{"vulnerability": "CVE-2023-4514", "sightings": [{"uuid": "1a1afd08-cca6-40fa-acac-8be19d5a0486", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45143", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-24-319-08", "content": "", "creation_timestamp": "2024-11-14T12:00:00.000000Z"}, {"uuid": "93c62843-bf15-4b3a-9795-506a6d81a4b1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45142", "type": "seen", "source": "https://gist.github.com/cwayne18/3da2b9bf101aefc5a7f783c55023b8af", "content": "", "creation_timestamp": "2025-01-28T13:36:28.000000Z"}, {"uuid": "6049d31c-8b29-428b-adb3-206fabb3c432", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45145", "type": "seen", "source": "https://t.me/cibsecurity/72542", "content": "\u203c CVE-2023-45145 \u203c\n\nRedis is an in-memory database that persists on disk. On startup, Redis begins listening on a Unix socket before adjusting its permissions to the user-provided configuration. If a permissive umask(2) is used, this creates a race condition that enables, during a short period of time, another process to establish an otherwise unauthorized connection. This problem has existed since Redis 2.6.0-RC1. This issue has been addressed in Redis versions 7.2.2, 7.0.14 and 6.2.14. Users are advised to upgrade. For users unable to upgrade, it is possible to work around the problem by disabling Unix sockets, starting Redis with a restrictive umask, or storing the Unix socket file in a protected directory.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-19T00:33:58.000000Z"}, {"uuid": "ff19a4c5-f393-4310-89bb-f55edbe13773", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45145", "type": "seen", "source": "https://t.me/ctinow/181114", "content": "https://ift.tt/Va9dviL\nCVE-2023-45145 | Oracle Communications Cloud Native Core Network Repository Function Install/Upgrade unknown vulnerability", "creation_timestamp": "2024-02-08T03:02:10.000000Z"}, {"uuid": "951a5e1b-eced-49b7-ab7e-4d9abdc676b5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45149", "type": "seen", "source": "https://t.me/cibsecurity/72359", "content": "\u203c CVE-2023-45149 \u203c\n\nNextcloud talk is a chat module for the Nextcloud server platform. In affected versions brute force protection of public talk conversation passwords can be bypassed, as there was an endpoint validating the conversation password without registering bruteforce attempts. It is recommended that the Nextcloud Talk app is upgraded to 15.0.8, 16.0.6 or 17.1.1. There are no known workarounds for this vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-17T00:32:27.000000Z"}, {"uuid": "23fa85f2-7d2f-48f5-8cbc-533d71f3444c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45144", "type": "seen", "source": "https://t.me/cibsecurity/72345", "content": "\u203c CVE-2023-45144 \u203c\n\ncom.xwiki.identity-oauth:identity-oauth-ui is a package to aid in building identity and service providers based on OAuth authorizations. When a user logs in via the OAuth method, the identityOAuth parameters sent in the GET request is vulnerable to cross site scripting (XSS) and XWiki syntax injection. This allows remote code execution via the groovy macro and thus affects the confidentiality, integrity and availability of the whole XWiki installation. The issue has been fixed in Identity OAuth version 1.6. There are no known workarounds for this vulnerability and users are advised to upgrade.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-17T00:32:12.000000Z"}, {"uuid": "4b2b9c4d-0d7a-4a0c-95c4-6fc1b95cab04", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45143", "type": "seen", "source": "https://t.me/cibsecurity/72190", "content": "\u203c CVE-2023-45143 \u203c\n\nUndici is an HTTP/1.1 client written from scratch for Node.js. Prior to version 5.26.2, Undici already cleared Authorization headers on cross-origin redirects, but did not clear `Cookie` headers. By design, `cookie` headers are forbidden request headers, disallowing them to be set in RequestInit.headers in browser environments. Since undici handles headers more liberally than the spec, there was a disconnect from the assumptions the spec made, and undici's implementation of fetch. As such this may lead to accidental leakage of cookie to a third-party site or a malicious attacker who can control the redirection target (ie. an open redirector) to leak the cookie to the third party site. This was patched in version 5.26.2. There are no known workarounds.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-12T20:23:29.000000Z"}, {"uuid": "8f677cc6-c5ff-4a66-91d0-86577bea504e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45148", "type": "seen", "source": "https://t.me/cibsecurity/72336", "content": "\u203c CVE-2023-45148 \u203c\n\nNextcloud is an open source home cloud server. When Memcached is used as `memcache.distributed` the rate limiting in Nextcloud Server could be reset unexpectedly resetting the rate count earlier than intended. Users are advised to upgrade to versions 25.0.11, 26.0.6 or 27.1.0. Users unable to upgrade should change their config setting `memcache.distributed` to `\\OC\\Memcache\\Redis` and install Redis instead of Memcached.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-16T22:32:11.000000Z"}, {"uuid": "f394c40c-8c81-4db8-926d-c66b6ecc0fce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45142", "type": "seen", "source": "https://t.me/cibsecurity/72188", "content": "\u203c CVE-2023-45142 \u203c\n\nOpenTelemetry-Go Contrib is a collection of third-party packages for OpenTelemetry-Go. A handler wrapper out of the box adds labels `http.user_agent` and `http.method` that have unbound cardinality. It leads to the server's potential memory exhaustion when many malicious requests are sent to it. HTTP header User-Agent or HTTP method for requests can be easily set by an attacker to be random and long. The library internally uses `httpconv.ServerRequest` that records every value for HTTP `method` and `User-Agent`. In order to be affected, a program has to use the `otelhttp.NewHandler` wrapper and not filter any unknown HTTP methods or User agents on the level of CDN, LB, previous middleware, etc. Version 0.44.0 fixed this issue when the values collected for attribute `http.request.method` were changed to be restricted to a set of well-known values and other high cardinality attributes were removed. As a workaround to stop being affected, `otelhttp.WithFilter()` can be used, but it requires manual careful configuration to not log certain requests entirely. For convenience and safe usage of this library, it should by default mark with the label `unknown` non-standard HTTP methods and User agents to show that such requests were made but do not increase cardinality. In case someone wants to stay with the current behavior, library API should allow to enable it.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-12T20:23:27.000000Z"}, {"uuid": "c86f46e7-6a68-4873-8f1f-53676f5954fe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45145", "type": "seen", "source": "https://t.me/ctinow/181139", "content": "https://ift.tt/PAKZQkt\nCVE-2023-45145 | Oracle Communications Fraud Monitor 5.0/5.1 Infrastructure exposure of resource", "creation_timestamp": "2024-02-08T03:41:27.000000Z"}, {"uuid": "1c853d51-4cd2-4f64-b923-bb7807add26f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45146", "type": "seen", "source": "https://t.me/Rootsec_2/1387", "content": "#exploit\n1. CVE-2023-32439:\nApple WebKit Type Confusion Vulnerability\nhttps://www.ai.moda/en/blog/cve-2023-32439\n\n2. CVE-2023-4415:\nRuijie Network RG-EW1200G Login Bypass\nhttps://github.com/thedarknessdied/Ruijie_RG-EW1200G_login_bypass-CVE-2023-4415\n\n3. CVE-2023-45146:\nUnsafe deserialization in XXL-RPC\nhttps://securitylab.github.com/advisories/GHSL-2023-052_XXL-RPC", "creation_timestamp": "2024-08-16T08:33:58.000000Z"}, {"uuid": "764e2d50-22c0-43a2-9d7a-e1cba2d805c9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45146", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/9214", "content": "#exploit\n1. CVE-2023-32439:\nApple WebKit Type Confusion Vulnerability\nhttps://www.ai.moda/en/blog/cve-2023-32439\n\n2. CVE-2023-4415:\nRuijie Network RG-EW1200G Login Bypass\nhttps://github.com/thedarknessdied/Ruijie_RG-EW1200G_login_bypass-CVE-2023-4415\n\n3. CVE-2023-45146:\nUnsafe deserialization in XXL-RPC\nhttps://securitylab.github.com/advisories/GHSL-2023-052_XXL-RPC", "creation_timestamp": "2024-11-17T13:15:56.000000Z"}, {"uuid": "88241bb2-21d3-4a06-be1b-c1a566420419", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2023-45142", "type": "published-proof-of-concept", "source": "https://github.com/open-telemetry/opentelemetry-go-contrib/security/advisories/GHSA-rcjv-mgp8-qvmr", "content": "", "creation_timestamp": "2023-10-12T13:11:24.000000Z"}]}