{"vulnerability": "CVE-2023-25002", "sightings": [{"uuid": "be0da33e-02c2-4cd2-b681-3a843c1cfc3e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-25002", "type": "published-proof-of-concept", "source": "Telegram/nPhrPfiXPUHAf58D5YpbTj99KkY4hNzkYP0rbZrOEVdw3Nc", "content": "", "creation_timestamp": "2024-04-02T00:59:20.000000Z"}, {"uuid": "08bf37f3-d0b4-4c0f-881a-220ba6a754fe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-25002", "type": "published-proof-of-concept", "source": "https://t.me/LockBitRaasRansomware/10664", "content": "CVE-2023-20052\n\nCVE-2023-20052, information leak vulnerability in the DMG file parser of ClamAV\n\nhttps://github.com/nokn0wthing/CVE-2023-25002\n\nPrivate: @RAVE_CGF", "creation_timestamp": "2024-04-02T00:59:21.000000Z"}, {"uuid": "72185cee-e445-4dbd-8ed8-1d980816d84c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-25002", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/8270", "content": "#exploit\n1.CVE-2023-20052:\nInformation leak vulnerability in the DMG file parser of ClamAV\nhttps://github.com/nokn0wthing/CVE-2023-25002\n\n2. Exploits for CVE-2023-27327, CVE-2023-27328\n(Parallels Desktop VM)\nhttps://github.com/kn32/parallels-plist-escape\n\n3. CVE-2023-28231:\nDHCP Server RCE (2008 R2 SP1 - Server 2019)\nhttps://github.com/glavstroy/CVE-2023-28231", "creation_timestamp": "2023-05-10T11:03:01.000000Z"}, {"uuid": "f4e99d2d-b404-4dd9-a4c0-0a2c0d56f417", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-25002", "type": "published-proof-of-concept", "source": "Telegram/daeCUX95O6ZDqcl0fr7xMzropW9nHK8k-upy-41VtmVTfc0", "content": "", "creation_timestamp": "2023-07-12T18:59:04.000000Z"}, {"uuid": "727082ed-06ca-4ff3-a7da-d6d80bf2e247", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-25002", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/4320", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2023\n\u63cf\u8ff0\uff1aCVE-2023-20052, information leak vulnerability in the DMG file parser of ClamAV\nURL\uff1ahttps://github.com/nokn0wthing/CVE-2023-25002\n\n\u6807\u7b7e\uff1a#CVE-2023", "creation_timestamp": "2023-05-08T18:46:43.000000Z"}, {"uuid": "7711ea2c-5d88-41c0-8e8f-fd0e899457d9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-25002", "type": "seen", "source": "https://t.me/cibsecurity/65591", "content": "\u203c CVE-2023-25002 \u203c\n\nA maliciously crafted SKP file in Autodesk products is used to trigger use-after-free vulnerability. Exploitation of this vulnerability may lead to code execution.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-06-28T02:12:21.000000Z"}]}