{"vulnerability": "cve-2023-4958", "sightings": [{"uuid": "687163d5-0123-446a-962b-3fb7d5e99c4a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49584", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/17482", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-49584\n\ud83d\udd25 CVSS Score: 4.3 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N)\n\ud83d\udd39 Description: SAP Fiori launchpad - versions SAP_UI 750, SAP_UI 754, SAP_UI 755, SAP_UI 756, SAP_UI 757, SAP_UI 758, UI_700 200, SAP_BASIS 793, allows an attacker to use HTTP verb POST on read-only service causing low impact on Confidentiality of the application.\n\n\n\ud83d\udccf Published: 2023-12-12T01:35:22.515Z\n\ud83d\udccf Modified: 2025-05-24T10:27:48.125Z\n\ud83d\udd17 References:\n1. https://me.sap.com/notes/3406786\n2. https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html", "creation_timestamp": "2025-05-24T10:44:58.000000Z"}, {"uuid": "10853fba-d0b4-479f-b155-3dce35832b11", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49582", "type": "seen", "source": "https://t.me/cvedetector/4146", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2023-49582 - Apache Portable Runtime (APR) Unix Privilege Escalation and Information Leak Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2023-49582 \nPublished : Aug. 26, 2024, 2:15 p.m. | 35\u00a0minutes ago \nDescription : Lax permissions set by the Apache Portable Runtime library on Unix platforms would allow local users read access to named shared memory segments, potentially revealing sensitive application data.   \n  \nThis issue does not affect non-Unix platforms, or builds with\u00a0APR_USE_SHMEM_SHMGET=1 (apr.h)  \n  \nUsers are recommended to upgrade to APR version 1.7.5, which fixes this issue. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"26 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-26T17:04:16.000000Z"}, {"uuid": "3e2b0c98-77e5-4228-9c88-51ce1d5873b3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49581", "type": "seen", "source": "https://t.me/ctinow/161340", "content": "https://ift.tt/ohcsTDF\nCVE-2023-49581 | SAP NetWeaver Application Server ABAP and ABAP Platform GUI access control", "creation_timestamp": "2024-01-01T15:36:43.000000Z"}, {"uuid": "013d29b1-acab-472f-bbf7-0432169fa644", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49589", "type": "seen", "source": "https://t.me/ctinow/174932", "content": "https://ift.tt/2LQIlkT\nCVE-2023-49589 | WWBN AVideo 15fed957fb HTTP Request userRecoverPass.php password recovery (TALOS-2023-1896)", "creation_timestamp": "2024-01-28T13:26:36.000000Z"}, {"uuid": "590fba7e-2eea-458d-b557-36dbe145d91a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49583", "type": "seen", "source": "https://t.me/ctinow/161585", "content": "https://ift.tt/4hw80YZ\nCVE-2023-49583 | SAP xssec up to 3.5.x authorization", "creation_timestamp": "2024-01-02T09:06:35.000000Z"}, {"uuid": "5af13a6d-aff9-4d3f-9c01-7e3765efecc7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49589", "type": "seen", "source": "https://t.me/ctinow/165986", "content": "https://ift.tt/Rtm9EN4\nCVE-2023-49589", "creation_timestamp": "2024-01-10T17:22:25.000000Z"}]}