{"vulnerability": "CVE-2025-2318", "sightings": [{"uuid": "a9d59ca5-1f02-4172-9c17-9580e93bb73c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23184", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113865685557448005", "content": "", "creation_timestamp": "2025-01-21T09:41:17.856719Z"}, {"uuid": "e2de9af5-e1ea-44e3-8967-6dcaf7bd79b6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23184", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lgaoklyjdo2w", "content": "", "creation_timestamp": "2025-01-21T10:49:23.293215Z"}, {"uuid": "fdfb818b-90b2-4585-967a-d7ae97b7d0cb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23184", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lgamodlczd2p", "content": "", "creation_timestamp": "2025-01-21T10:15:39.639399Z"}, {"uuid": "7f422d79-002d-4b1c-a1c7-7362fb095453", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23184", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3lg6p2mpkbo2u", "content": "", "creation_timestamp": "2025-01-20T15:52:59.870482Z"}, {"uuid": "31e0c049-8028-4b18-bfe2-4330511191fd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23187", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113982529635286421", "content": "", "creation_timestamp": "2025-02-11T00:56:17.570771Z"}, {"uuid": "85436bf5-d9e0-4aa4-81dc-a2812eaf48ca", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23189", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113982529649868045", "content": "", "creation_timestamp": "2025-02-11T00:56:17.856955Z"}, {"uuid": "eaa953b0-1b0e-4c3b-b4b2-d90b5b3687c5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23187", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lhuicgdqis2x", "content": "", "creation_timestamp": "2025-02-11T01:15:51.543889Z"}, {"uuid": "8d30b360-7a4b-4c9a-82b8-842c0fde705e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23189", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lhuicj5v6l2h", "content": "", "creation_timestamp": "2025-02-11T01:15:54.265443Z"}, {"uuid": "582c2aab-54e9-4ed4-96d1-68bc3a64e55a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23184", "type": "seen", "source": "https://bsky.app/profile/knaepp.bsky.social/post/3llbwrn2azu2q", "content": "", "creation_timestamp": "2025-03-26T13:55:05.367388Z"}, {"uuid": "a742f166-8d11-4492-af51-b31d41cf894d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23184", "type": "seen", "source": "https://bsky.app/profile/knaepp.bsky.social/post/3lldf5rygsb26", "content": "", "creation_timestamp": "2025-03-27T03:45:05.409188Z"}, {"uuid": "9bb2f3ba-7a89-450a-b277-c8f7f7c531fe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23185", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lk36267zau2w", "content": "", "creation_timestamp": "2025-03-11T03:51:20.768431Z"}, {"uuid": "22a1edfd-f43c-4766-9cb6-023786379326", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2318", "type": "seen", "source": "https://bsky.app/profile/ferramentaslinux.bsky.social/post/3lu3zen6y4s2m", "content": "", "creation_timestamp": "2025-07-16T18:12:18.792984Z"}, {"uuid": "8ddc32dd-07c3-4af9-a1ce-1332687279a3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23180", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114422508457622087", "content": "", "creation_timestamp": "2025-04-29T17:48:41.279773Z"}, {"uuid": "ccf2548e-b2a8-4e6e-9298-4a697ae909ac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23181", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114422508500324960", "content": "", "creation_timestamp": "2025-04-29T17:48:43.492794Z"}, {"uuid": "7f901d28-30b6-46d4-87eb-0c4abe0b3cda", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23181", "type": "seen", "source": "https://bsky.app/profile/redteamnews.bsky.social/post/3lnxyyqh2jc2x", "content": "", "creation_timestamp": "2025-04-29T19:23:48.963364Z"}, {"uuid": "108c81c6-9cdf-4a1a-8c5f-5a9ae263e8a7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23181", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lny2ikaaky2w", "content": "", "creation_timestamp": "2025-04-29T19:50:34.927077Z"}, {"uuid": "38b07fff-d548-4a2a-b15a-57e7a0f01615", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23180", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lny2il7kgu2h", "content": "", "creation_timestamp": "2025-04-29T19:50:40.000979Z"}, {"uuid": "1999d612-273b-45d1-874e-4c7563be6653", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23184", "type": "seen", "source": "https://bsky.app/profile/knaepp.bsky.social/post/3llc2xp74wg2s", "content": "", "creation_timestamp": "2025-03-26T15:10:04.138258Z"}, {"uuid": "22d2b75f-fd9e-4f09-9343-f4ee3ab91efd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23188", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lk3625rpbf2s", "content": "", "creation_timestamp": "2025-03-11T03:51:18.416710Z"}, {"uuid": "65f90bdd-15a7-47bd-a3f8-c01b89b90b47", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23186", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lmc5ck3gta2g", "content": "", "creation_timestamp": "2025-04-08T09:17:07.867290Z"}, {"uuid": "ca74aaf6-6495-45cf-893e-2dc774d1c512", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23186", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114301713028608266", "content": "", "creation_timestamp": "2025-04-08T09:48:49.226603Z"}, {"uuid": "8bbd0806-a048-4a3d-8805-80ca8f9ad0f3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23182", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/17314", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-23182\n\ud83d\udd25 CVSS Score: 4.3 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N)\n\ud83d\udd39 Description: CWE-203: Observable Discrepancy\n\ud83d\udccf Published: 2025-05-22T15:30:03.242Z\n\ud83d\udccf Modified: 2025-05-22T15:57:53.417Z\n\ud83d\udd17 References:\n1. https://www.gov.il/en/departments/dynamiccollectors/cve_advisories_listing?skip=0", "creation_timestamp": "2025-05-22T16:44:13.000000Z"}, {"uuid": "d48afd05-91f5-47bf-88cd-bf7f55830bbd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23180", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/13873", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-23180\n\ud83d\udd25 CVSS Score: 8 (cvssV3_1, Vector: CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: CWE-250: Execution with Unnecessary Privileges\n\ud83d\udccf Published: 2025-04-29T16:18:48.113Z\n\ud83d\udccf Modified: 2025-04-29T16:18:48.113Z\n\ud83d\udd17 References:\n1. https://www.gov.il/en/departments/dynamiccollectors/cve_advisories_listing?skip=0", "creation_timestamp": "2025-04-29T17:12:08.000000Z"}, {"uuid": "a6b6840a-1f66-450e-bd14-41e14ce71ce8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23181", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/13872", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-23181\n\ud83d\udd25 CVSS Score: 8 (cvssV3_1, Vector: CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: CWE-250: Execution with Unnecessary Privileges\n\ud83d\udccf Published: 2025-04-29T16:19:37.077Z\n\ud83d\udccf Modified: 2025-04-29T16:19:37.077Z\n\ud83d\udd17 References:\n1. https://www.gov.il/en/departments/dynamiccollectors/cve_advisories_listing?skip=0", "creation_timestamp": "2025-04-29T17:12:04.000000Z"}, {"uuid": "9087b81e-456a-4d50-b6cc-c71d4e2b0407", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23184", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/2379", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-23184\n\ud83d\udd39 Description: A potential denial of service vulnerability is present in versions of Apache CXF before\u00a03.5.10, 3.6.5 and 4.0.6.\u00a0In some edge cases, the CachedOutputStream instances may not be closed and, if backed by temporary files, may fill up the file system (it applies to servers and clients).\n\ud83d\udccf Published: 2025-01-21T09:35:37.468Z\n\ud83d\udccf Modified: 2025-01-21T09:35:37.468Z\n\ud83d\udd17 References:\n1. https://lists.apache.org/thread/lfs8l63rnctnj2skfrxyys7v8fgnt122", "creation_timestamp": "2025-01-21T10:01:15.000000Z"}, {"uuid": "51fb7f2d-6803-42fe-8e18-be12da26f601", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23184", "type": "seen", "source": "https://gist.github.com/Darkcrai86/0f80603a263e033f4c0501a6394db4b8", "content": "", "creation_timestamp": "2025-09-18T16:28:01.000000Z"}, {"uuid": "367df92e-1545-4755-89ff-31536f815b03", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23184", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-261-04", "content": "", "creation_timestamp": "2025-09-18T10:00:00.000000Z"}, {"uuid": "fad34311-ffcd-4f70-81ea-e25c6c6eb8cf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23188", "type": "seen", "source": "https://t.me/cvedetector/20021", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-23188 - FS-RBD IBS Module Authorization Bypass Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-23188 \nPublished : March 11, 2025, 1:15 a.m. | 24\u00a0minutes ago \nDescription : An authenticated user with low privileges can exploit a missing authorization check in an IBS module of FS-RBD, allowing unauthorized access to perform actions beyond their intended permissions. This causes a low impact on integrity with no impact on confidentiality and availability. \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-11T03:24:42.000000Z"}, {"uuid": "cc13cb90-de63-4766-8962-ee1f6cccb105", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23185", "type": "seen", "source": "https://t.me/cvedetector/20020", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-23185 - SAP Business Objects Business Intelligence Platform Information Disclosure\", \n  \"Content\": \"CVE ID : CVE-2025-23185 \nPublished : March 11, 2025, 1:15 a.m. | 24\u00a0minutes ago \nDescription : Due to improper error handling in SAP Business Objects Business Intelligence Platform, technical details of the application are revealed in exceptions thrown to the user and in stack traces. Only an attacker with administrator level privileges has access to this disclosed information, and they could use it to craft further exploits. There is no impact on the integrity and availability of the application. \nSeverity: 4.1 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-11T03:24:42.000000Z"}, {"uuid": "8b618aaf-546e-4c25-bade-849bdc7680fb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23187", "type": "seen", "source": "https://t.me/cvedetector/17630", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-23187 - SAP SDCCN Missing Authorization Check Information Disclosure\", \n  \"Content\": \"CVE ID : CVE-2025-23187 \nPublished : Feb. 11, 2025, 1:15 a.m. | 31\u00a0minutes ago \nDescription : Due to missing authorization check in an RFC enabled function module in transaction SDCCN, an unauthenticated attacker could generate technical meta-data. This leads to a low impact on integrity. There is no impact on confidentiality or availability. \nSeverity: 5.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-11T03:07:56.000000Z"}, {"uuid": "f388bcd7-77d0-457d-b2dd-3bd341235550", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23189", "type": "seen", "source": "https://t.me/cvedetector/17625", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-23189 - SAP SDCCN Authorization Bypass\", \n  \"Content\": \"CVE ID : CVE-2025-23189 \nPublished : Feb. 11, 2025, 1:15 a.m. | 31\u00a0minutes ago \nDescription : Due to missing authorization check in an RFC enabled function module in transaction SDCCN, an authenticated attacker could generate technical meta-data. This leads to a low impact on integrity. There is no impact on confidentiality or availability \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-11T03:07:50.000000Z"}, {"uuid": "b86fc159-58ab-459a-bfa4-811d7c8aa8ed", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23188", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/7097", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-23188\n\ud83d\udd25 CVSS Score: 4.3 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N)\n\ud83d\udd39 Description: An authenticated user with low privileges can exploit a missing authorization check in an IBS module of FS-RBD, allowing unauthorized access to perform actions beyond their intended permissions. This causes a low impact on integrity with no impact on confidentiality and availability.\n\ud83d\udccf Published: 2025-03-11T00:32:01.809Z\n\ud83d\udccf Modified: 2025-03-11T02:16:30.166Z\n\ud83d\udd17 References:\n1. https://me.sap.com/notes/3557131\n2. https://url.sap/sapsecuritypatchday", "creation_timestamp": "2025-03-11T02:40:05.000000Z"}, {"uuid": "80646679-8336-4b1c-bca8-66b7aa46c2d1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23185", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/7096", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-23185\n\ud83d\udd25 CVSS Score: 4.1 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:N/A:N)\n\ud83d\udd39 Description: Due to improper error handling in SAP Business Objects Business Intelligence Platform, technical details of the application are revealed in exceptions thrown to the user and in stack traces. Only an attacker with administrator level privileges has access to this disclosed information, and they could use it to craft further exploits. There is no impact on the integrity and availability of the application.\n\ud83d\udccf Published: 2025-03-11T00:31:51.113Z\n\ud83d\udccf Modified: 2025-03-11T02:17:05.919Z\n\ud83d\udd17 References:\n1. https://me.sap.com/notes/3549494\n2. https://url.sap/sapsecuritypatchday", "creation_timestamp": "2025-03-11T02:40:02.000000Z"}, {"uuid": "5a67dfcf-5031-4968-8763-8d287565b4f6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23186", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/10873", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-23186\n\ud83d\udd25 CVSS Score: 8.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H)\n\ud83d\udd39 Description: In certain conditions, SAP NetWeaver Application Server ABAP allows an authenticated attacker to craft a Remote Function Call (RFC) request to restricted destinations, which can be used to expose credentials for a remote service. These credentials can then be further exploited to completely compromise the remote service, potentially resulting in a significant impact on the confidentiality, integrity, and availability of the application.\n\ud83d\udccf Published: 2025-04-08T07:10:22.346Z\n\ud83d\udccf Modified: 2025-04-08T07:10:22.346Z\n\ud83d\udd17 References:\n1. https://me.sap.com/notes/3554667\n2. https://url.sap/sapsecuritypatchday", "creation_timestamp": "2025-04-08T07:46:39.000000Z"}, {"uuid": "f81645ee-4275-4bac-af83-af4f75f5b178", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23183", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/17316", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-23183\n\ud83d\udd25 CVSS Score: 6.1 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N)\n\ud83d\udd39 Description: CWE-601: URL Redirection to Untrusted Site ('Open Redirect')\n\ud83d\udccf Published: 2025-05-22T15:32:42.488Z\n\ud83d\udccf Modified: 2025-05-22T15:56:34.724Z\n\ud83d\udd17 References:\n1. https://www.gov.il/en/departments/dynamiccollectors/cve_advisories_listing?skip=0", "creation_timestamp": "2025-05-22T16:44:16.000000Z"}, {"uuid": "aec428e8-e616-4979-af51-31858e20a6a5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23185", "type": "seen", "source": "Telegram/xRmcPBAd3u5_cjm7bVBjik-o2p7HKhePXY21m89TT7efQ6q2", "content": "", "creation_timestamp": "2025-03-11T04:41:14.000000Z"}, {"uuid": "73b9a899-8a48-4729-9161-8ace9bda1f47", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23184", "type": "seen", "source": "https://t.me/cvedetector/15911", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-23184 - Apache CXF DoS Denial of Service\", \n  \"Content\": \"CVE ID : CVE-2025-23184 \nPublished : Jan. 21, 2025, 10:15 a.m. | 38\u00a0minutes ago \nDescription : A potential denial of service vulnerability is present in versions of Apache CXF before\u00a03.5.10, 3.6.5 and 4.0.6.\u00a0In some edge cases, the CachedOutputStream instances may not be closed and, if backed by temporary files, may fill up the file system (it applies to servers and clients). \nSeverity: 5.9 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"21 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-21T11:56:26.000000Z"}, {"uuid": "a7dcfb4a-f69d-4d20-a0a5-562b2d0cf324", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23181", "type": "seen", "source": "https://t.me/cvedetector/24046", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-23181 - Apache Tomcat Unprivileged Command Execution Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-23181 \nPublished : April 29, 2025, 5:15 p.m. | 1\u00a0hour, 39\u00a0minutes ago \nDescription : CWE-250: Execution with Unnecessary Privileges \nSeverity: 8.0 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"29 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-29T21:01:20.000000Z"}, {"uuid": "e4eb8a3b-1ef5-4160-8604-c2d6baab34fd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23180", "type": "seen", "source": "https://t.me/cvedetector/24045", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-23180 - Apache HTTP Server Unprivileged Process Execution\", \n  \"Content\": \"CVE ID : CVE-2025-23180 \nPublished : April 29, 2025, 5:15 p.m. | 1\u00a0hour, 39\u00a0minutes ago \nDescription : CWE-250: Execution with Unnecessary Privileges \nSeverity: 8.0 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"29 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-29T21:01:20.000000Z"}, {"uuid": "858af80f-bb89-4e1f-9a66-90303c200bd9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23186", "type": "seen", "source": "https://t.me/cvedetector/22430", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-23186 - SAP NetWeaver Application Server ABAP Remote Function Call Credential Exposure\", \n  \"Content\": \"CVE ID : CVE-2025-23186 \nPublished : April 8, 2025, 8:15 a.m. | 1\u00a0hour, 7\u00a0minutes ago \nDescription : In certain conditions, SAP NetWeaver Application Server ABAP allows an authenticated attacker to craft a Remote Function Call (RFC) request to restricted destinations, which can be used to expose credentials for a remote service. These credentials can then be further exploited to completely compromise the remote service, potentially resulting in a significant impact on the confidentiality, integrity, and availability of the application. \nSeverity: 8.5 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"08 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-08T11:29:20.000000Z"}, {"uuid": "e85eb274-a09f-41de-b277-129822445c5a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23180", "type": "published-proof-of-concept", "source": "Telegram/obajfcGkagya_Yelipu27ZjZPzm4H6vLGDNzjCH6Suk5ZZs", "content": "", "creation_timestamp": "2025-04-29T19:02:24.000000Z"}, {"uuid": "be7da5a7-2d54-4098-821c-9395ce27f764", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23181", "type": "published-proof-of-concept", "source": "Telegram/obajfcGkagya_Yelipu27ZjZPzm4H6vLGDNzjCH6Suk5ZZs", "content": "", "creation_timestamp": "2025-04-29T19:02:24.000000Z"}]}