{"vulnerability": "CVE-2021-38611", "sightings": [{"uuid": "5aa83472-601f-4e09-b1fa-9c586b217d1c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-38611", "type": "seen", "source": "https://t.me/cibsecurity/27766", "content": "\u203c CVE-2021-38611 \u203c\n\nA command-injection vulnerability in the Image Upload function of the NASCENT RemKon Device Manager 4.0.0.0 allows attackers to execute arbitrary commands, as root, via shell metacharacters in the filename parameter to assets/index.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-08-24T16:23:25.000000Z"}]}