{"vulnerability": "CVE-2023-3664", "sightings": [{"uuid": "7974080b-c699-439a-8dc3-d056df2b2066", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-36649", "type": "seen", "source": "https://t.me/ctinow/161327", "content": "https://ift.tt/5dqTy6J\nCVE-2023-36649 | ProLion CryptoSpike 3.0.15P2 Web Management/REST API injection", "creation_timestamp": "2024-01-01T15:06:59.000000Z"}, {"uuid": "38cda6bf-02dd-4c2d-80de-ca8b1e166d3e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-36647", "type": "seen", "source": "https://t.me/ctinow/161326", "content": "https://ift.tt/Q2b7VNG\nCVE-2023-36647 | ProLion CryptoSpike 3.0.15P2 REST API Endpoint hard-coded key", "creation_timestamp": "2024-01-01T15:06:58.000000Z"}, {"uuid": "50648150-d2c5-43ec-8277-8ee7901b7785", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-36642", "type": "seen", "source": "https://t.me/cibsecurity/70385", "content": "\u203c CVE-2023-36642 \u203c\n\nAn improper neutralization of special elements used in an OS command vulnerability [CWE-78]\u00c2\u00a0in the management interface of FortiTester 3.0.0 through 7.2.3 may allow an authenticated attacker to execute unauthorized commands via specifically crafted arguments to existing commands.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-13T16:23:53.000000Z"}, {"uuid": "70d626ec-7f8d-4a33-8a8c-6fbea3c6f64e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-36646", "type": "seen", "source": "https://t.me/ctinow/161328", "content": "https://ift.tt/UzQwsne\nCVE-2023-36646 | ProLion CryptoSpike 3.0.15P2 REST API Endpoint access control", "creation_timestamp": "2024-01-01T15:07:00.000000Z"}, {"uuid": "8e04176b-9f53-4275-8071-c670e7b2c3e5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-36648", "type": "seen", "source": "https://t.me/ctinow/161320", "content": "https://ift.tt/YmuLt1a\nCVE-2023-36648 | ProLion CryptoSpike 3.0.15P2 Internal Data Streaming System missing authentication", "creation_timestamp": "2024-01-01T15:06:52.000000Z"}]}