{"vulnerability": "CVE-2022-46764", "sightings": [{"uuid": "649f067a-0c67-447d-9d37-d4681933b6fb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-46764", "type": "seen", "source": "https://t.me/cyberguerre/4048", "content": "\u0412 \u0431\u0430\u0437\u0443 \u0434\u0430\u043d\u043d\u044b\u0445 \u0443\u0433\u0440\u043e\u0437 \u0424\u0421\u0422\u042d\u041a \u0434\u043e\u0431\u0430\u0432\u043b\u0435\u043d\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 TrueConf Client, \u043a\u043e\u0442\u043e\u0440\u0443\u044e \u043d\u0430\u0448\u043b\u0438 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 CheckPoint.\n\n(\u041a\u0441\u0442\u0430\u0442\u0438, \u041d\u041a\u0426\u041a\u0418 \u0434\u043e\u0431\u0430\u0432\u0438\u043b \u044d\u0442\u0443 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 \u0441\u0432\u043e\u0439 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0438\u0439 \u0431\u044e\u043b\u043b\u0435\u0442\u0435\u043d\u044c \u0435\u0449\u0451 \u0431\u0435\u0437 \u0438\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u0430 \u0411\u0414\u0423.)\n\n\u0421\u043f\u0435\u0446\u0438\u0430\u043b\u0438\u0441\u0442\u044b \u0424\u0421\u0422\u042d\u041a \u044f\u0432\u043d\u043e \u0438\u0437\u0443\u0447\u0438\u043b\u0438 \u0432 \u0431\u0430\u0437\u0435 CVE \u0438 \u0434\u0440\u0443\u0433\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u0430\u0445 TrueConf. \u0422\u0430\u043a \u0432 \u0411\u0414\u0423 \u043f\u043e\u044f\u0432\u0438\u043b\u0430\u0441\u044c \u00ab\u043d\u043e\u0432\u0430\u044f\u00bb \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0430\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 TrueConf Server \u2014 \u0441 \u043d\u0435\u043a\u043e\u0442\u043e\u0440\u044b\u043c \u0437\u0430\u043f\u043e\u0437\u0434\u0430\u043d\u0438\u0435\u043c, \u0447\u0442\u043e \u0432\u0438\u0434\u043d\u043e \u0438\u0437 \u0438\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u043e\u0432: CVE-2022-46764 \u0438 BDU:2026-04607. \u041f\u0440\u0438\u0447\u0451\u043c \u0432 2022 \u0433\u043e\u0434\u0443 \u0435\u0451 \u0432\u044b\u044f\u0432\u0438\u043b\u0430 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0430\u044f \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u044f SolidLab.", "creation_timestamp": "2026-04-06T18:52:08.000000Z"}, {"uuid": "b732f90b-d0f9-452e-b7dc-9806d5d411c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-46764", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/11478", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-46764\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: A SQL injection issue in the web API in TrueConf Server 5.2.0.10225 allows remote unauthenticated attackers to execute arbitrary SQL commands, ultimately leading to remote code execution.\n\ud83d\udccf Published: 2022-12-27T00:00:00.000Z\n\ud83d\udccf Modified: 2025-04-11T16:51:08.109Z\n\ud83d\udd17 References:\n1. https://solidlab.ru/our-news/145-trueconf.html\n2. https://github.com/sldlb/public_cve_submissions/blob/main/CVE-2022-46764.txt\n3. https://vuldb.com/?diff.216845", "creation_timestamp": "2025-04-11T17:51:20.000000Z"}, {"uuid": "f1d2862c-793d-4750-88e8-9296ea457074", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-46764", "type": "seen", "source": "https://t.me/cibsecurity/55381", "content": "\u203c CVE-2022-46764 \u203c\n\nA SQL injection issue in the web API in TrueConf Server 5.2.0.10225 allows remote unauthenticated attackers to execute arbitrary SQL commands, ultimately leading to remote code execution.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-31T14:15:32.000000Z"}]}