{"vulnerability": "CVE-2025-4873", "sightings": [{"uuid": "64e957e0-c133-4070-9eb3-62cd09273f9d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-4873", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lph3y7qq2xp2", "content": "", "creation_timestamp": "2025-05-18T12:53:15.192302Z"}, {"uuid": "b6a379e8-7d62-4fe9-b59d-f6024d2e4dec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48734", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3lqaogjxg4c2v", "content": "", "creation_timestamp": "2025-05-28T16:59:01.576261Z"}, {"uuid": "bbeb58b6-0f88-42a3-a2bb-75811cd42de2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-4873", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lph4vekhlx24", "content": "", "creation_timestamp": "2025-05-18T13:08:41.688544Z"}, {"uuid": "76fe29f0-7413-4b34-b248-8cd572b11403", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48734", "type": "seen", "source": "https://bsky.app/profile/buherator.bsky.social/post/3lqem6u7wxp2v", "content": "", "creation_timestamp": "2025-05-30T06:29:35.411752Z"}, {"uuid": "8217aa66-74e4-4596-a941-8390aa0a8966", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48739", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lpukrtewhp2w", "content": "", "creation_timestamp": "2025-05-23T21:21:48.672655Z"}, {"uuid": "31febaae-18f5-4c00-8876-e28a0579afff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48738", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lpukykc3q42m", "content": "", "creation_timestamp": "2025-05-23T21:25:34.047677Z"}, {"uuid": "b00ecc26-83da-491a-adb4-1c11c371d8d9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48734", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114585806930591300", "content": "", "creation_timestamp": "2025-05-28T13:57:38.232989Z"}, {"uuid": "46c2a827-e667-4897-a6fe-97f22d78da4e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48735", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lpumdzggxh2j", "content": "", "creation_timestamp": "2025-05-23T21:49:52.711141Z"}, {"uuid": "2f131a39-0f33-45c7-b8c6-06c321641765", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48733", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-203-01", "content": "", "creation_timestamp": "2025-07-22T10:00:00.000000Z"}, {"uuid": "2257be1d-2a13-4232-8380-164084e7282f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48734", "type": "seen", "source": "https://seclists.org/oss-sec/2025/q2/175", "content": "", "creation_timestamp": "2025-05-28T13:56:26.000000Z"}, {"uuid": "9e181a06-e5e5-44e4-aec1-8298954ad7ca", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48734", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lqaiugdgdoz2", "content": "", "creation_timestamp": "2025-05-28T15:22:46.980929Z"}, {"uuid": "998fb502-a3d5-4de1-8aad-254552a5e794", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48732", "type": "seen", "source": "https://infosec.place/objects/1c2ba354-6485-41ba-87a8-27b23891ead6", "content": "", "creation_timestamp": "2025-07-24T15:30:39.988331Z"}, {"uuid": "983c1ce1-e2e8-43ad-a2b7-083860c9038c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48734", "type": "seen", "source": "https://bsky.app/profile/gcpweekly.bsky.social/post/3m326cbqdaj24", "content": "", "creation_timestamp": "2025-10-13T02:31:30.612971Z"}, {"uuid": "48550491-dffd-4495-ae41-a3da1c3f599e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48734", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3m6kvfwdsyo25", "content": "", "creation_timestamp": "2025-11-26T22:23:17.991541Z"}, {"uuid": "02ca8f00-f163-47af-946d-51c0a7e3b547", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48734", "type": "seen", "source": "https://bsky.app/profile/gcpweekly.bsky.social/post/3lzzeux6e4m24", "content": "", "creation_timestamp": "2025-09-30T01:31:28.815660Z"}, {"uuid": "45fccba5-359d-42c8-95c9-40c3fd7f99b6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48731", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/115011741088255294", "content": "", "creation_timestamp": "2025-08-11T19:18:18.042297Z"}, {"uuid": "ece3e606-8759-4947-8d38-004ea02a56a7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48731", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lw5rlnxrko2l", "content": "", "creation_timestamp": "2025-08-11T21:48:45.235207Z"}, {"uuid": "7e708f5d-11b2-4fe9-a987-36eebc9c1b82", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48739", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/17465", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-48739\n\ud83d\udd25 CVSS Score: 4.6 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:A/VC:L/VI:N/VA:N/SC:L/SI:L/SA:L)\n\ud83d\udd39 Description: A Server-Side Request Forgery (SSRF) vulnerability in StrangeBee TheHive 5.2.0 before 5.2.16, 5.3.0 before 5.3.11, 5.4.0 before 5.4.10, and 5.5.0 before 5.5.1 allows remote authenticated attackers with admin permissions (allowing them to access specific API endpoints) to manipulate URLs to direct requests to unexpected hosts or ports. This allows the attacker to use a TheHive server as a proxy to reach internal or otherwise restricted resources. This could be exploited to access other servers on the internal network.\n\ud83d\udccf Published: 2025-05-23T00:00:00.000Z\n\ud83d\udccf Modified: 2025-05-23T20:05:19.686Z\n\ud83d\udd17 References:\n1. https://github.com/StrangeBeeCorp/Security/blob/main/Security%20advisories/SB-SEC-ADV-2025-002.md", "creation_timestamp": "2025-05-23T20:48:04.000000Z"}, {"uuid": "356749c1-468e-411d-91c0-0316ceb92a21", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48734", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lza3br3ev22t", "content": "", "creation_timestamp": "2025-09-20T00:03:06.135429Z"}, {"uuid": "7b5d82e8-766a-4313-8921-76643022e360", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48734", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3m6kutniokc2l", "content": "", "creation_timestamp": "2025-11-26T22:13:04.252092Z"}, {"uuid": "c934787c-51e5-4367-a111-fb6e5dc5f560", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48734", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mfccrzs3cv2q", "content": "", "creation_timestamp": "2026-02-20T14:25:06.226176Z"}, {"uuid": "7c14dcd1-afff-440b-ad33-268d92153c59", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2025-48734", "type": "seen", "source": "https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0292/", "content": "", "creation_timestamp": "2026-03-13T00:00:00.000000Z"}, {"uuid": "4a8caaa3-0d2a-479b-a196-df9a2f738a4e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "c933734a-9be8-4142-889e-26e95c752803", "vulnerability": "CVE-2025-48734", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/bbcbc485-b88d-4831-b8e9-6e37e7bd9875", "content": "", "creation_timestamp": "2026-01-21T21:18:16.771453Z"}, {"uuid": "d4e049bc-3ca0-49b6-b870-2d83d46beda7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2025-48734", "type": "seen", "source": "https://www.acn.gov.it/portale/w/aggiornamenti-di-sicurezza-prodotti-atlassian", "content": "", "creation_timestamp": "2026-02-20T13:38:22.000000Z"}, {"uuid": "755f2864-ca0f-4d0a-8975-8de11ddac1b6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48738", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/17464", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-48738\n\ud83d\udd25 CVSS Score: 6.9 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:L)\n\ud83d\udd39 Description: An e-mail flooding vulnerability in StrangeBee TheHive 5.2.0 before 5.2.16, 5.3.0 before 5.3.11, 5.4.0 before 5.4.10, and 5.5.0 before 5.5.1 allows unauthenticated remote attackers to use the password reset feature without limits. This can lead to several consequences, including mailbox storage exhaustion for targeted users, reputation damage to the SMTP server, potentially causing it to be blacklisted, and overload of the SMTP server's outbound mail queue.\n\ud83d\udccf Published: 2025-05-23T00:00:00.000Z\n\ud83d\udccf Modified: 2025-05-23T20:08:28.538Z\n\ud83d\udd17 References:\n1. https://github.com/StrangeBeeCorp/Security/blob/main/Security%20advisories/SB-SEC-ADV-2025-003.md", "creation_timestamp": "2025-05-23T20:47:15.000000Z"}, {"uuid": "e2ed8277-80d0-490a-b987-995299fbc257", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48735", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/17452", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-48735\n\ud83d\udd25 CVSS Score: 4.3 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N)\n\ud83d\udd39 Description: A SQL Injection issue in the request body processing in BOS IPCs with firmware 21.45.8.2.2_220219 before 21.45.8.2.3_230220 allows remote attackers to obtain sensitive information from the database via crafted input in the request body.\n\ud83d\udccf Published: 2025-05-23T00:00:00.000Z\n\ud83d\udccf Modified: 2025-05-23T19:15:12.391Z\n\ud83d\udd17 References:\n1. https://bositaly.it/wp-content/uploads/2025/04/CAMERA-VULNERABILITY-REPORT-SQL-INJECTION.pdf", "creation_timestamp": "2025-05-23T19:44:37.000000Z"}]}