-4efe-8e84-62f7dd1144c9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26717", "type": "published-proof-of-concept", "source": "Telegram/S62Y15XOsl25a0fG3h_qe8ObQfuO6ZbhSWI2h9Zpsb5ljw", "content": "", "creation_timestamp": "2022-05-20T14:20:52.000000Z"}, {"uuid": "08300c3c-d89e-4c00-b6af-8173b83dedce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26712", "type": "published-proof-of-concept", "source": "Telegram/N7hpQcKSe76QNriYPxYm679LfZMbR6Yqtw8uC765a_b11A", "content": "", "creation_timestamp": "2022-08-06T05:25:29.000000Z"}, {"uuid": "6adadc61-b63c-4196-9c60-77236554b9b5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26717", "type": "published-proof-of-concept", "source": "https://t.me/crackcodes/561", "content": "CVE-2022-26717\n\nSafari WebGL XFB Use After Free Vulnerability\n\nhttps://github.com/theori-io/CVE-2022-26717-Safari-WebGL-Exploit\n\n#cve #exploit", "creation_timestamp": "2022-05-20T14:09:37.000000Z"}, {"uuid": "b714c555-85e9-4299-a4e4-e83eee0c2223", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26717", "type": "published-proof-of-concept", "source": "https://t.me/MrVGunz/158", "content": "Researchers created a PoC exploit for Safari CVE-2022-26717 bug\n\nhttps://securityonline.info/researchers-created-a-poc-exploit-for-safari-cve-2022-26717-bug/", "creation_timestamp": "2022-05-20T12:11:22.000000Z"}, {"uuid": "d8186d39-ae0d-4888-b2a2-7bf196396ecf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26712", "type": "published-proof-of-concept", "source": "Telegram/y9riWSybSxM5iM9MBxLXE1DhDytPghMHh8g33kHWQzIo-7c", "content": "", "creation_timestamp": "2023-01-29T13:21:42.000000Z"}, {"uuid": "15d4b5c9-8164-4d2d-9b1c-1dd1c78228e7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26712", "type": "published-proof-of-concept", "source": "Telegram/aOf_rbDrwIUidyWTOY_j25ydnl1rugPysH4L_dx_8LcxgtM", "content": "", "creation_timestamp": "2023-01-04T11:11:04.000000Z"}, {"uuid": "91793896-5e1a-4a15-b1cc-61efcbfcb2b0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26712", "type": "published-proof-of-concept", "source": "https://t.me/crackcodes/2514", "content": "CVE-2022-22583 CVE-2022-22616 CVE-2022-22639 CVE-2022-26690 CVE-2022-26712 CVE-2022-26728 CVE-2022-32786 CVE-2022-32800\n\nhttps://github.com/jhftss/POC", "creation_timestamp": "2023-02-04T11:10:12.000000Z"}, {"uuid": "62f94608-e0c8-4fed-a079-21e9972b939b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26712", "type": "published-proof-of-concept", "source": "https://t.me/crackcodes/2024", "content": "#exploit\n1. CVE-2022-26712:\nApple System Integrity Protection (SIP) Bypass\nhttps://jhftss.github.io/CVE-2022-26712-The-POC-For-SIP-Bypass-Is-Even-Tweetable\n\n2. Netcomm NF20MESH/NL1902 - Unauthenticated RCE\nhttps://github.com/scarvell/advisories/blob/main/2022_netcomm_nf20mesh_unauth_rce.md", "creation_timestamp": "2022-12-28T17:20:01.000000Z"}, {"uuid": "5c17dbde-6cf1-471f-bbc2-4b9ddf381543", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26712", "type": "published-proof-of-concept", "source": "https://t.me/crackcodes/914", "content": "Updates On Hackbyte Forum:-\n\n1. Erebus - Fast and customisable parameter based vulnerability scanner based on simple YAML Rules\n2. Zeratool - Automatic Exploit Generation (AEG) and remote flag capture for exploitable CTF problems\n3. CVE-2022-36946 linux kernel panic in netfilter_queue\n4. CVE-2022-32744: Critical Samba admin password reset flaw\n5. aif_ru Leak\n6. Exactis Company Leak\n7. paidleaf.co_68K Leak\n8. CVE-2022-26712: The POC for SIP-Bypass\n9. CVE-2022-26138: Confluence Hardcoded Password POC\n10. Blizzard-Jailbreak-9: Blizzard Jailbreak for iOS 9.0 - 9.3.6, 32-Bit\n11. Quasar: Remote Administration Tool for Windows\n12. pochta Leak\n13. COINPAYEX.LTD Data Leak\n\n\ud83d\udc49\ud83c\udffb\ud83d\udc49\ud83c\udffbAll Updates On :- https://bit.ly/3yRyah3 \ud83d\udc48\ud83c\udffb\ud83d\udc48\ud83c\udffb", "creation_timestamp": "2022-08-24T11:48:28.000000Z"}, {"uuid": "c1c49ffb-7b3e-4c27-8df5-e5f007cf887c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26717", "type": "published-proof-of-concept", "source": "https://t.me/BlueRedTeam/2089", "content": "#exploit\nCVE-2022-26717:\nSafari WebGL XFB UAF\nhttps://github.com/theori-io/CVE-2022-26717-Safari-WebGL-Exploit\n\n@BlueRedTeam", "creation_timestamp": "2022-05-20T09:05:46.000000Z"}, {"uuid": "4a1b311f-8496-41c6-ab04-7a17c6bff319", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-2671", "type": "seen", "source": "https://t.me/cibsecurity/47607", "content": "\u203c CVE-2022-2671 \u203c\n\nA vulnerability was found in SourceCodester Garage Management System and classified as critical. This issue affects some unknown processing of the file removeUser.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-205655.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-30T12:55:04.000000Z"}, {"uuid": "5d0a9e77-7f25-4e03-a7a2-e88e67cf725a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26714", "type": "seen", "source": "https://t.me/cibsecurity/43427", "content": "\u203c CVE-2022-26714 \u203c\n\nA memory corruption issue was addressed with improved validation. This issue is fixed in tvOS 15.5, iOS 15.5 and iPadOS 15.5, Security Update 2022-004 Catalina, watchOS 8.6, macOS Big Sur 11.6.6, macOS Monterey 12.4. An application may be able to execute arbitrary code with kernel privileges.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-26T22:14:37.000000Z"}, {"uuid": "b69b0779-ced0-44c0-8550-4d16889c0c1c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26712", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/7439", "content": "#exploit\n1. CVE-2022-26712:\nApple System Integrity Protection (SIP) Bypass\nhttps://jhftss.github.io/CVE-2022-26712-The-POC-For-SIP-Bypass-Is-Even-Tweetable\n\n2. Netcomm NF20MESH/NL1902 - Unauthenticated RCE\nhttps://github.com/scarvell/advisories/blob/main/2022_netcomm_nf20mesh_unauth_rce.md", "creation_timestamp": "2022-12-28T11:03:01.000000Z"}, {"uuid": "23dc0e94-340d-452d-99b5-13b6c177af07", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26712", "type": "published-proof-of-concept", "source": "https://t.me/thebugbountyhunter/6395", "content": "CVE-2022-26712: The POC for SIP-Bypass Is Even Tweetable\n\nhttps://jhftss.github.io/CVE-2022-26712-The-POC-For-SIP-Bypass-Is-Even-Tweetable/", "creation_timestamp": "2022-07-27T09:48:13.000000Z"}, {"uuid": "cc658977-0e86-4bbd-8a31-45ef61d601c1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26712", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/6501", "content": "#exploit\n1. CVE-2022-26712:\nThe PoC for SIP-Bypass Is Even Tweetable\nhttps://jhftss.github.io/CVE-2022-26712-The-POC-For-SIP-Bypass-Is-Even-Tweetable\n\n2. CVE-2022-26138:\nConfluence Hardcoded Password PoC\nhttps://github.com/z92g/CVE-2022-26138", "creation_timestamp": "2022-07-31T14:52:30.000000Z"}, {"uuid": "b2a07760-5577-4ba2-9524-48203dfc5693", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26717", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/6037", "content": "#exploit\nCVE-2022-26717:\nSafari WebGL XFB UAF\nhttps://github.com/theori-io/CVE-2022-26717-Safari-WebGL-Exploit", "creation_timestamp": "2022-05-20T11:00:36.000000Z"}]}