{"vulnerability": "cve-2021-2145", "sightings": [{"uuid": "4c8d3923-84be-4d20-be85-22192ba77a9c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-21450", "type": "seen", "source": "https://t.me/cibsecurity/21951", "content": "\u203c CVE-2021-21450 \u203c\n\nSAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated PSD file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is caused due to Improper Input Validation.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-01-12T18:52:39.000000Z"}, {"uuid": "e9b8ef79-4959-4088-b939-f73e62d278b1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-2145", "type": "seen", "source": "https://t.me/BlackHut_Egy/855", "content": "Researchers publish details of two vulnerabilities [CVE-2021-2145 and CVE-2021-2310] in Oracle VM VirtualBox that could allow an attacker to compromise the hypervisor and cause a denial of service (DoS).\n\nRead : https://thehackernews.com/2021/11/researchers-detail-privilege-escalation.html", "creation_timestamp": "2021-11-23T16:26:09.000000Z"}, {"uuid": "52e4c54a-33c2-4df2-993f-f5f83839e630", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-21455", "type": "seen", "source": "https://t.me/cibsecurity/21948", "content": "\u203c CVE-2021-21455 \u203c\n\nSAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated DIB file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is caused due to Improper Input Validation.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-01-12T18:52:36.000000Z"}, {"uuid": "c120d2ff-fe26-42da-81bc-d02a50992a46", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-21459", "type": "seen", "source": "https://t.me/cibsecurity/21945", "content": "\u203c CVE-2021-21459 \u203c\n\nSAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated IFF file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is caused due to Improper Input Validation.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-01-12T18:52:32.000000Z"}, {"uuid": "374dc8f6-9130-4f2e-b2cc-319b8baaaa5f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-2145", "type": "seen", "source": "https://t.me/thehackernews/1674", "content": "Researchers publish details of two vulnerabilities [CVE-2021-2145 and CVE-2021-2310] in Oracle VM VirtualBox that could allow an attacker to compromise the hypervisor and cause a denial of service (DoS).\n\nRead : https://thehackernews.com/2021/11/researchers-detail-privilege-escalation.html", "creation_timestamp": "2021-11-23T13:11:43.000000Z"}, {"uuid": "1a2f1d99-6873-43c1-a50b-ac8dc0fc6e95", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-2145", "type": "seen", "source": "https://t.me/CyberSecurityTechnologies/4828", "content": "#Threat_Research\n1. Looking for vulnerabilities in MediaTek audio DSP\nhttps://research.checkpoint.com/2021/looking-for-vulnerabilities-in-mediatek-audio-dsp\n// CVE-2021-0661, CVE-2021-0662, CVE-2021-0663\n2. Hunting for Vulnerabilities in VirtualBox Network Offloads\nhttps://www.sentinelone.com/labs/gsoh-no-hunting-for-vulnerabilities-in-virtualbox-network-offloads\n// CVE-2021-2145, CVE-2021-2310, CVE-2021-2442", "creation_timestamp": "2021-11-25T11:00:21.000000Z"}, {"uuid": "d4cf225b-6269-44f3-bbd3-99a9907d5c4e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-21451", "type": "seen", "source": "https://t.me/cibsecurity/21944", "content": "\u203c CVE-2021-21451 \u203c\n\nSAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated SGI file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is caused due to Improper Input Validation.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-01-12T18:52:31.000000Z"}, {"uuid": "20cfd492-0bba-4691-8a7e-e497d6b96f72", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-21457", "type": "seen", "source": "https://t.me/cibsecurity/21942", "content": "\u203c CVE-2021-21457 \u203c\n\nSAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated IFF file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is caused due to Improper Input Validation.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-01-12T18:52:29.000000Z"}, {"uuid": "bb7fd491-5ff9-43f7-9479-5aea12ae6fbc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-2145", "type": "seen", "source": "https://t.me/BlueRedTeam/1224", "content": "#Threat_Research\n1. Looking for vulnerabilities in MediaTek audio DSP\nhttps://research.checkpoint.com/2021/looking-for-vulnerabilities-in-mediatek-audio-dsp\n// CVE-2021-0661, CVE-2021-0662, CVE-2021-0663\n2. Hunting for Vulnerabilities in VirtualBox Network Offloads\nhttps://www.sentinelone.com/labs/gsoh-no-hunting-for-vulnerabilities-in-virtualbox-network-offloads\n// CVE-2021-2145, CVE-2021-2310, CVE-2021-2442\n\n@BlueRedTeam", "creation_timestamp": "2021-11-25T10:36:56.000000Z"}]}