{"vulnerability": "cve-2021-4157", "sightings": [{"uuid": "c6ee3ecd-2668-4a5e-a146-16328c5dec28", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-41571", "type": "seen", "source": "https://gist.github.com/Denovo1998/163e55b3a612873364a00cf0df5a1b95", "content": "", "creation_timestamp": "2025-06-13T11:52:01.000000Z"}, {"uuid": "57b49722-5a56-4ee6-acf5-604d2a22c707", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-41571", "type": "seen", "source": "https://gist.github.com/Denovo1998/0b2ab59e46ce23a9fa4c61c5d866675f", "content": "", "creation_timestamp": "2025-06-04T12:39:24.000000Z"}, {"uuid": "d731ca35-e91c-40d3-83a5-3bc6a7223bab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-41570", "type": "seen", "source": "https://t.me/cibsecurity/41092", "content": "\u203c CVE-2021-41570 \u203c\n\nVeritas NetBackup OpsCenter Analytics 9.1 allows XSS via the NetBackup Master Server Name, Display Name, NetBackup User Name, or NetBackup Password field during a Settings/Configuration Add operation.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-19T16:24:04.000000Z"}, {"uuid": "d2583f16-3e26-45f7-8df9-8e33afe6035a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-41577", "type": "published-proof-of-concept", "source": "Telegram/fX6ZAJT9wGVAd0FtY-bQNS0jY7lzMG5v6y4hiyjpQKfU8gMP", "content": "", "creation_timestamp": "2022-01-11T19:40:35.000000Z"}, {"uuid": "963fe8ae-c7e9-4eb9-9ca0-8c355cee9041", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-41577", "type": "published-proof-of-concept", "source": "https://t.me/cKure/8562", "content": "\u25a0\u25a0\u25a0\u25a0\u25a1 CVE-2021-41577: MITM to RCE  in EVGA Precision X1.\n\nhttps://rhinosecuritylabs.com/research/cve-2021-41577-evga-precision-x1/", "creation_timestamp": "2022-01-13T06:38:42.000000Z"}, {"uuid": "162dd7e1-b71c-4272-a3b0-7efcc58576b0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-4157", "type": "seen", "source": "https://t.me/cibsecurity/39560", "content": "\u203c CVE-2021-4157 \u203c\n\nAn out of memory bounds write flaw (1 or 2 bytes of memory) in the Linux kernel NFS subsystem was found in the way users use mirroring (replication of files with NFS). A user, having access to the NFS mount, could potentially use this flaw to crash the system or escalate privileges on the system.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-25T21:31:03.000000Z"}, {"uuid": "06cefb42-07b0-4e59-9d70-99af1c973055", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-41578", "type": "seen", "source": "https://t.me/cibsecurity/29919", "content": "\u203c CVE-2021-41578 \u203c\n\nmySCADA myDESIGNER 8.20.0 and below allows Directory Traversal attacks when importing project files. If an attacker can trick a victim into importing a malicious mep file, then they gain the ability to write arbitrary files to OS locations where the user has permission. This would typically lead to code execution.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-10-04T22:24:44.000000Z"}, {"uuid": "c569204f-d488-4525-aa4d-9c5ebddd8c77", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-41579", "type": "seen", "source": "https://t.me/cibsecurity/29911", "content": "\u203c CVE-2021-41579 \u203c\n\nLCDS LAquis SCADA through 4.3.1.1085 is vulnerable to a control bypass and path traversal. If an attacker can get a victim to load a malicious els project file and use the play feature, then the attacker can bypass a consent popup and write arbitrary files to OS locations where the user has permission, leading to code execution.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-10-04T22:24:23.000000Z"}, {"uuid": "52fded79-91df-4212-8064-14eab2829fbc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-41577", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/5186", "content": "#exploit\n1. PHP 7.3-8.1 disable_functions bypass [concat_function]\nhttps://github.com/mm0r1/exploits/tree/master/php-concat-bypass\n// Stop relying on\u00a0disable_functions\n(or any other php.ini settings) for security...\n\n2. Windows kernel null pointer dereference\nhttps://tttang.com/archive/1400\n\n3. CVE-2021-41577:\nMITM to RCE in EVGA Precision X1\nhttps://rhinosecuritylabs.com/research/cve-2021-41577-evga-precision-x1", "creation_timestamp": "2022-01-13T11:07:01.000000Z"}, {"uuid": "d7d92c2e-6a97-415d-ab7f-549542b3599f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-41573", "type": "seen", "source": "https://t.me/cibsecurity/29676", "content": "\u203c CVE-2021-41573 \u203c\n\nHitachi Content Platform Anywhere (HCP-AW) 4.4.5 and later allows information disclosure. If authenticated user creates a link to a file or folder while the system was running version 4.3.x or earlier and then shares the link and then later deletes the file or folder without deleting the link and before the link expires. If the system has been upgraded to version 4.4.5 or 4.5.0 a malicious user with the link could browse and download all files of the authenticated user that created the link .\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-09-29T22:37:05.000000Z"}]}