{"vulnerability": "cve-2019-1489", "sightings": [{"uuid": "4a29691d-3560-44f9-9973-42ca22d1e48b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2019-14899", "type": "seen", "source": "https://www.kyberturvallisuuskeskus.fi/fi/tcpip-toteutuksista-loydetty-haavoittuvuus-mahdollistaa-saamaan-tietoa-vpn-yhteyksien-tilasta-ja", "content": "", "creation_timestamp": "2019-12-16T13:54:00.000000Z"}, {"uuid": "f8164537-6377-4c87-9cda-23d0ed5f8c7a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2019-14899", "type": "seen", "source": "https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0316/", "content": "", "creation_timestamp": "2026-03-19T00:00:00.000000Z"}, {"uuid": "c463d860-0655-4b31-aa69-505c0201a2f3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-14899", "type": "seen", "source": "https://t.me/ctinow/18363", "content": "New Linux Bug Lets Attackers Hijack Encrypted VPN Connections A team of cybersecurity researchers has disclosed a new severe vulnerability affecting most Linux and Unix-like operating systems, including FreeBSD, OpenBSD, macOS, iOS, and Android, that could allow remote 'network adjacent attackers' to spy on and tamper with encrypted VPN connections.\n\nThe vulnerability, tracked as CVE-2019-14899, resides in the networking stacks of various operating systems", "creation_timestamp": "2019-12-06T12:07:14.000000Z"}, {"uuid": "c118702b-cfd6-44d6-916c-e15ba6d11162", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-14899", "type": "seen", "source": "https://t.me/ctinow/18348", "content": "Attacks exploiting CVE-2019-14899 work against OpenVPN, WireGuard, and IKEv2/IPSec, and the researchers are still testing their feasibility against Tor. http://twitter.com/BleepinComputer/status/1202682800203345920", "creation_timestamp": "2019-12-05T21:38:24.000000Z"}, {"uuid": "ddc5c76c-943c-40a6-b8e5-d807f1b96207", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-14895", "type": "seen", "source": "https://t.me/ctinow/200049", "content": "https://ift.tt/LIoK5vw\nCVE-2019-14895 | Linux Kernel up to 3.x/4.17.x Marvell Wifi Chip Driver heap-based overflow (RHSA-2020:0328)", "creation_timestamp": "2024-03-05T09:42:29.000000Z"}, {"uuid": "317e5c4b-d0e4-40df-9d93-73e0517c4eed", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-14896", "type": "seen", "source": "https://t.me/ctinow/195607", "content": "https://ift.tt/N14enIV\nCVE-2019-14896 | Linux Kernel Marvell Wifi Chip Driver cfg.c lbs_ibss_join_existing heap-based overflow (USN-4225-1)", "creation_timestamp": "2024-02-28T16:11:44.000000Z"}, {"uuid": "c9f22a35-74f8-4fd9-80d8-cabdaa1bd7eb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-14897", "type": "seen", "source": "https://t.me/ctinow/200050", "content": "https://ift.tt/p5D6yeK\nCVE-2019-14897 | Linux Kernel 2.6.32 Marvell Wifi Chip Driver stack-based overflow (ID 155879)", "creation_timestamp": "2024-03-05T09:42:30.000000Z"}, {"uuid": "485b4fef-c841-4749-b94d-7d7c649cf794", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-14891", "type": "seen", "source": "https://t.me/ctinow/194038", "content": "https://ift.tt/P3trQcw\nCVE-2019-14891 | cri-o Container cleanup", "creation_timestamp": "2024-02-27T07:11:22.000000Z"}, {"uuid": "765f8064-8ead-4b12-9017-973abfdeda49", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-14899", "type": "seen", "source": "https://t.me/thehackernews/553", "content": "Important \ud83d\udc49 A new unpatched #vulnerability (CVE-2019-14899) could let network attackers hijack encrypted VPN connections.\n\nMost Linux and Unix-like operating systems are vulnerable, including Ubuntu, Debian, OpenBSD, macOS, iOS, and Android.\n\nhttps://thehackernews.com/2019/12/linux-vpn-hacking.html", "creation_timestamp": "2019-12-09T08:19:50.000000Z"}, {"uuid": "75ae0419-73c1-4185-ae9c-0d17c30e6176", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-14892", "type": "seen", "source": "https://t.me/cibsecurity/10219", "content": "ATENTION\u203c New - CVE-2019-14892\n\nA flaw was discovered in jackson-databind in versions before 2.9.10, 2.8.11.5 and 2.6.7.3, where it would permit polymorphic deserialization of a malicious object using commons-configuration 1 and 2 JNDI classes. An attacker could use this flaw to execute arbitrary code.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-03-02T20:53:03.000000Z"}, {"uuid": "a2d55fda-fd22-462f-b8df-b74150109a0a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-14899", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/464", "content": "#exploit\n1. Apache Solr RCE via Velocity template\nhttps://github.com/jas502n/solr_rce\n\n2. CVE-2019-14899:\nInferring and hijacking VPN-tunneled TCP connections\nhttps://seclists.org/oss-sec/2019/q4/122", "creation_timestamp": "2024-10-11T22:10:25.000000Z"}, {"uuid": "24de0f54-ed21-4a0b-9819-a90bc8f39115", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-14898", "type": "seen", "source": "https://t.me/cibsecurity/11946", "content": "ATENTION\u203c New - CVE-2019-14898\n\nThe fix for CVE-2019-11599, affecting the Linux kernel before 5.0.10 was not complete. A local user could use this flaw to obtain sensitive information, cause a denial of service, or possibly have other unspecified impacts by triggering a race condition with mmget_not_zero or get_task_mm calls.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-05-08T18:36:05.000000Z"}, {"uuid": "0d671c51-7c20-46d2-a1fe-a9ec5827c5b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-14894", "type": "seen", "source": "https://t.me/cibsecurity/13034", "content": "ATENTION\u203c New - CVE-2019-14894\n\nA flaw was found in the CloudForms management engine version 5.10 and CloudForms management version 5.11, which triggered remote code execution through NFS schedule backup. An attacker logged into the management console could use this flaw to execute arbitrary shell commands on the CloudForms server as root.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-06-25T07:55:42.000000Z"}]}