{"vulnerability": "CVE-2020-3551", "sightings": [{"uuid": "d08c49ca-62f2-4c0d-afbc-66ff3455c230", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-3551", "type": "seen", "source": "https://t.me/CyberGovIL/964", "content": "Com2041 | \u05e4\u05d2\u05d9\u05e2\u05d5\u05d9\u05d5\u05ea \u05d1\u05de\u05d5\u05e6\u05e8\u05d9 CISCO\n\n\u05d7\u05d1\u05e8\u05ea \u05e1\u05d9\u05e1\u05e7\u05d5 \u05e4\u05e8\u05e1\u05de\u05d4 \u05d7\u05de\u05e9 \u05d4\u05ea\u05e8\u05e2\u05d5\u05ea \u05d0\u05d1\u05d8\u05d7\u05d4 \u05e2\u05d1\u05d5\u05e8 \u05e4\u05d2\u05d9\u05e2\u05d5\u05d9\u05d5\u05ea \u05e9\u05d4\u05ea\u05d2\u05dc\u05d5 \u05d1\u05de\u05d5\u05e6\u05e8\u05d9\u05dd Webex Meetings \u05d5- Identity Services Engine \u05de\u05ea\u05d5\u05e6\u05e8\u05ea\u05d4.\n\n\u05d0\u05d7\u05ea \u05d4\u05e4\u05d2\u05d9\u05e2\u05d5\u05d9\u05d5\u05ea (CVE-2020-3551) \u05e2\u05dc\u05d5\u05dc\u05d4 \u05dc\u05d0\u05e4\u05e9\u05e8 \u05d4\u05e8\u05e6\u05ea \u05e7\u05d5\u05d3, \u05d1\u05e2\u05d5\u05d3 \u05e4\u05d2\u05d9\u05e2\u05d5\u05ea \u05d0\u05d7\u05e8\u05ea (CVE-2020-27122) \u05e2\u05dc\u05d5\u05dc\u05d4 \u05dc\u05d0\u05e4\u05e9\u05e8 \u05d4\u05e2\u05dc\u05d0\u05ea \u05d4\u05e8\u05e9\u05d0\u05d5\u05ea \u05dc-Root.\n\n\u05de\u05d5\u05de\u05dc\u05e5 \u05dc\u05d1\u05d7\u05d5\u05df \u05d5\u05dc\u05d4\u05ea\u05e7\u05d9\u05df \u05d1\u05d4\u05e7\u05d3\u05dd \u05d0\u05ea \u05d4\u05d2\u05e8\u05e1\u05d0\u05d5\u05ea \u05d4\u05e2\u05d3\u05db\u05e0\u05d9\u05d5\u05ea \u05e9\u05e4\u05d5\u05e8\u05e1\u05de\u05d5 \u05e2\u05dc-\u05d9\u05d3\u05d9 \u05d4\u05d7\u05d1\u05e8\u05d4.", "creation_timestamp": "2020-11-30T17:55:29.000000Z"}, {"uuid": "901170b9-e89c-4b8d-8c9e-536afe1f9346", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-3551", "type": "seen", "source": "https://t.me/CyberSecurityIL/616", "content": "\u05de\u05e2\u05e8\u05da \u05d4\u05e1\u05d9\u05d9\u05d1\u05e8 \u05d4\u05dc\u05d0\u05d5\u05de\u05d9:\n\n \u05e4\u05d2\u05d9\u05e2\u05d5\u05d9\u05d5\u05ea \u05d1\u05de\u05d5\u05e6\u05e8\u05d9 CISCO\n\n\u05d7\u05d1\u05e8\u05ea \u05e1\u05d9\u05e1\u05e7\u05d5 \u05e4\u05e8\u05e1\u05de\u05d4 \u05d7\u05de\u05e9 \u05d4\u05ea\u05e8\u05e2\u05d5\u05ea \u05d0\u05d1\u05d8\u05d7\u05d4 \u05e2\u05d1\u05d5\u05e8 \u05e4\u05d2\u05d9\u05e2\u05d5\u05d9\u05d5\u05ea \u05e9\u05d4\u05ea\u05d2\u05dc\u05d5 \u05d1\u05de\u05d5\u05e6\u05e8\u05d9\u05dd Webex Meetings \u05d5- Identity Services Engine \u05de\u05ea\u05d5\u05e6\u05e8\u05ea\u05d4.\n\n\u05d0\u05d7\u05ea \u05d4\u05e4\u05d2\u05d9\u05e2\u05d5\u05d9\u05d5\u05ea (CVE-2020-3551) \u05e2\u05dc\u05d5\u05dc\u05d4 \u05dc\u05d0\u05e4\u05e9\u05e8 \u05d4\u05e8\u05e6\u05ea \u05e7\u05d5\u05d3, \u05d1\u05e2\u05d5\u05d3 \u05e4\u05d2\u05d9\u05e2\u05d5\u05ea \u05d0\u05d7\u05e8\u05ea (CVE-2020-27122) \u05e2\u05dc\u05d5\u05dc\u05d4 \u05dc\u05d0\u05e4\u05e9\u05e8 \u05d4\u05e2\u05dc\u05d0\u05ea \u05d4\u05e8\u05e9\u05d0\u05d5\u05ea \u05dc-Root.\n\n\u05de\u05d5\u05de\u05dc\u05e5 \u05dc\u05d1\u05d7\u05d5\u05df \u05d5\u05dc\u05d4\u05ea\u05e7\u05d9\u05df \u05d1\u05d4\u05e7\u05d3\u05dd \u05d0\u05ea \u05d4\u05d2\u05e8\u05e1\u05d0\u05d5\u05ea \u05d4\u05e2\u05d3\u05db\u05e0\u05d9\u05d5\u05ea \u05e9\u05e4\u05d5\u05e8\u05e1\u05de\u05d5 \u05e2\u05dc-\u05d9\u05d3\u05d9 \u05d4\u05d7\u05d1\u05e8\u05d4.", "creation_timestamp": "2020-11-30T18:56:11.000000Z"}, {"uuid": "c8df3022-bdd7-4a18-a508-715de7daa302", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35511", "type": "published-proof-of-concept", "source": "Telegram/5lwIiVRlGValAb7a3y7unGCeHw0VejzNjVdua0u49Ev9FgE", "content": "", "creation_timestamp": "2025-01-20T16:00:09.000000Z"}, {"uuid": "eec67aff-067f-4e7d-ba75-b10bf208226a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-3551", "type": "seen", "source": "https://t.me/CyberSecurityIL/372", "content": "\u05de\u05e2\u05e8\u05da \u05d4\u05e1\u05d9\u05d9\u05d1\u05e8 \u05d4\u05dc\u05d0\u05d5\u05de\u05d9:\n\n \u05e4\u05d2\u05d9\u05e2\u05d5\u05d9\u05d5\u05ea \u05d1\u05de\u05d5\u05e6\u05e8\u05d9 CISCO\n\n\u05d7\u05d1\u05e8\u05ea \u05e1\u05d9\u05e1\u05e7\u05d5 \u05e4\u05e8\u05e1\u05de\u05d4 \u05d7\u05de\u05e9 \u05d4\u05ea\u05e8\u05e2\u05d5\u05ea \u05d0\u05d1\u05d8\u05d7\u05d4 \u05e2\u05d1\u05d5\u05e8 \u05e4\u05d2\u05d9\u05e2\u05d5\u05d9\u05d5\u05ea \u05e9\u05d4\u05ea\u05d2\u05dc\u05d5 \u05d1\u05de\u05d5\u05e6\u05e8\u05d9\u05dd Webex Meetings \u05d5- Identity Services Engine \u05de\u05ea\u05d5\u05e6\u05e8\u05ea\u05d4.\n\n\u05d0\u05d7\u05ea \u05d4\u05e4\u05d2\u05d9\u05e2\u05d5\u05d9\u05d5\u05ea (CVE-2020-3551) \u05e2\u05dc\u05d5\u05dc\u05d4 \u05dc\u05d0\u05e4\u05e9\u05e8 \u05d4\u05e8\u05e6\u05ea \u05e7\u05d5\u05d3, \u05d1\u05e2\u05d5\u05d3 \u05e4\u05d2\u05d9\u05e2\u05d5\u05ea \u05d0\u05d7\u05e8\u05ea (CVE-2020-27122) \u05e2\u05dc\u05d5\u05dc\u05d4 \u05dc\u05d0\u05e4\u05e9\u05e8 \u05d4\u05e2\u05dc\u05d0\u05ea \u05d4\u05e8\u05e9\u05d0\u05d5\u05ea \u05dc-Root.\n\n\u05de\u05d5\u05de\u05dc\u05e5 \u05dc\u05d1\u05d7\u05d5\u05df \u05d5\u05dc\u05d4\u05ea\u05e7\u05d9\u05df \u05d1\u05d4\u05e7\u05d3\u05dd \u05d0\u05ea \u05d4\u05d2\u05e8\u05e1\u05d0\u05d5\u05ea \u05d4\u05e2\u05d3\u05db\u05e0\u05d9\u05d5\u05ea \u05e9\u05e4\u05d5\u05e8\u05e1\u05de\u05d5 \u05e2\u05dc-\u05d9\u05d3\u05d9 \u05d4\u05d7\u05d1\u05e8\u05d4.", "creation_timestamp": "2020-11-30T18:56:11.000000Z"}, {"uuid": "d70de3ba-0ffa-42b4-9758-c4a431b9364c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35512", "type": "seen", "source": "https://t.me/cibsecurity/23611", "content": "\u203c CVE-2020-35512 \u203c\n\nA use-after-free flaw was found in D-Bus 1.12.20 when a system has multiple usernames sharing the same UID. When a set of policy rules references these usernames, D-Bus may free some memory in the heap, which is still used by data structures necessary for the other usernames sharing the UID, possibly leading to a crash or other undefined behaviors\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-02-15T20:46:53.000000Z"}, {"uuid": "227d1fde-da5b-42fe-8625-83b34cdb4688", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35513", "type": "seen", "source": "https://t.me/cibsecurity/22592", "content": "\u203c CVE-2020-35513 \u203c\n\nA flaw incorrect umask during file or directory modification in the Linux kernel NFS (network file system) functionality was found in the way user create and delete object using NFSv4.2 or newer if both simultaneously accessing the NFS by the other process that is not using new NFSv4.2. A user with access to the NFS could use this flaw to starve the resources causing denial of service.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-01-26T20:36:25.000000Z"}, {"uuid": "ac00b4a6-c883-4130-802c-5551ad78d67a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35517", "type": "seen", "source": "https://t.me/cibsecurity/22806", "content": "\u203c CVE-2020-35517 \u203c\n\nA flaw was found in qemu. A host privilege escalation issue was found in the virtio-fs shared file system daemon where a privileged guest user is able to create a device special file in the shared directory and use it to r/w access host devices.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-01-28T22:39:11.000000Z"}, {"uuid": "7c218866-c886-40c2-aa9e-e89a4f08ac74", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35514", "type": "published-proof-of-concept", "source": "Telegram/1sjI5XqCnv51p1bcKgaeNnXjgxRyh1fG7Vm2TfueEeV17Vs", "content": "", "creation_timestamp": "2021-06-02T22:25:42.000000Z"}, {"uuid": "ffad215d-475c-4044-9203-098df2efe493", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-3551", "type": "seen", "source": "https://t.me/cibsecurity/15998", "content": "\u203c CVE-2020-3551 \u203c\n\nA vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface of an affected device. The vulnerability exists because the web-based management interface does not properly validate user-supplied input. An attacker could exploit this vulnerability by persuading a user of an affected interface to click a crafted link. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-11-06T22:51:16.000000Z"}]}