{"vulnerability": "cve-2023-2883", "sightings": [{"uuid": "0d98abc7-cb19-4242-85e7-34d9723fee64", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-28831", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/19435", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-28831\n\ud83d\udd25 CVSS Score: 7.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C)\n\ud83d\udd39 Description: The OPC UA implementations (ANSI C and C++) in affected products contain an integer overflow vulnerability that could cause the application to run into an infinite loop during certificate validation.\n\nThis could allow an unauthenticated remote attacker to create a denial of service condition by sending a specially crafted certificate.\n\ud83d\udccf Published: 2023-09-12T09:32:06.153Z\n\ud83d\udccf Modified: 2025-06-25T13:40:48.411Z\n\ud83d\udd17 References:\n1. https://cert-portal.siemens.com/productcert/pdf/ssa-711309.pdf\n2. https://cert-portal.siemens.com/productcert/pdf/ssa-118850.pdf\n3. https://cert-portal.siemens.com/productcert/html/ssa-711309.html\n4. https://cert-portal.siemens.com/productcert/html/ssa-118850.html", "creation_timestamp": "2025-06-25T13:50:45.000000Z"}, {"uuid": "76895e81-8439-4279-8385-6e7ef4e14d52", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-28834", "type": "seen", "source": "Telegram/kauaLl9bwVL_L5BJMQvoqv--SM5X2HaBCjJp4lCSrpMOnA", "content": "", "creation_timestamp": "2023-04-03T22:18:59.000000Z"}, {"uuid": "783ff082-c223-4157-9d55-99d1c605d72a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-28837", "type": "seen", "source": "Telegram/OB45uV-dPChJeZygU8z4WACld88FS-JfeS3_TjfOCLvJ_Q", "content": "", "creation_timestamp": "2023-04-03T22:18:40.000000Z"}, {"uuid": "322908af-5005-492a-9989-ca4536bf5f84", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-28836", "type": "seen", "source": "Telegram/wZJqFs8Qwzm2BFq_oltw_7fpBcZpMCtYzm9zaqH0tCbnWQ", "content": "", "creation_timestamp": "2023-04-03T22:19:12.000000Z"}, {"uuid": "446d12ec-e1dc-404a-8bdb-9b98100c05be", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-28832", "type": "seen", "source": "https://t.me/cibsecurity/63606", "content": "\u203c CVE-2023-28832 \u203c\n\nA vulnerability has been identified in SIMATIC Cloud Connect 7 CC712 (All versions >= V2.0 < V2.1), SIMATIC Cloud Connect 7 CC716 (All versions >= V2.0 < V2.1). The web based management of affected devices does not properly validate user input, making it susceptible to command injection. This could allow an authenticated privileged remote attacker to execute arbitrary code with root privileges.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-09T16:38:45.000000Z"}, {"uuid": "019372ed-3617-4768-aff2-6ec7b4e8ca83", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-28833", "type": "seen", "source": "https://t.me/cibsecurity/61198", "content": "\u203c CVE-2023-28833 \u203c\n\nNextcloud server is an open source home cloud implementation. In affected versions admins of a server were able to upload a logo or a favicon and to provided a file name which was not restricted and could overwrite files in the appdata directory. Administrators may have access to overwrite these files by other means but this method could be exploited by tricking an admin into uploading a maliciously named file. It is recommended that the Nextcloud Server is upgraded to 24.0.10 or 25.0.4. Users unable to upgrade should avoid ingesting logo files from untrusted sources.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-30T22:35:36.000000Z"}, {"uuid": "7b76258b-b944-48eb-a8b0-0b41913d84a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-28835", "type": "seen", "source": "https://t.me/cibsecurity/61197", "content": "\u203c CVE-2023-28835 \u203c\n\nNextcloud server is an open source home cloud implementation. In affected versions the generated fallback password when creating a share was using a weak complexity random number generator, so when the sharer did not change it the password could be guessable to an attacker willing to brute force it. It is recommended that the Nextcloud Server is upgraded to 24.0.10 or 25.0.4. This issue only affects users who do not have a password policy enabled, so enabling a password policy is an effective mitigation for users unable to upgrade.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-30T22:35:33.000000Z"}, {"uuid": "3754550b-67f6-43ab-9171-44b773a948fe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-28831", "type": "seen", "source": "https://t.me/cibsecurity/70269", "content": "\u203c CVE-2023-28831 \u203c\n\nThe ANSI C OPC UA SDK contains an integer overflow vulnerability that could cause the application to run into an infinite loop during certificate validation.This could allow an unauthenticated remote attacker to create a denial of service condition by sending a specially crafted certificate.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-12T14:23:04.000000Z"}, {"uuid": "4b2139c8-0590-4a66-9843-b9b58ded16a2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-28830", "type": "seen", "source": "https://t.me/cibsecurity/67952", "content": "\u203c CVE-2023-28830 \u203c\n\nA vulnerability has been identified in JT2Go (All versions < V14.2.0.5), Solid Edge SE2022 (All versions < V222.0 Update 13), Solid Edge SE2023 (All versions < V223.0 Update 4), Teamcenter Visualization V13.2 (All versions < V13.2.0.15), Teamcenter Visualization V13.3 (All versions < V13.3.0.11), Teamcenter Visualization V14.1 (All versions < V14.1.0.11), Teamcenter Visualization V14.2 (All versions < V14.2.0.5). The affected application contains a use-after-free vulnerability that could be triggered while parsing specially crafted ASM file. An attacker could leverage this vulnerability to execute code in the context of the current process.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-08T14:14:23.000000Z"}, {"uuid": "00bc2640-bf05-4ab7-8d38-e6a972b623f3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-28839", "type": "seen", "source": "https://t.me/cibsecurity/62411", "content": "\u203c CVE-2023-28839 \u203c\n\nShoppingfeed PrestaShop is an add-on to the PrestaShop ecommerce platform to synchronize data. The module Shoppingfeed for PrestaShop is vulnerable to SQL injection between version 1.4.0 and 1.8.2 due to a lack of input sanitization. This issue has been addressed in version 1.8.3. Users are advised to upgrade. There are no known workarounds for this issue.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-19T00:35:35.000000Z"}, {"uuid": "2452a96c-48d8-49f1-9d70-2d1cf4e7f289", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-28837", "type": "seen", "source": "https://t.me/cibsecurity/61341", "content": "\u203c CVE-2023-28837 \u203c\n\nWagtail is an open source content management system built on Django. Prior to versions 4.1.4 and 4.2.2, a memory exhaustion bug exists in Wagtail's handling of uploaded images and documents. For both images and documents, files are loaded into memory during upload for additional processing. A user with access to upload images or documents through the Wagtail admin interface could upload a file so large that it results in a crash of denial of service. The vulnerability is not exploitable by an ordinary site visitor without access to the Wagtail admin. It can only be exploited by admin users with permission to upload images or documents. Image uploads are restricted to 10MB by default, however this validation only happens on the frontend and on the backend after the vulnerable code. Patched versions have been released as Wagtail 4.1.4 and Wagtail 4.2.2). Site owners who are unable to upgrade to the new versions are encouraged to add extra protections outside of Wagtail to limit the size of uploaded files.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-03T20:30:17.000000Z"}, {"uuid": "a530e6f3-bf2c-4f03-8648-1479eb03796c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-28834", "type": "seen", "source": "https://t.me/cibsecurity/61338", "content": "\u203c CVE-2023-28834 \u203c\n\nNextcloud Server is an open source personal cloud server. Nextcloud Server 24.0.0 until 24.0.6 and 25.0.0 until 25.0.4, as well as Nextcloud Enterprise Server 23.0.0 until 23.0.11, 24.0.0 until 24.0.6, and 25.0.0 until 25.0.4, have an information disclosure vulnerability. A user was able to get the full data directory path of the Nextcloud server from an API endpoint. By itself this information is not problematic as it can also be guessed for most common setups, but it could speed up other unknown attacks in the future if the information is known. Nextcloud Server 24.0.6 and 25.0.4 and Nextcloud Enterprise Server 23.0.11, 24.0.6, and 25.0.4 contain patches for this issue. There are no known workarounds.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-03T20:30:14.000000Z"}, {"uuid": "60e5a7d5-1449-4fac-86cc-7eb3122848a0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-28836", "type": "seen", "source": "https://t.me/cibsecurity/61337", "content": "\u203c CVE-2023-28836 \u203c\n\nWagtail is an open source content management system built on Django. Starting in version 1.5 and prior to versions 4.1.4 and 4.2.2, a stored cross-site scripting (XSS) vulnerability exists on ModelAdmin views within the Wagtail admin interface. A user with a limited-permission editor account for the Wagtail admin could potentially craft pages and documents that, when viewed by a user with higher privileges, could perform actions with that user's credentials. The vulnerability is not exploitable by an ordinary site visitor without access to the Wagtail admin, and only affects sites with ModelAdmin enabled. For page, the vulnerability is in the \"Choose a parent page\" ModelAdmin view (`ChooseParentView`), available when managing pages via ModelAdmin. For documents, the vulnerability is in the ModelAdmin Inspect view (`InspectView`) when displaying document fields. Patched versions have been released as Wagtail 4.1.4 and Wagtail 4.2.2. Site owners who are unable to upgrade to the new versions can disable or override the corresponding functionality.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-03T20:30:13.000000Z"}]}