{"vulnerability": "CVE-2023-2475", "sightings": [{"uuid": "6f4bbfbd-ede0-4443-a911-c2021d012143", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24757", "type": "seen", "source": "Telegram/b381BEJVlK6V6kekdX_3dQAd1UIBFEGFWrN37M8h84CaWfTI", "content": "", "creation_timestamp": "2025-03-08T04:34:57.000000Z"}, {"uuid": "7a4447af-7c2e-45b2-bbd2-9aa014d8876e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24758", "type": "seen", "source": "https://t.me/cibsecurity/59240", "content": "\u203c CVE-2023-24758 \u203c\n\nlibde265 v1.0.10 was discovered to contain a NULL pointer dereference in the ff_hevc_put_weighted_pred_avg_8_sse function at sse-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input file.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-01T18:33:40.000000Z"}, {"uuid": "b8c96c77-fc2e-4978-bf0b-259fad9e1cdf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2475", "type": "seen", "source": "https://t.me/cibsecurity/63153", "content": "\u203c CVE-2023-2475 \u203c\n\nA vulnerability was found in Dromara J2eeFAST up to 2.6.0 and classified as problematic. This issue affects some unknown processing of the component System Message Handler. The manipulation of the argument ?? leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The name of the patch is 7a9e1a00e3329fdc0ae05f7a8257cce77037134d. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-227867.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-02T16:30:08.000000Z"}, {"uuid": "80b8f98d-72a3-42bf-b296-d13f3080890e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24757", "type": "seen", "source": "https://t.me/cibsecurity/59239", "content": "\u203c CVE-2023-24757 \u203c\n\nlibde265 v1.0.10 was discovered to contain a NULL pointer dereference in the put_unweighted_pred_16_fallback function at fallback-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input file.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-01T18:33:39.000000Z"}, {"uuid": "394060c5-b567-4bfa-a6c5-69827269e43f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24752", "type": "seen", "source": "https://t.me/cibsecurity/59250", "content": "\u203c CVE-2023-24752 \u203c\n\nlibde265 v1.0.10 was discovered to contain a NULL pointer dereference in the ff_hevc_put_hevc_epel_pixels_8_sse function at sse-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input file.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-01T18:33:51.000000Z"}, {"uuid": "4febb2ff-c1df-442d-a889-5253d3eb72ec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24751", "type": "seen", "source": "https://t.me/cibsecurity/59249", "content": "\u203c CVE-2023-24751 \u203c\n\nlibde265 v1.0.10 was discovered to contain a NULL pointer dereference in the mc_chroma function at motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input file.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-01T18:33:50.000000Z"}, {"uuid": "b6ed0ac2-5d28-42be-b7f4-a6466e51b8d6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24754", "type": "seen", "source": "https://t.me/cibsecurity/59248", "content": "\u203c CVE-2023-24754 \u203c\n\nlibde265 v1.0.10 was discovered to contain a NULL pointer dereference in the ff_hevc_put_weighted_pred_avg_8_sse function at sse-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input file.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-01T18:33:49.000000Z"}, {"uuid": "64013100-581d-43b2-8182-0c456d409f06", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24756", "type": "seen", "source": "https://t.me/cibsecurity/59237", "content": "\u203c CVE-2023-24756 \u203c\n\nlibde265 v1.0.10 was discovered to contain a NULL pointer dereference in the ff_hevc_put_unweighted_pred_8_sse function at sse-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input file.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-01T18:33:37.000000Z"}, {"uuid": "3a0676b7-f668-40a2-843e-69df3c831b25", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24755", "type": "seen", "source": "https://t.me/cibsecurity/59233", "content": "\u203c CVE-2023-24755 \u203c\n\nlibde265 v1.0.10 was discovered to contain a NULL pointer dereference in the put_weighted_pred_8_fallback function at fallback-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input file.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-01T18:33:33.000000Z"}]}