{"vulnerability": "CVE-2023-2621", "sightings": [{"uuid": "60eb8e17-451e-489e-a0e9-07263efc5a3b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-26213", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/7875", "content": "#exploit\n1. CVE-2023-26213:\nBarracuda CloudGen WAN OS Command Injection\nhttps://packetstormsecurity.com/files/171235/Barracuda-CloudGen-WAN-OS-Command-Injection.html\n\n2. KeePass2: DLL Hijacking and hooking APIs\nhttps://skr1x.github.io/keepass-dll-hijacking", "creation_timestamp": "2023-03-06T11:00:22.000000Z"}, {"uuid": "d7a86983-ead3-4510-a615-1bd899f9f767", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-26213", "type": "seen", "source": "Telegram/-z8EBkexp6XXVXb95uMyjrK3uacHGRoex92QcJDlNWP4IR7p", "content": "", "creation_timestamp": "2025-03-08T04:34:57.000000Z"}, {"uuid": "3db5a61d-226c-4ea9-ace4-2f37dc999b80", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-26219", "type": "seen", "source": "https://t.me/cibsecurity/72843", "content": "\u203c CVE-2023-26219 \u203c\n\nThe Hawk Console and Hawk Agent components of TIBCO Software Inc.'s TIBCO Hawk, TIBCO Hawk Distribution for TIBCO Silver Fabric, TIBCO Operational Intelligence Hawk RedTail, and TIBCO Runtime Agent contain a vulnerability that theoretically allows an attacker with access to the Hawk Console\u00e2\u20ac\u2122s and Agent\u00e2\u20ac\u2122s log to obtain credentials used to access associated EMS servers. Affected releases are TIBCO Software Inc.'s TIBCO Hawk: versions 6.2.2 and below, TIBCO Hawk Distribution for TIBCO Silver Fabric: versions 6.2.2 and below, TIBCO Operational Intelligence Hawk RedTail: versions 7.2.1 and below, and TIBCO Runtime Agent: versions 5.12.2 and below.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-25T22:39:31.000000Z"}, {"uuid": "ccf92813-12b8-4a0b-99af-ba2c9c016e4b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-26213", "type": "seen", "source": "https://t.me/cibsecurity/59408", "content": "\u203c CVE-2023-26213 \u203c\n\nOn Barracuda CloudGen WAN Private Edge Gateway devices before 8 webui-sdwan-1089-8.3.1-174141891, an OS command injection vulnerability exists in /ajax/update_certificate - a crafted HTTP request allows an authenticated attacker to execute arbitrary commands. For example, a name field can contain :password and a password field can contain shell metacharacters.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-04T00:35:35.000000Z"}, {"uuid": "778eab6d-1dde-456f-8edc-fcf819ebc672", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-26214", "type": "seen", "source": "https://t.me/cibsecurity/58699", "content": "\u203c CVE-2023-26214 \u203c\n\nThe BusinessConnect UI component of TIBCO Software Inc.'s TIBCO BusinessConnect contains easily exploitable Reflected Cross Site Scripting (XSS) vulnerabilities that allow a low privileged attacker with network access to execute scripts targeting the affected system or the victim's local system. Affected releases are TIBCO Software Inc.'s TIBCO BusinessConnect: versions 7.3.0 and below.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-22T20:17:46.000000Z"}, {"uuid": "2ac33ab3-6c6c-425d-afeb-9f0585fb8881", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-26211", "type": "seen", "source": "https://t.me/cvedetector/3028", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2023-26211 - Fortinet FortiSOAR Cross-Site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2023-26211 \nPublished : Aug. 13, 2024, 4:15 p.m. | 23\u00a0minutes ago \nDescription : An improper neutralization of input during web page generation ('cross-site scripting') in Fortinet FortiSOAR 7.3.0 through 7.3.2 allows an authenticated, remote attacker to inject arbitrary web script or HTML via the Communications module. \nSeverity: 6.8 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"13 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-13T18:47:35.000000Z"}, {"uuid": "6e5a143e-c193-4a5a-83b6-4e37d5b71c6b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-2621", "type": "seen", "source": "https://t.me/cibsecurity/73290", "content": "\u203c CVE-2023-2621 \u203c\n\nThe McFeeder server (distributed as part of SSW package), is susceptible to an arbitrary file write vulnerability on the MAIN computersystem. This vulnerability stems from the use of an outdated version of a third-party library, which is used to extract archives uploaded to McFeeder server. An authenticated malicious client canexploit this vulnerability by uploading a crafted ZIP archive via thenetwork to McFeeder\u00e2\u20ac\u2122s service endpoint.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-11-01T06:34:52.000000Z"}, {"uuid": "7164f921-f758-409c-ad27-839d930bbc90", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-26218", "type": "seen", "source": "https://t.me/cibsecurity/71327", "content": "\u203c CVE-2023-26218 \u203c\n\nThe Web Client component of TIBCO Software Inc.'s TIBCO Nimbus contains easily exploitable Reflected Cross Site Scripting (XSS) vulnerabilities that allow a low privileged attacker to social engineer a legitimate user with network access to execute scripts targeting the affected system or the victim's local system. A successful attack using this vulnerability requires human interaction from a person other than the attacker. Affected releases are TIBCO Software Inc.'s TIBCO Nimbus: versions 10.6.0 and below.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-29T22:37:54.000000Z"}, {"uuid": "17771e74-28af-4bf3-a619-62b402ad20a5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-26210", "type": "seen", "source": "https://bsky.app/profile/concisecyber.bsky.social/post/3mae2xxtcr32f", "content": "", "creation_timestamp": "2025-12-19T16:04:36.775986Z"}, {"uuid": "0ac61df3-5113-436c-bc50-73e541956154", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-26215", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/2006", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-26215\n\ud83d\udd39 Description: The server component of TIBCO Software Inc.'s TIBCO EBX Add-ons contains a vulnerability that allows an attacker with low-privileged application  access to read system files that are accessible to the web server. Affected releases are TIBCO Software Inc.'s TIBCO EBX Add-ons: versions 4.5.16 and below.\n\n\n\ud83d\udccf Published: 2023-05-25T18:41:43.701Z\n\ud83d\udccf Modified: 2025-01-16T18:38:07.866Z\n\ud83d\udd17 References:\n1. https://www.tibco.com/services/support/advisories", "creation_timestamp": "2025-01-16T18:56:18.000000Z"}, {"uuid": "05b010f2-2c9c-47c6-af6a-37706b7fa487", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-26213", "type": "published-proof-of-concept", "source": "Telegram/jPSnhCMejHbvrCa5vv5XjbnfZrfw8rqsp_9peBbwEW64iB8", "content": "", "creation_timestamp": "2023-03-06T18:56:09.000000Z"}]}