{"vulnerability": "CVE-2023-2592", "sightings": [{"uuid": "f843c8b4-16b2-42bd-a433-c9753b7b778b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-25922", "type": "seen", "source": "https://t.me/ctinow/195963", "content": "https://ift.tt/IruZwHT\nCVE-2023-25922", "creation_timestamp": "2024-02-28T23:26:53.000000Z"}, {"uuid": "e09e53a2-830f-407a-bb4e-79532441d048", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-25927", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/2834", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-25927\n\ud83d\udd39 Description: IBM Security Verify Access 10.0.0, 10.0.1, 10.0.2, 10.0.3, 10.0.4, and 10.0.5 could allow an attacker to crash the webseald process using specially crafted HTTP requests resulting in loss of access to the system.  IBM X-Force ID:  247635.\n\ud83d\udccf Published: 2023-05-12T17:38:51.966Z\n\ud83d\udccf Modified: 2025-01-23T20:35:20.324Z\n\ud83d\udd17 References:\n1. https://https://www.ibm.com/support/pages/node/6989653\n2. https://exchange.xforce.ibmcloud.com/vulnerabilities/247635", "creation_timestamp": "2025-01-23T21:03:43.000000Z"}, {"uuid": "e373846e-ce01-47be-bd35-1468cbc04aae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-25923", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/5557", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-25923\n\ud83d\udd25 CVSS Score: 2.7 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L)\n\ud83d\udd39 Description: IBM Security Guardium Key Lifecycle Manager 3.0, 3.0.1, 4.0, 4.1, and 4.1.1 could allow an attacker to upload files that could be used in a denial of service attack due to incorrect authorization.  IBM X-Force ID:  247629.\n\ud83d\udccf Published: 2023-03-21T15:07:53.940Z\n\ud83d\udccf Modified: 2025-02-26T16:46:51.335Z\n\ud83d\udd17 References:\n1. https://www.ibm.com/support/pages/node/6962729\n2. https://exchange.xforce.ibmcloud.com/vulnerabilities/247629", "creation_timestamp": "2025-02-26T17:24:32.000000Z"}, {"uuid": "11f3c453-a77e-4179-8d74-2dbe321cdf1d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-25924", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/5553", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-25924\n\ud83d\udd25 CVSS Score: 5.4 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N)\n\ud83d\udd39 Description: IBM Security Guardium Key Lifecycle Manager 3.0, 3.0.1, 4.0, 4.1, and 4.1.1 could allow an authenticated user to perform actions that they should not have access to due to improper authorization.  IBM X-Force ID:  247630.\n\ud83d\udccf Published: 2023-03-21T14:53:38.493Z\n\ud83d\udccf Modified: 2025-02-26T16:48:20.517Z\n\ud83d\udd17 References:\n1. https://www.ibm.com/support/pages/node/6962729\n2. https://exchange.xforce.ibmcloud.com/vulnerabilities/247630", "creation_timestamp": "2025-02-26T17:24:26.000000Z"}, {"uuid": "ed9f4678-59e9-487b-883d-0afe207aff27", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-25925", "type": "seen", "source": "https://t.me/ctinow/195979", "content": "https://ift.tt/SQaZFiA\nCVE-2023-25925", "creation_timestamp": "2024-02-28T23:27:10.000000Z"}, {"uuid": "13b11c8a-867d-4a05-afe3-30704cccbac3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-25922", "type": "seen", "source": "https://t.me/ctinow/195978", "content": "https://ift.tt/IruZwHT\nCVE-2023-25922", "creation_timestamp": "2024-02-28T23:27:09.000000Z"}, {"uuid": "4ce5d590-d6fe-4992-a084-f1a04086e8dd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-25925", "type": "seen", "source": "https://t.me/ctinow/195964", "content": "https://ift.tt/SQaZFiA\nCVE-2023-25925", "creation_timestamp": "2024-02-28T23:26:54.000000Z"}, {"uuid": "d125ddfd-69a7-4c39-a680-da92961dad6b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-25927", "type": "seen", "source": "https://t.me/cibsecurity/64053", "content": "\u203c CVE-2023-25927 \u203c\n\nIBM Security Verify Access 10.0.0, 10.0.1, 10.0.2, 10.0.3, 10.0.4, and 10.0.5 could allow an attacker to crash the webseald process using specially crafted HTTP requests resulting in loss of access to the system. IBM X-Force ID: 247635.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-12T22:27:06.000000Z"}, {"uuid": "3ea5ae75-5c29-4d67-b7ea-14c02b8fa6d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-25923", "type": "seen", "source": "https://t.me/cibsecurity/60394", "content": "\u203c CVE-2023-25923 \u203c\n\nIBM Security Guardium Key Lifecycle Manager 3.0, 3.0.1, 4.0, 4.1, and 4.1.1 could allow an attacker to upload files that could be used in a denial of service attack due to incorrect authorization. IBM X-Force ID: 247629.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-21T19:35:03.000000Z"}, {"uuid": "37f68ecc-85f9-4251-a91d-0c3ac75d05d1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-25928", "type": "seen", "source": "https://t.me/cibsecurity/58597", "content": "\u203c CVE-2023-25928 \u203c\n\nIBM InfoSphere Information Server 11.7 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 247646.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-21T16:16:41.000000Z"}]}