{"vulnerability": "CVE-2022-2523", "sightings": [{"uuid": "1fe4b010-4242-4cd2-ad66-592775814b9e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25237", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2025-01-21)", "content": "", "creation_timestamp": "2025-01-21T00:00:00.000000Z"}, {"uuid": "3b3db0d9-1574-42cd-b395-d3f36e61fc40", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25237", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2025-03-21)", "content": "", "creation_timestamp": "2025-03-21T00:00:00.000000Z"}, {"uuid": "767c3ab0-d652-4315-a94e-8f0eef98ef83", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25237", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2025-04-23)", "content": "", "creation_timestamp": "2025-04-23T00:00:00.000000Z"}, {"uuid": "569becc4-21be-438b-b131-60f6ef71e23b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25237", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2025-03-15)", "content": "", "creation_timestamp": "2025-03-15T00:00:00.000000Z"}, {"uuid": "437048b2-4f7a-4863-a052-89859a14cf91", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25237", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-04-07)", "content": "", "creation_timestamp": "2025-04-07T00:00:00.000000Z"}, {"uuid": "6308256f-53e8-4697-a62a-e28bd554a0f4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25237", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-07-01)", "content": "", "creation_timestamp": "2025-07-01T00:00:00.000000Z"}, {"uuid": "74aef270-5944-49dc-b38c-4bc6191c1c5d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25237", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-03-15)", "content": "", "creation_timestamp": "2025-03-15T00:00:00.000000Z"}, {"uuid": "540e9a4d-3c8c-4c3e-8c3b-c120aae73894", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25237", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2025-04-12)", "content": "", "creation_timestamp": "2025-04-12T00:00:00.000000Z"}, {"uuid": "66484904-2397-461e-bb3e-3609bb34f70f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25237", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2025-04-24)", "content": "", "creation_timestamp": "2025-04-24T00:00:00.000000Z"}, {"uuid": "108bd351-6bbd-43e3-b86e-2f0f28650b27", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25237", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2026-01-12)", "content": "", "creation_timestamp": "2026-01-12T00:00:00.000000Z"}, {"uuid": "afd40a4f-c26b-4acb-939c-549d4fcab608", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25237", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2026-01-06)", "content": "", "creation_timestamp": "2026-01-06T00:00:00.000000Z"}, {"uuid": "0922ba76-b353-420a-90c1-b79520415c22", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25237", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2026-01-10)", "content": "", "creation_timestamp": "2026-01-10T00:00:00.000000Z"}, {"uuid": "14e12164-3e8a-4140-b9bf-a02cd4bfd195", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25237", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lv7jfpi3lb2b", "content": "", "creation_timestamp": "2025-07-30T21:02:23.640471Z"}, {"uuid": "2ad017e6-c8b8-4826-b01e-7373ad166e66", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25237", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2026-01-11)", "content": "", "creation_timestamp": "2026-01-11T00:00:00.000000Z"}, {"uuid": "ba90d0fe-2f4e-41f4-ba85-a921583c2636", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25237", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2026-01-20)", "content": "", "creation_timestamp": "2026-01-20T00:00:00.000000Z"}, {"uuid": "6f2b64f2-a156-4828-ad80-ede0954d8b36", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25237", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2026-01-19)", "content": "", "creation_timestamp": "2026-01-19T00:00:00.000000Z"}, {"uuid": "3958153c-a1be-4ddc-867b-d7431234ff24", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25237", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-01-19)", "content": "", "creation_timestamp": "2026-01-19T00:00:00.000000Z"}, {"uuid": "d7f6c8fd-5414-46e3-83e6-3bdd0e17fc29", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25237", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-01-15)", "content": "", "creation_timestamp": "2026-01-15T00:00:00.000000Z"}, {"uuid": "391ec434-fe7a-4c09-b1ee-bfcb023c1b7d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25237", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2026-04-11)", "content": "", "creation_timestamp": "2026-04-11T00:00:00.000000Z"}, {"uuid": "6bc46906-f7d7-4439-9d64-85bb724c6a0c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25237", "type": "published-proof-of-concept", "source": "https://t.me/TopCyberTechNews/17", "content": "Top Security News for 25/05/2022\n\nSuspected Chinese threat actors target Russian government entities. New version of Sandworm malware loader. Linux botnet activity.\nhttps://thecyberwire.com/newsletters/research-briefing/4/21 \n\n7 machine identity management best practices\nhttps://www.csoonline.com/article/3661357/7-machine-identity-best-practices.html#tk.rss_all \n\nNew Rhino Blog Post: CVE-2022-25237: Bonitasoft Authorization Bypass and RCE\nhttps://www.reddit.com/r/netsec/comments/uwt4gq/new_rhino_blog_post_cve202225237_bonitasoft/ \n\nExium expands SASE, 5G-based security for midsize enterprise networks\nhttps://www.networkworld.com/article/3661700/exium-expands-sase-5g-based-security-for-midsize-enterprise-networks.html#tk.rss_all \n\nISC StormCast for Wednesday, May 25th, 2022\nhttps://isc.sans.edu/podcastdetail.html?id=8022 \n\nZoom patches XMPP vulnerability chain that could lead to remote code execution\nhttps://malware.news/t/zoom-patches-xmpp-vulnerability-chain-that-could-lead-to-remote-code-execution/60432/1 \n\nMethod that Tricks Users to Perceive Attachment of PDF File as Safe File\nhttps://malware.news/t/method-that-tricks-users-to-perceive-attachment-of-pdf-file-as-safe-file/60435/1 \n\nCMMC issues. CISA's forthcoming incident reporting rules. US FTC blogs policy.\nhttps://thecyberwire.com/newsletters/policy-briefing/4/100 \n\nExperts to World: We\u2019re Doomed\nhttps://www.vice.com/en_us/article/93bxxv/experts-to-world-were-doomed \n\nSIM-based Authentication Aims to Transform Device Binding Security to End Phishing\nhttps://thehackernews.com/2022/05/sim-based-authentication-aims-to.html \n\n    \nFollow Top Cyber News at https://t.me/TopCyberTechNews\nFeel free to DM me at https://twitter.com/ShayaFeedman", "creation_timestamp": "2022-05-25T09:37:36.000000Z"}, {"uuid": "f581b993-e490-4b2b-a0ff-f4072463e06d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25235", "type": "seen", "source": "https://t.me/cibsecurity/37557", "content": "\u203c CVE-2022-25235 \u203c\n\nxmltok_impl.c in Expat (aka libexpat) before 2.4.5 lacks certain validation of encoding, such as checks for whether a UTF-8 character is valid in a certain context.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-16T07:35:20.000000Z"}, {"uuid": "821d6f1b-27bb-4344-aa09-2c29891fda59", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25238", "type": "seen", "source": "https://t.me/cibsecurity/45345", "content": "\u203c CVE-2022-25238 \u203c\n\nSilverstripe silverstripe/framework through 4.10.0 allows XSS, inside of script tags that can can be added to website content via XHR by an authenticated CMS user if the cwp-core module is not installed on the sanitise_server_side contig is not set to true in project code.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-29T02:36:29.000000Z"}, {"uuid": "2fbc257b-00d0-4e37-b5e7-ec18b0052540", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25236", "type": "seen", "source": "https://t.me/cibsecurity/37555", "content": "\u203c CVE-2022-25236 \u203c\n\nxmlparse.c in Expat (aka libexpat) before 2.4.5 allows attackers to insert namespace-separator characters into namespace URIs.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-16T07:35:18.000000Z"}, {"uuid": "4436bfd1-65c2-4b72-befb-b2129b26d17f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25235", "type": "seen", "source": "https://t.me/CyberSecurityTechnologies/6079", "content": "#exploit\nZoom:  RCE with XMPP Stanza Smuggling (CVE-2022-25235, CVE-2022-25236, CVE-2022-22784, CVE-2022-22785, CVE-2022-22786, CVE-2022-22787)\nhttps://bugs.chromium.org/p/project-zero/issues/detail?id=2254", "creation_timestamp": "2022-05-26T10:59:01.000000Z"}, {"uuid": "5332254f-20c3-4988-a42d-e358748ae398", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25236", "type": "seen", "source": "https://t.me/CyberSecurityTechnologies/6079", "content": "#exploit\nZoom:  RCE with XMPP Stanza Smuggling (CVE-2022-25235, CVE-2022-25236, CVE-2022-22784, CVE-2022-22785, CVE-2022-22786, CVE-2022-22787)\nhttps://bugs.chromium.org/p/project-zero/issues/detail?id=2254", "creation_timestamp": "2022-05-26T10:59:01.000000Z"}, {"uuid": "3c631203-8756-4ea3-85dc-4660e0f550b8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25237", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2026-05-29)", "content": "", "creation_timestamp": "2026-05-29T00:00:00.000000Z"}]}