{"vulnerability": "CVE-2022-4775", "sightings": [{"uuid": "1e665c74-8d0f-453f-84df-b180dc539d07", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-47758", "type": "seen", "source": "https://t.me/cibsecurity/62957", "content": "\u203c CVE-2022-47758 \u203c\n\nNanoleaf firmware v7.1.1 and below is missing an SSL certificate, allowing attackers to execute arbitrary code via a DHCP hijacking attack.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-27T07:39:51.000000Z"}, {"uuid": "f6617d47-981f-4b2a-8af3-9d680e66ab28", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-47757", "type": "seen", "source": "https://t.me/cibsecurity/63278", "content": "\u203c CVE-2022-47757 \u203c\n\nIn imo.im 2022.11.1051, a path traversal vulnerability delivered via an unsanitized deeplink can force the application to write a file into the application's data directory. This may allow an attacker to save a shared library under a special directory which the app uses to dynamically load modules. Loading the library can lead to arbitrary code execution.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-04T07:56:47.000000Z"}, {"uuid": "5d9bfe47-fbb2-41c0-8303-d98cbface877", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-47758", "type": "published-proof-of-concept", "source": "https://t.me/cKure/13069", "content": "\u25a0\u25a0\u25a0\u25a0\u25a1 Hacking smart lights: the story behind CVE-2022-47758.\n\nhttps://pwning.tech/cve-2022-47758/", "creation_timestamp": "2024-06-05T14:37:53.000000Z"}, {"uuid": "3d065986-2af4-4029-9b38-af36047b6008", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-47758", "type": "published-proof-of-concept", "source": "Telegram/ZM3fpZ54VcLdK07cLXY9FeKGUOVAT36X4OVdGxR76R5ekV0", "content": "", "creation_timestamp": "2024-06-06T13:24:10.000000Z"}, {"uuid": "80eb96d2-3efe-45d9-8049-460b651c18d4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-47757", "type": "exploited", "source": "https://t.me/androidMalware/1876", "content": "Arbitrary code execution discoverd in Android imo-International Calls & Chat with 1B installs up to version 2022.11.1051 (CVE-2022-47757)  \nA path traversal vulnerability delivered using a deeplink can force the IMO app to write files into its data directory. This allows an attacker to write a library file that the app uses to dynamically load modules  \nhttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-47757", "creation_timestamp": "2023-05-05T23:33:28.000000Z"}]}