{"vulnerability": "cve-2022-4689", "sightings": [{"uuid": "1695f1ad-50d1-490f-98c1-6dcf3e1ceaa7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-46892", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/8120", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-46892\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: In Ampere AltraMax and Ampere Altra before 2.10c, improper access controls allows the OS to reinitialize a disabled root complex.\n\ud83d\udccf Published: 2023-02-15T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-19T17:49:23.426Z\n\ud83d\udd17 References:\n1. https://amperecomputing.com/products/security-bulletins/root-complex-OS-re-enable", "creation_timestamp": "2025-03-19T18:19:42.000000Z"}, {"uuid": "95bc1be5-d075-4a2e-bf7d-4cb8d87d26f6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-46890", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/10300", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-46890\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Weak access control in NexusPHP before 1.7.33 allows a remote authenticated user to edit any post in the forum (this is caused by a lack of checks performed by the /forums.php?action=post page).\n\ud83d\udccf Published: 2023-01-19T00:00:00.000Z\n\ud83d\udccf Modified: 2025-04-03T18:08:39.464Z\n\ud83d\udd17 References:\n1. https://github.com/xiaomlove/nexusphp/releases/tag/v1.7.33\n2. https://www.surecloud.com/resources/blog/nexusphp-surecloud-security-review-identifies-authenticated-unauthenticated-vulnerabilities", "creation_timestamp": "2025-04-03T18:35:27.000000Z"}, {"uuid": "f6b5dcd9-6108-4ef8-819b-ffc55632adf9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-46899", "type": "seen", "source": "https://t.me/cibsecurity/67262", "content": "\u203c CVE-2022-46899 \u203c\n\nAn issue was discovered in Vocera Report Server and Voice Server 5.x through 5.8. There is Arbitrary File Upload. The BaseController class, that each of the service controllers derives from, allows for the upload of arbitrary files. If the HTTP request is a multipart/form-data POST request, any parameters with a filename entry will have their content written to a file in the Vocera upload-staging directory with the specified filename in the parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-26T00:27:17.000000Z"}, {"uuid": "41211b51-2423-430e-aa32-7e7b5df3feb0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-46898", "type": "seen", "source": "https://t.me/cibsecurity/67254", "content": "\u203c CVE-2022-46898 \u203c\n\nAn issue was discovered in Vocera Report Server and Voice Server 5.x through 5.8. There is Path Traversal via the \"restore SQL data\" filename. The Vocera Report Console contains a websocket function that allows for the restoration of the database from a ZIP archive that expects a SQL import file. The filename provided is not properly sanitized and allows for the inclusion of a path-traversal payload that can be used to escape the intended Vocera restoration directory. An attacker could exploit this vulnerability to point to a crafted ZIP archive that contains SQL commands that could be executed against the database.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-26T00:27:06.000000Z"}, {"uuid": "ff8f9d7c-0501-457c-acc1-f8d482282019", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-46891", "type": "seen", "source": "https://t.me/cibsecurity/56576", "content": "\u203c CVE-2022-46891 \u203c\n\nAn issue was discovered in the Arm Mali GPU Kernel Driver. There is a use-after-free. A non-privileged user can make improper GPU processing operations to gain access to already freed memory. This affects Midgard r13p0 through r32p0, Bifrost r1p0 through r40p0, and Valhall r19p0 through r40p0.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-01-17T12:25:03.000000Z"}, {"uuid": "d9a99316-2b2b-4dd6-b25b-6c8fed69afdd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-46892", "type": "seen", "source": "https://t.me/cibsecurity/58249", "content": "\u203c CVE-2022-46892 \u203c\n\nIn Ampere AltraMax and Ampere Altra before 2.10c, improper access controls allows the OS to reinitialize a disabled root complex.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-15T20:46:40.000000Z"}, {"uuid": "72c362d7-ceec-43d5-aa85-884b31239adb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-4689", "type": "seen", "source": "https://t.me/cibsecurity/55232", "content": "\u203c CVE-2022-4689 \u203c\n\nImproper Access Control in GitHub repository usememos/memos prior to 0.9.0.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-23T14:14:26.000000Z"}]}