{"vulnerability": "CVE-2023-2330", "sightings": [{"uuid": "ede1c8d8-08d9-4613-962e-beb18ef004d1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2330", "type": "seen", "source": "https://t.me/cibsecurity/66831", "content": "\u203c CVE-2023-2330 \u203c\n\nThe Caldera Forms Google Sheets Connector WordPress plugin through 1.2 does not have CSRF check when updating its Access Code, which could allow attackers to make logged in admin change the access code to an arbitrary one via a CSRF attack\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-17T18:40:29.000000Z"}, {"uuid": "cf433f89-2092-42eb-af1d-20a458b4befa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23300", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/2406", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-23300\n\ud83d\udd39 Description: The `Toybox.Cryptography.Cipher.initialize` API method in CIQ API version 3.0.0 through 4.1.7 does not validate its parameters, which can result in buffer overflows when copying data. A malicious application could call the API method with specially crafted parameters and hijack the execution of the device's firmware.\n\ud83d\udccf Published: 2023-05-23T00:00:00\n\ud83d\udccf Modified: 2025-01-21T14:54:57.447Z\n\ud83d\udd17 References:\n1. https://developer.garmin.com/connect-iq/api-docs/Toybox/Cryptography/Cipher.html#initialize-instance_function\n2. https://github.com/anvilsecure/garmin-ciq-app-research/blob/main/advisories/CVE-2023-23300.md", "creation_timestamp": "2025-01-21T15:00:41.000000Z"}, {"uuid": "4760a93f-8db4-4a79-ba8f-82cddc6f7179", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23302", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/2410", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-23302\n\ud83d\udd39 Description: The `Toybox.GenericChannel.setDeviceConfig` API method in CIQ API version 1.2.0 through 4.1.7 does not validate its parameter, which can result in buffer overflows when copying various attributes. A malicious application could call the API method with specially crafted object and hijack the execution of the device's firmware.\n\ud83d\udccf Published: 2023-05-23T00:00:00\n\ud83d\udccf Modified: 2025-01-21T14:49:08.831Z\n\ud83d\udd17 References:\n1. https://developer.garmin.com/connect-iq/api-docs/Toybox/Ant/GenericChannel.html#setDeviceConfig-instance_function\n2. https://github.com/anvilsecure/garmin-ciq-app-research/blob/main/advisories/CVE-2023-23302.md", "creation_timestamp": "2025-01-21T15:00:44.000000Z"}, {"uuid": "055f06c9-dc05-4b7a-b5f0-85e46d009141", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23301", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/2409", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-23301\n\ud83d\udd39 Description: The `news` MonkeyC operation code in CIQ API version 1.0.0 through 4.1.7 fails to check that string resources are not extending past the end of the expected sections. A malicious CIQ application could craft a string that starts near the end of a section, and whose length extends past its end. Upon loading the string, the GarminOS TVM component may read out-of-bounds memory.\n\ud83d\udccf Published: 2023-05-23T00:00:00\n\ud83d\udccf Modified: 2025-01-21T14:50:39.670Z\n\ud83d\udd17 References:\n1. https://github.com/anvilsecure/garmin-ciq-app-research/blob/main/advisories/CVE-2023-23301.md", "creation_timestamp": "2025-01-21T15:00:43.000000Z"}, {"uuid": "90f2c639-a061-469b-b6c1-06562735981c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23303", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/2412", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-23303\n\ud83d\udd39 Description: The `Toybox.Ant.GenericChannel.enableEncryption` API method in CIQ API version 3.2.0 through 4.1.7 does not validate its parameter, which can result in buffer overflows when copying various attributes. A malicious application could call the API method with specially crafted object and hijack the execution of the device's firmware.\n\ud83d\udccf Published: 2023-05-23T00:00:00\n\ud83d\udccf Modified: 2025-01-21T14:47:35.365Z\n\ud83d\udd17 References:\n1. https://developer.garmin.com/connect-iq/api-docs/Toybox/Ant/GenericChannel.html#enableEncryption-instance_function\n2. https://github.com/anvilsecure/garmin-ciq-app-research/blob/main/advisories/CVE-2023-23303.md", "creation_timestamp": "2025-01-21T15:00:49.000000Z"}, {"uuid": "be3a41f7-32fc-4b2a-b585-a14c89ed80b2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23304", "type": "seen", "source": "Telegram/9as7lJRN5pKV67g6r43Qqr8D-utM6l_-2-shkSVvAQlo3D0a", "content": "", "creation_timestamp": "2025-02-01T17:28:09.000000Z"}, {"uuid": "14ecbef9-ae1f-41ef-97d9-da35d332176c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23300", "type": "seen", "source": "https://t.me/cibsecurity/64650", "content": "\u203c CVE-2023-23300 \u203c\n\nThe `Toybox.Cryptography.Cipher.initialize` API method in CIQ API version 3.0.0 through 4.1.7 does not validate its parameters, which can result in buffer overflows when copying data. A malicious application could call the API method with specially crafted parameters and hijack the execution of the device's firmware.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-24T00:37:23.000000Z"}, {"uuid": "206fb1ae-d8f8-44d4-809c-54d6109c82d6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23303", "type": "seen", "source": "https://t.me/cibsecurity/64651", "content": "\u203c CVE-2023-23303 \u203c\n\nThe `Toybox.Ant.GenericChannel.enableEncryption` API method in CIQ API version 3.2.0 through 4.1.7 does not validate its parameter, which can result in buffer overflows when copying various attributes. A malicious application could call the API method with specially crafted object and hijack the execution of the device's firmware.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-24T00:40:24.000000Z"}, {"uuid": "2a68b051-5318-4b8c-955a-92641aa6061b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23306", "type": "seen", "source": "https://t.me/cibsecurity/64660", "content": "\u203c CVE-2023-23306 \u203c\n\nThe `Toybox.Ant.BurstPayload.add` API method in CIQ API version 2.2.0 through 4.1.7 suffers from a type confusion vulnreability, which can result in an out-of-bounds write operation. A malicious application could create a specially crafted `Toybox.Ant.BurstPayload` object, call its `add` method, override arbitrary memory and hijack the execution of the device's firmware.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-24T00:40:35.000000Z"}, {"uuid": "686f1dad-4cde-44ec-8a79-2eeab3edd1dc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23304", "type": "seen", "source": "https://t.me/cibsecurity/64656", "content": "\u203c CVE-2023-23304 \u203c\n\nThe GarminOS TVM component in CIQ API version 2.1.0 through 4.1.7 allows applications with a specially crafted head section to use the `Toybox.SensorHistory` module without permission. A malicious application could call any functions from the `Toybox.SensorHistory` module without the user's consent and disclose potentially private or sensitive information.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-24T00:40:31.000000Z"}, {"uuid": "b7634fa2-2c0f-40b6-986b-4b9b34de97fb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23305", "type": "seen", "source": "https://t.me/cibsecurity/64654", "content": "\u203c CVE-2023-23305 \u203c\n\nThe GarminOS TVM component in CIQ API version 1.0.0 through 4.1.7 is vulnerable to various buffer overflows when loading binary resources. A malicious application embedding specially crafted resources could hijack the execution of the device's firmware.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-24T00:40:27.000000Z"}, {"uuid": "2ff2c521-b1a5-4324-8c9d-885b8c9ddcda", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23302", "type": "seen", "source": "https://t.me/cibsecurity/64653", "content": "\u203c CVE-2023-23302 \u203c\n\nThe `Toybox.GenericChannel.setDeviceConfig` API method in CIQ API version 1.2.0 through 4.1.7 does not validate its parameter, which can result in buffer overflows when copying various attributes. A malicious application could call the API method with specially crafted object and hijack the execution of the device's firmware.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-24T00:40:26.000000Z"}]}