{"vulnerability": "CVE-2020-24581", "sightings": [{"uuid": "04a43bfa-6e7c-4a5a-8f2a-8a11ad43f18a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-24581", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-01-26)", "content": "", "creation_timestamp": "2025-01-26T00:00:00.000000Z"}, {"uuid": "71223562-eaf5-481e-8fec-460a03ea57e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-24581", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-02-06)", "content": "", "creation_timestamp": "2025-02-06T00:00:00.000000Z"}, {"uuid": "d5eb176c-8bbf-452d-8a4b-4943dd1b7bfa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-24581", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2025-01-26)", "content": "", "creation_timestamp": "2025-01-26T00:00:00.000000Z"}, {"uuid": "7e9d480e-ee95-41bb-9487-d4c6fe0cd4f0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-24581", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-03-10)", "content": "", "creation_timestamp": "2025-03-10T00:00:00.000000Z"}, {"uuid": "2441ad09-65d6-4ca7-87de-d1ed6923807c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-24581", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-11-26)", "content": "", "creation_timestamp": "2025-11-26T00:00:00.000000Z"}, {"uuid": "107ed344-8ffb-4556-9793-2665dcab890e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-24581", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-02-16)", "content": "", "creation_timestamp": "2025-02-16T00:00:00.000000Z"}, {"uuid": "9ebfa08a-7901-4b66-9ee6-5c09b9f5f32f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-24581", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-10-01)", "content": "", "creation_timestamp": "2025-10-01T00:00:00.000000Z"}, {"uuid": "3406ecab-e953-4f2a-b5ad-4b845c142744", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-24581", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2025-02-16)", "content": "", "creation_timestamp": "2025-02-16T00:00:00.000000Z"}, {"uuid": "d083e0aa-cf11-424e-bf0c-bd989ae54dd6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-24581", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-03-16)", "content": "", "creation_timestamp": "2025-03-16T00:00:00.000000Z"}, {"uuid": "1d10ea22-354c-445f-b6aa-05d4581df11b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-24581", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-03-11)", "content": "", "creation_timestamp": "2025-03-11T00:00:00.000000Z"}, {"uuid": "88c25f47-4371-47bb-8892-e7282a73edc3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-24581", "type": "published-proof-of-concept", "source": "https://t.me/pwnwiki_zhchannel/13", "content": "CVE-2020-24581 D-Link DSL-2888A AU 2.31 V1.1.47ae55 RCE\u6f0f\u6d1e\nhttps://www.pwnwiki.org/index.php?title=CVE-2020-24581_D-Link_DSL-2888A_AU_2.31_V1.1.47ae55_RCE%E6%BC%8F%E6%B4%9E", "creation_timestamp": "2021-09-21T06:42:55.000000Z"}, {"uuid": "3b08625d-2aed-455b-ad1d-b7d2aac54d48", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-24581", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-04-20)", "content": "", "creation_timestamp": "2026-04-20T00:00:00.000000Z"}, {"uuid": "7f666c83-b890-430c-bf3c-f9207a6411d6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-24581", "type": "published-proof-of-concept", "source": "https://t.me/cKure/6934", "content": "\u25a0\u25a0\u25a0\u25a1\u25a1 CVE-2020-24581 D-Link DSL-2888A Remote Command Execution\n\nhttps://reconshell.com/cve-2020-24581-d-link-dsl-2888a-remote-command-execution/", "creation_timestamp": "2021-09-05T06:25:50.000000Z"}, {"uuid": "971e2658-89a4-4763-ab6c-750b42084255", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-24581", "type": "published-proof-of-concept", "source": "Telegram/tSDsuirdbED9EzegzqkcfX_BAhDANZJn7hn9OdoD1YH2_2Y", "content": "", "creation_timestamp": "2021-02-05T19:52:01.000000Z"}, {"uuid": "9e34a497-e8d4-4803-896d-7e1bcb17d306", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-24581", "type": "published-proof-of-concept", "source": "https://t.me/reconshell/404", "content": "CVE-2020-24581 D-Link DSL-2888A Remote Command Execution\n\n#RCE #RemoteCodeExecution #vulnerability #InfoSec #CyberSecurity\n\nhttps://reconshell.com/cve-2020-24581-d-link-dsl-2888a-remote-command-execution/", "creation_timestamp": "2021-02-04T17:32:29.000000Z"}, {"uuid": "f78c8d45-b348-4a18-bdfd-1a5aae1adaf1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-24581", "type": "seen", "source": "https://t.me/cibsecurity/21187", "content": "\u203c CVE-2020-24581 \u203c\n\nAn issue was discovered on D-Link DSL-2888A devices with firmware prior to AU_2.31_V1.1.47ae55. It contains an execute_cmd.cgi feature (that is not reachable via the web user interface) that lets an authenticated user execute Operating System commands.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-22T22:53:21.000000Z"}, {"uuid": "0933fe5f-eadf-4f6d-b2a5-85da3980ad1a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-24581", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2026-05-31)", "content": "", "creation_timestamp": "2026-05-31T00:00:00.000000Z"}, {"uuid": "9d660753-fa3c-4812-ae37-480d09c5ab0a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-24581", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/2670", "content": "#exploit\nCVE-2020-24581/CVE-2020-24579:\nD-Link DSL-2888A AU_2.31_V1.1.47ae55\n(is a unified service router) - RCE\n\nPoC:\nhttp:/xxx/cgi-bin/execute_cmd.cgi?timestamp=1589333279490&cmd=uname -a\n\nhttps://reconshell.com/cve-2020-24581-d-link-dsl-2888a-remote-command-execution", "creation_timestamp": "2024-10-09T19:16:14.000000Z"}, {"uuid": "6630c839-0a9d-49eb-936c-66c0d9278281", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-24581", "type": "seen", "source": "https://t.me/CyberSecurityTechnologies/2708", "content": "#Analytics\n10 most exploited vulnerabilities of the week (feb 8-14)\nCVE-2020-1472 - Microsoft Zerologon\nhttps://t.me/cybersecuritytechnologies/1742\nCVE-2021-3156 - Heap-Based Buffer Overflow in Sudo\nhttps://t.me/cybersecuritytechnologies/2577\nCVE-2021-1732 - Windows kernel 0-day exploit is used by BITTER APT in targeted attack\nhttps://t.me/cybersecuritytechnologies/2679\nCVE-2020-2037 - Palo Alto PAN-OS vulnerability\nhttps://t.me/cybersecuritytechnologies/2687\nCVE-2021-24074, CVE-2021-24086, CVE-2021-24094 - Windows IPv4/IPv6 Stack RCE/DoS Vulnerabilities\nhttps://unit42.paloaltonetworks.com/cve-2021-24074-patch-tuesday\nCVE-2021-1782 - iOS\\iPadOS 14.3 kernel LPE vulnerability\nhttps://t.me/cybersecuritytechnologies/2694\nCVE-2021-21017 - Acrobat Reader DC\u00a0a heap-based buffer overflow vulnerability\nhttps://threatpost.com/critical-adobe-windows-flaw/163789\nCVE-2020-24581 - D-Link DSL-2888A AU_2.31_V1x - RCE\nhttps://t.me/cybersecuritytechnologies/2670", "creation_timestamp": "2021-02-15T11:00:19.000000Z"}]}