{"vulnerability": "CVE-2020-2510", "sightings": [{"uuid": "fbc5ac59-e034-433f-b432-5e0f19bd9bb3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-25106", "type": "seen", "source": "MISP/f7897342-8cdd-4efe-ac0a-f687e72ae699", "content": "", "creation_timestamp": "2024-11-14T06:07:34.000000Z"}, {"uuid": "b1711cbc-79d7-4655-8ff0-f84661f06d5a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-25106", "type": "seen", "source": "https://t.me/cibsecurity/21168", "content": "\u203c CVE-2020-25106 \u203c\n\nNanosystems SupRemo 4.1.3.2348 allows attackers to obtain LocalSystem access because File Manager can be used to rename Supremo.exe and then upload a Trojan horse with the Supremo.exe filename.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-22T20:53:15.000000Z"}, {"uuid": "72066cac-4f5e-4d2d-b444-afccc2222ba2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-25107", "type": "seen", "source": "https://t.me/cibsecurity/20704", "content": "\u203c CVE-2020-25107 \u203c\n\nAn issue was discovered in the DNS implementation in Ethernut in Nut/OS 5.1. There is no check on whether a domain name has '\\0' termination. This may lead to successful Denial-of-Service, and possibly Remote Code Execution.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-12T03:25:37.000000Z"}, {"uuid": "e65645be-5346-45e9-965c-7bdc3576b463", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-25107", "type": "seen", "source": "https://t.me/cibsecurity/20723", "content": "\u203c CVE-2020-25107 \u203c\n\nAn issue was discovered in the DNS implementation in Ethernut in Nut/OS 5.1. There is no check on whether a domain name has '\\0' termination. This may lead to successful Denial-of-Service, and possibly Remote Code Execution.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-12T04:07:26.000000Z"}, {"uuid": "bca277ea-b0cd-47be-b2d2-f68a0016de07", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-25107", "type": "seen", "source": "https://t.me/cibsecurity/20684", "content": "\u203c CVE-2020-25107 \u203c\n\nAn issue was discovered in the DNS implementation in Ethernut in Nut/OS 5.1. There is no check on whether a domain name has '\\0' termination. This may lead to successful Denial-of-Service, and possibly Remote Code Execution.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-12T02:39:11.000000Z"}, {"uuid": "2e17f708-296e-4044-a749-c28dbae4f982", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-25108", "type": "seen", "source": "https://t.me/cibsecurity/20719", "content": "\u203c CVE-2020-25108 \u203c\n\nAn issue was discovered in the DNS implementation in Ethernut in Nut/OS 5.1. The DNS response data length is not checked (it can be set to an arbitrary value from a packet). This may lead to successful Denial-of-Service, and possibly Remote Code Execution.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-12T04:07:20.000000Z"}, {"uuid": "14ba727f-457e-4c22-82e2-cf681ed4f1a5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-25108", "type": "seen", "source": "https://t.me/cibsecurity/20700", "content": "\u203c CVE-2020-25108 \u203c\n\nAn issue was discovered in the DNS implementation in Ethernut in Nut/OS 5.1. The DNS response data length is not checked (it can be set to an arbitrary value from a packet). This may lead to successful Denial-of-Service, and possibly Remote Code Execution.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-12T03:25:31.000000Z"}, {"uuid": "9b8d0cf3-f4a4-4829-8da2-97befc29a33d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-25108", "type": "seen", "source": "https://t.me/cibsecurity/20680", "content": "\u203c CVE-2020-25108 \u203c\n\nAn issue was discovered in the DNS implementation in Ethernut in Nut/OS 5.1. The DNS response data length is not checked (it can be set to an arbitrary value from a packet). This may lead to successful Denial-of-Service, and possibly Remote Code Execution.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-12T02:39:07.000000Z"}, {"uuid": "9971c948-d714-421c-9d40-2bc35bb2c8d5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-25107", "type": "seen", "source": "https://t.me/cibsecurity/20664", "content": "\u203c CVE-2020-25107 \u203c\n\nAn issue was discovered in the DNS implementation in Ethernut in Nut/OS 5.1. There is no check on whether a domain name has '\\0' termination. This may lead to successful Denial-of-Service, and possibly Remote Code Execution.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-12T02:36:13.000000Z"}, {"uuid": "ed71f550-d931-46f2-9788-98dfc3cdc3ba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-25108", "type": "seen", "source": "https://t.me/cibsecurity/20660", "content": "\u203c CVE-2020-25108 \u203c\n\nAn issue was discovered in the DNS implementation in Ethernut in Nut/OS 5.1. The DNS response data length is not checked (it can be set to an arbitrary value from a packet). This may lead to successful Denial-of-Service, and possibly Remote Code Execution.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-12T02:36:06.000000Z"}]}