{"vulnerability": "CVE-2022-3885", "sightings": [{"uuid": "6e7c5d64-beb7-49ec-be59-175e96823c78", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-38855", "type": "seen", "source": "https://t.me/cibsecurity/49819", "content": "\u203c CVE-2022-38855 \u203c\n\nCertain The MPlayer Project products are vulnerable to Buffer Overflow via function gen_sh_video () of mplayer/libmpdemux/demux_mov.c. This affects mplayer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-15T18:27:37.000000Z"}, {"uuid": "9f817491-71d9-4c0b-ad0f-e8294626025e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-3885", "type": "seen", "source": "https://t.me/cibsecurity/52705", "content": "\u203c CVE-2022-3885 \u203c\n\nUse after free in V8 in Google Chrome prior to 107.0.5304.106 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chrome security severity: High)\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-11-09T07:35:48.000000Z"}, {"uuid": "de7b8967-3a0f-41e7-acc1-86c6615c111a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-38858", "type": "seen", "source": "https://t.me/cibsecurity/49818", "content": "\u203c CVE-2022-38858 \u203c\n\nCertain The MPlayer Project products are vulnerable to Buffer Overflow via function mov_build_index() of libmpdemux/demux_mov.c. This affects mplayer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-15T18:27:36.000000Z"}, {"uuid": "38189fdc-f098-4c56-8ce2-7d4973523bfd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-38853", "type": "seen", "source": "https://t.me/cibsecurity/49816", "content": "\u203c CVE-2022-38853 \u203c\n\nCertain The MPlayer Project products are vulnerable to Buffer Overflow via function asf_init_audio_stream() of libmpdemux/asfheader.c. This affects mplayer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-15T18:27:34.000000Z"}, {"uuid": "8e1a66a9-411e-4293-b5b3-55f5a2cd7ef4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-38850", "type": "seen", "source": "https://t.me/cibsecurity/49843", "content": "\u203c CVE-2022-38850 \u203c\n\nThe MPlayer Project mencoder SVN-r38374-13.0.1 is vulnerable to Divide By Zero via the function config () of llibmpcodecs/vf_scale.c.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-15T20:27:53.000000Z"}, {"uuid": "9cd9e5ce-7a17-4150-8e2a-9507a87f0f35", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-38856", "type": "seen", "source": "https://t.me/cibsecurity/49815", "content": "\u203c CVE-2022-38856 \u203c\n\nCertain The MPlayer Project products are vulnerable to Buffer Overflow via function mov_build_index() of libmpdemux/demux_mov.c. This affects mplayer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-15T18:27:32.000000Z"}, {"uuid": "f732502a-a808-4053-8c2b-d3914a1c403f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-3885", "type": "seen", "source": "https://t.me/CyberSecurityTechnologies/7685", "content": "#exploit\n1. CVE-2022-3885:\nWebAssembly UAF in catch block with stale memory start pointer\nhttps://bugs.chromium.org/p/chromium/issues/detail?id=1377816\n\n2. Double-free vulnerability in OpenSSH server 9.1\nhttps://www.openwall.com/lists/oss-security/2023/02/02/2\n\n3. CVE-2022-4135:\nChrome heap buffer overflow in validating command decoder\nhttps://googleprojectzero.github.io/0days-in-the-wild//0day-RCAs/2022/CVE-2022-4135.html", "creation_timestamp": "2023-02-04T13:17:01.000000Z"}]}