{"vulnerability": "CVE-2021-3860", "sightings": [{"uuid": "8adfbb3c-b0cb-458c-8761-55f5c596fd9f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-38608", "type": "seen", "source": "https://t.me/cibsecurity/27416", "content": "\u203c CVE-2021-38608 \u203c\n\nIncorrect Access Control in Tranquil WAPT Enterprise - before 1.8.2.7373 and before 2.0.0.9450 allows guest OS users to escalate privileges via WAPT Agent.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-08-17T00:14:58.000000Z"}, {"uuid": "bcb0969e-1d33-4348-bf9b-99c58e59a760", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-38607", "type": "seen", "source": "https://t.me/cibsecurity/27376", "content": "\u203c CVE-2021-38607 \u203c\n\nCrocoblock JetEngine before 2.6.1 allows XSS by remote authenticated users via a custom form input.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-08-16T16:14:38.000000Z"}, {"uuid": "a13621fd-5471-40ab-a009-6d3d2a671c8e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-38604", "type": "seen", "source": "https://t.me/cibsecurity/27244", "content": "\u203c CVE-2021-38604 \u203c\n\nIn librt in the GNU C Library (aka glibc) through 2.34, sysdeps/unix/sysv/linux/mq_notify.c mishandles certain NOTIFY_REMOVED data, leading to a NULL pointer dereference. NOTE: this vulnerability was introduced as a side effect of the CVE-2021-33574 fix.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-08-12T20:39:01.000000Z"}, {"uuid": "42b808a0-688c-4caa-b7be-8624dd3caa6d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-38606", "type": "seen", "source": "https://t.me/cibsecurity/27242", "content": "\u203c CVE-2021-38606 \u203c\n\nreNgine through 0.5 relies on a predictable directory name.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-08-12T20:38:56.000000Z"}]}