{"vulnerability": "CVE-2023-5808", "sightings": [{"uuid": "f9b94087-d493-4804-9dcf-1f49e905f48a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-5808", "type": "seen", "source": "https://t.me/arpsyndicate/2045", "content": "#ExploitObserverAlert\n\nCVE-2023-5808\n\nDESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-5808. SMU versions prior to 14.8.7825.01 are susceptible to unintended information disclosure, through URL manipulation. Authenticated users in a Storage administrative role are able to access HNAS configuration backup and diagnostic data, that would normally be barred to that specific administrative role.\n\nFIRST-EPSS: 0.000490000\nNVD-IS: 3.6\nNVD-ES: 2.8", "creation_timestamp": "2023-12-20T15:44:08.000000Z"}, {"uuid": "1ef3bf04-4c4c-4afe-a0b1-4136c49cb21c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-5808", "type": "seen", "source": "https://t.me/arpsyndicate/2949", "content": "#ExploitObserverAlert\n\nCVE-2023-5808\n\nDESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to CVE-2023-5808. SMU versions prior to 14.8.7825.01 are susceptible to unintended information disclosure, through URL manipulation. Authenticated users in a Storage administrative role are able to access HNAS configuration backup and diagnostic data, that would normally be barred to that specific administrative role.\n\nFIRST-EPSS: 0.000490000\nNVD-IS: 3.6\nNVD-ES: 2.8", "creation_timestamp": "2024-01-19T18:40:54.000000Z"}, {"uuid": "169e52b2-0fc5-46aa-8e31-81f7bcbcdb86", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-5808", "type": "seen", "source": "https://t.me/ctinow/158838", "content": "https://ift.tt/IXcmnUH\nCVE-2023-5808 | Hitachi Vantara HNAS up to 14.8.7825.01 on Windows improper authorization", "creation_timestamp": "2023-12-23T15:21:54.000000Z"}, {"uuid": "619a3747-a305-408a-91f0-140a3f708da4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-5808", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/10134", "content": "#exploit\n1. CVE-2024-21378:\nRCE in Microsoft Outlook\u00a0\nhttps://www.netspi.com/blog/technical/red-team-operations/microsoft-outlook-remote-code-execution-cve-2024-21378\n]-> DLL for testing CVE-2024-21378 in MS Outlook: https://gist.github.com/Homer28\n\n2. CVE-2023-5808:\nHitachi NAS SMU Backup/Restore - \nInsecure Direct Object Reference\nhttps://packetstormsecurity.com/files/177516/Hitachi-NAS-SMU-Backup-And-Restore-Insecure-Direct-Object-Reference.html", "creation_timestamp": "2024-04-12T05:53:57.000000Z"}]}