{"vulnerability": "CVE-2023-4931", "sightings": [{"uuid": "b2741e0c-e92f-4b59-89c4-078d31622358", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49313", "type": "seen", "source": "https://t.me/GithubRedTeam/5989", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2023\n\u63cf\u8ff0\uff1atest repo for CVE-2023-36025\nURL\uff1ahttps://github.com/louiselalanne/CVE-2023-49313\n\n\u6807\u7b7e\uff1a#CVE-2023", "creation_timestamp": "2023-11-28T13:22:41.000000Z"}, {"uuid": "661c28c6-ea60-4c61-b28d-28f9505fa427", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49316", "type": "seen", "source": "https://t.me/ctinow/155554", "content": "https://ift.tt/napWIgi\nCVE-2023-49316 | phpseclib up to 3.0.33 Math/BinaryField.php denial of service", "creation_timestamp": "2023-12-17T09:37:25.000000Z"}, {"uuid": "92d8aa54-0971-4f2e-b2a1-a504d3b3c342", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49314", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/5981", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2023\n\u63cf\u8ff0\uff1atest repo for CVE-2023-36025\nURL\uff1ahttps://github.com/louiselalanne/CVE-2023-49314\n\n\u6807\u7b7e\uff1a#CVE-2023", "creation_timestamp": "2023-11-28T10:51:36.000000Z"}, {"uuid": "cc3c082f-892a-4c78-98e0-4134ca56b042", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49314", "type": "seen", "source": "https://t.me/ctinow/155661", "content": "https://ift.tt/p7vSH0Z\nCVE-2023-49314 | Asana Desktop up to 2.1.0 on macOS Electron Fuse code injection", "creation_timestamp": "2023-12-17T19:52:52.000000Z"}, {"uuid": "48eab465-1c8b-45a3-8ed0-67df00200ea8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-4931", "type": "seen", "source": "https://t.me/ctinow/155515", "content": "https://ift.tt/vsoZrcl\nCVE-2023-4931 | Plesk Installer 3.27.0.0 edputil.dll uncontrolled search path", "creation_timestamp": "2023-12-17T07:07:06.000000Z"}, {"uuid": "554db8eb-9fac-4703-8227-7811f01f8b27", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49313", "type": "seen", "source": "https://t.me/ctinow/155658", "content": "https://ift.tt/vE94nF0\nCVE-2023-49313 | XMachOViewer 0.04 DYLIB injection", "creation_timestamp": "2023-12-17T19:17:48.000000Z"}, {"uuid": "d62fb277-8bf7-42a7-a4ca-41221d3459c9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49314", "type": "published-proof-of-concept", "source": "https://t.me/Rootsec_2/2134", "content": "#exploit\n1. CVE-2023-49314:\nAsana Desktop 2.1.0 (macOS) allows code injection because of specific Electron Fuses\nhttps://github.com/louiselalanne/CVE-2023-49314\n\n2. CVE-2023-36025:\nWindows SmartScreen Security Feature Bypass Vulnerability\nhttps://github.com/J466Y/test_CVE-2023-36025", "creation_timestamp": "2024-08-16T08:53:00.000000Z"}, {"uuid": "9026583a-5c95-4e1d-b4e1-596286598f97", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49314", "type": "published-proof-of-concept", "source": "https://t.me/arpsyndicate/784", "content": "#ExploitObserverAlert\n\nCVE-2023-49314\n\nDESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-49314. Asana Desktop 2.1.0 on macOS allows code injection because of specific Electron Fuses. There is inadequate protection against code injection through settings such as RunAsNode and EnableNodeCliInspectArguments, and thus r3ggi/electroniz3r can be used to perform an attack.", "creation_timestamp": "2023-11-29T17:55:51.000000Z"}, {"uuid": "184a4ff6-0113-4747-a8b7-188d09125ef0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49314", "type": "published-proof-of-concept", "source": "https://t.me/CNArsenal/1605", "content": "https://github.com/louiselalanne/CVE-2023-49314\n\n#github", "creation_timestamp": "2023-11-29T04:16:42.000000Z"}, {"uuid": "b72bbd2f-19a1-4e71-9d1b-4d8e2c197a31", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49312", "type": "seen", "source": "https://t.me/ctinow/155464", "content": "https://ift.tt/J2bEBHe\nCVE-2023-49312 | Precision Bridge PrecisionBridge.exe up to 7.3.20 License Key integrity check", "creation_timestamp": "2023-12-16T19:53:13.000000Z"}, {"uuid": "a19f1fa2-2462-41fe-a658-9d3dde69a052", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49313", "type": "seen", "source": "https://t.me/arpsyndicate/734", "content": "#ExploitObserverAlert\n\nCVE-2023-49313\n\nDESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-49313.", "creation_timestamp": "2023-11-29T12:39:14.000000Z"}, {"uuid": "79712d99-d256-4c3e-a918-e81576d290be", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49314", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/9483", "content": "#exploit\n1. CVE-2023-49314:\nAsana Desktop 2.1.0 (macOS) allows code injection because of specific Electron Fuses\nhttps://github.com/louiselalanne/CVE-2023-49314\n\n2. CVE-2023-36025:\nWindows SmartScreen Security Feature Bypass Vulnerability\nhttps://github.com/J466Y/test_CVE-2023-36025", "creation_timestamp": "2023-11-29T11:00:35.000000Z"}, {"uuid": "e1385c92-afb3-46fe-b7f9-5ccd4d116cea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49314", "type": "published-proof-of-concept", "source": "https://t.me/Rootsec_2/2150", "content": "https://github.com/louiselalanne/CVE-2023-49314\n\n#github", "creation_timestamp": "2024-08-16T08:53:05.000000Z"}]}