{"vulnerability": "CVE-2022-2915", "sightings": [{"uuid": "f8bd69fc-e443-4513-b513-8078aec7a509", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-29153", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2025-01-26)", "content": "", "creation_timestamp": "2025-01-26T00:00:00.000000Z"}, {"uuid": "12f2d1f1-7f5a-4281-8ead-a57c75dc12d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-29153", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2025-02-10)", "content": "", "creation_timestamp": "2025-02-10T00:00:00.000000Z"}, {"uuid": "2c6a796d-41b1-438c-8384-48f45d2d9ea4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-29153", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-03-09)", "content": "", "creation_timestamp": "2025-03-09T00:00:00.000000Z"}, {"uuid": "da13f1d5-f417-4b5c-b634-ceccbf3f7a39", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-29153", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-05-31)", "content": "", "creation_timestamp": "2025-05-31T00:00:00.000000Z"}, {"uuid": "6f3edf80-c672-4988-975e-a00f30345bfd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-29154", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-105-08", "content": "", "creation_timestamp": "2025-04-15T10:00:00.000000Z"}, {"uuid": "b01592eb-3990-429d-a807-6b9221e5aaca", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "e92402ac-b04a-4e73-ad0b-3c8344ca18bd", "vulnerability": "CVE-2022-2915", "type": "exploited", "source": "https://www.cybereason.com/blog/ttp-briefing-q3-2025", "content": "", "creation_timestamp": "2025-10-26T22:32:25.853616Z"}, {"uuid": "781a4a33-c14a-4300-9163-b1d2a759888c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-29159", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/12921", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-29159\n\ud83d\udd25 CVSS Score: 5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:N)\n\ud83d\udd39 Description: Nextcloud Deck is a Kanban-style project & personal management tool for Nextcloud. In versions prior to 1.4.8, 1.5.6, and 1.6.1, an authenticated user can move stacks with cards from their own board to a board of another user. The Nextcloud Deck app contains a patch for this issue in versions 1.4.8, 1.5.6, and 1.6.1. There are no known currently-known workarounds available.\n\ud83d\udccf Published: 2022-05-20T15:40:10.000Z\n\ud83d\udccf Modified: 2025-04-22T18:01:04.377Z\n\ud83d\udd17 References:\n1. https://github.com/nextcloud/security-advisories/security/advisories/GHSA-vqhf-673w-7r3j\n2. https://github.com/nextcloud/deck/pull/3541\n3. https://hackerone.com/reports/1450117", "creation_timestamp": "2025-04-22T18:03:35.000000Z"}, {"uuid": "3decbcae-9319-414c-b516-a22028b661ec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-2915", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3m3xrj45myi23", "content": "", "creation_timestamp": "2025-10-24T21:02:35.239021Z"}, {"uuid": "3eadf36c-5a81-4fb3-a5ef-8a57600f6784", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-29154", "type": "seen", "source": "https://t.me/cibsecurity/47410", "content": "\u203c CVE-2022-29154 \u203c\n\nAn issue was discovered in rsync before 3.2.5 that allows malicious remote servers to write arbitrary files inside the directories of connecting peers. The server chooses which files/directories are sent to the client. However, the rsync client performs insufficient validation of file names. A malicious rsync server (or Man-in-The-Middle attacker) can overwrite arbitrary files in the rsync client target directory and subdirectories (for example, overwrite the .ssh/authorized_keys file).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-08-02T18:17:51.000000Z"}, {"uuid": "a7656828-ae38-4f20-9e76-8cc4039256ad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-2915", "type": "seen", "source": "https://t.me/cibsecurity/48927", "content": "\u203c CVE-2022-2915 \u203c\n\nA Heap-based Buffer Overflow vulnerability in the SonicWall SMA100 appliance allows a remote authenticated attacker to cause Denial of Service (DoS) on the appliance or potentially lead to code execution. This vulnerability impacts 10.2.1.5-34sv and earlier versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-08-27T00:30:32.000000Z"}, {"uuid": "5b445b57-c662-419a-8236-d60a1c82b639", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-29155", "type": "seen", "source": "https://t.me/ctinow/182512", "content": "https://ift.tt/0rvtsNg\nCVE-2022-29155 | Oracle Fujitsu M10-1 XCP Firmware sql injection", "creation_timestamp": "2024-02-10T10:11:56.000000Z"}, {"uuid": "4b517b15-bbe7-4209-805b-c543d6cf8b72", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-29159", "type": "seen", "source": "https://t.me/cibsecurity/43073", "content": "\u203c CVE-2022-29159 \u203c\n\nNextcloud Deck is a Kanban-style project & personal management tool for Nextcloud. In versions prior to 1.4.8, 1.5.6, and 1.6.1, an authenticated user can move stacks with cards from their own board to a board of another user. The Nextcloud Deck app contains a patch for this issue in versions 1.4.8, 1.5.6, and 1.6.1. There are no known currently-known workarounds available.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-20T20:30:50.000000Z"}, {"uuid": "afc7550d-3830-4a13-ac0d-38afbab2f3ba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-29153", "type": "seen", "source": "https://t.me/cibsecurity/41103", "content": "\u203c CVE-2022-29153 \u203c\n\nHashiCorp Consul and Consul Enterprise through 2022-04-12 allow SSRF.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-19T20:24:31.000000Z"}, {"uuid": "9d0ee1ad-7073-4451-a1da-f9c218791267", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-29152", "type": "seen", "source": "https://t.me/cibsecurity/41565", "content": "\u203c CVE-2022-29152 \u203c\n\nThe Ericom PowerTerm WebConnect 6.0 login portal can unsafely write an XSS payload from the AppPortal cookie into the page.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-28T16:25:43.000000Z"}]}