{"vulnerability": "cve-2023-2263", "sightings": [{"uuid": "b181cdf5-f366-4534-9a64-8ca248b2b8ca", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22635", "type": "seen", "source": "https://t.me/cibsecurity/61886", "content": "\u203c CVE-2023-22635 \u203c\n\nA download of code without Integrity check vulnerability [CWE-494] in FortiClientMac version 7.0.0 through 7.0.7, 6.4 all versions, 6.2 all versions, 6.0 all versions, 5.6 all versions, 5.4 all versions, 5.2 all versions, 5.0 all versions and 4.0 all versions may allow a local attacker to escalate their privileges via modifying the installer upon upgrade.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-11T20:23:24.000000Z"}, {"uuid": "12ea4bea-34b0-42db-93c5-a02fc43b907f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2263", "type": "seen", "source": "https://t.me/cibsecurity/66929", "content": "\u203c CVE-2023-2263 \u203c\n\nThe Rockwell Automation Kinetix 5700 DC Bus Power Supply Series A is vulnerable to CIP fuzzing. \u00c2\u00a0The new ENIP connections cannot be established if impacted by this vulnerability, \u00c2\u00a0which prohibits operational capabilities of the device resulting in a denial-of-service attack.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-18T20:31:06.000000Z"}, {"uuid": "94baeb71-7ad6-4b00-be15-1d5d681be578", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22637", "type": "seen", "source": "https://t.me/cibsecurity/63270", "content": "\u203c CVE-2023-22637 \u203c\n\nAn improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability [CWE-79] in FortiNAC-F version 7.2.0, FortiNAC version 9.4.2 and below, 9.2 all versions, 9.1 all versions, 8.8 all versions, 8.7 all versions in License Management would permit an authenticated attacker to trigger remote code execution via crafted licenses.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-04T02:36:38.000000Z"}, {"uuid": "a54c1a47-9828-4f0d-9866-280d68ee18cf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22633", "type": "seen", "source": "Telegram/fDJaiqIfWG2U6QNq-WVhXgbZ-at_YDJWPrXqjup2skz1jg", "content": "", "creation_timestamp": "2024-09-28T11:45:58.000000Z"}, {"uuid": "92122e41-414a-487d-b567-d17cc1815c6a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22636", "type": "seen", "source": "https://t.me/cibsecurity/58924", "content": "\u203c CVE-2023-22636 \u203c\n\nAn unauthorized configuration download vulnerability in FortiWeb 6.3.6 through 6.3.21, 6.4.0 through 6.4.2 and 7.0.0 through 7.0.4 may allow a local attacker to access confidential configuration files via a crafted http request.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-27T12:26:36.000000Z"}, {"uuid": "231dacf2-8b24-48e3-95e2-e41de7bb6f00", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22630", "type": "seen", "source": "https://t.me/cibsecurity/56875", "content": "\u203c CVE-2023-22630 \u203c\n\nIzyBat Orange casiers before 20221102_1 allows SQL Injection via a getCasier.php?taille= URI.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-01-24T00:25:14.000000Z"}]}