Most recent sightings.

Most recent sightings. https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Fri, 05 Jun 2026 05:21:36 +0000 c6bd32bc-5da5-4af9-b13d-0dfff1293d0b https://vulnerability.circl.lu/sighting/c6bd32bc-5da5-4af9-b13d-0dfff1293d0b/export {"uuid": "c6bd32bc-5da5-4af9-b13d-0dfff1293d0b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43048", "type": "seen", "source": "https://t.me/cibsecurity/32481", "content": "\u203c CVE-2021-43048 \u203c\n\nThe Interior Server and Gateway Server components of TIBCO Software Inc.'s TIBCO PartnerExpress contain a vulnerability that theoretically allows an unauthenticated attacker with network access to execute a clickjacking attack on the affected system. A successful attack using this vulnerability does not require human interaction from a person other than the attacker. Affected releases are TIBCO Software Inc.'s TIBCO PartnerExpress: versions 6.2.1 and below.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-17T16:20:53.000000Z"} {"uuid": "c6bd32bc-5da5-4af9-b13d-0dfff1293d0b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43048", "type": "seen", "source": "https://t.me/cibsecurity/32481", "content": "\u203c CVE-2021-43048 \u203c\n\nThe Interior Server and Gateway Server components of TIBCO Software Inc.'s TIBCO PartnerExpress contain a vulnerability that theoretically allows an unauthenticated attacker with network access to execute a clickjacking attack on the affected system. A successful attack using this vulnerability does not require human interaction from a person other than the attacker. Affected releases are TIBCO Software Inc.'s TIBCO PartnerExpress: versions 6.2.1 and below.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-17T16:20:53.000000Z"} https://vulnerability.circl.lu/sighting/c6bd32bc-5da5-4af9-b13d-0dfff1293d0b/export Wed, 17 Nov 2021 16:20:53 +0000 ed25d244-00dc-43f0-bdcb-51dd98b49ed1 https://vulnerability.circl.lu/sighting/ed25d244-00dc-43f0-bdcb-51dd98b49ed1/export {"uuid": "ed25d244-00dc-43f0-bdcb-51dd98b49ed1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43041", "type": "seen", "source": "https://t.me/cibsecurity/33355", "content": "\u203c CVE-2021-43041 \u203c\n\nAn issue was discovered in Kaseya Unitrends Backup Appliance before 10.5.5. A crafted HTTP request could induce a format string vulnerability in the privileged vaultServer application.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-12-06T07:20:24.000000Z"} {"uuid": "ed25d244-00dc-43f0-bdcb-51dd98b49ed1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43041", "type": "seen", "source": "https://t.me/cibsecurity/33355", "content": "\u203c CVE-2021-43041 \u203c\n\nAn issue was discovered in Kaseya Unitrends Backup Appliance before 10.5.5. A crafted HTTP request could induce a format string vulnerability in the privileged vaultServer application.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-12-06T07:20:24.000000Z"} https://vulnerability.circl.lu/sighting/ed25d244-00dc-43f0-bdcb-51dd98b49ed1/export Mon, 06 Dec 2021 07:20:24 +0000 fdb6cda1-2f83-4ea3-894f-31aef33940ab https://vulnerability.circl.lu/sighting/fdb6cda1-2f83-4ea3-894f-31aef33940ab/export {"uuid": "fdb6cda1-2f83-4ea3-894f-31aef33940ab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43043", "type": "seen", "source": "https://t.me/cibsecurity/33357", "content": "\u203c CVE-2021-43043 \u203c\n\nAn issue was discovered in Kaseya Unitrends Backup Appliance before 10.5.5. The apache user could read arbitrary files such as /etc/shadow by abusing an insecure Sudo rule.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-12-06T07:20:26.000000Z"} {"uuid": "fdb6cda1-2f83-4ea3-894f-31aef33940ab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43043", "type": "seen", "source": "https://t.me/cibsecurity/33357", "content": "\u203c CVE-2021-43043 \u203c\n\nAn issue was discovered in Kaseya Unitrends Backup Appliance before 10.5.5. The apache user could read arbitrary files such as /etc/shadow by abusing an insecure Sudo rule.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-12-06T07:20:26.000000Z"} https://vulnerability.circl.lu/sighting/fdb6cda1-2f83-4ea3-894f-31aef33940ab/export Mon, 06 Dec 2021 07:20:26 +0000 5e01218d-6b83-45eb-ac54-4ef167df4b91 https://vulnerability.circl.lu/sighting/5e01218d-6b83-45eb-ac54-4ef167df4b91/export {"uuid": "5e01218d-6b83-45eb-ac54-4ef167df4b91", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43040", "type": "seen", "source": "https://t.me/cibsecurity/33359", "content": "\u203c CVE-2021-43040 \u203c\n\nAn issue was discovered in Kaseya Unitrends Backup Appliance before 10.5.5. The privileged vaultServer could be leveraged to create arbitrary writable files, leading to privilege escalation.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-12-06T07:20:28.000000Z"} {"uuid": "5e01218d-6b83-45eb-ac54-4ef167df4b91", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43040", "type": "seen", "source": "https://t.me/cibsecurity/33359", "content": "\u203c CVE-2021-43040 \u203c\n\nAn issue was discovered in Kaseya Unitrends Backup Appliance before 10.5.5. The privileged vaultServer could be leveraged to create arbitrary writable files, leading to privilege escalation.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-12-06T07:20:28.000000Z"} https://vulnerability.circl.lu/sighting/5e01218d-6b83-45eb-ac54-4ef167df4b91/export Mon, 06 Dec 2021 07:20:28 +0000 e9300ef9-94a2-4b36-9dc5-2dc308572afb https://vulnerability.circl.lu/sighting/e9300ef9-94a2-4b36-9dc5-2dc308572afb/export {"uuid": "e9300ef9-94a2-4b36-9dc5-2dc308572afb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43044", "type": "seen", "source": "https://t.me/cibsecurity/33360", "content": "\u203c CVE-2021-43044 \u203c\n\nAn issue was discovered in Kaseya Unitrends Backup Appliance before 10.5.5. The SNMP daemon was configured with a weak default community.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-12-06T07:20:29.000000Z"} {"uuid": "e9300ef9-94a2-4b36-9dc5-2dc308572afb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43044", "type": "seen", "source": "https://t.me/cibsecurity/33360", "content": "\u203c CVE-2021-43044 \u203c\n\nAn issue was discovered in Kaseya Unitrends Backup Appliance before 10.5.5. The SNMP daemon was configured with a weak default community.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-12-06T07:20:29.000000Z"} https://vulnerability.circl.lu/sighting/e9300ef9-94a2-4b36-9dc5-2dc308572afb/export Mon, 06 Dec 2021 07:20:29 +0000 b6554875-c259-4351-ac9c-ff926a1b060e https://vulnerability.circl.lu/sighting/b6554875-c259-4351-ac9c-ff926a1b060e/export {"uuid": "b6554875-c259-4351-ac9c-ff926a1b060e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43042", "type": "seen", "source": "https://t.me/cibsecurity/33365", "content": "\u203c CVE-2021-43042 \u203c\n\nAn issue was discovered in Kaseya Unitrends Backup Appliance before 10.5.5. A buffer overflow existed in the vaultServer component. This was exploitable by a remote unauthenticated attacker.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-12-06T07:20:37.000000Z"} {"uuid": "b6554875-c259-4351-ac9c-ff926a1b060e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43042", "type": "seen", "source": "https://t.me/cibsecurity/33365", "content": "\u203c CVE-2021-43042 \u203c\n\nAn issue was discovered in Kaseya Unitrends Backup Appliance before 10.5.5. A buffer overflow existed in the vaultServer component. This was exploitable by a remote unauthenticated attacker.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-12-06T07:20:37.000000Z"} https://vulnerability.circl.lu/sighting/b6554875-c259-4351-ac9c-ff926a1b060e/export Mon, 06 Dec 2021 07:20:37 +0000 de082d96-d8e6-446c-a64c-260b2442eaae https://vulnerability.circl.lu/sighting/de082d96-d8e6-446c-a64c-260b2442eaae/export {"uuid": "de082d96-d8e6-446c-a64c-260b2442eaae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43045", "type": "seen", "source": "https://t.me/cibsecurity/35073", "content": "\u203c CVE-2021-43045 \u203c\n\nA vulnerability in the .NET SDK of Apache Avro allows an attacker to allocate excessive resources, potentially causing a denial-of-service attack. This issue affects .NET applications using Apache Avro version 1.10.2 and prior versions. Users should update to version 1.11.0 which addresses this issue.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-01-06T20:41:10.000000Z"} {"uuid": "de082d96-d8e6-446c-a64c-260b2442eaae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43045", "type": "seen", "source": "https://t.me/cibsecurity/35073", "content": "\u203c CVE-2021-43045 \u203c\n\nA vulnerability in the .NET SDK of Apache Avro allows an attacker to allocate excessive resources, potentially causing a denial-of-service attack. This issue affects .NET applications using Apache Avro version 1.10.2 and prior versions. Users should update to version 1.11.0 which addresses this issue.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-01-06T20:41:10.000000Z"} https://vulnerability.circl.lu/sighting/de082d96-d8e6-446c-a64c-260b2442eaae/export Thu, 06 Jan 2022 20:41:10 +0000