{"vulnerability": "cve-2023-2145", "sightings": [{"uuid": "603c088b-3e6a-4c36-b83e-0802de841fce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21459", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/5592", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-21459\n\ud83d\udd25 CVSS Score: 5 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L)\n\ud83d\udd39 Description: Use after free vulnerability in decon driver prior to SMR Mar-2023 Release 1 allows attackers to cause memory access fault.\n\ud83d\udccf Published: 2023-03-16T00:00:00.000Z\n\ud83d\udccf Modified: 2025-02-26T20:13:58.066Z\n\ud83d\udd17 References:\n1. https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=03", "creation_timestamp": "2025-02-26T20:24:44.000000Z"}, {"uuid": "525c12ae-5179-44c8-9ce6-b654124f468f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21452", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/5622", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-21452\n\ud83d\udd25 CVSS Score: 3.3 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N)\n\ud83d\udd39 Description: Improper usage of implicit intent in Bluetooth prior to SMR Mar-2023 Release 1 allows attacker to get MAC address of connected device.\n\ud83d\udccf Published: 2023-03-16T00:00:00.000Z\n\ud83d\udccf Modified: 2025-02-26T21:01:16.054Z\n\ud83d\udd17 References:\n1. https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=03", "creation_timestamp": "2025-02-26T21:25:40.000000Z"}, {"uuid": "8d3afd71-fc18-4b9c-af14-9d85f6a291e0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21453", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/5623", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-21453\n\ud83d\udd25 CVSS Score: 6 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N)\n\ud83d\udd39 Description: Improper input validation vulnerability in SoftSim TA prior to SMR Mar-2023 Release 1 allows local attackers access to protected data.\n\ud83d\udccf Published: 2023-03-16T00:00:00.000Z\n\ud83d\udccf Modified: 2025-02-26T21:00:46.101Z\n\ud83d\udd17 References:\n1. https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=03", "creation_timestamp": "2025-02-26T21:25:41.000000Z"}, {"uuid": "080f462a-d5dc-40d0-8540-baaaade5723a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21457", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/5534", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-21457\n\ud83d\udd25 CVSS Score: 4.1 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:C/C:N/I:L/A:L)\n\ud83d\udd39 Description: Improper access control vulnerability in Bluetooth prior to SMR Mar-2023 Release 1 allows attackers to send file via Bluetooth without related permission.\n\ud83d\udccf Published: 2023-03-16T00:00:00.000Z\n\ud83d\udccf Modified: 2025-02-26T15:55:25.668Z\n\ud83d\udd17 References:\n1. https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=03", "creation_timestamp": "2025-02-26T16:24:32.000000Z"}, {"uuid": "196fd2fd-7125-494a-a2b8-b88b87c0bdd3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21450", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/8517", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-21450\n\ud83d\udd25 CVSS Score: 2.3 (cvssV3_1, Vector: CVSS:3.1/AV:P/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:N)\n\ud83d\udd39 Description: Missing Authorization vulnerability in One Hand Operation + prior to version 6.1.21 allows multi-users to access owner's widget without authorization via gesture setting.\n\ud83d\udccf Published: 2023-02-09T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-24T19:05:04.032Z\n\ud83d\udd17 References:\n1. https://security.samsungmobile.com/serviceWeb.smsb?year=2023&month=02", "creation_timestamp": "2025-03-24T19:23:31.000000Z"}, {"uuid": "a7d8b4f0-4a37-4963-b6f4-ad3e020472e0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2145", "type": "seen", "source": "https://t.me/cibsecurity/62340", "content": "\u203c CVE-2023-2145 \u203c\n\nA vulnerability was found in Campcodes Online Thesis Archiving System 1.0. It has been classified as critical. Affected is an unknown function of the file projects_per_curriculum.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-226266 is the identifier assigned to this vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-18T14:29:02.000000Z"}, {"uuid": "d591aa60-0309-4af6-b4fd-c8a0ee75ddd5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21451", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/8518", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-21451\n\ud83d\udd25 CVSS Score: 6.7 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:L/A:L)\n\ud83d\udd39 Description: A Stack-based overflow vulnerability in IpcRxEmbmsSessionList in SECRIL prior to Android S(12) allows attacker to cause memory corruptions.\n\ud83d\udccf Published: 2023-02-09T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-24T19:04:34.228Z\n\ud83d\udd17 References:\n1. https://security.samsungmobile.com/serviceWeb.smsb?year=2022&month=04", "creation_timestamp": "2025-03-24T19:23:32.000000Z"}, {"uuid": "96372acc-2c0d-42a9-b994-1a03d23acf77", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21457", "type": "seen", "source": "https://t.me/cibsecurity/60199", "content": "\u203c CVE-2023-21457 \u203c\n\nImproper access control vulnerability in Bluetooth prior to SMR Mar-2023 Release 1 allows attackers to send file via Bluetooth without related permission.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-16T23:30:56.000000Z"}, {"uuid": "d7a550cd-ec83-4588-a106-3073054c1828", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21452", "type": "seen", "source": "https://t.me/cibsecurity/60212", "content": "\u203c CVE-2023-21452 \u203c\n\nImproper usage of implicit intent in Bluetooth prior to SMR Mar-2023 Release 1 allows attacker to get MAC address of connected device.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-16T23:31:14.000000Z"}, {"uuid": "c9e595c2-6225-4f03-8e0d-859aa8ca61f2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21454", "type": "seen", "source": "https://t.me/cibsecurity/60207", "content": "\u203c CVE-2023-21454 \u203c\n\nImproper authorization in Samsung Keyboard prior to SMR Mar-2023 Release 1 allows physical attacker to access users text history on the lockscreen.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-16T23:31:06.000000Z"}, {"uuid": "21eb0083-6267-4ce9-891d-6b8f2320b72d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21458", "type": "seen", "source": "https://t.me/cibsecurity/60218", "content": "\u203c CVE-2023-21458 \u203c\n\nImproper privilege management vulnerability in PhoneStatusBarPolicy in System UI prior to SMR Mar-2023 Release 1 allows attacker to turn off Do not disturb via unprotected intent.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-16T23:36:58.000000Z"}]}