{"vulnerability": "CVE-2023-3942", "sightings": [{"uuid": "a6f038cd-31db-4210-88e8-4c266289c1da", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-3942", "type": "published-proof-of-concept", "source": "https://t.me/BlackHat0Hackers/52", "content": "QR code SQL injection and other vulnerabilities in a popular biometric terminal (CVE-2023-3938, CVE-2023-3939, CVE-2023-3940, CVE-2023-3941, CVE-2023-3942, CVE-2023-3943)\nhttps://securelist.com/biometric-terminal-vulnerabilities/112800/", "creation_timestamp": "2024-06-12T15:10:04.000000Z"}, {"uuid": "49e045ba-cda6-4097-865a-6c47429d0b1d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-39421", "type": "seen", "source": "https://t.me/cibsecurity/70060", "content": "\u203c CVE-2023-39421 \u203c\n\nThe RDPWin.dll component as used in the IRM Next Generation booking engine includes a set of hardcoded API keys for third-party services such as Twilio and Vonage. These keys allow unrestricted interaction with these services.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-07T16:18:45.000000Z"}, {"uuid": "c5f4af51-4324-42e3-b978-669ef270a04e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-3942", "type": "published-proof-of-concept", "source": "https://t.me/ZeroEthical_Course/441", "content": "QR code SQL injection and other vulnerabilities in a popular biometric terminal (CVE-2023-3938, CVE-2023-3939, CVE-2023-3940, CVE-2023-3941, CVE-2023-3942, CVE-2023-3943)\nhttps://securelist.com/biometric-terminal-vulnerabilities/112800/", "creation_timestamp": "2024-06-12T18:41:36.000000Z"}, {"uuid": "cd58afed-7034-4a78-8b56-91eafa7c03b7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-39429", "type": "seen", "source": "https://t.me/cibsecurity/71455", "content": "\u203c CVE-2023-39429 \u203c\n\nCross-site scripting vulnerability in FURUNO SYSTEMS wireless LAN access point devices allows an authenticated user to inject an arbitrary script via a crafted configuration. Affected products and versions are as follows: ACERA 1210 firmware ver.02.36 and earlier, ACERA 1150i firmware ver.01.35 and earlier, ACERA 1150w firmware ver.01.35 and earlier, ACERA 1110 firmware ver.01.76 and earlier, ACERA 1020 firmware ver.01.86 and earlier, ACERA 1010 firmware ver.01.86 and earlier, ACERA 950 firmware ver.01.60 and earlier, ACERA 850F firmware ver.01.60 and earlier, ACERA 900 firmware ver.02.54 and earlier, ACERA 850M firmware ver.02.06 and earlier, ACERA 810 firmware ver.03.74 and earlier, and ACERA 800ST firmware ver.07.35 and earlier. They are affected when running in ST(Standalone) mode.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-03T07:40:57.000000Z"}, {"uuid": "7783dd98-9cac-4f56-83e9-025e8b1beb5d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-39420", "type": "seen", "source": "https://t.me/cibsecurity/70074", "content": "\u203c CVE-2023-39420 \u203c\n\nThe RDPCore.dll component as used in the IRM Next Generation booking engine, allows a remote user to connect to customers with an \"admin\" account and a corresponding password computed daily by a routine inside the DLL file. Once reverse-engineered, this routine can help an attacker generate the daily password and connect to application customers. Given that this is an administrative account, anyone logging into a customer deployment has full, unrestricted access to the application.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-07T16:19:01.000000Z"}, {"uuid": "efeaafa0-efec-47ec-87c9-b780b2b284b0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-39425", "type": "seen", "source": "https://t.me/ctinow/184814", "content": "https://ift.tt/hBOexuI\nCVE-2023-39425", "creation_timestamp": "2024-02-14T17:03:08.000000Z"}, {"uuid": "ec8ef292-36b2-44f7-8ba7-086c62d30e8b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-39427", "type": "seen", "source": "https://t.me/cibsecurity/73006", "content": "\u203c CVE-2023-39427 \u203c\n\nIn Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, and Cobalt Share v12 SP0 Build (1204.77), the affected applications lack proper validation of user-supplied data when parsing XE files. This could lead to an out-of-bounds write. An attacker could leverage this vulnerability to execute arbitrary code in the context of the current process.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-27T00:18:02.000000Z"}, {"uuid": "5e3c51f6-58cf-490f-bc58-d29cdf0bd8eb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-39425", "type": "seen", "source": "https://t.me/ctinow/201398", "content": "https://ift.tt/ezYGtQA\nCVE-2023-39425 | Intel DSA Software prior 23.4.33 access control (intel-sa-00969)", "creation_timestamp": "2024-03-06T14:41:26.000000Z"}, {"uuid": "a94f1bee-cbb6-4bfa-9a27-0e377ce9c1fd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-39423", "type": "seen", "source": "https://t.me/cibsecurity/70075", "content": "\u203c CVE-2023-39423 \u203c\n\nThe RDPData.dll file exposes the\u00c2\u00a0/irmdata/api/common endpoint that handles session IDs, \u00c2\u00a0among other features. By using a UNION SQL operator, an attacker can leak the sessions table, obtain the currently valid sessions and impersonate a currently logged-in user.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-07T16:19:03.000000Z"}, {"uuid": "59264e12-b612-4b7f-91f6-8a5beedc997c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-39420", "type": "seen", "source": "https://t.me/cibsecurity/70064", "content": "\u203c CVE-2023-39424 \u203c\n\nA vulnerability in\u00c2\u00a0RDPngFileUpload.dll, as used in the\u00c2\u00a0IRM Next Generation booking system, allows a remote attacker to upload arbitrary content (such as a web shell component) to the SQL database and execute it with SYSTEM privileges. This vulnerability requires authentication to be exploited but can be paired with another vulnerability in the platform (CVE-2023-39420, which grants access to hardcoded credentials) to carry the attack without having assigned credentials.\u00c2\u00a0\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-09T16:37:50.000000Z"}, {"uuid": "2bf2a934-a5f9-491a-8165-a46c3c246149", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-39424", "type": "seen", "source": "https://t.me/cibsecurity/70064", "content": "\u203c CVE-2023-39424 \u203c\n\nA vulnerability in\u00c2\u00a0RDPngFileUpload.dll, as used in the\u00c2\u00a0IRM Next Generation booking system, allows a remote attacker to upload arbitrary content (such as a web shell component) to the SQL database and execute it with SYSTEM privileges. This vulnerability requires authentication to be exploited but can be paired with another vulnerability in the platform (CVE-2023-39420, which grants access to hardcoded credentials) to carry the attack without having assigned credentials.\u00c2\u00a0\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-09T16:37:50.000000Z"}, {"uuid": "aa800c3b-844c-40c3-ade3-8a1c2956038a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-39422", "type": "seen", "source": "https://t.me/cibsecurity/70058", "content": "\u203c CVE-2023-39422 \u203c\n\nThe\u00c2\u00a0/irmdata/api/ endpoints exposed by the\u00c2\u00a0IRM Next Generation booking engine authenticates requests using HMAC tokens. These tokens are however exposed in a JavaScript file loaded on the client side, thus rendering this extra safety mechanism useless.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-20T12:34:52.000000Z"}, {"uuid": "e6bcd0b1-080e-44ec-8b7c-2b4d586dae7c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-3942", "type": "seen", "source": "https://t.me/androidMalware/2248", "content": "QR code SQL injection and other vulnerabilities in a popular biometric terminal (CVE-2023-3938, CVE-2023-3939, CVE-2023-3940, CVE-2023-3941, CVE-2023-3942, CVE-2023-3943)\nhttps://securelist.com/biometric-terminal-vulnerabilities/112800/", "creation_timestamp": "2024-07-17T13:08:30.000000Z"}]}