{"vulnerability": "CVE-2020-2950", "sightings": [{"uuid": "43d690b3-93a7-4547-83bb-566a27bcf0fb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-29509", "type": "seen", "source": "https://gist.github.com/russellhaering/64eb0dc5c1338ee07bc1947745368066", "content": "", "creation_timestamp": "2026-03-12T17:51:31.000000Z"}, {"uuid": "6a04f225-1a64-4b84-9ae2-f6ac016b1d1e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-29504", "type": "seen", "source": "https://t.me/ctinow/192823", "content": "https://ift.tt/foSUHgJ\nCVE-2020-29504 | Dell BSAFE Crypto-C Micro Edition certificate validation (dsa-2020-286)", "creation_timestamp": "2024-02-25T10:41:38.000000Z"}, {"uuid": "9f8b604b-ed86-4966-bd9b-d37444336df6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-2950", "type": "published-proof-of-concept", "source": "Telegram/5T9p9Zashh8_t2QaMEcrWCxGmV69ND__6VmH0ET2CJ3Gp-A", "content": "", "creation_timestamp": "2023-03-14T09:24:23.000000Z"}, {"uuid": "98f90a11-812f-4148-b438-883d13244cdc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-29504", "type": "seen", "source": "https://t.me/ctinow/178163", "content": "https://ift.tt/Kuha0Mt\nCVE-2020-29504", "creation_timestamp": "2024-02-02T17:26:44.000000Z"}, {"uuid": "207625c6-6e66-4994-a02e-4985499dea06", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-29505", "type": "seen", "source": "https://t.me/cibsecurity/45952", "content": "\u203c CVE-2020-29505 \u203c\n\nDell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.5.2, contain a Key Management Error Vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-07-12T00:19:41.000000Z"}, {"uuid": "86640eba-74c6-4658-96da-51f0f0ba692b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-29507", "type": "seen", "source": "https://t.me/cibsecurity/45944", "content": "\u203c CVE-2020-29507 \u203c\n\nDell BSAFE Crypto-C Micro Edition, versions before 4.1.4, and Dell BSAFE Micro Edition Suite, versions before 4.4, contain an Improper Input Validation Vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-07-12T00:19:34.000000Z"}, {"uuid": "37edfee0-2e27-456f-a516-da9afb92a01f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-29506", "type": "seen", "source": "https://t.me/cibsecurity/45943", "content": "\u203c CVE-2020-29506 \u203c\n\nDell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.5.2, contain an Observable Timing Discrepancy Vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-07-12T00:19:30.000000Z"}, {"uuid": "5c373bab-fa91-479a-a6b9-3d0eb24cf3b5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-29508", "type": "seen", "source": "https://t.me/cibsecurity/45942", "content": "\u203c CVE-2020-29508 \u203c\n\nDell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.6, contain an Improper Input Validation Vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-07-12T00:19:29.000000Z"}, {"uuid": "c13f2235-9387-4afd-8845-24e644f95986", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-29500", "type": "seen", "source": "https://t.me/cibsecurity/21634", "content": "\u203c CVE-2020-29500 \u203c\n\nDell EMC PowerStore versions prior to 1.0.3.0.5.007 contain a Plain-Text Password Storage Vulnerability in PowerStore T environments. A locally authenticated attacker could potentially exploit this vulnerability, leading to the disclosure of certain user credentials. The attacker may be able to use the exposed credentials to access the vulnerable application with privileges of the compromised account.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-01-06T00:44:30.000000Z"}, {"uuid": "05b18e0c-5663-44fc-99fe-481652ecab9b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-2950", "type": "seen", "source": "https://t.me/CyberSecurityTechnologies/7921", "content": "#exploit\n1. CVE-2020-2546, CVE-2020-2915,\nCVE-2020-2801, CVE-2020-2798,\nCVE-2020-2883, CVE-2020-2884,\nCVE-2020-2950:\nWebLogic T3 payload exploit PoC python3\nhttps://github.com/hktalent/CVE_2020_2546\n\n2. Tips, Tricks, and Scripts for Linux Post Exploitation\nhttps://github.com/regorsec/Linux-Post-Exploitation\n\n3. CVE-2023-23488:\nUnauthenticated SQL Injection - Paid Memberships Pro < 2.9.8 (WordPress Plugin)\nhttps://github.com/r3nt0n/CVE-2023-23488-PoC", "creation_timestamp": "2023-03-13T22:21:06.000000Z"}, {"uuid": "54e98801-5511-4edf-a1e5-26de419a8af5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-29502", "type": "seen", "source": "https://t.me/cibsecurity/21649", "content": "\u203c CVE-2020-29502 \u203c\n\nDell EMC PowerStore versions prior to 1.0.3.0.5.007 contain a Plain-Text Password Storage Vulnerability in PowerStore X & T environments. A locally authenticated attacker could potentially exploit this vulnerability, leading to the disclosure of certain user credentials. The attacker may be able to use the exposed credentials to access the vulnerable application with privileges of the compromised account.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-01-06T00:44:48.000000Z"}, {"uuid": "6f25a98d-66cc-4c76-ac2c-ef06ac1875c1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-29501", "type": "seen", "source": "https://t.me/cibsecurity/21640", "content": "\u203c CVE-2020-29501 \u203c\n\nDell EMC PowerStore versions prior to 1.0.3.0.5.007 contain a Plain-Text Password Storage Vulnerability in PowerStore X & T environments. A locally authenticated attacker could potentially exploit this vulnerability, leading to the disclosure of certain user credentials. The attacker may be able to use the exposed credentials to access the vulnerable application with privileges of the compromised account.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-01-06T00:44:37.000000Z"}, {"uuid": "78dd9dca-eb51-436a-a65b-fcebdf1aa2bd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-29509", "type": "seen", "source": "https://t.me/CyberSecurityTechnologies/2330", "content": "#Threat_Research\nCoordinated disclosure of XML round-trip vulnerabilities in Go\u2019s standard library (CVE-2020-29509, CVE-2020-29510, CVE-2020-29511)\nhttps://mattermost.com/blog/coordinated-disclosure-go-xml-vulnerabilities", "creation_timestamp": "2022-06-29T03:35:24.000000Z"}, {"uuid": "7ff6ab7a-21a8-41c6-8786-c75deb4149b7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-2950", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/2366", "content": "#exploit\nCVE-2020-2950:\nTurning AMF Deserialize bug to Java Deserialize bug\nhttps://medium.com/@peterjson/cve-2020-2950-turning-amf-deserialize-bug-to-java-deserialize-bug-2984a8542b6f", "creation_timestamp": "2024-09-16T16:00:05.000000Z"}]}