{"vulnerability": "CVE-2023-2261", "sightings": [{"uuid": "59f66880-7aec-4da3-8e20-4ab5bf789fab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22613", "type": "seen", "source": "Telegram/fUAgowmz8itCRqsJe5_p2DhWN5lHpaw7opcX2anRtqvjdWkQ", "content": "", "creation_timestamp": "2025-02-14T10:04:00.000000Z"}, {"uuid": "4354f969-cdbf-4674-b922-57bcbff25c44", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22611", "type": "seen", "source": "Telegram/hePxK5jCtMku5z87bY0ueLSMzLI3F8p_5ErCdFhN_T9bQw", "content": "", "creation_timestamp": "2024-09-28T11:45:58.000000Z"}, {"uuid": "0a91db38-762f-4c7d-9bd1-f9583bab3a3f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22612", "type": "seen", "source": "Telegram/o7c6hkB3SRARBV6nm5U7yze0T9ZeKAodvZERl16p5JEg_5xw", "content": "", "creation_timestamp": "2025-02-14T10:03:11.000000Z"}, {"uuid": "733a1911-9c74-4426-9637-ee71a19e12ba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22614", "type": "seen", "source": "Telegram/eVoQmBrJjWu7SyP9kKm06VJBP2OVddXWGAzCgvjeTgduK7kc", "content": "", "creation_timestamp": "2025-02-14T10:04:00.000000Z"}, {"uuid": "2b1a6314-d010-449a-853f-0ac5362dd77e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22613", "type": "seen", "source": "https://t.me/cibsecurity/61959", "content": "\u203c CVE-2023-22613 \u203c\n\nAn issue was discovered in IhisiSmm in Insyde InsydeH2O with kernel 5.0 through 5.5. It is possible to write to an attacker-controlled address. An attacker could invoke an SMI handler with a malformed pointer in RCX that overlaps SMRAM, resulting in SMM memory corruption.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-12T02:37:43.000000Z"}, {"uuid": "6d2e4157-7e62-45c8-afe3-7a5c774a05d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22618", "type": "seen", "source": "https://t.me/cibsecurity/71572", "content": "\u203c CVE-2023-22618 \u203c\n\nIf Security Hardening guide rules are not followed, then Nokia WaveLite products allow a local user to create new users with administrative privileges by manipulating a web request. This affects (for example) WaveLite Metro 200 and Fan, WaveLite Metro 200 OPS and Fans, WaveLite Metro 200 and F2B fans, WaveLite Metro 200 OPS and F2B fans, WaveLite Metro 200 NE and F2B fans, and WaveLite Metro 200 NE OPS and F2B fans.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-04T16:12:04.000000Z"}, {"uuid": "9f8b4c15-d2b1-4b7d-901e-55bd848fc81a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22616", "type": "seen", "source": "https://t.me/cibsecurity/61970", "content": "\u203c CVE-2023-22616 \u203c\n\nAn issue was discovered in Insyde InsydeH2O with kernel 5.2 through 5.5. The Save State register is not checked before use. The IhisiSmm driver does not check the value of a save state register before use. Due to insufficient input validation, an attacker can corrupt SMRAM.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-12T16:23:41.000000Z"}, {"uuid": "ff7c06c3-9654-4675-ada9-bbdd17c09e58", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22611", "type": "seen", "source": "https://t.me/cibsecurity/57227", "content": "\u203c CVE-2023-22611 \u203c\n\nA CWE-200: Exposure of Sensitive Information to an Unauthorized Actor vulnerability exists that could cause information disclosure when specific messages are sent to the server over the database server TCP port. Affected Products: EcoStruxure\u00e2\u201e\u00a2 Geo SCADA Expert 2019, EcoStruxure\u00e2\u201e\u00a2 Geo SCADA Expert 2020, EcoStruxure\u00e2\u201e\u00a2 Geo SCADA Expert 2021 (All versions prior to October 2022), ClearSCADA (All Versions).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-01-31T20:38:29.000000Z"}, {"uuid": "4ef5910f-1c43-486c-a473-ec1201e03555", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22617", "type": "seen", "source": "https://t.me/cibsecurity/56817", "content": "\u203c CVE-2023-22617 \u203c\n\nA remote attacker might be able to cause infinite recursion in PowerDNS Recursor 4.8.0 via a DNS query that retrieves DS records for a misconfigured domain, because QName minimization is used in QM fallback mode. This is fixed in 4.8.1.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-01-21T22:23:20.000000Z"}, {"uuid": "0d1a5e34-bd3d-49e9-94cd-342ddb3f46f4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22610", "type": "seen", "source": "https://t.me/cibsecurity/57230", "content": "\u203c CVE-2023-22610 \u203c\n\nA CWE-285: Improper Authorization vulnerability exists that could cause Denial of Service against the Geo SCADA server when specific messages are sent to the server over the database server TCP port. Affected Products: EcoStruxure\u00e2\u201e\u00a2 Geo SCADA Expert 2019, EcoStruxure\u00e2\u201e\u00a2 Geo SCADA Expert 2020, EcoStruxure\u00e2\u201e\u00a2 Geo SCADA Expert 2021 (All versions prior to October 2022), ClearSCADA (All Versions).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-01-31T20:38:32.000000Z"}]}