{"vulnerability": "cve-2021-4397", "sightings": [{"uuid": "8831eecf-7eea-438a-a8c9-24f0c2836d45", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43972", "type": "seen", "source": "https://t.me/cibsecurity/35270", "content": "\u203c CVE-2021-43972 \u203c\n\nAn unrestricted file copy vulnerability in /UserSelfServiceSettings.jsp in SysAid ITIL 20.4.74 b10 allows a remote authenticated attacker to copy arbitrary files on the server filesystem to the web root (with an arbitrary filename) via the tempFile and fileName parameters in the HTTP POST body.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-01-11T22:16:21.000000Z"}, {"uuid": "3585aca8-5307-4d0b-9583-ab505546f135", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43970", "type": "seen", "source": "https://t.me/cibsecurity/38652", "content": "\u203c CVE-2021-43970 \u203c\n\nAn arbitrary file upload vulnerability exists in albumimages.jsp in Quicklert for Digium 10.0.0 (1043) via a .mp3;.jsp filename for a file that begins with audio data bytes. It allows an authenticated (low privileged) attacker to execute remote code on the target server within the context of application's permissions (SYSTEM).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-18T06:56:35.000000Z"}, {"uuid": "70f75d8e-ccbc-46b0-bc17-3bc12c19347c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43971", "type": "seen", "source": "https://t.me/cibsecurity/35268", "content": "\u203c CVE-2021-43971 \u203c\n\nA SQL injection vulnerability in /mobile/SelectUsers.jsp in SysAid ITIL 20.4.74 b10 allows a remote authenticated attacker to execute arbitrary SQL commands via the filterText parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-01-11T22:16:19.000000Z"}, {"uuid": "348329ab-fe36-4530-8c05-75834bca2665", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43974", "type": "seen", "source": "https://t.me/cibsecurity/35264", "content": "\u203c CVE-2021-43974 \u203c\n\nAn issue was discovered in SysAid ITIL 20.4.74 b10. The /enduserreg endpoint is used to register end users anonymously, but does not respect the server-side setting that determines if anonymous users are allowed to register new accounts. Configuring the server-side setting to disable anonymous user registration only hides the client-side registration form. An attacker can still post registration data to create new accounts without prior authentication.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-01-11T22:16:15.000000Z"}, {"uuid": "37384efe-8ee2-477e-bf48-a880a1bfae15", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43973", "type": "seen", "source": "https://t.me/cibsecurity/35263", "content": "\u203c CVE-2021-43973 \u203c\n\nAn unrestricted file upload vulnerability in /UploadPsIcon.jsp in SysAid ITIL 20.4.74 b10 allows a remote authenticated attacker to upload an arbitrary file via the file parameter in the HTTP POST body. A successful request returns the absolute, server-side filesystem path of the uploaded file.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-01-11T22:16:13.000000Z"}, {"uuid": "68ff3024-d982-40d0-af22-e68c29949349", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43974", "type": "published-proof-of-concept", "source": "https://t.me/BlueRedTeam/1646", "content": "#exploit\n- Unauthenticated RCE Chain in SysAid ITIL - CVE-2021-43971, CVE-2021-43972, CVE-2021-43973, CVE-2021-43974\nhttps://www.atredis.com/blog/2022/1/5/unauthenticated-rce-chain-in-sysaid-itil\n- CVE-2022-0219:\nImproper Restriction of XML External Entity Reference in\u00a0skylot/jadx\nhttps://github.com/Haxatron/CVE-2022-0219\n\n@BlueRedTeam", "creation_timestamp": "2022-01-22T08:45:24.000000Z"}, {"uuid": "bf480300-7cfc-4ca4-bbb7-c948e8a8aea5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43978", "type": "seen", "source": "https://t.me/cibsecurity/33638", "content": "\u203c CVE-2021-43978 \u203c\n\nAllegro WIndows 3.3.4152.0, embeds software administrator database credentials into its binary files, which allows users to access and modify data using the same credentials.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-12-08T22:23:00.000000Z"}, {"uuid": "55b9605a-fb5f-4fb1-9e1a-830094c60a5f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43975", "type": "seen", "source": "https://t.me/cibsecurity/32539", "content": "\u203c CVE-2021-43975 \u203c\n\nIn the Linux kernel through 5.15.2, hw_atl_utils_fw_rpc_wait in drivers/net/ethernet/aquantia/atlantic/hw_atl/hw_atl_utils.c allows an attacker (who can introduce a crafted device) to trigger an out-of-bounds write via a crafted length value.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-17T20:14:49.000000Z"}, {"uuid": "8952c227-ff40-4309-aa42-a245946a9846", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43977", "type": "seen", "source": "https://t.me/cibsecurity/32536", "content": "\u203c CVE-2021-43977 \u203c\n\nSmarterTools SmarterMail 16.x through 100.x before 100.0.7803 allows XSS.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-17T20:14:46.000000Z"}, {"uuid": "d72bab47-38d1-4c93-bbf0-37d5ef570a86", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43976", "type": "seen", "source": "https://t.me/cibsecurity/32530", "content": "\u203c CVE-2021-43976 \u203c\n\nIn the Linux kernel through 5.15.2, mwifiex_usb_recv in drivers/net/wireless/marvell/mwifiex/usb.c allows an attacker (who can connect a crafted USB device) to cause a denial of service (skb_over_panic).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-17T20:14:38.000000Z"}, {"uuid": "02aa4f2a-f5ab-4e97-92ca-a04d22d267b1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43971", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/5254", "content": "#exploit\n1. Unauthenticated RCE Chain in SysAid ITIL - CVE-2021-43971, CVE-2021-43972, CVE-2021-43973, CVE-2021-43974\nhttps://www.atredis.com/blog/2022/1/5/unauthenticated-rce-chain-in-sysaid-itil\n\n2. CVE-2022-0219:\nImproper Restriction of XML External Entity Reference in\u00a0skylot/jadx\nhttps://github.com/Haxatron/CVE-2022-0219", "creation_timestamp": "2022-01-22T22:20:00.000000Z"}, {"uuid": "d528c863-8e53-4095-abbc-ce6e5269e7ac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43971", "type": "published-proof-of-concept", "source": "https://t.me/BlueRedTeam/1646", "content": "#exploit\n- Unauthenticated RCE Chain in SysAid ITIL - CVE-2021-43971, CVE-2021-43972, CVE-2021-43973, CVE-2021-43974\nhttps://www.atredis.com/blog/2022/1/5/unauthenticated-rce-chain-in-sysaid-itil\n- CVE-2022-0219:\nImproper Restriction of XML External Entity Reference in\u00a0skylot/jadx\nhttps://github.com/Haxatron/CVE-2022-0219\n\n@BlueRedTeam", "creation_timestamp": "2022-01-22T08:45:24.000000Z"}, {"uuid": "7641c15e-5dc2-43dc-bb32-82c1866d880d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43972", "type": "published-proof-of-concept", "source": "https://t.me/BlueRedTeam/1646", "content": "#exploit\n- Unauthenticated RCE Chain in SysAid ITIL - CVE-2021-43971, CVE-2021-43972, CVE-2021-43973, CVE-2021-43974\nhttps://www.atredis.com/blog/2022/1/5/unauthenticated-rce-chain-in-sysaid-itil\n- CVE-2022-0219:\nImproper Restriction of XML External Entity Reference in\u00a0skylot/jadx\nhttps://github.com/Haxatron/CVE-2022-0219\n\n@BlueRedTeam", "creation_timestamp": "2022-01-22T08:45:24.000000Z"}, {"uuid": "01eea761-c255-4978-8f16-f56ac86a7100", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43973", "type": "published-proof-of-concept", "source": "https://t.me/BlueRedTeam/1646", "content": "#exploit\n- Unauthenticated RCE Chain in SysAid ITIL - CVE-2021-43971, CVE-2021-43972, CVE-2021-43973, CVE-2021-43974\nhttps://www.atredis.com/blog/2022/1/5/unauthenticated-rce-chain-in-sysaid-itil\n- CVE-2022-0219:\nImproper Restriction of XML External Entity Reference in\u00a0skylot/jadx\nhttps://github.com/Haxatron/CVE-2022-0219\n\n@BlueRedTeam", "creation_timestamp": "2022-01-22T08:45:24.000000Z"}, {"uuid": "3e42bfa5-432f-43f1-b6e3-cb3e624f363e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43972", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/5254", "content": "#exploit\n1. Unauthenticated RCE Chain in SysAid ITIL - CVE-2021-43971, CVE-2021-43972, CVE-2021-43973, CVE-2021-43974\nhttps://www.atredis.com/blog/2022/1/5/unauthenticated-rce-chain-in-sysaid-itil\n\n2. CVE-2022-0219:\nImproper Restriction of XML External Entity Reference in\u00a0skylot/jadx\nhttps://github.com/Haxatron/CVE-2022-0219", "creation_timestamp": "2022-01-22T22:20:00.000000Z"}, {"uuid": "bfb27f6c-909e-4b94-aa97-a796fee282f4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43973", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/5254", "content": "#exploit\n1. Unauthenticated RCE Chain in SysAid ITIL - CVE-2021-43971, CVE-2021-43972, CVE-2021-43973, CVE-2021-43974\nhttps://www.atredis.com/blog/2022/1/5/unauthenticated-rce-chain-in-sysaid-itil\n\n2. CVE-2022-0219:\nImproper Restriction of XML External Entity Reference in\u00a0skylot/jadx\nhttps://github.com/Haxatron/CVE-2022-0219", "creation_timestamp": "2022-01-22T22:20:00.000000Z"}, {"uuid": "e67f496e-de1e-401f-872d-9a9ba3035060", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43974", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/5254", "content": "#exploit\n1. Unauthenticated RCE Chain in SysAid ITIL - CVE-2021-43971, CVE-2021-43972, CVE-2021-43973, CVE-2021-43974\nhttps://www.atredis.com/blog/2022/1/5/unauthenticated-rce-chain-in-sysaid-itil\n\n2. CVE-2022-0219:\nImproper Restriction of XML External Entity Reference in\u00a0skylot/jadx\nhttps://github.com/Haxatron/CVE-2022-0219", "creation_timestamp": "2022-01-22T22:20:00.000000Z"}]}