{"vulnerability": "CVE-2019-18922", "sightings": [{"uuid": "88cfeaf9-6a7a-4a5f-8775-b9a7474b35a8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2019-18922", "type": "seen", "source": "https://t.me/ctinow/200091", "content": "https://ift.tt/fjbLhp3\nCVE-2019-18922 | Allied Telesis AT-GS950-8 1.1.3 Web Interface GET Request path traversal (ID 155504)", "creation_timestamp": "2024-03-05T10:41:49.000000Z"}, {"uuid": "8345e114-e63b-4d32-8017-489398dc5f7d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2019-18922", "type": "seen", "source": "https://t.me/arpsyndicate/2816", "content": "#ExploitObserverAlert\n\nCVE-2019-18922\n\nDESCRIPTION: Exploit Observer has 5 entries in 3 file formats related to CVE-2019-18922. A Directory Traversal in the Web interface of the Allied Telesis AT-GS950/8 until Firmware AT-S107 V.1.1.3 [1.00.047] allows unauthenticated attackers to read arbitrary system files via a GET request. NOTE: This is an End-of-Life product.\n\nFIRST-EPSS: 0.310540000\nNVD-IS: 3.6\nNVD-ES: 3.9", "creation_timestamp": "2024-01-16T00:17:52.000000Z"}, {"uuid": "acbbd274-6db9-48ee-a96b-95bec5b895f2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2019-18922", "type": "exploited", "source": "https://t.me/CyberSecurityTechnologies/585", "content": "#exploit\n1. CVE-2019-18922:\nDirectory Traversal in Allied Telesis AT-GS950/8 until Firmware AT-S107 V.1.1.3\nhttps://seclists.org/fulldisclosure/2019/Nov/31\n\n2. CVE-2017-0143, CVE-2017-0144,\nCVE-2017-0145, CVE-2017-0146,\nCVE-2017-0147, CVE-2017-0148:\nSMB/RDP Doublepulsar - RCE\nhttps://packetstormsecurity.com/files/156196/smb_doublepulsar_rce.rb.txt\n]-> https://packetstormsecurity.com/files/156200/rdp_doublepulsar_rce.rb.txt", "creation_timestamp": "2024-10-15T16:10:08.000000Z"}]}