{"vulnerability": "cve-2023-3265", "sightings": [{"uuid": "b4bf2d11-2ca8-47e2-81e0-e1ed04f99c4e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2023-32651", "type": "seen", "source": "https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0316/", "content": "", "creation_timestamp": "2026-03-19T00:00:00.000000Z"}, {"uuid": "83953a16-256a-4280-9013-c7f4e6a5a959", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-32650", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/18674", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-32650\n\ud83d\udd25 CVSS Score: 7 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: An integer overflow vulnerability exists in the FST_BL_GEOM parsing maxhandle functionality of GTKWave 3.3.115, when compiled as a 32-bit binary. A specially crafted .fst file can lead to memory corruption. A victim would need to open a malicious file to trigger this vulnerability.\n\ud83d\udccf Published: 2024-01-08T14:48:02.204Z\n\ud83d\udccf Modified: 2025-06-17T20:29:16.272Z\n\ud83d\udd17 References:\n1. https://talosintelligence.com/vulnerability_reports/TALOS-2023-1777\n2. https://lists.debian.org/debian-lts-announce/2024/04/msg00007.html", "creation_timestamp": "2025-06-17T20:40:07.000000Z"}, {"uuid": "f0fc1cca-a677-4dd6-93c5-1c9cb5fd340b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-3265", "type": "seen", "source": "https://t.me/cibsecurity/68426", "content": "\u203c CVE-2023-3265 \u203c\n\nAn authentication bypass exists on CyberPower PowerPanel Enterprise by failing to sanitize meta-characters from the username, allowing an attacker to login into the application with the default user \"cyberpower\" by appending a non-printable character.An unauthenticated attacker can leverage this vulnerability to log in to the CypberPower PowerPanel Enterprise as an administrator with hardcoded default credentials.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-14T12:19:12.000000Z"}, {"uuid": "8145a9ce-c02e-40bb-8342-e70e208bb2ef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-32650", "type": "seen", "source": "https://t.me/ctinow/173407", "content": "https://ift.tt/5Tb0nSZ\nCVE-2023-32650 | GTKWave 3.3.115 FST_BL_GEOM Parser integer overflow (TALOS-2023-1777)", "creation_timestamp": "2024-01-25T12:41:17.000000Z"}, {"uuid": "835e7fdc-5cf4-4ce5-ae23-d4adca7d2d9a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-32651", "type": "seen", "source": "https://t.me/ctinow/201286", "content": "https://ift.tt/NkL32mc\nCVE-2023-32651 | Intel PROSet/Wireless WiFi/Killer WiFi prior 22.240 denial of service (intel-sa-00947)", "creation_timestamp": "2024-03-06T12:41:26.000000Z"}, {"uuid": "412c79e6-3045-4a5a-a726-6aa57093f95d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-32650", "type": "seen", "source": "https://t.me/ctinow/165616", "content": "https://ift.tt/4jJPZuq\nCVE-2023-32650 Exploit", "creation_timestamp": "2024-01-10T08:16:35.000000Z"}, {"uuid": "5de3e9ea-491e-4c77-b184-8e2cea6d2dbc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-32657", "type": "seen", "source": "https://t.me/cibsecurity/67026", "content": "\u203c CVE-2023-32657 \u203c\n\nWeintek Weincloud v0.13.6 could allow an attacker to efficiently develop a brute force attack on credentials with authentication hints from error message responses.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-20T02:22:07.000000Z"}, {"uuid": "8b0840a5-fbaf-4ed8-a396-de71cd23a751", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-32656", "type": "seen", "source": "https://t.me/cibsecurity/68276", "content": "\u203c CVE-2023-32656 \u203c\n\nImproper buffer restrictions in some Intel(R) RealSense(TM) ID software for Intel(R) RealSense(TM) 450 FA in version 0.25.0 may allow an authenticated user to potentially enable escalation of privilege via local access.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-11T07:26:28.000000Z"}, {"uuid": "bc925df7-7b28-492e-b3f3-4431964f4e8d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-32654", "type": "seen", "source": "https://t.me/cibsecurity/67357", "content": "\u203c CVE-2023-32654 \u203c\n\nA logic issue was addressed with improved state management. This issue is fixed in macOS Ventura 13.5. A user may be able to read information belonging to another user.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-28T12:29:14.000000Z"}, {"uuid": "8105da0d-71bb-40b4-8a30-d45eb239061c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-32659", "type": "seen", "source": "https://t.me/cibsecurity/65352", "content": "\u203c CVE-2023-32659 \u203c\n\nSUBNET PowerSYSTEM Center versions 2020 U10 and prior contain a cross-site scripting vulnerability that may allow an attacker to inject malicious code into report header graphic files that could propagate out of the system and reach users who are subscribed to email notifications.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-06-20T00:25:48.000000Z"}, {"uuid": "09c145c4-f43a-439f-8214-923b84274f13", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-32652", "type": "seen", "source": "https://t.me/cibsecurity/66173", "content": "\u203c CVE-2023-32652 \u203c\n\nPiiGAB M-Bus\u00c2\u00a0does not validate identification strings before processing, which could make it vulnerable to cross-site scripting attacks.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-07T07:25:53.000000Z"}]}