{"vulnerability": "CVE-2023-2480", "sightings": [{"uuid": "fab6960c-807f-4209-9063-f136fb1d9050", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24804", "type": "seen", "source": "Telegram/yNx8xcOMzym-uwmk69v7zW6sw7sXyn5gg1t71GI9dnHTf28", "content": "", "creation_timestamp": "2023-02-14T09:13:20.000000Z"}, {"uuid": "a8ba2344-5c57-47f5-97d4-349cd8de6036", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24804", "type": "published-proof-of-concept", "source": "Telegram/uv1uFiDWKsOxGZBkwk8tIqSTL_hUcb07tN8YiiPHubAxEuU", "content": "", "creation_timestamp": "2023-02-27T18:37:22.000000Z"}, {"uuid": "c3bc8e67-8baf-48c9-a683-2e723d76d4f9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24807", "type": "seen", "source": "https://t.me/cibsecurity/58341", "content": "\u203c CVE-2023-24807 \u203c\n\nUndici is an HTTP/1.1 client for Node.js. Prior to version 5.19.1, the `Headers.set()` and `Headers.append()` methods are vulnerable to Regular Expression Denial of Service (ReDoS) attacks when untrusted values are passed into the functions. This is due to the inefficient regular expression used to normalize the values in the `headerValueNormalize()` utility function. This vulnerability was patched in v5.19.1. No known workarounds are available.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-16T20:12:35.000000Z"}, {"uuid": "4c63a402-addd-4f35-864a-4a82f695346f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24800", "type": "seen", "source": "Telegram/U3j_1nzLJaVjSuAFWynDxnq1XwH1ACTM7SzgpIi0EezNkQKv", "content": "", "creation_timestamp": "2025-02-14T10:08:10.000000Z"}, {"uuid": "192b3ce8-1876-4aba-8cd8-0f81ec85e34e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24800", "type": "seen", "source": "Telegram/f_lfHAL0_bFC5cY4X1DxzmLFkzpsggMZ9CRaSvxoLfQsvt_D", "content": "", "creation_timestamp": "2025-02-14T10:06:10.000000Z"}, {"uuid": "51827f50-85d5-4368-90cb-ad8e15387a1c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24805", "type": "seen", "source": "https://t.me/cibsecurity/64344", "content": "\u203c CVE-2023-24805 \u203c\n\ncups-filters contains backends, filters, and other software required to get the cups printing service working on operating systems other than macos. If you use the Backend Error Handler (beh) to create an accessible network printer, this security vulnerability can cause remote code execution. `beh.c` contains the line `retval = system(cmdline) >> 8;` which calls the `system` command with the operand `cmdline`. `cmdline` contains multiple user controlled, unsanitized values. As a result an attacker with network access to the hosted print server can exploit this vulnerability to inject system commands which are executed in the context of the running server. This issue has been addressed in commit `8f2740357` and is expected to be bundled in the next release. Users are advised to upgrade when possible and to restrict access to network printers in the meantime.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-17T22:33:02.000000Z"}, {"uuid": "a6233710-eef2-49c5-a793-e6d0d099ddf4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24800", "type": "seen", "source": "https://t.me/cibsecurity/61641", "content": "\u203c CVE-2023-24800 \u203c\n\nD-Link DIR878 DIR_878_FW120B05 was discovered to contain a stack overflow in the sub_495220 function. This vulnerability allows attackers to cause a Denial of Service (DoS) or execute arbitrary code via a crafted payload.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-07T07:27:17.000000Z"}, {"uuid": "ae21bb67-6976-4484-babe-d677c46384ca", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24808", "type": "seen", "source": "https://t.me/cibsecurity/60321", "content": "\u203c CVE-2023-28428 \u203c\n\nPDFio is a C library for reading and writing PDF files. In versions 1.1.0 and prior, a denial of service vulnerability exists in the pdfio parser. Crafted pdf files can cause the program to run at 100% utilization and never terminate. This is different from CVE-2023-24808. A patch for this issue is available in version 1.1.1.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-20T17:34:09.000000Z"}, {"uuid": "33fd23af-917d-42ec-b08c-657ab0ab7d4c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24808", "type": "published-proof-of-concept", "source": "https://t.me/cibsecurity/57641", "content": "\u203c CVE-2023-24808 \u203c\n\nPDFio is a C library for reading and writing PDF files. In versions prior to 1.1.0 a denial of service (DOS) vulnerability exists in the pdfio parser. Crafted pdf files can cause the program to run at 100% utilization and never terminate. The pdf which causes this crash found in testing is about 28kb in size and was discovered via fuzzing. Anyone who uses this library either as a standalone binary or as a library can be DOSed when attempting to parse this type of file. Web servers or other automated processes which rely on this code to turn pdf submissions into plaintext can be DOSed when an attacker uploads the pdf. Please see the linked GHSA for an example pdf. Users are advised to upgrade. There are no known workarounds for this vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-07T12:15:53.000000Z"}, {"uuid": "3c69f258-db54-4cb6-abb7-67ed1d7de411", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24804", "type": "seen", "source": "https://t.me/thebugbountyhunter/7056", "content": "SQL injection vulnerabilities in Owncloud Android app - CVE-2023-24804, CVE-2023-23948\nThe Owncloud Android app uses content providers to manage its data. The provider FileContentProvider has SQL injection vulnerabilities that allow malicious applications or users in the same device to obtain internal information of the app\nhttps://securitylab.github.com/advisories/GHSL-2022-059_GHSL-2022-060_Owncloud_Android_app/", "creation_timestamp": "2023-02-17T03:23:35.000000Z"}, {"uuid": "7c6ce900-818b-45b6-9961-183a5ef0a66f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24804", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/7828", "content": "#exploit\n1. Tips on how to write exploit scripts\nhttps://github.com/rizemon/exploit-writing-for-oswe\n\n2. Exploiting a SUID logic bug in readline\nhttps://blog.trailofbits.com/2023/02/16/suid-logic-bug-linux-readline\n\n3. CVE-2023-24804, CVE-2023-23948:\nSQL injection vulnerabilities in Owncloud Android app\nhttps://securitylab.github.com/advisories/GHSL-2022-059_GHSL-2022-060_Owncloud_Android_app", "creation_timestamp": "2023-02-26T15:28:42.000000Z"}, {"uuid": "e292a56d-0b23-44f9-bc31-f3920d24b083", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24804", "type": "seen", "source": "https://t.me/cibsecurity/58015", "content": "\u203c CVE-2023-24804 \u203c\n\nThe ownCloud Android app allows ownCloud users to access, share, and edit files and folders. Prior to version 3.0, the app has an incomplete fix for a path traversal issue and is vulnerable to two bypass methods. The bypasses may lead to information disclosure when uploading the app\u00e2\u20ac\u2122s internal files, and to arbitrary file write when uploading plain text files (although limited by the .txt extension). Version 3.0 fixes the reported bypasses.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-13T20:30:02.000000Z"}, {"uuid": "e568c6da-5e28-48c4-9aa0-d915915279d1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24804", "type": "seen", "source": "https://t.me/androidMalware/1781", "content": "SQL injection vulnerabilities in Owncloud Android app - CVE-2023-24804, CVE-2023-23948\nThe Owncloud Android app uses content providers to manage its data. The provider FileContentProvider has SQL injection vulnerabilities that allow malicious applications or users in the same device to obtain internal information of the app\nhttps://securitylab.github.com/advisories/GHSL-2022-059_GHSL-2022-060_Owncloud_Android_app/", "creation_timestamp": "2023-02-17T00:09:16.000000Z"}]}