{"vulnerability": "cve-2022-3867", "sightings": [{"uuid": "bb8d42c9-3246-4ccd-88f9-ea5fdd203f46", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-38673", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/16515", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-38673\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: In face detect driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service in kernel.\n\ud83d\udccf Published: 2022-10-14T00:00:00.000Z\n\ud83d\udccf Modified: 2025-05-15T14:21:51.112Z\n\ud83d\udd17 References:\n1. https://www.unisoc.com/en_us/secy/announcementDetail/1575654905820020738", "creation_timestamp": "2025-05-15T14:35:19.000000Z"}, {"uuid": "def4973f-a1f2-4582-b98f-486bcce0f0b2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-3867", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/14371", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-3867\n\ud83d\udd25 CVSS Score: 2.7 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N)\n\ud83d\udd39 Description: HashiCorp Nomad and Nomad Enterprise 1.4.0 up to 1.4.1 event stream subscribers using a token with TTL receive updates until token garbage is collected. Fixed in 1.4.2.\n\ud83d\udccf Published: 2022-11-10T05:45:53.550Z\n\ud83d\udccf Modified: 2025-05-01T19:04:09.365Z\n\ud83d\udd17 References:\n1. https://discuss.hashicorp.com/t/hcsec-2022-26-nomad-s-event-stream-subscriber-using-acl-token-with-ttl-receive-updates-until-garbage-collected/46168", "creation_timestamp": "2025-05-01T19:14:51.000000Z"}, {"uuid": "1b6e4f40-e02b-48c2-9851-31ce58f562f5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-38672", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/16513", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-38672\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: In face detect driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service in kernel.\n\ud83d\udccf Published: 2022-10-14T00:00:00.000Z\n\ud83d\udccf Modified: 2025-05-15T14:22:48.619Z\n\ud83d\udd17 References:\n1. https://www.unisoc.com/en_us/secy/announcementDetail/1575654905820020738", "creation_timestamp": "2025-05-15T14:35:14.000000Z"}, {"uuid": "4d7e66a2-47d9-458f-a442-1393d48c7f3a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-38677", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/16520", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-38677\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: In cell service, there is a missing permission check. This could lead to local denial of service in cell service with no additional execution privileges needed.\n\ud83d\udccf Published: 2022-10-14T00:00:00.000Z\n\ud83d\udccf Modified: 2025-05-15T14:18:06.971Z\n\ud83d\udd17 References:\n1. https://www.unisoc.com/en_us/secy/announcementDetail/1575654905820020738", "creation_timestamp": "2025-05-15T14:35:27.000000Z"}, {"uuid": "6540a50e-ce2c-4ef2-915d-4365ddfc5a69", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-38676", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/16516", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-38676\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: In gpu driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service in kernel.\n\ud83d\udccf Published: 2022-10-14T00:00:00.000Z\n\ud83d\udccf Modified: 2025-05-15T14:20:39.716Z\n\ud83d\udd17 References:\n1. https://www.unisoc.com/en_us/secy/announcementDetail/1575654905820020738", "creation_timestamp": "2025-05-15T14:35:20.000000Z"}, {"uuid": "50416aa2-afcb-434b-bc31-a5286fc991c7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-38670", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/16549", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-38670\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: In soundrecorder service, there is a missing permission check. This could lead to elevation of privilege in contacts service with no additional execution privileges needed.\n\ud83d\udccf Published: 2022-10-14T00:00:00.000Z\n\ud83d\udccf Modified: 2025-05-15T19:24:28.462Z\n\ud83d\udd17 References:\n1. https://www.unisoc.com/en_us/secy/announcementDetail/1575654905820020738", "creation_timestamp": "2025-05-15T19:33:10.000000Z"}, {"uuid": "e46f0941-2cc5-42a2-bffd-86842df25645", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-38679", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/16522", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-38679\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: In music service, there is a missing permission check. This could lead to local denial of service in music service with no additional execution privileges needed.\n\ud83d\udccf Published: 2022-10-14T00:00:00.000Z\n\ud83d\udccf Modified: 2025-05-15T14:16:44.971Z\n\ud83d\udd17 References:\n1. https://www.unisoc.com/en_us/secy/announcementDetail/1575654905820020738", "creation_timestamp": "2025-05-15T14:35:29.000000Z"}, {"uuid": "7fdf7d8f-378e-485f-8eff-039284f999ee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-38673", "type": "seen", "source": "https://t.me/cibsecurity/51494", "content": "\u203c CVE-2022-38673 \u203c\n\nIn face detect driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service in kernel.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-10-14T22:29:17.000000Z"}, {"uuid": "5d62dfa6-a08f-411e-9eeb-0904e778a109", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-38677", "type": "seen", "source": "https://t.me/cibsecurity/51492", "content": "\u203c CVE-2022-38677 \u203c\n\nIn cell service, there is a missing permission check. This could lead to local denial of service in cell service with no additional execution privileges needed.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-10-14T22:29:16.000000Z"}, {"uuid": "bde5611b-fd98-4eff-a18e-506f395a9c82", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-38671", "type": "seen", "source": "https://t.me/cibsecurity/51498", "content": "\u203c CVE-2022-38671 \u203c\n\nIn camera driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service in kernel.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-10-14T22:29:22.000000Z"}, {"uuid": "08c25dc7-81bf-4fa8-be47-d3b944069958", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-38670", "type": "seen", "source": "https://t.me/cibsecurity/51487", "content": "\u203c CVE-2022-38670 \u203c\n\nIn soundrecorder service, there is a missing permission check. This could lead to elevation of privilege in contacts service with no additional execution privileges needed.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-10-14T22:29:08.000000Z"}, {"uuid": "85518d0b-ade6-4729-a340-c25d1b97d42c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-38679", "type": "seen", "source": "https://t.me/cibsecurity/51486", "content": "\u203c CVE-2022-38679 \u203c\n\nIn music service, there is a missing permission check. This could lead to local denial of service in music service with no additional execution privileges needed.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-10-14T22:29:07.000000Z"}, {"uuid": "1efe6c9a-1c1d-4796-8d4f-78759b351a3a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-3867", "type": "seen", "source": "https://t.me/cibsecurity/52909", "content": "\u203c CVE-2022-3867 \u203c\n\nHashiCorp Nomad and Nomad Enterprise 1.4.0 up to 1.4.1 event stream subscribers using a token with TTL receive updates until token garbage is collected. Fixed in 1.4.2.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-11-13T05:49:16.000000Z"}]}