{"vulnerability": "CVE-2023-3425", "sightings": [{"uuid": "3376c027-4e82-4d41-a89a-04bbbd330ee8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-34257", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/1146", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-34257\n\ud83d\udd39 Description: An issue was discovered in BMC Patrol through 23.1.00. The agent's configuration can be remotely modified (and, by default, authentication is not required). Some configuration fields related to SNMP (e.g., masterAgentName or masterAgentStartLine) result in code execution when the agent is restarted. NOTE: the vendor's perspective is \"These are not vulnerabilities for us as we have provided the option to implement the authentication.\"\n\ud83d\udccf Published: 2023-05-31T00:00:00\n\ud83d\udccf Modified: 2025-01-10T14:54:10.516Z\n\ud83d\udd17 References:\n1. https://www.errno.fr/PatrolAdvisory.html#remote-code-excution-using-patrols-pconfig", "creation_timestamp": "2025-01-10T15:03:27.000000Z"}, {"uuid": "8d3665ef-d7f9-4f09-8f12-7a7d8a9868d1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-34251", "type": "published-proof-of-concept", "source": "https://t.me/cKure/11130", "content": "\u25a0\u25a0\u25a0\u25a0\u25a1 CVE-2023-34251: Grav CMS Remote Code Execution Vulnerability.\n\nhttps://securityonline.info/cve-2023-34251-grav-cms-remote-code-execution-vulnerability/", "creation_timestamp": "2023-06-18T11:04:31.000000Z"}, {"uuid": "4b93e6f3-5977-42fe-a81e-99a2e9d67d40", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-34259", "type": "seen", "source": "https://t.me/cibsecurity/73506", "content": "\u203c CVE-2023-34259 \u203c\n\nKyocera TASKalfa 4053ci printers through 2VG_S000.002.561 allow /wlmdeu%2f%2e%2e%2f%2e%2e directory traversal to read arbitrary files on the filesystem, even files that require root privileges. NOTE: this issue exists because of an incomplete fix for CVE-2020-23575.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-11-03T06:23:25.000000Z"}, {"uuid": "d7c1a259-c288-4895-8fb9-a3b747197b77", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-3425", "type": "seen", "source": "https://t.me/cibsecurity/69174", "content": "\u203c CVE-2023-3425 \u203c\n\nOut-of-bounds read issue in M-Files Server versions below 23.8.12892.6 and LTS Service Release Versions before 23.2 LTS SR3 allows unauthenticated user to read restricted amount of bytes from memory.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-25T12:17:01.000000Z"}, {"uuid": "6654b288-256f-4518-84c9-b31e980ac882", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2023-34251", "type": "published-proof-of-concept", "source": "https://github.com/getgrav/grav/security/advisories/GHSA-f9jf-4cp4-4fq5", "content": "", "creation_timestamp": "2023-06-14T20:51:04.000000Z"}, {"uuid": "5425fda3-89d4-4a8f-b2ba-7bc01334466f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-34252", "type": "seen", "source": "https://t.me/cibsecurity/65247", "content": "\u203c CVE-2023-34252 \u203c\n\nGrav is a file-based Web platform. Prior to version 1.7.42, there is a logic flaw in the `GravExtension.filterFilter()` function whereby validation against a denylist of unsafe functions is only performed when the argument passed to filter is a string. However, passing an array as a callable argument allows the validation check to be skipped. Consequently, a low privileged attacker with login access to Grav Admin panel and page creation/update permissions is able to inject malicious templates to obtain remote code execution. The vulnerability can be found in the `GravExtension.filterFilter()` function declared in `/system/src/Grav/Common/Twig/Extension/GravExtension.php`. Version 1.7.42 contains a patch for this issue. End users should also ensure that `twig.undefined_functions` and `twig.undefined_filters` properties in `/path/to/webroot/system/config/system.yaml` configuration file are set to `false` to disallow Twig from treating undefined filters/functions as PHP functions and executing them.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-06-15T02:21:06.000000Z"}]}