{"vulnerability": "CVE-2021-4356", "sightings": [{"uuid": "5f0b9552-df8a-4348-bed7-dcd2fe2cd716", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43568", "type": "seen", "source": "https://t.me/cibsecurity/32124", "content": "\u203c CVE-2021-43568 \u203c\n\nThe verify function in the Stark Bank Elixir ECDSA library (ecdsa-elixir) 1.0.0 fails to check that the signature is non-zero, which allows attackers to forge signatures on arbitrary messages.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-10T00:35:25.000000Z"}, {"uuid": "78b5f2ce-bbb6-4a14-a2fa-dd42820a5b0e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43565", "type": "seen", "source": "https://t.me/arpsyndicate/146", "content": "#ExploitObserverAlert\n\nCVE-2021-43565\n\nDESCRIPTION: Exploit Observer has 7 entries related to CVE-2021-43565. The x/crypto/ssh package before 0.0.0-20211202192323-5770296d904e of golang.org/x/crypto allows an attacker to panic an SSH server.\n\nFIRST-EPSS: 0.000740000\nNVD-IS: 3.6\nNVD-ES: 3.9", "creation_timestamp": "2023-11-13T02:23:24.000000Z"}, {"uuid": "dcf68d1e-d9ab-4afe-8d18-ba4a002711a7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43565", "type": "seen", "source": "https://t.me/cibsecurity/49359", "content": "\u203c CVE-2021-43565 \u203c\n\nThe x/crypto/ssh package before 0.0.0-20211202192323-5770296d904e of golang.org/x/crypto allows an attacker to panic an SSH server.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-06T22:19:33.000000Z"}, {"uuid": "3acc5cdd-6799-4acf-938c-c2b2371eab2f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43566", "type": "seen", "source": "https://t.me/cibsecurity/35249", "content": "\u203c CVE-2021-43566 \u203c\n\nAll versions of Samba prior to 4.13.16 are vulnerable to a malicious client using an SMB1 or NFS race to allow a directory to be created in an area of the server file system not exported under the share definition. Note that SMB1 has to be enabled, or the share also available via NFS in order for this attack to succeed.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-01-11T18:15:58.000000Z"}, {"uuid": "99aaada1-b0b8-4aac-986d-c53db76795dd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43560", "type": "seen", "source": "https://t.me/cibsecurity/32795", "content": "\u203c CVE-2021-43560 \u203c\n\nA flaw was found in Moodle in versions 3.11 to 3.11.3, 3.10 to 3.10.7, 3.9 to 3.9.10 and earlier unsupported versions. Insufficient capability checks made it possible to fetch other users' calendar action events.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-22T18:23:56.000000Z"}, {"uuid": "11abd295-8e6f-4326-a2c2-fef082f9506c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43563", "type": "seen", "source": "https://t.me/cibsecurity/32169", "content": "\u203c CVE-2021-43563 \u203c\n\nAn issue was discovered in the pixxio (aka pixx.io integration or DAM) extension before 1.0.6 for TYPO3. The Access Control in the bundled media browser is broken, which allows an unauthenticated attacker to perform requests to the pixx.io API for the configured API user. This allows an attacker to download various media files from the DAM system.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-10T18:36:42.000000Z"}, {"uuid": "64e2ddc5-2124-445e-951e-bae1b3a8c2c1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43561", "type": "seen", "source": "https://t.me/cibsecurity/32166", "content": "\u203c CVE-2021-43561 \u203c\n\nAn XSS issue was discovered in the google_for_jobs (aka Google for Jobs) extension before 1.5.1 and 2.x before 2.1.1 for TYPO3. The extension fails to properly encode user input for output in HTML context. A TYPO3 backend user account is required to exploit the vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-10T18:36:37.000000Z"}, {"uuid": "f7e846ae-d7e9-485c-a2b8-273a337d6b8e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43562", "type": "seen", "source": "https://t.me/cibsecurity/32170", "content": "\u203c CVE-2021-43562 \u203c\n\nAn issue was discovered in the pixxio (aka pixx.io integration or DAM) extension before 1.0.6 for TYPO3. The extension fails to restrict the image download to the configured pixx.io DAM URL, resulting in SSRF. As a result, an attacker can download various content from a remote location and save it to a user-controlled filename, which may result in Remote Code Execution. A TYPO3 backend user account is required to exploit this.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-10T18:36:43.000000Z"}, {"uuid": "f044b251-8b3c-4176-9f6e-1ae80f92542b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43564", "type": "seen", "source": "https://t.me/cibsecurity/32168", "content": "\u203c CVE-2021-43564 \u203c\n\nAn issue was discovered in the jobfair (aka Job Fair) extension before 1.0.13 and 2.x before 2.0.2 for TYPO3. The extension fails to protect or obfuscate filenames of uploaded files. This allows unauthenticated users to download files with sensitive data by simply guessing the filename of uploaded files (e.g., uploads/tx_jobfair/cv.pdf).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-10T18:36:41.000000Z"}, {"uuid": "1619169b-bde8-4324-8a04-3466a5da5f97", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43569", "type": "seen", "source": "https://t.me/cibsecurity/32121", "content": "\u203c CVE-2021-43569 \u203c\n\nThe verify function in the Stark Bank .NET ECDSA library (ecdsa-dotnet) 1.3.1 fails to check that the signature is non-zero, which allows attackers to forge signatures on arbitrary messages.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-10T00:35:22.000000Z"}]}