{"vulnerability": "CVE-2020-2758", "sightings": [{"uuid": "315221a0-5b88-4d58-8cf2-2305ca7c9881", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-2758", "type": "seen", "source": "https://t.me/arpsyndicate/695", "content": "#ExploitObserverAlert\n\nCVE-2020-2758\n\nDESCRIPTION: Exploit Observer has 5 entries related to CVE-2020-2758. Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 5.2.40, prior to 6.0.20 and prior to 6.1.6. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.0 Base Score 8.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H).\n\nFIRST-EPSS: 0.000430000\nNVD-IS: 6.0\nNVD-ES: 1.5", "creation_timestamp": "2023-11-29T07:48:17.000000Z"}, {"uuid": "d1397ca8-1d7b-4119-adaa-17a5bf59fff5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-27583", "type": "seen", "source": "https://t.me/cibsecurity/22637", "content": "\u203c CVE-2020-27583 \u203c\n\n** UNSUPPORTED WHEN ASSIGNED ** IBM InfoSphere Information Server 8.5.0.0 is affected by deserialization of untrusted data which could allow remote unauthenticated attackers to execute arbitrary code. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-01-26T20:46:33.000000Z"}, {"uuid": "27f99a36-b3a2-4317-9037-1b6f412084ef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-27585", "type": "seen", "source": "https://t.me/cibsecurity/16949", "content": "\u203c CVE-2020-27585 \u203c\n\nQuick Heal Total Security before 19.0 allows attackers with local admin rights to modify sensitive anti virus settings via a brute-attack on the settings password.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-11-30T22:53:26.000000Z"}, {"uuid": "3bce93a2-8cb3-40f2-8e6c-7e9a98612b2d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-27587", "type": "seen", "source": "https://t.me/cibsecurity/16947", "content": "\u203c CVE-2020-27587 \u203c\n\nQuick Heal Total Security before 19.0 allows attackers with local admin rights to obtain access to files in the File Vault via a brute-force attack on the password.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-11-30T22:53:24.000000Z"}, {"uuid": "e7577f0a-c057-4520-b632-e7d5f0e2418a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-27586", "type": "seen", "source": "https://t.me/cibsecurity/16946", "content": "\u203c CVE-2020-27586 \u203c\n\nQuick Heal Total Security before version 19.0 transmits quarantine and sysinfo files via clear text.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-11-30T22:53:23.000000Z"}, {"uuid": "3065a51b-e258-4e86-ba00-df6233af09ec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-27589", "type": "seen", "source": "https://t.me/cibsecurity/15970", "content": "\u203c CVE-2020-27589 \u203c\n\nSynopsys hub-rest-api-python (aka blackduck on PyPI) version 0.0.25 - 0.0.52 does not validate SSL certificates in certain cases.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-11-06T16:50:50.000000Z"}]}