{"vulnerability": "CVE-2023-2627", "sightings": [{"uuid": "b6b3960f-3d88-45b2-a3c6-4f2b247b99fc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-26278", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/1043", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-26278\n\ud83d\udd39 Description: IBM QRadar WinCollect Agent 10.0 through 10.1.3 could allow a local authenticated attacker to gain elevated privileges on the system.  IBM X-Force ID:  248158.\n\ud83d\udccf Published: 2023-05-31T19:05:56.360Z\n\ud83d\udccf Modified: 2025-01-09T19:56:47.534Z\n\ud83d\udd17 References:\n1. https://www.ibm.com/support/pages/node/6999341\n2. https://exchange.xforce.ibmcloud.com/vulnerabilities/248158", "creation_timestamp": "2025-01-09T20:15:41.000000Z"}, {"uuid": "3de33d60-3ab6-4a0a-be04-7015fa153a21", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-26277", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/1042", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-26277\n\ud83d\udd39 Description: IBM QRadar WinCollect Agent 10.0 though 10.1.3 could allow a local user to execute commands on the system due to execution with unnecessary privileges.  IBM X-Force ID:  248156.\n\ud83d\udccf Published: 2023-05-31T18:57:38.773Z\n\ud83d\udccf Modified: 2025-01-09T19:57:32.397Z\n\ud83d\udd17 References:\n1. https://www.ibm.com/support/pages/node/6999343\n2. https://https://exchange.xforce.ibmcloud.com/vulnerabilities/248156", "creation_timestamp": "2025-01-09T20:15:30.000000Z"}, {"uuid": "393d09fa-e028-4b77-8d34-b8d93f4a0ca6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-26272", "type": "seen", "source": "https://t.me/cibsecurity/69267", "content": "\u203c CVE-2023-26272 \u203c\n\nIBM Security Guardium Data Encryption (IBM Guardium Cloud Key Manager (GCKM) 1.10.3)) could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 248133.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-28T07:21:39.000000Z"}, {"uuid": "392c2be3-e015-42b4-809b-cdb6d23447e0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-26271", "type": "seen", "source": "https://t.me/cibsecurity/69264", "content": "\u203c CVE-2023-26271 \u203c\n\nIBM Security Guardium Data Encryption (IBM Guardium Cloud Key Manager (GCKM) 1.10.3)) uses an inadequate account lockout setting that could allow a remote attacker to brute force account credentials. IBM X-Force ID: 248126.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-28T07:21:33.000000Z"}, {"uuid": "f7abf5e5-f41b-4138-bec5-b8251511ba28", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-26270", "type": "seen", "source": "https://t.me/cibsecurity/69262", "content": "\u203c CVE-2023-26270 \u203c\n\nIBM Security Guardium Data Encryption (IBM Guardium Cloud Key Manager (GCKM) 1.10.3)) could allow a remote attacker to execute arbitrary code on the system, caused by an angular template injection flaw. By sending specially crafted request, an attacker could exploit this vulnerability to execute arbitrary code on the system. IBM X-Force ID: 248119.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-28T07:21:30.000000Z"}, {"uuid": "446b6cfa-7bdd-45a8-88ef-c72b6c702a74", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2627", "type": "seen", "source": "https://t.me/cibsecurity/65574", "content": "\u203c CVE-2023-2627 \u203c\n\nThe KiviCare WordPress plugin before 3.2.1 does not have proper CSRF and authorisation checks in various AJAX actions, allowing any authenticated users, such as subscriber to call them. Attacks include but are not limited to: Add arbitrary Clinic Admin/Doctors/etc and update plugin's settings\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-06-27T18:12:06.000000Z"}]}