{"vulnerability": "cve-2020-1167", "sightings": [{"uuid": "424ac990-3323-4548-9f0c-62ae9c4f1cb8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-11679", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/1227", "content": "#exploit\n1. CVE-2020-7030:\nAvaya IP Office ver.9.1.8.0-11 - Insecure transit vulnerability that allows for password disclosure\nhttps://packetstormsecurity.com/files/157957/Avaya-IP-Office-11-Insecure-Transit-Password-Disclosure.html\n\n2. CVE-2020-11679,\nCVE-2020-11680,\nCVE-2020-11681:\nCastel NextGen Digital Video Recorder ver.1.0 - Authorization Bypass/Credential disclosure/CSRF\nhttps://www.securitymetrics.com/blog/attackers-known-unknown-authorization-bypass\n]-> PoC: https://packetstormsecurity.com/files/157954/Castel-NextGen-DVR-1.0.0-Bypass-CSRF-Disclosure.html", "creation_timestamp": "2024-10-28T14:39:24.000000Z"}]}