{"vulnerability": "CVE-2022-3675", "sightings": [{"uuid": "571e59c4-6614-4b93-8bf8-02e3716e8952", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-3675", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/14567", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-3675\n\ud83d\udd25 CVSS Score: 2.6 (cvssV3_1, Vector: CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N)\n\ud83d\udd39 Description: Fedora CoreOS supports setting a GRUB bootloader password\nusing a Butane config. When this feature is enabled, GRUB requires a password to access the\nGRUB command-line, modify kernel command-line arguments, or boot\nnon-default OSTree deployments.  Recent Fedora CoreOS releases have a\nmisconfiguration which allows booting non-default OSTree deployments\nwithout entering a password.  This allows someone with access to the\nGRUB menu to boot into an older version of Fedora CoreOS, reverting\nany security fixes that have recently been applied to the machine.  A\npassword is still required to modify kernel command-line arguments and\nto access the GRUB command line.\n\n\n\n\n\ud83d\udccf Published: 2022-11-03T17:25:02.823Z\n\ud83d\udccf Modified: 2025-05-02T18:53:10.153Z\n\ud83d\udd17 References:\n1. https://github.com/coreos/fedora-coreos-tracker/issues/1333\n2. https://lists.fedoraproject.org/archives/list/coreos-status@lists.fedoraproject.org/thread/NHUCNH5Y4UH5DPUCXISYXXVA563TLFEJ/\n3. https://docs.fedoraproject.org/en-US/fedora-coreos/grub-password/", "creation_timestamp": "2025-05-02T19:16:13.000000Z"}, {"uuid": "9dbf9390-d01a-4b3e-abbb-44982b8fcb97", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-36750", "type": "seen", "source": "https://t.me/cibsecurity/47902", "content": "\u203c CVE-2022-36750 \u203c\n\nClinic's Patient Management System v1.0 is vulnerable to SQL injection via /pms/update_user.php?id=.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-08-11T00:26:34.000000Z"}, {"uuid": "e7e3f2d1-98d7-4962-95d6-35ab9626e266", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-3675", "type": "seen", "source": "https://t.me/cibsecurity/52527", "content": "\u203c CVE-2022-3675 \u203c\n\nFedora CoreOS supports setting a GRUB bootloader password using a Butane config. When this feature is enabled, GRUB requires a password to access the GRUB command-line, modify kernel command-line arguments, or boot non-default OSTree deployments. Recent Fedora CoreOS releases have a misconfiguration which allows booting non-default OSTree deployments without entering a password. This allows someone with access to the GRUB menu to boot into an older version of Fedora CoreOS, reverting any security fixes that have recently been applied to the machine. A password is still required to modify kernel command-line arguments and to access the GRUB command line.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-11-03T21:20:57.000000Z"}, {"uuid": "5d5b479a-186e-4e87-94b0-a6fd3201f49e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-36759", "type": "seen", "source": "https://t.me/cibsecurity/49221", "content": "\u203c CVE-2022-36759 \u203c\n\nOnline Food Ordering System v1.0 was discovered to contain a SQL injection vulnerability via the component /dishes.php?res_id=.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-02T07:38:46.000000Z"}, {"uuid": "f1d6800c-06d9-47a1-b8e8-9babaa8cf74f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-36754", "type": "seen", "source": "https://t.me/cibsecurity/49261", "content": "\u203c CVE-2022-36754 \u203c\n\nExpense Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /Home/debit_credit_p.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-03T02:39:33.000000Z"}]}