{"vulnerability": "CVE-2020-3523", "sightings": [{"uuid": "109b0dfd-a202-4067-a789-12c7e488f07a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35234", "type": "seen", "source": "MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd", "content": "", "creation_timestamp": "2025-02-06T03:13:44.000000Z"}, {"uuid": "4e6c0f5e-87e3-4412-b9a3-8f8dab2086e8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35235", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2025-01-26)", "content": "", "creation_timestamp": "2025-01-26T00:00:00.000000Z"}, {"uuid": "e0b0af4c-8b98-4c9f-bded-404bec3ffe22", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35235", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2025-02-09)", "content": "", "creation_timestamp": "2025-02-09T00:00:00.000000Z"}, {"uuid": "63ea86c4-656b-4c7b-8135-b72a3b093ec2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35234", "type": "seen", "source": "MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd", "content": "", "creation_timestamp": "2025-02-23T04:10:28.000000Z"}, {"uuid": "8a9efd6c-4edd-4137-9610-40b3718551b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35235", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2025-02-10)", "content": "", "creation_timestamp": "2025-02-10T00:00:00.000000Z"}, {"uuid": "e2bcff07-60e7-4233-ab94-05c11d5ff067", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35235", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-02-10)", "content": "", "creation_timestamp": "2025-02-10T00:00:00.000000Z"}, {"uuid": "7b17bb49-0602-42ca-8ece-dba4ab103cfb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35235", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2025-03-21)", "content": "", "creation_timestamp": "2025-03-21T00:00:00.000000Z"}, {"uuid": "7cbda33b-5eef-4e07-98a4-876ea84de0b0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35235", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2025-07-01)", "content": "", "creation_timestamp": "2025-07-01T00:00:00.000000Z"}, {"uuid": "41f5e967-5e68-4c8a-b5fb-5ee987810852", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35235", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-03-24)", "content": "", "creation_timestamp": "2025-03-24T00:00:00.000000Z"}, {"uuid": "faed2f91-8b4f-425f-a92d-15126708a5ca", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35235", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-07-06)", "content": "", "creation_timestamp": "2025-07-06T00:00:00.000000Z"}, {"uuid": "01f8ef02-97be-4608-a515-67f7229cbdb0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35235", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2025-07-16)", "content": "", "creation_timestamp": "2025-07-16T00:00:00.000000Z"}, {"uuid": "de22f4c3-e403-4e98-b98d-1e8ae5dd7dd1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35235", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2025-06-01)", "content": "", "creation_timestamp": "2025-06-01T00:00:00.000000Z"}, {"uuid": "e2f355be-ffb8-4529-ae7c-fa933d9dcad7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35235", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2025-07-23)", "content": "", "creation_timestamp": "2025-07-23T00:00:00.000000Z"}, {"uuid": "25356515-e8b3-4045-8058-b6e6da388301", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35235", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2025-07-28)", "content": "", "creation_timestamp": "2025-07-28T00:00:00.000000Z"}, {"uuid": "027d23d6-6d27-47e4-83d5-537db3f4255d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35235", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2025-07-24)", "content": "", "creation_timestamp": "2025-07-24T00:00:00.000000Z"}, {"uuid": "a09d62c6-10b0-4973-abd4-f5fdd422c33e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35235", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2025-07-27)", "content": "", "creation_timestamp": "2025-07-27T00:00:00.000000Z"}, {"uuid": "5ecff2bc-df61-4cb7-b1b4-36c29ba1cb45", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35235", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2025-08-11)", "content": "", "creation_timestamp": "2025-08-11T00:00:00.000000Z"}, {"uuid": "0f108e9a-27a4-4434-bcf1-21ffad164802", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35235", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-11-28)", "content": "", "creation_timestamp": "2025-11-28T00:00:00.000000Z"}, {"uuid": "530c6cfe-d1cf-4c93-a84a-3781afa170fe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35235", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2025-10-14)", "content": "", "creation_timestamp": "2025-10-14T00:00:00.000000Z"}, {"uuid": "00222621-cfb5-442d-be95-df1e74bde5f4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35235", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2025-11-01)", "content": "", "creation_timestamp": "2025-11-01T00:00:00.000000Z"}, {"uuid": "8413463f-fe39-4666-b1de-a8da28cfa97a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35235", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2025-08-17)", "content": "", "creation_timestamp": "2025-08-17T00:00:00.000000Z"}, {"uuid": "135a2532-c1f4-404c-9560-e7e4664236f9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35235", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2025-09-08)", "content": "", "creation_timestamp": "2025-09-08T00:00:00.000000Z"}, {"uuid": "0305624f-384d-4360-af9f-4bdde3a30751", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35234", "type": "seen", "source": "https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/wp_easy_wp_smtp.rb", "content": "", "creation_timestamp": "2020-12-18T22:18:46.000000Z"}, {"uuid": "9d28e73d-4308-466f-8489-54cef4d2fce0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35235", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-03-01)", "content": "", "creation_timestamp": "2026-03-01T00:00:00.000000Z"}, {"uuid": "9a0d69c7-8bd0-49aa-9fff-53ff286fe7d4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35235", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2025-12-20)", "content": "", "creation_timestamp": "2025-12-20T00:00:00.000000Z"}, {"uuid": "4584bc5f-2398-4ef1-9849-652965049aeb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35235", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2026-04-16)", "content": "", "creation_timestamp": "2026-04-16T00:00:00.000000Z"}, {"uuid": "92dd1c8c-faf5-4bb0-a30c-3718143fb94e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35233", "type": "seen", "source": "https://t.me/cibsecurity/24732", "content": "\u203c CVE-2020-35233 \u203c\n\nThe TFTP server fails to handle multiple connections on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices, and allows external attackers to force device reboots by sending concurrent connections, aka a denial of service attack.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-03-10T22:53:13.000000Z"}, {"uuid": "bc6f28b1-eae5-4b37-ac42-9fddb81166cc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35235", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-02-08)", "content": "", "creation_timestamp": "2026-02-08T00:00:00.000000Z"}, {"uuid": "91a64711-16b1-4ddc-8da0-255e35f78456", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35235", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-04-23)", "content": "", "creation_timestamp": "2026-04-23T00:00:00.000000Z"}, {"uuid": "ef670aad-737f-443c-9217-7035a67195ce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35230", "type": "seen", "source": "https://t.me/cibsecurity/24738", "content": "\u203c CVE-2020-35230 \u203c\n\nMultiple integer overflow parameters were found in the web administration panel on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices. Most of the integer parameters sent through the web server can be abused to cause a denial of service attack.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-03-10T22:53:19.000000Z"}, {"uuid": "e55a1a11-30f9-47d9-a678-34f51b58cb49", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35232", "type": "seen", "source": "https://t.me/cibsecurity/24737", "content": "\u203c CVE-2020-35232 \u203c\n\nThe TFTP firmware update mechanism on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices does not properly implement firmware validations, allowing remote attackers to write arbitrary data to internal memory.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-03-10T22:53:18.000000Z"}, {"uuid": "2c0f9653-c58a-41d4-8f33-c9587fa0ffa9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35231", "type": "seen", "source": "https://t.me/cibsecurity/24736", "content": "\u203c CVE-2020-35231 \u203c\n\nThe NSDP protocol implementation on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices was affected by an authentication issue that allows an attacker to bypass access controls and obtain full control of the device.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-03-10T22:53:17.000000Z"}, {"uuid": "7d49e121-abe4-4faf-b53d-087267db0511", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35230", "type": "seen", "source": "https://t.me/CyberSecurityTechnologies/2861", "content": "#Hardware_Security\nMultiple Vulnerabilities in Netgear ProSAFE Plus JGS516PE/GS116Ev2 Switches (PoCs)\nhttps://research.nccgroup.com/2021/03/08/technical-advisory-multiple-vulnerabilities-in-netgear-prosafe-plus-jgs516pe-gs116ev2-switches\n// - Unauthenticated RCE (CVE-2020-26919)\n- NSDP Auth Bypass (CVE-2020-35231)\n- Unauth Firmware Upd Mechanism (CVE-2020-35220)\n- TFTP Ineffective Firmware Checks (CVE-2020-35232)\n- Unauth BoF (CVE-2020-35224)\n- Insecure Password Hashing Mechanism (CVE-2020-35221)\n- Authentication Token Reuse (CVE-2020-35229)\n- Stored XSS in Language Settings (CVE-2020-35228)\n- Buffer Overflow in IP Source Params (CVE-2020-35227)\n- Unauthenticated Write Access to DHCP Configuration (CVE-2020-35226)\n- Unauthenticated Access to Switch Configuration Parameters (CVE-2020-35222)\n- TFTP Unexpected Behaviours (CVE-2020-35233)\n- Multiple Integer Overflow Instances (CVE-2020-35230)\n- Multiple Write Commands BoF (CVE-2020-35225)\n- Ineffective CSRF Protections (CVE-2020-35223)", "creation_timestamp": "2024-10-09T19:00:25.000000Z"}, {"uuid": "6de8db35-890e-4be5-a1c7-a1c4fb5004ef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35233", "type": "seen", "source": "https://t.me/CyberSecurityTechnologies/2861", "content": "#Hardware_Security\nMultiple Vulnerabilities in Netgear ProSAFE Plus JGS516PE/GS116Ev2 Switches (PoCs)\nhttps://research.nccgroup.com/2021/03/08/technical-advisory-multiple-vulnerabilities-in-netgear-prosafe-plus-jgs516pe-gs116ev2-switches\n// - Unauthenticated RCE (CVE-2020-26919)\n- NSDP Auth Bypass (CVE-2020-35231)\n- Unauth Firmware Upd Mechanism (CVE-2020-35220)\n- TFTP Ineffective Firmware Checks (CVE-2020-35232)\n- Unauth BoF (CVE-2020-35224)\n- Insecure Password Hashing Mechanism (CVE-2020-35221)\n- Authentication Token Reuse (CVE-2020-35229)\n- Stored XSS in Language Settings (CVE-2020-35228)\n- Buffer Overflow in IP Source Params (CVE-2020-35227)\n- Unauthenticated Write Access to DHCP Configuration (CVE-2020-35226)\n- Unauthenticated Access to Switch Configuration Parameters (CVE-2020-35222)\n- TFTP Unexpected Behaviours (CVE-2020-35233)\n- Multiple Integer Overflow Instances (CVE-2020-35230)\n- Multiple Write Commands BoF (CVE-2020-35225)\n- Ineffective CSRF Protections (CVE-2020-35223)", "creation_timestamp": "2024-10-09T19:00:25.000000Z"}, {"uuid": "7f710fd0-1795-42ce-89e0-6bf24426646a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35231", "type": "seen", "source": "https://t.me/CyberSecurityTechnologies/2861", "content": "#Hardware_Security\nMultiple Vulnerabilities in Netgear ProSAFE Plus JGS516PE/GS116Ev2 Switches (PoCs)\nhttps://research.nccgroup.com/2021/03/08/technical-advisory-multiple-vulnerabilities-in-netgear-prosafe-plus-jgs516pe-gs116ev2-switches\n// - Unauthenticated RCE (CVE-2020-26919)\n- NSDP Auth Bypass (CVE-2020-35231)\n- Unauth Firmware Upd Mechanism (CVE-2020-35220)\n- TFTP Ineffective Firmware Checks (CVE-2020-35232)\n- Unauth BoF (CVE-2020-35224)\n- Insecure Password Hashing Mechanism (CVE-2020-35221)\n- Authentication Token Reuse (CVE-2020-35229)\n- Stored XSS in Language Settings (CVE-2020-35228)\n- Buffer Overflow in IP Source Params (CVE-2020-35227)\n- Unauthenticated Write Access to DHCP Configuration (CVE-2020-35226)\n- Unauthenticated Access to Switch Configuration Parameters (CVE-2020-35222)\n- TFTP Unexpected Behaviours (CVE-2020-35233)\n- Multiple Integer Overflow Instances (CVE-2020-35230)\n- Multiple Write Commands BoF (CVE-2020-35225)\n- Ineffective CSRF Protections (CVE-2020-35223)", "creation_timestamp": "2024-10-09T19:00:25.000000Z"}, {"uuid": "44f3e723-06e0-4e17-92a1-3d6b223aa617", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35232", "type": "seen", "source": "https://t.me/CyberSecurityTechnologies/2861", "content": "#Hardware_Security\nMultiple Vulnerabilities in Netgear ProSAFE Plus JGS516PE/GS116Ev2 Switches (PoCs)\nhttps://research.nccgroup.com/2021/03/08/technical-advisory-multiple-vulnerabilities-in-netgear-prosafe-plus-jgs516pe-gs116ev2-switches\n// - Unauthenticated RCE (CVE-2020-26919)\n- NSDP Auth Bypass (CVE-2020-35231)\n- Unauth Firmware Upd Mechanism (CVE-2020-35220)\n- TFTP Ineffective Firmware Checks (CVE-2020-35232)\n- Unauth BoF (CVE-2020-35224)\n- Insecure Password Hashing Mechanism (CVE-2020-35221)\n- Authentication Token Reuse (CVE-2020-35229)\n- Stored XSS in Language Settings (CVE-2020-35228)\n- Buffer Overflow in IP Source Params (CVE-2020-35227)\n- Unauthenticated Write Access to DHCP Configuration (CVE-2020-35226)\n- Unauthenticated Access to Switch Configuration Parameters (CVE-2020-35222)\n- TFTP Unexpected Behaviours (CVE-2020-35233)\n- Multiple Integer Overflow Instances (CVE-2020-35230)\n- Multiple Write Commands BoF (CVE-2020-35225)\n- Ineffective CSRF Protections (CVE-2020-35223)", "creation_timestamp": "2024-10-09T19:00:25.000000Z"}]}