{"vulnerability": "cve-2023-3232", "sightings": [{"uuid": "cb3557f0-0ae7-4f26-8bb9-be62d49fc191", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-32329", "type": "seen", "source": "https://t.me/ctinow/192919", "content": "https://ift.tt/KSzl84A\nCVE-2023-32329 | IBM Security Access Manager Container up to 10.0.6.1 File data authenticity (XFDB-254972)", "creation_timestamp": "2024-02-25T15:41:33.000000Z"}, {"uuid": "4d91b752-ead6-4c64-bed0-d8dc9b748505", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-32328", "type": "seen", "source": "https://t.me/ctinow/197987", "content": "https://ift.tt/6dNQhgc\nCVE-2023-32328 | IBM Security Verify Access Appliance up to 10.0.6.1 cleartext transmission (XFDB-254957)", "creation_timestamp": "2024-03-01T21:16:37.000000Z"}, {"uuid": "d49a0fae-2c73-4f6a-8e84-8c7cd0542375", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-32321", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/1563", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-32321\n\ud83d\udd39 Description: CKAN is an open-source data management system for powering data hubs and data portals. Multiple vulnerabilities have been discovered in Ckan which may lead to remote code execution. An arbitrary file write in `resource_create` and `package_update` actions, using the `ResourceUploader` object.  Also reachable via `package_create`, `package_revise`, and `package_patch` via calls to `package_update`. Remote code execution via unsafe pickle loading, via Beaker's session store when configured to use the file session store backend. Potential DOS due to lack of a length check on the resource id. Information disclosure: A user with permission to create a resource can access any other resource on the system if they know the id, even if they don't have access to it. Resource overwrite: A user with permission to create a resource can overwrite any resource if they know the id, even if they don't have access to it. A user with permissions to create or edit a dataset can upload a resource with a specially crafted id to write the uploaded file in an arbitrary location. This can be leveraged to Remote Code Execution via Beaker's insecure pickle loading. All the above listed vulnerabilities have been fixed in CKAN 2.9.9 and CKAN 2.10.1. Users are advised to upgrade. There are no known workarounds for these issues.\n\ud83d\udccf Published: 2023-05-26T22:57:00.076Z\n\ud83d\udccf Modified: 2025-01-14T19:07:12.229Z\n\ud83d\udd17 References:\n1. https://github.com/ckan/ckan/security/advisories/GHSA-446m-hmmm-hm8m\n2. https://github.com/ckan/ckan/blob/2a6080e61d5601fa0e2a0317afd6a8e9b7abf6dd/CHANGELOG.rst", "creation_timestamp": "2025-01-14T19:09:21.000000Z"}, {"uuid": "43acb2bb-9e87-49e6-9ad4-5f985d3bcb47", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-32324", "type": "seen", "source": "https://t.me/arpsyndicate/1581", "content": "#ExploitObserverAlert\n\nCVE-2023-32324\n\nDESCRIPTION: Exploit Observer has 5 entries related to CVE-2023-32324. OpenPrinting CUPS is an open source printing system. In versions 2.4.2 and prior, a heap buffer overflow vulnerability would allow a remote attacker to launch a denial of service (DoS) attack. A buffer overflow vulnerability in the function `format_log_line` could allow remote attackers to cause a DoS on the affected system. Exploitation of the vulnerability can be triggered when the configuration file `cupsd.conf` sets the value of `loglevel `to `DEBUG`. No known patches or workarounds exist at time of publication.\n\nFIRST-EPSS: 0.000680000\nNVD-IS: 3.6\nNVD-ES: 1.8", "creation_timestamp": "2023-12-10T00:01:36.000000Z"}, {"uuid": "9b32a1c3-708d-4b90-9b00-51e2e828ab04", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-32328", "type": "seen", "source": "https://t.me/ctinow/180874", "content": "https://ift.tt/EJWMSCT\nCVE-2023-32328", "creation_timestamp": "2024-02-07T18:32:14.000000Z"}, {"uuid": "14039fa4-18e2-44ca-b7a9-bc3940269d73", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-32325", "type": "seen", "source": "https://t.me/cibsecurity/64736", "content": "\u203c CVE-2023-32325 \u203c\n\nPostHog-js is a library to interface with the PostHog analytics tool. Versions prior to 1.57.2 have the potential for cross-site scripting. Problem has been patched in 1.57.2. Users are advised to upgrade. Users unable to upgrade should ensure that their Content Security Policy is in place.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-27T07:29:03.000000Z"}, {"uuid": "3437d104-2967-41fa-becc-b7fb81cfbda0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-32327", "type": "seen", "source": "https://t.me/ctinow/178354", "content": "https://ift.tt/S3xZXJK\nCVE-2023-32327", "creation_timestamp": "2024-02-03T02:26:49.000000Z"}, {"uuid": "285cbb38-7854-4733-8379-583fa2eaf8e3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-32329", "type": "seen", "source": "https://t.me/ctinow/178355", "content": "https://ift.tt/jHWuMDT\nCVE-2023-32329", "creation_timestamp": "2024-02-03T02:26:50.000000Z"}, {"uuid": "0c6289bb-218b-49d2-b07b-7c05218cc0a3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-32321", "type": "seen", "source": "https://t.me/cibsecurity/64734", "content": "\u203c CVE-2023-32321 \u203c\n\nCKAN is an open-source data management system for powering data hubs and data portals. Multiple vulnerabilities have been discovered in Ckan which may lead to remote code execution. An arbitrary file write in `resource_create` and `package_update` actions, using the `ResourceUploader` object. Also reachable via `package_create`, `package_revise`, and `package_patch` via calls to `package_update`. Remote code execution via unsafe pickle loading, via Beaker's session store when configured to use the file session store backend. Potential DOS due to lack of a length check on the resource id. Information disclosure: A user with permission to create a resource can access any other resource on the system if they know the id, even if they don't have access to it. Resource overwrite: A user with permission to create a resource can overwrite any resource if they know the id, even if they don't have access to it. A user with permissions to create or edit a dataset can upload a resource with a specially crafted id to write the uploaded file in an arbitrary location. This can be leveraged to Remote Code Execution via Beaker's insecure pickle loading. All the above listed vulnerabilities have been fixed in CKAN 2.9.9 and CKAN 2.10.1. Users are advised to upgrade. There are no known workarounds for these issues.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-27T19:29:58.000000Z"}, {"uuid": "b3c949ed-c887-49c6-8fb6-29eef5857061", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-32322", "type": "seen", "source": "https://t.me/cibsecurity/64414", "content": "\u203c CVE-2023-32322 \u203c\n\nOmbi is an open source application which allows users to request specific media from popular self-hosted streaming servers. Versions prior to 4.38.2 contain an arbitrary file read vulnerability where an Ombi administrative user may access files available to the Ombi server process on the host operating system. Ombi administrators may not always be local system administrators and so this may violate the security expectations of the system. The arbitrary file read vulnerability was present in `ReadLogFile` and `Download` endpoints in `SystemControllers.cs` as the parameter `logFileName` is not sanitized before being combined with the `Logs` directory. When using `Path.Combine(arg1, arg2, arg3)`, an attacker may be able to escape to folders/files outside of `Path.Combine(arg1, arg2)` by using \"..\" in `arg3`. In addition, by specifying an absolute path for `arg3`, `Path.Combine` will completely ignore the first two arguments and just return just `arg3`. This vulnerability can lead to information disclosure. The Ombi `documentation` suggests running Ombi as a Service with Administrator privileges. An attacker targeting such an application may be able to read the files of any Windows user on the host machine and certain system files. This issue has been addressed in commit `b8a8f029` and in release version 4.38.2. Users are advised to upgrade. There are no known workarounds for this vulnerability. This issue is also tracked as GHSL-2023-088.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-18T20:33:05.000000Z"}]}