{"vulnerability": "CVE-2022-2624", "sightings": [{"uuid": "1a322501-36fb-4a59-9ba9-6de224468a6b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-2624", "type": "seen", "source": "https://t.me/cibsecurity/48122", "content": "\u203c CVE-2022-2624 \u203c\n\nHeap buffer overflow in PDF in Google Chrome prior to 104.0.5112.79 allowed a remote attacker who convinced a user to engage in specific user interactions to potentially exploit heap corruption via a crafted PDF file.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-08-13T00:34:03.000000Z"}, {"uuid": "d748be33-14d3-4869-af38-3e8a68af17cb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26240", "type": "seen", "source": "https://t.me/cibsecurity/50906", "content": "\u203c CVE-2022-26240 \u203c\n\nThe default privileges for the running service Normand Message Buffer in Beckman Coulter Remisol Advance v2.0.12.1 and prior allows non-privileged users to overwrite and manipulate executables and libraries. This allows attackers to access sensitive data.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-10-06T22:16:58.000000Z"}, {"uuid": "29a4f8b5-4328-48d6-add2-b525b2ec23ed", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26243", "type": "seen", "source": "https://t.me/cibsecurity/39433", "content": "\u203c CVE-2022-26243 \u203c\n\nTenda AC10-1200 v15.03.06.23_EN was discovered to contain a buffer overflow in the setSmartPowerManagement function.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-23T21:28:49.000000Z"}, {"uuid": "27b3fd00-5411-423d-8ca7-9b2a900677f0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26244", "type": "seen", "source": "https://t.me/cibsecurity/39785", "content": "\u203c CVE-2022-26244 \u203c\n\nA stored cross-site scripting (XSS) vulnerability in Hospital Patient Record Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the \"special\" field.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-30T07:11:52.000000Z"}, {"uuid": "cc404e74-9c56-4690-989f-52049978b832", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26245", "type": "seen", "source": "https://t.me/cibsecurity/39591", "content": "\u203c CVE-2022-26245 \u203c\n\nFalcon-plus v0.3 was discovered to contain a SQL injection vulnerability via the parameter grpName in /config/service/host.go.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-27T18:39:15.000000Z"}, {"uuid": "25a19182-7271-4ad8-ae23-cd0fb9e6048d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26249", "type": "seen", "source": "https://t.me/cibsecurity/39519", "content": "\u203c CVE-2022-26249 \u203c\n\nSurvey King v0.3.0 does not filter data properly when exporting excel files, allowing attackers to execute arbitrary code or access sensitive information via a CSV injection attack.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-25T01:29:58.000000Z"}]}