{"vulnerability": "CVE-2020-3585", "sightings": [{"uuid": "e5bb4ed6-916f-4a5c-8d4f-99a1d7b215cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35852", "type": "seen", "source": "https://t.me/arpsyndicate/1888", "content": "#ExploitObserverAlert\n\nCVE-2020-35852\n\nDESCRIPTION: Exploit Observer has 4 entries related to CVE-2020-35852. Chatbox is affected by cross-site scripting (XSS). An attacker has to upload any XSS payload with SVG, XML file in Chatbox. There is no restriction on file upload in Chatbox which leads to stored XSS.\n\nFIRST-EPSS: 0.001130000\nNVD-IS: 2.7\nNVD-ES: 2.8", "creation_timestamp": "2023-12-18T02:04:26.000000Z"}, {"uuid": "b7e46195-0841-4a8e-b02a-94bf7704016f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35854", "type": "seen", "source": "https://t.me/arpsyndicate/1899", "content": "#ExploitObserverAlert\n\nCVE-2020-35854\n\nDESCRIPTION: Exploit Observer has 4 entries related to CVE-2020-35854. Textpattern 4.8.4 is affected by cross-site scripting (XSS) in the Body parameter.\n\nFIRST-EPSS: 0.000670000\nNVD-IS: 2.7\nNVD-ES: 1.7", "creation_timestamp": "2023-12-18T03:18:28.000000Z"}, {"uuid": "7dd9b78b-6fbe-4c01-b8ce-24d3960b7fd5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35852", "type": "seen", "source": "https://t.me/cibsecurity/23970", "content": "\u203c CVE-2020-35852 \u203c\n\nChatbox is affected by cross-site scripting (XSS). An attacker has to upload any XSS payload with SVG, XML file in Chatbox. There is no restriction on file upload in Chatbox which leads to stored XSS.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-02-23T07:34:20.000000Z"}, {"uuid": "f91af95f-fae6-45d1-84b4-7ff0612dfff7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35851", "type": "seen", "source": "https://t.me/cibsecurity/21465", "content": "\u203c CVE-2020-35851 \u203c\n\nHGiga MailSherlock does not validate specific parameters properly. Attackers can use the vulnerability to launch Command inject attacks remotely and execute arbitrary commands of the system.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-31T12:37:44.000000Z"}, {"uuid": "91049b8a-4a33-4ac4-b2e6-5f2889a7381d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35857", "type": "seen", "source": "https://t.me/cibsecurity/21453", "content": "\u203c CVE-2020-35857 \u203c\n\nAn issue was discovered in the trust-dns-server crate before 0.18.1 for Rust. DNS MX and SRV null targets are mishandled, causing stack consumption.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-31T12:37:27.000000Z"}, {"uuid": "177ef014-54da-4b02-8363-48ac07f4b836", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35850", "type": "seen", "source": "https://t.me/cibsecurity/21422", "content": "\u203c CVE-2020-35850 \u203c\n\n** DISPUTED ** An SSRF issue was discovered in cockpit-project.org Cockpit 234. NOTE: this is unrelated to the Agentejo Cockpit product. NOTE: the vendor states \"I don't think [it] is a big real-life issue.\"\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-30T07:30:08.000000Z"}, {"uuid": "55c0fc9b-4fa5-4625-81a6-0b3e86d66d23", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-3585", "type": "seen", "source": "https://t.me/cibsecurity/15505", "content": "\u203c CVE-2020-3585 \u203c\n\nA vulnerability in the TLS handler of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software for Cisco Firepower 1000 Series firewalls could allow an unauthenticated, remote attacker to gain access to sensitive information. The vulnerability is due to improper implementation of countermeasures against the Bleichenbacher attack for cipher suites that rely on RSA for key exchange. An attacker could exploit this vulnerability by sending crafted TLS messages to the device, which would act as an oracle and allow the attacker to carry out a chosen-ciphertext attack. A successful exploit could allow the attacker to perform cryptanalytic operations that may allow decryption of previously captured TLS sessions to the affected device. To exploit this vulnerability, an attacker must be able to perform both of the following actions: Capture TLS traffic that is in transit between clients and the affected device Actively establish a considerable number of TLS connections to the affected device\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-10-21T22:57:23.000000Z"}]}