{"vulnerability": "cve-2022-3156", "sightings": [{"uuid": "fc90237a-298b-4d41-bf9c-9b533e67993f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-31562", "type": "seen", "source": "https://t.me/cibsecurity/45875", "content": "\u203c CVE-2022-31562 \u203c\n\nThe waveyan/internshipsystem repository through 2018-05-22 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-07-11T07:20:07.000000Z"}, {"uuid": "30efd2c4-550b-40f5-b369-eca44541b1b9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-3156", "type": "seen", "source": "https://t.me/cibsecurity/55440", "content": "\u203c CVE-2022-3156 \u203c\n\nA remote code execution vulnerability exists in Rockwell Automation Studio 5000 Logix Emulate software. Users are granted elevated permissions on certain product services when the software is installed. Due to this misconfiguration, a malicious user could potentially achieve remote code execution on the targeted software.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-27T22:11:41.000000Z"}]}