{"vulnerability": "cve-2023-3871", "sightings": [{"uuid": "1f642f41-b2d3-4e45-98d1-6581b30d7178", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38716", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113889329999709670", "content": "", "creation_timestamp": "2025-01-25T13:54:23.693710Z"}, {"uuid": "96906327-9926-4350-9d13-c6612f008526", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38713", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113889352357885027", "content": "", "creation_timestamp": "2025-01-25T14:00:04.724045Z"}, {"uuid": "580def85-1dee-4af1-b704-c0ca679f7299", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38714", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113889352373101988", "content": "", "creation_timestamp": "2025-01-25T14:00:04.985176Z"}, {"uuid": "b5775361-25fe-4534-b2f0-dd61e2d8287d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38713", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lglk73jjun2k", "content": "", "creation_timestamp": "2025-01-25T18:30:40.628711Z"}, {"uuid": "e67ef50e-b29f-4ee4-ac68-77c98a755732", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38716", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/3079", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-38716\n\ud83d\udd39 Description: IBM Cloud Pak System 2.3.3.6, 2.3.36 iFix1, 2.3.3.6 iFix2, 2.3.3.7, 2.3.3.7 iFix1, and 2.3.4.0 could disclose sensitive information about the system that could aid in further attacks against the system.\n\ud83d\udccf Published: 2025-01-25T13:48:45.716Z\n\ud83d\udccf Modified: 2025-01-25T13:48:45.716Z\n\ud83d\udd17 References:\n1. https://www.ibm.com/support/pages/node/7148474", "creation_timestamp": "2025-01-25T14:05:19.000000Z"}, {"uuid": "33bfa80d-1ea5-44ac-bf21-baf3a194169b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38714", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/3096", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: GHSA-qjp6-cp7g-v8xv\n\ud83d\udd25 CVSS Score: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N\n\ud83d\udd39 Description: IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.3.6 iFix1, 2.3.3.6 iFix2, 2.3.3.7, and 2.3.3.7 iFix1\u00a0could disclose sensitive information about the system that could aid in further attacks against the system.\n\ud83d\udccf Published: 2025-01-25T15:30:31Z\n\ud83d\udccf Modified: 2025-01-25T15:30:31Z\n\ud83d\udd17 References:\n1. https://nvd.nist.gov/vuln/detail/CVE-2023-38714\n2. https://www.ibm.com/support/pages/node/7159533", "creation_timestamp": "2025-01-25T17:06:09.000000Z"}, {"uuid": "daedf5f0-4653-4df0-9ede-8ed9b8aa8fee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38713", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/3094", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: GHSA-vqrh-582c-2w2r\n\ud83d\udd25 CVSS Score: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N\n\ud83d\udd39 Description: IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.3.6 iFix1, 2.3.3.6 iFix2, 2.3.3.7, and 2.3.3.7 iFix1\u00a0could disclose sensitive information about the system that could aid in further attacks against the system.\n\ud83d\udccf Published: 2025-01-25T15:30:31Z\n\ud83d\udccf Modified: 2025-01-25T15:30:31Z\n\ud83d\udd17 References:\n1. https://nvd.nist.gov/vuln/detail/CVE-2023-38713\n2. https://www.ibm.com/support/pages/node/7159533", "creation_timestamp": "2025-01-25T17:06:08.000000Z"}, {"uuid": "52cc078f-c44d-4b51-a897-c536fb72c926", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38714", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/3076", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-38714\n\ud83d\udd39 Description: IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.3.6 iFix1, 2.3.3.6 iFix2, 2.3.3.7, and 2.3.3.7 iFix1\u00a0could disclose sensitive information about the system that could aid in further attacks against the system.\n\ud83d\udccf Published: 2025-01-25T13:55:54.926Z\n\ud83d\udccf Modified: 2025-01-25T13:55:54.926Z\n\ud83d\udd17 References:\n1. https://www.ibm.com/support/pages/node/7159533", "creation_timestamp": "2025-01-25T14:05:13.000000Z"}, {"uuid": "abda36fb-6b56-47f7-95af-81a0c033ccc4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38716", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/3102", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: GHSA-c52r-r6j6-x3c5\n\ud83d\udd25 CVSS Score: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N\n\ud83d\udd39 Description: IBM Cloud Pak System 2.3.3.6, 2.3.36 iFix1, 2.3.3.6 iFix2, 2.3.3.7, 2.3.3.7 iFix1, and 2.3.4.0 could disclose sensitive information about the system that could aid in further attacks against the system.\n\ud83d\udccf Published: 2025-01-25T15:30:31Z\n\ud83d\udccf Modified: 2025-01-25T15:30:31Z\n\ud83d\udd17 References:\n1. https://nvd.nist.gov/vuln/detail/CVE-2023-38716\n2. https://www.ibm.com/support/pages/node/7148474", "creation_timestamp": "2025-01-25T17:06:20.000000Z"}, {"uuid": "a1f37613-54e2-4f36-9e34-a50d66a0c355", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38713", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/3075", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-38713\n\ud83d\udd39 Description: IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.3.6 iFix1, 2.3.3.6 iFix2, 2.3.3.7, and 2.3.3.7 iFix1\u00a0could disclose sensitive information about the system that could aid in further attacks against the system.\n\ud83d\udccf Published: 2025-01-25T13:56:16.547Z\n\ud83d\udccf Modified: 2025-01-25T13:56:16.547Z\n\ud83d\udd17 References:\n1. https://www.ibm.com/support/pages/node/7159533", "creation_timestamp": "2025-01-25T14:05:13.000000Z"}, {"uuid": "5b69f767-6732-472c-8df0-d8e1cf68bca1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38714", "type": "seen", "source": "https://t.me/cvedetector/16393", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2023-38714 - IBM Cloud Pak System Information Disclosure\", \n  \"Content\": \"CVE ID : CVE-2023-38714 \nPublished : Jan. 25, 2025, 2:15 p.m. | 1\u00a0hour, 9\u00a0minutes ago \nDescription : IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.3.6 iFix1, 2.3.3.6 iFix2, 2.3.3.7, and 2.3.3.7 iFix1\u00a0could disclose sensitive information about the system that could aid in further attacks against the system. \nSeverity: 5.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"25 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-25T17:10:11.000000Z"}, {"uuid": "a0522bd8-5bef-4b46-bf23-4f273763e4ae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38713", "type": "seen", "source": "https://t.me/cvedetector/16392", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2023-38713 - IBM Cloud Pak System Information Disclosure\", \n  \"Content\": \"CVE ID : CVE-2023-38713 \nPublished : Jan. 25, 2025, 2:15 p.m. | 1\u00a0hour, 9\u00a0minutes ago \nDescription : IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.3.6 iFix1, 2.3.3.6 iFix2, 2.3.3.7, and 2.3.3.7 iFix1\u00a0could disclose sensitive information about the system that could aid in further attacks against the system. \nSeverity: 5.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"25 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-25T17:10:10.000000Z"}, {"uuid": "af74eed3-0757-4722-8c11-04ebf344c29f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38716", "type": "seen", "source": "https://t.me/cvedetector/16394", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2023-38716 - IBM Cloud Pak Information Disclosure Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2023-38716 \nPublished : Jan. 25, 2025, 2:15 p.m. | 1\u00a0hour, 9\u00a0minutes ago \nDescription : IBM Cloud Pak System 2.3.3.6, 2.3.36 iFix1, 2.3.3.6 iFix2, 2.3.3.7, 2.3.3.7 iFix1, and 2.3.4.0 could disclose sensitive information about the system that could aid in further attacks against the system. \nSeverity: 5.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"25 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-25T17:10:12.000000Z"}, {"uuid": "a002dea7-152f-4110-b16b-74a0bec26fcc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38719", "type": "seen", "source": "https://t.me/cibsecurity/72394", "content": "\u203c CVE-2023-38719 \u203c\n\nIBM Db2 11.5 could allow a local user with special privileges to cause a denial of service during database deactivation on DPF. IBM X-Force ID: 261607.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-17T07:32:32.000000Z"}, {"uuid": "a9780c22-0ba8-4773-b66a-2565e2d46441", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38718", "type": "seen", "source": "https://t.me/cibsecurity/70853", "content": "\u203c CVE-2023-38718 \u203c\n\nIBM Robotic Process Automation 21.0.0 through 21.0.7.8 could disclose sensitive information from access to RPA scripts, workflows and related data. IBM X-Force ID: 261606.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-21T00:30:40.000000Z"}, {"uuid": "6fc0d4ca-7da6-4e4e-839d-c5c303cc0e19", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-3871", "type": "seen", "source": "https://t.me/cibsecurity/67190", "content": "\u203c CVE-2023-3871 \u203c\n\nA vulnerability classified as critical has been found in Campcodes Beauty Salon Management System 1.0. This affects an unknown part of the file /admin/edit_category.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-235233 was assigned to this vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-25T02:26:18.000000Z"}, {"uuid": "0b19b9c2-fc91-439e-8b00-2d2b0042a33b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38710", "type": "seen", "source": "https://t.me/cibsecurity/69219", "content": "\u203c CVE-2023-38710 \u203c\n\nAn issue was discovered in Libreswan before 4.12. When an IKEv2 Child SA REKEY packet contains an invalid IPsec protocol ID number of 0 or 1, an error notify INVALID_SPI is sent back. The notify payload's protocol ID is copied from the incoming packet, but the code that verifies outgoing packets fails an assertion that the protocol ID must be ESP (2) or AH(3) and causes the pluto daemon to crash and restart. NOTE: the earliest affected version is 3.20.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-26T00:14:37.000000Z"}, {"uuid": "a08eed8d-6134-4685-9f14-e502a2ea95a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38712", "type": "seen", "source": "https://t.me/cibsecurity/69216", "content": "\u203c CVE-2023-38712 \u203c\n\nAn issue was discovered in Libreswan 3.x and 4.x before 4.12. When an IKEv1 ISAKMP SA Informational Exchange packet contains a Delete/Notify payload followed by further Notifies that act on the ISAKMP SA, such as a duplicated Delete/Notify message, a NULL pointer dereference on the deleted state causes the pluto daemon to crash and restart.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-26T00:14:31.000000Z"}]}