{"vulnerability": "CVE-2023-4135", "sightings": [{"uuid": "52ed0c32-89a2-4d89-a692-21356e099db0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-4135", "type": "seen", "source": "https://t.me/cibsecurity/67763", "content": "\u203c CVE-2023-4135 \u203c\n\nA heap out-of-bounds memory read flaw was found in the virtual nvme device in QEMU. The QEMU process does not validate an offset provided by the guest before computing a host heap pointer, which is used for copying data back to the guest. Arbitrary heap memory relative to an allocated buffer can be disclosed.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-04T18:40:52.000000Z"}, {"uuid": "745decc0-8872-48ff-9e25-32c815aa5c19", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-41359", "type": "seen", "source": "https://t.me/cibsecurity/69342", "content": "\u203c CVE-2023-41359 \u203c\n\nAn issue was discovered in FRRouting FRR through 9.0. There is an out-of-bounds read in bgp_attr_aigp_valid in bgpd/bgp_attr.c because there is no check for the availability of two bytes during AIGP validation.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-29T07:17:14.000000Z"}, {"uuid": "26b9ccea-258b-420a-9f25-3f990024aa47", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-41358", "type": "seen", "source": "https://t.me/cibsecurity/69341", "content": "\u203c CVE-2023-41358 \u203c\n\nAn issue was discovered in FRRouting FRR through 9.0. bgpd/bgp_packet.c processes NLRIs if the attribute length is zero.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-29T07:17:13.000000Z"}]}