{"vulnerability": "cve-2023-3627", "sightings": [{"uuid": "e98f5ff5-1ec7-48ed-ae96-6f6c25bfc4d6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-36272", "type": "seen", "source": "Telegram/ZNM6JvNtBkCJ5H2-qYICqnki-xhl-8ZBM7bdBvsM_pR3DYso", "content": "", "creation_timestamp": "2025-03-08T04:34:55.000000Z"}, {"uuid": "4e07792b-d2e5-4674-b323-e5958b0c36ae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-36271", "type": "seen", "source": "Telegram/kC4TEACpoLIDIrQxj8Z8CJCx0aeH-_lCnUqJBv2zfxX-tAem", "content": "", "creation_timestamp": "2025-03-08T04:34:55.000000Z"}, {"uuid": "2162edfd-3fb7-4114-8b07-b42d19b01fb2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-36272", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/6758", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-36272\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: LibreDWG v0.10 to v0.12.5 was discovered to contain a heap buffer overflow via the function bit_utf8_to_TU at bits.c.\n\ud83d\udccf Published: 2023-06-23T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-06T20:43:23.314Z\n\ud83d\udd17 References:\n1. https://github.com/LibreDWG/libredwg/issues/681#BUG1\n2. https://github.com/LibreDWG/libredwg/commit/c1ed1d91e28a6ddc7a9b5479d4795d58fb6be0ca\n3. https://github.com/LibreDWG/libredwg/blob/0.10/src/bits.c#L1677C11-L1683C17", "creation_timestamp": "2025-03-06T21:34:27.000000Z"}, {"uuid": "58367961-bb0a-4f3c-a7eb-c1dd79048446", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-36271", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/6766", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-36271\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: LibreDWG v0.10 to v0.12.5 was discovered to contain a heap buffer overflow via the function bit_wcs2nlen at bits.c.\n\ud83d\udccf Published: 2023-06-23T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-06T20:34:45.486Z\n\ud83d\udd17 References:\n1. https://github.com/LibreDWG/libredwg/issues/681#BUG2\n2. https://github.com/LibreDWG/libredwg/commit/c1ed1d91e28a6ddc7a9b5479d4795d58fb6be0ca\n3. https://github.com/LibreDWG/libredwg/blob/0.10/src/bits.c#L1677C11-L1683C17", "creation_timestamp": "2025-03-06T21:34:37.000000Z"}, {"uuid": "6e81be7a-30a2-45d6-ad0b-7948bbab562e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-36274", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/6769", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-36274\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: LibreDWG v0.11 to v0.12.5 was discovered to contain a heap buffer overflow via the function bit_write_TF at bits.c.\n\ud83d\udccf Published: 2023-06-23T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-06T20:29:35.217Z\n\ud83d\udd17 References:\n1. https://github.com/LibreDWG/libredwg/issues/677#BUG2\n2. https://github.com/LibreDWG/libredwg/commit/8651fa27dd2de731e706e2ba09f0d28e4e0dce33\n3. https://github.com/LibreDWG/libredwg/blob/0.11/src/out_dxf.c#L1792", "creation_timestamp": "2025-03-06T21:34:42.000000Z"}, {"uuid": "b5da423d-2f30-492d-bba1-46d0b6472119", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-36274", "type": "seen", "source": "Telegram/4C1ShwjmkBhBENi7qEQftEgtko3U2iyQmc31taQMFQ9PUsey", "content": "", "creation_timestamp": "2025-03-08T04:34:55.000000Z"}, {"uuid": "99d6de7a-52db-4f76-a5d3-c144834d4aeb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-3627", "type": "seen", "source": "https://t.me/cibsecurity/66406", "content": "\u203c CVE-2023-3627 \u203c\n\nCross-Site Request Forgery (CSRF) in GitHub repository salesagility/suitecrm-core prior to 8.3.1.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-11T20:29:42.000000Z"}, {"uuid": "4b0387ae-2568-459d-a98d-0ba35b0e362e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-36271", "type": "seen", "source": "https://t.me/cibsecurity/65471", "content": "\u203c CVE-2023-36271 \u203c\n\nLibreDWG v0.12.5 was discovered to contain a heap buffer overflow via the function bit_wcs2nlen at bits.c.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-06-23T18:38:34.000000Z"}, {"uuid": "9e65d788-6304-417d-b528-a6e68aadb124", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-36274", "type": "seen", "source": "https://t.me/cibsecurity/65470", "content": "\u203c CVE-2023-36274 \u203c\n\nLibreDWG v0.12.5 was discovered to contain a heap buffer overflow via the function bit_write_TF at bits.c.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-06-23T18:38:33.000000Z"}]}