{"vulnerability": "CVE-2020-27192", "sightings": [{"uuid": "ac1ec290-db3c-4614-a398-3bed0498a6ba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-27192", "type": "seen", "source": "https://t.me/cibsecurity/16424", "content": "\u203c CVE-2020-27192 \u203c\n\nBinaryNights ForkLift 3.4 was compiled with the com.apple.security.cs.disable-library-validation flag enabled which allowed a local attacker to inject code into ForkLift. This would allow the attacker to run malicious code with escalated privileges through ForkLift's helper tool.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-11-17T07:38:28.000000Z"}, {"uuid": "d3df96e3-0a07-4a27-9d4b-692112d8d466", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-27192", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/2095", "content": "#exploit\n1. CVE-2020-13958:\nApache OpenOffice 4 <=4.1.7 - RCE\nhttps://github.com/irsl/apache-openoffice-rce-via-uno-links\n\n2. CVE-2020-15349, CVE-2020-27192:\nForklift <=3.3.9, <=3.4 - LPE on macOS\nhttps://insinuator.net/2020/11/forklift-lpe", "creation_timestamp": "2023-04-23T12:57:57.000000Z"}]}