{"vulnerability": "cve-2019-1934", "sightings": [{"uuid": "d7131a69-2bb3-4961-9f68-4302506d3bb5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-19343", "type": "seen", "source": "https://t.me/cibsecurity/25343", "content": "\u203c CVE-2019-19343 \u203c\n\nA flaw was found in Undertow when using Remoting as shipped in Red Hat Jboss EAP before version 7.2.4. A memory leak in HttpOpenListener due to holding remote connections indefinitely may lead to denial of service. Versions before undertow 2.0.25.SP1 and jboss-remoting 5.0.14.SP1 are believed to be vulnerable.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-03-23T23:38:31.000000Z"}, {"uuid": "9778aaf9-6baf-4bff-99e5-7e77c8649401", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-19348", "type": "seen", "source": "https://t.me/cibsecurity/10958", "content": "ATENTION\u203c New - CVE-2019-19348\n\nAn insecure modification vulnerability in the /etc/passwd file was found in the container openshift/apb-base, affecting versions before the following 4.3.5, 4.2.21, 4.1.37, and 3.11.188-4. An attacker with access to the container could use this flaw to modify /etc/passwd and escalate their privileges.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-04-03T00:58:27.000000Z"}, {"uuid": "cb58e5d9-aa41-44dc-822c-d4876ade9199", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-19346", "type": "seen", "source": "https://t.me/cibsecurity/10959", "content": "ATENTION\u203c New - CVE-2019-19346\n\nAn insecure modification vulnerability in the /etc/passwd file was found in the container openshift/mariadb-apb, affecting versions before the following 4.3.5, 4.2.21, 4.1.37, and 3.11.188-4 . An attacker with access to the container could use this flaw to modify /etc/passwd and escalate their privileges.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-04-03T00:58:28.000000Z"}]}