{"vulnerability": "CVE-2019-15312", "sightings": [{"uuid": "1de0fb63-7d93-4023-9494-0a9b8eaf1160", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2019-15312", "type": "seen", "source": "https://t.me/cibsecurity/13206", "content": "ATENTION\u203c New - CVE-2019-15312\n\nAn issue was discovered on Zolo Halo devices via the Linkplay firmware. There is a Zolo Halo DNS rebinding attack. The device was found to be vulnerable to DNS rebinding. Combined with one of the many /httpapi.asp endpoint command-execution security issues, the DNS rebinding attack could allow an attacker to compromise the victim device from the Internet.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-07-02T00:55:20.000000Z"}]}