{"vulnerability": "cve-2023-2807", "sightings": [{"uuid": "fd2fb58c-31bd-4c5e-a21c-79f2bd5d6452", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28079", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/1176", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-28079\n\ud83d\udd39 Description: \nPowerPath for Windows, versions 7.0, 7.1 & 7.2 contains Insecure File and Folder Permissions vulnerability. A regular user (non-admin) can exploit the weak folder and file permissions to escalate privileges and execute arbitrary code in the context of NT AUTHORITY\\SYSTEM.\n\n\n\ud83d\udccf Published: 2023-05-30T15:20:17.126Z\n\ud83d\udccf Modified: 2025-01-10T16:39:13.141Z\n\ud83d\udd17 References:\n1. https://www.dell.com/support/kbdoc/en-us/000214248/dsa-2023-154-powerpath-windows-security-update-for-security-update-for-multiple-vulnerabilities", "creation_timestamp": "2025-01-10T17:04:05.000000Z"}, {"uuid": "83e9561a-2863-4c35-88c2-00f4962282bb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28072", "type": "published-proof-of-concept", "source": "https://t.me/cKure/11487", "content": "\u25a0\u25a0\u25a0\u25a0\u25a1 CVE-2023\u201328072: Local Privilege Escalation in Alienware Command Center.\n\nhttps://medium.com/@matterpreter/cve-2023-28072-local-privilege-escalation-in-alienware-command-center-a836607762ba", "creation_timestamp": "2023-09-03T06:29:21.000000Z"}, {"uuid": "b48b81b3-35ca-40a7-8897-59a114cd5c64", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28076", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/2645", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-28076\n\ud83d\udd39 Description: \nCloudLink 7.1.2 and all prior versions contain a broken or risky cryptographic algorithm vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability leading to some information disclosure.\n\n\n\ud83d\udccf Published: 2023-05-16T15:26:19.265Z\n\ud83d\udccf Modified: 2025-01-22T20:50:06.950Z\n\ud83d\udd17 References:\n1. https://www.dell.com/support/kbdoc/en-us/000212095/dsa-2023-121-dell-cloudlink-security-update-for-aes-gcm-ciphers-vulnerability", "creation_timestamp": "2025-01-22T21:02:04.000000Z"}, {"uuid": "128405ea-aec6-4c54-8b7c-123a57c8b1c3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28074", "type": "seen", "source": "https://t.me/cvedetector/2119", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2023-28074 - Dell BSAFE Crypto-C Micro Edition Buffer Over-Read Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2023-28074 \nPublished : July 31, 2024, 8:15 a.m. | 38\u00a0minutes ago \nDescription : Dell BSAFE Crypto-C Micro Edition 4.1.5 and Dell BSAFE Micro Edition Suite, versions 4.0 through 4.6.1 and version 5.0 contain a buffer over-read vulnerability. \nSeverity: 6.2 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"31 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-31T10:59:02.000000Z"}, {"uuid": "5c450dfc-3b69-49d9-9b82-43f04d186c8b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28077", "type": "seen", "source": "https://t.me/ctinow/182397", "content": "https://ift.tt/CwkKvim\nCVE-2023-28077", "creation_timestamp": "2024-02-10T04:21:40.000000Z"}, {"uuid": "553a03fb-3f95-4243-b35e-ed2731f2c57e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28078", "type": "seen", "source": "https://t.me/ctinow/185541", "content": "https://ift.tt/6DvWqds\nCVE-2023-28078", "creation_timestamp": "2024-02-15T14:26:57.000000Z"}, {"uuid": "82977336-01c2-4668-8673-e556e54652d6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28078", "type": "seen", "source": "https://t.me/ctinow/201750", "content": "https://ift.tt/PJ2pZeB\nCVE-2023-28078 | Dell SmartFabric OS10 unknown vulnerability (dsa-2023-124)", "creation_timestamp": "2024-03-06T20:21:48.000000Z"}, {"uuid": "df02a025-7f0a-4cfa-b7d6-2b2a7d0059e7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28072", "type": "seen", "source": "https://t.me/cibsecurity/69803", "content": "\u203c CVE-2023-28072 \u203c\n\nDell Alienware Command Center, versions prior to 5.5.51.0, contain a deserialization of untrusted data vulnerability. A local malicious user could potentially send specially crafted requests to the .NET Remoting server to run arbitrary code on the system.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-04T20:16:20.000000Z"}, {"uuid": "ebfe7722-1e65-4195-a709-9c27a00e3222", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28075", "type": "seen", "source": "https://t.me/cibsecurity/68696", "content": "\u203c CVE-2023-28075 \u203c\n\nDell BIOS contain a Time-of-check Time-of-use vulnerability in BIOS. A local authenticated malicious user with physical access to the system could potentially exploit this vulnerability by using a specifically timed DMA transaction during an SMI in order to gain arbitrary code execution on the system.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-17T00:36:49.000000Z"}]}