{"vulnerability": "CVE-2023-28130", "sightings": [{"uuid": "bc3696b5-dac6-486c-9355-eab0a35fbacb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28130", "type": "seen", "source": "https://infosec.exchange/users/screaminggoat/statuses/113853315490682769", "content": "", "creation_timestamp": "2025-01-19T05:15:25.883797Z"}, {"uuid": "398b3820-db30-4cb4-b415-7f311e61e95a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28130", "type": "published-proof-of-concept", "source": "https://t.me/Teamx1945x/1028", "content": "CVE-2023-28130 \u2013 \u062d\u0642\u0646 \u0627\u0644\u0623\u0648\u0627\u0645\u0631 \u0641\u064a Check Point Gaia Portal\n\n https://pentests.nl/pentest-blog/cve-2023-28130-command-injection-in-check-point-gaia-portal/", "creation_timestamp": "2024-03-29T18:27:12.000000Z"}, {"uuid": "916fa43b-6486-4283-9b82-2c424df4f9f2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28130", "type": "published-proof-of-concept", "source": "Telegram/JwGh2VQCrEvZ5BeZqza1b9u1iKFARbsoaYzOK7qsQruzdw", "content": "", "creation_timestamp": "2023-10-28T14:57:26.000000Z"}, {"uuid": "c9d968b6-85c4-47c4-b28c-7fe5678ae0cb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28130", "type": "published-proof-of-concept", "source": "Telegram/oHTyJXWzQ7gJusCYPkEAxtxlG4lpqxFmrTQDmtPR7jUQ", "content": "", "creation_timestamp": "2023-08-12T18:21:03.000000Z"}, {"uuid": "1562c054-d071-41a4-acd2-9376010a9b33", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28130", "type": "published-proof-of-concept", "source": "https://t.me/MrVGunz/867", "content": "CVE-2023-28130 : Gaia Portal (LPE) Hostname injection To Remote Code Execution RCE (Readable and attractive)\n\n*Version :\n R80.20SP, R80.30SP, R80.40, R81, R81.10, R81.20\n* Successful exploitation allows an authenticated attacker to execute commands on the operating system.\n* CVSS score : 8.4\nReferences : https://support.checkpoint.com/results/sk/sk181311\n\nPoC : https://pentests.nl/pentest-blog/cve-2023-28130-command-injection-in-check-point-gaia-portal/", "creation_timestamp": "2023-08-28T22:46:48.000000Z"}, {"uuid": "4ed0583f-fd0e-443d-b444-aec9a0af6387", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28130", "type": "seen", "source": "https://t.me/cibsecurity/67297", "content": "\u203c CVE-2023-28130 \u203c\n\nLocal user may lead to privilege escalation using Gaia Portal hostnames page.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-26T14:27:35.000000Z"}, {"uuid": "d97bac24-3b14-4730-9814-99fe20f76d54", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28130", "type": "seen", "source": "https://t.me/thebugbountyhunter/7616", "content": "CVE-2023-28130 \u2013 Command Injection in Check Point Gaia Portal\n\nhttps://pentests.nl/pentest-blog/cve-2023-28130-command-injection-in-check-point-gaia-portal/", "creation_timestamp": "2023-08-04T09:51:06.000000Z"}, {"uuid": "943d0fdf-0b4b-4f5f-a840-536c65d2834b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28130", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/8784", "content": "#exploit\n1. CVE-2023-2008:\nAnalyzing and exploiting a bug in the udmabuf driver\nhttps://labs.bluefrostsecurity.de/blog/cve-2023-2008.html\n\n2. CVE-2023-28130:\nHostname injection leads to RCE\nhttps://seclists.org/fulldisclosure/2023/Aug/4", "creation_timestamp": "2023-08-03T11:03:01.000000Z"}]}