{"vulnerability": "CVE-2023-3827", "sightings": [{"uuid": "2404d508-28a1-4083-8667-c99cd505bd7f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-38271", "type": "seen", "source": "https://t.me/cvedetector/16391", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2023-38271 - IBM Cloud Pak System Information Disclosure Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2023-38271 \nPublished : Jan. 25, 2025, 2:15 p.m. | 1\u00a0hour, 9\u00a0minutes ago \nDescription : IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.3.6 iFix1, 2.3.3.6 iFix2, 2.3.3.7, and 2.3.3.7 iFix1\u00a0could allow an authenticated user to obtain sensitive information from log files. \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"25 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-25T17:10:07.000000Z"}, {"uuid": "bae0a945-a426-4160-af83-04a1a6ffb5a2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-38275", "type": "seen", "source": "https://t.me/cibsecurity/72739", "content": "\u203c CVE-2023-38275 \u203c\n\nIBM Cognos Dashboards on Cloud Pak for Data 4.7.0 exposes sensitive information in container images which could lead to further attacks against the system. IBM X-Force ID: 260730.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-22T07:36:31.000000Z"}, {"uuid": "8f22c33d-fe4b-4b9b-9eb9-8a3fcbe3d4b8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-38276", "type": "seen", "source": "https://t.me/cibsecurity/72738", "content": "\u203c CVE-2023-38276 \u203c\n\nIBM Cognos Dashboards on Cloud Pak for Data 4.7.0 exposes sensitive information in environment variables which could aid in further attacks against the system. IBM X-Force ID: 260736.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-22T07:36:30.000000Z"}, {"uuid": "3adb3187-074c-4387-8acb-3a6931f99a8a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-38273", "type": "seen", "source": "https://t.me/ctinow/178138", "content": "https://ift.tt/y19RtI5\nCVE-2023-38273", "creation_timestamp": "2024-02-02T16:21:55.000000Z"}, {"uuid": "61b30ceb-924a-4cd6-ae72-272e816944e3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-38271", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/3099", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: GHSA-jfx2-4jj8-x2wj\n\ud83d\udd25 CVSS Score: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N\n\ud83d\udd39 Description: IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.3.6 iFix1, 2.3.3.6 iFix2, 2.3.3.7, and 2.3.3.7 iFix1\u00a0could allow an authenticated user to obtain sensitive information from log files.\n\ud83d\udccf Published: 2025-01-25T15:30:31Z\n\ud83d\udccf Modified: 2025-01-25T15:30:31Z\n\ud83d\udd17 References:\n1. https://nvd.nist.gov/vuln/detail/CVE-2023-38271\n2. https://www.ibm.com/support/pages/node/7159533", "creation_timestamp": "2025-01-25T17:06:15.000000Z"}, {"uuid": "cc1bfdfd-c914-4d25-a96c-a2e9ab429f07", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-38271", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/3074", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-38271\n\ud83d\udd39 Description: IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.3.6 iFix1, 2.3.3.6 iFix2, 2.3.3.7, and 2.3.3.7 iFix1\u00a0could allow an authenticated user to obtain sensitive information from log files.\n\ud83d\udccf Published: 2025-01-25T13:57:18.288Z\n\ud83d\udccf Modified: 2025-01-25T13:57:18.288Z\n\ud83d\udd17 References:\n1. https://www.ibm.com/support/pages/node/7159533", "creation_timestamp": "2025-01-25T14:05:12.000000Z"}, {"uuid": "695f8d90-d619-423f-843d-b98f771ed337", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-38271", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113889352340242221", "content": "", "creation_timestamp": "2025-01-25T14:00:04.391018Z"}, {"uuid": "4691fecb-1268-4dc4-b9d7-fad1908ddcf6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-38272", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/9165", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-38272\n\ud83d\udd25 CVSS Score: 5.9 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N)\n\ud83d\udd39 Description: IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.36 iFix1, 2.3.3.6 iFix2, 2.3.3.7, 2.3.3.7 iFix1, 2.3.4.0, and 2.3.4.1 \n\ncould allow a user with access to the network to obtain sensitive information from CLI arguments.\n\ud83d\udccf Published: 2025-03-27T17:21:08.596Z\n\ud83d\udccf Modified: 2025-03-27T18:10:42.407Z\n\ud83d\udd17 References:\n1. https://www.ibm.com/support/pages/node/7229212", "creation_timestamp": "2025-03-27T18:26:41.000000Z"}, {"uuid": "55324e5d-fb56-4f66-9ae3-97defdfebbb3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-38272", "type": "seen", "source": "https://t.me/cvedetector/21337", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2023-38272 - IBM Cloud Pak System Information Disclosure\", \n  \"Content\": \"CVE ID : CVE-2023-38272 \nPublished : March 27, 2025, 6:17 p.m. | 1\u00a0hour, 26\u00a0minutes ago \nDescription : IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.36 iFix1, 2.3.3.6 iFix2, 2.3.3.7, 2.3.3.7 iFix1, 2.3.4.0, and 2.3.4.1   \n  \ncould allow a user with access to the network to obtain sensitive information from CLI arguments. \nSeverity: 5.9 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"27 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-27T20:50:28.000000Z"}, {"uuid": "aa67f54c-b873-40d6-a55f-dbf5f2bbf1d8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-3827", "type": "seen", "source": "https://t.me/cibsecurity/67114", "content": "\u203c CVE-2023-3827 \u203c\n\nA vulnerability was found in Bug Finder Listplace Directory Listing Platform 3.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /listplace/user/ticket/create of the component HTTP POST Request Handler. The manipulation of the argument message leads to cross site scripting. The attack may be launched remotely. The identifier of this vulnerability is VDB-235148. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-22T12:24:15.000000Z"}, {"uuid": "66f360ea-b90b-4557-8054-be0518870d58", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-38271", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lglk72z74p2w", "content": "", "creation_timestamp": "2025-01-25T18:30:38.148893Z"}]}