{"vulnerability": "CVE-2020-25198", "sightings": [{"uuid": "47a1d30e-43cf-4664-be17-5ce1a232474f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-25198", "type": "seen", "source": "https://t.me/cibsecurity/21230", "content": "\u203c CVE-2020-25198 \u203c\n\nThe built-in WEB server for MOXA NPort IAW5000A-I/O firmware version 2.1 or lower has incorrectly implemented protections from session fixation, which may allow an attacker to gain access to a session and hijack it by stealing the user\u00e2\u20ac\u2122s cookies.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-23T19:25:29.000000Z"}]}