{"vulnerability": "CVE-2023-2860", "sightings": [{"uuid": "0af25516-2617-41a1-ab9b-763aa8dd0986", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-28604", "type": "seen", "source": "https://t.me/ctinow/156002", "content": "https://ift.tt/nUfxDyw\nCVE-2023-28604 Exploit", "creation_timestamp": "2023-12-18T17:18:36.000000Z"}, {"uuid": "1fb180b8-ee09-4ad9-ad14-c497aa5003a0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-28606", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/5583", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-28606\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: js/event-graph.js in MISP before 2.4.169 allows XSS via event-graph node tooltips.\n\ud83d\udccf Published: 2023-03-18T00:00:00.000Z\n\ud83d\udccf Modified: 2025-02-26T19:04:59.334Z\n\ud83d\udd17 References:\n1. https://github.com/MISP/MISP/commit/30255b8d683df4ec54f856282b3bde9106d5ae1a\n2. https://github.com/MISP/MISP/compare/v2.4.168...v2.4.169", "creation_timestamp": "2025-02-26T19:24:12.000000Z"}, {"uuid": "cf23a41c-3626-494b-8544-b668f399d359", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-2860", "type": "seen", "source": "https://t.me/cibsecurity/67172", "content": "\u203c CVE-2023-2860 \u203c\n\nAn out-of-bounds read vulnerability was found in the SR-IPv6 implementation in the Linux kernel. The flaw exists within the processing of seg6 attributes. The issue results from the improper validation of user-supplied data, which can result in a read past the end of an allocated buffer. This flaw allows a privileged local user to disclose sensitive information on affected installations of the Linux kernel.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-24T20:26:28.000000Z"}, {"uuid": "d568483f-4b8b-4136-90e3-e29d20c07b74", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-28609", "type": "seen", "source": "https://t.me/cibsecurity/60284", "content": "\u203c CVE-2023-28609 \u203c\n\napi/auth.go in Ansible Semaphore before 2.8.89 mishandles authentication.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-18T23:32:45.000000Z"}]}