https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Mon, 15 Jun 2026 03:34:18 +0000 https://vulnerability.circl.lu/sighting/35145202-e935-41ac-a5aa-e3cc3a33e662/export {"uuid": "35145202-e935-41ac-a5aa-e3cc3a33e662", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-37926", "type": "seen", "source": "https://t.me/cibsecurity/54302", "content": "\u203c CVE-2022-37926 \u203c\n\nA vulnerability within the web-based management interface of EdgeConnect Enterprise could allow a remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface by uploading a specially crafted file. A successful exploit could allow an attacker to execute arbitrary script code in a victim's browser in the context of the affected interface in Aruba EdgeConnect Enterprise Software version(s): ECOS 9.2.1.0 and below; ECOS 9.1.3.0 and below; ECOS 9.0.7.0 and below; ECOS 8.3.7.1 and below.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-12T16:25:40.000000Z"} {"uuid": "35145202-e935-41ac-a5aa-e3cc3a33e662", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-37926", "type": "seen", "source": "https://t.me/cibsecurity/54302", "content": "\u203c CVE-2022-37926 \u203c\n\nA vulnerability within the web-based management interface of EdgeConnect Enterprise could allow a remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface by uploading a specially crafted file. A successful exploit could allow an attacker to execute arbitrary script code in a victim's browser in the context of the affected interface in Aruba EdgeConnect Enterprise Software version(s): ECOS 9.2.1.0 and below; ECOS 9.1.3.0 and below; ECOS 9.0.7.0 and below; ECOS 8.3.7.1 and below.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-12T16:25:40.000000Z"} https://vulnerability.circl.lu/sighting/35145202-e935-41ac-a5aa-e3cc3a33e662/export Mon, 12 Dec 2022 16:25:40 +0000 https://vulnerability.circl.lu/sighting/8651af30-4a95-4774-8bd8-27c67b48e4f1/export {"uuid": "8651af30-4a95-4774-8bd8-27c67b48e4f1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-37929", "type": "seen", "source": "https://t.me/cibsecurity/54306", "content": "\u203c CVE-2022-37929 \u203c\n\nImproper Privilege Management vulnerability in Hewlett Packard Enterprise Nimble Storage Hybrid Flash Arrays and Nimble Storage Secondary Flash Arrays.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-12T16:25:47.000000Z"} {"uuid": "8651af30-4a95-4774-8bd8-27c67b48e4f1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-37929", "type": "seen", "source": "https://t.me/cibsecurity/54306", "content": "\u203c CVE-2022-37929 \u203c\n\nImproper Privilege Management vulnerability in Hewlett Packard Enterprise Nimble Storage Hybrid Flash Arrays and Nimble Storage Secondary Flash Arrays.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-12T16:25:47.000000Z"} https://vulnerability.circl.lu/sighting/8651af30-4a95-4774-8bd8-27c67b48e4f1/export Mon, 12 Dec 2022 16:25:47 +0000 https://vulnerability.circl.lu/sighting/1d654e67-6615-4dcb-ab12-7640c9ea0352/export {"uuid": "1d654e67-6615-4dcb-ab12-7640c9ea0352", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-3792", "type": "seen", "source": "https://t.me/cibsecurity/56236", "content": "\u203c CVE-2022-3792 \u203c\n\nThis issue affects: Terminal Operating System versions before 5.0.13\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-01-10T16:28:24.000000Z"} {"uuid": "1d654e67-6615-4dcb-ab12-7640c9ea0352", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-3792", "type": "seen", "source": "https://t.me/cibsecurity/56236", "content": "\u203c CVE-2022-3792 \u203c\n\nThis issue affects: Terminal Operating System versions before 5.0.13\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-01-10T16:28:24.000000Z"} https://vulnerability.circl.lu/sighting/1d654e67-6615-4dcb-ab12-7640c9ea0352/export Tue, 10 Jan 2023 16:28:24 +0000 https://vulnerability.circl.lu/sighting/0d05bf52-3a02-49e1-8e8b-ec3e0559d686/export {"uuid": "0d05bf52-3a02-49e1-8e8b-ec3e0559d686", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-37923", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/13308", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-37923\n\ud83d\udd25 CVSS Score: 7.2 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: Vulnerabilities in the Aruba EdgeConnect Enterprise command line interface allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an attacker to execute arbitrary commands as root on the underlying operating system leading to complete system compromise in Aruba EdgeConnect Enterprise Software version(s): ECOS 9.2.1.0 and below; ECOS 9.1.3.0 and below; ECOS 9.0.7.0 and below; ECOS 8.3.7.1 and below.\n\n\n\ud83d\udccf Published: 2022-11-30T19:16:16.680Z\n\ud83d\udccf Modified: 2025-04-24T18:56:29.994Z\n\ud83d\udd17 References:\n1. https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-018.txt", "creation_timestamp": "2025-04-24T19:06:36.000000Z"} {"uuid": "0d05bf52-3a02-49e1-8e8b-ec3e0559d686", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-37923", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/13308", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-37923\n\ud83d\udd25 CVSS Score: 7.2 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: Vulnerabilities in the Aruba EdgeConnect Enterprise command line interface allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an attacker to execute arbitrary commands as root on the underlying operating system leading to complete system compromise in Aruba EdgeConnect Enterprise Software version(s): ECOS 9.2.1.0 and below; ECOS 9.1.3.0 and below; ECOS 9.0.7.0 and below; ECOS 8.3.7.1 and below.\n\n\n\ud83d\udccf Published: 2022-11-30T19:16:16.680Z\n\ud83d\udccf Modified: 2025-04-24T18:56:29.994Z\n\ud83d\udd17 References:\n1. https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-018.txt", "creation_timestamp": "2025-04-24T19:06:36.000000Z"} https://vulnerability.circl.lu/sighting/0d05bf52-3a02-49e1-8e8b-ec3e0559d686/export Thu, 24 Apr 2025 19:06:36 +0000 https://vulnerability.circl.lu/sighting/8e95ea11-45d8-4d32-b833-f71ee846ef0b/export {"uuid": "8e95ea11-45d8-4d32-b833-f71ee846ef0b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-37922", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/13310", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-37922\n\ud83d\udd25 CVSS Score: 7.2 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: Vulnerabilities in the Aruba EdgeConnect Enterprise command line interface allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an attacker to execute arbitrary commands as root on the underlying operating system leading to complete system compromise in Aruba EdgeConnect Enterprise Software version(s): ECOS 9.2.1.0 and below; ECOS 9.1.3.0 and below; ECOS 9.0.7.0 and below; ECOS 8.3.7.1 and below.\n\n\n\ud83d\udccf Published: 2022-11-30T19:15:08.091Z\n\ud83d\udccf Modified: 2025-04-24T18:51:19.032Z\n\ud83d\udd17 References:\n1. https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-018.txt", "creation_timestamp": "2025-04-24T19:06:38.000000Z"} {"uuid": "8e95ea11-45d8-4d32-b833-f71ee846ef0b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-37922", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/13310", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-37922\n\ud83d\udd25 CVSS Score: 7.2 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: Vulnerabilities in the Aruba EdgeConnect Enterprise command line interface allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an attacker to execute arbitrary commands as root on the underlying operating system leading to complete system compromise in Aruba EdgeConnect Enterprise Software version(s): ECOS 9.2.1.0 and below; ECOS 9.1.3.0 and below; ECOS 9.0.7.0 and below; ECOS 8.3.7.1 and below.\n\n\n\ud83d\udccf Published: 2022-11-30T19:15:08.091Z\n\ud83d\udccf Modified: 2025-04-24T18:51:19.032Z\n\ud83d\udd17 References:\n1. https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-018.txt", "creation_timestamp": "2025-04-24T19:06:38.000000Z"} https://vulnerability.circl.lu/sighting/8e95ea11-45d8-4d32-b833-f71ee846ef0b/export Thu, 24 Apr 2025 19:06:38 +0000 https://vulnerability.circl.lu/sighting/fd2879df-b707-4758-ad57-6ae3687f9608/export {"uuid": "fd2879df-b707-4758-ad57-6ae3687f9608", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-37920", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/13311", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-37920\n\ud83d\udd25 CVSS Score: 7.2 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: Vulnerabilities in the Aruba EdgeConnect Enterprise command line interface allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an attacker to execute arbitrary commands as root on the underlying operating system leading to complete system compromise in Aruba EdgeConnect Enterprise Software version(s): ECOS 9.2.1.0 and below; ECOS 9.1.3.0 and below; ECOS 9.0.7.0 and below; ECOS 8.3.7.1 and below.\n\n\n\ud83d\udccf Published: 2022-11-30T19:08:31.129Z\n\ud83d\udccf Modified: 2025-04-24T18:50:29.890Z\n\ud83d\udd17 References:\n1. https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-018.txt", "creation_timestamp": "2025-04-24T19:06:39.000000Z"} {"uuid": "fd2879df-b707-4758-ad57-6ae3687f9608", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-37920", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/13311", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-37920\n\ud83d\udd25 CVSS Score: 7.2 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: Vulnerabilities in the Aruba EdgeConnect Enterprise command line interface allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an attacker to execute arbitrary commands as root on the underlying operating system leading to complete system compromise in Aruba EdgeConnect Enterprise Software version(s): ECOS 9.2.1.0 and below; ECOS 9.1.3.0 and below; ECOS 9.0.7.0 and below; ECOS 8.3.7.1 and below.\n\n\n\ud83d\udccf Published: 2022-11-30T19:08:31.129Z\n\ud83d\udccf Modified: 2025-04-24T18:50:29.890Z\n\ud83d\udd17 References:\n1. https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-018.txt", "creation_timestamp": "2025-04-24T19:06:39.000000Z"} https://vulnerability.circl.lu/sighting/fd2879df-b707-4758-ad57-6ae3687f9608/export Thu, 24 Apr 2025 19:06:39 +0000 https://vulnerability.circl.lu/sighting/bc36ac8b-b04b-4fc7-bf07-9354f5c45f48/export {"uuid": "bc36ac8b-b04b-4fc7-bf07-9354f5c45f48", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-37921", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/13312", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-37921\n\ud83d\udd25 CVSS Score: 7.2 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: Vulnerabilities in the Aruba EdgeConnect Enterprise command line interface allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an attacker to execute arbitrary commands as root on the underlying operating system leading to complete system compromise in Aruba EdgeConnect Enterprise Software version(s): ECOS 9.2.1.0 and below; ECOS 9.1.3.0 and below; ECOS 9.0.7.0 and below; ECOS 8.3.7.1 and below.\n\n\n\ud83d\udccf Published: 2022-11-30T19:13:33.318Z\n\ud83d\udccf Modified: 2025-04-24T18:50:05.363Z\n\ud83d\udd17 References:\n1. https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-018.txt", "creation_timestamp": "2025-04-24T19:06:40.000000Z"} {"uuid": "bc36ac8b-b04b-4fc7-bf07-9354f5c45f48", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-37921", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/13312", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-37921\n\ud83d\udd25 CVSS Score: 7.2 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: Vulnerabilities in the Aruba EdgeConnect Enterprise command line interface allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an attacker to execute arbitrary commands as root on the underlying operating system leading to complete system compromise in Aruba EdgeConnect Enterprise Software version(s): ECOS 9.2.1.0 and below; ECOS 9.1.3.0 and below; ECOS 9.0.7.0 and below; ECOS 8.3.7.1 and below.\n\n\n\ud83d\udccf Published: 2022-11-30T19:13:33.318Z\n\ud83d\udccf Modified: 2025-04-24T18:50:05.363Z\n\ud83d\udd17 References:\n1. https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-018.txt", "creation_timestamp": "2025-04-24T19:06:40.000000Z"} https://vulnerability.circl.lu/sighting/bc36ac8b-b04b-4fc7-bf07-9354f5c45f48/export Thu, 24 Apr 2025 19:06:40 +0000 https://vulnerability.circl.lu/sighting/73851f7d-7021-46fa-8feb-3780ff05fbf2/export {"uuid": "73851f7d-7021-46fa-8feb-3780ff05fbf2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-37925", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/13319", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-37925\n\ud83d\udd25 CVSS Score: 6.1 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N)\n\ud83d\udd39 Description: A vulnerability within the web-based management interface of Aruba EdgeConnect Enterprise could allow a remote attacker to conduct a reflected cross-site scripting (XSS) attack against a user of the interface. A successful exploit could allow an attacker to execute arbitrary script code in a victim's browser in the context of the affected interface in Aruba EdgeConnect Enterprise Software version(s): ECOS 9.2.1.0 and below; ECOS 9.1.3.0 and below; ECOS 9.0.7.0 and below; ECOS 8.3.7.1 and below.\n\n\n\ud83d\udccf Published: 2022-11-30T19:22:47.051Z\n\ud83d\udccf Modified: 2025-04-24T18:32:38.786Z\n\ud83d\udd17 References:\n1. https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-018.txt", "creation_timestamp": "2025-04-24T19:06:49.000000Z"} {"uuid": "73851f7d-7021-46fa-8feb-3780ff05fbf2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-37925", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/13319", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-37925\n\ud83d\udd25 CVSS Score: 6.1 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N)\n\ud83d\udd39 Description: A vulnerability within the web-based management interface of Aruba EdgeConnect Enterprise could allow a remote attacker to conduct a reflected cross-site scripting (XSS) attack against a user of the interface. A successful exploit could allow an attacker to execute arbitrary script code in a victim's browser in the context of the affected interface in Aruba EdgeConnect Enterprise Software version(s): ECOS 9.2.1.0 and below; ECOS 9.1.3.0 and below; ECOS 9.0.7.0 and below; ECOS 8.3.7.1 and below.\n\n\n\ud83d\udccf Published: 2022-11-30T19:22:47.051Z\n\ud83d\udccf Modified: 2025-04-24T18:32:38.786Z\n\ud83d\udd17 References:\n1. https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-018.txt", "creation_timestamp": "2025-04-24T19:06:49.000000Z"} https://vulnerability.circl.lu/sighting/73851f7d-7021-46fa-8feb-3780ff05fbf2/export Thu, 24 Apr 2025 19:06:49 +0000 https://vulnerability.circl.lu/sighting/b690ee93-b2a6-4835-827a-83a2b9d85e98/export {"uuid": "b690ee93-b2a6-4835-827a-83a2b9d85e98", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-37926", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/13320", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-37926\n\ud83d\udd25 CVSS Score: 5.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:N)\n\ud83d\udd39 Description: A vulnerability within the web-based management interface of EdgeConnect Enterprise could allow a remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface by uploading a specially crafted file. A successful exploit could allow an attacker to execute arbitrary script code in a victim's browser in the context of the affected interface in Aruba EdgeConnect Enterprise Software version(s): ECOS 9.2.1.0 and below; ECOS 9.1.3.0 and below; ECOS 9.0.7.0 and below; ECOS 8.3.7.1 and below.\n\n\n\ud83d\udccf Published: 2022-11-30T19:24:36.310Z\n\ud83d\udccf Modified: 2025-04-24T18:32:00.258Z\n\ud83d\udd17 References:\n1. https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-018.txt", "creation_timestamp": "2025-04-24T19:06:50.000000Z"} {"uuid": "b690ee93-b2a6-4835-827a-83a2b9d85e98", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-37926", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/13320", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-37926\n\ud83d\udd25 CVSS Score: 5.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:N)\n\ud83d\udd39 Description: A vulnerability within the web-based management interface of EdgeConnect Enterprise could allow a remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface by uploading a specially crafted file. A successful exploit could allow an attacker to execute arbitrary script code in a victim's browser in the context of the affected interface in Aruba EdgeConnect Enterprise Software version(s): ECOS 9.2.1.0 and below; ECOS 9.1.3.0 and below; ECOS 9.0.7.0 and below; ECOS 8.3.7.1 and below.\n\n\n\ud83d\udccf Published: 2022-11-30T19:24:36.310Z\n\ud83d\udccf Modified: 2025-04-24T18:32:00.258Z\n\ud83d\udd17 References:\n1. https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-018.txt", "creation_timestamp": "2025-04-24T19:06:50.000000Z"} https://vulnerability.circl.lu/sighting/b690ee93-b2a6-4835-827a-83a2b9d85e98/export Thu, 24 Apr 2025 19:06:50 +0000 https://vulnerability.circl.lu/sighting/977fa942-cc59-4e1c-a475-737f81f38f05/export {"uuid": "977fa942-cc59-4e1c-a475-737f81f38f05", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-37927", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/14328", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-37927\n\ud83d\udd25 CVSS Score: 6.1 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N)\n\ud83d\udd39 Description: URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Hewlett Packard Enterprise HPE OneView Global Dashboard (OVGD).\n\n\n\ud83d\udccf Published: 2022-11-03T14:53:01.153Z\n\ud83d\udccf Modified: 2025-05-01T15:40:45.496Z\n\ud83d\udd17 References:\n1. https://support.hpe.com/hpesc/public/docDisplay?docLocale=en_US&docId=hpesbhf04370en_us", "creation_timestamp": "2025-05-01T16:14:41.000000Z"} {"uuid": "977fa942-cc59-4e1c-a475-737f81f38f05", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-37927", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/14328", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-37927\n\ud83d\udd25 CVSS Score: 6.1 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N)\n\ud83d\udd39 Description: URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Hewlett Packard Enterprise HPE OneView Global Dashboard (OVGD).\n\n\n\ud83d\udccf Published: 2022-11-03T14:53:01.153Z\n\ud83d\udccf Modified: 2025-05-01T15:40:45.496Z\n\ud83d\udd17 References:\n1. https://support.hpe.com/hpesc/public/docDisplay?docLocale=en_US&docId=hpesbhf04370en_us", "creation_timestamp": "2025-05-01T16:14:41.000000Z"} https://vulnerability.circl.lu/sighting/977fa942-cc59-4e1c-a475-737f81f38f05/export Thu, 01 May 2025 16:14:41 +0000