{"vulnerability": "CVE-2023-33201", "sightings": [{"uuid": "fcbb47e6-7b0b-4a7a-8c9c-2e73a0a0b8e3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33201", "type": "seen", "source": "https://t.me/arpsyndicate/3200", "content": "#ExploitObserverAlert\n\nCVE-2023-33201\n\nDESCRIPTION: Exploit Observer has 6 entries in 3 file formats related to CVE-2023-33201. Bouncy Castle For Java before 1.74 is affected by an LDAP injection vulnerability. The vulnerability only affects applications that use an LDAP CertStore from Bouncy Castle to validate X.509 certificates. During the certificate validation process, Bouncy Castle inserts the certificate's Subject Name into an LDAP search filter without any escaping, which leads to an LDAP injection vulnerability.\n\nFIRST-EPSS: 0.000510000\nNVD-IS: 1.4\nNVD-ES: 3.9", "creation_timestamp": "2024-01-28T04:23:06.000000Z"}, {"uuid": "e6cc958b-0547-4990-8181-8d8f87924e59", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33201", "type": "seen", "source": "https://gist.github.com/kitherill/35c9211065676c6c258f3a3f1d76a26d", "content": "", "creation_timestamp": "2026-02-11T12:49:28.000000Z"}, {"uuid": "aeda6bc0-ae84-4aa3-9aba-ea05bc886a47", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33201", "type": "seen", "source": "https://t.me/ctinow/182545", "content": "https://ift.tt/A7xjYlk\nCVE-2023-33201 | Oracle Utilties Application Framework up to 4.5.0.1.3 General information disclosure", "creation_timestamp": "2024-02-10T13:11:14.000000Z"}, {"uuid": "ea31ea34-1608-4565-8ca5-46fbacc8e111", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33201", "type": "seen", "source": "https://t.me/ctinow/181112", "content": "https://ift.tt/8OpjAlx\nCVE-2023-33201 | Oracle Communications Cloud Native Core Network Repository Function Install/Upgrade information disclosure", "creation_timestamp": "2024-02-08T03:02:08.000000Z"}, {"uuid": "a6c2d6ae-9a19-4d4e-8b5e-5ee1eb3790ac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33201", "type": "seen", "source": "https://t.me/ctinow/181746", "content": "https://ift.tt/pPBG7JL\nCVE-2023-33201 | Oracle Financial Services Revenue Management and Billing up to 6.0.0 Infrastructure information disclosure", "creation_timestamp": "2024-02-09T01:21:39.000000Z"}, {"uuid": "d82ae7df-2d4d-44b4-898a-f2b5dd04a27b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33201", "type": "seen", "source": "https://t.me/ctinow/180711", "content": "https://ift.tt/BMxAjha\nCVE-2023-33201 | Oracle Communications Service Catalog and Design 7.4.2.8.0 PSR Designer information disclosure", "creation_timestamp": "2024-02-07T14:11:23.000000Z"}, {"uuid": "33c35638-09b5-4995-98e3-4a53d5e5a9cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33201", "type": "seen", "source": "https://t.me/ctinow/180709", "content": "https://ift.tt/bGUC60J\nCVE-2023-33201 | Oracle Communications Messaging Server 8.1.0.24.0 Security information disclosure", "creation_timestamp": "2024-02-07T14:11:20.000000Z"}, {"uuid": "1547a14c-3b82-431d-8f29-58bd9c343405", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33201", "type": "seen", "source": "https://t.me/ctinow/181738", "content": "https://ift.tt/dVMsv07\nCVE-2023-33201 | Oracle Financial Services Lending and Leasing up to 14.7.0 Internal Operations information disclosure", "creation_timestamp": "2024-02-09T00:51:13.000000Z"}, {"uuid": "a117e784-b1b4-479d-ac61-a90c04276306", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33201", "type": "seen", "source": "https://t.me/ctinow/181716", "content": "https://ift.tt/tXd0pEW\nCVE-2023-33201 | Oracle Banking Virtual Account Management up to 14.7.0 Common Core information disclosure", "creation_timestamp": "2024-02-09T00:16:31.000000Z"}, {"uuid": "3dcb0fed-e528-447b-9402-d640779f37c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33201", "type": "seen", "source": "https://t.me/ctinow/181941", "content": "https://ift.tt/qTH13YJ\nCVE-2023-33201 | Oracle WebCenter Portal 12.2.1.4.0 Security Framework information disclosure", "creation_timestamp": "2024-02-09T10:21:56.000000Z"}, {"uuid": "cd700b93-1aad-497e-8b2c-df98688f6ce0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33201", "type": "seen", "source": "https://t.me/ctinow/181940", "content": "https://ift.tt/6lyJ0an\nCVE-2023-33201 | Oracle Managed File Transfer 12.2.1.4.0 MFT Runtime Server information disclosure", "creation_timestamp": "2024-02-09T10:21:55.000000Z"}, {"uuid": "aee4aefd-fed1-4f1c-bc9d-6b52284de64f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33201", "type": "seen", "source": "https://t.me/ctinow/181715", "content": "https://ift.tt/3q9ekNb\nCVE-2023-33201 | Oracle Banking Extensibility Workbench up to 14.7.0 Infrastructure information disclosure", "creation_timestamp": "2024-02-09T00:16:30.000000Z"}, {"uuid": "b3eb17a7-65bd-4773-b2cd-cdb6b0e18572", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33201", "type": "seen", "source": "https://t.me/ctinow/181709", "content": "https://ift.tt/XgOHnvj\nCVE-2023-33201 | Oracle Banking Corporate Lending Process Management up to 14.7.0 Base information disclosure", "creation_timestamp": "2024-02-08T23:46:22.000000Z"}, {"uuid": "57facb82-cf2e-4a33-b539-5725ebd75d5f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33201", "type": "seen", "source": "https://t.me/ctinow/181253", "content": "https://ift.tt/62WZa08\nCVE-2023-33201 | Oracle Enterprise Manager Base Platform 13.5.0.0 OCI Framework information disclosure", "creation_timestamp": "2024-02-08T10:11:37.000000Z"}, {"uuid": "ca9f108e-faa6-4439-b85d-22cb1237d2b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33201", "type": "seen", "source": "Telegram/RfTGg8vUSrTOLkdtujYVvLWm77KzWfIbncFgZxMk7p_wdtg", "content": "", "creation_timestamp": "2023-08-23T03:33:23.000000Z"}, {"uuid": "23b42a6e-d19f-4f95-b803-50a97544f6b3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33201", "type": "seen", "source": "https://t.me/cibsecurity/65945", "content": "\u203c CVE-2023-33201 \u203c\n\nBouncy Castle For Java before 1.74 is affected by an LDAP injection vulnerability. The vulnerability only affects applications that use an LDAP CertStore from Bouncy Castle to validate X.509 certificates. During the certificate validation process, Bouncy Castle inserts the certificate's Subject Name into an LDAP search filter without any escaping, which leads to an LDAP injection vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-05T07:24:05.000000Z"}]}