{"vulnerability": "cve-2022-4097", "sightings": [{"uuid": "d7c56ae4-fd30-4a9b-98f5-ac86f30c38be", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-40970", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lqazn5vm7w2w", "content": "", "creation_timestamp": "2025-05-28T20:19:35.080811Z"}, {"uuid": "0e3022f8-a2fa-4379-af68-ed289ae95124", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-40978", "type": "seen", "source": "https://t.me/zema_notes/25", "content": "\u0418\u043d\u0442\u0435\u0440\u0435\u0441\u043d\u044b\u0445 \u0438\u0434\u0435\u0439 \u0434\u043b\u044f \u043f\u043e\u0441\u0442\u043e\u0432 \u043d\u0435\u0442, \u043f\u043e\u044d\u0442\u043e\u043c\u0443 \u043f\u0440\u043e\u0441\u0442\u043e \u043f\u0443\u0431\u043b\u0438\u043a\u0443\u044e \u0442\u043e, \u0447\u0442\u043e \u0435\u0441\u0442\u044c.\n\n\u041d\u0430 \u0434\u043d\u044f\u0445 \u043f\u043e\u043b\u0443\u0447\u0438\u043b \u0441\u0432\u043e\u044e \u043f\u0435\u0440\u0432\u0443\u044e CVE. 7.5 \u043f\u043e CVSS 3.0. \u041d\u0435\u043f\u043b\u043e\u0445\u043e.\n\n\u0416\u0430\u043b\u044c \u043d\u0435 \u043a\u0430\u043a\u043e\u0439-\u043d\u0438\u0431\u0443\u0434\u044c \u0432\u0435\u0431 \u0441\u0435\u0440\u0432\u0438\u0441 + \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0434\u043e\u0432\u043e\u043b\u044c\u043d\u043e-\u0442\u0430\u043a\u0438 \u0441\u043c\u0435\u0448\u043d\u0430\u044f. \u041d\u043e \u0432\u0441\u0451 \u0436\u0435 \u0444\u0430\u043a\u0442 \u0435\u0441\u0442\u044c \u0444\u0430\u043a\u0442.\n\nCVE-2022-40978\n\n\u041c\u0435\u0440\u0447\u0430 \u0437\u0430\u0436\u0430\u043b\u0438 :(\n\n\n\nP.S.: \u043f\u0435\u0440\u0435\u0437\u0430\u043b\u0438\u0432, \u0438\u0431\u043e \u0444\u043e\u0442\u043a\u0430 \u043f\u0440\u0438\u043a\u0440\u0435\u043f\u043b\u044f\u043b\u0430\u0441\u044c \u0444\u0430\u0439\u043b\u043e\u043c :(\n\n#\u0414\u043e\u0441\u0442\u0438\u0436\u0435\u043d\u0438\u044f #CVE", "creation_timestamp": "2022-10-25T15:01:15.000000Z"}, {"uuid": "db79a6b6-9a66-43f2-8161-3ddde3d8603a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-40976", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/13480", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-40976\n\ud83d\udd25 CVSS Score: 5.5 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N)\n\ud83d\udd39 Description: A path traversal vulnerability was discovered in multiple Pilz products. An unauthenticated local attacker could use a zipped, malicious configuration file to trigger arbitrary file writes ('zip-slip'). File writes do not affect confidentiality or availability.\n\ud83d\udccf Published: 2022-11-24T09:19:54.553Z\n\ud83d\udccf Modified: 2025-04-25T17:56:03.675Z\n\ud83d\udd17 References:\n1. https://cert.vde.com/en/advisories/VDE-2022-044/\n2. https://cert.vde.com/en/advisories/VDE-2022-045/", "creation_timestamp": "2025-04-25T18:08:10.000000Z"}, {"uuid": "335bd61a-57a7-41e1-985c-4e15236ebe02", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-40972", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/2973", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-40972\n\ud83d\udd39 Description: Improper access control in some Intel(R) QAT drivers for Windows before version 1.9.0 may allow an authenticated user to potentially enable escalation of privilege via local access.\n\ud83d\udccf Published: 2023-05-10T13:17:17.162Z\n\ud83d\udccf Modified: 2025-01-24T17:39:20.944Z\n\ud83d\udd17 References:\n1. https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00778.html", "creation_timestamp": "2025-01-24T18:05:23.000000Z"}, {"uuid": "eb4c298f-53bf-4759-af57-b162977969a7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-40977", "type": "seen", "source": "https://t.me/cibsecurity/53474", "content": "\u203c CVE-2022-40977 \u203c\n\nA path traversal vulnerability was discovered in Pilz PASvisu Server before 1.12.0. An unauthenticated remote attacker could use a zipped, malicious configuration file to trigger arbitrary file writes ('zip-slip').\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-11-24T12:28:10.000000Z"}, {"uuid": "f0f5f877-9a69-4bc9-a64e-44b832ee41ff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-40976", "type": "seen", "source": "https://t.me/cibsecurity/53473", "content": "\u203c CVE-2022-40976 \u203c\n\nA path traversal vulnerability was discovered in multiple Pilz products. An unauthenticated local attacker could use a zipped, malicious configuration file to trigger arbitrary file writes ('zip-slip').\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-11-24T12:28:08.000000Z"}, {"uuid": "d0292792-8b00-4eb0-bd4b-0ccdcb3d31f7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-4097", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/11677", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-4097\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: The All-In-One Security (AIOS) WordPress plugin before 5.0.8 is susceptible to IP Spoofing attacks, which can lead to bypassed security features (like IP blocks, rate limiting, brute force protection, and more).\n\ud83d\udccf Published: 2022-12-12T17:54:35.126Z\n\ud83d\udccf Modified: 2025-04-14T18:38:47.786Z\n\ud83d\udd17 References:\n1. https://wpscan.com/vulnerability/15819d33-7497-4f7d-bbb8-b3ab147806c4", "creation_timestamp": "2025-04-14T18:54:05.000000Z"}]}