{"vulnerability": "cve-2019-1686", "sightings": [{"uuid": "d29398cd-2977-4285-9b54-d0a302c8a61b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-16863", "type": "seen", "source": "https://t.me/thehackernews/531", "content": "\u26a0\ufe0f TPM-Fail(ed)\n\nNew potentially serious CPU vulnerabilities could allow attackers to retrieve cryptographic keys protected inside TPM chips manufactured by STMicroelectronics or firmware-based #Intel TPMs.\n\nRead more: https://thehackernews.com/2019/11/tpm-encryption-keys-hacking.html\n\n\u27a1\ufe0f CVE-2019-11090\n\u27a1\ufe0f CVE-2019-16863", "creation_timestamp": "2019-11-13T16:55:37.000000Z"}, {"uuid": "f2b9685d-8ca1-4a3e-a9fe-49568d66f886", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-16863", "type": "seen", "source": "https://t.me/InternetInfection/1581", "content": "\u26a0\ufe0f TPM-Fail(ed)\n\nNew potentially serious CPU vulnerabilities could allow attackers to retrieve cryptographic keys protected inside TPM chips manufactured by STMicroelectronics or firmware-based #Intel TPMs.\n\nRead more: https://thehackernews.com/2019/11/tpm-encryption-keys-hacking.html\n\n\u27a1\ufe0f CVE-2019-11090\n\u27a1\ufe0f CVE-2019-16863\n\n\ud83e\udddf\u200d\u2642 @InternetInfection \ud83e\udddf\u200d\u2642", "creation_timestamp": "2019-11-15T07:58:13.000000Z"}, {"uuid": "ac5fbfa3-2dfe-4641-85cd-0511e14deb91", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-16863", "type": "seen", "source": "https://t.me/ctinow/188488", "content": "https://ift.tt/wYhb8rA\nCVE-2019-16863 | STMicroelectronics ST33TPHF2ESPI TPM Private Key TPM-Fail risky encryption (K32412503)", "creation_timestamp": "2024-02-20T13:51:17.000000Z"}, {"uuid": "99c2ae37-6e29-40af-8f7c-de5453ed4ed7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-16864", "type": "seen", "source": "https://t.me/cibsecurity/37442", "content": "\u203c CVE-2019-16864 \u203c\n\nCompleteFTPService.exe in the server in EnterpriseDT CompleteFTP before 12.1.4 allows Remote Code Execution by leveraging a Windows user account that has SSH access. The exec command is always run as SYSTEM.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-14T22:33:00.000000Z"}, {"uuid": "a3319444-22ae-417e-92b0-d051717aec6a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-16869", "type": "seen", "source": "https://t.me/cveNotify/460", "content": "\ud83d\udea8 CVE-2020-7238\nNetty 4.1.43.Final allows HTTP Request Smuggling because it mishandles Transfer-Encoding whitespace (such as a [space]Transfer-Encoding:chunked line) and a later Content-Length header. This issue exists because of an incomplete fix for CVE-2019-16869.\n\n\ud83c\udf96@cveNotify", "creation_timestamp": "2020-01-27T21:37:54.000000Z"}]}