{"vulnerability": "CVE-2019-1238", "sightings": [{"uuid": "f4d1e02b-f759-47d4-9215-87ed66ae92b8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-12384", "type": "seen", "source": "https://t.me/arpsyndicate/198", "content": "#ExploitObserverAlert\n\nCVE-2019-12384\n\nDESCRIPTION: Exploit Observer has 70 entries related to CVE-2019-12384. FasterXML jackson-databind 2.x before 2.9.9.1 might allow attackers to have a variety of impacts by leveraging failure to block the logback-core class from polymorphic deserialization. Depending on the classpath content, remote code execution may be possible.\n\nFIRST-EPSS: 0.368590000\nNVD-IS: 3.6\nNVD-ES: 2.2", "creation_timestamp": "2023-11-17T04:22:02.000000Z"}, {"uuid": "b281baba-a956-4280-bb93-58491a7a62ef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-12389", "type": "seen", "source": "https://t.me/cibsecurity/8442", "content": "ATENTION\u203c New - CVE-2019-12389\n\nAnviz access control devices expose credentials (names and passwords) by allowing remote attackers to query this information without credentials via port tcp/5010.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2019-12-03T16:02:49.000000Z"}, {"uuid": "aac31e8e-ca81-43a5-ba18-fb40eaab250b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-12388", "type": "seen", "source": "https://t.me/cibsecurity/8443", "content": "ATENTION\u203c New - CVE-2019-12388\n\nAnviz access control devices perform cleartext transmission of sensitive information (passwords/pins and names) when replying to query on port tcp/5010.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2019-12-03T16:02:50.000000Z"}, {"uuid": "330558b7-5f25-4663-a751-e88915b6868f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-12388", "type": "seen", "source": "https://t.me/ctinow/200026", "content": "https://ift.tt/ilh9x6b\nCVE-2019-12388 | Anviz Access Control Service Port 5010 information disclosure", "creation_timestamp": "2024-03-05T09:12:20.000000Z"}]}