{"vulnerability": "CVE-2025-30472", "sightings": [{"uuid": "2707b062-9d88-4ba3-ad0a-b4dafa766f61", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30472", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114211973427016506", "content": "", "creation_timestamp": "2025-03-23T13:26:51.800313Z"}, {"uuid": "b12ec669-cae8-44e3-999e-dfce227cad32", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30472", "type": "seen", "source": "https://bsky.app/profile/ferramentaslinux.bsky.social/post/3lohaacg5jk27", "content": "", "creation_timestamp": "2025-05-05T20:43:16.958076Z"}, {"uuid": "3c103a21-0d25-48aa-abcf-0f3aaf374941", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30472", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114203799964343264", "content": "", "creation_timestamp": "2025-03-22T02:48:14.521382Z"}, {"uuid": "7a66eab5-dc15-40e3-96f7-c347370d38ab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30472", "type": "seen", "source": "https://bsky.app/profile/nixpkgssecuritychanges.gerbet.me/post/3lvyciaarsn2x", "content": "", "creation_timestamp": "2025-08-09T17:35:05.828163Z"}, {"uuid": "2e3b3d58-e79a-42b4-8791-5d0f35002fa0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30472", "type": "seen", "source": "https://gist.github.com/YellowOnion/8bd069ee35a6398aaa85d6abb27a1c9d", "content": "", "creation_timestamp": "2026-02-20T12:23:58.000000Z"}, {"uuid": "dead3433-6447-46f7-a94d-6fce79d72b30", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30472", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/8687", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-30472\n\ud83d\udd25 CVSS Score: 9 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H)\n\ud83d\udd39 Description: Corosync through 3.1.9, if encryption is disabled or the attacker knows the encryption key, has a stack-based buffer overflow in orf_token_endian_convert in exec/totemsrp.c via a large UDP packet.\n\ud83d\udccf Published: 2025-03-22T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-25T15:10:15.130Z\n\ud83d\udd17 References:\n1. https://github.com/corosync/corosync/blob/73ba225cc48ebb1903897c792065cb5e876613b0/exec/totemsrp.c#L4677\n2. https://github.com/corosync/corosync/issues/778\n3. https://corosync.org", "creation_timestamp": "2025-03-25T15:24:06.000000Z"}, {"uuid": "f2549f62-bb5b-4ed5-a18a-28ea0cd307a4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30472", "type": "seen", "source": "https://t.me/cvedetector/20848", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-30472 - Corosync Stack-Based Buffer Overflow Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-30472 \nPublished : March 22, 2025, 2:15 a.m. | 48\u00a0minutes ago \nDescription : Corosync through 3.1.9, if encryption is disabled or the attacker knows the encryption key, has a stack-based buffer overflow in orf_token_endian_convert in exec/totemsrp.c via a large UDP packet. \nSeverity: 9.0 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-22T04:31:07.000000Z"}, {"uuid": "f9e9e0c1-d8fb-4864-971d-0858278c3efb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30472", "type": "published-proof-of-concept", "source": "Telegram/IxOpXsjTgS7WyqZhGOFOfgLSEyNeZfcGtw6iB4R6SfAugAo", "content": "", "creation_timestamp": "2025-03-22T03:00:28.000000Z"}]}