https://db.gcve.eu/sightings/feed 2026-05-30T02:39:54.497554+00:00 Vulnerability-Lookup info@gcve.eu python-feedgen Contains only the most 10 recent sightings. https://db.gcve.eu/sighting/88e14910-1774-43df-ab79-feeebdbf536f/export 2026-05-30T02:39:54.791966+00:00 cedric https://db.gcve.eu/user/cedric {"uuid": "88e14910-1774-43df-ab79-feeebdbf536f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-37010", "type": "seen", "source": "https://t.me/cibsecurity/47190", "content": "\u203c CVE-2022-37010 \u203c\n\nIn JetBrains IntelliJ IDEA before 2022.2 email address validation in the \"Git User Name Is Not Defined\" dialog was missed\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-07-28T14:17:18.000000Z"} 2022-07-28T14:17:18+00:00 https://db.gcve.eu/sighting/11df270a-98d4-40ce-96b8-e621449527d1/export 2026-05-30T02:39:54.791916+00:00 cedric https://db.gcve.eu/user/cedric {"uuid": "11df270a-98d4-40ce-96b8-e621449527d1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-37013", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/6810", "content": "#exploit\n1. CVE-2022-37013:\nUnified Automation OPC UA - DoS\nhttps://sector7.computest.nl/post/2022-09-unified-automation-opcua-cpp\n\n2. CVE-2022-35742:\nMS Outlook < LTSC 2021 - DoS\nhttps://vuldb.com/ru/?id.205932\n]-> https://github.com/78ResearchLab/PoC/tree/main/CVE-2022-35742", "creation_timestamp": "2022-09-16T11:00:33.000000Z"} 2022-09-16T11:00:33+00:00 https://db.gcve.eu/sighting/15ff07ba-a06c-409a-b76f-0609635d44ac/export 2026-05-30T02:39:54.791862+00:00 cedric https://db.gcve.eu/user/cedric {"uuid": "15ff07ba-a06c-409a-b76f-0609635d44ac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-37011", "type": "seen", "source": "https://t.me/cibsecurity/52627", "content": "\u203c CVE-2022-44457 \u203c\n\nA vulnerability has been identified in Mendix SAML Module (Mendix 7 compatible) (All versions < V1.17.0), Mendix SAML Module (Mendix 7 compatible) (All versions >= V1.17.0), Mendix SAML Module (Mendix 8 compatible) (All versions < V2.3.0), Mendix SAML Module (Mendix 8 compatible) (All versions >= V2.3.0 < V2.3.2), Mendix SAML Module (Mendix 9 compatible, New Track) (All versions < V3.3.1), Mendix SAML Module (Mendix 9 compatible, New Track) (All versions >= V3.3.1 < V3.3.5), Mendix SAML Module (Mendix 9 compatible, Upgrade Track) (All versions < V3.3.0), Mendix SAML Module (Mendix 9 compatible, Upgrade Track) (All versions >= V3.3.0 < V3.3.4). Affected versions of the module insufficiently protect from packet capture replay, only when the not recommended, non default configuration option `'Allow Idp Initiated Authentication'` is enabled. This CVE entry describes the incomplete fix for CVE-2022-37011 in a specific non default configuration.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-11-08T14:35:16.000000Z"} 2022-11-08T14:35:16+00:00 https://db.gcve.eu/sighting/1f212d82-47ff-4e6c-b2b6-12dedde6b991/export 2026-05-30T02:39:54.791810+00:00 cedric https://db.gcve.eu/user/cedric {"uuid": "1f212d82-47ff-4e6c-b2b6-12dedde6b991", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-37016", "type": "seen", "source": "https://t.me/cibsecurity/53762", "content": "\u203c CVE-2022-37016 \u203c\n\nSymantec Endpoint Protection (Windows) agent may be susceptible to a Privilege Escalation vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated access to resources that are normally protected from an application or user.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-01T16:45:32.000000Z"} 2022-12-01T16:45:32+00:00 https://db.gcve.eu/sighting/f2444f72-2151-46cb-b777-3db7d80a7238/export 2026-05-30T02:39:54.791759+00:00 cedric https://db.gcve.eu/user/cedric {"uuid": "f2444f72-2151-46cb-b777-3db7d80a7238", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-37017", "type": "seen", "source": "https://t.me/cibsecurity/53764", "content": "\u203c CVE-2022-37017 \u203c\n\nSymantec Endpoint Protection (Windows) agent, prior to 14.3 RU6/14.3 RU5 Patch 1, may be susceptible to a Security Control Bypass vulnerability, which is a type of issue that can potentially allow a threat actor to circumvent existing security controls. This CVE applies narrowly to the Client User Interface Password protection and Policy Import/Export Password protection, if it has been enabled.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-01T16:45:34.000000Z"} 2022-12-01T16:45:34+00:00 https://db.gcve.eu/sighting/7baab737-7f30-40d5-9894-ac1b6f35ba5e/export 2026-05-30T02:39:54.791704+00:00 cedric https://db.gcve.eu/user/cedric {"uuid": "7baab737-7f30-40d5-9894-ac1b6f35ba5e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-37013", "type": "seen", "source": "https://t.me/cibsecurity/61067", "content": "\u203c CVE-2022-37013 \u203c\n\nThis vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Unified Automation OPC UA C++ Demo Server 1.7.6-537 [with vendor rollup]. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of certificates. A crafted certificate can force the server into an infinite loop. An attacker can leverage this vulnerability to create a denial-of-service condition on the system. Was ZDI-CAN-17203.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-29T22:21:58.000000Z"} 2023-03-29T22:21:58+00:00 https://db.gcve.eu/sighting/b1ff8379-ed74-438a-97fc-36d3006deecf/export 2026-05-30T02:39:54.791647+00:00 cedric https://db.gcve.eu/user/cedric {"uuid": "b1ff8379-ed74-438a-97fc-36d3006deecf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-37012", "type": "seen", "source": "https://t.me/cibsecurity/61087", "content": "\u203c CVE-2022-37012 \u203c\n\nThis vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Unified Automation OPC UA C++ Demo Server 1.7.6-537. Authentication is not required to exploit this vulnerability. The specific flaw exists within the OpcUa_SecureListener_ProcessSessionCallRequest method. A crafted OPC UA message can force the server to incorrectly update a reference count. An attacker can leverage this vulnerability to create a denial-of-service condition on the system. Was ZDI-CAN-16927.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-29T22:25:50.000000Z"} 2023-03-29T22:25:50+00:00 https://db.gcve.eu/sighting/e2fe7725-a778-4e8f-abe1-7b88cf2724a1/export 2026-05-30T02:39:54.791589+00:00 cedric https://db.gcve.eu/user/cedric {"uuid": "e2fe7725-a778-4e8f-abe1-7b88cf2724a1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-37016", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/13353", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-37016\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Symantec Endpoint Protection (Windows) agent may be susceptible to a Privilege Escalation vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated access to resources that are normally protected from an application or user.\n\ud83d\udccf Published: 2022-12-01T00:00:00.000Z\n\ud83d\udccf Modified: 2025-04-24T20:27:56.984Z\n\ud83d\udd17 References:\n1. https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/21014", "creation_timestamp": "2025-04-24T21:07:20.000000Z"} 2025-04-24T21:07:20+00:00 https://db.gcve.eu/sighting/46f4ac3e-5fcb-4dc6-b2e5-6255d9ba2bd9/export 2026-05-30T02:39:54.791511+00:00 cedric https://db.gcve.eu/user/cedric {"uuid": "46f4ac3e-5fcb-4dc6-b2e5-6255d9ba2bd9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-37017", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/13354", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-37017\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Symantec Endpoint Protection (Windows) agent, prior to 14.3 RU6/14.3 RU5 Patch 1, may be susceptible to a Security Control Bypass vulnerability, which is a type of issue that can potentially allow a threat actor to circumvent existing security controls. This CVE applies narrowly to the Client User Interface Password protection and Policy Import/Export Password protection, if it has been enabled.\n\ud83d\udccf Published: 2022-12-01T00:00:00.000Z\n\ud83d\udccf Modified: 2025-04-24T20:26:10.073Z\n\ud83d\udd17 References:\n1. https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/21014", "creation_timestamp": "2025-04-24T21:07:25.000000Z"} 2025-04-24T21:07:25+00:00 https://db.gcve.eu/sighting/bbca7b6d-8b4a-4c5b-beb9-6bcbcec58bbb/export 2026-05-30T02:39:54.790460+00:00 cedric https://db.gcve.eu/user/cedric {"uuid": "bbca7b6d-8b4a-4c5b-beb9-6bcbcec58bbb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-37018", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/13779", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-37018\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: A potential vulnerability has been identified in the system BIOS for certain HP PC products which may allow escalation of privileges and code execution. HP is releasing firmware updates to mitigate the potential vulnerability.\n\ud83d\udccf Published: 2022-11-21T21:02:37.037Z\n\ud83d\udccf Modified: 2025-04-29T04:48:11.747Z\n\ud83d\udd17 References:\n1. https://support.hp.com/us-en/document/ish_7191946-7191970-16/hpsbhf03820", "creation_timestamp": "2025-04-29T05:11:17.000000Z"} 2025-04-29T05:11:17+00:00