{"vulnerability": "CVE-2023-6909", "sightings": [{"uuid": "204b9d34-4ed3-488a-acff-421cd5146894", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-6909", "type": "seen", "source": "https://t.me/ctinow/156875", "content": "https://ift.tt/OFrMReH\nCVE-2023-6909 Exploit", "creation_timestamp": "2023-12-20T11:17:57.000000Z"}, {"uuid": "1d085e9a-1166-4aa4-a65b-f15c180f90a6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-6909", "type": "seen", "source": "Telegram/r1wKJXjH2pTO0xeaSE1QheSc4QAYiX6QzNohFiLFxNX558lD", "content": "", "creation_timestamp": "2025-02-06T02:39:18.000000Z"}, {"uuid": "74894495-1f44-421c-8a4c-845c17df4de2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-6909", "type": "seen", "source": "https://t.me/arpsyndicate/4711", "content": "#ExploitObserverAlert\n\nCVE-2024-1594\n\nDESCRIPTION: Exploit Observer has 3 entries in 1 file formats related to CVE-2024-1594. A path traversal vulnerability exists in the mlflow/mlflow repository, specifically within the handling of the `artifact_location` parameter when creating an experiment. Attackers can exploit this vulnerability by using a fragment component `#` in the artifact location URI to read arbitrary files on the server in the context of the server's process. This issue is similar to CVE-2023-6909 but utilizes a different component of the URI to achieve the same effect.\n\nFIRST-EPSS: 0.000430000\nARPS-EXPLOITABILITY: 0.9019774", "creation_timestamp": "2024-04-18T06:48:53.000000Z"}, {"uuid": "3087529a-9cb2-46eb-a50e-0e4e1b57b417", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-6909", "type": "seen", "source": "https://t.me/ctinow/167138", "content": "https://ift.tt/wTlG48E\nCVE-2023-6909 | mlflow up to 2.9.1 path traversal", "creation_timestamp": "2024-01-12T09:11:38.000000Z"}, {"uuid": "44f5679f-87ab-4d4c-8164-cd566210a9ec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-6909", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-06-03)", "content": "", "creation_timestamp": "2026-06-03T00:00:00.000000Z"}, {"uuid": "0c39bc73-4599-4aa5-bbd2-e8fbe4870edf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-6909", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-06-04)", "content": "", "creation_timestamp": "2026-06-04T00:00:00.000000Z"}, {"uuid": "1e79c525-b5c5-4860-8cfc-db78b85ca142", "vulnerability_lookup_origin": "caeb2787-0d58-4236-9039-7c86c3e566f3", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-6909", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/f3b56936-7185-46ca-9a38-3a8ee933beae", "content": "", "creation_timestamp": "2026-06-19T12:45:11.090162Z"}, {"uuid": "0b2a3f3f-f01e-418d-a391-62496a02c9e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-6909", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-06-22)", "content": "", "creation_timestamp": "2026-06-22T00:00:00.000000Z"}, {"uuid": "3cd30c4f-42e9-4860-9eb4-17e74c9d88ef", "vulnerability_lookup_origin": "caeb2787-0d58-4236-9039-7c86c3e566f3", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-6909", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/33f6d8bc-0ff6-4c3e-becd-b8b12b8eb6b5", "content": "", "creation_timestamp": "2026-06-23T14:03:02.055708Z"}, {"uuid": "e1c85aca-6c35-48ce-a064-d2e1df6fdb43", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-6909", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-06-26)", "content": "", "creation_timestamp": "2026-06-27T10:15:09.156250Z"}]}