{"vulnerability": "cve-2023-3564", "sightings": [{"uuid": "a34dc82b-0b38-468a-a9fe-54a80a93dfe6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-35647", "type": "seen", "source": "https://t.me/cibsecurity/72142", "content": "\u203c CVE-2023-35647 \u203c\n\nIn ProtocolEmbmsGlobalCellIdAdapter::Init() of protocolembmsadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with baseband firmware compromise required. User interaction is not needed for exploitation.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-12T00:17:37.000000Z"}, {"uuid": "5a6590ba-a2b6-4d9f-b0b2-5871eb0c9bdd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-35649", "type": "seen", "source": "https://t.me/cibsecurity/72160", "content": "\u203c CVE-2023-35649 \u203c\n\nIn several functions of Exynos modem files, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with System execution privileges needed. User interaction is not needed for exploitation.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-12T00:18:04.000000Z"}, {"uuid": "2901fafb-afe7-416c-8931-62bd06c1a789", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-35646", "type": "seen", "source": "https://t.me/cibsecurity/72159", "content": "\u203c CVE-2023-35646 \u203c\n\nIn TBD of TBD, there is a possible stack buffer overflow due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-12T00:18:03.000000Z"}, {"uuid": "4814f597-8b08-479d-bd44-5631b9209438", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2023-35641", "type": "seen", "source": "https://www.govcert.gov.hk/en/alerts_detail.php?id=1182", "content": "", "creation_timestamp": "2023-12-13T04:00:00.000000Z"}, {"uuid": "20c99bb1-9a50-451c-968f-c708b63306e0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-35645", "type": "seen", "source": "https://t.me/cibsecurity/72137", "content": "\u203c CVE-2023-35645 \u203c\n\nIn tbd of tbd, there is a possible memory corruption due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-11T22:17:36.000000Z"}, {"uuid": "79ffb3a1-718f-405d-a930-113158771fee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-35648", "type": "seen", "source": "https://t.me/cibsecurity/72155", "content": "\u203c CVE-2023-35648 \u203c\n\nIn ProtocolMiscLceIndAdapter::GetConfLevel() of protocolmiscadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with baseband firmware compromise required. User interaction is not needed for exploitation.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-12T00:17:56.000000Z"}, {"uuid": "106b52c7-a4eb-4b4e-b0c1-277f16aec8d6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-3564", "type": "seen", "source": "https://t.me/cibsecurity/66287", "content": "\u203c CVE-2023-3564 \u203c\n\nA vulnerability was found in GZ Scripts GZ Multi Hotel Booking System 1.8. It has been classified as problematic. Affected is an unknown function of the file /index.php. The manipulation of the argument adults/children/cal_id leads to cross site scripting. It is possible to launch the attack remotely. VDB-233358 is the identifier assigned to this vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-10T20:30:14.000000Z"}]}