{"vulnerability": "CVE-2022-2234", "sightings": [{"uuid": "6edb5002-ac6f-4cee-a122-027fe6262880", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-2234", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/12111", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-2234\n\ud83d\udd25 CVSS Score: 9.9 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H)\n\ud83d\udd39 Description: An authenticated mySCADA myPRO 8.26.0 user may be able to modify parameters to run commands directly in the operating system.\n\ud83d\udccf Published: 2022-08-24T15:15:48.755Z\n\ud83d\udccf Modified: 2025-04-16T17:50:14.167Z\n\ud83d\udd17 References:\n1. https://www.cisa.gov/uscert/ics/advisories/icsa-22-235-03", "creation_timestamp": "2025-04-16T17:56:38.000000Z"}, {"uuid": "02a631db-8297-4a58-9b6e-a0302dce7be8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-2234", "type": "seen", "source": "https://t.me/cibsecurity/48667", "content": "\u203c CVE-2022-2234 \u203c\n\nAn authenticated mySCADA myPRO 8.26.0 user may be able to modify parameters to run commands directly in the operating system.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-08-24T20:23:01.000000Z"}, {"uuid": "76a4e70f-a10f-4926-808a-b7998d52eebc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-22348", "type": "seen", "source": "https://t.me/cibsecurity/38896", "content": "\u203c CVE-2022-22348 \u203c\n\nIBM Spectrum Protect Operations Center 8.1.0.000 through 8.1.13.xxx is vulnerable to reverse tabnabbing where it could allow a page linked to from within Operations Center to rewrite it. An administrator could enter a link to a malicious URL that another administrator could then click. Once clicked, that malicious URL could then rewrite the original page with a phishing page. IBM X-Force ID: 220139.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-14T19:18:26.000000Z"}, {"uuid": "387b46f1-6f97-4b2a-86be-c88bb88cd737", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-22344", "type": "seen", "source": "https://t.me/cibsecurity/38892", "content": "\u203c CVE-2022-22344 \u203c\n\nIBM Spectrum Copy Data Management 2.2.0.0 through 2.2.14.3 is vulnerable to HTTP header injection, caused by improper validation of input by the HOST headers. This could allow an attacker to conduct various attacks against the vulnerable system, including cross-site scripting, cache poisoning or session hijacking. IBM X-Force ID: 220038\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-14T19:18:21.000000Z"}, {"uuid": "77c2e2d8-f5ee-4589-a74c-56a2ceb33f54", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-22346", "type": "seen", "source": "https://t.me/cibsecurity/38889", "content": "\u203c CVE-2022-22346 \u203c\n\nIBM Spectrum Protect Operations Center 8.1.0.000 through 8.1.13.xxx is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 220048.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-14T19:18:17.000000Z"}, {"uuid": "d02075c9-0f8e-4a5a-a8d0-bc0b7e986006", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-22349", "type": "seen", "source": "https://t.me/cibsecurity/38034", "content": "\u203c CVE-2022-22349 \u203c\n\nIBM Sterling External Authentication Server 3.4.3.2, 6.0.2.0, and 6.0.3.0 is vulnerable to path traversals, due to not properly validating RESTAPI configuration data. An authorized user could import invalid data which could be used for an attack. IBM X-Force ID: 220144.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-24T20:14:45.000000Z"}]}