{"vulnerability": "CVE-2023-3749", "sightings": [{"uuid": "3f0f1649-9b28-4dc2-974f-a71072d3afbc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-3749", "type": "seen", "source": "https://t.me/cibsecurity/67730", "content": "\u203c CVE-2023-3749 \u203c\n\nA local user could edit the VideoEdge configuration file and interfere with VideoEdge operation.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-04T00:40:18.000000Z"}, {"uuid": "8b866a16-7c22-484c-b65c-871359e55b0e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37495", "type": "seen", "source": "https://t.me/ctinow/203467", "content": "https://ift.tt/54lV8DU\nCVE-2023-37495 | HCL Domino Server 9/10/11/12 User Registration excessive authentication (KB0107585)", "creation_timestamp": "2024-03-08T18:02:25.000000Z"}, {"uuid": "36a0707f-9d42-408a-a6d8-cc0add1d1df4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37490", "type": "seen", "source": "https://t.me/cibsecurity/67947", "content": "\u203c CVE-2023-37490 \u203c\n\nSAP Business Objects Installer - versions 420, 430, allows an authenticated attacker within the network to overwrite an executable file created in a temporary directory during the installation process. On replacing this executable with a malicious file, an attacker can completely compromise the confidentiality, integrity, and availability of the system\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-08T07:14:05.000000Z"}, {"uuid": "95b75798-024f-4f32-9a4a-c9f9d3b56e8d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37491", "type": "seen", "source": "https://t.me/cibsecurity/67942", "content": "\u203c CVE-2023-37491 \u203c\n\nThe ACL (Access\u00c2\u00a0Control\u00c2\u00a0List) of SAP Message Server - versions KERNEL 7.22, KERNEL 7.53, KERNEL 7.54, KERNEL 7.77, RNL64UC 7.22, RNL64UC 7.22EXT, RNL64UC 7.53, KRNL64NUC 7.22, KRNL64NUC 7.22EXT, can be bypassed in certain conditions, which may enable an authenticated malicious user to enter the network of the SAP systems served by the attacked SAP Message server. This may lead to unauthorized read and write of data as well as rendering the system unavailable.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-08T07:13:57.000000Z"}, {"uuid": "ae60609b-e306-49fb-b4c3-09d8d05356ef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37492", "type": "seen", "source": "https://t.me/cibsecurity/67934", "content": "\u203c CVE-2023-37492 \u203c\n\nSAP NetWeaver Application Server ABAP and ABAP Platform - versions SAP_BASIS 700, SAP_BASIS 701, SAP_BASIS 702, SAP_BASIS 731, SAP_BASIS 740, SAP_BASIS 750, SAP_BASIS 752, SAP_BASIS 753, SAP_BASIS 754, SAP_BASIS 755, SAP_BASIS 756, SAP_BASIS 757, SAP_BASIS 758, SAP_BASIS 793, SAP_BASIS 804, does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges. This could allow an attacker to read sensitive information which can be used in a subsequent serious attack.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-08T07:13:48.000000Z"}]}