{"vulnerability": "cve-2023-2557", "sightings": [{"uuid": "8b15924b-e2ca-4ee1-875a-f9f275471720", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-25574", "type": "seen", "source": "https://t.me/DarkWebInformer_News/1161", "content": "\ud83d\udea8 News Alert!\n\nSource: Dark Web Informer - Cyber Threat Intelligence\nTitle: CVE-2023-25574: LTI13Authenticator: JWT signature not validated\nLink: https://darkwebinformer.com/cve-2023-25574-lti13authenticator-jwt-signature-not-validated/", "creation_timestamp": "2025-02-25T15:29:27.000000Z"}, {"uuid": "1b194d59-05d4-42ee-ad1b-c600e408a441", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-25578", "type": "seen", "source": "https://t.me/cvedetector/11665", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-52581 - Litestar ASGI Multipart Form Parser Buffer Overflow\", \n  \"Content\": \"CVE ID : CVE-2024-52581 \nPublished : Nov. 20, 2024, 9:15 p.m. | 41\u00a0minutes ago \nDescription : Litestar is an Asynchronous Server Gateway Interface (ASGI) framework. Prior to version 2.13.0, the multipart form parser shipped with litestar expects the entire request body as a single byte string and there is no default limit for the total size of the request body. This allows an attacker to upload arbitrary large files wrapped in a `multipart/form-data` request and cause excessive memory consumption on the server. The multipart form parser in affected versions is vulnerable to this type of attack by design. The public method signature as well as its implementation both expect the entire request body to be available as a single byte string. It is not possible to accept large file uploads in a safe way using this parser. This may be a regression, as a variation of this issue was already reported in CVE-2023-25578. Limiting the part number is not sufficient to prevent out-of-memory errors on the server. A patch is available in version 2.13.0. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"20 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-20T22:57:18.000000Z"}, {"uuid": "862c718d-cdcc-4945-9172-0b45944a91d4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-25577", "type": "seen", "source": "https://t.me/arpsyndicate/2702", "content": "#ExploitObserverAlert\n\nCVE-2023-25577\n\nDESCRIPTION: Exploit Observer has 6 entries related to CVE-2023-25577. Werkzeug is a comprehensive WSGI web application library. Prior to version 2.2.3, Werkzeug's multipart form data parser will parse an unlimited number of parts, including file parts. Parts can be a small amount of bytes, but each requires CPU time to parse and may use more memory as Python data. If a request can be made to an endpoint that accesses `request.data`, `request.form`, `request.files`, or `request.get_data(parse_form_data=False)`, it can cause unexpectedly high resource usage. This allows an attacker to cause a denial of service by sending crafted multipart data to an endpoint that will parse it. The amount of CPU time required can block worker processes from handling legitimate requests. The amount of RAM required can trigger an out of memory kill of the process. Unlimited file parts can use up memory and file handles. If many concurrent requests are sent continuously, this can exhaust or kill all available workers. Version 2.2.3 contains a patch for this issue.\n\nFIRST-EPSS: 0.000590000\nNVD-IS: 3.6\nNVD-ES: 3.9", "creation_timestamp": "2024-01-09T02:16:32.000000Z"}, {"uuid": "8b1dafdf-8494-4e39-bb85-8f13e1dcd2fd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-25573", "type": "published-proof-of-concept", "source": "https://t.me/codeb0ss/1212", "content": "", "creation_timestamp": "2023-10-04T03:32:51.000000Z"}, {"uuid": "9ee54e09-04de-45fc-b8a3-d94195067e2a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-25578", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113517271415805462", "content": "", "creation_timestamp": "2024-11-20T20:55:00.477436Z"}, {"uuid": "5e8c23a1-045e-4b5e-87f6-b56d9f9fcf13", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-25574", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lizfyim33a25", "content": "", "creation_timestamp": "2025-02-25T17:43:00.734698Z"}, {"uuid": "d1b04e18-655c-432c-b530-a5b64aeda869", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-25574", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114065783752979650", "content": "", "creation_timestamp": "2025-02-25T17:48:55.004095Z"}, {"uuid": "0779f3b7-1117-4d8a-a7a7-63207031aa7b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-25574", "type": "seen", "source": "MISP/8e1b6542-ae86-4729-a7a6-4e9f670b8bb7", "content": "", "creation_timestamp": "2025-08-22T17:25:06.000000Z"}, {"uuid": "3ecbe69e-748c-400e-be6a-d617d2339460", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-25573", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-04-28)", "content": "", "creation_timestamp": "2026-04-28T00:00:00.000000Z"}, {"uuid": "5bc25d00-83ae-4b66-be2a-ee6b6bcdcc10", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-25574", "type": "published-proof-of-concept", "source": "https://t.me/TheDarkWebInformer/13294", "content": "\ud83d\udea8CVE-2023-25574: LTI13Authenticator: JWT signature not validated\n\nCVSS: 10\n\nhttps://darkwebinformer.com/cve-2023-25574-lti13authenticator-jwt-signature-not-validated/", "creation_timestamp": "2025-02-25T16:28:38.000000Z"}, {"uuid": "7b82ea42-866a-4d96-8499-6510f6fd26da", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-25573", "type": "seen", "source": "https://t.me/cibsecurity/59737", "content": "\u203c CVE-2023-25573 \u203c\n\nmetersphere is an open source continuous testing platform. In affected versions an improper access control vulnerability exists in `/api/jmeter/download/files`, which allows any user to download any file without authentication. This issue may expose all files available to the running process. This issue has been addressed in version 1.20.20 lts and 2.7.1. Users are advised to upgrade. There are no known workarounds for this vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-09T20:20:22.000000Z"}, {"uuid": "a5e31c4d-549f-4530-b7d1-93c2082511db", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-25570", "type": "seen", "source": "https://t.me/cibsecurity/58527", "content": "\u203c CVE-2023-25570 \u203c\n\nApollo is a configuration management system. Prior to version 2.1.0, there are potential security issues if users expose apollo-configservice to the internet, which is not recommended. This is because there is no authentication feature enabled for the built-in eureka service. Malicious hackers may access eureka directly to mock apollo-configservice and apollo-adminservice. Login authentication for eureka was added in version 2.1.0. As a workaround, avoid exposing apollo-configservice to the internet.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-20T18:15:57.000000Z"}, {"uuid": "247df756-7a71-4953-9ee9-cde8585a3614", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-25577", "type": "seen", "source": "https://t.me/cibsecurity/58172", "content": "\u203c CVE-2023-25577 \u203c\n\nWerkzeug is a comprehensive WSGI web application library. Prior to version 2.2.3, Werkzeug's multipart form data parser will parse an unlimited number of parts, including file parts. Parts can be a small amount of bytes, but each requires CPU time to parse and may use more memory as Python data. If a request can be made to an endpoint that accesses `request.data`, `request.form`, `request.files`, or `request.get_data(parse_form_data=False)`, it can cause unexpectedly high resource usage. This allows an attacker to cause a denial of service by sending crafted multipart data to an endpoint that will parse it. The amount of CPU time required can block worker processes from handling legitimate requests. The amount of RAM required can trigger an out of memory kill of the process. Unlimited file parts can use up memory and file handles. If many concurrent requests are sent continuously, this can exhaust or kill all available workers. Version 2.2.3 contains a patch for this issue.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-14T22:42:03.000000Z"}, {"uuid": "0b52aedc-da69-43a5-8870-4cc947915eaa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-25578", "type": "seen", "source": "https://t.me/cibsecurity/58243", "content": "\u203c CVE-2023-25578 \u203c\n\nStarlite is an Asynchronous Server Gateway Interface (ASGI) framework. Prior to version 1.5.2, the request body parsing in `starlite` allows a potentially unauthenticated attacker to consume a large amount of CPU time and RAM. The multipart body parser processes an unlimited number of file parts and an unlimited number of field parts. This is a remote, potentially unauthenticated Denial of Service vulnerability. This vulnerability affects applications with a request handler that accepts a `Body(media_type=RequestEncodingType.MULTI_PART)`. The large amount of CPU time required for processing requests can block all available worker processes and significantly delay or slow down the processing of legitimate user requests. The large amount of RAM accumulated while processing requests can lead to Out-Of-Memory kills. Complete DoS is achievable by sending many concurrent multipart requests in a loop. Version 1.51.2 contains a patch for this issue.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-15T18:50:18.000000Z"}, {"uuid": "889e66ea-b3d1-4d27-a404-747afa19639a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-25572", "type": "seen", "source": "https://t.me/cibsecurity/58036", "content": "\u203c CVE-2023-25572 \u203c\n\nreact-admin is a frontend framework for building browser applications on top of REST/GraphQL APIs. react-admin prior to versions 3.19.12 and 4.7.6, along with ra-ui-materialui prior to 3.19.12 and 4.7.6, are vulnerable to cross-site scripting. All React applications built with react-admin and using the `` are affected. `` outputs the field value using `dangerouslySetInnerHTML` without client-side sanitization. If the data isn't sanitized server-side, this opens a possible cross-site scripting (XSS) attack. Versions 3.19.12 and 4.7.6 now use `DOMPurify` to escape the HTML before outputting it with React and `dangerouslySetInnerHTML`. Users who already sanitize HTML data server-side do not need to upgrade. As a workaround, users may replace the `` by a custom field doing sanitization by hand.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-14T00:30:08.000000Z"}, {"uuid": "0bc542c2-96e0-438f-897f-297aae85b252", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-25576", "type": "seen", "source": "https://t.me/cibsecurity/58114", "content": "\u203c CVE-2023-25576 \u203c\n\n@fastify/multipart is a Fastify plugin to parse the multipart content-type. Prior to versions 7.4.1 and 6.0.1, @fastify/multipart may experience denial of service due to a number of situations in which an unlimited number of parts are accepted. This includes the multipart body parser accepting an unlimited number of file parts, the multipart body parser accepting an unlimited number of field parts, and the multipart body parser accepting an unlimited number of empty parts as field parts. This is fixed in v7.4.1 (for Fastify v4.x) and v6.0.1 (for Fastify v3.x). There are no known workarounds.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-14T18:35:47.000000Z"}, {"uuid": "db434a1d-3f47-42e3-8f59-4008c5023257", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "cve-2023-25574", "type": "seen", "source": "https://infosec.exchange/users/DarkWebInformer/statuses/114065232657865353", "content": "", "creation_timestamp": "2025-02-25T15:28:44.969861Z"}, {"uuid": "1e3f2e5a-c65c-41a4-88ea-6ce23e833ea1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-25574", "type": "seen", "source": "https://bsky.app/profile/darkwebinformer.bsky.social/post/3liz6iio55s2r", "content": "", "creation_timestamp": "2025-02-25T15:28:53.350459Z"}, {"uuid": "ea169215-29a5-4b19-a614-e5c674a51ec2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-25574", "type": "seen", "source": "https://bsky.app/profile/vulnalerts.bsky.social/post/3lj234biqrx2j", "content": "", "creation_timestamp": "2025-02-26T00:00:59.374461Z"}, {"uuid": "6d4d3a36-61b4-4dad-9c2f-2014277f700c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-25574", "type": "seen", "source": "https://bsky.app/profile/vulnalerts.bsky.social/post/3lj3dchxsfp2q", "content": "", "creation_timestamp": "2025-02-26T12:00:14.654875Z"}]}