{"vulnerability": "cve-2022-2767", "sightings": [{"uuid": "92fb73ec-7cfc-464b-99cf-12d213e7a49f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-27674", "type": "seen", "source": "https://t.me/cibsecurity/52758", "content": "\u203c CVE-2022-27674 \u203c\n\nInsufficient validation in the IOCTL input/output buffer in AMD ?Prof may allow an attacker to bypass bounds checks potentially leading to a Windows kernel crash resulting in denial of service.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-11-10T00:42:41.000000Z"}, {"uuid": "aef3f61d-b8ce-4b09-a929-48f5748234c4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-27671", "type": "seen", "source": "https://t.me/cibsecurity/40657", "content": "\u203c CVE-2022-27671 \u203c\n\nA CSRF token visible in the URL may possibly lead to information disclosure vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-12T20:23:21.000000Z"}, {"uuid": "836d4bb1-9ce9-4dc0-aee3-c799286253a4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-27677", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/8131", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-27677\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: \nFailure to validate privileges during installation of AMD Ryzen\u2122 Master may allow an attacker with low\nprivileges to modify files potentially leading to privilege escalation and code execution by the lower\nprivileged user.\n\n\n\ud83d\udccf Published: 2023-02-14T19:52:28.727Z\n\ud83d\udccf Modified: 2025-03-19T18:52:04.925Z\n\ud83d\udd17 References:\n1. https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-1052", "creation_timestamp": "2025-03-19T19:18:26.000000Z"}, {"uuid": "860fbb81-1cfb-4f82-9fa0-3b80506352f1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-27672", "type": "seen", "source": "https://t.me/cibsecurity/59217", "content": "\u203c CVE-2022-27672 \u203c\n\nWhen SMT is enabled, certain AMD processors may speculatively execute instructions using a target from the sibling thread after an SMT mode switch potentially resulting in information disclosure.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-01T12:39:46.000000Z"}, {"uuid": "70eee46f-41a1-4ac1-b2de-671d5131f91c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-27670", "type": "seen", "source": "https://t.me/cibsecurity/40653", "content": "\u203c CVE-2022-27670 \u203c\n\nSAP SQL Anywhere - version 17.0, allows an authenticated attacker to prevent legitimate users from accessing a SQL Anywhere database server by crashing the server with some queries that use indirect identifiers.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-12T20:23:14.000000Z"}]}