{"vulnerability": "CVE-2022-2483", "sightings": [{"uuid": "6efaf171-0226-42be-99e9-d64a4a4371e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-24839", "type": "seen", "source": "https://bsky.app/profile/gcpweekly.bsky.social/post/3lzzeuxkcgj2c", "content": "", "creation_timestamp": "2025-09-30T01:31:31.797987Z"}, {"uuid": "a1c5294f-8691-46c1-8102-c05e91bd2e4b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-24836", "type": "seen", "source": "https://bsky.app/profile/gcpweekly.bsky.social/post/3lzzeuxkcgj2c", "content": "", "creation_timestamp": "2025-09-30T01:31:31.901417Z"}, {"uuid": "0b6bf925-2d19-47d5-8eed-684ee208496a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-24830", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/12918", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-24830\n\ud83d\udd25 CVSS Score: 6.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N)\n\ud83d\udd39 Description: OpenClinica is an open source software for Electronic Data Capture (EDC) and Clinical Data Management (CDM). OpenClinica prior to version 3.16 is vulnerable to path traversal in multiple endpoints, leading to arbitrary file read/write, and potential remote code execution. There are no known workarounds. This issue has been patched and users are recommended to upgrade.\n\ud83d\udccf Published: 2022-05-13T23:40:09.000Z\n\ud83d\udccf Modified: 2025-04-22T18:01:35.975Z\n\ud83d\udd17 References:\n1. https://github.com/OpenClinica/OpenClinica/security/advisories/GHSA-9rrv-prff-qph7\n2. https://github.com/OpenClinica/OpenClinica/commit/6f864e86543f903bd20d6f9fc7056115106441f3", "creation_timestamp": "2025-04-22T18:03:29.000000Z"}, {"uuid": "de8422d4-8196-4d27-a17c-d2d3798898a6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-24834", "type": "seen", "source": "https://t.me/cvedetector/1475", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-6121 - An out-of-date version of Redis shipped with NI Sy\", \n  \"Content\": \"CVE ID : CVE-2024-6121 \nPublished : July 22, 2024, 8:15 p.m. | 27\u00a0minutes ago \nDescription : An out-of-date version of Redis shipped with NI SystemLink Server is susceptible to multiple vulnerabilities, including CVE-2022-24834.  This affects NI SystemLink Server 2024 Q1 and prior versions.  It also affects NI FlexLogger 2023 Q2 and prior versions which installed this shared service. \nSeverity: 7.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-22T22:50:49.000000Z"}, {"uuid": "add0e4ea-8067-4ea7-9227-7faa1eceb8f7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-24834", "type": "published-proof-of-concept", "source": "https://t.me/proxy_bar/2237", "content": "CVE-2022-24834 Redis\n*\n\u0417\u0430\u0442\u0440\u043e\u043d\u0443\u0442\u043e:\n7.0.0 \u2264 version < 7.0.12\n6.2.0 \u2264 version < 6.2.13\n2.6.0 \u2264 version < 6.0.20\n*\n\u0411\u043e\u043b\u044c\u0448\u043e\u0439 \u0440\u0430\u0437\u0431\u043e\u0440 + PoC exploit RCE\n*\nVideoPOC\n\n#redis #rce", "creation_timestamp": "2024-08-18T21:56:13.000000Z"}, {"uuid": "9bcfbd5d-5c8e-4bea-a95e-d98865a3fa2a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-24834", "type": "seen", "source": "https://t.me/cibsecurity/66666", "content": "\u203c CVE-2022-24834 \u203c\n\nRedis is an in-memory database that persists on disk. A specially crafted Lua script executing in Redis can trigger a heap overflow in the cjson library, and result with heap corruption and potentially remote code execution. The problem exists in all versions of Redis with Lua scripting support, starting from 2.6, and affects only authenticated and authorized users. The problem is fixed in versions 7.0.12, 6.2.13, and 6.0.20.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-13T18:11:42.000000Z"}, {"uuid": "fd1d8ac5-257b-45f3-8654-c8aed62bcf09", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-24830", "type": "seen", "source": "https://t.me/cibsecurity/42704", "content": "\u203c CVE-2022-24830 \u203c\n\nOpenClinica is an open source software for Electronic Data Capture (EDC) and Clinical Data Management (CDM). OpenClinica prior to version 3.16 is vulnerable to path traversal in multiple endpoints, leading to arbitrary file read/write, and potential remote code execution. There are no known workarounds. This issue has been patched and users are recommended to upgrade.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-14T07:32:40.000000Z"}, {"uuid": "8a5dcc07-afea-42b4-9d53-bb6ed680f854", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-24831", "type": "seen", "source": "https://t.me/cibsecurity/42703", "content": "\u203c CVE-2022-24831 \u203c\n\nOpenClinica is an open source software for Electronic Data Capture (EDC) and Clinical Data Management (CDM). Versions prior to 3.16.1 are vulnerable to SQL injection due to the use of string concatenation to create SQL queries instead of prepared statements. No known workarounds exist. This issue has been patched in 3.16.1, 3.15.9, 3.14.1, and 3.13.1 and users are advised to upgrade.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-14T07:32:39.000000Z"}, {"uuid": "a12b872b-c9a2-48ec-a8d8-b2341fca2a94", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-24832", "type": "seen", "source": "https://t.me/cibsecurity/40506", "content": "\u203c CVE-2022-24832 \u203c\n\nGoCD is an open source a continuous delivery server. The bundled gocd-ldap-authentication-plugin included with the GoCD Server fails to correctly escape special characters when using the username to construct LDAP queries. While this does not directly allow arbitrary LDAP data exfiltration, it can allow an existing LDAP-authenticated GoCD user with malicious intent to construct and execute malicious queries, allowing them to deduce facts about other users or entries within the LDAP database (e.g alternate fields, usernames, hashed passwords etc) through brute force mechanisms. This only affects users who have a working LDAP authorization configuration enabled on their GoCD server, and only is exploitable by users authenticating using such an LDAP configuration. This issue has been fixed in GoCD 22.1.0, which is bundled with gocd-ldap-authentication-plugin v2.2.0-144.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-12T00:16:19.000000Z"}, {"uuid": "9d468cf2-3034-4428-9ac2-5e62218e7322", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-24839", "type": "seen", "source": "https://t.me/cibsecurity/40582", "content": "\u203c CVE-2022-24839 \u203c\n\norg.cyberneko.html is an html parser written in Java. The fork of `org.cyberneko.html` used by Nokogiri (Rubygem) raises a `java.lang.OutOfMemoryError` exception when parsing ill-formed HTML markup. Users are advised to upgrade to `>= 1.9.22.noko2`. Note: The upstream library `org.cyberneko.html` is no longer maintained. Nokogiri uses its own fork of this library located at https://github.com/sparklemotion/nekohtml and this CVE applies only to that fork. Other forks of nekohtml may have a similar vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-12T02:16:17.000000Z"}, {"uuid": "da5aedaa-28e4-4e6b-bae8-3d9c2955ab12", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-24836", "type": "seen", "source": "https://t.me/cibsecurity/40581", "content": "\u203c CVE-2022-24836 \u203c\n\nNokogiri is an open source XML and HTML library for Ruby. Nokogiri `< v1.13.4` contains an inefficient regular expression that is susceptible to excessive backtracking when attempting to detect encoding in HTML documents. Users are advised to upgrade to Nokogiri `>= 1.13.4`. There are no known workarounds for this issue.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-12T02:16:16.000000Z"}, {"uuid": "4787ee49-68fe-464e-8854-cb78200dca79", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-24833", "type": "seen", "source": "https://t.me/cibsecurity/40530", "content": "\u203c CVE-2022-24833 \u203c\n\nPrivateBin is minimalist, open source online pastebin clone where the server has zero knowledge of pasted data. In PrivateBin < v1.4.0 a cross-site scripting (XSS) vulnerability was found. The vulnerability is present in all versions from v0.21 of the project, which was at the time still called ZeroBin. The issue is caused by the fact that SVGs can contain JavaScript. This can allow an attacker to execute code, if the user opens a paste with a specifically crafted SVG attachment, and interacts with the preview image and the instance isn't protected by an appropriate content security policy. Users are advised to either upgrade to version 1.4.0 or to ensure the content security policy of their instance is set correctly.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-12T00:22:28.000000Z"}, {"uuid": "49572875-77d9-4225-8de6-3f2b02b972d9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-2483", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/2088", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-2483\n\ud83d\udd39 Description: \nThe bootloader in the Nokia ASIK AirScale system module (versions 474021A.101 and 474021A.102) loads public keys for firmware verification signature. If an attacker modifies the flash contents to corrupt the keys, secure boot could be permanently disabled on a given device.\n\n\n\ud83d\udccf Published: 2023-01-06T21:04:52.603Z\n\ud83d\udccf Modified: 2025-01-16T22:03:03.157Z\n\ud83d\udd17 References:\n1. https://www.cisa.gov/uscert/ics/advisories/icsa-22-307-02", "creation_timestamp": "2025-01-16T22:56:47.000000Z"}, {"uuid": "67854770-b418-483f-858d-b77f500162fa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-24834", "type": "published-proof-of-concept", "source": "https://t.me/CipherAgents/1350811", "content": "CVE-2022-24834 Redis\n*\n:\n7.0.0 \u2264 version < 7.0.12\n6.2.0 \u2264 version < 6.2.13\n2.6.0 \u2264 version < 6.0.20\n* PoC exploit RCE\n*\nVideoPOC\n\n#ih #neural_network #error_correction_chanics #quantum_protocols", "creation_timestamp": "2024-08-19T18:20:53.000000Z"}, {"uuid": "d31f4512-3580-4232-a70c-1485788e3bf8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-24837", "type": "seen", "source": "https://t.me/cibsecurity/40543", "content": "\u203c CVE-2022-24837 \u203c\n\nHedgeDoc is an open-source, web-based, self-hosted, collaborative markdown editor. Images uploaded with HedgeDoc version 1.9.1 and later have an enumerable filename after the upload, resulting in potential information leakage of uploaded documents. This is especially relevant for private notes and affects all upload backends, except Lutim and imgur. This issue is patched in version 1.9.3 by replacing the filename generation with UUIDv4. If you cannot upgrade to HedgeDoc 1.9.3, it is possible to block POST requests to `/uploadimage`, which will disable future uploads.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-12T00:25:57.000000Z"}, {"uuid": "f4158d51-0f68-42f3-a239-6b27727b7255", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-24834", "type": "published-proof-of-concept", "source": "https://t.me/HackerArsenal/192", "content": "CVE-2022-24834 Redis\n*\n\u0417\u0430\u0442\u0440\u043e\u043d\u0443\u0442\u043e:\n7.0.0 \u2264 version < 7.0.12\n6.2.0 \u2264 version < 6.2.13\n2.6.0 \u2264 version < 6.0.20\n*\n\u0411\u043e\u043b\u044c\u0448\u043e\u0439 \u0440\u0430\u0437\u0431\u043e\u0440 + PoC exploit RCE\n*\nVideoPOC\n\n#redis #rce", "creation_timestamp": "2024-08-20T04:47:35.000000Z"}, {"uuid": "daaab3c8-1814-492e-b5e7-f8c853aba9a7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-24834", "type": "published-proof-of-concept", "source": "https://t.me/orderofsixangles/2344", "content": "Real World CVE-2022-24834 Exploitation on an Alpine mallocng Heap\n\nhttps://research.nccgroup.com/2024/06/11/pumping-iron-on-the-musl-heap-real-world-cve-2022-24834-exploitation-on-an-alpine-mallocng-heap/", "creation_timestamp": "2024-06-12T05:22:53.000000Z"}, {"uuid": "11f9f949-4f67-412a-ad66-6570208240ee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-2483", "type": "seen", "source": "https://t.me/cibsecurity/56084", "content": "\u203c CVE-2022-2483 \u203c\n\nThe bootloader in the Nokia ASIK AirScale system module (versions 474021A.101 and 474021A.102) loads public keys for firmware verification signature. If an attacker modifies the flash contents to corrupt the keys, secure boot could be permanently disabled on a given device.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-01-07T00:24:40.000000Z"}]}