{"vulnerability": "CVE-2018-1777", "sightings": [{"uuid": "8ae1bc52-d49c-4c13-ab62-ec69e88461d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2018-17776", "type": "exploited", "source": "https://www.exploit-db.com/exploits/45503", "content": "", "creation_timestamp": "2018-09-28T00:00:00.000000Z"}, {"uuid": "4b322e0c-4249-4105-a208-467e27cd47b0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2018-17773", "type": "seen", "source": "https://t.me/cyberbannews_ir/2367", "content": "\ud83d\uded1\u0634\u0646\u0627\u0633\u0627\u06cc\u06cc \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc\u200c\u0647\u0627\u06cc \u0628\u062d\u0631\u0627\u0646\u06cc \u062f\u0631 \u062f\u0633\u062a\u06af\u0627\u0647\u200c\u0647\u0627\u06cc \u06a9\u0627\u0631\u062a\u200c\u062e\u0648\u0627\u0646\n\n\u06a9\u0627\u0631\u0634\u0646\u0627\u0633\u0627\u0646 \u0634\u0631\u06a9\u062a \u067e\u0627\u0632\u062a\u06cc\u0648\u062a\u06a9\u0646\u0627\u0644\u062c\u06cc\u0632 \u062f\u0631 \u06af\u0632\u0627\u0631\u0634\u06cc \u0627\u0639\u0644\u0627\u0645 \u06a9\u0631\u062f\u0646\u062f \u0686\u0646\u062f\u06cc\u0646 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u062f\u0631 \u06a9\u0627\u0631\u062a\u200c\u062e\u0648\u0627\u0646\u200c\u0647\u0627\u06cc \u0648\u0631\u06cc\u0641\u0648\u0646 (Verifone) \u0648 \u0627\u0646\u062c\u0646\u06cc\u06a9\u0648 (Ingenico) \u0634\u0646\u0627\u0633\u0627\u06cc\u06cc \u06a9\u0631\u062f\u0647\u200c\u0627\u0646\u062f \u06a9\u0647 \u0628\u0647 \u0645\u0647\u0627\u062c\u0645\u0627\u0646 \u0627\u0645\u06a9\u0627\u0646 \u0633\u0631\u0642\u062a \u0627\u0637\u0644\u0627\u0639\u0627\u062a \u0628\u0627\u0646\u06a9\u06cc \u0631\u0627 \u0645\u06cc\u200c\u062f\u0647\u0646\u062f. \n\n\u0645\u062d\u0642\u0642\u0627\u0646 \u062f\u0631 \u06a9\u0627\u0631\u062a\u200c\u062e\u0648\u0627\u0646\u200c\u0647\u0627\u06cc Telium 2 \u0627\u0646\u062c\u0646\u06cc\u06a9\u0648 10 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u0634\u0646\u0627\u0633\u0627\u06cc\u06cc \u06a9\u0631\u062f\u0647\u200c\u0627\u0646\u062f \u06a9\u0647 \u0628\u062d\u0631\u0627\u0646\u06cc\u200c\u062a\u0631\u06cc\u0646 \u0622\u0646 \u0628\u0627 \u0634\u0646\u0627\u0633\u0647 CVE-2018-17773 \u0627\u0645\u062a\u06cc\u0627\u0632 8.3 \u0631\u0627 \u0628\u0647 \u062e\u0648\u062f \u0627\u062e\u062a\u0635\u0627\u0635 \u062f\u0627\u062f\u0647 \u0627\u0633\u062a. \n\n\u0627\u06cc\u0646 \u0646\u0642\u0635 \u0627\u0645\u0646\u06cc\u062a\u06cc \u0628\u0647 \u0639\u0644\u062a \u0627\u062c\u0631\u0627\u06cc \u0646\u0627\u062f\u0631\u0633\u062a \u067e\u0631\u0648\u062a\u06a9\u0644 NTPT3 \u0627\u06cc\u062c\u0627\u062f\u0634\u062f\u0647 \u0627\u0633\u062a \u06a9\u0647 \u0628\u0627\u0639\u062b \u0628\u0631\u0648\u0632 \u062e\u0637\u0627\u06cc \u0633\u0631\u0631\u06cc\u0632 \u0628\u0627\u0641\u0631 \u0645\u06cc\u200c\u0634\u0648\u062f. \u06cc\u06a9 \u0645\u0647\u0627\u062c\u0645 \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u062f \u0628\u0631\u0627\u06cc \u0628\u0647 \u062f\u0633\u062a \u0622\u0648\u0631\u062f\u0646 \u062d\u062f\u0627\u06a9\u062b\u0631 \u0627\u0645\u062a\u06cc\u0627\u0632\u0627\u062a \u0633\u06cc\u0633\u062a\u0645 \u0627\u0632 \u0627\u06cc\u0646 \u0648\u0636\u0639\u06cc\u062a \u0633\u0648\u0621\u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0646\u062f.\n\n#\u0622\u0633\u06cc\u0628_\u067e\u0630\u06cc\u0631\u06cc\n\n\u2705 \u0628\u06cc\u0634\u062a\u0631 \u0628\u062e\u0648\u0627\u0646\u06cc\u062f:\nhttps://bit.ly/2WIuQkk\n\n@cyberbannews_ir", "creation_timestamp": "2020-12-23T10:45:16.000000Z"}, {"uuid": "5983919c-050f-429d-b3c0-1c3ca508991c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2018-17774", "type": "seen", "source": "https://t.me/cibsecurity/14569", "content": "ATENTION\u203c New - CVE-2018-17774\n\nIngenico Telium 2 POS terminals have an insecure NTPT3 protocol. This is fixed in Telium 2 SDK v9.32.03 patch N.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-09-09T22:55:28.000000Z"}, {"uuid": "7974ae52-e8cb-4267-86c3-aafe7a16d76e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2018-17773", "type": "seen", "source": "https://t.me/cibsecurity/14570", "content": "ATENTION\u203c New - CVE-2018-17773\n\nIngenico Telium 2 POS terminals have a buffer overflow via SOCKET_TASK in the NTPT3 protocol. This is fixed in Telium 2 SDK v9.32.03 patch N.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-09-09T22:55:30.000000Z"}, {"uuid": "e54bbb76-0616-4cbd-a86a-89e1873b83d1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2018-17772", "type": "seen", "source": "https://t.me/cibsecurity/14571", "content": "ATENTION\u203c New - CVE-2018-17772\n\nIngenico Telium 2 POS terminals allow arbitrary code execution via the TRACE protocol. This is fixed in Telium 2 SDK v9.32.03 patch N.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-09-09T22:55:32.000000Z"}, {"uuid": "f216f231-5324-49e6-a78c-0d8880a1b508", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2018-17771", "type": "seen", "source": "https://t.me/cibsecurity/14572", "content": "ATENTION\u203c New - CVE-2018-17771\n\nIngenico Telium 2 POS terminals have hardcoded FTP credentials. This is fixed in Telium 2 SDK v9.32.03 patch N.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-09-09T22:55:34.000000Z"}, {"uuid": "49fe5cdd-f715-4717-bb22-c7a23fbb4a91", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2018-17770", "type": "seen", "source": "https://t.me/cibsecurity/14573", "content": "ATENTION\u203c New - CVE-2018-17770\n\nIngenico Telium 2 POS terminals have a buffer overflow via the RemotePutFile command of the NTPT3 protocol. This is fixed in Telium 2 SDK v9.32.03 patch N.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-09-09T22:55:35.000000Z"}]}