{"vulnerability": "cve-2023-2575", "sightings": [{"uuid": "3ee3628b-3e95-4977-b96e-8bf3ebed32d7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-25758", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/8264", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-25758\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Onekey Touch devices through 4.0.0 and Onekey Mini devices through 2.10.0 allow man-in-the-middle attackers to obtain the seed phase. The man-in-the-middle access can only be obtained after disassembling a device (i.e., here, \"man-in-the-middle\" does not refer to the attacker's position on an IP network). NOTE: the vendor states that \"our hardware team has updated the security patch without anyone being affected.\"\n\ud83d\udccf Published: 2023-02-14T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-20T19:07:00.346Z\n\ud83d\udd17 References:\n1. https://github.com/OneKeyHQ/firmware\n2. https://blog.onekey.so/our-response-to-recent-security-fix-reports-13914fea8afd\n3. https://fortune.com/crypto/2023/02/09/cyber-firm-cracks-onekey-crypto-wallets-in-video-raises-questions-hardware-security/amp/", "creation_timestamp": "2025-03-20T19:18:27.000000Z"}, {"uuid": "c6eb6620-356b-4e03-b477-339fdc6f1ad0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-25759", "type": "seen", "source": "Telegram/zAfRbQ0NcidJBgJwoofbf0-05J--fDcwRSieI3AnlBPOLl9_", "content": "", "creation_timestamp": "2025-02-06T02:44:19.000000Z"}, {"uuid": "28063914-aeca-432e-8981-1be232d1aba9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-25759", "type": "seen", "source": "https://t.me/cibsecurity/62463", "content": "\u203c CVE-2023-25759 \u203c\n\nOS Command Injection in TripleData Reporting Engine in Tripleplay Platform releases prior to Caveman 3.4.0 allows authenticated users to run unprivileged OS level commands via a crafted request payload.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-19T16:30:03.000000Z"}, {"uuid": "c00fa17d-28d8-4c85-b91e-962b1cfd8c94", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-25750", "type": "seen", "source": "https://t.me/cibsecurity/64916", "content": "\u203c CVE-2023-25750 \u203c\n\nUnder certain circumstances, a ServiceWorker's offline cache may have leaked to the file system when using private browsing mode. This vulnerability affects Firefox < 111.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-06-02T20:39:30.000000Z"}, {"uuid": "9dbc9e18-6ee0-4c2c-87c5-8099bf16de5b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-25752", "type": "seen", "source": "https://t.me/cibsecurity/64900", "content": "\u203c CVE-2023-25752 \u203c\n\nWhen accessing throttled streams, the count of available bytes needed to be checked in the calling function to be within bounds. This may have lead future code to be incorrect and vulnerable. This vulnerability affects Firefox < 111, Firefox ESR < 102.9, and Thunderbird < 102.9.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-06-02T20:36:31.000000Z"}, {"uuid": "c5071a67-d6c3-427d-8a18-d878e0aab93c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-25751", "type": "seen", "source": "https://t.me/cibsecurity/64897", "content": "\u203c CVE-2023-25751 \u203c\n\nSometimes, when invalidating JIT code while following an iterator, the newly generated code could be overwritten incorrectly. This could lead to a potentially exploitable crash. This vulnerability affects Firefox < 111, Firefox ESR < 102.9, and Thunderbird < 102.9.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-06-02T20:36:23.000000Z"}, {"uuid": "f29c5c1d-238c-4aa9-9021-59963df9dbd3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-25754", "type": "seen", "source": "https://t.me/cibsecurity/63420", "content": "\u203c CVE-2023-25754 \u203c\n\nPrivilege Context Switching Error vulnerability in Apache Software Foundation Apache Airflow.This issue affects Apache Airflow: before 2.6.0.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-08T16:51:21.000000Z"}, {"uuid": "b7ea9bf6-74d3-42ce-ab11-861a47757575", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2575", "type": "seen", "source": "https://t.me/cibsecurity/63417", "content": "\u203c CVE-2023-2575 \u203c\n\nAdvantech EKI-1524, EKI-1522, EKI-1521 devices through 1.21 are affected by a\u00c2\u00a0Stack-based Buffer Overflow vulnerability, which can be triggered by authenticated\u00c2\u00a0users via a crafted POST request.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-08T16:48:16.000000Z"}]}