{"vulnerability": "CVE-2025-27590", "sightings": [{"uuid": "36b0a38d-66e1-49fb-9542-84c0bb0a34f8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27590", "type": "seen", "source": "https://bsky.app/profile/vulnalerts.bsky.social/post/3ljhvmtwx2s2f", "content": "", "creation_timestamp": "2025-03-03T12:00:06.495359Z"}, {"uuid": "0228e47d-50e4-412b-b0ec-f7df09a2dceb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27590", "type": "seen", "source": "https://bsky.app/profile/vulnalerts.bsky.social/post/3ljj5uemne42w", "content": "", "creation_timestamp": "2025-03-04T00:00:08.950429Z"}, {"uuid": "10cadd90-04c8-44be-a68d-8dff582d4f5f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27590", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114096924924188445", "content": "", "creation_timestamp": "2025-03-03T05:48:30.706930Z"}, {"uuid": "9fa2f149-f361-4732-9cbf-370e18d99269", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27590", "type": "seen", "source": "https://bsky.app/profile/buherator.bsky.social/post/3lmgq72wkjz2q", "content": "", "creation_timestamp": "2025-04-10T05:05:50.664082Z"}, {"uuid": "86a8aa8d-4533-4f1e-b2b9-3140411f1076", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27590", "type": "seen", "source": "https://bsky.app/profile/netspi.bsky.social/post/3lmhpd22tpk2j", "content": "", "creation_timestamp": "2025-04-10T14:22:52.380496Z"}, {"uuid": "52159de9-490c-4a09-a44b-310a0cf9886f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27590", "type": "seen", "source": "https://t.me/cvedetector/19305", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-27590 - Oxidized Web Unauthenticated Remote Command Execution\", \n  \"Content\": \"CVE ID : CVE-2025-27590 \nPublished : March 3, 2025, 4:15 a.m. | 1\u00a0hour, 44\u00a0minutes ago \nDescription : In oxidized-web (aka Oxidized Web) before 0.15.0, the RANCID migration page allows an unauthenticated user to gain control over the Linux user account that is running oxidized-web. \nSeverity: 9.0 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"03 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-03T07:10:33.000000Z"}, {"uuid": "8fd6367d-b868-4828-b7a5-058d05e11907", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27590", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/6146", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-27590\n\ud83d\udd25 CVSS Score: 9 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H)\n\ud83d\udd39 Description: In oxidized-web (aka Oxidized Web) before 0.15.0, the RANCID migration page allows an unauthenticated user to gain control over the Linux user account that is running oxidized-web.\n\ud83d\udccf Published: 2025-03-03T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-03T03:28:18.346Z\n\ud83d\udd17 References:\n1. https://github.com/ytti/oxidized-web/releases/tag/0.15.0\n2. https://github.com/ytti/oxidized-web/commit/a5220a0ddc57b85cd122bffee228d3ed4901668e", "creation_timestamp": "2025-03-03T04:29:48.000000Z"}, {"uuid": "c7e13d0a-17e0-4d01-99a1-4a8192d0a2ef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27590", "type": "seen", "source": "https://t.me/CyberBulletin/2988", "content": "\u26a1\ufe0fCVE-2025-27590 \u2013 Oxidized Web: Local File Overwrite to Remote Code Execution.\n\n#CyberBulletin", "creation_timestamp": "2025-04-10T11:36:55.000000Z"}, {"uuid": "1e1f1698-e05b-44a7-ad38-70da8f6af463", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27590", "type": "published-proof-of-concept", "source": "Telegram/p9d_ACvMhwgjQHzi_flG_te3gVSPsQD85yv29crmwoHofRE", "content": "", "creation_timestamp": "2025-03-03T06:00:40.000000Z"}]}