{"vulnerability": "CVE-2021-3256", "sightings": [{"uuid": "99ba122c-9932-4831-8739-b22f16842b4d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-32569", "type": "seen", "source": "https://t.me/cibsecurity/30581", "content": "\u203c CVE-2021-32569 \u203c\n\n** UNSUPPORTED WHEN ASSIGNED ** In OSS-RC systems of the release 18B and older customer documentation browsing libraries under ALEX are subject to Cross-Site Scripting. This problem is completely resolved in new Ericsson library browsing tool ELEX used in systems like Ericsson Network Manager. NOTE: This vulnerability only affects products that are no longer supported by the maintainer. Ericsson Network Manager is a new generation OSS system which OSS-RC customers shall upgrade to.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-10-14T20:27:44.000000Z"}, {"uuid": "4bc06d83-6695-4bc9-beef-4ce5a045acb5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-32560", "type": "seen", "source": "https://t.me/arpsyndicate/4762", "content": "#ExploitObserverAlert\n\nCVE-2021-32560\n\nDESCRIPTION: Exploit Observer has 9 entries in 3 file formats related to CVE-2021-32560. The Logging subsystem in OctoPrint before 1.6.0 has incorrect access control because it attempts to manage files that are not *.log files.\n\nFIRST-EPSS: 0.001180000\nNVD-IS: 3.6\nNVD-ES: 2.8\nARPS-PRIORITY: 0.7206923", "creation_timestamp": "2024-04-23T18:48:44.000000Z"}, {"uuid": "776f90e7-0f1e-4239-9f5a-47853b4eafcc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-32566", "type": "seen", "source": "https://t.me/cibsecurity/25809", "content": "\u203c CVE-2021-32566 \u203c\n\nImproper Input Validation vulnerability in HTTP/2 of Apache Traffic Server allows an attacker to DOS the server. This issue affects Apache Traffic Server 7.0.0 to 7.1.12, 8.0.0 to 8.1.1, 9.0.0 to 9.0.1.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-06-30T12:29:46.000000Z"}, {"uuid": "e32c703c-a28f-47e0-9b00-0af502985926", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-32568", "type": "seen", "source": "https://t.me/cibsecurity/28292", "content": "\u203c CVE-2021-32568 \u203c\n\nmrdoc is vulnerable to Deserialization of Untrusted Data\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-09-06T16:40:38.000000Z"}]}