{"vulnerability": "cve-2023-3192", "sightings": [{"uuid": "5dbdd550-f949-4446-9643-e0a5a0a5d5f5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-3192", "type": "seen", "source": "https://t.me/cibsecurity/65123", "content": "\u203c CVE-2023-3192 \u203c\n\nSession Fixation in GitHub repository froxlor/froxlor prior to 2.1.0.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-06-11T14:33:16.000000Z"}, {"uuid": "9f341893-765a-491d-ac8f-79943f1c8ccd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31920", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/2933", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-31920\n\ud83d\udd39 Description: Jerryscript 3.0 (commit 05dbbd1) was discovered to contain an Assertion Failure via the vm_loop at jerry-core/vm/vm.c.\n\ud83d\udccf Published: 2023-05-12T00:00:00.000Z\n\ud83d\udccf Modified: 2025-01-24T15:31:17.461Z\n\ud83d\udd17 References:\n1. https://github.com/jerryscript-project/jerryscript/issues/5070", "creation_timestamp": "2025-01-24T16:04:59.000000Z"}, {"uuid": "c4f9e97b-4ca6-49b4-8d0b-0a487185e88b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31925", "type": "seen", "source": "https://t.me/cibsecurity/69503", "content": "\u203c CVE-2023-31925 \u203c\n\nBrocade SANnav before v2.3.0 and v2.2.2a stores SNMPv3 Authentication passwords in plaintext. A privileged user could retrieve these credentials with knowledge and access to these log files. SNMP credentials could be seen in SANnav SupportSave if the capture is performed after an SNMP configuration failure causes an SNMP communication log dump.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-31T07:12:42.000000Z"}, {"uuid": "ba3be830-cb59-49ef-aecb-a4711cc60e11", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31926", "type": "seen", "source": "https://t.me/cibsecurity/67564", "content": "\u203c CVE-2023-31926 \u203c\n\nSystem files could be overwritten using the less command in Brocade Fabric OS before Brocade Fabric OS v9.1.1c and v9.2.0.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-15T21:29:20.000000Z"}, {"uuid": "c2ce7c8d-8b9e-42c0-801b-360c8a8d290e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31928", "type": "seen", "source": "https://t.me/cibsecurity/67562", "content": "\u203c CVE-2023-31928 \u203c\n\nA reflected cross-site scripting (XSS) vulnerability exists in Brocade Webtools PortSetting.html of Brocade Fabric OS version before Brocade Fabric OS v9.2.0 that could allow a remote unauthenticated attacker to execute arbitrary JavaScript code in a target user\u00e2\u20ac\u2122s session with the Brocade Webtools application.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-02T07:39:19.000000Z"}, {"uuid": "36bac0d8-3b5e-45c4-be42-e99b47551692", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31927", "type": "seen", "source": "https://t.me/cibsecurity/67561", "content": "\u203c CVE-2023-31927 \u203c\n\nAn information disclosure in the web interface of Brocade Fabric OS versions before Brocade Fabric OS v9.2.0 and v9.1.1c, could allow a remote unauthenticated attacker to get technical details about the web interface.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-02T07:39:18.000000Z"}, {"uuid": "f05fb780-5dfa-48af-b53e-9f12fcd6e050", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31923", "type": "seen", "source": "https://t.me/cibsecurity/64539", "content": "\u203c CVE-2023-31923 \u203c\n\nSuprema BioStar 2 before 2022 Q4, v2.9.1 has Insecure Permissions. A vulnerability in the web application allows an authenticated attacker with \"User Operator\" privileges to create a highly privileged user account. The vulnerability is caused by missing server-side validation, which can be exploited to gain full administrator privileges on the system.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-22T18:42:52.000000Z"}, {"uuid": "a1c7ce37-66c3-48e2-9bc2-732c07505516", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31921", "type": "seen", "source": "https://t.me/cibsecurity/64029", "content": "\u203c CVE-2023-31921 \u203c\n\nJerryscript 3.0 (commit 05dbbd1) was discovered to contain an Assertion Failure via the ecma_big_uint_div_mod at jerry-core/ecma/operations/ecma-big-uint.c.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-12T18:27:15.000000Z"}, {"uuid": "3c2be7d9-13f2-483e-80f6-626d0538ecbf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31920", "type": "seen", "source": "https://t.me/cibsecurity/64027", "content": "\u203c CVE-2023-31920 \u203c\n\nJerryscript 3.0 (commit 05dbbd1) was discovered to contain an Assertion Failure via the vm_loop at jerry-core/vm/vm.c.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-12T18:27:13.000000Z"}, {"uuid": "0a3aa78a-a5fb-4366-b43c-733eb2e07ed8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31922", "type": "seen", "source": "https://t.me/cibsecurity/64019", "content": "\u203c CVE-2023-31922 \u203c\n\nQuickJS commit 2788d71 was discovered to contain a stack-overflow via the component js_proxy_isArray at quickjs.c.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-12T18:27:02.000000Z"}]}