{"vulnerability": "cve-2020-3560", "sightings": [{"uuid": "6888549d-7216-44b3-9538-bdc46dc5d011", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35606", "type": "exploited", "source": "https://www.exploit-db.com/exploits/49318", "content": "", "creation_timestamp": "2020-12-22T00:00:00.000000Z"}, {"uuid": "691fd831-115b-4881-b402-b4d5768a4f6a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35606", "type": "seen", "source": "MISP/c62b3104-3a17-4854-9db7-694bf7795c10", "content": "", "creation_timestamp": "2024-11-14T06:07:39.000000Z"}, {"uuid": "e0a05566-8359-4bc6-bb78-c9cc7e2fc443", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35604", "type": "seen", "source": "https://t.me/cibsecurity/21136", "content": "\u203c CVE-2020-35604 \u203c\n\nAn XXE attack can occur in Kronos WebTA 5.0.4 when SAML is used.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-21T22:52:13.000000Z"}, {"uuid": "b59a45a9-0f66-458b-9d90-20ac2ec2628b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35606", "type": "seen", "source": "https://t.me/cibsecurity/21140", "content": "\u203c CVE-2020-35606 \u203c\n\nArbitrary command execution can occur in Webmin through 1.962. Any user authorized for the Package Updates module can execute arbitrary commands with root privileges via vectors involving %0A and %0C. NOTE: this issue exists because of an incomplete fix for CVE-2019-12840.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-21T22:52:17.000000Z"}, {"uuid": "a9d84e83-f8f3-4f10-8d44-766efc7e1cb8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35605", "type": "seen", "source": "https://t.me/cibsecurity/21138", "content": "\u203c CVE-2020-35605 \u203c\n\nThe Graphics Protocol feature in graphics.c in kitty before 0.19.3 allows remote attackers to execute arbitrary code because a filename containing special characters can be included in an error message.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-21T22:52:15.000000Z"}, {"uuid": "a71ce13f-a578-431b-af19-ad21e2913ce7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35606", "type": "seen", "source": "https://t.me/CyberSecurityTechnologies/2350", "content": "#Threat_Research\n1. CVE-2020-35606 - Arbitrary Command Execution Vulnerability in Webmin\n// This vulnerability is bypassing the measure taken for CVE-2019-12840 and converting it into a new vector\nhttps://www.pentest.com.tr/exploits/Webmin-1962-PU-Escape-Bypass-Remote-Command-Execution.html\n2. SUNBURST, TEARDROP and the NetSec New Normal\nhttps://research.checkpoint.com/2020/sunburst-teardrop-and-the-netsec-new-normal\n3. CyRC analysis: Authentication bypass vulnerability in Java Bouncy Castle (PoC for CVE-2020-28052)\nhttps://www.synopsys.com/blogs/software-security/cve-2020-28052-bouncy-castle", "creation_timestamp": "2020-12-31T18:30:13.000000Z"}, {"uuid": "6417caae-d7ba-4248-8450-2e9491534ffa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35608", "type": "seen", "source": "https://t.me/cibsecurity/21184", "content": "\u203c CVE-2020-35608 \u203c\n\nA code execution vulnerability exists in the normal world\u00e2\u20ac\u2122s signed code execution functionality of Microsoft Azure Sphere 20.07. A specially crafted AF_PACKET socket can cause a process to create an executable memory mapping with controllable content. An attacker can execute a shellcode that uses the PACKET_MMAP functionality to trigger this vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-22T22:53:18.000000Z"}, {"uuid": "1ed81382-52b7-4c91-8373-adda19d9c12a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35609", "type": "seen", "source": "https://t.me/cibsecurity/21183", "content": "\u203c CVE-2020-35609 \u203c\n\nA denial-of-service vulnerability exists in the asynchronous ioctl functionality of Microsoft Azure Sphere 20.05. A sequence of specially crafted ioctl calls can cause a denial of service. An attacker can write shellcode to trigger this vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-22T22:53:17.000000Z"}]}