{"vulnerability": "cve-2020-2506", "sightings": [{"uuid": "118a9fe6-f0e1-4d4f-abc3-10f1d0b73c02", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-2506", "type": "seen", "source": "https://t.me/cibsecurity/23029", "content": "\u203c CVE-2020-2506 \u203c\n\nThe vulnerability have been reported to affect earlier versions of QTS. If exploited, this improper access control vulnerability could allow attackers to obtain control of a QNAP device. This issue affects: QNAP Systems Inc. Helpdesk versions prior to 3.0.3.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-02-03T18:49:34.000000Z"}, {"uuid": "c390872d-de8a-4420-816f-141e7bc98609", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-25069", "type": "seen", "source": "https://t.me/cibsecurity/21435", "content": "\u203c CVE-2020-17363 \u203c\n\nUSVN (aka User-friendly SVN) before 1.0.9 allows remote code execution via shell metacharacters in the number_start or number_end parameter to LastHundredRequest (aka lasthundredrequestAction) in the Timeline module. NOTE: this may overlap CVE-2020-25069.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-31T07:31:06.000000Z"}, {"uuid": "5aba826d-7100-43ba-ba4f-1875852e67f1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-25066", "type": "seen", "source": "https://t.me/cibsecurity/21201", "content": "\u203c CVE-2020-25066 \u203c\n\nA heap-based buffer overflow in the Treck HTTP Server component before 6.0.1.68 allows remote attackers to cause a denial of service (crash/reset) or to possibly execute arbitrary code.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-23T00:54:05.000000Z"}, {"uuid": "1b40e3ff-5547-4b10-8536-d2647bbf4f6c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-2506", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2023-06-14T21:10:04.000000Z"}, {"uuid": "2c98399e-ae28-47a4-beeb-901835632de3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-2506", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/618c9c24-fa4c-4048-a54a-287f0aecaa56", "content": "", "creation_timestamp": "2026-02-02T12:28:00.485238Z"}, {"uuid": "faa763d3-6067-475d-89df-6daa7ad36591", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-2506", "type": "seen", "source": "https://feedsin.space/feed/CISAKevBot/items/2971444", "content": "", "creation_timestamp": "2024-12-24T20:29:25.979222Z"}, {"uuid": "9568d5de-175b-4bfd-8f71-3bb7eb50cb01", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-2506", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2025-02-23T02:10:26.000000Z"}, {"uuid": "0ea46dd4-36bf-42ef-b2bf-bd4ee0f3939e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-2506", "type": "seen", "source": "https://t.me/arpsyndicate/1428", "content": "#ExploitObserverAlert\n\nCVE-2020-2506\n\nDESCRIPTION: Exploit Observer has 1 entries related to CVE-2020-2506. The vulnerability have been reported to affect earlier versions of QTS. If exploited, this improper access control vulnerability could allow attackers to compromise the security of the software by gaining privileges, or reading sensitive information. This issue affects: QNAP Systems Inc. Helpdesk versions prior to 3.0.3.\n\nFIRST-EPSS: 0.007320000\nNVD-IS: 5.9\nNVD-ES: 3.9", "creation_timestamp": "2023-12-05T08:07:50.000000Z"}, {"uuid": "784d1d58-084b-4d50-9ce4-f488e58fa564", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-2506", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/618c9c24-fa4c-4048-a54a-287f0aecaa56", "content": "", "creation_timestamp": "2026-02-02T12:28:00.485238Z"}]}