{"vulnerability": "CVE-2023-2798", "sightings": [{"uuid": "5f7e33d4-9ae7-4728-ad33-5d7e300f4c5f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27986", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/6578", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-27986\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: emacsclient-mail.desktop in Emacs 28.1 through 28.2 is vulnerable to Emacs Lisp code injections through a crafted mailto: URI with unescaped double-quote characters. It is fixed in 29.0.90.\n\ud83d\udccf Published: 2023-03-09T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-05T17:06:50.769Z\n\ud83d\udd17 References:\n1. https://www.openwall.com/lists/oss-security/2023/03/08/2\n2. http://git.savannah.gnu.org/cgit/emacs.git/commit/?h=emacs-29&id=3c1693d08b0a71d40a77e7b40c0ebc42dca2d2cc\n3. http://www.openwall.com/lists/oss-security/2023/03/09/1\n4. https://www.gabriel.urdhr.fr/2023/06/08/emacsclient-mail-shell-elisp-injections/", "creation_timestamp": "2025-03-05T18:30:32.000000Z"}, {"uuid": "424c7a3c-9c4a-4f06-b48c-e76935f8f02a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27986", "type": "seen", "source": "Telegram/5pevgS9s2bDPEHg8kf1AArCDrHZRG04q2CfUilHeZ0pz4v3d", "content": "", "creation_timestamp": "2025-03-06T02:16:33.000000Z"}, {"uuid": "b745d150-6331-411a-a738-7c71552ce3ba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27987", "type": "seen", "source": "https://t.me/cibsecurity/61738", "content": "\u203c CVE-2023-27987 \u203c\n\nIn Apache Linkis <=1.3.1,\u00c2\u00a0due to the default token generated by Linkis Gateway deployment being too simple, it is easy for attackers to obtain the default token for the attack.\u00c2\u00a0Generation rules should add random values. We recommend users upgrade the version of Linkis to version 1.3.2 And modify the default token value. You can refer to Token authorization[1] https://linkis.apache.org/docs/latest/auth/token https://linkis.apache.org/docs/latest/auth/token\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-10T12:22:28.000000Z"}, {"uuid": "427fab9d-4d18-451a-8a98-8ac48f7bf636", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27985", "type": "seen", "source": "Telegram/RqiRgA5mamRzgQDy7J8YCgnjQlybeoCP75YrjLoIRciK6Ahb", "content": "", "creation_timestamp": "2025-03-06T02:16:32.000000Z"}, {"uuid": "9587d364-05ef-4d18-bbd2-9127b6be7be3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27988", "type": "seen", "source": "https://t.me/ctinow/115125", "content": "https://ift.tt/nYJVc5d\nZyxel patches vulnerability in NAS devices (CVE-2023-27988)", "creation_timestamp": "2023-05-31T14:46:54.000000Z"}, {"uuid": "d7c727f9-a1d0-4007-b50d-b6ac459693a6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27989", "type": "seen", "source": "https://t.me/cibsecurity/64977", "content": "\u203c CVE-2023-27989 \u203c\n\nA buffer overflow vulnerability in the CGI program of the Zyxel NR7101 firmware versions prior to V1.00(ABUV.8)C0 could allow a remote authenticated attacker to cause denial of service (DoS) conditions by sending a crafted HTTP request to a vulnerable device.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-06-05T16:33:30.000000Z"}, {"uuid": "60399093-53c3-495e-9e3f-c72c7e166d59", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27988", "type": "seen", "source": "https://t.me/cibsecurity/64776", "content": "\u203c CVE-2023-27988 \u203c\n\nThe post-authentication command injection vulnerability in the Zyxel NAS326 firmware versions prior to V5.21(AAZF.13)C0 could allow an authenticated attacker with administrator privileges to execute some operating system (OS) commands on an affected device remotely.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-30T08:34:06.000000Z"}, {"uuid": "ecfeb1b6-d361-420b-9a23-9f1dabb99116", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27983", "type": "seen", "source": "https://t.me/cibsecurity/60381", "content": "\u203c CVE-2023-27983 \u203c\n\nA CWE-306: Missing Authentication for Critical Function vulnerability exists in the Data Server TCP interface that could allow deletion of reports from the IGSS project report directory, this would lead to loss of data when an attacker abuses this functionality. Affected Products: IGSS Data Server(IGSSdataServer.exe)(V16.0.0.23040 and prior), IGSS Dashboard(DashBoard.exe)(V16.0.0.23040 and prior), Custom Reports(RMS16.dll)(V16.0.0.23040 and prior).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-21T17:34:57.000000Z"}, {"uuid": "4877ea02-4238-4dfd-b40d-9ef440fd54af", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27981", "type": "seen", "source": "https://t.me/cibsecurity/60360", "content": "\u203c CVE-2023-27981 \u203c\n\nA CWE-22: Improper Limitation of a Pathname to a Restricted Directory vulnerability exists in Custom Reports that could cause a remote code execution when a victim tries to open a malicious report. Affected Products: IGSS Data Server(IGSSdataServer.exe)(V16.0.0.23040 and prior), IGSS Dashboard(DashBoard.exe)(V16.0.0.23040 and prior), Custom Reports(RMS16.dll)(V16.0.0.23040 and prior).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-21T13:34:51.000000Z"}, {"uuid": "89bc3441-ad40-48c4-8940-2a712278afd9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27984", "type": "seen", "source": "https://t.me/cibsecurity/60359", "content": "\u203c CVE-2023-27984 \u203c\n\nA CWE-20: Improper Input Validation vulnerability exists in Custom Reports that could cause a macro to be executed, potentially leading to remote code execution when a user opens a malicious report file planted by an attacker. Affected Products: IGSS Data Server(IGSSdataServer.exe)(V16.0.0.23040 and prior), IGSS Dashboard(DashBoard.exe)(V16.0.0.23040 and prior), Custom Reports(RMS16.dll)(V16.0.0.23040 and prior).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-21T13:34:50.000000Z"}, {"uuid": "c35f1b6f-3e3e-4b04-9e47-2f716631f6ec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27986", "type": "seen", "source": "https://t.me/cibsecurity/59721", "content": "\u203c CVE-2023-27986 \u203c\n\nemacsclient-mail.desktop in Emacs 28.1 through 28.2 is vulnerable to Emacs Lisp code injections through a crafted mailto: URI with unescaped double-quote characters.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-09T12:20:07.000000Z"}, {"uuid": "c6c6d023-0c46-49d7-8c16-8213118c9e80", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27985", "type": "seen", "source": "https://t.me/cibsecurity/59719", "content": "\u203c CVE-2023-27985 \u203c\n\nemacsclient-mail.desktop in Emacs 28.1 through 28.2 is vulnerable to shell command injections through a crafted mailto: URI. This is related to lack of compliance with the Desktop Entry Specification.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-09T12:20:06.000000Z"}]}