{"vulnerability": "CVE-2022-2857", "sightings": [{"uuid": "05d9fd91-5697-4ab5-abb2-9618eedaff36", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-2857", "type": "seen", "source": "https://t.me/cibsecurity/50504", "content": "\u203c CVE-2022-2857 \u203c\n\nUse after free in Blink in Google Chrome prior to 104.0.5112.101 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-26T20:22:50.000000Z"}, {"uuid": "625f652b-0854-47ef-afb7-77fe641d5475", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-28571", "type": "seen", "source": "https://t.me/cibsecurity/41719", "content": "\u203c CVE-2022-28571 \u203c\n\nD-link 882 DIR882A1_FW130B06 was discovered to contain a command injection vulnerability in`/usr/bin/cli.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-02T16:27:54.000000Z"}, {"uuid": "30c6d822-a88d-4af6-aef0-0b0191ecca68", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-28573", "type": "seen", "source": "https://t.me/cibsecurity/41727", "content": "\u203c CVE-2022-28573 \u203c\n\nD-Link DIR-823-Pro v1.0.2 was discovered to contain a command injection vulnerability in the function SetNTPserverSeting. This vulnerability allows attackers to execute arbitrary commands via the system_time_timezone parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-02T18:32:52.000000Z"}, {"uuid": "4ebdc5fc-85bc-490a-a5f4-b0b77f4678b6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-28575", "type": "seen", "source": "https://t.me/cibsecurity/42059", "content": "\u203c CVE-2022-28575 \u203c\n\nIt is found that there is a command injection vulnerability in the setopenvpnclientcfg interface in TOTOlink A7100RU (v7.4cu.2313_b20191024) router, which allows attackers to execute arbitrary commands through a carefully constructed payload\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-05T22:37:05.000000Z"}, {"uuid": "d52cdb76-e02d-4f63-ab81-f7a671f4ade0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-28578", "type": "seen", "source": "https://t.me/cibsecurity/42049", "content": "\u203c CVE-2022-28578 \u203c\n\nIt is found that there is a command injection vulnerability in the setOpenVpnCfg interface in TOTOlink A7100RU (v7.4cu.2313_b20191024) router, which allows an attacker to execute arbitrary commands through a carefully constructed payload.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-05T22:36:50.000000Z"}, {"uuid": "2e2360a0-2ee9-47da-ac8b-09d77421ef1b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-28577", "type": "seen", "source": "https://t.me/cibsecurity/42045", "content": "\u203c CVE-2022-28577 \u203c\n\nIt is found that there is a command injection vulnerability in the delParentalRules interface in TOTOlink A7100RU (v7.4cu.2313_b20191024) router, which allows an attacker to execute arbitrary commands through a carefully constructed payload.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-05T22:36:44.000000Z"}, {"uuid": "79fe78c5-7df1-4918-860a-61509dc31347", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-28579", "type": "seen", "source": "https://t.me/cibsecurity/42052", "content": "\u203c CVE-2022-28579 \u203c\n\nIt is found that there is a command injection vulnerability in the setParentalRules interface in TOTOlink A7100RU (v7.4cu.2313_b20191024) router, which allows an attacker to execute arbitrary commands through a carefully constructed payload.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-05T22:36:53.000000Z"}, {"uuid": "d491e9f8-f3af-4a8e-8b8b-f5cde958cea0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-28572", "type": "seen", "source": "https://t.me/cibsecurity/41712", "content": "\u203c CVE-2022-28572 \u203c\n\nTenda AX1806 v1.0.0.1 was discovered to contain a command injection vulnerability in `SetIPv6Status` function\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-02T16:27:46.000000Z"}]}