{"vulnerability": "cve-2022-37298", "sightings": [{"uuid": "2139a494-0fbe-4557-b579-c391fc6956b8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-37298", "type": "seen", "source": "https://t.me/cibsecurity/51866", "content": "\u203c CVE-2022-37298 \u203c\n\nShinken Solutions Shinken Monitoring Version 2.4.3 affected is vulnerable to Incorrect Access Control. The SafeUnpickler class found in shinken/safepickle.py implements a weak authentication scheme when unserializing objects passed from monitoring nodes to the Shinken monitoring server.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-10-20T14:21:18.000000Z"}, {"uuid": "f32ce222-dc09-47b7-a5bd-00eccf0a700e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-37298", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/3167", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2022\n\u63cf\u8ff0\uff1aCVE-2022-37298 Shinken Monitoring\nURL\uff1ahttps://github.com/dbyio/cve-2022-37298\n\n\u6807\u7b7e\uff1a#CVE-2022", "creation_timestamp": "2022-11-02T20:39:52.000000Z"}]}