{"vulnerability": "CVE-2021-3857", "sightings": [{"uuid": "35f620e7-3715-4d87-a013-22ff4394cb74", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-38577", "type": "seen", "source": "https://t.me/cibsecurity/38390", "content": "\u203c CVE-2021-38577 \u203c\n\nHeap Overflow in BaseBmpSupportLib.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-04T00:26:29.000000Z"}, {"uuid": "da37e51b-b540-4972-84d3-9c92653a2e55", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-38578", "type": "seen", "source": "https://t.me/cibsecurity/38394", "content": "\u203c CVE-2021-38578 \u203c\n\nExisting CommBuffer checks in SmmEntryPoint will not catch underflow when computing BufferSize.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-04T00:26:34.000000Z"}, {"uuid": "dda0001a-e3eb-4e45-a5df-a63200ae6bc6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-3857", "type": "seen", "source": "https://t.me/cibsecurity/35655", "content": "\u203c CVE-2021-3857 \u203c\n\nchaskiq is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-01-17T14:23:01.000000Z"}, {"uuid": "d1c93ae8-87c6-4b57-8359-fd0dbab4e2d1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-38575", "type": "seen", "source": "https://t.me/cibsecurity/33220", "content": "\u203c CVE-2021-38575 \u203c\n\nNetworkPkg/IScsiDxe has remotely exploitable buffer overflows.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-12-01T20:35:36.000000Z"}, {"uuid": "d5872640-1a0a-44df-86a8-4313d6a44957", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-38578", "type": "seen", "source": "https://vulnerability.circl.lu/comment/f5ac1ede-8d1c-409b-b6bc-ce202e11fc90", "content": "", "creation_timestamp": "2024-07-27T08:42:43.664278Z"}, {"uuid": "f1aaa9da-f65d-4de1-96f4-b8cc26f2ac97", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-38578", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/13121", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2021-38578\n\ud83d\udd25 CVSS Score: 7.4 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:L)\n\ud83d\udd39 Description: Existing CommBuffer checks in SmmEntryPoint will not catch underflow when computing BufferSize.\n\ud83d\udccf Published: 2022-03-03T21:53:37.000Z\n\ud83d\udccf Modified: 2025-04-23T18:59:05.792Z\n\ud83d\udd17 References:\n1. https://bugzilla.tianocore.org/show_bug.cgi?id=3387\n2. https://www.insyde.com/security-pledge/SA-2023024", "creation_timestamp": "2025-04-23T19:05:19.000000Z"}]}