{"vulnerability": "CVE-2023-40140", "sightings": [{"uuid": "83fbfab7-ec2f-4e02-9119-0b4b0a8e793a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40140", "type": "seen", "source": "https://t.me/cibsecurity/73093", "content": "\u203c CVE-2023-40140 \u203c\n\nIn android_view_InputDevice_create of android_view_InputDevice.cpp, there is a possible way to execute arbitrary code due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-28T00:17:34.000000Z"}, {"uuid": "ab613978-cc8b-46df-a8dc-1f7e955977e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40140", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/9896", "content": "#exploit\n1. CVE-2024-1019:\nModSecurity v3 WAF bypass\nhttps://owasp.org/www-project-modsecurity/tab_cves#cve-2024-1019-2024-01-30\n\n2. CVE-2024-21626:\nRunc container issue\nhttps://github.com/Wall1e/CVE-2024-21626-POC\n]-> https://github.com/NitroCao/CVE-2024-21626\n\n3. CVE-2023-40140:\nAndroid_view_InputDevice_create of android_view_InputDevice.cpp - LPE/UaF\nhttps://github.com/hshivhare67/platform_frameworks_base_AOSP6_r22_CVE-2023-40140", "creation_timestamp": "2024-02-07T17:55:40.000000Z"}, {"uuid": "c5acb9e9-8d8d-4df2-b79c-b1cc229963a3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40140", "type": "published-proof-of-concept", "source": "https://t.me/Rootsec_2/2700", "content": "#exploit\n1. CVE-2024-1019:\nModSecurity v3 WAF bypass\nhttps://owasp.org/www-project-modsecurity/tab_cves#cve-2024-1019-2024-01-30\n\n2. CVE-2024-21626:\nRunc container issue\nhttps://github.com/Wall1e/CVE-2024-21626-POC\n\n3. CVE-2023-40140:\nAndroid_view_InputDevice_create of android_view_InputDevice.cpp - LPE/UaF\nhttps://github.com/hshivhare67/platform_frameworks_base_AOSP6_r22_CVE-2023-40140", "creation_timestamp": "2024-08-16T09:13:11.000000Z"}]}