{"vulnerability": "CVE-2023-2264", "sightings": [{"uuid": "9b4a53e6-81be-4033-9f6c-c180c62202ea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22649", "type": "seen", "source": "MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd", "content": "", "creation_timestamp": "2025-02-06T03:13:45.000000Z"}, {"uuid": "802034bf-ac86-418a-a037-d8d3519c764d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22649", "type": "seen", "source": "MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd", "content": "", "creation_timestamp": "2025-02-23T04:10:51.000000Z"}, {"uuid": "90d262f7-0c0f-4f03-94d7-7570ab4c1374", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22649", "type": "seen", "source": "MISP/a9d21043-f825-4bac-8d2b-56fb9e8343e7", "content": "", "creation_timestamp": "2025-10-23T21:13:00.000000Z"}, {"uuid": "62b94f0c-884f-453a-a88c-b51ce91f8368", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22645", "type": "seen", "source": "Telegram/aWtQFb0pwsSbPBBkN3uUZmW633pyNxzXmeb9-T5qxViry8TN", "content": "", "creation_timestamp": "2025-02-06T02:44:19.000000Z"}, {"uuid": "3274f378-7343-4546-bbdd-64a39f7c653d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22649", "type": "seen", "source": "https://github.com/rapid7/metasploit-framework/blob/master/modules/post/linux/gather/rancher_audit_log_leak.rb", "content": "", "creation_timestamp": "2024-04-10T16:08:23.000000Z"}, {"uuid": "cb1bde3e-4d02-4580-9f23-1de1a26e5811", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22644", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/10742", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-22644\n\ud83d\udd25 CVSS Score: 9.4 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H)\n\ud83d\udd39 Description: A user can reverse engineer the JWT token (JSON Web Token) used in authentication for Manager and API access, forging a valid NeuVector Token to perform malicious activity in NeuVector. This can lead to an RCE.\n\ud83d\udccf Published: 2023-09-20T08:12:34.130Z\n\ud83d\udccf Modified: 2025-04-07T17:19:01.804Z\n\ud83d\udd17 References:\n1. https://bugzilla.suse.com/show_bug.cgi?id=CVE-2023-32188\n2. https://github.com/neuvector/neuvector/security/advisories/GHSA-622h-h2p8-743x", "creation_timestamp": "2025-04-07T17:45:29.000000Z"}, {"uuid": "afa2ea91-5bda-425e-8f2a-6f0190da2e51", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22649", "type": "seen", "source": "https://t.me/cvedetector/8035", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2023-22649 - Rancher Audit Logging Sensitive Data Disclosure Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2023-22649 \nPublished : Oct. 16, 2024, 8:15 a.m. | 37\u00a0minutes ago \nDescription : A vulnerability has been identified which may lead to sensitive data being leaked into Rancher's audit logs. [Rancher Audit Logging]() is an opt-in feature, only deployments that have it enabled and have [AUDIT_LEVEL]() set to `1 or above` are impacted by this issue. \nSeverity: 8.4 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"16 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-16T11:20:50.000000Z"}, {"uuid": "36b668e8-358b-4da9-8413-bc98cfb5819f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2264", "type": "seen", "source": "https://t.me/ctinow/157581", "content": "https://ift.tt/zGbLpYV\nCVE-2023-2264 | Schweitzer Engineering Laboratories SEL-411L 20230830 input validation", "creation_timestamp": "2023-12-21T10:37:49.000000Z"}, {"uuid": "6e033924-c09e-4640-9614-1e17f46dc925", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22644", "type": "seen", "source": "https://t.me/cibsecurity/70789", "content": "\u203c CVE-2023-22644 \u203c\n\nAn Innsertion of Sensitive Information into Log File vulnerability in SUSE SUSE Manager Server Module 4.2 spacewalk-java, SUSE SUSE Manager Server Module 4.3 spacewalk-java causes sensitive information to be logged.This issue affects SUSE Manager Server Module 4.2: before 4.2.50-150300.3.66.5; SUSE Manager Server Module 4.3: before 4.3.58-150400.3.46.4.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-20T12:34:59.000000Z"}, {"uuid": "dfbae6ee-604b-4428-81e2-4d1007571517", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22641", "type": "seen", "source": "https://t.me/cibsecurity/61901", "content": "\u203c CVE-2023-22641 \u203c\n\nA url redirection to untrusted site ('open redirect') in Fortinet FortiOS version 7.2.0 through 7.2.3, FortiOS version 7.0.0 through 7.0.9, FortiOS versions 6.4.0 through 6.4.12, FortiOS all versions 6.2, FortiOS all versions 6.0, FortiProxy version 7.2.0 through 7.2.2, FortiProxy version 7.0.0 through 7.0.8, FortiProxy all versions 2.0, FortiProxy all versions 1.2, FortiProxy all versions 1.1, FortiProxy all versions 1.0 allows an authenticated attacker to execute unauthorized code or commands via specially crafted requests.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-11T20:23:45.000000Z"}, {"uuid": "c51a3017-d0ed-42ed-bb5f-2cc3bbb2d313", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22640", "type": "seen", "source": "https://t.me/cibsecurity/63268", "content": "\u203c CVE-2023-22640 \u203c\n\nA out-of-bounds write in Fortinet FortiOS version 7.2.0 through 7.2.3, FortiOS version 7.0.0 through 7.0.10, FortiOS version 6.4.0 through 6.4.11, FortiOS version 6.2.0 through 6.2.13, FortiOS all versions 6.0, FortiProxy version 7.2.0 through 7.2.1, FortiProxy version 7.0.0 through 7.0.7, FortiProxy all versions 2.0, FortiProxy all versions 1.2, FortiProxy all versions 1.1, FortiProxy all versions 1.0 allows an authenticated attacker to execute unauthorized code or commands via specifically crafted requests.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-04T02:36:33.000000Z"}, {"uuid": "775bfa52-207e-4bd3-aedb-4f903a19c659", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22642", "type": "seen", "source": "https://t.me/cibsecurity/61900", "content": "\u203c CVE-2023-22642 \u203c\n\nAn improper certificate validation vulnerability [CWE-295] in FortiAnalyzer and FortiManager 7.2.0 through 7.2.1, 7.0.0 through 7.0.5, 6.4.8 through 6.4.10 may allow a remote and unauthenticated attacker to perform a Man-in-the-Middle attack on the communication channel between the device and the remote FortiGuard server hosting outbreakalert ressources.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-11T20:23:44.000000Z"}]}