{"vulnerability": "CVE-2022-2431", "sightings": [{"uuid": "cf74b148-f93a-4cb9-be5b-1948672e1d86", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-24316", "type": "seen", "source": "https://t.me/cibsecurity/37178", "content": "\u203c CVE-2022-24316 \u203c\n\nA CWE-665: Improper Initialization vulnerability exists that could cause information exposure when an attacker sends a specially crafted message. Affected Product: Interactive Graphical SCADA System Data Server (V15.0.0.22020 and prior)\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-10T02:23:23.000000Z"}, {"uuid": "359953c2-de83-4210-a7ab-11204eae61d1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-24314", "type": "seen", "source": "https://t.me/cibsecurity/37176", "content": "\u203c CVE-2022-24314 \u203c\n\nA CWE-125: Out-of-bounds Read vulnerability exists that could cause memory leaks potentially resulting in denial of service when an attacker repeatedly sends a specially crafted message. Affected Product: Interactive Graphical SCADA System Data Server (V15.0.0.22020 and prior)\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-10T02:23:21.000000Z"}, {"uuid": "8ebeb5f7-aba5-4293-a91e-082051898f64", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-24319", "type": "seen", "source": "https://t.me/cibsecurity/37161", "content": "\u203c CVE-2022-24319 \u203c\n\nA CWE-295: Improper Certificate Validation vulnerability exists that could allow a Man-in-theMiddle attack when communications between the client and Geo SCADA web server are intercepted. Affected Product: ClearSCADA (All Versions), EcoStruxure Geo SCADA Expert 2019 (All Versions), EcoStruxure Geo SCADA Expert 2020 (All Versions)\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-10T02:19:22.000000Z"}, {"uuid": "a8f3379b-ba3b-4ce1-9d3b-65af2fae7d49", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-24318", "type": "seen", "source": "Telegram/YsvDijhAKMcrF8zcEMFHv8ynWsEsvIObcKKOPiucVRnxaQ", "content": "", "creation_timestamp": "2024-09-28T11:45:58.000000Z"}]}