{"vulnerability": "CVE-2023-3441", "sightings": [{"uuid": "44cdc0e7-ed0f-4991-a71e-ebc186448a7e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-34410", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/737", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-34410\n\ud83d\udd39 Description: An issue was discovered in Qt before 5.15.15, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.2. Certificate validation for TLS does not always consider whether the root of a chain is a configured CA certificate.\n\ud83d\udccf Published: 2023-06-05T00:00:00\n\ud83d\udccf Modified: 2025-01-08T16:58:53.614Z\n\ud83d\udd17 References:\n1. https://codereview.qt-project.org/c/qt/qtbase/+/477560\n2. https://codereview.qt-project.org/c/qt/qtbase/+/480002\n3. https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UE3IHQZCEUFVOPWG75V2HDKXNUZBB4FX/\n4. https://lists.debian.org/debian-lts-announce/2023/08/msg00028.html", "creation_timestamp": "2025-01-08T17:13:48.000000Z"}, {"uuid": "d29effe9-41b2-4b0d-84fd-e98f5d64a417", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-34410", "type": "seen", "source": "https://gist.github.com/Darkcrai86/db9b6665c56b50a69b4fc1f0e15c6d63", "content": "", "creation_timestamp": "2025-09-29T07:58:15.000000Z"}, {"uuid": "ad740f38-dd22-46ea-a9d6-c40b9608d13e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-34410", "type": "seen", "source": "https://gist.github.com/jakirkham/b16b96bb6b20b7a5405e686931fd28cd", "content": "", "creation_timestamp": "2026-01-14T19:38:38.000000Z"}, {"uuid": "ff8cc210-1c54-46b0-ab7f-ffdeb1993d7d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-3441", "type": "seen", "source": "https://t.me/cvedetector/6741", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2023-3441 - GitLab Merge Rights Protection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2023-3441 \nPublished : Oct. 1, 2024, 10:15 a.m. | 26\u00a0minutes ago \nDescription : An issue has been discovered in GitLab EE/CE affecting all versions starting from 8.0 before 16.4. The product did not sufficiently warn about security implications of granting merge rights to protected branches. \nSeverity: 6.6 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"01 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-01T12:44:44.000000Z"}, {"uuid": "3e990f1e-6599-456b-abf5-d3d7c3442b07", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-34419", "type": "seen", "source": "https://t.me/cibsecurity/68768", "content": "\u203c CVE-2023-34419 \u203c\n\nA buffer overflow has been identified in the SetupUtility driver in some Lenovo Notebook products which may allow an attacker with local access and elevated privileges to execute arbitrary code.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-17T20:37:31.000000Z"}, {"uuid": "4d21fd3a-da02-4d98-9252-21d0055ba7ae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-34412", "type": "seen", "source": "https://t.me/cibsecurity/68758", "content": "\u203c CVE-2023-34412 \u203c\n\nA vulnerability in Red Lion Europe mbNET/mbNET.rokey and Helmholz REX 200 and REX 250 devices with firmware lower 7.3.2 allows anauthenticated remote attacker to store an arbitrary JavaScript payload on the diagnosis page of the device.That page is loaded immediately after login in to the device and runs the stored payload, allowing theattacker to read and write browser data and reduce system performance.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-17T18:37:25.000000Z"}]}