{"vulnerability": "CVE-2020-0911", "sightings": [{"uuid": "e6815928-f877-4197-943d-c42b448e382e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-0911", "type": "seen", "source": "MISP/853d7bf0-0dde-4411-932c-73676b789a57", "content": "", "creation_timestamp": "2023-10-10T10:24:58.000000Z"}, {"uuid": "7a5574e9-4291-4a65-a154-33c2f982a4a4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-0911", "type": "seen", "source": "https://t.me/TopCyberTechNews/354", "content": "Top Security News for 07/07/2023\n\nResearchers Uncover New Linux Kernel 'StackRot' Privilege Escalation Vulnerability\nhttps://thehackernews.com/2023/07/researchers-uncover-new-linux-kernel.html \n\nTwo Stories for \"What is CHERI?\"\nhttps://www.reddit.com/r/netsec/comments/14s3ibm/two_stories_for_what_is_cheri/ \n\nMethods of countering disinformation. False personae with traction. Disinformation in Russia's hybrid war.\nhttps://thecyberwire.com/newsletters/disinformation-briefing/5/27 \n\nIranian Hackers' Sophisticated Malware Targets Windows and macOS Users\nhttps://thehackernews.com/2023/07/iranian-hackers-sophisticated-malware.html \n\nThreads' Instagram 'Trap' Shows Why Facebook Should Have Been Broken Up Years Ago\nhttps://www.vice.com/en_us/article/bvjvb5/threads-instagram-trap-shows-why-facebook-should-have-been-broken-up-years-ago \n\nWindows Installer arbitrary content manipulation Elevation of Privilege (CVE-2020-0911)\nhttps://www.reddit.com/r/netsec/comments/14saj80/windows_installer_arbitrary_content_manipulation/ \n\nSilentbob Campaign: Cloud-Native Environments Under Attack\nhttps://thehackernews.com/2023/07/silentbob-campaign-cloud-native.html \n\nBackdooring NPM Modules via Hijacking S3 Buckets\nhttps://www.reddit.com/r/netsec/comments/14rxqlr/backdooring_npm_modules_via_hijacking_s3_buckets/ \n\nSurviving the 800 Gbps Storm: Gain Insights from Gcore's 2023 DDoS Attack Statistics\nhttps://thehackernews.com/2023/07/surviving-800-gbps-storm-gain-insights.html \n\nBeware of the Growing Scourge of Job Recruitment Scams\nhttps://securityintelligence.com/articles/beware-the-growing-scourge-of-job-recruitment-scams/ \n\n    \nFollow Top Cyber News at https://t.me/TopCyberTechNews\nFeel free to DM me at https://twitter.com/ShayaFeedman", "creation_timestamp": "2023-07-07T07:00:04.000000Z"}, {"uuid": "7681dc67-41f9-4538-8e0d-bae7305d932a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-0911", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/8634", "content": "#exploit\n1. CVE-2023-31248:\nLinux Kernel nftables UAF LPE\nhttps://github.com/kungfulon/nf-tables-lpe\n\n2. CVE-2023-30990:\nUnauthenticated RCE in IBM i DDM Service\nhttps://blog.silentsignal.eu/2023/07/03/ibm-i-dde-vulnerability-cve-2023-30990\n\n3. CVE-2020-0911:\nWindows Installer arbitrary content manipulation EoP\nhttps://offsec.almond.consulting/windows-msiexec-eop-cve-2020-0911.html", "creation_timestamp": "2024-10-31T15:27:49.000000Z"}]}