{"vulnerability": "CVE-2023-4546", "sightings": [{"uuid": "b910f471-b0a9-49b1-b0bd-813d3c324dfd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-4546", "type": "seen", "source": "https://t.me/cibsecurity/69239", "content": "\u203c CVE-2023-4546 \u203c\n\nA vulnerability was found in Beijing Baichuo Smart S85F Management Platform up to 20230816. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /sysmanage/licence.php. The manipulation leads to improper access controls. The exploit has been disclosed to the public and may be used. The identifier VDB-238057 was assigned to this vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-26T12:14:47.000000Z"}, {"uuid": "ecfafe54-4ef2-448d-b7b5-8ebcf65f92f1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45464", "type": "seen", "source": "https://t.me/cibsecurity/72231", "content": "\u203c CVE-2023-45464 \u203c\n\nNetis N3Mv2-V1.0.1.865 was discovered to contain a buffer overflow via the servDomain parameter. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-13T16:28:57.000000Z"}, {"uuid": "081f6172-3d0b-4c8e-a201-1c18ec384f00", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45463", "type": "seen", "source": "https://t.me/cibsecurity/72244", "content": "\u203c CVE-2023-45463 \u203c\n\nNetis N3Mv2-V1.0.1.865 was discovered to contain a buffer overflow via the hostName parameter in the FUN_0040dabc function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-13T16:29:11.000000Z"}, {"uuid": "5ade6ff0-0774-472e-bd9b-0d0058823e98", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45465", "type": "seen", "source": "https://t.me/cibsecurity/72242", "content": "\u203c CVE-2023-45465 \u203c\n\nNetis N3Mv2-V1.0.1.865 was discovered to contain a command injection vulnerability via the ddnsDomainName parameter in the Dynamic DNS settings.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-13T16:29:09.000000Z"}, {"uuid": "304d3e7c-ed93-4b8b-a6c6-2fbf4ea6ba6d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45466", "type": "seen", "source": "https://t.me/cibsecurity/72241", "content": "\u203c CVE-2023-45466 \u203c\n\nNetis N3Mv2-V1.0.1.865 was discovered to contain a command injection vulnerability via the pin_host parameter in the WPS Settings.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-13T16:29:08.000000Z"}, {"uuid": "cbaf8e38-ef61-480a-b836-a393f7e61381", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45467", "type": "seen", "source": "https://t.me/cibsecurity/72240", "content": "\u203c CVE-2023-45467 \u203c\n\nNetis N3Mv2-V1.0.1.865 was discovered to contain a command injection vulnerability via the ntpServIP parameter in the Time Settings.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-13T16:29:07.000000Z"}, {"uuid": "74706d75-04fa-4caa-ae47-b57d7f6a5f5c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45468", "type": "seen", "source": "https://t.me/cibsecurity/72233", "content": "\u203c CVE-2023-45468 \u203c\n\nNetis N3Mv2-V1.0.1.865 was discovered to contain a buffer overflow via the pingWdogIp. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-13T16:28:59.000000Z"}]}