{"vulnerability": "cve-2023-3038", "sightings": [{"uuid": "eb6c1409-6308-4b00-a5bf-30307e69768c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-30382", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/2190", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-30382\n\ud83d\udd39 Description: A buffer overflow in the component hl.exe of Valve Half-Life up to 5433873 allows attackers to execute arbitrary code and escalate privileges by supplying crafted parameters.\n\ud83d\udccf Published: 2023-05-23T00:00:00\n\ud83d\udccf Modified: 2025-01-17T18:28:40.643Z\n\ud83d\udd17 References:\n1. https://labs.jumpsec.com/advisory-cve-2023-30382-half-life-local-privilege-escalation/", "creation_timestamp": "2025-01-17T18:57:02.000000Z"}, {"uuid": "7d9daf32-db86-4846-9594-2e3c7b9f0553", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-30383", "type": "seen", "source": "https://t.me/cibsecurity/66935", "content": "\u203c CVE-2023-30383 \u203c\n\nTP-LINK Archer C50v2 Archer C50(US)_V2_160801, TP-LINK Archer C20v1 Archer_C20_V1_150707, and TP-LINK Archer C2v1 Archer_C2_US__V1_170228 were discovered to contain a buffer overflow which may lead to a Denial of Service (DoS) when parsing crafted data.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-18T22:31:09.000000Z"}, {"uuid": "99b3530f-1992-4602-a5a2-119539c92e99", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-30382", "type": "seen", "source": "https://t.me/cibsecurity/64661", "content": "\u203c CVE-2023-30382 \u203c\n\nA buffer overflow in the component hl.exe of Valve Half-Life up to 5433873 allows attackers to execute arbitrary code and escalate privileges by supplying crafted parameters.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-24T00:40:39.000000Z"}, {"uuid": "5958d557-1332-403a-b5bb-79bc8efa7e4d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-3038", "type": "seen", "source": "https://t.me/cibsecurity/71575", "content": "\u203c CVE-2023-3038 \u203c\n\nSQL injection vulnerability in HelpDezk Community affecting version 1.1.10. This vulnerability could allow a remote attacker to send a specially crafted SQL query to the rows parameter of the jsonGrid route and extract all the information stored in the application.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-04T16:12:06.000000Z"}]}