{"vulnerability": "cve-2021-4144", "sightings": [{"uuid": "07cf3066-7860-4020-a912-b62f5be6cf05", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-41449", "type": "seen", "source": "https://t.me/cibsecurity/33679", "content": "\u203c CVE-2021-41449 \u203c\n\nA path traversal attack in web interfaces of Netgear RAX35, RAX38, and RAX40 routers before v1.0.4.102, allows a remote unauthenticated attacker to gain access to sensitive restricted information, such as forbidden files of the web application, via sending a specially crafted HTTP packet.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-12-09T16:23:42.000000Z"}, {"uuid": "905dbe8f-4e90-4a85-8297-651f3697269d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-4144", "type": "seen", "source": "https://t.me/cibsecurity/34558", "content": "\u203c CVE-2021-4144 \u203c\n\nTP-Link wifi router TL-WR802N V4(JP), with firmware version prior to 211202, is vulnerable to OS command injection.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-06T11:18:41.000000Z"}, {"uuid": "6c5e062a-9dbf-4ad7-a649-f3a9d9d800ed", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-41442", "type": "seen", "source": "https://t.me/cibsecurity/37113", "content": "\u203c CVE-2021-41442 \u203c\n\nAn HTTP smuggling attack in the web application of D-Link DIR-X1860 before v1.10WWB09_Beta allows a remote unauthenticated attacker to DoS the web application via sending a specific HTTP packet.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-09T22:13:03.000000Z"}]}