{"vulnerability": "cve-2020-25010", "sightings": [{"uuid": "f005e4e7-8b07-45d6-8e40-08633bff72fe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-25010", "type": "seen", "source": "https://t.me/cibsecurity/20983", "content": "\u203c CVE-2020-25010 \u203c\n\nAn arbitrary code execution vulnerability in Kyland KPS2204 6 Port Managed Din-Rail Programmable Serial Device Servers Software Version:R0002.P05 allows remote attackers to upload a malicious script file by constructing a POST type request and writing a payload in the request parameters as an instruction to write a file.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-17T07:42:33.000000Z"}]}