{"vulnerability": "cve-2023-4382", "sightings": [{"uuid": "7e69901d-04c4-4f1c-a0a2-dfb636338963", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-43822", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/18540", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-43822\n\ud83d\udd25 CVSS Score: 8.8 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: A stack based buffer overflow exists in Delta Electronics Delta Industrial Automation DOPSoft when parsing the wLogTitlesTimeLen field of a DPS file. A remote, unauthenticated attacker can exploit this vulnerability by enticing a user to open a specially crafted DPS file to achieve remote code execution.\n\n\ud83d\udccf Published: 2024-01-18T21:16:25.943Z\n\ud83d\udccf Modified: 2025-06-16T19:44:40.200Z\n\ud83d\udd17 References:\n1. https://blog.exodusintel.com/2024/01/18/delta-electronics-delta-industrial-automation-dopsoft-dps-file-wlogtitlestimelen-buffer-overflow-remote-code-execution/", "creation_timestamp": "2025-06-16T20:37:28.000000Z"}, {"uuid": "f552e3d4-b0ee-4e8d-b2db-478906e9c4dc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-43821", "type": "seen", "source": "https://t.me/ctinow/183151", "content": "https://ift.tt/P9fm1EL\nCVE-2023-43821 | Delta Electronics DOPSoft up to 2.00.07.04 DPS File wLogTitlesActionLen stack-based overflow", "creation_timestamp": "2024-02-12T15:11:44.000000Z"}, {"uuid": "f652063d-6a48-446a-8166-6612aa664e64", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-43820", "type": "seen", "source": "https://t.me/ctinow/183150", "content": "https://ift.tt/C78nMPc\nCVE-2023-43820 | Delta Electronics DOPSoft up to 2.00.07.04 DPS File wLogTitlesPrevValueLen memory corruption", "creation_timestamp": "2024-02-12T15:11:43.000000Z"}, {"uuid": "d93cf879-0140-421b-8836-36cd8ed76358", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-43824", "type": "seen", "source": "https://t.me/ctinow/183154", "content": "https://ift.tt/4IOJiaQ\nCVE-2023-43824 | Delta Electronics DOPSoft up to 2.00.07.04 DPS File wTitleTextLen stack-based overflow", "creation_timestamp": "2024-02-12T15:11:47.000000Z"}, {"uuid": "ddd23c2d-70af-4c89-a96f-c8cb7cdd6023", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-43823", "type": "seen", "source": "https://t.me/ctinow/183153", "content": "https://ift.tt/Adf1ua7\nCVE-2023-43823 | Delta Electronics DOPSoft up to 2.00.07.04 DPS File wTTitleLen stack-based overflow", "creation_timestamp": "2024-02-12T15:11:46.000000Z"}, {"uuid": "bf320644-dce9-4b0d-a757-03e596856ded", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-43822", "type": "seen", "source": "https://t.me/ctinow/183152", "content": "https://ift.tt/Pfo4OdA\nCVE-2023-43822 | Delta Electronics DOPSoft up to 2.00.07.04 DPS File wLogTitlesTimeLen stack-based overflow", "creation_timestamp": "2024-02-12T15:11:45.000000Z"}, {"uuid": "746674fc-3b00-444a-95a7-7764121f867d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-43820", "type": "seen", "source": "https://t.me/ctinow/170006", "content": "https://ift.tt/Yc0DpgE\nCVE-2023-43820", "creation_timestamp": "2024-01-18T23:31:56.000000Z"}, {"uuid": "94fefb3c-ed81-45c2-881b-0abbf52d28a2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-43822", "type": "seen", "source": "https://t.me/ctinow/170008", "content": "https://ift.tt/Ggcfozv\nCVE-2023-43822", "creation_timestamp": "2024-01-18T23:31:58.000000Z"}, {"uuid": "7f035c33-c81a-4cc0-aa6c-63511ccf908a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-43821", "type": "seen", "source": "https://t.me/ctinow/170007", "content": "https://ift.tt/JipSRf8\nCVE-2023-43821", "creation_timestamp": "2024-01-18T23:31:57.000000Z"}, {"uuid": "62a13983-6da6-4090-9744-86fa5bf34e46", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-43826", "type": "seen", "source": "https://t.me/ctinow/167761", "content": "https://ift.tt/E8QibfH\nCVE-2023-43826 | Apache Guacamole up to 1.5.3 VNC integer overflow", "creation_timestamp": "2024-01-13T09:16:49.000000Z"}, {"uuid": "8429dc17-2a2c-4119-8d4d-28836024b7cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-4382", "type": "seen", "source": "https://t.me/cibsecurity/68699", "content": "\u203c CVE-2023-4382 \u203c\n\nA vulnerability, which was classified as problematic, has been found in tdevs Hyip Rio 2.1. Affected by this issue is some unknown functionality of the file /user/settings of the component Profile Settings. The manipulation of the argument avatar leads to cross site scripting. The attack may be launched remotely. VDB-237314 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-17T00:36:52.000000Z"}]}