{"vulnerability": "CVE-2022-4186", "sightings": [{"uuid": "4b5b87f5-2784-4890-966f-06cc60921764", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-41861", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/10735", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-41861\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: A flaw was found in freeradius. A malicious RADIUS client or home server can send a malformed abinary attribute which can cause the server to crash.\n\ud83d\udccf Published: 2023-01-17T00:00:00.000Z\n\ud83d\udccf Modified: 2025-04-07T16:28:17.085Z\n\ud83d\udd17 References:\n1. https://freeradius.org/security/\n2. https://github.com/FreeRADIUS/freeradius-server/commit/0ec2b39d260e", "creation_timestamp": "2025-04-07T16:45:24.000000Z"}, {"uuid": "6d2ef35e-98eb-4072-892f-91e3ad0479dd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-41862", "type": "seen", "source": "Telegram/0aasBF2CE4OenR9-4-MISosfg4La35T8SksecJL-upRdE7MF", "content": "", "creation_timestamp": "2025-03-08T04:34:57.000000Z"}, {"uuid": "d1c76994-6775-4b85-917f-a12e5280d97b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-41862", "type": "seen", "source": "https://t.me/cibsecurity/59384", "content": "\u203c CVE-2022-41862 \u203c\n\nIn PostgreSQL, a modified, unauthenticated server can send an unterminated string during the establishment of Kerberos transport encryption. In certain conditions a server can cause a libpq client to over-read and report an error message containing uninitialized bytes.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-03T18:34:41.000000Z"}, {"uuid": "77a8ba2b-307a-4be5-b0cb-a2870b3cf76a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-41860", "type": "seen", "source": "https://t.me/cibsecurity/56601", "content": "\u203c CVE-2022-41860 \u203c\n\nIn freeradius, when an EAP-SIM supplicant sends an unknown SIM option, the server will try to look that option up in the internal dictionaries. This lookup will fail, but the SIM code will not check for that failure. Instead, it will dereference a NULL pointer, and cause the server to crash.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-01-17T20:40:16.000000Z"}, {"uuid": "2d198367-87e9-4f78-9ee7-fec6868f3521", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-41861", "type": "seen", "source": "https://t.me/cibsecurity/56596", "content": "\u203c CVE-2022-41861 \u203c\n\nA flaw was found in freeradius. A malicious RADIUS client or home server can send a malformed abinary attribute which can cause the server to crash.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-01-17T20:40:11.000000Z"}]}