{"vulnerability": "cve-2023-38743", "sightings": [{"uuid": "0843f40c-0827-4533-b3ee-c0aedb172130", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38743", "type": "published-proof-of-concept", "source": "Telegram/vWAIVOeT_IzeuZIw0wF5sXcBTpojv-A8JZVrt0MMrvV-", "content": "", "creation_timestamp": "2023-10-22T23:38:20.000000Z"}, {"uuid": "44b46ab3-2a03-419f-b4bb-bc3e21ac6282", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38743", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/3217", "content": "Hackers Factory \n\nFast and customizable Firebase api and Project ID extractor .\n\nhttps://github.com/ProjectNull0/Firebase-exploit\n\n403/401 Bypass Methods + Bash Automation + Your Support \n\nhttps://github.com/Dheerajmadhukar/4-ZERO-3\n\nGCP-Pentest-Checklist - Reposting\n\nhttps://github.com/CyberSecurityUP/GCP-Pentest-Checklist\n\nOfficial repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( \u200c\u00b0 \u200c\u0296 \u200c\u00b0)...\n\nhttps://github.com/hktalent/scan4all\n\nUses a Exploit found by\u00a0@Willy-JL\u00a0and\u00a0@ECTO-1A\u00a0to crash IOS17 devices over bluetooth.\n\nhttps://github.com/RapierXbox/ESP32-Sour-Apple\n\nFind secrets and passwords in container images and file systems\n\nhttps://github.com/deepfence/SecretScanner\n\nManageEngine ADManager Command Injection\n\nhttps://github.com/PetrusViet/CVE-2023-38743\n\nCombining Sealighter with unpatched exploits to run the Threat-Intelligence ETW Provider\n\nhttps://github.com/pathtofile/SealighterTI\n\nSnoopy Command Logger is a small library that logs all program executions on your Linux/BSD system.\n\nhttps://github.com/a2o/snoopy\n\nA small and portable Windows C library for sandbox detection\n\nhttps://github.com/kargisimos/detenv\n\n\u514d\u8d39\u7684 ChatGPT \u955c\u50cf\u7f51\u7ad9\u5217\u8868\uff0c\u6301\u7eed\u66f4\u65b0\u3002List of free ChatGPT mirror sites, continuously updated\n\nhttps://github.com/LiLittleCat/awesome-free-chatgpt\n\nDocuments Exfiltration project for fun and educational purposes\n\nhttps://github.com/TheD1rkMtr/DocPlz\n\nDorks for Google, Shodan and BinaryEdge\n\nhttps://github.com/iGotRootSRC/Dorkers\n\nAwesome VirusTotal Intelligence Search Queries\n\nhttps://github.com/Neo23x0/vti-dorks\n\nTake a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more\n\nhttps://github.com/edoardottt/cariddi\n\nA lightweight tool for scraping current and historic Google Analytics data\n\nhttps://github.com/jclark1913/osint-google-analytics\n\nAthena OS is an Arch Linux-based distro focused on Cybersecurity. Learn, practice and enjoy with any hacking tool!\n\nhttps://github.com/Athena-OS/athena-iso\n\nOSINT tool to find informations about a github user (email2username, username2email, creation date\n\nhttps://github.com/hippiiee/osgint\n\nOSCP Cheatsheet \n\nhttps://github.com/0xSojalSec/OSCP-Cheatsheet\n\nThis repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multiple types such as IP, URL, CVE and Hash.\n\nhttps://github.com/Bert-JanP/Open-Source-Threat-Intel-Feeds\n\nFree web-application vulnerability and version scanner\n\nhttps://github.com/fgeek/pyfiscan\n\nKubernetes Attack Graph\n\nhttps://github.com/DataDog/KubeHound\n\n#infosec #cybersecurity #hackersfactory \n\nhttps://t.me/dilagrafie", "creation_timestamp": "2023-10-08T23:47:00.000000Z"}, {"uuid": "880afe90-bc03-4139-84a9-18cccf8992db", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38743", "type": "seen", "source": "https://t.me/cibsecurity/70231", "content": "\u203c CVE-2023-38743 \u203c\n\nZoho ManageEngine ADManager Plus before Build 7200 allows admin users to execute commands on the host machine.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-11T22:27:55.000000Z"}, {"uuid": "fc92cee0-974c-423a-801d-9aa088766d3c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38743", "type": "published-proof-of-concept", "source": "https://t.me/Rootsec_2/1252", "content": "#exploit\n1. MSIFortune - LPE with MSI Installers\nhttps://badoption.eu/blog/2023/10/03/MSIFortune.html\n\n2. CVE-2023-38743:\nManageEngine ADManager Command Injection\nhttps://github.com/PetrusViet/CVE-2023-38743\n\n3. IOS17 Crash Exploit\nhttps://github.com/RapierXbox/ESP32-Sour-Apple", "creation_timestamp": "2024-08-16T08:32:27.000000Z"}, {"uuid": "354b7531-a643-429d-a070-4a43cf5c2c5f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38743", "type": "published-proof-of-concept", "source": "https://t.me/CNArsenal/1222", "content": "https://petrusviet.medium.com/cve-2023-38743-manageengine-admanager-command-injection-6afccbb196fe", "creation_timestamp": "2023-10-05T16:38:00.000000Z"}, {"uuid": "427d9ddc-40d5-4431-9c1e-48774e930459", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38743", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/9136", "content": "#exploit\n1. MSIFortune - LPE with MSI Installers\nhttps://badoption.eu/blog/2023/10/03/MSIFortune.html\n\n2. CVE-2023-38743:\nManageEngine ADManager Command Injection\nhttps://github.com/PetrusViet/CVE-2023-38743\n\n3. IOS 17 Crash Exploit\nhttps://github.com/RapierXbox/ESP32-Sour-Apple\n\n4. CVE-2023-4911:\n\"Looney Tunables\"\nLPE in the glibc's ld*so\nhttps://www.qualys.com/2023/10/03/cve-2023-4911/looney-tunables-local-privilege-escalation-glibc-ld-so.txt\n]-> https://github.com/RickdeJager/CVE-2023-4911", "creation_timestamp": "2023-10-06T06:39:32.000000Z"}]}