{"vulnerability": "CVE-2022-3364", "sightings": [{"uuid": "27b9495c-331e-463f-8fcc-dd8d5ff106cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-33647", "type": "seen", "source": "https://googleprojectzero.blogspot.com/2022/10/rc4-is-still-considered-harmful.html", "content": "", "creation_timestamp": "2022-10-27T19:48:00.000000Z"}, {"uuid": "43b2fa2e-21aa-4d99-ab0d-49967cfa89a0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-3364", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/17009", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-3364\n\ud83d\udd25 CVSS Score: 5.3 (cvssV3_0, Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)\n\ud83d\udd39 Description: Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.0a3.\n\ud83d\udccf Published: 2022-09-29T20:45:12.000Z\n\ud83d\udccf Modified: 2025-05-20T16:04:35.669Z\n\ud83d\udd17 References:\n1. https://huntr.dev/bounties/e70ad507-1424-463b-bdf1-c4a6fbe6e720\n2. https://github.com/ikus060/rdiffweb/commit/b62c479ff6979563c7c23e7182942bc4f460a2c7", "creation_timestamp": "2025-05-20T16:40:56.000000Z"}, {"uuid": "6519ddd3-b80e-4b33-ab8a-01b4345a607d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-33647", "type": "published-proof-of-concept", "source": "https://t.me/TopCyberTechNews/189", "content": "Top Security News for 26/10/2022\n\nHow businesses are gaining integrated data protection with Microsoft Purview\nhttps://www.microsoft.com/en-us/security/blog/2022/10/25/how-businesses-are-gaining-integrated-data-protection-with-microsoft-purview/ \n\nCISA Seeks Feedback on Baseline Measures to Secure Cloud Configuration\nhttps://malware.news/t/cisa-seeks-feedback-on-baseline-measures-to-secure-cloud-configuration/64496#post_1 \n\nIndictments in PRC espionage cases. LogCrusher and OverLog. Update on the hybrid war. Two cyber trend studies.\nhttps://thecyberwire.com/newsletters/daily-briefing/11/205 \n\nHow the Software Supply Chain Security is Threatened by Hackers\nhttps://thehackernews.com/2022/10/how-software-supply-chain-security-is.html \n\nThe Logging Dead: Two Event Log Vulnerabilities Haunting Windows\nhttps://www.reddit.com/r/netsec/comments/yd1pdw/the_logging_dead_two_event_log_vulnerabilities/ \n\nMicropatches for Kerberos Elevation of Privilege (CVE-2022-33647, CVE-2022-33679)\nhttps://malware.news/t/micropatches-for-kerberos-elevation-of-privilege-cve-2022-33647-cve-2022-33679/64498#post_1 \n\nIoT security strategy from enterprises using connected devices\nhttps://www.networkworld.com/article/3677470/iot-security-strategy-from-those-who-use-connected-devices.html#tk.rss_all \n\nPayment Terminal Malware Steals $3.3m Worth Of Credit Card Numbers\nhttps://packetstormsecurity.com/news/view/33971/Payment-Terminal-Malware-Steals-3.3m-Worth-Of-Credit-Card-Numbers.html \n\n\u201cBaseball & Espionage\u201d \u2013with World Series Champion Ryan Zimmerman & Marc Polymeropoulous\nhttps://thecyberwire.com/podcasts/spycast/561/notes \n\nThe Secrets Behind Uber's Breach\nhttps://www.reddit.com/r/netsec/comments/ydebot/the_secrets_behind_ubers_breach/ \n\n    \nFollow Top Cyber News at https://t.me/TopCyberTechNews\nFeel free to DM me at https://twitter.com/ShayaFeedman", "creation_timestamp": "2022-10-26T07:00:06.000000Z"}, {"uuid": "14fb741e-23bd-428c-8c0e-ba25bac702e4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-33647", "type": "published-proof-of-concept", "source": "Telegram/v_2CwLdwouF2yh_UJcUQ1l4c6U_w9aWQ_FfYAvyYxFmdBFE", "content": "", "creation_timestamp": "2025-06-30T09:00:04.000000Z"}, {"uuid": "3e483e49-4bd7-48c3-8b23-fe1122a9110e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-33647", "type": "published-proof-of-concept", "source": "Telegram/YEiFamPdgcqsNBKcTHrz6s6bZPTIwshB08cHvtzul5ZyUxA", "content": "", "creation_timestamp": "2025-06-30T21:00:03.000000Z"}, {"uuid": "a4230c16-05b6-4bd1-a46d-29d8f0316073", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-33647", "type": "seen", "source": "https://t.me/ctinow/72417", "content": "Technical Analysis of CVE-2022-33679 and CVE-2022-33647 Kerberos Vulnerabilities\n\nhttps://ift.tt/tiLPU5j", "creation_timestamp": "2022-10-31T19:01:56.000000Z"}, {"uuid": "5adbb52e-26dd-42bb-9852-d14b9a3271ba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-3364", "type": "seen", "source": "https://t.me/cibsecurity/50743", "content": "\u203c CVE-2022-3364 \u203c\n\nAllocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.0a3.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-30T00:35:22.000000Z"}, {"uuid": "1491cb5d-7800-45ba-ab47-2bf828c93bdc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-33646", "type": "seen", "source": "https://t.me/cibsecurity/47828", "content": "\u203c CVE-2022-33646 \u203c\n\nAzure Batch Node Agent Elevation of Privilege Vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-08-10T00:31:15.000000Z"}]}