{"vulnerability": "cve-2021-3930", "sightings": [{"uuid": "c3f88a31-f7b4-4704-9d45-03f1860291aa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-39303", "type": "published-proof-of-concept", "source": "https://t.me/cKure/8291", "content": "\u25a0\u25a0\u25a0\u25a0\u25a1 Discovering Full Read SSRF in Jamf (CVE-2021-39303 & CVE-2021-40809).\n\nhttps://blog.assetnote.io/2021/11/30/jamf-ssrf/", "creation_timestamp": "2021-12-01T20:39:22.000000Z"}, {"uuid": "9209cd00-2f62-4bbf-bf77-88bd3a72293b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-39301", "type": "seen", "source": "https://t.me/cibsecurity/37611", "content": "\u203c CVE-2021-39301 \u203c\n\nPotential vulnerabilities have been identified in UEFI firmware (BIOS) for some PC products which may allow escalation of privilege and arbitrary code execution.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-16T20:42:26.000000Z"}, {"uuid": "d973ea6e-ad0d-484a-94dc-eec5721ed2a4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-39300", "type": "seen", "source": "https://t.me/cibsecurity/37597", "content": "\u203c CVE-2021-39300 \u203c\n\nPotential vulnerabilities have been identified in UEFI firmware (BIOS) for some PC products which may allow escalation of privilege and arbitrary code execution.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-16T20:36:24.000000Z"}, {"uuid": "4e463d53-a2e9-4acb-8576-54ef47057c59", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-3930", "type": "seen", "source": "https://t.me/cibsecurity/37712", "content": "\u203c CVE-2021-3930 \u203c\n\nAn off-by-one error was found in the SCSI device emulation in QEMU. It could occur while processing MODE SELECT commands in mode_sense_page() if the 'page' argument was set to MODE_PAGE_ALLS (0x3f). A malicious guest could use this flaw to potentially crash QEMU, resulting in a denial of service condition.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-18T20:40:10.000000Z"}, {"uuid": "897e3bdc-1c72-446f-84ad-2b1f76ce33cf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-39303", "type": "seen", "source": "https://t.me/cibsecurity/32339", "content": "\u203c CVE-2021-39303 \u203c\n\nThe server in Jamf Pro before 10.32.0 has a vulnerability affecting integrity and availability, aka PI-006352. NOTE: Jamf Nation will also publish an article about this vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-13T00:39:21.000000Z"}, {"uuid": "b312105d-ab06-4b8e-a6cf-0af4bb0fd626", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-39304", "type": "seen", "source": "https://t.me/cibsecurity/30509", "content": "\u203c CVE-2021-39304 \u203c\n\nProofpoint Enterprise Protection before 8.12.0-2108090000 allows security control bypass.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-10-13T18:26:38.000000Z"}, {"uuid": "3cb9368e-bd98-47ac-afc8-b38d68308bd2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-39302", "type": "seen", "source": "https://t.me/cibsecurity/27613", "content": "\u203c CVE-2021-39302 \u203c\n\nMISP 2.4.148, in certain configurations, allows SQL injection via the app/Model/Log.php $conditions['org'] value.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-08-19T20:18:24.000000Z"}, {"uuid": "75bef982-97fb-446c-a86c-fbdaaccab74c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-39303", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/4875", "content": "#Offensive_security\n1. Nmap script that searches for probable vulnerabilities based on services discovered in open ports\nhttps://github.com/scmanjarrez/CVEScannerV2\n2. Discovering Full Read SSRF in Jamf\n(CVE-2021-39303, CVE-2021-40809)\nhttps://blog.assetnote.io/2021/11/30/jamf-ssrf", "creation_timestamp": "2021-12-01T11:01:01.000000Z"}, {"uuid": "0e20a67b-5da3-4bd1-9567-b148ea41d905", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-3930", "type": "seen", "source": "https://t.me/gjoyh5/168", "content": "https://lavecchialocandaperoni.altervista.org|twentytwenty 1.5|CVE-2021-3930|2025-08-29T18:45:33.010890\nhttps://maalishlahdlopo.sch.id|twentyseventeen 2.3|CVE-2021-3929|2025-08-29T18:45:57.746129\nhttps://sandbox.wpdatatables.com|twentyseventeen 2.6|CVE-2021-3929|2025-08-29T18:45:58.159594\nhttps://maalishlahdlopo.sch.id|twentytwenty 1.2|CVE-2021-3930|2025-08-29T18:46:09.765027\nhttps://cromosport.com|twentyseventeen 2.3|CVE-2021-3929|2025-08-29T18:47:00.062818\nhttps://cromosport.com|twentytwenty 1.3|CVE-2021-3930|2025-08-29T18:47:13.900259\nhttps://www.bigfootpodiatry.com.au|twentyseventeen 2.2|CVE-2021-3929|2025-08-29T18:47:22.412162\nhttps://chem.iitm.ac.in|wpforms-lite 1.5.2.3|CVE-2020-10385|2025-08-29T18:47:24.874628\nhttps://chem.iitm.ac.in|twentyseventeen 1.4|CVE-2021-3929|2025-08-29T18:47:47.564605\nhttps://epam.pt|duplicator 1.2.52|CVE-2020-11738|2025-08-29T18:49:27.012215\nhttps://blog.cepgranada.org|duplicator 1.1.4|CVE-2020-11738|2025-08-29T18:49:27.603509\nhttps://blog.cepgranada.org|wordfence 6.0.24|CVE-2020-24147|2025-08-29T18:49:37.974343\nhttps://wordpress.awocoupon.com|twentyseventeen 1.3|CVE-2021-3929|2025-08-29T18:51:56.459530\nhttps://wordpress.awocoupon.com|twentytwenty 1.1|CVE-2021-3930|2025-08-29T18:52:09.829441\nhttps://purifier.sparklingspring.ru|twentytwenty 1.5|CVE-2021-3930|2025-08-29T18:52:24.012470\nhttps://pab.alesc.sc.gov.br|twentyseventeen 1.6|CVE-2021-3929|2025-08-29T18:52:46.518522\nhttp://bvs.ge|WP File Manager 5.5|CVE-2020-25213|2025-08-29T18:56:09.824217\nhttps://istanbulbaski.com|twentyseventeen 1.6|CVE-2021-3929|2025-08-29T18:56:31.666033\nhttp://bvs.ge|twentyseventeen 2.1|CVE-2021-3929|2025-08-29T18:56:46.294330\nhttps://www.btbat.com|twentytwenty 1.0|CVE-2021-3930|2025-08-29T18:57:07.833359\nhttps://www.plugtrack.cl|duplicator 1.2.36|CVE-2020-11738|2025-08-29T18:57:23.776573\nhttps://smartagro.technocity.tn|twentyseventeen 1.5|CVE-2021-3929|2025-08-29T19:00:43.632284\nhttps://ariokna.ru|twentyseventeen 2.2|CVE-2021-3929|2025-08-29T19:01:10.532865\nhttps://purifier.sparklingspring.ru|twentytwenty 1.5|CVE-2021-3930|2025-08-29T19:01:15.423296\nhttps://ariokna.ru|twentytwenty 1.1|CVE-2021-3930|2025-08-29T19:01:20.308693\nhttps://www.atamansurucukursu.com|twentyseventeen 1.6|CVE-2021-3929|2025-08-29T19:01:28.474046\nhttps://chem.iitm.ac.in|wpforms-lite 1.5.2.3|CVE-2020-10385|2025-08-29T19:02:06.835917\nhttps://chem.iitm.ac.in|twentyseventeen 1.4|CVE-2021-3929|2025-08-29T19:02:18.604126\nhttps://purifier.sparklingspring.ru|twentytwenty 1.5|CVE-2021-3930|2025-08-29T19:02:34.139075\nhttps://www.studio-diporto.com|twentyseventeen 2.2|CVE-2021-3929|2025-08-29T19:03:53.535946\nhttps://www.studio-diporto.com|twentytwenty 1.0|CVE-2021-3930|2025-08-29T19:04:01.289182\nhttp://e77784k0.beget.tech|twentyseventeen 1.4|CVE-2021-3929|2025-08-29T19:04:09.353513\nhttp://redlinemedialive.com|WP File Manager 2.1|CVE-2020-25213|2025-08-29T19:04:10.513590\nhttp://themebuilders.com|twentyseventeen 1.4|CVE-2021-3929|2025-08-29T19:04:21.832445\nhttp://mesghohestany.ir|duplicator 1.3.22|CVE-2020-11738|2025-08-29T19:04:31.853310\nhttp://redlinemedialive.com|twentyseventeen 1.4|CVE-2021-3929|2025-08-29T19:04:38.269186\nhttp://mesghohestany.ir|twentyseventeen 2.2|CVE-2021-3929|2025-08-29T19:04:41.076130", "creation_timestamp": "2025-08-29T19:46:25.000000Z"}]}