{"vulnerability": "CVE-2022-2663", "sightings": [{"uuid": "e5a7fadc-e714-4e83-a98d-54e589b47602", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-2663", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-044-09", "content": "", "creation_timestamp": "2025-02-13T11:00:00.000000Z"}, {"uuid": "3cc55afc-8139-4a8e-9728-10de992e99a8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-2663", "type": "seen", "source": "https://t.me/MikrotikNews/399", "content": "RouterOS 7.6beta10 [Testing] released!\n\nFixed: CVE-2022-2663\n\nChange-log in the Comments below\n\nChats: [ENG] [\u0423\u041a\u0420] [\u0420\u0423\u0421] [\u4e2d\u6587]", "creation_timestamp": "2022-09-30T14:19:53.000000Z"}, {"uuid": "2f1be3b6-0623-4baf-ab18-1fb27747248b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-2663", "type": "seen", "source": "https://t.me/MikrotikNews/393", "content": "RouterOS 7.6beta8 [Testing] released!\n\nFixed: CVE-2022-2663\n\nChange-log in the Comments below\n\nChats: [ENG] [\u0423\u041a\u0420] [\u0420\u0423\u0421] [\u4e2d\u6587]", "creation_timestamp": "2022-09-23T14:28:43.000000Z"}, {"uuid": "641b664d-0248-4782-8cfc-d25d4aaeaa67", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-2663", "type": "seen", "source": "https://t.me/MikrotikNews/386", "content": "RouterOS 7.6beta7 [Testing] released!\n\nFixed: CVE-2022-2663\n\nChange-log in the Comments below\n\nChats: [ENG] [\u0423\u041a\u0420] [\u0420\u0423\u0421] [\u4e2d\u6587]", "creation_timestamp": "2022-09-20T07:57:05.000000Z"}, {"uuid": "335aae3e-2a9b-418d-b6de-46feac5b3333", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-2663", "type": "seen", "source": "https://t.me/MikrotikNews/422", "content": "RouterOS 7.6 [Stable] released!\n\nFixed: CVE-2022-2663\n\nChange-log in the Comments below\n\nChats: [ENG] [\u0423\u041a\u0420] [\u0420\u0423\u0421] [\u4e2d\u6587]", "creation_timestamp": "2022-10-18T10:00:33.000000Z"}, {"uuid": "1c9d0f50-e5cf-4c06-b596-261a350e8793", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-2663", "type": "seen", "source": "https://t.me/MikrotikNews/419", "content": "RouterOS 7.6rc3 [Testing] released!\n\nFixed: CVE-2022-2663\n\nChange-log in the Comments below\n\nChats: [ENG] [\u0423\u041a\u0420] [\u0420\u0423\u0421] [\u4e2d\u6587]", "creation_timestamp": "2022-10-15T13:58:07.000000Z"}, {"uuid": "09dcaaf8-735b-4cac-87df-598c2ac0026f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-2663", "type": "seen", "source": "https://t.me/MikrotikNews/414", "content": "RouterOS 7.6rc2 [Testing] released!\n\nFixed: CVE-2022-2663\n\nChange-log in the Comments below\n\nChats: [ENG] [\u0423\u041a\u0420] [\u0420\u0423\u0421] [\u4e2d\u6587]", "creation_timestamp": "2022-10-12T10:46:58.000000Z"}, {"uuid": "7093b493-a7fd-4fcf-81ff-8beafe904d6f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-2663", "type": "seen", "source": "https://t.me/MikrotikNews/407", "content": "RouterOS 7.6rc1 [Testing] released!\n\nFixed: CVE-2022-2663\n\nChange-log in the Comments below\n\nChats: [ENG] [\u0423\u041a\u0420] [\u0420\u0423\u0421] [\u4e2d\u6587]", "creation_timestamp": "2022-10-05T09:20:40.000000Z"}, {"uuid": "f233dc24-4897-4134-92a6-f07d90190f3d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-2663", "type": "seen", "source": "https://t.me/MikrotikNews/376", "content": "RouterOS 7.6beta6 [Testing] released!\n\nFixed: CVE-2022-2663\n\nChange-log in the Comments below\n\nChats: [ENG] [\u0423\u041a\u0420] [\u0420\u0423\u0421] [\u4e2d\u6587]", "creation_timestamp": "2022-09-08T07:30:23.000000Z"}, {"uuid": "a7c6cc5f-a0b2-4d00-8185-6ab86e19ed60", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-2663", "type": "seen", "source": "https://t.me/MikrotikNews/370", "content": "RouterOS 7.6beta4 [Testing] released!\n\nFixed: CVE-2022-2663\n\nChange-log in the Comments below\n\nChat: [ENG] [UKR] [RUS]", "creation_timestamp": "2022-09-02T11:56:31.000000Z"}, {"uuid": "d5005617-4c77-4ad6-a358-51b98c737597", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-2663", "type": "seen", "source": "https://t.me/mikrotik_rus/263", "content": "\u0427\u0442\u043e \u043d\u043e\u0432\u043e\u0433\u043e \u0432 RouterOS 7.6 (2022-Oct-17 13:55):\n\n*) bgp - added support for BGP advertisement displaying (CLI only);\n*) bgp - fixed reporting of session uptime;\n*) bgp - improved session establishment speed after bootup;\n*) bonding - fixed ARP monitor packets with bond's MAC address;\n*) bonding - improved interface stability on slave configuration changes;\n*) bonding - reduce \"actual-mtu\" according to interface \"l2mtu\";\n*) branding - execute \"autorun.scr\" file when installing branding package;\n*) capsman - fixed RADIUS accounting when EAP is used;\n*) certificate - fixed SHA1 certificate name lookup;\n*) certificate - improved certificate management, signing and storing processes;\n*) certificate - restricted maximum retry attempt window for Let's Encrypt certificate to 60 minutes;\n*) container - added \"start-on-boot\" parameter for automatic container startup;\n*) container - allow changing container related parameters while it is running;\n*) container - fixed usage of non-authenticated registries;\n*) dhcpv4-server - fixed matcher functionality;\n*) dhcpv4-server - fixed RADIUS accounting for local leases;\n*) dhcpv4-server - improved service stability when removing dynamic leases;\n*) dhcpv6-client - fixed false error status reporting when server offers T1 or T2 value as 0;\n*) dns - added \"match-subdomain\" option for static entries (CLI only);\n*) dot1x - fixed incorrect error when using \"mac-auth\";\n*) ethernet - added \"5Gbps\" option for speed setting;\n*) firewall - added \"src/dst-address-type\" parameter under \"IPv6/Firewall/Mangle\" menu;\n*) firewall - disable IRC NAT helper on upgrade;\n*) firewall - fixed IPv6 filtering with \"in/out-interface\" matcher that is in VRF;\n*) firewall - fixed IRC NAT helper (CVE-2022-2663);\n*) firewall - fixed usage of \"netmap\" action for IPv6 source NAT;\n*) health - fixed fan speed and temperature reporting on CCR1072;\n*) health - improved voltage reading on RBmAP-2nD;\n*) hotspot - fixed service initialization when HTML directory configured on an external disk;\n*) hotspot - fixed SSL usage on all HotSpot pages;\n*) hotspot - improved stability when receiving bogus packets;\n*) hotspot - limit maximum allowed connections based on free RAM resources;\n*) hotspot - removed \"routerboard.com\" URL from default HotSpot advertise;\n*) interface - added warning when interface has configured \"mtu\" higher than \"l2mtu\";\n*) ipsec - added \"invalid-packets\" counter for Installed SA's menu;\n*) ipsec - fixed packet processing by hardware encryption engine on MMIPS devices;\n*) l3hw - added \"l3hw-settings\" sub menu under the switch menu;\n*) l3hw - added support for IPv6 route offloading (disabled by default);\n*) l3hw - fixed \"H\" flag presence for accelerated connection tracking entries;\n*) l3hw - fixed possible packet loss when using HW offloaded NAT;\n*) l3hw - improved connected host offloading on startup;\n*) l3hw - improved connected IPv6 host offloading when routing table is nearly full for 98DX224S, 98DX226S, and 98DX3236 switch chips;\n*) l3hw - improved system stability;\n*) l3hw - made route offloading selection work only on unicast;\n*) lte - added interface name in MTU debug logging message;\n*) lte - added periodic IPv6 RS to trigger IPv6 adress acquisition for non-MBIM modems;\n*) lte - added support for Neoway N75-EA;\n*) lte - added support to perform FOTA upgrade from local file for EG12-EA, EG18-EA, RG502Q-AE, EG06-A, EP06-A modems;\n*) lte - disabled RPLMN on Chateau 5G;\n*) lte - fixed at-chat on Telit FN980m;\n*) lte - fixed handover from UMTS to LTE when PS activation had failed for MBIM modems;\n*) lte - fixed MBIM modem initialization;\n*) lte - fixed re-attaching on PS detach for MBIM modems;\n*) lte - removed reconnect delay after receiving DETACH notification for MBIM modems;\n*) macsec - added configuration support with VLAN, ARP, DHCP and bridge tagging/untagging;\n*) macsec - added logging support with \"debug\" and \"dot1x\" topics;\n*) macsec - added support for MTU and L2MTU;\n*) macsec - fixed interface after Ethernet link down;\n*) macsec - fixed interface statistics and missing properties;\n*) macsec - fixed in", "creation_timestamp": "2022-10-18T23:08:12.000000Z"}, {"uuid": "ef6201d5-a1d1-4917-bf36-90511249bdba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26631", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/1877", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2022\n\u63cf\u8ff0\uff1aCVE-2022-26631 - Automatic Question Paper Generator v1.0 SQLi\nURL\uff1ahttps://github.com/Cyb3rR3ap3r/CVE-2022-26631\n\n\u6807\u7b7e\uff1a#CVE-2022", "creation_timestamp": "2022-04-06T15:10:40.000000Z"}, {"uuid": "2a35b318-1542-4b55-9d7b-0442882d5011", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26631", "type": "seen", "source": "https://t.me/cibsecurity/41010", "content": "\u203c CVE-2022-26631 \u203c\n\nAutomatic Question Paper Generator v1.0 contains a Time-Based Blind SQL injection vulnerability via the id GET parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-18T18:23:22.000000Z"}, {"uuid": "27966469-1852-4b23-978f-680937fd80b7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26635", "type": "seen", "source": "https://t.me/cibsecurity/40175", "content": "\u203c CVE-2022-26635 \u203c\n\nPHP-Memcached v2.2.0 and below contains an improper NULL termination which allows attackers to execute CLRF injection.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-05T20:28:56.000000Z"}, {"uuid": "ef98e7e6-ca0b-47d7-92d3-21f69f1d36c8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26630", "type": "seen", "source": "https://t.me/cibsecurity/40190", "content": "\u203c CVE-2022-26630 \u203c\n\nJellycms v3.8.1 and below was discovered to contain an arbitrary file upload vulnerability via \\app.\\admin\\Controllers\\db.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-05T22:29:00.000000Z"}, {"uuid": "63f95428-b81b-4207-8765-851a3a06ec88", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26639", "type": "seen", "source": "https://t.me/cibsecurity/39692", "content": "\u203c CVE-2022-26639 \u203c\n\nTP-LINK TL-WR840N(ES)_V6.20 was discovered to contain a buffer overflow via the DNSServers parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-29T02:40:36.000000Z"}]}