{"vulnerability": "cve-2022-2589", "sightings": [{"uuid": "77308360-17ac-43d8-a08f-923c37fdcef1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25899", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/5344", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-25899\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Authentication bypass for the Open AMT Cloud Toolkit software maintained by Intel(R) before versions 2.0.2 and 2.2.2 may allow an unauthenticated user to potentially enable escalation of privilege via network access.\n\ud83d\udccf Published: 2022-08-18T19:58:14.000Z\n\ud83d\udccf Modified: 2025-02-25T17:17:23.102Z\n\ud83d\udd17 References:\n1. https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00694.html", "creation_timestamp": "2025-02-25T18:22:37.000000Z"}, {"uuid": "8b23527f-29c1-4b37-821a-5932a4b57df2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25895", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/12138", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-25895\n\ud83d\udd25 CVSS Score: 7.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P)\n\ud83d\udd39 Description: All versions of package lite-dev-server are vulnerable to Directory Traversal due to missing input sanitization and sandboxes being employed to the req.url user input that is passed to the server code.\n\ud83d\udccf Published: 2022-12-21T23:14:33.786Z\n\ud83d\udccf Modified: 2025-04-16T18:32:59.442Z\n\ud83d\udd17 References:\n1. https://security.snyk.io/vuln/SNYK-JS-LITEDEVSERVER-3153718\n2. https://github.com/shadowwzw/lite-dev-server/blob/master/src/server.js%23L134\n3. https://gist.github.com/lirantal/0f8a48c3f5ac581ce73123abe9f7f120", "creation_timestamp": "2025-04-16T18:56:17.000000Z"}, {"uuid": "74da58ae-aa69-4cc6-8831-18a029ee27fe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25892", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/15215", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-25892\n\ud83d\udd25 CVSS Score: 7.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)\n\ud83d\udd39 Description: The package muhammara before 2.6.1, from 3.0.0 and before 3.1.1; all versions of package hummus are vulnerable to Denial of Service (DoS) when supplied with a maliciously crafted PDF file to be parsed.\n\ud83d\udccf Published: 2022-11-01T00:00:00.000Z\n\ud83d\udccf Modified: 2025-05-06T19:49:28.115Z\n\ud83d\udd17 References:\n1. https://security.snyk.io/vuln/SNYK-JS-MUHAMMARA-3060320\n2. https://security.snyk.io/vuln/SNYK-JS-HUMMUS-3091138\n3. https://github.com/julianhille/MuhammaraJS/issues/214\n4. https://github.com/julianhille/MuhammaraJS/commit/1890fb555eaf171db79b73fdc3ea543bbd63c002\n5. https://github.com/galkahana/HummusJS/issues/463\n6. https://github.com/julianhille/MuhammaraJS/commit/90b278d09f16062d93a4160ef0a54d449d739c51", "creation_timestamp": "2025-05-06T20:21:19.000000Z"}, {"uuid": "ec64e0ae-51e2-4ce3-9364-230634aa7406", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25897", "type": "seen", "source": "https://t.me/cibsecurity/49440", "content": "\u203c CVE-2022-25897 \u203c\n\nThe package org.eclipse.milo:sdk-server before 0.6.8 are vulnerable to Denial of Service (DoS) when bypassing the limitations for excessive memory consumption by sending multiple CloseSession requests with the deleteSubscription parameter equal to False.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-08T12:14:59.000000Z"}, {"uuid": "c578119c-a010-4c51-856d-103f8a936161", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25895", "type": "seen", "source": "https://t.me/cibsecurity/55041", "content": "\u203c CVE-2022-25895 \u203c\n\nAll versions of package lite-dev-server are vulnerable to Directory Traversal due to missing input sanitization and sandboxes being employed to the req.url user input that is passed to the server code.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-21T07:12:45.000000Z"}, {"uuid": "547790ac-e041-49e6-932e-bf1234964117", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25893", "type": "seen", "source": "https://t.me/cibsecurity/55040", "content": "\u203c CVE-2022-25893 \u203c\n\nThe package vm2 before 3.9.10 are vulnerable to Arbitrary Code Execution due to the usage of prototype lookup for the WeakMap.prototype.set method. Exploiting this vulnerability leads to access to a host object and a sandbox compromise.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-21T07:12:44.000000Z"}, {"uuid": "2343e6ab-a729-4e86-843b-b0ca65c7a5d8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25890", "type": "seen", "source": "https://t.me/cibsecurity/56139", "content": "\u203c CVE-2022-25890 \u203c\n\nAll versions of the package wifey are vulnerable to Command Injection via the connect() function due to improper input sanitization.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-01-09T07:27:16.000000Z"}, {"uuid": "b1310c10-f204-4a1c-8d12-c30d3b79036e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25891", "type": "seen", "source": "https://t.me/cibsecurity/46373", "content": "\u203c CVE-2022-25891 \u203c\n\nThe package github.com/containrrr/shoutrrr/pkg/util before 0.6.0 are vulnerable to Denial of Service (DoS) via the util.PartitionMessage function. Exploiting this vulnerability is possible by sending exactly 2000, 4000, or 6000 characters messages.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-07-16T00:20:38.000000Z"}, {"uuid": "2449a565-34a8-4f50-b569-fd292e5ae13b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25896", "type": "seen", "source": "https://t.me/cibsecurity/45537", "content": "\u203c CVE-2022-25896 \u203c\n\nThis affects the package passport before 0.6.0. When a user logs in or logs out, the session is regenerated instead of being closed.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-07-02T00:40:08.000000Z"}, {"uuid": "a7c3b76b-7b1b-46c1-86f4-ebcb0155c316", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25898", "type": "seen", "source": "https://t.me/cibsecurity/45533", "content": "\u203c CVE-2022-25898 \u203c\n\nThe package jsrsasign before 10.5.25 are vulnerable to Improper Verification of Cryptographic Signature when JWS or JWT signature with non Base64URL encoding special characters or number escaped characters may be validated as valid by mistake. Workaround: Validate JWS or JWT signature if it has Base64URL and dot safe string before executing JWS.verify() or JWS.verifyJWT() method.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-07-02T00:40:03.000000Z"}]}