{"vulnerability": "CVE-2023-3226", "sightings": [{"uuid": "59eea8cd-1300-48bd-9d63-876ba40ac5f6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-32266", "type": "seen", "source": "https://t.me/cvedetector/8113", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2023-32266 - OpenText ALM Quality Center Untrusted Search Path Code Inclusion Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2023-32266 \nPublished : Oct. 16, 2024, 5:15 p.m. | 26\u00a0minutes ago \nDescription : Untrusted Search Path vulnerability in OpenText\u2122 Application Lifecycle Management (ALM),Quality Center allows Code Inclusion. The vulnerability allows a user to archive a malicious DLLs on the system prior to the installation. \u00a0  \n  \nThis issue affects Application Lifecycle Management (ALM),Quality Center: 15.00, 15.01, 15.01 P1, 15.01 P2, 15.01 P3, 15.01 P4, 15.01 P5, 15.51, 15.51 P1, 15.51 P2, 15.51 P3, 16.00, 16.01 P1. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"16 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-16T19:44:29.000000Z"}, {"uuid": "77a2be78-1ec7-40c8-8e30-c820803d3e94", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-32260", "type": "seen", "source": "https://t.me/ctinow/211744", "content": "https://ift.tt/BuGLsYj\nCVE-2023-32260", "creation_timestamp": "2024-03-19T17:27:11.000000Z"}, {"uuid": "22bf3b7a-abfb-4827-b768-d142e3dada0e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-32260", "type": "seen", "source": "https://t.me/ctinow/211727", "content": "https://ift.tt/BuGLsYj\nCVE-2023-32260", "creation_timestamp": "2024-03-19T17:26:51.000000Z"}, {"uuid": "b55ffcc2-4ea0-4b7a-89f3-135345b1d294", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-32264", "type": "seen", "source": "https://t.me/ctinow/203625", "content": "https://ift.tt/JxQyT37\nCVE-2023-32264", "creation_timestamp": "2024-03-08T22:26:07.000000Z"}, {"uuid": "abda8f17-30c9-4c1c-8f27-eac6b36784d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-32264", "type": "seen", "source": "https://t.me/ctinow/203624", "content": "https://ift.tt/JxQyT37\nCVE-2023-32264", "creation_timestamp": "2024-03-08T22:26:06.000000Z"}, {"uuid": "f7cb4629-4266-41fe-ba57-d27c9ae7d56e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-32267", "type": "seen", "source": "https://t.me/cibsecurity/68371", "content": "\u203c CVE-2023-32267 \u203c\n\nA potential vulnerability has been identified in OpenText / Micro Focus ArcSight Management Center. The vulnerability could be remotely exploited.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-11T18:22:56.000000Z"}, {"uuid": "82ac90ca-cc63-4634-9fde-896d9e204df5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-32265", "type": "seen", "source": "https://t.me/cibsecurity/67037", "content": "\u203c CVE-2023-32265 \u203c\n\nA potential security vulnerability has been identified in the Enterprise Server Common Web Administration (ESCWA) component used in Enterprise Server, Enterprise Test Server, Enterprise Developer, Visual COBOL, and COBOL Server.An attacker would need to be authenticated into ESCWA to attempt to exploit this vulnerability. As described in the hardening guide in the product documentation, other mitigations including restricting network access to ESCWA and restricting users\u00c3\u00a2\u00e2\u201a\u00ac\u00e2\u201e\u00a2 permissions in the Micro Focus Directory Server also reduce the exposure to this issue.Given the right conditions this vulnerability could be exploited to expose a service account password. The account corresponding to the exposed credentials usually has limited privileges and, in many cases would only be useful for extracting details of other user accounts and similar information.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-20T18:32:48.000000Z"}, {"uuid": "b9aee79b-2d20-4ef0-a7dc-d06d6f061dd1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-32269", "type": "seen", "source": "https://t.me/cibsecurity/63386", "content": "\u203c CVE-2023-32269 \u203c\n\nAn issue was discovered in the Linux kernel before 6.1.11. In net/netrom/af_netrom.c, there is a use-after-free because accept is also allowed for a successfully connected AF_NETROM socket. However, in order for an attacker to exploit this, the system must have netrom routing configured or the attacker must have the CAP_NET_ADMIN capability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-05T20:24:36.000000Z"}]}