{"vulnerability": "CVE-2022-3072", "sightings": [{"uuid": "2469f5ba-27b4-4c84-a108-5dbe6f918b7c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-30726", "type": "seen", "source": "https://t.me/cibsecurity/43969", "content": "\u203c CVE-2022-30726 \u203c\n\nUnprotected component vulnerability in DeviceSearchTrampoline in SecSettingsIntelligence prior to SMR Jun-2022 Release 1 allows local attackers to launch activities of SecSettingsIntelligence.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-07T22:37:26.000000Z"}, {"uuid": "6b7adae0-4c5e-45e8-bf5a-e82541af235a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-30729", "type": "seen", "source": "https://t.me/cibsecurity/43962", "content": "\u203c CVE-2022-30729 \u203c\n\nImplicit Intent hijacking vulnerability in Settings prior to SMR Jun-2022 Release 1 allows attackers to get Wi-Fi SSID and password via a malicious QR code scanner.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-07T22:37:17.000000Z"}, {"uuid": "19a69322-44e0-4206-a5af-096ea8885378", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-30728", "type": "seen", "source": "https://t.me/cibsecurity/43961", "content": "\u203c CVE-2022-30728 \u203c\n\nInformation exposure vulnerability in ScanPool prior to SMR Jun-2022 Release 1 allows local attackers to get MAC address information.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-07T22:37:17.000000Z"}, {"uuid": "0550f770-1ec1-4c0d-b645-8851adb1874a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-30724", "type": "seen", "source": "https://t.me/cibsecurity/43954", "content": "\u203c CVE-2022-30724 \u203c\n\nBroadcasting Intent including the BluetoothDevice object without proper restriction of receivers in sendIntentSessionCompleted function of Bluetooth prior to SMR Jun-2022 Release 1 leaks MAC address of the connected Bluetooth device.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-07T22:31:31.000000Z"}, {"uuid": "dc9d84ce-b6c9-4bde-a791-f3c0ae65e25c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-30725", "type": "seen", "source": "https://t.me/cibsecurity/43941", "content": "\u203c CVE-2022-30725 \u203c\n\nBroadcasting Intent including the BluetoothDevice object without proper restriction of receivers in sendIntentSessionError function of Bluetooth prior to SMR Jun-2022 Release 1 leaks MAC address of the connected Bluetooth device.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-07T22:31:15.000000Z"}, {"uuid": "49fbc417-1da8-4271-8fef-6f7483527b9e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-3072", "type": "seen", "source": "https://t.me/cibsecurity/49156", "content": "\u203c CVE-2022-3072 \u203c\n\nCross-site Scripting (XSS) - Stored in GitHub repository francoisjacquet/rosariosis prior to 8.9.3.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-01T12:37:53.000000Z"}, {"uuid": "5174dd2f-385f-419b-900f-b74784ecfbcc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-30721", "type": "seen", "source": "https://t.me/cibsecurity/43953", "content": "\u203c CVE-2022-30721 \u203c\n\nImproper input validation check logic vulnerability in libsmkvextractor prior to SMR Jun-2022 Release 1 allows attackers to trigger crash.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-07T22:31:30.000000Z"}]}