Most recent sightings.

Most recent sightings. https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Fri, 08 May 2026 11:40:35 +0000 0282976b-f6aa-4a52-8f5e-cf3a0864b511 https://vulnerability.circl.lu/sighting/0282976b-f6aa-4a52-8f5e-cf3a0864b511/export {"uuid": "0282976b-f6aa-4a52-8f5e-cf3a0864b511", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-28391", "type": "seen", "source": "https://t.me/ShizoPrivacy/256", "content": "|CVE-2022-28391|\nBusyBox code execution\nCVSS score: 9.8\n\n\ud83e\udda0\u0412 \u0432\u0435\u0440\u0441\u0438\u0438 1.35.0 BusyBox \u0431\u044b\u043b\u0430 \u043d\u0430\u0439\u0434\u0435\u043d\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0435\u043c\u0443 \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434,\u0435\u0441\u043b\u0438 netstat \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f \u0434\u043b\u044f \u0432\u044b\u0432\u043e\u0434\u0430 \u0437\u043d\u0430\u0447\u0435\u043d\u0438\u0439 \u0437\u0430\u043f\u0438\u0441\u0438 PTR DNS \u043d\u0430 \u0442\u0435\u0440\u043c\u0438\u043d\u0430\u043b, \u0441\u043e\u0432\u043c\u0435\u0441\u0442\u0438\u043c\u044b\u0439 \u0441 VT. \u0414\u043b\u044f \u0442\u043e\u0433\u043e, \u0447\u0442\u043e\u0431\u044b \u0432\u043e\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c\u0441\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c\u044e, PTR \u0434\u043b\u044f \u0443\u0434\u0430\u043b\u0451\u043d\u043d\u043e\u0433\u043e \u0445\u043e\u0441\u0442\u0430 \u0434\u043e\u043b\u0436\u0435\u043d \u0441\u043e\u0434\u0435\u0440\u0436\u0430\u0442\u044c escape sequence \u0438 \u0436\u0435\u0440\u0442\u0432\u0430 \u0434\u043e\u043b\u0436\u043d\u0430 \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c netstat.\n\u0422\u0430\u043a\u0436\u0435, \u043a\u0430\u043a \u043f\u0438\u0448\u0443\u0442 \u0432 \u0432\u0435\u0442\u043a\u0435 \u043f\u0440\u043e \u044d\u0442\u0443 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c, nslookup \u0442\u043e\u0436\u0435 \u0443\u044f\u0437\u0432\u0438\u043c.\n\u0418\u0437\u043d\u0430\u0447\u0430\u043b\u044c\u043d\u043e \u044d\u0442\u0430 CVE \u0431\u044b\u043b\u0430 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0430 \u043d\u0430 AlpineLinux.\n\n\ud83e\udda0In version 1.35.0 BusyBox has found a vulnerability that allows an attacker to execute arbitrary code if netstat is used to output the values of a DNS PTR record to a VT-compatible terminal. In order to exploit the vulnerability, the PTR for the remote host must contain an escape sequence and the victim must execute netstat.\nAlso, as they write in the branch about this vulnerability, nslookup is also vulnerable.\nInitially, this CVE was discovered on AlpineLinux.\n\n#cve", "creation_timestamp": "2022-04-06T17:46:53.000000Z"} {"uuid": "0282976b-f6aa-4a52-8f5e-cf3a0864b511", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-28391", "type": "seen", "source": "https://t.me/ShizoPrivacy/256", "content": "|CVE-2022-28391|\nBusyBox code execution\nCVSS score: 9.8\n\n\ud83e\udda0\u0412 \u0432\u0435\u0440\u0441\u0438\u0438 1.35.0 BusyBox \u0431\u044b\u043b\u0430 \u043d\u0430\u0439\u0434\u0435\u043d\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0435\u043c\u0443 \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434,\u0435\u0441\u043b\u0438 netstat \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f \u0434\u043b\u044f \u0432\u044b\u0432\u043e\u0434\u0430 \u0437\u043d\u0430\u0447\u0435\u043d\u0438\u0439 \u0437\u0430\u043f\u0438\u0441\u0438 PTR DNS \u043d\u0430 \u0442\u0435\u0440\u043c\u0438\u043d\u0430\u043b, \u0441\u043e\u0432\u043c\u0435\u0441\u0442\u0438\u043c\u044b\u0439 \u0441 VT. \u0414\u043b\u044f \u0442\u043e\u0433\u043e, \u0447\u0442\u043e\u0431\u044b \u0432\u043e\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c\u0441\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c\u044e, PTR \u0434\u043b\u044f \u0443\u0434\u0430\u043b\u0451\u043d\u043d\u043e\u0433\u043e \u0445\u043e\u0441\u0442\u0430 \u0434\u043e\u043b\u0436\u0435\u043d \u0441\u043e\u0434\u0435\u0440\u0436\u0430\u0442\u044c escape sequence \u0438 \u0436\u0435\u0440\u0442\u0432\u0430 \u0434\u043e\u043b\u0436\u043d\u0430 \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c netstat.\n\u0422\u0430\u043a\u0436\u0435, \u043a\u0430\u043a \u043f\u0438\u0448\u0443\u0442 \u0432 \u0432\u0435\u0442\u043a\u0435 \u043f\u0440\u043e \u044d\u0442\u0443 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c, nslookup \u0442\u043e\u0436\u0435 \u0443\u044f\u0437\u0432\u0438\u043c.\n\u0418\u0437\u043d\u0430\u0447\u0430\u043b\u044c\u043d\u043e \u044d\u0442\u0430 CVE \u0431\u044b\u043b\u0430 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0430 \u043d\u0430 AlpineLinux.\n\n\ud83e\udda0In version 1.35.0 BusyBox has found a vulnerability that allows an attacker to execute arbitrary code if netstat is used to output the values of a DNS PTR record to a VT-compatible terminal. In order to exploit the vulnerability, the PTR for the remote host must contain an escape sequence and the victim must execute netstat.\nAlso, as they write in the branch about this vulnerability, nslookup is also vulnerable.\nInitially, this CVE was discovered on AlpineLinux.\n\n#cve", "creation_timestamp": "2022-04-06T17:46:53.000000Z"} https://vulnerability.circl.lu/sighting/0282976b-f6aa-4a52-8f5e-cf3a0864b511/export Wed, 06 Apr 2022 17:46:53 +0000 6d7f6e46-86ce-41fc-bcc2-85dcf1d17d98 https://vulnerability.circl.lu/sighting/6d7f6e46-86ce-41fc-bcc2-85dcf1d17d98/export {"uuid": "6d7f6e46-86ce-41fc-bcc2-85dcf1d17d98", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-28397", "type": "seen", "source": "https://t.me/cibsecurity/40636", "content": "\u203c CVE-2022-28397 \u203c\n\nAn arbitrary file upload vulnerability in the file upload module of Ghost CMS v4.42.0 allows attackers to execute arbitrary code via a crafted file.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-12T20:17:21.000000Z"} {"uuid": "6d7f6e46-86ce-41fc-bcc2-85dcf1d17d98", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-28397", "type": "seen", "source": "https://t.me/cibsecurity/40636", "content": "\u203c CVE-2022-28397 \u203c\n\nAn arbitrary file upload vulnerability in the file upload module of Ghost CMS v4.42.0 allows attackers to execute arbitrary code via a crafted file.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-12T20:17:21.000000Z"} https://vulnerability.circl.lu/sighting/6d7f6e46-86ce-41fc-bcc2-85dcf1d17d98/export Tue, 12 Apr 2022 20:17:21 +0000 0a24af6a-a86d-48c4-b3d5-d43506ddd3b4 https://vulnerability.circl.lu/sighting/0a24af6a-a86d-48c4-b3d5-d43506ddd3b4/export {"uuid": "0a24af6a-a86d-48c4-b3d5-d43506ddd3b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-28396", "type": "seen", "source": "https://t.me/cibsecurity/40654", "content": "\u203c CVE-2022-28396 \u203c\n\nApostrophe v3.16.1 was discovered to contain a remote code execution (RCE) vulnerability via the component uploadfs.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-12T20:23:15.000000Z"} {"uuid": "0a24af6a-a86d-48c4-b3d5-d43506ddd3b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-28396", "type": "seen", "source": "https://t.me/cibsecurity/40654", "content": "\u203c CVE-2022-28396 \u203c\n\nApostrophe v3.16.1 was discovered to contain a remote code execution (RCE) vulnerability via the component uploadfs.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-12T20:23:15.000000Z"} https://vulnerability.circl.lu/sighting/0a24af6a-a86d-48c4-b3d5-d43506ddd3b4/export Tue, 12 Apr 2022 20:23:15 +0000 421578fa-b15b-4a69-996b-27d6041e85c9 https://vulnerability.circl.lu/sighting/421578fa-b15b-4a69-996b-27d6041e85c9/export {"uuid": "421578fa-b15b-4a69-996b-27d6041e85c9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-28394", "type": "seen", "source": "https://t.me/cibsecurity/43470", "content": "\u203c CVE-2022-28394 \u203c\n\nEOL Product CVE - Installer of Trend Micro Password Manager (Consumer) versions 3.7.0.1223 and below provided by Trend Micro Incorporated contains an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries (CWE-427). Please note that this was reported on an EOL version of the product, and users are advised to upgrade to the latest supported version (5.x).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-27T07:14:40.000000Z"} {"uuid": "421578fa-b15b-4a69-996b-27d6041e85c9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-28394", "type": "seen", "source": "https://t.me/cibsecurity/43470", "content": "\u203c CVE-2022-28394 \u203c\n\nEOL Product CVE - Installer of Trend Micro Password Manager (Consumer) versions 3.7.0.1223 and below provided by Trend Micro Incorporated contains an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries (CWE-427). Please note that this was reported on an EOL version of the product, and users are advised to upgrade to the latest supported version (5.x).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-27T07:14:40.000000Z"} https://vulnerability.circl.lu/sighting/421578fa-b15b-4a69-996b-27d6041e85c9/export Fri, 27 May 2022 07:14:40 +0000