{"vulnerability": "cve-2022-3872", "sightings": [{"uuid": "89f2c266-4207-4bb8-a4a4-e852a26a5c73", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-38724", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/13789", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-38724\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Silverstripe silverstripe/framework through 4.11.0, silverstripe/assets through 1.11.0, and silverstripe/asset-admin through 1.11.0 allow XSS.\n\ud83d\udccf Published: 2022-11-22T00:00:00.000Z\n\ud83d\udccf Modified: 2025-04-29T04:34:39.080Z\n\ud83d\udd17 References:\n1. https://www.silverstripe.org/download/security-releases/\n2. https://www.silverstripe.org/blog/tag/release\n3. https://forum.silverstripe.org/c/releases\n4. https://www.silverstripe.org/download/security-releases/CVE-2022-38724", "creation_timestamp": "2025-04-29T05:11:33.000000Z"}, {"uuid": "74a33003-be9b-44cb-8ff4-4aae291a7bdf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2022-3872", "type": "seen", "source": "https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0316/", "content": "", "creation_timestamp": "2026-03-19T00:00:00.000000Z"}, {"uuid": "705e0d72-85ba-479f-a0ad-b142b95cc79a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-3872", "type": "seen", "source": "https://t.me/cibsecurity/52614", "content": "\u203c CVE-2022-3872 \u203c\n\nAn off-by-one read/write issue was found in the SDHCI device of QEMU. It occurs when reading/writing the Buffer Data Port Register in sdhci_read_dataport and sdhci_write_dataport, respectively, if data_count == block_size. A malicious guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-11-08T00:34:31.000000Z"}]}