{"vulnerability": "CVE-2023-3135", "sightings": [{"uuid": "d58dc986-4589-4e4d-adb8-b514f08d2f59", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31359", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lp3e6m53nn2h", "content": "", "creation_timestamp": "2025-05-13T20:47:09.288379Z"}, {"uuid": "19021873-870f-48f9-bf67-c5424f14b694", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31352", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113987681780683357", "content": "", "creation_timestamp": "2025-02-11T22:46:32.487339Z"}, {"uuid": "0970570b-0a38-452f-9774-e9f3bbd7b11a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31352", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lhws2iel5i2a", "content": "", "creation_timestamp": "2025-02-11T23:15:41.822516Z"}, {"uuid": "2ed6b23b-4649-423d-a9da-edfabefce4e2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31352", "type": "seen", "source": "https://t.me/cvedetector/17780", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2023-31352 - AMD SEV Memory Disclosure Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2023-31352 \nPublished : Feb. 11, 2025, 11:15 p.m. | 1\u00a0hour, 7\u00a0minutes ago \nDescription : A bug in the SEV firmware may allow an attacker with privileges to read unencrypted memory, potentially resulting in loss of guest private data. \nSeverity: 6.0 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"12 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-12T01:47:32.000000Z"}, {"uuid": "dfba8d21-629d-4141-9b2c-b9132d10ec99", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31351", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3ly6vyxunuf2p", "content": "", "creation_timestamp": "2025-09-06T19:30:49.928956Z"}, {"uuid": "3a77a7d5-4fdd-4935-ab36-6f6904df418c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31359", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/16176", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-31359\n\ud83d\udd25 CVSS Score: 7.3 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: Incorrect default permissions in the AMD Manageability API could allow an attacker to achieve privilege escalation, potentially resulting in arbitrary code execution.\n\ud83d\udccf Published: 2025-05-13T17:15:44.658Z\n\ud83d\udccf Modified: 2025-05-13T17:15:44.658Z\n\ud83d\udd17 References:\n1. https://www.amd.com/en/resources/product-security/bulletin/amd-sb-9015.html", "creation_timestamp": "2025-05-13T17:31:10.000000Z"}, {"uuid": "e9f76fbd-2f9b-4d4a-83cd-f4a3c647a526", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31352", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/3962", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-31352\n\ud83d\udd25 CVSS Score: 5.4 (CVSS_V3)\n\ud83d\udd39 Description: A bug in the SEV firmware may allow an attacker with privileges to read unencrypted memory, potentially resulting in loss of guest private data.\n\ud83d\udccf Published: 2025-02-12T00:32:16Z\n\ud83d\udccf Modified: 2025-02-12T00:32:16Z\n\ud83d\udd17 References:\n1. https://nvd.nist.gov/vuln/detail/CVE-2023-31352\n2. https://www.amd.com/en/resources/product-security/bulletin/amd-sb-3009.html\n3. https://www.amd.com/en/resources/product-security/bulletin/amd-sb-5004.html", "creation_timestamp": "2025-02-12T01:10:02.000000Z"}, {"uuid": "fe42c6c0-2b4a-4d9e-a3e2-2d3391b97377", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31358", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/16177", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-31358\n\ud83d\udd25 CVSS Score: 7.3 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: A DLL hijacking vulnerability in the AMD Manageability API could allow an attacker to achieve privilege escalation, potentially resulting in arbitrary code execution.\n\ud83d\udccf Published: 2025-05-13T17:14:16.675Z\n\ud83d\udccf Modified: 2025-05-13T17:14:16.675Z\n\ud83d\udd17 References:\n1. https://www.amd.com/en/resources/product-security/bulletin/amd-sb-9015.html", "creation_timestamp": "2025-05-13T17:31:11.000000Z"}, {"uuid": "511ca145-e734-4986-a25b-8878c300c409", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31355", "type": "seen", "source": "https://t.me/cvedetector/2476", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2023-31355 - \"Xen UMC Seed Hijacking via Malicious Hypervisor\"\", \n  \"Content\": \"CVE ID : CVE-2023-31355 \nPublished : Aug. 5, 2024, 4:15 p.m. | 35\u00a0minutes ago \nDescription : Improper restriction of write operations in SNP firmware could allow a malicious hypervisor to overwrite a guest's UMC seed potentially allowing reading of memory from a decommissioned guest. \nSeverity: 6.0 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"05 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-05T18:56:00.000000Z"}, {"uuid": "00fe6ed1-c20c-44ac-a8e0-47d01b26e2ae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31358", "type": "seen", "source": "https://t.me/cvedetector/25235", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2023-31358 - AMD Manageability API DLL Hijacking Privilege Escalation Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2023-31358 \nPublished : May 13, 2025, 6:15 p.m. | 59\u00a0minutes ago \nDescription : A DLL hijacking vulnerability in the AMD Manageability API could allow an attacker to achieve privilege escalation, potentially resulting in arbitrary code execution. \nSeverity: 7.3 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"13 May 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-05-13T21:24:46.000000Z"}, {"uuid": "32316f53-26b0-40f4-a080-40d8655ed9cf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31359", "type": "seen", "source": "https://t.me/cvedetector/25234", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2023-31359 - AMD Manageability API Privilege Escalation Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2023-31359 \nPublished : May 13, 2025, 6:15 p.m. | 59\u00a0minutes ago \nDescription : Incorrect default permissions in the AMD Manageability API could allow an attacker to achieve privilege escalation, potentially resulting in arbitrary code execution. \nSeverity: 7.3 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"13 May 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-05-13T21:24:45.000000Z"}, {"uuid": "eab0fa83-4578-4d6d-a7b6-9a2cceee828e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31352", "type": "seen", "source": "Telegram/7-E6gLhdviHQBkzJ0cq2HxxbWUwArE2N35Apx2ToVRRpzank", "content": "", "creation_timestamp": "2025-02-14T10:03:16.000000Z"}, {"uuid": "c2c66ed1-fd92-44fb-ba42-87f8f7375eb8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31356", "type": "seen", "source": "https://t.me/cvedetector/3044", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2023-31356 - \"AMD SEV Firmware Memory Corruption Vulnerability\"\", \n  \"Content\": \"CVE ID : CVE-2023-31356 \nPublished : Aug. 13, 2024, 5:15 p.m. | 43\u00a0minutes ago \nDescription : Incomplete system memory cleanup in SEV firmware could  \nallow a privileged attacker to corrupt guest private memory, potentially  \nresulting in a loss of data integrity. \nSeverity: 4.4 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"13 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-13T20:28:04.000000Z"}, {"uuid": "f83c2c75-0dce-48f2-8fa5-0ec0574c9ba3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-3135", "type": "seen", "source": "https://t.me/cibsecurity/66489", "content": "\u203c CVE-2023-3135 \u203c\n\nThe Mailtree Log Mail plugin for WordPress is vulnerable to Stored Cross-Site Scripting via an email subject in versions up to, and including, 1.0.0 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-12T12:41:36.000000Z"}, {"uuid": "55a27367-e400-4309-897b-51b22898a000", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31352", "type": "seen", "source": "Telegram/HTzN83maQRKq1wZP4d7sDFxSvW6NRROQKdUGKI77X2YzVpfL", "content": "", "creation_timestamp": "2025-02-14T10:04:01.000000Z"}, {"uuid": "ac3ef8bc-818b-402c-8f8a-fea480decfff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31352", "type": "seen", "source": "Telegram/A7mLkC4p8IOUlnjcFno3L9cERMWNSgJYKtO9o9c0Yx_-Kjva", "content": "", "creation_timestamp": "2025-02-14T10:04:01.000000Z"}, {"uuid": "d799e6c1-23d8-4fe3-a733-4252dff5788e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31356", "type": "seen", "source": "Telegram/nnwr3768RLYlqD5MysqXS4iMDyLGGlpDMtwTxSS3Ryu0OPNN", "content": "", "creation_timestamp": "2025-02-14T10:04:01.000000Z"}, {"uuid": "5c55de09-98ac-492c-aede-5581a1bcb62a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31352", "type": "seen", "source": "Telegram/O9d9KfxklLJzp7NlciY2oTleqfxnbLBxg3wQDFTh7NUnXZRM", "content": "", "creation_timestamp": "2025-02-14T10:03:16.000000Z"}]}