{"vulnerability": "cve-2022-2225", "sightings": [{"uuid": "5fbc5079-9c26-42fd-937b-6c75061b2903", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-22252", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/6586", "content": "#exploit\n1. CVE-2022-35804:\nSMB RCE\nhttps://v-v.space/2022/08/11/CVE-2022-35804\n2. CVE-2022-22252:\nHuawei HWLog Vmalloc Use-After-Free\nhttps://labs.taszk.io/blog/post/79_hw_hwlog_uaf", "creation_timestamp": "2022-08-13T13:03:01.000000Z"}, {"uuid": "ba74cd70-147f-471b-8209-86330e895bd6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-22252", "type": "seen", "source": "https://t.me/cibsecurity/42689", "content": "\u203c CVE-2022-22252 \u203c\n\nThe DFX module has a UAF vulnerability.Successful exploitation of this vulnerability may affect system stability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-13T20:27:15.000000Z"}, {"uuid": "40e6a94c-d9d2-4038-9023-35d839c40c8c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-22250", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/15749", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-22250\n\ud83d\udd25 CVSS Score: 6.5 (cvssV3_1, Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)\n\ud83d\udd39 Description: An Improper Control of a Resource Through its Lifetime vulnerability in Packet Forwarding Engine (PFE) of Juniper Networks Junos OS and Junos OS Evolved allows unauthenticated adjacent attacker to cause a Denial of Service (DoS). In an EVPN-MPLS scenario, if MAC is learned locally on an access interface but later a request to delete is received indicating that the MAC was learnt remotely, this can lead to memory corruption which can result in line card crash and reload. This issue affects: Juniper Networks Junos OS All versions 17.3R1 and later versions prior to 19.2R3-S5; 19.3 versions prior to 19.3R3-S5; 19.4 versions prior to 19.4R2-S6, 19.4R3-S8; 20.1 version 20.1R1 and later versions; 20.2 versions prior to 20.2R3-S4; 20.3 versions prior to 20.3R3-S3; 20.4 versions prior to 20.4R3-S3; 21.1 versions prior to 21.1R3-S1; 21.2 versions prior to 21.2R3; 21.3 versions prior to 21.3R2; 21.4 versions prior to 21.4R1-S1, 21.4R2. Juniper Networks Junos OS Evolved All versions prior to 20.4R3-S3-EVO; 21.1-EVO version 21.1R1-EVO and later versions; 21.2-EVO versions prior to 21.2R3-EVO; 21.3-EVO versions prior to 21.3R2-EVO; 21.4-EVO versions prior to 21.4R1-S1-EVO, 21.4R2-EVO. This issue does not affect Juniper Networks Junos OS versions prior to 17.3R1.\n\ud83d\udccf Published: 2022-10-18T02:46:53.120Z\n\ud83d\udccf Modified: 2025-05-09T14:52:23.679Z\n\ud83d\udd17 References:\n1. https://kb.juniper.net/JSA69907", "creation_timestamp": "2025-05-09T15:25:41.000000Z"}, {"uuid": "8fc9dfc9-27aa-4b41-8e4b-bbbf8b31b70a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-22259", "type": "seen", "source": "https://t.me/cibsecurity/44334", "content": "\u203c CVE-2022-22259 \u203c\n\nThere is an improper authentication vulnerability in FLMG-10 10.0.1.0(H100SP22C00). Successful exploitation of this vulnerability may lead to a control of the victim device.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-13T22:22:11.000000Z"}, {"uuid": "e17e45dd-3ecb-4556-a066-307642eaf7f4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-22255", "type": "seen", "source": "https://t.me/cibsecurity/40515", "content": "\u203c CVE-2022-22255 \u203c\n\nThe application framework has a common DoS vulnerability.Successful exploitation of this vulnerability may affect the availability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-12T00:16:29.000000Z"}]}