{"vulnerability": "cve-2019-1187", "sightings": [{"uuid": "7f12ae90-7396-458d-a633-5fd9da5479f7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-11873", "type": "seen", "source": "https://t.me/cve_mitre_org/176", "content": "CVE-2019-11873 wolfSSL 4.0.0 has a Buffer Overflow in DoPreSharedKeys in tls13.c when a current identity size is greater than a client identity size. An attacker sends a crafted hello client packet over the network to a TLSv1.3 wolfSSL server. The lengt... https://t.co/M3kjDxlftt\u2014 CVE (@CVEnew) May 23, 2019\n\nMay 23, 2019 at 04:45PM\nvia Twitter https://twitter.com/CVEnew", "creation_timestamp": "2019-05-23T13:53:16.000000Z"}, {"uuid": "f0a38aad-1c76-4af1-8baf-b90da0b6caad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-11875", "type": "seen", "source": "https://t.me/cve_mitre_org/286", "content": "CVE-2019-11875 In AutomateAppCore.dll in Blue Prism Robotic Process Automation 6.4.0.8445, a vulnerability in access control can be exploited to escalate privileges. The vulnerability allows for abusing the application for fraud or unauthorized acce... https://t.co/gpmB2rBPH5\u2014 CVE (@CVEnew) May 24, 2019\n\nMay 24, 2019 at 07:45PM\nvia Twitter https://twitter.com/CVEnew", "creation_timestamp": "2019-05-24T16:48:17.000000Z"}, {"uuid": "ef65ff01-46f7-41f4-b416-914e8e53005e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-11876", "type": "seen", "source": "https://t.me/cve_mitre_org/287", "content": "CVE-2019-11876 In PrestaShop 1.7.5.2, the shop_country parameter in the install/index.php installation script/component is affected by Reflected XSS. Exploitation by a malicious actor requires the user to follow the initial stages of the setup (acceptin... https://t.co/A6IKrignAe\u2014 CVE (@CVEnew) May 24, 2019\n\nMay 24, 2019 at 07:45PM\nvia Twitter https://twitter.com/CVEnew", "creation_timestamp": "2019-05-24T16:48:17.000000Z"}]}