https://db.gcve.eu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Tue, 05 May 2026 04:34:53 +0000 https://db.gcve.eu/sighting/4f1fd611-103d-4e5b-b738-f8e6472acac9/export {"uuid": "4f1fd611-103d-4e5b-b738-f8e6472acac9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-43272", "type": "seen", "source": "https://t.me/cibsecurity/32380", "content": "\u203c CVE-2021-43272 \u203c\n\nAn improper handling of exceptional conditions vulnerability exists in Open Design Alliance ODA Viewer sample before 2022.11. ODA Viewer continues to process invalid or malicious DWF files instead of stopping upon an exception. An attacker can leverage this vulnerability to execute code in the context of the current process.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-15T00:11:30.000000Z"} {"uuid": "4f1fd611-103d-4e5b-b738-f8e6472acac9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-43272", "type": "seen", "source": "https://t.me/cibsecurity/32380", "content": "\u203c CVE-2021-43272 \u203c\n\nAn improper handling of exceptional conditions vulnerability exists in Open Design Alliance ODA Viewer sample before 2022.11. ODA Viewer continues to process invalid or malicious DWF files instead of stopping upon an exception. An attacker can leverage this vulnerability to execute code in the context of the current process.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-15T00:11:30.000000Z"} https://db.gcve.eu/sighting/4f1fd611-103d-4e5b-b738-f8e6472acac9/export Mon, 15 Nov 2021 00:11:30 +0000 https://db.gcve.eu/sighting/07057585-77e3-435d-8446-d9bf2364c028/export {"uuid": "07057585-77e3-435d-8446-d9bf2364c028", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-43278", "type": "seen", "source": "https://t.me/cibsecurity/32381", "content": "\u203c CVE-2021-43278 \u203c\n\nAn Out-of-bounds Read vulnerability exists in the OBJ file reading procedure in Open Design Alliance Drawings SDK before 2022.11. The lack of validating the input length can trigger a read past the end of an allocated buffer. An attacker can leverage this vulnerability to execute code in the context of the current process.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-15T00:11:32.000000Z"} {"uuid": "07057585-77e3-435d-8446-d9bf2364c028", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-43278", "type": "seen", "source": "https://t.me/cibsecurity/32381", "content": "\u203c CVE-2021-43278 \u203c\n\nAn Out-of-bounds Read vulnerability exists in the OBJ file reading procedure in Open Design Alliance Drawings SDK before 2022.11. The lack of validating the input length can trigger a read past the end of an allocated buffer. An attacker can leverage this vulnerability to execute code in the context of the current process.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-15T00:11:32.000000Z"} https://db.gcve.eu/sighting/07057585-77e3-435d-8446-d9bf2364c028/export Mon, 15 Nov 2021 00:11:32 +0000 https://db.gcve.eu/sighting/fdfa164a-34fa-4158-b6fc-a60fe582c185/export {"uuid": "fdfa164a-34fa-4158-b6fc-a60fe582c185", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-43279", "type": "seen", "source": "https://t.me/cibsecurity/32383", "content": "\u203c CVE-2021-43279 \u203c\n\nAn out-of-bounds write vulnerability exists in the U3D file reading procedure in Open Design Alliance PRC SDK before 2022.10. Crafted data in a U3D file can trigger a write past the end of an allocated buffer. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-15T00:11:35.000000Z"} {"uuid": "fdfa164a-34fa-4158-b6fc-a60fe582c185", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-43279", "type": "seen", "source": "https://t.me/cibsecurity/32383", "content": "\u203c CVE-2021-43279 \u203c\n\nAn out-of-bounds write vulnerability exists in the U3D file reading procedure in Open Design Alliance PRC SDK before 2022.10. Crafted data in a U3D file can trigger a write past the end of an allocated buffer. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-15T00:11:35.000000Z"} https://db.gcve.eu/sighting/fdfa164a-34fa-4158-b6fc-a60fe582c185/export Mon, 15 Nov 2021 00:11:35 +0000 https://db.gcve.eu/sighting/d744d478-e019-4e6c-9f8e-57218e2363c3/export {"uuid": "d744d478-e019-4e6c-9f8e-57218e2363c3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-43275", "type": "seen", "source": "https://t.me/cibsecurity/32384", "content": "\u203c CVE-2021-43275 \u203c\n\nA Use After Free vulnerability exists in the DGN file reading procedure in Open Design Alliance Drawings SDK before 2022.8. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-15T00:11:36.000000Z"} {"uuid": "d744d478-e019-4e6c-9f8e-57218e2363c3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-43275", "type": "seen", "source": "https://t.me/cibsecurity/32384", "content": "\u203c CVE-2021-43275 \u203c\n\nA Use After Free vulnerability exists in the DGN file reading procedure in Open Design Alliance Drawings SDK before 2022.8. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-15T00:11:36.000000Z"} https://db.gcve.eu/sighting/d744d478-e019-4e6c-9f8e-57218e2363c3/export Mon, 15 Nov 2021 00:11:36 +0000 https://db.gcve.eu/sighting/9ad70c03-7384-4f97-9a1e-a831cdf5b3cf/export {"uuid": "9ad70c03-7384-4f97-9a1e-a831cdf5b3cf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-43277", "type": "seen", "source": "https://t.me/cibsecurity/32386", "content": "\u203c CVE-2021-43277 \u203c\n\nAn out-of-bounds read vulnerability exists in the U3D file reading procedure in Open Design Alliance PRC SDK before 2022.10. Crafted data in a U3D file can trigger a read past the end of an allocated buffer. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-15T00:11:38.000000Z"} {"uuid": "9ad70c03-7384-4f97-9a1e-a831cdf5b3cf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-43277", "type": "seen", "source": "https://t.me/cibsecurity/32386", "content": "\u203c CVE-2021-43277 \u203c\n\nAn out-of-bounds read vulnerability exists in the U3D file reading procedure in Open Design Alliance PRC SDK before 2022.10. Crafted data in a U3D file can trigger a read past the end of an allocated buffer. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-15T00:11:38.000000Z"} https://db.gcve.eu/sighting/9ad70c03-7384-4f97-9a1e-a831cdf5b3cf/export Mon, 15 Nov 2021 00:11:38 +0000 https://db.gcve.eu/sighting/3819b79d-f33f-40ae-9e21-e9b931df6c06/export {"uuid": "3819b79d-f33f-40ae-9e21-e9b931df6c06", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-43276", "type": "seen", "source": "https://t.me/cibsecurity/32387", "content": "\u203c CVE-2021-43276 \u203c\n\nAn Out-of-bounds Read vulnerability exists in Open Design Alliance ODA Viewer before 2022.8. Crafted data in a DWF file can trigger a read past the end of an allocated buffer. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-15T00:11:40.000000Z"} {"uuid": "3819b79d-f33f-40ae-9e21-e9b931df6c06", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-43276", "type": "seen", "source": "https://t.me/cibsecurity/32387", "content": "\u203c CVE-2021-43276 \u203c\n\nAn Out-of-bounds Read vulnerability exists in Open Design Alliance ODA Viewer before 2022.8. Crafted data in a DWF file can trigger a read past the end of an allocated buffer. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-15T00:11:40.000000Z"} https://db.gcve.eu/sighting/3819b79d-f33f-40ae-9e21-e9b931df6c06/export Mon, 15 Nov 2021 00:11:40 +0000 https://db.gcve.eu/sighting/db079def-03d9-409d-ad1f-0fd1c019bfe3/export {"uuid": "db079def-03d9-409d-ad1f-0fd1c019bfe3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-43274", "type": "seen", "source": "https://t.me/cibsecurity/32388", "content": "\u203c CVE-2021-43274 \u203c\n\nA Use After Free Vulnerability exists in the Open Design Alliance Drawings SDK before 2022.11. The specific flaw exists within the parsing of DWF files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-15T00:11:41.000000Z"} {"uuid": "db079def-03d9-409d-ad1f-0fd1c019bfe3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-43274", "type": "seen", "source": "https://t.me/cibsecurity/32388", "content": "\u203c CVE-2021-43274 \u203c\n\nA Use After Free Vulnerability exists in the Open Design Alliance Drawings SDK before 2022.11. The specific flaw exists within the parsing of DWF files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-15T00:11:41.000000Z"} https://db.gcve.eu/sighting/db079def-03d9-409d-ad1f-0fd1c019bfe3/export Mon, 15 Nov 2021 00:11:41 +0000 https://db.gcve.eu/sighting/183578fd-55e2-4b65-b928-38d462308402/export {"uuid": "183578fd-55e2-4b65-b928-38d462308402", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-43273", "type": "seen", "source": "https://t.me/cibsecurity/32389", "content": "\u203c CVE-2021-43273 \u203c\n\nAn Out-of-bounds Read vulnerability exists in the DGN file reading procedure in Open Design Alliance Drawings SDK before 2022.11. Crafted data in a DGN file and lack of verification of input data can trigger a read past the end of an allocated buffer. An attacker can leverage this vulnerability to execute code in the context of the current process.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-15T00:11:43.000000Z"} {"uuid": "183578fd-55e2-4b65-b928-38d462308402", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-43273", "type": "seen", "source": "https://t.me/cibsecurity/32389", "content": "\u203c CVE-2021-43273 \u203c\n\nAn Out-of-bounds Read vulnerability exists in the DGN file reading procedure in Open Design Alliance Drawings SDK before 2022.11. Crafted data in a DGN file and lack of verification of input data can trigger a read past the end of an allocated buffer. An attacker can leverage this vulnerability to execute code in the context of the current process.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-15T00:11:43.000000Z"} https://db.gcve.eu/sighting/183578fd-55e2-4b65-b928-38d462308402/export Mon, 15 Nov 2021 00:11:43 +0000 https://db.gcve.eu/sighting/efabe5ca-5086-416d-af06-104d2969fa55/export {"uuid": "efabe5ca-5086-416d-af06-104d2969fa55", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-43271", "type": "seen", "source": "https://t.me/cibsecurity/43832", "content": "\u203c CVE-2021-43271 \u203c\n\nRiverbed AppResponse 11.8.0, 11.8.5, 11.8.5a, 11.9.0, 11.9.0a, 11.10.0, 11.11.0, 11.11.0a, 11.11.1, 11.11.1a, 11.11.5, and 11.11.5a (when configured to use local, RADIUS, or TACACS authentication) logs usernames and passwords if either is entered incorrectly. If a user enters an incorrect username and/or password when logging into the WebUI, these attempted credentials are included in an error message that is logged in the WebUI log file. A log entry does not appear if the username and password provided correctly match a valid set of credentials. This also does not happen if AppResponse is configured to use SAML authentication. The WebUI log file is included in subsequent diagnostic system dumps that are generated. (Only users with Full Control access to the System Configuration permission can generate system dumps. By default, only System Administrators have Full Control access to the System Configuration permission.)\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-04T00:26:50.000000Z"} {"uuid": "efabe5ca-5086-416d-af06-104d2969fa55", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-43271", "type": "seen", "source": "https://t.me/cibsecurity/43832", "content": "\u203c CVE-2021-43271 \u203c\n\nRiverbed AppResponse 11.8.0, 11.8.5, 11.8.5a, 11.9.0, 11.9.0a, 11.10.0, 11.11.0, 11.11.0a, 11.11.1, 11.11.1a, 11.11.5, and 11.11.5a (when configured to use local, RADIUS, or TACACS authentication) logs usernames and passwords if either is entered incorrectly. If a user enters an incorrect username and/or password when logging into the WebUI, these attempted credentials are included in an error message that is logged in the WebUI log file. A log entry does not appear if the username and password provided correctly match a valid set of credentials. This also does not happen if AppResponse is configured to use SAML authentication. The WebUI log file is included in subsequent diagnostic system dumps that are generated. (Only users with Full Control access to the System Configuration permission can generate system dumps. By default, only System Administrators have Full Control access to the System Configuration permission.)\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-04T00:26:50.000000Z"} https://db.gcve.eu/sighting/efabe5ca-5086-416d-af06-104d2969fa55/export Sat, 04 Jun 2022 00:26:50 +0000 https://db.gcve.eu/sighting/524ef585-531e-4cbe-b013-3d4235aa2ace/export {"uuid": "524ef585-531e-4cbe-b013-3d4235aa2ace", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-4327", "type": "seen", "source": "https://t.me/cibsecurity/59218", "content": "\u203c CVE-2021-4327 \u203c\n\nA vulnerability was found in SerenityOS. It has been rated as critical. Affected by this issue is the function initialize_typed_array_from_array_buffer in the library Userland/Libraries/LibJS/Runtime/TypedArray.cpp. The manipulation leads to integer overflow. The exploit has been disclosed to the public and may be used. Continious delivery with rolling releases is used by this product. Therefore, no version details of affected nor updated releases are available. The name of the patch is f6c6047e49f1517778f5565681fb64750b14bf60. It is recommended to apply a patch to fix this issue. VDB-222074 is the identifier assigned to this vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-01T14:33:22.000000Z"} {"uuid": "524ef585-531e-4cbe-b013-3d4235aa2ace", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-4327", "type": "seen", "source": "https://t.me/cibsecurity/59218", "content": "\u203c CVE-2021-4327 \u203c\n\nA vulnerability was found in SerenityOS. It has been rated as critical. Affected by this issue is the function initialize_typed_array_from_array_buffer in the library Userland/Libraries/LibJS/Runtime/TypedArray.cpp. The manipulation leads to integer overflow. The exploit has been disclosed to the public and may be used. Continious delivery with rolling releases is used by this product. Therefore, no version details of affected nor updated releases are available. The name of the patch is f6c6047e49f1517778f5565681fb64750b14bf60. It is recommended to apply a patch to fix this issue. VDB-222074 is the identifier assigned to this vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-01T14:33:22.000000Z"} https://db.gcve.eu/sighting/524ef585-531e-4cbe-b013-3d4235aa2ace/export Wed, 01 Mar 2023 14:33:22 +0000