{"vulnerability": "CVE-2020-1918", "sightings": [{"uuid": "ab110df7-cb22-4970-8b26-bf285fd7859c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-19185", "type": "seen", "source": "https://t.me/cibsecurity/68943", "content": "\u203c CVE-2020-19185 \u203c\n\nBuffer Overflow vulnerability in one_one_mapping function in progs/dump_entry.c:1373 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-22T22:12:02.000000Z"}, {"uuid": "5c1c89b0-fa23-460e-a8e7-62b74c6f029c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-1918", "type": "seen", "source": "https://t.me/cibsecurity/24696", "content": "\u203c CVE-2020-1918 \u203c\n\nIn-memory file operations (ie: using fopen on a data URI) did not properly restrict negative seeking, allowing for the reading of memory prior to the in-memory buffer. This issue affects HHVM versions prior to 4.56.3, all versions between 4.57.0 and 4.80.1, all versions between 4.81.0 and 4.93.1, and versions 4.94.0, 4.95.0, 4.96.0, 4.97.0, 4.98.0.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-03-10T18:53:17.000000Z"}, {"uuid": "f1c03c95-6bc4-42db-b877-ce8c0def7306", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-19187", "type": "seen", "source": "https://t.me/cibsecurity/68935", "content": "\u203c CVE-2020-19187 \u203c\n\nBuffer Overflow vulnerability in fmt_entry function in progs/dump_entry.c:1100 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-22T22:11:52.000000Z"}]}