{"vulnerability": "cve-2023-2934", "sightings": [{"uuid": "59f56b17-4794-42f5-b3d4-f646785a7b37", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-29344", "type": "seen", "source": "https://mastodon.social/users/claushoumann/statuses/115060417174030373", "content": "", "creation_timestamp": "2025-08-20T09:37:16.125607Z"}, {"uuid": "f3ed5701-b778-41bf-9261-225c6c3328f7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-29344", "type": "seen", "source": "https://bsky.app/profile/claushoumann.mastodon.social.ap.brid.gy/post/3lwt4w3n7xrl2", "content": "", "creation_timestamp": "2025-08-20T09:37:28.468404Z"}, {"uuid": "b577d061-73cc-4f85-b99b-8a5d77c73209", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-29348", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/11712", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-29348\n\ud83d\udd25 CVSS Score: 7.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C)\n\ud83d\udd39 Description: Windows Remote Desktop Gateway (RD Gateway) Information Disclosure Vulnerability\n\ud83d\udccf Published: 2023-10-10T17:08:07.837Z\n\ud83d\udccf Modified: 2025-04-14T22:46:49.242Z\n\ud83d\udd17 References:\n1. https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29348", "creation_timestamp": "2025-04-14T22:53:34.000000Z"}, {"uuid": "4bc49750-1d80-4998-8223-c2134568c4bd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-29343", "type": "published-proof-of-concept", "source": "https://t.me/cKure/11141", "content": "\u25a0\u25a0\u25a0\u25a0\u25a1 PoC Released for Windows SysInternals Sysmon Privilege Escalation (CVE-2023-29343) Bug.\n\nhttps://securityonline.info/poc-released-for-windows-sysinternals-sysmon-privilege-escalation-cve-2023-29343-bug/", "creation_timestamp": "2023-06-19T18:16:48.000000Z"}, {"uuid": "6912e13c-57e6-439c-86ce-3706a973a5ca", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-29343", "type": "published-proof-of-concept", "source": "https://t.me/arvinclub1/382", "content": "CVE-2023-29343\nThis is PoC for arbitrary file write bug in Sysmon version 14.14\nhttps://github.com/Wh04m1001/CVE-2023-29343", "creation_timestamp": "2023-06-18T16:50:45.000000Z"}, {"uuid": "186ba25b-b0d0-4990-a40f-d07e64734ab2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-29348", "type": "seen", "source": "https://t.me/cibsecurity/72008", "content": "\u203c CVE-2023-29348 \u203c\n\nWindows Remote Desktop Gateway (RD Gateway) Information Disclosure Vulnerability\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-10T22:17:09.000000Z"}, {"uuid": "7264a73e-2def-41ea-ba72-078f58026e35", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-29343", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/3088", "content": "Tools \ud83d\udd27 \ud83d\udd28 \ud83d\udd27  - HackersFactory\n\n\u200b\u200bCVE-2023-25610\n\nRCE vulnerability in FortiOS\n\nhttps://github.com/qi4L/CVE-2023-25610\n\n#cve #cybersecurity #infosec\n\n\u200b\u200bCVE-2023-29343\n\nThis is PoC for arbitrary file write bug in Sysmon version 14.14\n\nhttps://github.com/Wh04m1001/CVE-2023-29343\n\n#cve #cybersecurity #infosec\n\n\u200b\u200bBufferOverflowAttack\n\n\ud83d\udd10 Explores techniques to exploit and manipulate buffer overflow vulnerabilities in a program.\n\nhttps://github.com/minsooerickim/BufferOverflowAttack\n\n#infosec #pentesting #redteam\n\n\u200b\u200bScanners-Box\n\nA powerful and open-source toolkit for hackers and security automation.\n\nhttps://github.com/We5ter/Scanners-Box\n\n#infosec #pentesting #redteam\n\n\u200b\u200bCVE-2023-20178\n\nThis is PoC for Arbitrary File Delete vulnerability in Cisco Secure Client (tested on 5.0.01242) and Cisco AnyConnect (tested on 4.10.06079).\n\nhttps://github.com/Wh04m1001/CVE-2023-20178\n\n#cve #cybersecurity #infosec\n\n\u200b\u200bActive Directory Advanced Threat Hunting\n\nIdentify vulnerabilities before others do!\n\nhttps://github.com/tomwechsler/Active_Directory_Advanced_Threat_Hunting\n\n#cybersecurity #infosec #pentesting\n\n\u200b\u200bbug-bounty-standards\n\nA list of edge cases that occur in bug bounty programs, conversations on how they should be handled. The goal is to standardise the way that specific situations are handled in bug bounties.\n\nhttps://github.com/hakluke/bug-bounty-standards\n\n#cybersecurity #infosec #bugbounty\n\n\u200b\u200bWeb3Bugs\n\nDemystifying Exploitable Bugs in Smart Contracts.\n\nhttps://github.com/ZhangZhuoSJTU/Web3Bugs\n\n#cybersecurity #infosec\n\n\u200b\u200b\ud83d\udd11 Mantra\n\nA tool used to hunt down API key leaks in JS files and pages.\n\nhttps://github.com/MrEmpy/Mantra\n\n#infosec #pentesting #redteam\n\n\u200b\u200biOS Penetration Testing Cheat Sheet\n\nThis is more of a checklist for myself. May contain useful tips and tricks.\n\nhttps://github.com/ivan-sincek/ios-penetration-testing-cheat-sheet\n\nhttps://t.me/dilagrafie\n\n#cybersecurity #infosec #pentesting", "creation_timestamp": "2023-06-20T05:09:47.000000Z"}, {"uuid": "6a7bfb52-00b1-4dbf-8fb9-1ee992057f76", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-29343", "type": "published-proof-of-concept", "source": "Telegram/-thkUnJHeilGPtGjZjn7BBYpnMjXExHUk-LthgNx4uzTGA", "content": "", "creation_timestamp": "2023-06-19T21:48:35.000000Z"}, {"uuid": "396da444-ec82-4130-8f90-e28292269a36", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-29344", "type": "published-proof-of-concept", "source": "https://t.me/true_secator/5037", "content": "Zscaler \u0441\u043e\u043e\u0431\u0449\u0430\u0435\u0442, \u0447\u0442\u043e ThreatLabz \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0438\u043b\u0430 117 (!!!) \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u0432 \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u044f\u0445 Microsoft 365 \u0434\u043b\u044f Windows \u0438 Mac, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043f\u043e\u044f\u0432\u0438\u043b\u0438\u0441\u044c \u0441 \u0434\u043e\u0431\u0430\u0432\u043b\u0435\u043d\u0438\u0435\u043c 3D-\u0431\u0438\u0431\u043b\u0438\u043e\u0442\u0435\u043a\u0438 SketchUp.\n\nMicrosoft \u0437\u0430\u043f\u0443\u0441\u0442\u0438\u043b\u0430 \u043f\u043e\u0434\u0434\u0435\u0440\u0436\u043a\u0443 \u0444\u0430\u0439\u043b\u043e\u0432\u00a0SketchUp\u00a0(SKP) \u0432 \u0438\u044e\u043d\u0435 2022 \u0433\u043e\u0434\u0430, \u0434\u043e\u043f\u0443\u0441\u0442\u0438\u0432 \u043c\u043d\u043e\u0436\u0435\u0441\u0442\u0432\u043e \u043e\u0448\u0438\u0431\u043e\u043a \u0432 Microsoft 365, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u044f\u043c \u0443\u0434\u0430\u043b\u043e\u0441\u044c \u043e\u0442\u044b\u0441\u043a\u0430\u0442\u044c \u0437\u0430 \u0442\u0440\u0438 \u043c\u0435\u0441\u044f\u0446\u0430 \u0443\u0433\u043b\u0443\u0431\u043b\u0435\u043d\u043d\u044b\u0445 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u043d\u0438\u0439.\n\n\u041f\u0440\u0438\u0447\u0435\u043c \u0438\u0437\u043d\u0430\u0447\u0430\u043b\u044c\u043d\u043e \u0441\u0447\u0435\u0442 \u0431\u044b\u043b \u0432\u0441\u0435\u0433\u043e \u043b\u0438\u0448\u044c \u043d\u0430 4 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043a\u0430 SKP \u0432 Microsoft Office, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0431\u044b\u043b\u0438 \u043d\u0430\u0439\u0434\u0435\u043d\u044b \u043a \u043a\u043e\u043d\u0446\u0443 \u0434\u0435\u043a\u0430\u0431\u0440\u044f 2022 \u0433\u043e\u0434\u0430 \u0432 \u0440\u0430\u043c\u043a\u0430\u0445 Zero Day Initiative, \u043c\u043e\u0442\u0438\u0432\u0438\u0440\u043e\u0432\u0430\u0432\u0448\u0438\u043c \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u0439 ThreatLabs \u0437\u0430\u043d\u044f\u0442\u044c\u0441\u044f \u0432\u043f\u043b\u043e\u0442\u043d\u0443\u044e \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u043d\u044b\u043c \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u043e\u043c.\n\n\u0414\u043b\u044f \u043e\u0442\u0441\u043b\u0435\u0436\u0438\u0432\u0430\u043d\u0438\u044f \u044d\u0442\u0438\u0445 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 Microsoft \u043f\u0440\u0438\u0441\u0432\u043e\u0438\u043b\u0430 \u0438\u043c CVE-2023-28285, CVE-2023-29344 \u0438 CVE-2023-33146.\n\n\u041d\u0435\u0441\u043c\u043e\u0442\u0440\u044f \u043d\u0430 \u0442\u043e, \u0447\u0442\u043e Microsoft \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0430 \u043f\u0430\u0442\u0447 \u0434\u043b\u044f \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f \u043f\u0440\u043e\u0431\u043b\u0435\u043c, \u043a\u043e\u0442\u043e\u0440\u044b\u0439 ThreatLabz \u0432\u0441\u0435 \u0436\u0435 \u0443\u0434\u0430\u043b\u043e\u0441\u044c \u043e\u0431\u043e\u0439\u0442\u0438.\n\n\u041f\u043e\u0437\u0436\u0435 \u0432 \u0438\u044e\u043d\u0435 2023 \u0433\u043e\u0434\u0430 Microsoft \u0432\u0441\u0435 \u0436\u0435 \u043f\u0440\u0435\u0434\u043f\u0440\u0438\u043d\u044f\u043b\u0430 \u043c\u0435\u0440\u044b \u043f\u0440\u0435\u0434\u043e\u0441\u0442\u043e\u0440\u043e\u0436\u043d\u043e\u0441\u0442\u0438, \u0432\u0440\u0435\u043c\u0435\u043d\u043d\u043e \u043e\u0442\u043a\u043b\u044e\u0447\u0438\u0432 \u043f\u043e\u0434\u0434\u0435\u0440\u0436\u043a\u0443 SketchUp \u0432 Microsoft 365.\n\n\u0420\u0435\u0437\u0443\u043b\u044c\u0442\u0430\u0442\u044b \u0441\u0432\u043e\u0435\u0439 \u0440\u0430\u0431\u043e\u0442\u044b \u0441 \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0435\u043c \u043c\u0435\u0442\u043e\u0434\u043e\u043b\u043e\u0433\u0438\u0438 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u044f \u0438 \u0442\u0435\u0445\u043d\u0438\u0447\u0435\u0441\u043a\u0438\u043c\u0438 \u043f\u043e\u0434\u0440\u043e\u0431\u043d\u043e\u0441\u0442\u044f\u043c\u0438 \u043d\u0435\u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u0438\u0437 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 \u043e\u0431\u044a\u0435\u043c\u043d\u043e \u0438 \u0447\u0435\u0442\u043a\u043e \u0438\u0437\u043b\u043e\u0436\u0438\u043b\u0438 \u0432 \u043e\u0442\u0447\u0435\u0442\u0435, \u043f\u0435\u0440\u0432\u0430\u044f \u0447\u0430\u0441\u0442\u044c \u043a\u043e\u0442\u043e\u0440\u043e\u0433\u043e \u0443\u0436\u0435 \u0432\u044b\u0448\u043b\u0430, \u0430 \u0432\u0442\u043e\u0440\u0430\u044f - \u0441\u0442\u0430\u043d\u0435\u0442 \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u0430 \u0432 \u0431\u043b\u0438\u0436\u0430\u0439\u0448\u0435\u0435 \u0432\u0440\u0435\u043c\u044f.\n\n\u0412 \u043e\u0431\u0449\u0435\u043c \u043d\u0430\u0440\u044f\u0434\u0443 \u0441 \u0434\u0440\u0443\u0433\u0438\u043c \u043d\u0435\u043e\u0444\u0438\u0446\u0438\u0430\u043b\u044c\u043d\u044b\u043c \u043d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435\u043c \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u0430 Microsoft 364 \u043c\u043e\u0436\u043d\u043e \u0441\u043c\u0435\u043b\u043e \u0432\u0432\u043e\u0434\u0438\u0442\u044c \u0435\u0449\u0435 \u043e\u0434\u043d\u043e - Microsoft 117.", "creation_timestamp": "2023-11-01T17:15:05.000000Z"}, {"uuid": "684d0d01-a29c-487a-a297-d7221e15fbd7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-29343", "type": "published-proof-of-concept", "source": "https://t.me/crackcodes/3700", "content": "\ud83d\udda5Exploits:\n\n\ud83d\udd31CVE-2023-29343 Arbitrary file write in Sysmon version 14.14 Exploit : https://system32.ink/d/cve-2023-29343-arbitrary-file-write-in-sysmon-version-14-14-exploit/\n\n\ud83d\udd31CVE-2022-44666 jar-poc : https://system32.ink/d/cve-2022-44666-jar-poc/\n\n\ud83d\udda5Dataleaks:\n\n\ud83d\udd31Leak Safiran Airport Services Company : https://system32.ink/d/leak-safiran-airport-services-company/\n\n\ud83d\udd31Leak dashboard.bkkbn_go_id : https://system32.ink/d/leak-dashboard-bkkbn-go-id/\n\n\ud83d\udd31Leak islamicreminder_net : https://system32.ink/d/leak-islamicreminder-net/\n\n\ud83d\udd31Leak newmtcap_com_br : https://system32.ink/d/leak-newmtcap-com-br/\n\n\ud83d\udda5Tools:\n\n\ud83d\udd31Payloads All The PDFs - A list of crafted malicious PDF files : https://system32.ink/d/payloads-all-the-pdfs-a-list-of-crafted-malicious-pdf-files/", "creation_timestamp": "2023-06-19T07:58:11.000000Z"}, {"uuid": "259084f2-c984-4c72-801a-9fdb0bfa64a3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-29349", "type": "seen", "source": "https://t.me/cibsecurity/65288", "content": "\u203c CVE-2023-29349 \u203c\n\nMicrosoft ODBC and OLE DB Remote Code Execution Vulnerability\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-06-16T07:22:13.000000Z"}, {"uuid": "2a33a97e-0974-463f-9a4e-cc1ed2800416", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-29343", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/8517", "content": "#exploit\n1. CVE-2023-20178:\nArbitrary File Delete vulnerability in Cisco Secure Client/Cisco AnyConnect\nhttps://github.com/Wh04m1001/CVE-2023-20178\n\n2. CVE-2023-29343:\nArbitrary file write bug in Sysmon v.14.14\nhttps://github.com/Wh04m1001/CVE-2023-29343", "creation_timestamp": "2023-06-19T11:00:37.000000Z"}, {"uuid": "2193c1f5-7317-4dcc-862b-99c15ba5931d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-29341", "type": "seen", "source": "https://t.me/cibsecurity/63679", "content": "\u203c CVE-2023-29341 \u203c\n\nAV1 Video Extension Remote Code Execution Vulnerability\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-09T22:44:56.000000Z"}, {"uuid": "63c07476-d8d6-4d7c-813c-8ef2be59d5b3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-29343", "type": "seen", "source": "https://t.me/cibsecurity/63687", "content": "\u203c CVE-2023-29343 \u203c\n\nSysInternals Sysmon for Windows Elevation of Privilege Vulnerability\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-09T22:45:10.000000Z"}, {"uuid": "9404f31e-7239-4360-b1d9-3d322aa2f1bc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-29340", "type": "seen", "source": "https://t.me/cibsecurity/63673", "content": "\u203c CVE-2023-29340 \u203c\n\nAV1 Video Extension Remote Code Execution Vulnerability\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-09T22:44:48.000000Z"}, {"uuid": "66a91425-dd1c-4013-b571-3621d66ddedf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-29346", "type": "seen", "source": "https://t.me/cibsecurity/65222", "content": "\u203c CVE-2023-29346 \u203c\n\nNTFS Elevation of Privilege Vulnerability\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-06-14T12:13:17.000000Z"}, {"uuid": "35c38f0d-557d-43bc-bea7-a4b926977e47", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-29344", "type": "seen", "source": "https://t.me/cibsecurity/64987", "content": "\u203c CVE-2023-29344 \u203c\n\nMicrosoft Office Remote Code Execution Vulnerability\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-06-06T12:16:02.000000Z"}, {"uuid": "c61a4fd7-66e3-4cb3-8842-867bc97a7ade", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2934", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/8602", "content": "#exploit\n1. CVE-2023-2982:\nWordPress Social Login and Register (Discord, Google, Twitter, LinkedIn) &lt;=7.6.4 - Authentication Bypass\nhttps://github.com/H4K6/CVE-2023-2982-POC\n\n2. CVE-2023-2934:\nChrome Mojo Message Validation Bypass\nhttps://packetstormsecurity.com/files/173259/Chrome-Mojo-Message-Validation-Bypass.html\n\n3. CVE-2023-3439:\nLinux MCTP UaF in mctp_sendmsg\nhttps://seclists.org/oss-sec/2023/q3/0", "creation_timestamp": "2023-07-03T17:03:55.000000Z"}]}