{"vulnerability": "cve-2025-2340", "sightings": [{"uuid": "d28db14a-1c0d-4cf6-a4f3-43c8402dfa42", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2340", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lkj65mttnd2s", "content": "", "creation_timestamp": "2025-03-16T17:30:30.828133Z"}, {"uuid": "12f08007-2536-405f-a258-ceca29808159", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23403", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113984941074566403", "content": "", "creation_timestamp": "2025-02-11T11:09:32.625530Z"}, {"uuid": "50fb1518-e0b1-459a-9534-dd47fa8b2200", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23403", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lhvjttadwn2v", "content": "", "creation_timestamp": "2025-02-11T11:16:08.584026Z"}, {"uuid": "6e710f7a-78f2-448c-b694-ca1097e4b6b7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23403", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lhvu4pcvdf26", "content": "", "creation_timestamp": "2025-02-11T14:20:06.482901Z"}, {"uuid": "d202f8be-52cb-42ed-a9c4-825ae43f04cf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23409", "type": "seen", "source": "https://t.me/cvedetector/19444", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-23409 - OpenHarmony Use After Free Arbitrary Code Execution Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-23409 \nPublished : March 4, 2025, 4:15 a.m. | 22\u00a0minutes ago \nDescription : in OpenHarmony v5.0.2 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through use after free. This vulnerability can be exploited only in restricted scenarios. \nSeverity: 3.8 | LOW \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"04 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-04T05:47:51.000000Z"}, {"uuid": "069c8003-a26e-4a2f-bad3-f7f28890a717", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23403", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-044-12", "content": "", "creation_timestamp": "2025-02-13T11:00:00.000000Z"}, {"uuid": "bd9b0f9f-dc5e-4730-91d9-38eed80a2b32", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23406", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/114000361569487992", "content": "", "creation_timestamp": "2025-02-14T04:31:10.764616Z"}, {"uuid": "25c3abfd-43be-4c42-a8c7-5d840c2d5ed8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23406", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3li4h3tsxy224", "content": "", "creation_timestamp": "2025-02-14T05:15:34.483117Z"}, {"uuid": "0449e511-0817-43f6-9039-55b61c1c0e6b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23406", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3li4skdczwa2p", "content": "", "creation_timestamp": "2025-02-14T08:40:31.759600Z"}, {"uuid": "813454d5-f236-4eb3-ab15-7f6cb88ac12d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23408", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3m7qohzlnaa23", "content": "", "creation_timestamp": "2025-12-11T23:00:21.979779Z"}, {"uuid": "e13c6b1c-6b60-49a6-b888-7bae236a3d9b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23408", "type": "seen", "source": "https://seclists.org/oss-sec/2025/q4/267", "content": "", "creation_timestamp": "2025-12-11T21:24:43.000000Z"}, {"uuid": "7ecf1f16-bf88-4263-9c9f-b77823ffd67e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23400", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-072-01", "content": "", "creation_timestamp": "2025-03-13T11:00:00.000000Z"}, {"uuid": "883944d5-8283-4a4e-8e91-c3293d48a8b0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23401", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-072-01", "content": "", "creation_timestamp": "2025-03-13T11:00:00.000000Z"}, {"uuid": "d7c946f7-d9fb-458c-9588-d9a98979bb88", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23402", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-072-01", "content": "", "creation_timestamp": "2025-03-13T11:00:00.000000Z"}, {"uuid": "0a222104-969c-4f04-8956-301954d0e820", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23408", "type": "seen", "source": "https://bsky.app/profile/omo.bsky.social/post/3ltnpxyrxfk2s", "content": "", "creation_timestamp": "2025-07-11T01:46:55.908110Z"}, {"uuid": "8a2bc002-ca61-4966-87a6-af751b6bb613", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23400", "type": "seen", "source": "MISP/682bdba3-46b7-4a8f-b7be-c6bf4b4f9868", "content": "", "creation_timestamp": "2025-08-13T13:26:35.000000Z"}, {"uuid": "5b2a14da-1a80-4a3a-a8e7-db475ce1eba3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23401", "type": "seen", "source": "MISP/682bdba3-46b7-4a8f-b7be-c6bf4b4f9868", "content": "", "creation_timestamp": "2025-08-13T13:26:35.000000Z"}, {"uuid": "0d8f0d17-063a-4d83-8738-b75fffcea746", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23406", "type": "seen", "source": "MISP/71f05cce-2beb-4b80-8496-bbbabc032544", "content": "", "creation_timestamp": "2025-08-25T18:31:44.000000Z"}, {"uuid": "0f18da88-4573-4db2-969f-218cf25b4717", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23408", "type": "seen", "source": "https://gist.github.com/Darkcrai86/710b3784b477d2901edb03542b3c3d00", "content": "", "creation_timestamp": "2025-12-12T11:16:59.000000Z"}, {"uuid": "8ba74c65-82b6-4bb0-9522-74ee7f81b95d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23408", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3m7rz44v7cq22", "content": "", "creation_timestamp": "2025-12-12T11:43:13.466668Z"}, {"uuid": "38799787-994d-4076-aeb4-63f64ae43b5b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23402", "type": "seen", "source": "https://t.me/cvedetector/20078", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-23402 - \"SAP Teamcenter Visualization and Tecnomatix Plant Simulation WRL File Use-After-Free Vulnerability\"\", \n  \"Content\": \"CVE ID : CVE-2025-23402 \nPublished : March 11, 2025, 10:15 a.m. | 1\u00a0hour, 55\u00a0minutes ago \nDescription : A vulnerability has been identified in Teamcenter Visualization V14.3 (All versions < V14.3.0.13), Teamcenter Visualization V2312 (All versions < V2312.0009), Teamcenter Visualization V2406 (All versions < V2406.0007), Teamcenter Visualization V2412 (All versions < V2412.0002), Tecnomatix Plant Simulation V2302 (All versions < V2302.0021), Tecnomatix Plant Simulation V2404 (All versions < V2404.0010). The affected applications contain a use-after-free vulnerability that could be triggered while parsing specially crafted WRL files.  \nAn attacker could leverage this vulnerability to execute code in the context of the current process. \nSeverity: 7.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-11T13:26:57.000000Z"}, {"uuid": "2fdcbfc0-7ccc-41bf-89bb-7be0a3ff51ca", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23401", "type": "seen", "source": "https://t.me/cvedetector/20075", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-23401 - \"Siemens Teamcenter Visualization Out-of-Bounds Read\"\", \n  \"Content\": \"CVE ID : CVE-2025-23401 \nPublished : March 11, 2025, 10:15 a.m. | 1\u00a0hour, 55\u00a0minutes ago \nDescription : A vulnerability has been identified in Teamcenter Visualization V14.3 (All versions < V14.3.0.13), Teamcenter Visualization V2312 (All versions < V2312.0009), Teamcenter Visualization V2406 (All versions < V2406.0007), Teamcenter Visualization V2412 (All versions < V2412.0002), Tecnomatix Plant Simulation V2302 (All versions < V2302.0021), Tecnomatix Plant Simulation V2404 (All versions < V2404.0010). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted WRL files.  \nThis could allow an attacker to execute code in the context of the current process. \nSeverity: 7.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-11T13:26:52.000000Z"}, {"uuid": "a9c3720a-3be7-445d-8964-2635099a34cb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23400", "type": "seen", "source": "https://t.me/cvedetector/20074", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-23400 - Siemens Teamcenter Visualization and Tecnomatix Plant Simulation Memory Corruption Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-23400 \nPublished : March 11, 2025, 10:15 a.m. | 1\u00a0hour, 55\u00a0minutes ago \nDescription : A vulnerability has been identified in Teamcenter Visualization V14.3 (All versions < V14.3.0.13), Teamcenter Visualization V2312 (All versions < V2312.0009), Teamcenter Visualization V2406 (All versions < V2406.0007), Teamcenter Visualization V2412 (All versions < V2412.0002), Tecnomatix Plant Simulation V2302 (All versions < V2302.0021), Tecnomatix Plant Simulation V2404 (All versions < V2404.0010). The affected application is vulnerable to memory corruption while parsing specially crafted WRL files. This could allow an attacker to execute code in the context of the current process. \nSeverity: 7.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-11T13:26:51.000000Z"}, {"uuid": "17767820-e83e-4384-8c5d-1e760ebd2f4b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23405", "type": "seen", "source": "https://t.me/cvedetector/19167", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-23405 - Apache Log4j Unauthenticated Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-23405 \nPublished : Feb. 28, 2025, 5:15 p.m. | 1\u00a0hour, 7\u00a0minutes ago \nDescription : Unauthenticated log effects metrics gathering incident response efforts and potentially exposes risk of injection attacks (ex log injection). \nSeverity: 5.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"28 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-28T19:32:19.000000Z"}, {"uuid": "9c2628de-5781-46a5-a63d-7068582909d4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2340", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/7710", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-2340\n\ud83d\udd25 CVSS Score: 4.8 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N)\n\ud83d\udd39 Description: A vulnerability was found in otale Tale Blog 2.0.5. It has been declared as problematic. This vulnerability affects the function saveOptions of the file /options/save of the component Site Settings. The manipulation of the argument Site Title leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way. This vulnerability only affects products that are no longer supported by the maintainer.\n\ud83d\udccf Published: 2025-03-16T13:31:05.400Z\n\ud83d\udccf Modified: 2025-03-16T13:31:05.400Z\n\ud83d\udd17 References:\n1. https://vuldb.com/?id.299806\n2. https://vuldb.com/?ctiid.299806\n3. https://vuldb.com/?submit.514793\n4. https://github.com/qkdjksfkeg/cve_article/blob/main/Tale/XSS.md", "creation_timestamp": "2025-03-16T13:49:25.000000Z"}, {"uuid": "b57f97ad-6e7a-4b4e-8f5b-83ee927b2779", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23406", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/4419", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-23406\n\ud83d\udd25 CVSS Score: 5.3 (CVSS_V3)\n\ud83d\udd39 Description: Out-of-bounds read vulnerability caused by improper checking of TCP MSS option values exists in Cente middleware TCP/IP Network Series, which may lead to processing a specially crafted packet to cause the affected product crashed.\n\ud83d\udccf Published: 2025-02-14T06:30:36Z\n\ud83d\udccf Modified: 2025-02-14T06:30:36Z\n\ud83d\udd17 References:\n1. https://nvd.nist.gov/vuln/detail/CVE-2025-23406\n2. https://jvn.jp/en/vu/JVNVU92227620\n3. https://www.cente.jp/obstacle/5451", "creation_timestamp": "2025-02-14T07:09:49.000000Z"}, {"uuid": "f480298e-332c-469e-96b9-1db66248d261", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23406", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/4431", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-23406\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: No description available\n\ud83d\udccf Published: 2025-02-14T05:15:12.567\n\ud83d\udccf Modified: N/A\n\ud83d\udd17 References:\n1. https://jvn.jp/en/vu/JVNVU92227620/\n2. https://www.cente.jp/obstacle/5451/", "creation_timestamp": "2025-02-14T07:12:07.000000Z"}, {"uuid": "50c70960-e63f-4126-b259-8fecd3328f3f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23409", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/6322", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-23409\n\ud83d\udd25 CVSS Score: 3.8 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N)\n\ud83d\udd39 Description: in OpenHarmony v5.0.2 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through use after free. This vulnerability can be exploited only in restricted scenarios.\n\ud83d\udccf Published: 2025-03-04T03:44:47.725Z\n\ud83d\udccf Modified: 2025-03-04T03:44:47.725Z\n\ud83d\udd17 References:\n1. https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2025/2025-03.md", "creation_timestamp": "2025-03-04T04:34:25.000000Z"}, {"uuid": "2fde3530-832d-47b5-b8e1-999dea2c0500", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23403", "type": "seen", "source": "https://t.me/cvedetector/17692", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-23403 - \"Siemens SIMATIC IPC Registry Key Permission Vulnerability\"\", \n  \"Content\": \"CVE ID : CVE-2025-23403 \nPublished : Feb. 11, 2025, 11:15 a.m. | 52\u00a0minutes ago \nDescription : A vulnerability has been identified in SIMATIC IPC DiagBase (All versions), SIMATIC IPC DiagMonitor (All versions). The affected device do not properly restrict the user permission for the registry key. This could allow an authenticated attacker to load vulnerable drivers into the system leading to privilege escalation or bypassing endpoint protection and other security measures. \nSeverity: 7.0 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-11T13:10:21.000000Z"}, {"uuid": "cc4ca555-c97d-44b8-8f32-1b08b22c2df5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23405", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/6014", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-23405\n\ud83d\udd25 CVSS Score: 5.3 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)\n\ud83d\udd39 Description: Unauthenticated log effects metrics gathering incident response efforts and potentially exposes risk of injection attacks (ex log injection).\n\ud83d\udccf Published: 2025-02-28T16:54:01.759Z\n\ud83d\udccf Modified: 2025-02-28T21:51:08.124Z\n\ud83d\udd17 References:\n1. https://www.cisa.gov/news-events/ics-medical-advisories/icsma-25-058-01\n2. https://www.dariohealth.com/contact/", "creation_timestamp": "2025-02-28T22:27:37.000000Z"}, {"uuid": "4ecd4ecc-4a44-477d-b51c-45e26eaf8471", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23407", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/11035", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-23407\n\ud83d\udd25 CVSS Score: 4.3 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N)\n\ud83d\udd39 Description: Incorrect privilege assignment vulnerability in the WEB UI (the setting page) exists in Wi-Fi AP UNIT 'AC-WPS-11ac series'. If exploited, a remote attacker who can log in to the product may alter the settings without appropriate privileges.\n\ud83d\udccf Published: 2025-04-09T09:03:03.197Z\n\ud83d\udccf Modified: 2025-04-09T09:03:03.197Z\n\ud83d\udd17 References:\n1. https://www.inaba.co.jp/abaniact/news/security_20250404.pdf\n2. https://jvn.jp/en/vu/JVNVU93925742/", "creation_timestamp": "2025-04-09T09:47:38.000000Z"}, {"uuid": "7bd28b46-4ed4-4f84-9455-f2999da5f3c1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23403", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/10874", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-23403\n\ud83d\udd25 CVSS Score: 7 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C)\n\ud83d\udd39 Description: A vulnerability has been identified in SIMATIC IPC DiagBase (All versions), SIMATIC IPC DiagMonitor (All versions). The affected device do not properly restrict the user permission for the registry key. This could allow an authenticated attacker to load vulnerable drivers into the system leading to privilege escalation or bypassing endpoint protection and other security measures.\n\ud83d\udccf Published: 2025-02-11T10:29:04.193Z\n\ud83d\udccf Modified: 2025-04-08T08:22:26.345Z\n\ud83d\udd17 References:\n1. https://cert-portal.siemens.com/productcert/html/ssa-369369.html", "creation_timestamp": "2025-04-08T08:46:36.000000Z"}, {"uuid": "b9c2ef60-b39e-4d7d-8e5b-b49337c0df85", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23406", "type": "seen", "source": "Telegram/PqEkGBoP_MKPXaGYzOW5mhP1XtcoN7VkLC46p6MgPzjPqGzy", "content": "", "creation_timestamp": "2025-02-14T10:09:24.000000Z"}, {"uuid": "1859c78d-85ec-45c7-9652-5bc0dcba5c8e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23406", "type": "seen", "source": "https://t.me/cvedetector/18065", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-23406 - \"Cente Middleware TCP/IP Network Series OOB Read Vulnerability\"\", \n  \"Content\": \"CVE ID : CVE-2025-23406 \nPublished : Feb. 14, 2025, 5:15 a.m. | 39\u00a0minutes ago \nDescription : Out-of-bounds read vulnerability caused by improper checking of TCP MSS option values exists in Cente middleware TCP/IP Network Series, which may lead to processing a specially crafted packet to cause the affected product crashed. \nSeverity: 5.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"14 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-14T07:23:27.000000Z"}, {"uuid": "ce63edd1-1d57-4fe1-801b-0ad398593e16", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2340", "type": "seen", "source": "https://t.me/cvedetector/20409", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-2340 - \"Otale Tale Blog Cross-Site Scripting Vulnerability\"\", \n  \"Content\": \"CVE ID : CVE-2025-2340 \nPublished : March 16, 2025, 2:15 p.m. | 48\u00a0minutes ago \nDescription : A vulnerability was found in otale Tale Blog 2.0.5. It has been declared as problematic. This vulnerability affects the function saveOptions of the file /options/save of the component Site Settings. The manipulation of the argument Site Title leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way. This vulnerability only affects products that are no longer supported by the maintainer. \nSeverity: 2.4 | LOW \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"16 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-16T16:22:34.000000Z"}, {"uuid": "604c9e22-c78b-4cc8-998a-2f4672fe6c1b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23406", "type": "seen", "source": "Telegram/NdAvPbre_nhwox2bb6tfyBRK0s5xSLIu4wvbnEkSPjSeZIrM", "content": "", "creation_timestamp": "2025-02-14T21:08:28.000000Z"}, {"uuid": "9221700c-730e-4ed1-a65f-b9c180ee1a8f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23407", "type": "seen", "source": "https://t.me/cvedetector/22550", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-23407 - Wi-Fi AP UNIT AC-WPS-11ac Privilege Escalation Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-23407 \nPublished : April 9, 2025, 9:15 a.m. | 48\u00a0minutes ago \nDescription : Incorrect privilege assignment vulnerability in the WEB UI (the setting page) exists in Wi-Fi AP UNIT 'AC-WPS-11ac series'. If exploited, a remote attacker who can log in to the product may alter the settings without appropriate privileges. \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-09T12:35:34.000000Z"}, {"uuid": "fdb936e8-49ee-4415-befb-9eb00ece116f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23405", "type": "seen", "source": "Telegram/a6JTBcB7KvClaNiOaSOK2iGQfPu2_grnrzpWoIVoJRRMofzT", "content": "", "creation_timestamp": "2025-03-02T11:45:38.000000Z"}, {"uuid": "0ac5a3ee-6fc0-4e07-80f8-a027f130007b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23403", "type": "seen", "source": "Telegram/-R7DPWRFZFRe6wuiqdIPAXrcDZz9bne6krKvLYq0S2GRcFU", "content": "", "creation_timestamp": "2025-02-11T12:32:32.000000Z"}, {"uuid": "267c5422-d409-4cf8-ba1a-8db2e00109dd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23409", "type": "seen", "source": "Telegram/ncF1gdy4WUeFN2zrjxPbmrb6-nTxYsVpwlgNGTLINsV5vZc", "content": "", "creation_timestamp": "2025-03-04T19:32:30.000000Z"}, {"uuid": "4410a00d-6abb-4b1c-af09-73c34a9c8404", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23400", "type": "seen", "source": "Telegram/vEDVNGCPAWGffCLhscI9wuBjXzU-UJ-Kd2wneJcY77eho_c", "content": "", "creation_timestamp": "2025-03-11T11:35:13.000000Z"}, {"uuid": "7f6884d2-6f5b-4f03-8882-54fcc90a88e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23402", "type": "seen", "source": "Telegram/7ohonUKXJXc8nNP-FA_LzHo1dYyqTYbEicJy56ekdY_6IuU", "content": "", "creation_timestamp": "2025-03-11T11:35:12.000000Z"}, {"uuid": "b9599485-34a8-4ae3-9e25-5dcb111552f3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23401", "type": "seen", "source": "Telegram/7ohonUKXJXc8nNP-FA_LzHo1dYyqTYbEicJy56ekdY_6IuU", "content": "", "creation_timestamp": "2025-03-11T11:35:12.000000Z"}]}