{"vulnerability": "cve-2022-4682", "sightings": [{"uuid": "a0625129-d7e3-4d17-94b5-99a5a7cae2c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-46823", "type": "seen", "source": "https://t.me/cibsecurity/56228", "content": "\u203c CVE-2022-46823 \u203c\n\nA vulnerability has been identified in Mendix SAML (Mendix 8 compatible) (All versions &gt;= V2.3.0 &lt; V2.3.4), Mendix SAML (Mendix 9 compatible, New Track) (All versions &gt;= V3.3.0 &lt; V3.3.9), Mendix SAML (Mendix 9 compatible, Upgrade Track) (All versions &gt;= V3.3.0 &lt; V3.3.8). The affected module is vulnerable to reflected cross-site scripting (XSS) attacks. This could allow an attacker to extract sensitive information by tricking users into accessing a malicious link.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-01-10T14:28:33.000000Z"}, {"uuid": "9e5b9d1a-eb13-4256-a74b-0661b87978d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-46828", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/12950", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-46828\n\ud83d\udd25 CVSS Score: 5.2 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N)\n\ud83d\udd39 Description: In JetBrains IntelliJ IDEA before 2022.3 a DYLIB injection on macOS was possible.\n\ud83d\udccf Published: 2022-12-08T17:37:59.846Z\n\ud83d\udccf Modified: 2025-04-22T18:33:56.630Z\n\ud83d\udd17 References:\n1. https://www.jetbrains.com/privacy-security/issues-fixed/", "creation_timestamp": "2025-04-22T19:03:46.000000Z"}, {"uuid": "e2873ac5-b822-431b-bdd9-41255ea2c295", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-46829", "type": "seen", "source": "https://t.me/cibsecurity/54190", "content": "\u203c CVE-2022-46829 \u203c\n\nIn JetBrains JetBrains Gateway before 2022.3 a client could connect without a valid token if the host consented.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-08T20:12:53.000000Z"}, {"uuid": "dbb8e358-e0cf-4085-9250-152904a6fb44", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-46826", "type": "seen", "source": "https://t.me/cibsecurity/54188", "content": "\u203c CVE-2022-46826 \u203c\n\nIn JetBrains IntelliJ IDEA before 2022.3 the built-in web server allowed an arbitrary file to be read by exploiting a path traversal vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-08T20:12:51.000000Z"}, {"uuid": "323169e1-754b-4b31-9d3c-b1f5d7479963", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-46824", "type": "seen", "source": "https://t.me/cibsecurity/54187", "content": "\u203c CVE-2022-46824 \u203c\n\nIn JetBrains IntelliJ IDEA before 2022.2.4 a buffer overflow in the fsnotifier daemon on macOS was possible.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-08T20:12:50.000000Z"}, {"uuid": "70847df8-0b25-4fb6-8bbb-b33eb089ee5c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-46827", "type": "seen", "source": "https://t.me/cibsecurity/54186", "content": "\u203c CVE-2022-46827 \u203c\n\nIn JetBrains IntelliJ IDEA before 2022.3 an XXE attack leading to SSRF via requests to custom plugin repositories was possible.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-08T20:12:46.000000Z"}, {"uuid": "e637ff13-9e8d-43c3-9cb0-ff3c42edc9e4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-46828", "type": "seen", "source": "https://t.me/cibsecurity/54184", "content": "\u203c CVE-2022-46828 \u203c\n\nIn JetBrains IntelliJ IDEA before 2022.3 a DYLIB injection on macOS was possible.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-08T20:12:44.000000Z"}]}