{"vulnerability": "CVE-2022-4903", "sightings": [{"uuid": "c3b1cb48-68c8-40ec-9066-c9ee2ba52076", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-4903", "type": "seen", "source": "https://t.me/cibsecurity/57923", "content": "\u203c CVE-2022-4903 \u203c\n\nA vulnerability was found in CodenameOne 7.0.70. It has been classified as problematic. Affected is an unknown function. The manipulation leads to use of implicit intent for sensitive communication. It is possible to launch the attack remotely. Upgrading to version 7.0.71 is able to address this issue. The name of the patch is dad49c9ef26a598619fc48d2697151a02987d478. It is recommended to upgrade the affected component. VDB-220470 is the identifier assigned to this vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-10T18:40:55.000000Z"}, {"uuid": "ce25edaa-474b-4d0b-bb21-38e096a96279", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-49034", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113725113330410108", "content": "", "creation_timestamp": "2024-12-27T13:51:55.991373Z"}, {"uuid": "542a5115-0e90-4e6f-9da2-dc0469506101", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-49034", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lec6gdkd3x2i", "content": "", "creation_timestamp": "2024-12-27T14:15:34.956473Z"}, {"uuid": "c7466202-6fd3-48b9-827a-94bf33a67d91", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-49035", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lerelgfpx62m", "content": "", "creation_timestamp": "2025-01-02T15:15:44.991787Z"}, {"uuid": "0d18258e-6d79-4159-9ecb-1593e7181ac4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-49035", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lergwwe6e52h", "content": "", "creation_timestamp": "2025-01-02T15:57:59.083205Z"}, {"uuid": "3d8cc599-8418-49aa-b377-c6d79da5b97f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-49035", "type": "seen", "source": "https://t.me/cvedetector/14170", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2022-49035 - Linux kernel S5P CEC Out-of-Bounds Write Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2022-49035 \nPublished : Jan. 2, 2025, 3:15 p.m. | 27\u00a0minutes ago \nDescription : In the Linux kernel, the following vulnerability has been resolved:  \n  \nmedia: s5p_cec: limit msg.len to CEC_MAX_MSG_SIZE  \n  \nI expect that the hardware will have limited this to 16, but just in  \ncase it hasn't, check for this corner case. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"02 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-02T16:46:16.000000Z"}, {"uuid": "a6f1996c-531f-4a1a-bf86-399daa662ae4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-49037", "type": "seen", "source": "https://t.me/cvedetector/6378", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2022-49037 - Synology Drive Client Sensitive Information Disclosure\", \n  \"Content\": \"CVE ID : CVE-2022-49037 \nPublished : Sept. 26, 2024, 4:15 a.m. | 40\u00a0minutes ago \nDescription : Insertion of sensitive information into log file vulnerability in proxy settings component in Synology Drive Client before 3.3.0-15082 allows remote authenticated users to obtain sensitive information via unspecified vectors. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"26 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-26T07:06:06.000000Z"}, {"uuid": "884d8e55-0a35-495b-9d2f-684c8c045ed1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-49038", "type": "seen", "source": "https://t.me/cvedetector/6377", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2022-49038 - Synology Drive Client Inclusion of Untrusted Code Execution\", \n  \"Content\": \"CVE ID : CVE-2022-49038 \nPublished : Sept. 26, 2024, 4:15 a.m. | 40\u00a0minutes ago \nDescription : Inclusion of functionality from untrusted control sphere vulnerability in OpenSSL DLL component in Synology Drive Client before 3.3.0-15082 allows local users to execute arbitrary code via unspecified vectors. \nSeverity: 7.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"26 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-26T07:06:02.000000Z"}, {"uuid": "b300a927-6e43-4977-814d-5a7f9faeef98", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-49039", "type": "seen", "source": "https://t.me/cvedetector/6373", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2022-49039 - Synology Drive Client Out-of-Bounds Write Privilege Escalation Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2022-49039 \nPublished : Sept. 26, 2024, 4:15 a.m. | 40\u00a0minutes ago \nDescription : Out-of-bounds write vulnerability in backup task management functionality in Synology Drive Client before 3.4.0-15721 allows local users with administrator privileges to execute arbitrary commands via unspecified vectors. \nSeverity: 6.7 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"26 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-26T07:05:59.000000Z"}, {"uuid": "da8a821c-93e5-41b3-a997-e3efea69c95b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-49034", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-226-07", "content": "", "creation_timestamp": "2025-08-14T10:00:00.000000Z"}]}