{"vulnerability": "CVE-2022-39055", "sightings": [{"uuid": "7b9f4826-acb6-42a9-9fcd-2cf8d5173aa1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-39055", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/15750", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-39055\n\ud83d\udd25 CVSS Score: 5.3 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)\n\ud83d\udd39 Description: RAVA certificate validation system has inadequate filtering for URL parameter. An unauthenticated remote attacker can perform SSRF attack to discover internal network topology base on query response.\n\ud83d\udccf Published: 2022-10-18T05:40:19.195Z\n\ud83d\udccf Modified: 2025-05-09T14:51:35.855Z\n\ud83d\udd17 References:\n1. https://www.twcert.org.tw/tw/cp-132-6616-9092f-1.html", "creation_timestamp": "2025-05-09T15:25:42.000000Z"}, {"uuid": "2db56822-db88-4484-95a3-3e33f7d0900f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-39055", "type": "seen", "source": "https://t.me/cibsecurity/51657", "content": "\u203c CVE-2022-39055 \u203c\n\nRAVA certificate validation system has inadequate filtering for URL parameter. An unauthenticated remote attacker can perform SSRF attack to discover internal network topology base on query response.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-10-18T12:13:52.000000Z"}]}