{"vulnerability": "CVE-2018-1685", "sightings": [{"uuid": "9d9cd87c-f65e-46af-8943-faee2616c5a6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-1685", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/2600", "content": "#Red_Team_Tactics\n1. From N-day exploit to Kerberos EoP in Linux environments\nhttps://www.blackarrow.net/from-n-day-exploit-to-kerberos-eop-in-linux-environments\n// This article describes the analysis and exploiting of a vulnerability (CVE-2018-1685) that could allow an attacker to read arbitrary files, but of which no public details are known\n2. Unauthorized Access to OData Entities\nhttps://medium.com/bugbountywriteup/unauthorized-access-to-odata-entities-2k-bounty-from-microsoft-e070b2ef88c2", "creation_timestamp": "2021-01-30T13:01:01.000000Z"}, {"uuid": "4609dc8f-bb4c-45dc-91bf-76017f51111d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-16858", "type": "exploited", "source": "https://www.exploit-db.com/exploits/46727", "content": "", "creation_timestamp": "2019-04-18T00:00:00.000000Z"}, {"uuid": "1dd0919d-a033-4875-8821-c481ec312086", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-16858", "type": "seen", "source": "MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd", "content": "", "creation_timestamp": "2025-02-06T03:13:43.000000Z"}, {"uuid": "e7691f4f-8bae-4129-b625-f84d682c5fa0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-16858", "type": "seen", "source": "https://t.me/SecLabNews/4259", "content": "\u0421\u043f\u0435\u0446\u0438\u0430\u043b\u0438\u0441\u0442\u044b \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0438 ACROS Security \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0438 \u043d\u0435\u043e\u0444\u0438\u0446\u0438\u0430\u043b\u044c\u043d\u043e\u0435 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0435 \u0434\u043b\u044f \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0430\u043a\u0435\u0442\u0430 \u043e\u0444\u0438\u0441\u043d\u044b\u0445 \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u0439 Apache OpenOffice, \u0443\u0441\u0442\u0440\u0430\u043d\u044f\u044e\u0449\u0435\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043e\u0431\u0445\u043e\u0434\u0430 \u043a\u0430\u0442\u0430\u043b\u043e\u0433\u0430 (CVE-2018-16858), \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0443\u044e \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u043a\u043e\u0434.    \n\u0412\u044b\u043f\u0443\u0449\u0435\u043d \u043d\u0435\u043e\u0444\u0438\u0446\u0438\u0430\u043b\u044c\u043d\u044b\u0439 \u043f\u0430\u0442\u0447 \u0434\u043b\u044f \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 Apache OpenOffice", "creation_timestamp": "2019-02-14T10:44:09.000000Z"}, {"uuid": "47bf3695-89f4-405a-8aaa-3d17e6675f2b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-16858", "type": "published-proof-of-concept", "source": "https://t.me/DC8044_Info/66", "content": "Libreoffice (CVE-2018-16858) - Remote Code Execution via Macro/Event execution, PoC #exploit\nhttps://insert-script.blogspot.com/2019/02/libreoffice-cve-2018-16858-remote-code.html", "creation_timestamp": "2019-02-01T14:25:44.000000Z"}, {"uuid": "1d1d6620-f5f0-40f5-bd77-68ba98802143", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-16858", "type": "seen", "source": "MISP/5c5a3c3a-995c-4f2a-9563-1b470a021402", "content": "", "creation_timestamp": "2019-02-06T01:47:27.000000Z"}, {"uuid": "c2cc3775-905b-4d67-a885-8b41275ae94e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-16858", "type": "seen", "source": "https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/fileformat/libreoffice_macro_exec.rb", "content": "", "creation_timestamp": "2019-04-17T18:39:51.000000Z"}, {"uuid": "9a40163c-1f6a-46a7-9df4-e2f20549df3f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-16858", "type": "published-proof-of-concept", "source": "https://t.me/antichat/3487", "content": "https://insert-script.blogspot.com/2019/02/libreoffice-cve-2018-16858-remote-code.html", "creation_timestamp": "2019-02-01T21:48:20.000000Z"}, {"uuid": "195a2ae7-65f0-4430-9445-0ebc6a06e5ee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-16858", "type": "published-proof-of-concept", "source": "https://t.me/antichat/3490", "content": "Libreoffice (CVE-2018-16858) - Remote Code Execution via Macro/Event execution\nhttps://insert-script.blogspot.com/2019/02/libreoffice-cve-2018-16858-remote-code.html", "creation_timestamp": "2019-02-02T17:23:48.000000Z"}, {"uuid": "184749eb-2b6a-4bb4-a1e0-0a60cc360753", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-16858", "type": "published-proof-of-concept", "source": "https://t.me/canyoupwnme/5095", "content": "Libreoffice (CVE-2018-16858) - Remote Code Execution via Macro/Event execution\nhttps://insert-script.blogspot.com/2019/02/libreoffice-cve-2018-16858-remote-code.html", "creation_timestamp": "2019-02-02T17:59:28.000000Z"}, {"uuid": "ab28f43a-7331-40d4-9ca6-2f3730742d41", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-16858", "type": "seen", "source": "MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd", "content": "", "creation_timestamp": "2025-02-23T04:10:05.000000Z"}, {"uuid": "4b3b38ed-f89e-4eaa-ad83-b0bd7ffd7290", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-16858", "type": "seen", "source": "MISP/d17bd6ef-d68b-317b-ac33-cdbc44c5fc57", "content": "", "creation_timestamp": "2025-08-31T03:13:12.000000Z"}, {"uuid": "a077ff45-7ccf-4075-9516-ea05ae368920", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-16858", "type": "published-proof-of-concept", "source": "https://t.me/news4hack/233", "content": "InsertScript: Libreoffice (CVE-2018-16858) - Remote Code Execution via Macro/Event execution\nhttps://insert-script.blogspot.com/2019/02/libreoffice-cve-2018-16858-remote-code.html", "creation_timestamp": "2019-02-02T08:49:18.000000Z"}]}