{"vulnerability": "CVE-2023-2514", "sightings": [{"uuid": "0e8b9366-fc73-4d3e-a583-a23f95f4d880", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-25149", "type": "seen", "source": "https://t.me/cibsecurity/58103", "content": "\u203c CVE-2023-25149 \u203c\n\nTimescaleDB, an open-source time-series SQL database, has a privilege escalation vulnerability in versions 2.8.0 through 2.9.2. During installation, TimescaleDB creates a telemetry job that is runs as the installation user. The queries run as part of the telemetry data collection were not run with a locked down `search_path`, allowing malicious users to create functions that would be executed by the telemetry job, leading to privilege escalation. In order to be able to take advantage of this vulnerability, a user would need to be able to create objects in a database and then get a superuser to install TimescaleDB into their database. When TimescaleDB is installed as trusted extension, non-superusers can install the extension without help from a superuser. Version 2.9.3 fixes this issue. As a mitigation, the `search_path` of the user running the telemetry job can be locked down to not include schemas writable by other users. The vulnerability is not exploitable on instances in Timescale Cloud and Managed Service for TimescaleDB due to additional security provisions in place on those platforms.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-14T16:49:00.000000Z"}, {"uuid": "2427fbfc-ef8f-44c1-9978-709e19bf1783", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-25141", "type": "seen", "source": "https://t.me/cibsecurity/58102", "content": "\u203c CVE-2023-25141 \u203c\n\nApache Sling JCR Base < 3.1.12 has a critical injection vulnerability when running on old JDK versions (JDK 1.8.191 or earlier) through utility functions in RepositoryAccessor. The functions getRepository and getRepositoryFromURL allow an application to access data stored in a remote location via JDNI and RMI. Users of Apache Sling JCR Base are recommended to upgrade to Apache Sling JCR Base 3.1.12 or later, or to run on a more recent JDK.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-14T16:45:57.000000Z"}, {"uuid": "0d36cddd-e229-4ebb-a896-a77d3ebd4df6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-25145", "type": "seen", "source": "Telegram/19CHmN2lLHILjDJJFh45ru21IzCUCPNYKXMvaNHOohaLE7Dw", "content": "", "creation_timestamp": "2025-03-06T02:17:24.000000Z"}, {"uuid": "7bd70179-2e8a-4829-b2d0-a97772833552", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-25143", "type": "seen", "source": "Telegram/QQadWRycowB-qPcG795G_OEZb4fwKOB2gQj2FvJIiZP5Bf3c", "content": "", "creation_timestamp": "2025-03-06T02:16:32.000000Z"}, {"uuid": "d5e7e11e-19ac-4241-bf11-7c048a1301d6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-25148", "type": "seen", "source": "https://t.me/cibsecurity/59852", "content": "\u203c CVE-2023-25148 \u203c\n\nA security agent link following vulnerability in Trend Micro Apex One could allow a local attacker to exploit the vulnerability by changing a specific file into a pseudo-symlink, allowing privilege escalation on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-11T00:27:29.000000Z"}, {"uuid": "26205d6f-83f8-45af-ab3c-a41cbc5514e4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-25146", "type": "seen", "source": "https://t.me/cibsecurity/59861", "content": "\u203c CVE-2023-25146 \u203c\n\nA security agent link following vulnerability in the Trend Micro Apex One agent could allow a local attacker to quarantine a file, delete the original folder and replace with a junction to an arbitrary location, ultimately leading to an arbitrary file dropped to an arbitrary location. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-11T00:27:40.000000Z"}, {"uuid": "64e35bc2-1bc4-4e47-b8e4-5dac100a9e7b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-25143", "type": "seen", "source": "https://t.me/cibsecurity/59847", "content": "\u203c CVE-2023-25143 \u203c\n\nAn uncontrolled search path element vulnerability in the Trend Micro Apex One Server installer could allow an attacker to achieve a remote code execution state on affected products.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-11T00:27:24.000000Z"}, {"uuid": "83ef5b7f-122c-4f9d-b34d-91b0d9c002ce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-25140", "type": "seen", "source": "https://t.me/cibsecurity/58097", "content": "\u203c CVE-2023-25140 \u203c\n\nA vulnerability has been identified in Parasolid V34.0 (All versions < V34.0.254), Parasolid V34.1 (All versions < V34.1.242), Parasolid V35.0 (All versions < V35.0.170), Parasolid V35.1 (All versions < V35.1.150), Solid Edge SE2022 (All versions < V2210Update12). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current process.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-14T14:51:37.000000Z"}]}