{"vulnerability": "CVE-2022-23277", "sightings": [{"uuid": "8d82b2a7-3814-4e5c-86e4-d0cf97e011e5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-23277", "type": "seen", "source": "MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd", "content": "", "creation_timestamp": "2025-02-06T03:13:45.000000Z"}, {"uuid": "a0ebac45-efd4-4d97-9840-0b8adb5c11a1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-23277", "type": "seen", "source": "MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd", "content": "", "creation_timestamp": "2025-02-23T04:10:44.000000Z"}, {"uuid": "365baec2-d777-430b-a292-a38c1d6db440", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-23277", "type": "seen", "source": "https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/exchange_chainedserializationbinder_rce.rb", "content": "", "creation_timestamp": "2022-08-19T16:31:57.000000Z"}, {"uuid": "8ccf7c93-88c3-4355-b93f-723067c45237", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2022-23277", "type": "seen", "source": "https://www.govcert.gov.hk/en/alerts_detail.php?id=752", "content": "", "creation_timestamp": "2022-03-09T04:00:00.000000Z"}, {"uuid": "3c5271a0-b4d0-48c9-a454-e33b9f5fc1d8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-23277", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/3110", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2022\n\u63cf\u8ff0\uff1aCVE-2022-23277 POC to write a webshell to aspnet_client\nURL\uff1ahttps://github.com/7BitsTeam/CVE-2022-23277\n\n\u6807\u7b7e\uff1a#CVE-2022", "creation_timestamp": "2022-10-24T15:03:04.000000Z"}, {"uuid": "f27e8800-1942-4d90-a818-29bf7b7cdaab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-23277", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/6298", "content": "#Threat_Research\n1. Unrar Path Traversal Vulnerability in Zimbra Mail\nhttps://blog.sonarsource.com/zimbra-pre-auth-rce-via-unrar-0day\n2. Bypassing .NET Serialization Binders:\nCase studies for DevExpress (CVE-2022-28684) and Microsoft Exchange (CVE-2022-23277)\nhttps://codewhitesec.blogspot.com/2022/06/bypassing-dotnet-serialization-binders.html", "creation_timestamp": "2022-06-29T11:03:01.000000Z"}]}