{"vulnerability": "cve-2023-2072", "sightings": [{"uuid": "0f3df9e1-0c8a-448a-9c53-1fac9e1c61c1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-20725", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/554", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-20725\n\ud83d\udd39 Description: In preloader, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07734004 / ALPS07874358 (For MT6880, MT6890, MT6980, MT6990 only); Issue ID: ALPS07734004 / ALPS07874358 (For MT6880, MT6890, MT6980, MT6990 only).\n\ud83d\udccf Published: 2023-06-06T12:12:12.278Z\n\ud83d\udccf Modified: 2025-01-07T20:13:21.695Z\n\ud83d\udd17 References:\n1. https://corp.mediatek.com/product-security-bulletin/June-2023", "creation_timestamp": "2025-01-07T20:38:45.000000Z"}, {"uuid": "653a9ea4-fba4-4f8b-89ea-bcde66c1e3d6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-20729", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/695", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-20729\n\ud83d\udd39 Description: In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07573552; Issue ID: ALPS07573575.\n\ud83d\udccf Published: 2023-06-06T12:11:09.172Z\n\ud83d\udccf Modified: 2025-01-08T15:02:21.475Z\n\ud83d\udd17 References:\n1. https://corp.mediatek.com/product-security-bulletin/June-2023", "creation_timestamp": "2025-01-08T15:12:47.000000Z"}, {"uuid": "41c50473-43c6-46fe-bd8c-aa6f6b7a3754", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-20728", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/552", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-20728\n\ud83d\udd39 Description: In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07573603; Issue ID: ALPS07573603.\n\ud83d\udccf Published: 2023-06-06T12:11:07.153Z\n\ud83d\udccf Modified: 2025-01-07T20:16:26.319Z\n\ud83d\udd17 References:\n1. https://corp.mediatek.com/product-security-bulletin/June-2023", "creation_timestamp": "2025-01-07T20:38:27.000000Z"}, {"uuid": "c9b13e75-113c-416b-bd87-c4d4ff747cba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-20722", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/2994", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-20722\n\ud83d\udd39 Description: In m4u, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07771518; Issue ID: ALPS07680084.\n\ud83d\udccf Published: 2023-05-15T00:00:00.000Z\n\ud83d\udccf Modified: 2025-01-24T18:53:13.785Z\n\ud83d\udd17 References:\n1. https://corp.mediatek.com/product-security-bulletin/May-2023", "creation_timestamp": "2025-01-24T19:05:31.000000Z"}, {"uuid": "818a2bdb-80d3-41d0-a3ef-006ed7b5e674", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2072", "type": "seen", "source": "https://t.me/cibsecurity/66390", "content": "\u203c CVE-2023-2072 \u203c\n\nThe Rockwell Automation PowerMonitor 1000 contains stored cross-site scripting vulnerabilities within the web page of the product. \u00c2\u00a0The vulnerable pages do not require privileges to access and can be injected with code by an attacker which could be used to leverage an attack on an authenticated user resulting in remote code execution and potentially the complete loss of confidentiality, integrity, and availability of the product.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-11T18:29:43.000000Z"}, {"uuid": "64d168bc-9efc-438e-9d34-42213729b44c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-20729", "type": "seen", "source": "https://t.me/arpsyndicate/2459", "content": "#ExploitObserverAlert\n\nCVE-2023-20729\n\nDESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-20729. In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07573552; Issue ID: ALPS07573575.\n\nFIRST-EPSS: 0.000420000\nNVD-IS: 3.6\nNVD-ES: 0.8", "creation_timestamp": "2024-01-04T12:55:37.000000Z"}, {"uuid": "139822ee-6bf0-4a55-b941-e23b5b8bc884", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-20724", "type": "seen", "source": "https://t.me/cibsecurity/65007", "content": "\u203c CVE-2023-20724 \u203c\n\nIn Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07843845; Issue ID: ALPS07843841.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-06-06T16:29:16.000000Z"}, {"uuid": "91e2db12-2b60-4190-ab77-d14163505f10", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-20720", "type": "seen", "source": "https://t.me/cibsecurity/64188", "content": "\u203c CVE-2023-20720 \u203c\n\nIn pqframework, there is a possible out of bounds read due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07629586; Issue ID: ALPS07629586.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-16T02:30:09.000000Z"}]}