{"vulnerability": "CVE-2020-1206", "sightings": [{"uuid": "0f494310-17a7-4f26-b491-a3a051be55b6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2020-1206", "type": "seen", "source": "https://gist.github.com/Cur10s1tyByt3/050c04a0b2a3f4fb4121e1cbae24f70e", "content": "", "creation_timestamp": "2025-01-29T12:59:52.000000Z"}, {"uuid": "5e52ece7-4934-498b-a58c-df7b0e6ad9b8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-12067", "type": "seen", "source": "https://t.me/cibsecurity/55369", "content": "\u203c CVE-2020-12067 \u203c\n\nIn Pilz PMC programming tool 3.x before 3.5.17 (based on CODESYS Development System), a user's password may be changed by an attacker without knowledge of the current password.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-26T22:41:03.000000Z"}, {"uuid": "d34b26ec-0f22-453a-a368-3f288438536b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2020-1206", "type": "seen", "source": "https://www.govcert.gov.hk/en/alerts_detail.php?id=485", "content": "", "creation_timestamp": "2020-06-10T04:00:00.000000Z"}, {"uuid": "a9d832ad-5864-48d0-85ed-394ba92138a4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2020-12067", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-26-076-01", "content": "", "creation_timestamp": "2026-03-17T12:00:00.000000Z"}, {"uuid": "15058629-e0dc-4b92-8a7b-4e652e9fca53", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2020-12068", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-26-076-01", "content": "", "creation_timestamp": "2026-03-17T12:00:00.000000Z"}, {"uuid": "1d3f71a1-1ae7-4166-bb0e-cb9d89066b10", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2020-12069", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-26-076-01", "content": "", "creation_timestamp": "2026-03-17T12:00:00.000000Z"}, {"uuid": "20a78485-0916-4407-ba0f-8ea8d7fba585", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-1206", "type": "seen", "source": "https://t.me/cKure/849", "content": "\u25a0\u25a0\u25a0\u25a0\u25a0 #Zeroday: CVE-2020-1206 dubbed SMBleed results in Kernel memory leak in Microsoft Windows OS. \n\nhttps://thehackernews.com/2020/06/SMBleed-smb-vulnerability.html", "creation_timestamp": "2020-06-09T21:32:33.000000Z"}, {"uuid": "45204f4f-7814-42d6-9894-93458e98adfc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-12062", "type": "published-proof-of-concept", "source": "https://t.me/MalaysiaHacktivistz/2968", "content": "https://vulners.com/githubexploit/F0979183-AE88-53B4-86CF-3AF0523F3807 *EXPLOIT* | CVE-2020-12062 7.5 https://vulners.com/cve/CVE-2020-12062 | 1337DAY-ID-26576 7.5 https://vulners.com/zdt/1337DAY-ID-26576*EXPLOIT* | CVE-2021-28041 7.1 https://vulners.com/cve/CVE-2021-28041 | CVE-2021-41617 7.0 https://vulners.com/cve/CVE-2021-41617 | PACKETSTORM:189283 6.8 https://vulners.com/packetstorm/PACKETSTORM:189283 *EXPLOIT* | F79E574D-30C8-5C52-A801-66FFA0610BAA 6.8 https://vulners.com/githubexploit/F79E574D-30C8-5C52-A801-66FFA0610BAA *EXPLOIT* | CVE-2025-26465 6.8 https://vulners.com/cve/CVE-2025-26465 | C94132FD-1FA5-5342-B6EE-0DAF45EEFFE3 6.8 https://vulners.com/githubexploit/C94132FD-1FA5-5342-B6EE-0DAF45EEFFE3 *EXPLOIT* | 1337DAY-ID-39918 6.8 https://vulners.com/zdt/1337DAY-ID-39918*EXPLOIT* | 10213DBE-F683-58BB-B6D3-353173626207 6.8 https://vulners.com/githubexploit/10213DBE-F683-58BB-B6D3-353173626207 *EXPLOIT* | CVE-2023-51385 6.5 https://vulners.com/cve/CVE-2023-51385 | CVE-2023-48795 5.9 https://vulners.com/cve/CVE-2023-48795 | CVE-2020-14145 5.9 https://vulners.com/cve/CVE-2020-14145 | 54E1BB01-2C69-5AFD-A23D-9783C9D9FC4C 5.9 https://vulners.com/githubexploit/54E1BB01-2C69-5AFD-A23D-9783C9D9FC4C *EXPLOIT* | CVE-2016-20012 5.3 https://vulners.com/cve/CVE-2016-20012 | CVE-2021-36368 3.7 https://vulners.com/cve/CVE-2021-36368 |_ PACKETSTORM:140261 0.0 https://vulners.com/packetstorm/PACKETSTORM:140261 *EXPLOIT* Service Info: OS: Linux; CPE: cpe:/o:linux:linux_kernel Final times for host: srtt: 214350 rttvar: 214350 to: 300000 Nmap scan report for static.246.140.201.138.clients.your-server.de (138.201.140.246) Host is up, received user-set (0.22s latency). Scanned at 2025-04-01 14:37:41 +08 for 166s PORT STATE SERVICE REASON VERSION 22/tcp closed ssh conn-refused Final times for host: srtt: 224679 rttvar: 224679 to: 300000 Nmap scan report for static.247.140.201.138.clients.your-server.de (138.201.140.247) Host is up, received user-set (0.23s latency). Scanned at 2025-04-01 14:37:41 +08 for 186s PORT STATE SERVICE REASON VERSION 22/tcp open ssh syn-ack OpenSSH 9.2p1 Debian 2+deb12u3 (protocol 2.0) | vulners: | cpe:/a:openbsd:openssh:9.2p1: | 2C119FFA-ECE0-5E14-A4A4-354A2C38071A 10.0 https://vulners.com/githubexploit/2C119FFA-ECE0-5E14-A4A4-354A2C38071A *EXPLOIT* | CVE-2023-38408 9.8 https://vulners.com/cve/CVE-2023-38408 | CVE-2023-28531 9.8 https://vulners.com/cve/CVE-2023-28531 | B8190CDB-3EB9-5631-9828-8064A1575B23 9.8 https://vulners.com/githubexploit/B8190CDB-3EB9-5631-9828-8064A1575B23 *EXPLOIT* | 8FC9C5AB-3968-5F3C-825E-E8DB5379A623 9.8 https://vulners.com/githubexploit/8FC9C5AB-3968-5F3C-825E-E8DB5379A623 *EXPLOIT* | 8AD01159-548E-546E-AA87-2DE89F3927EC 9.8 https://vulners.com/githubexploit/8AD01159-548E-546E-AA87-2DE89F3927EC *EXPLOIT* | 5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A 9.8 https://vulners.com/githubexploit/5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A *EXPLOIT* |", "creation_timestamp": "2025-04-01T08:49:51.000000Z"}, {"uuid": "85bfd19c-fca1-4e7d-bbe6-c7a8bbd46327", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-12062", "type": "published-proof-of-concept", "source": "https://t.me/MalaysiaHacktivistz/2966", "content": "*EXPLOIT* | SSV:92579 7.5 https://vulners.com/seebug/SSV:92579 *EXPLOIT* | PACKETSTORM:173661 7.5 https://vulners.com/packetstorm/PACKETSTORM:173661 *EXPLOIT* | F0979183-AE88-53B4-86CF-3AF0523F3807 7.5 https://vulners.com/githubexploit/F0979183-AE88-53B4-86CF-3AF0523F3807 *EXPLOIT* | 1337DAY-ID-26576 7.5 https://vulners.com/zdt/1337DAY-ID-26576*EXPLOIT* | PACKETSTORM:189283 6.8 https://vulners.com/packetstorm/PACKETSTORM:189283 *EXPLOIT* | F79E574D-30C8-5C52-A801-66FFA0610BAA 6.8 https://vulners.com/githubexploit/F79E574D-30C8-5C52-A801-66FFA0610BAA *EXPLOIT* | CVE-2025-26465 6.8 https://vulners.com/cve/CVE-2025-26465 | 1337DAY-ID-39918 6.8 https://vulners.com/zdt/1337DAY-ID-39918*EXPLOIT* | CVE-2023-51385 6.5 https://vulners.com/cve/CVE-2023-51385 | CVE-2023-48795 5.9 https://vulners.com/cve/CVE-2023-48795 | 54E1BB01-2C69-5AFD-A23D-9783C9D9FC4C 5.9 https://vulners.com/githubexploit/54E1BB01-2C69-5AFD-A23D-9783C9D9FC4C *EXPLOIT* | CVE-2023-51384 5.5 https://vulners.com/cve/CVE-2023-51384 | PACKETSTORM:140261 0.0 https://vulners.com/packetstorm/PACKETSTORM:140261 *EXPLOIT* | 5C971D4B-2DD3-5894-9EC2-DAB952B4740D 0.0 https://vulners.com/githubexploit/5C971D4B-2DD3-5894-9EC2-DAB952B4740D *EXPLOIT* |_ 39E70D1A-F5D8-59D5-A0CF-E73D9BAA3118 0.0 https://vulners.com/githubexploit/39E70D1A-F5D8-59D5-A0CF-E73D9BAA3118 *EXPLOIT* Service Info: OS: Linux; CPE: cpe:/o:linux:linux_kernel Final times for host: srtt: 229364 rttvar: 229364 to: 300000 Nmap scan report for static.243.140.201.138.clients.your-server.de (138.201.140.243) Host is up, received user-set (0.22s latency). Scanned at 2025-04-01 14:37:41 +08 for 186s PORT STATE SERVICE REASON VERSION 22/tcp open ssh syn-ack OpenSSH 8.2p1 Ubuntu 4ubuntu0.3 (Ubuntu Linux; protocol 2.0) | vulners: | cpe:/a:openbsd:openssh:8.2p1: | CVE-2023-38408 9.8 https://vulners.com/cve/CVE-2023-38408 | B8190CDB-3EB9-5631-9828-8064A1575B23 9.8 https://vulners.com/githubexploit/B8190CDB-3EB9-5631-9828-8064A1575B23 *EXPLOIT* | 8FC9C5AB-3968-5F3C-825E-E8DB5379A623 9.8 https://vulners.com/githubexploit/8FC9C5AB-3968-5F3C-825E-E8DB5379A623 *EXPLOIT* | 8AD01159-548E-546E-AA87-2DE89F3927EC 9.8 https://vulners.com/githubexploit/8AD01159-548E-546E-AA87-2DE89F3927EC *EXPLOIT* | 5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A 9.8 https://vulners.com/githubexploit/5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A *EXPLOIT* | 0221525F-07F5-5790-912D-F4B9E2D1B587 9.8 https://vulners.com/githubexploit/0221525F-07F5-5790-912D-F4B9E2D1B587 *EXPLOIT* | CVE-2020-15778 7.8 https://vulners.com/cve/CVE-2020-15778 | SSV:92579 7.5 https://vulners.com/seebug/SSV:92579 *EXPLOIT* | PACKETSTORM:173661 7.5 https://vulners.com/packetstorm/PACKETSTORM:173661 *EXPLOIT* | F0979183-AE88-53B4-86CF-3AF0523F3807 7.5 https://vulners.com/githubexploit/F0979183-AE88-53B4-86CF-3AF0523F3807 *EXPLOIT* | CVE-2020-12062 7.5 https://vulners.com/cve/CVE-2020-12062 | 1337DAY-ID-26576 7.5 https://vulners.com/zdt/1337DAY-ID-26576*EXPLOIT* |", "creation_timestamp": "2025-04-01T08:49:51.000000Z"}, {"uuid": "f1647248-747f-4c11-a755-5e93905e1e74", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-12069", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/11651", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2020-12069\n\ud83d\udd25 CVSS Score: 7.8 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: In CODESYS V3 products in all versions prior V3.5.16.0 containing the CmpUserMgr, the CODESYS Control runtime system stores the online communication passwords using a weak hashing algorithm. This can be used by a local attacker with low privileges to gain full control of the device.\n\ud83d\udccf Published: 2022-12-26T00:00:00.000Z\n\ud83d\udccf Modified: 2025-04-14T16:17:54.368Z\n\ud83d\udd17 References:\n1. https://customers.codesys.com/index.php?eID=dumpFile&t=f&f=12943&token=d097958a67ba382de688916f77e3013c0802fade&download=\n2. https://cert.vde.com/en/advisories/VDE-2021-061/\n3. https://cert.vde.com/en/advisories/VDE-2022-031/\n4. https://cert.vde.com/en/advisories/VDE-2022-022/", "creation_timestamp": "2025-04-14T16:53:46.000000Z"}, {"uuid": "e0e36d42-1f7e-472c-905d-2bf43944e88c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-12067", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/11650", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2020-12067\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: In Pilz PMC programming tool 3.x before 3.5.17 (based on CODESYS Development System), a user's password may be changed by an attacker without knowledge of the current password.\n\ud83d\udccf Published: 2022-12-26T00:00:00.000Z\n\ud83d\udccf Modified: 2025-04-14T16:18:59.304Z\n\ud83d\udd17 References:\n1. https://cert.vde.com/en/advisories/VDE-2021-061/", "creation_timestamp": "2025-04-14T16:53:46.000000Z"}, {"uuid": "13bed77d-7b5e-4182-88d4-dd8effc69e09", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-12062", "type": "published-proof-of-concept", "source": "https://t.me/MalaysiaHacktivistz/10579", "content": "*EXPLOIT* | SSV:92579 7.5 https://vulners.com/seebug/SSV:92579 *EXPLOIT* | PACKETSTORM:173661 7.5 https://vulners.com/packetstorm/PACKETSTORM:173661 *EXPLOIT* | F0979183-AE88-53B4-86CF-3AF0523F3807 7.5 https://vulners.com/githubexploit/F0979183-AE88-53B4-86CF-3AF0523F3807 *EXPLOIT* | 1337DAY-ID-26576 7.5 https://vulners.com/zdt/1337DAY-ID-26576*EXPLOIT* | PACKETSTORM:189283 6.8 https://vulners.com/packetstorm/PACKETSTORM:189283 *EXPLOIT* | F79E574D-30C8-5C52-A801-66FFA0610BAA 6.8 https://vulners.com/githubexploit/F79E574D-30C8-5C52-A801-66FFA0610BAA *EXPLOIT* | CVE-2025-26465 6.8 https://vulners.com/cve/CVE-2025-26465 | 1337DAY-ID-39918 6.8 https://vulners.com/zdt/1337DAY-ID-39918*EXPLOIT* | CVE-2023-51385 6.5 https://vulners.com/cve/CVE-2023-51385 | CVE-2023-48795 5.9 https://vulners.com/cve/CVE-2023-48795 | 54E1BB01-2C69-5AFD-A23D-9783C9D9FC4C 5.9 https://vulners.com/githubexploit/54E1BB01-2C69-5AFD-A23D-9783C9D9FC4C *EXPLOIT* | CVE-2023-51384 5.5 https://vulners.com/cve/CVE-2023-51384 | PACKETSTORM:140261 0.0 https://vulners.com/packetstorm/PACKETSTORM:140261 *EXPLOIT* | 5C971D4B-2DD3-5894-9EC2-DAB952B4740D 0.0 https://vulners.com/githubexploit/5C971D4B-2DD3-5894-9EC2-DAB952B4740D *EXPLOIT* |_ 39E70D1A-F5D8-59D5-A0CF-E73D9BAA3118 0.0 https://vulners.com/githubexploit/39E70D1A-F5D8-59D5-A0CF-E73D9BAA3118 *EXPLOIT* Service Info: OS: Linux; CPE: cpe:/o:linux:linux_kernel Final times for host: srtt: 229364 rttvar: 229364 to: 300000 Nmap scan report for static.243.140.201.138.clients.your-server.de (138.201.140.243) Host is up, received user-set (0.22s latency). Scanned at 2025-04-01 14:37:41 +08 for 186s PORT STATE SERVICE REASON VERSION 22/tcp open ssh syn-ack OpenSSH 8.2p1 Ubuntu 4ubuntu0.3 (Ubuntu Linux; protocol 2.0) | vulners: | cpe:/a:openbsd:openssh:8.2p1: | CVE-2023-38408 9.8 https://vulners.com/cve/CVE-2023-38408 | B8190CDB-3EB9-5631-9828-8064A1575B23 9.8 https://vulners.com/githubexploit/B8190CDB-3EB9-5631-9828-8064A1575B23 *EXPLOIT* | 8FC9C5AB-3968-5F3C-825E-E8DB5379A623 9.8 https://vulners.com/githubexploit/8FC9C5AB-3968-5F3C-825E-E8DB5379A623 *EXPLOIT* | 8AD01159-548E-546E-AA87-2DE89F3927EC 9.8 https://vulners.com/githubexploit/8AD01159-548E-546E-AA87-2DE89F3927EC *EXPLOIT* | 5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A 9.8 https://vulners.com/githubexploit/5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A *EXPLOIT* | 0221525F-07F5-5790-912D-F4B9E2D1B587 9.8 https://vulners.com/githubexploit/0221525F-07F5-5790-912D-F4B9E2D1B587 *EXPLOIT* | CVE-2020-15778 7.8 https://vulners.com/cve/CVE-2020-15778 | SSV:92579 7.5 https://vulners.com/seebug/SSV:92579 *EXPLOIT* | PACKETSTORM:173661 7.5 https://vulners.com/packetstorm/PACKETSTORM:173661 *EXPLOIT* | F0979183-AE88-53B4-86CF-3AF0523F3807 7.5 https://vulners.com/githubexploit/F0979183-AE88-53B4-86CF-3AF0523F3807 *EXPLOIT* | CVE-2020-12062 7.5 https://vulners.com/cve/CVE-2020-12062 | 1337DAY-ID-26576 7.5 https://vulners.com/zdt/1337DAY-ID-26576*EXPLOIT* |", "creation_timestamp": "2025-04-01T08:49:50.000000Z"}, {"uuid": "b6495102-0938-4526-ac21-c9f165b7a57f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-12062", "type": "published-proof-of-concept", "source": "https://t.me/MalaysiaHacktivistz/10581", "content": "https://vulners.com/githubexploit/F0979183-AE88-53B4-86CF-3AF0523F3807 *EXPLOIT* | CVE-2020-12062 7.5 https://vulners.com/cve/CVE-2020-12062 | 1337DAY-ID-26576 7.5 https://vulners.com/zdt/1337DAY-ID-26576*EXPLOIT* | CVE-2021-28041 7.1 https://vulners.com/cve/CVE-2021-28041 | CVE-2021-41617 7.0 https://vulners.com/cve/CVE-2021-41617 | PACKETSTORM:189283 6.8 https://vulners.com/packetstorm/PACKETSTORM:189283 *EXPLOIT* | F79E574D-30C8-5C52-A801-66FFA0610BAA 6.8 https://vulners.com/githubexploit/F79E574D-30C8-5C52-A801-66FFA0610BAA *EXPLOIT* | CVE-2025-26465 6.8 https://vulners.com/cve/CVE-2025-26465 | C94132FD-1FA5-5342-B6EE-0DAF45EEFFE3 6.8 https://vulners.com/githubexploit/C94132FD-1FA5-5342-B6EE-0DAF45EEFFE3 *EXPLOIT* | 1337DAY-ID-39918 6.8 https://vulners.com/zdt/1337DAY-ID-39918*EXPLOIT* | 10213DBE-F683-58BB-B6D3-353173626207 6.8 https://vulners.com/githubexploit/10213DBE-F683-58BB-B6D3-353173626207 *EXPLOIT* | CVE-2023-51385 6.5 https://vulners.com/cve/CVE-2023-51385 | CVE-2023-48795 5.9 https://vulners.com/cve/CVE-2023-48795 | CVE-2020-14145 5.9 https://vulners.com/cve/CVE-2020-14145 | 54E1BB01-2C69-5AFD-A23D-9783C9D9FC4C 5.9 https://vulners.com/githubexploit/54E1BB01-2C69-5AFD-A23D-9783C9D9FC4C *EXPLOIT* | CVE-2016-20012 5.3 https://vulners.com/cve/CVE-2016-20012 | CVE-2021-36368 3.7 https://vulners.com/cve/CVE-2021-36368 |_ PACKETSTORM:140261 0.0 https://vulners.com/packetstorm/PACKETSTORM:140261 *EXPLOIT* Service Info: OS: Linux; CPE: cpe:/o:linux:linux_kernel Final times for host: srtt: 214350 rttvar: 214350 to: 300000 Nmap scan report for static.246.140.201.138.clients.your-server.de (138.201.140.246) Host is up, received user-set (0.22s latency). Scanned at 2025-04-01 14:37:41 +08 for 166s PORT STATE SERVICE REASON VERSION 22/tcp closed ssh conn-refused Final times for host: srtt: 224679 rttvar: 224679 to: 300000 Nmap scan report for static.247.140.201.138.clients.your-server.de (138.201.140.247) Host is up, received user-set (0.23s latency). Scanned at 2025-04-01 14:37:41 +08 for 186s PORT STATE SERVICE REASON VERSION 22/tcp open ssh syn-ack OpenSSH 9.2p1 Debian 2+deb12u3 (protocol 2.0) | vulners: | cpe:/a:openbsd:openssh:9.2p1: | 2C119FFA-ECE0-5E14-A4A4-354A2C38071A 10.0 https://vulners.com/githubexploit/2C119FFA-ECE0-5E14-A4A4-354A2C38071A *EXPLOIT* | CVE-2023-38408 9.8 https://vulners.com/cve/CVE-2023-38408 | CVE-2023-28531 9.8 https://vulners.com/cve/CVE-2023-28531 | B8190CDB-3EB9-5631-9828-8064A1575B23 9.8 https://vulners.com/githubexploit/B8190CDB-3EB9-5631-9828-8064A1575B23 *EXPLOIT* | 8FC9C5AB-3968-5F3C-825E-E8DB5379A623 9.8 https://vulners.com/githubexploit/8FC9C5AB-3968-5F3C-825E-E8DB5379A623 *EXPLOIT* | 8AD01159-548E-546E-AA87-2DE89F3927EC 9.8 https://vulners.com/githubexploit/8AD01159-548E-546E-AA87-2DE89F3927EC *EXPLOIT* | 5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A 9.8 https://vulners.com/githubexploit/5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A *EXPLOIT* |", "creation_timestamp": "2025-04-01T08:49:50.000000Z"}, {"uuid": "885e444c-f1fc-423a-819d-a08dbb4205a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-12069", "type": "seen", "source": "https://t.me/cibsecurity/55365", "content": "\u203c CVE-2020-12069 \u203c\n\nIn Pilz PMC programming tool 3.x before 3.5.17 (based on CODESYS Development System), the password-hashing feature requires insufficient computational effort.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-26T22:40:55.000000Z"}, {"uuid": "aa2ec836-ef45-4460-8d82-236989cf42b3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-1206", "type": "exploited", "source": "https://t.me/SecLabNews/7807", "content": "\u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 \u043a\u0438\u0431\u0435\u0440\u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0438\u0437 \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0438 ZecOps \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0438\u043b\u0438 \u043d\u043e\u0432\u0443\u044e \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0443\u044e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c (CVE-2020-1206) \u0432 \u0441\u0435\u0442\u0435\u0432\u043e\u043c \u043f\u0440\u043e\u0442\u043e\u043a\u043e\u043b\u0435 \u043f\u0435\u0440\u0435\u0434\u0430\u0447\u0438 \u0434\u0430\u043d\u043d\u044b\u0445 Microsoft Server Message Block (SMB). \u0415\u0435 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u0438\u0437 \u043f\u0430\u043c\u044f\u0442\u0438 \u044f\u0434\u0440\u0430 \u043a\u043e\u043d\u0444\u0438\u0434\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u044b\u0435 \u0434\u0430\u043d\u043d\u044b\u0435, \u0430 \u0432 \u0441\u043e\u0447\u0435\u0442\u0430\u043d\u0438\u0438 \u0441 \u0440\u0430\u043d\u0435\u0435 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u043d\u043e\u0439 \u00ab\u0447\u0435\u0440\u0432\u0435\u043e\u0431\u0440\u0430\u0437\u043d\u043e\u0439\u00bb \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c\u044e SMBGhost \u0432 Windows 10 (CVE-2020-0796) \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0430 \u043c\u043e\u0436\u0435\u0442 \u0431\u044b\u0442\u044c \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0430 \u0434\u043b\u044f \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u0433\u043e \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043a\u043e\u0434\u0430. \nSMBleed \u2014 \u043d\u043e\u0432\u0430\u044f \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0430\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 SMB-\u043f\u0440\u043e\u0442\u043e\u043a\u043e\u043b\u0435", "creation_timestamp": "2020-06-27T17:45:13.000000Z"}, {"uuid": "b1551223-fd9e-41e5-80de-a9170a1664dc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-1206", "type": "seen", "source": "https://t.me/information_security_channel/38474", "content": "Researchers uncovered a critical bug names as \u201cSMBleed\u201d in the Microsoft Server Message Block (SMB) network communication protocol. This security flaw was named as SMBleed and identified as CVE-2020-1206; this vulnerability could easily enable the attackers to drip all the confidential data from the kernel memory remotely. Combined this kind of vulnerability with the previous [\u2026]\nThe post SMBleed \u2013 Windows SMB Protocol Bug Let Hackers Leak Kernel Memory & Execute a Code Remotely (https://gbhackers.com/smbleed/) appeared first on GBHackers On Security (https://gbhackers.com/).", "creation_timestamp": "2020-06-12T04:46:18.000000Z"}, {"uuid": "5e3605af-2bed-4144-8e29-f8a75bc965c8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-1206", "type": "published-proof-of-concept", "source": "https://t.me/canyoupwnme/6481", "content": "SMBleedingGhost Writeup: Chaining SMBleed (CVE-2020-1206) with SMBGhost\nhttps://blog.zecops.com/vulnerabilities/smbleedingghost-writeup-chaining-smbleed-cve-2020-1206-with-smbghost/", "creation_timestamp": "2024-02-13T01:32:57.000000Z"}, {"uuid": "9de45467-2cc4-4851-be3e-727daff642e2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-1206", "type": "published-proof-of-concept", "source": "https://t.me/thehackernews/723", "content": "SMBleed \u2014 A new security vulnerability (CVE-2020-1206) affects Windows SMBv3 protocol.\n\nDetails + PoC: https://thehackernews.com/2020/06/SMBleed-smb-vulnerability.html\n\nAn unauthenticated attacker (client/server) can also combine it with the \"wormable\" SMBGhost flaw to achieve RCE attacks.", "creation_timestamp": "2020-06-09T22:38:30.000000Z"}, {"uuid": "7e7fbc0a-f89a-4380-9451-7d0fdb9796f0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-1206", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/1244", "content": "#exploit\nSMBleed (CVE-2020-1206) / SMBLost (CVE-2020-1301) Vulnerabilities Affect Microsoft SMBv3/SMBv1\n(all Windows versions)\n\n1. CVE-2020-1301:\nWindows SMBv1 - RCE/\u00abSMBLost\u00bb Vulnerability\nhttps://airbus-cyber-security.com/diving-into-the-smblost-vulnerability-cve-2020-1301\n\n2. CVE-2020-1206:\n\"SMBleed\" remote kernel memory read\nhttps://github.com/ZecOps/CVE-2020-1206-POC\n]-> https://blog.zecops.com/vulnerabilities/smbleedingghost-writeup-chaining-smbleed-cve-2020-1206-with-smbghost", "creation_timestamp": "2024-10-28T15:29:00.000000Z"}, {"uuid": "6aa3daa4-2544-46ad-b311-f70bb03eb04d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-1206", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/1342", "content": "#Offensive_security\nSMBleedingGhost Writeup:\nPart 1 - Chaining SMBleed (CVE-2020-1206) with SMBGhost\nhttps://blog.zecops.com/vulnerabilities/smbleedingghost-writeup-chaining-smbleed-cve-2020-1206-with-smbghost\nPart 2 - Unauthenticated Memory Read - Preparing the Ground for an RCE\nhttps://blog.zecops.com/vulnerabilities/smbleedingghost-writeup-part-ii-unauthenticated-memory-read-preparing-the-ground-for-an-rce\nPart 3 - From Remote Read (SMBleed) to RCE\nhttps://blog.zecops.com/vulnerabilities/smbleedingghost-writeup-part-iii-from-remote-read-smbleed-to-rce", "creation_timestamp": "2024-10-31T02:07:47.000000Z"}, {"uuid": "e9446776-e286-49e6-9ba9-be7e08ecdf76", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-1206", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/7044", "content": "#Threat_Research\nSMBleedingGhost Writeup\nPart 1 - Chaining SMBleed (CVE-2020-1206) with SMBGhost\nhttps://blog.zecops.com/research/smbleedingghost-writeup-chaining-smbleed-cve-2020-1206-with-smbghost\nPart 2 - Unauthenticated Memory Read - Preparing the Ground for an RCE\nhttps://blog.zecops.com/research/smbleedingghost-writeup-part-ii-unauthenticated-memory-read-preparing-the-ground-for-an-rce\nPart 3 - From Remote Read (SMBleed) to RCE\nhttps://blog.zecops.com/research/smbleedingghost-writeup-part-iii-from-remote-read-smbleed-to-rce", "creation_timestamp": "2022-10-27T05:44:00.000000Z"}]}