{"vulnerability": "CVE-2022-3179", "sightings": [{"uuid": "70a227f4-3017-4489-9100-49847c3627db", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-31793", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2025-04-20)", "content": "", "creation_timestamp": "2025-04-20T00:00:00.000000Z"}, {"uuid": "8125c26c-612d-4625-8604-c8cb9ff4b5e7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-31790", "type": "published-proof-of-concept", "source": "https://t.me/MrVGunz/482", "content": "CVE-2022-31790 & -/-/31789 : BLIND EXPLOITS TO RULE WATCHGUARD FIREWALLS\nhttps://www.ambionics.io/blog/hacking-watchguard-firewalls", "creation_timestamp": "2022-09-28T06:30:08.000000Z"}, {"uuid": "8e9e012d-f8ac-473d-b2d8-4fdebd098a50", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-3179", "type": "seen", "source": "https://t.me/cibsecurity/49667", "content": "\u203c CVE-2022-3179 \u203c\n\nWeak Password Requirements in GitHub repository ikus060/rdiffweb prior to 2.4.2.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-13T20:25:32.000000Z"}, {"uuid": "758c8cbd-a617-4bfe-95fe-977a02590e11", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-31794", "type": "seen", "source": "https://t.me/cibsecurity/44831", "content": "\u203c CVE-2022-31794 \u203c\n\nAn issue was discovered on Fujitsu ETERNUS CentricStor CS8000 (Control Center) devices before 8.1A SP02 P04. The vulnerability resides in the requestTempFile function in hw_view.php. An attacker is able to influence the unitName POST parameter and inject special characters such as semicolons, backticks, or command-substitution sequences in order to force the application to execute arbitrary commands.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-20T18:26:38.000000Z"}, {"uuid": "1f2c5859-ded2-45d8-a6fd-14680ddff9df", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-31795", "type": "seen", "source": "https://t.me/cibsecurity/44826", "content": "\u203c CVE-2022-31795 \u203c\n\nAn issue was discovered on Fujitsu ETERNUS CentricStor CS8000 (Control Center) devices before 8.1A SP02 P04. The vulnerability resides in the grel_finfo function in grel.php. An attacker is able to influence the username (user), password (pw), and file-name (file) parameters and inject special characters such as semicolons, backticks, or command-substitution sequences in order to force the application to execute arbitrary commands.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-20T18:26:30.000000Z"}, {"uuid": "afff4a5c-8de9-4a57-bffa-9708e1e531e6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-31796", "type": "seen", "source": "https://t.me/cibsecurity/43680", "content": "\u203c CVE-2022-31796 \u203c\n\nlibjpeg 1.63 has a heap-based buffer over-read in HierarchicalBitmapRequester::FetchRegion in hierarchicalbitmaprequester.cpp because the MCU size can be different between allocation and use.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-02T18:31:53.000000Z"}, {"uuid": "f40fcb1c-556f-4865-adf7-5c0ab0b00404", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-31790", "type": "seen", "source": "https://t.me/cibsecurity/49360", "content": "\u203c CVE-2022-31790 \u203c\n\nWatchGuard Firebox and XTM appliances allow an unauthenticated remote attacker to retrieve sensitive authentication server settings by sending a malicious request to exposed authentication endpoints. This is fixed in Fireware OS 12.8.1, 12.5.10, and 12.1.4.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-06T22:19:35.000000Z"}, {"uuid": "27d40a1d-323f-40ce-97ae-09aa8cc90172", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-31790", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/6708", "content": "#exploit\nBlind Exploits to rule WatchGuard firewalls (CVE-2022-31790, CVE-2022-31789)\nhttps://www.ambionics.io/blog/hacking-watchguard-firewalls", "creation_timestamp": "2022-08-31T11:07:01.000000Z"}]}