{"vulnerability": "CVE-2025-2293", "sightings": [{"uuid": "678842b6-db37-4140-a544-d6739340266d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22936", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113958608951294799", "content": "", "creation_timestamp": "2025-02-06T19:32:56.225284Z"}, {"uuid": "552398c0-da11-4e66-bc0b-89dc316d5735", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22936", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lhk6ag625r2p", "content": "", "creation_timestamp": "2025-02-06T22:49:12.585762Z"}, {"uuid": "1df431e2-59d8-46d4-8275-4385ad946e49", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22936", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lhjvpbsnj22s", "content": "", "creation_timestamp": "2025-02-06T20:16:24.169857Z"}, {"uuid": "ac61a959-e879-460a-b98c-58af052d43ae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2293", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lmd755xeva26", "content": "", "creation_timestamp": "2025-04-08T19:22:36.898299Z"}, {"uuid": "b312deba-3048-4626-b51b-1401a417e31d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2293", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-100-07", "content": "", "creation_timestamp": "2025-04-10T10:00:00.000000Z"}, {"uuid": "b2cf5ef7-b7af-40cb-b981-f94f79b54585", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2293", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114308189037550499", "content": "", "creation_timestamp": "2025-04-09T13:15:45.778589Z"}, {"uuid": "fa657f6b-29d2-46aa-b5c5-ed67b75f8088", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22936", "type": "seen", "source": "https://t.me/cvedetector/17418", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-22936 - Smartcom Ralink CPE/WiFi Router Weak Default WiFi Password Generation Algorithm Information Disclosure Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-22936 \nPublished : Feb. 6, 2025, 8:15 p.m. | 26\u00a0minutes ago \nDescription : An issue in Smartcom Bulgaria AD Smartcom Ralink CPE/WiFi router SAM-4G1G-TT-W-VC, SAM-4F1F-TT-W-A1 allows a remote attacker to obtain sensitive information via the Weak default WiFi password generation algorithm in WiFi routers. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"06 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-06T21:55:22.000000Z"}, {"uuid": "458b8400-03f0-4974-b6ac-eb6cde544810", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22936", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/3947", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-22936\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: No description available\n\ud83d\udccf Published: 2025-02-06T20:15:40.460\n\ud83d\udccf Modified: N/A\n\ud83d\udd17 References:\n1. http://smartcom.com\n2. https://sec.stanev.org/advisories/Smartcom_default_WPA_password.txt", "creation_timestamp": "2025-02-11T23:11:55.000000Z"}, {"uuid": "813c8761-5a26-49a3-9371-a6e111d2d784", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22937", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/9909", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-22937\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: An issue in Adtran 411 ONT vL80.00.0011.M2 allows attackers to escalate privileges via unspecified vectors.\n\ud83d\udccf Published: 2025-03-31T00:00:00.000Z\n\ud83d\udccf Modified: 2025-04-01T14:19:05.787Z\n\ud83d\udd17 References:\n1. https://drive.google.com/file/d/1levaZk5aC6g6a2zPW8xlOIVAu9MFYvAz/view", "creation_timestamp": "2025-04-01T14:33:11.000000Z"}, {"uuid": "ae5755c0-f65a-4aec-943c-39cdf554b12c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22931", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/10214", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-22931\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: An insecure direct object reference (IDOR) in the component /assets/stafffiles of OS4ED openSIS v7.0 to v9.1 allows unauthenticated attackers to access files uploaded by staff members.\n\ud83d\udccf Published: 2025-04-03T00:00:00.000Z\n\ud83d\udccf Modified: 2025-04-03T13:12:51.418Z\n\ud83d\udd17 References:\n1. https://github.com/OS4ED/openSIS-Classic\n2. https://github.com/esusalla/vulnerability-research/tree/main/CVE-2025-22931", "creation_timestamp": "2025-04-03T13:35:04.000000Z"}, {"uuid": "90d67f7d-7b57-4a99-9575-b543c78aa598", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22930", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/10203", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-22930\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: OS4ED openSIS v7.0 to v9.1 was discovered to contain a SQL injection vulnerability via the groupid parameter at /messaging/Group.php.\n\ud83d\udccf Published: 2025-04-03T00:00:00.000Z\n\ud83d\udccf Modified: 2025-04-03T13:20:53.689Z\n\ud83d\udd17 References:\n1. https://github.com/OS4ED/openSIS-Classic\n2. https://github.com/esusalla/vulnerability-research/tree/main/CVE-2025-22930", "creation_timestamp": "2025-04-03T13:34:48.000000Z"}, {"uuid": "74508ef3-4b72-4b91-9b8a-65e5e5271026", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2293", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/11001", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-2293\n\ud83d\udd25 CVSS Score: 8.5 (cvssV4_0, Vector: CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N)\n\ud83d\udd39 Description: A local code execution vulnerability exists in the Rockwell Automation\u00a0Arena\u00ae\u00a0due to a threat actor being able to write outside of the allocated memory buffer. The flaw is a result of improper validation of user-supplied data.  \u00a0If exploited a threat actor can disclose information and execute arbitrary code on the system. To exploit the vulnerability a legitimate user must open a malicious DOE file.\n\ud83d\udccf Published: 2025-04-08T15:20:06.355Z\n\ud83d\udccf Modified: 2025-04-08T20:37:34.048Z\n\ud83d\udd17 References:\n1. https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1726.html", "creation_timestamp": "2025-04-08T20:46:42.000000Z"}, {"uuid": "c5de0b11-cc72-49fb-af36-5e614e80d69a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22938", "type": "seen", "source": "https://t.me/cvedetector/21630", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-22938 - Adtran 411 ONT Default Password Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-22938 \nPublished : March 31, 2025, 3:15 p.m. | 1\u00a0hour, 48\u00a0minutes ago \nDescription : Adtran 411 ONT L80.00.0011.M2 was discovered to contain weak default passwords. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"31 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-31T19:12:41.000000Z"}, {"uuid": "19a43090-b729-4aa5-a5d8-564a9e2a8e93", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22937", "type": "seen", "source": "https://t.me/cvedetector/21629", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-22937 - Adtran 411 ONT Privilege Escalation Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-22937 \nPublished : March 31, 2025, 3:15 p.m. | 1\u00a0hour, 48\u00a0minutes ago \nDescription : An issue in Adtran 411 ONT vL80.00.0011.M2 allows attackers to escalate privileges via unspecified vectors. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"31 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-31T19:12:40.000000Z"}, {"uuid": "a44c162a-148c-4839-a6a3-27662f3d3c9f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22936", "type": "seen", "source": "Telegram/VmaJuf4IJ7ICHRg5shlSy8xjG4k3wfKkTZ2QsmMclSFBr8Pp", "content": "", "creation_timestamp": "2025-02-14T10:05:07.000000Z"}]}