{"vulnerability": "CVE-2023-38319", "sightings": [{"uuid": "63510e9d-2bb5-417e-95b4-3b7b101cfff3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38319", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/19043", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-38319\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: An issue was discovered in OpenNDS before 10.1.3. It fails to sanitize the FAS key entry in the configuration file, allowing attackers that have direct or indirect access to this file to execute arbitrary OS commands.\n\ud83d\udccf Published: 2024-01-26T00:00:00.000Z\n\ud83d\udccf Modified: 2025-06-20T19:37:43.154Z\n\ud83d\udd17 References:\n1. https://openwrt.org/docs/guide-user/services/captive-portal/opennds\n2. https://github.com/openNDS/openNDS/releases/tag/v10.1.3\n3. https://github.com/openNDS/openNDS/blob/master/ChangeLog\n4. https://www.forescout.com/resources/sierra21-vulnerabilities", "creation_timestamp": "2025-06-20T19:43:27.000000Z"}, {"uuid": "42a89dd9-1c6e-4cee-9734-4bf2db8866e7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38319", "type": "seen", "source": "https://t.me/ctinow/174007", "content": "https://ift.tt/TtQqogv\nCVE-2023-38319", "creation_timestamp": "2024-01-26T06:26:15.000000Z"}, {"uuid": "d1d19c9d-f91c-47a4-8088-f4f6cc37cbc3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38319", "type": "seen", "source": "https://t.me/ctinow/187375", "content": "https://ift.tt/kzgI3vU\nCVE-2023-38319 | OpenNDS up to 10.1.2 FAS Key Entry os command injection", "creation_timestamp": "2024-02-18T21:21:20.000000Z"}, {"uuid": "48d46896-dc1d-47bc-b95b-45d57aedb8fa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38319", "type": "seen", "source": "https://t.me/ctinow/178228", "content": "https://ift.tt/fzydvAb\nCVE-2023-38319 Exploit", "creation_timestamp": "2024-02-02T19:16:59.000000Z"}]}