{"vulnerability": "CVE-2018-1257", "sightings": [{"uuid": "645ff8a0-9f13-4405-baa2-6373714dd6c9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2018-12572", "type": "seen", "source": "https://t.me/cibsecurity/3267", "content": "ATENTION\u203c New - CVE-2018-12572\n\nAvast Free Antivirus prior to 19.1.2360 stores user credentials in memory upon login, which allows local users to obtain sensitive information by dumping AvastUI.exe application memory and parsing the data.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2019-03-21T19:26:46.000000Z"}, {"uuid": "bf8a5c0e-7609-4081-80e8-4e3d038dcdb2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2018-12577", "type": "seen", "source": "https://t.me/cibsecurity/22651", "content": "\u203c CVE-2020-35576 \u203c\n\nA Command Injection issue in the traceroute feature on TP-Link TL-WR841N V13 (JP) with firmware versions prior to 201216 allows authenticated users to execute arbitrary code as root via shell metacharacters, a different vulnerability than CVE-2018-12577.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-01-26T20:49:27.000000Z"}]}