{"vulnerability": "CVE-2020-3652", "sightings": [{"uuid": "bf6d4806-25dd-4076-8d4f-f942ed5eacc6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-36521", "type": "seen", "source": "https://t.me/cibsecurity/50398", "content": "\u203c CVE-2020-36521 \u203c\n\nAn out-of-bounds read was addressed with improved input validation. This issue is fixed in iCloud for Windows 11.4, iOS 14.0 and iPadOS 14.0, watchOS 7.0, tvOS 14.0, iCloud for Windows 7.21, iTunes for Windows 12.10.9. Processing a maliciously crafted tiff file may lead to a denial-of-service or potentially disclose memory contents.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-23T22:20:01.000000Z"}, {"uuid": "ec91217e-d690-4994-bec2-adc939e22d78", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-36524", "type": "seen", "source": "https://t.me/cibsecurity/43946", "content": "\u203c CVE-2020-36524 \u203c\n\nA vulnerability was found in Refined Toolkit. It has been rated as problematic. Affected by this issue is some unknown functionality of the component UI-Image/UI-Button. The manipulation leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-07T22:31:21.000000Z"}, {"uuid": "9ab3447f-205d-442c-be2d-20664cbf0f85", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-36526", "type": "seen", "source": "https://t.me/cibsecurity/43951", "content": "\u203c CVE-2020-36526 \u203c\n\nA vulnerability classified as problematic was found in Countdown Timer. This vulnerability affects unknown code of the component Macro Handler. The manipulation leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-07T22:31:28.000000Z"}, {"uuid": "b00a9af8-58ba-4b2f-8f13-357d5cb9f518", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-36525", "type": "seen", "source": "https://t.me/cibsecurity/43944", "content": "\u203c CVE-2020-36525 \u203c\n\nA vulnerability classified as problematic has been found in Linking. This affects an unknown part of the component New Windows Macro. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-07T22:31:19.000000Z"}]}