{"vulnerability": "CVE-2022-23553", "sightings": [{"uuid": "540548d2-0fc5-49b1-9f71-d1dff6299a91", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-23553", "type": "seen", "source": "https://t.me/cibsecurity/55507", "content": "\u203c CVE-2022-23553 \u203c\n\nAlpine is a scaffolding library in Java. Alpine prior to version 1.10.4 allows URL access filter bypass. This issue has been fixed in version 1.10.4. There are no known workarounds.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-28T22:12:30.000000Z"}, {"uuid": "519f02f6-c641-4efd-aad6-005c504e9775", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-23553", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/11352", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-23553\n\ud83d\udd25 CVSS Score: 7.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N)\n\ud83d\udd39 Description: Alpine is a scaffolding library in Java. Alpine prior to version 1.10.4 allows URL access filter bypass. This issue has been fixed in version 1.10.4. There are no known workarounds.\n\ud83d\udccf Published: 2022-12-28T18:01:14.741Z\n\ud83d\udccf Modified: 2025-04-10T20:29:58.561Z\n\ud83d\udd17 References:\n1. https://securitylab.github.com/advisories/GHSL-2021-1009-Alpine/\n2. https://github.com/stevespringett/Alpine/blob/alpine-parent-1.10.2/alpine/src/main/java/alpine/filters/BlacklistUrlFilter.java#L107-L121\n3. https://github.com/stevespringett/Alpine/blob/alpine-parent-1.10.2/alpine/src/main/java/alpine/filters/WhitelistUrlFilter.java#L115-L127", "creation_timestamp": "2025-04-10T20:49:53.000000Z"}]}