{"vulnerability": "cve-2021-4271", "sightings": [{"uuid": "6fdc88e0-1c80-47c8-9dbc-dc45f77867c1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2021-42718", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113880117056907269", "content": "", "creation_timestamp": "2025-01-23T22:51:25.071589Z"}, {"uuid": "90acdf85-7258-42f2-88f8-3866d26ff1a3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-42718", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lggz6vptvz2e", "content": "", "creation_timestamp": "2025-01-23T23:15:38.943262Z"}, {"uuid": "7fe8f1b0-0572-4501-a46c-557014ac2849", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-42718", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lgh3g3ijrg2e", "content": "", "creation_timestamp": "2025-01-23T23:55:33.006298Z"}, {"uuid": "c1bfc40a-3b80-4543-8d10-2e8f3dc1fb0d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-4271", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/11670", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2021-4271\n\ud83d\udd25 CVSS Score: 3.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N)\n\ud83d\udd39 Description: A vulnerability was found in panicsteve w2wiki. It has been rated as problematic. Affected by this issue is the function toHTML of the file index.php of the component Markdown Handler. The manipulation leads to cross site scripting. The attack may be launched remotely. The name of the patch is 8f1d0470b4ddb1c7699e3308e765c11ed29542b6. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-216476.\n\ud83d\udccf Published: 2022-12-21T00:00:00.000Z\n\ud83d\udccf Modified: 2025-04-14T17:29:14.184Z\n\ud83d\udd17 References:\n1. https://github.com/panicsteve/w2wiki/commit/8f1d0470b4ddb1c7699e3308e765c11ed29542b6\n2. https://vuldb.com/?id.216476", "creation_timestamp": "2025-04-14T17:54:35.000000Z"}, {"uuid": "0aa6282f-ea10-4308-9b59-928b73c3f6d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-42718", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/2850", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2021-42718\n\ud83d\udd39 Description: Information Disclosure in API in Replicated Replicated Classic versions prior to 2.53.1 on all platforms allows authenticated users with Admin Console access to retrieve sensitive data, including application secrets, via accessing container definitions with environment variables through the Admin Console API on port 8800.\n\nThis CVE was originally reserved in 2021 and later publicly disclosed by Replicated on their website on 21 October 2021. However, it mistakenly remained in the Reserved But Public (RBP) status with the CVE Numbering Authority (CNA). Please note that this product reached its end of life on 31 December 2024. Publishing this CVE with the CNA was required to comply with CNA rules, despite the fact that the issue was disclosed and fixed four years ago, and the affected product is no longer supported as of 2024.\n\nSummary of VulnerabilityThis advisory discloses a low severity security vulnerability in the versions of Replicated Classic listed above (\u201cAffected Replicated Classic Versions\u201d)\n\nDescriptionReplicated Classic versions prior to 2.53.1 have an authenticated API from the Replicated Admin Console that may expose sensitive data including application secrets, depending on how the application manifests are written. A user with valid credentials and access to the Admin Console port (8800) on the Replicated Classic server can retrieve container definitions including environment variables which may contain passwords and other secrets depending on how the application is configured.\n\nThis data is shared over authenticated sessions to the Admin Console only, and was never displayed or used in the application processing. To remediate this issue, we removed the sensitive data from the API, sending only the data to the Admin Console that was needed.\n\nTimelineThis issue was discovered during a security review on 16 September 2021.\nPatched versions were released on 23 September 2021.\nThis advisory was published on 21 October 2021.\n\n\nThe CVE Numbering Authority (CNA) notified Replicated on 23 January 2025 that the CVE was still in Reserved But Public (RBP) status. Upon discovering the oversight in updating the status to published with the CNA, Replicated submitted the updated report on the same day, 23 January 2025.\n\ud83d\udccf Published: 2025-01-23T22:45:37.185Z\n\ud83d\udccf Modified: 2025-01-23T22:45:37.185Z\n\ud83d\udd17 References:\n1. https://www.replicated.com/cve-2021-42718", "creation_timestamp": "2025-01-23T23:03:49.000000Z"}, {"uuid": "2f2e7c1c-9a0d-4699-bf90-66168500525c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-42718", "type": "seen", "source": "https://t.me/cvedetector/16247", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2021-42718 - Replicated Classic API Information Disclosure\", \n  \"Content\": \"CVE ID : CVE-2021-42718 \nPublished : Jan. 23, 2025, 11:15 p.m. | 35\u00a0minutes ago \nDescription : Information Disclosure in API in Replicated Replicated Classic versions prior to 2.53.1 on all platforms allows authenticated users with Admin Console access to retrieve sensitive data, including application secrets, via accessing container definitions with environment variables through the Admin Console API on port 8800.  \n  \nThis CVE was originally reserved in 2021 and later publicly disclosed by Replicated on their website on 21 October 2021. However, it mistakenly remained in the Reserved But Public (RBP) status with the CVE Numbering Authority (CNA). Please note that this product reached its end of life on 31 December 2024. Publishing this CVE with the CNA was required to comply with CNA rules, despite the fact that the issue was disclosed and fixed four years ago, and the affected product is no longer supported as of 2024.  \n  \nSummary of VulnerabilityThis advisory discloses a low severity security vulnerability in the versions of Replicated Classic listed above (\u201cAffected Replicated Classic Versions\u201d)  \n  \nDescriptionReplicated Classic versions prior to 2.53.1 have an authenticated API from the Replicated Admin Console that may expose sensitive data including application secrets, depending on how the application manifests are written. A user with valid credentials and access to the Admin Console port (8800) on the Replicated Classic server can retrieve container definitions including environment variables which may contain passwords and other secrets depending on how the application is configured.  \n  \nThis data is shared over authenticated sessions to the Admin Console only, and was never displayed or used in the application processing. To remediate this issue, we removed the sensitive data from the API, sending only the data to the Admin Console that was needed.  \n  \nTimelineThis issue was discovered during a security review on 16 September 2021.  \nPatched versions were released on 23 September 2021.  \nThis advisory was published on 21 October 2021.  \n  \n  \nThe CVE Numbering Authority (CNA) notified Replicated on 23 January 2025 that the CVE was still in Reserved But Public (RBP) status. Upon discovering the oversight in updating the status to published with the CNA, Replicated submitted the updated report on the same day, 23 January 2025. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"24 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-24T01:00:33.000000Z"}, {"uuid": "7c906186-6a60-47eb-bac8-e088c33b6f22", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-4271", "type": "seen", "source": "https://t.me/cibsecurity/55069", "content": "\u203c CVE-2021-4271 \u203c\n\nA vulnerability was found in panicsteve w2wiki. It has been rated as problematic. Affected by this issue is the function toHTML of the file index.php of the component Markdown Handler. The manipulation leads to cross site scripting. The attack may be launched remotely. The name of the patch is 8f1d0470b4ddb1c7699e3308e765c11ed29542b6. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-216476.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-21T22:12:54.000000Z"}, {"uuid": "84e55fd5-c9d1-4b2e-a07c-27fcc7afb42c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-42714", "type": "seen", "source": "https://t.me/cibsecurity/37530", "content": "\u203c CVE-2021-42714 \u203c\n\nSplashtop Remote Client (Business Edition) through 3.4.8.3 creates a Temporary File in a Directory with Insecure Permissions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-15T22:34:44.000000Z"}, {"uuid": "dc1ef310-0911-47eb-9be7-885a17ee44ee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-42713", "type": "seen", "source": "https://t.me/cibsecurity/37529", "content": "\u203c CVE-2021-42713 \u203c\n\nSplashtop Remote Client (Personal Edition) through 3.4.6.1 creates a Temporary File in a Directory with Insecure Permissions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-15T22:34:43.000000Z"}, {"uuid": "e2578f2f-18a7-4e73-a0b5-76d89b0fb9df", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-42712", "type": "seen", "source": "https://t.me/cibsecurity/37487", "content": "\u203c CVE-2021-42712 \u203c\n\nSplashtop Streamer through 3.4.8.3 creates a Temporary File in a Directory with Insecure Permissions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-15T16:34:28.000000Z"}, {"uuid": "20f1d518-51c7-47e4-a3ff-b339aba3a8d9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-42717", "type": "seen", "source": "https://t.me/cibsecurity/33533", "content": "\u203c CVE-2021-42717 \u203c\n\nModSecurity 3.x through 3.0.5 mishandles excessively nested JSON objects. Crafted JSON objects with nesting tens-of-thousands deep could result in the web server being unable to service legitimate requests. Even a moderately large (e.g., 300KB) HTTP request can occupy one of the limited NGINX worker processes for minutes and consume almost all of the available CPU on the machine. Modsecurity 2 is similarly vulnerable: the affected versions include 2.8.0 through 2.9.4.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-12-08T00:23:12.000000Z"}, {"uuid": "57cc4091-a49c-4ef5-a0b0-0790e32c391a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-42715", "type": "seen", "source": "https://t.me/cibsecurity/30974", "content": "\u203c CVE-2021-42715 \u203c\n\nAn issue was discovered in stb stb_image.h 1.33 through 2.27. The HDR loader parsed truncated end-of-file RLE scanlines as an infinite sequence of zero-length runs. An attacker could potentially have caused denial of service in applications using stb_image by submitting crafted HDR files.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-10-21T22:37:08.000000Z"}, {"uuid": "d755747d-cf69-4422-8c66-fd22aadd18b6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-42716", "type": "seen", "source": "https://t.me/cibsecurity/30973", "content": "\u203c CVE-2021-42716 \u203c\n\nAn issue was discovered in stb stb_image.h 2.27. The PNM loader incorrectly interpreted 16-bit PGM files as 8-bit when converting to RGBA, leading to a buffer overflow when later reinterpreting the result as a 16-bit buffer. An attacker could potentially have crashed a service using stb_image, or read up to 1024 bytes of non-consecutive heap data without control over the read location.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-10-21T22:37:07.000000Z"}, {"uuid": "a26f51b7-2a8c-4ab2-bdb7-9f5218851ff6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-42712", "type": "seen", "source": "https://t.me/arpsyndicate/2727", "content": "#ExploitObserverAlert\n\nCVE-2021-42712\n\nDESCRIPTION: Exploit Observer has 4 entries related to CVE-2021-42712. Splashtop Streamer through 3.4.8.3 creates a Temporary File in a Directory with Insecure Permissions.\n\nFIRST-EPSS: 0.000440000\nNVD-IS: 5.9\nNVD-ES: 1.8", "creation_timestamp": "2024-01-09T07:38:03.000000Z"}]}