{"vulnerability": "cve-2022-3157", "sightings": [{"uuid": "ef551edb-c6bf-4cf7-b341-548cd16d5fad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-3157", "type": "seen", "source": "https://t.me/cibsecurity/54786", "content": "\u203c CVE-2022-3157 \u203c\n\nA vulnerability exists in the Rockwell Automation controllers that allows a malformed CIP request to cause a major non-recoverable fault (MNRF) and a denial-of-service condition (DOS).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-17T00:24:37.000000Z"}, {"uuid": "41b231a4-23f4-4c75-ab25-a59cb2646340", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-31578", "type": "seen", "source": "https://t.me/cibsecurity/45878", "content": "\u203c CVE-2022-31578 \u203c\n\nThe piaoyunsoft/bt_lnmp repository through 2019-10-10 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-07-11T07:20:10.000000Z"}, {"uuid": "871c62ae-8113-4e5d-9b34-5cd0b71151e1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-31579", "type": "seen", "source": "https://t.me/cibsecurity/45879", "content": "\u203c CVE-2022-31579 \u203c\n\nThe ralphjzhang/iasset repository through 2022-05-04 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-07-11T07:20:11.000000Z"}, {"uuid": "76a64d21-00f0-44d1-8bce-108576f7817c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-31577", "type": "seen", "source": "https://t.me/cibsecurity/45890", "content": "\u203c CVE-2022-31577 \u203c\n\nThe longmaoteamtf/audio_aligner_app repository through 2020-01-10 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-07-11T07:20:25.000000Z"}, {"uuid": "2a776512-716b-4772-85c5-4bcc17d620f2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-31571", "type": "seen", "source": "https://t.me/cibsecurity/45874", "content": "\u203c CVE-2022-31571 \u203c\n\nThe akashtalole/python-flask-restful-api repository through 2019-09-16 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-07-11T07:20:05.000000Z"}]}