{"vulnerability": "CVE-2021-43527", "sightings": [{"uuid": "1a7732fa-7683-4e1f-be8a-264556a3e5bd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2021-43527", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mjvgdclzwg2x", "content": "", "creation_timestamp": "2026-04-20T02:29:48.802868Z"}, {"uuid": "efd93875-47da-4b19-a1eb-556298686429", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2021-43527", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mjxwrhgkau2x", "content": "", "creation_timestamp": "2026-04-21T02:29:22.743040Z"}, {"uuid": "5cbed5d5-135f-4b72-9630-1a2b735ae6e0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2021-43527", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mjleh5vimz25", "content": "", "creation_timestamp": "2026-04-16T02:29:33.148686Z"}, {"uuid": "c495cc0f-bba9-47ce-8144-69f1930fa624", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2021-43527", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mjsvtyenpn2x", "content": "", "creation_timestamp": "2026-04-19T02:29:35.290768Z"}, {"uuid": "a849028c-423c-41b0-bfdb-f7599eda793f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-43527", "type": "seen", "source": "https://t.me/Linux_Arabss/86", "content": "\u0642\u0627\u0645 Tavis Ormandy \u0627\u0644\u0628\u0627\u062d\u062b \u0641\u064a Google Project Zero \u0628\u0625\u0643\u062a\u0634\u0627\u0641 \u062e\u0637\u0623 \u0641\u064a \u0645\u0643\u062a\u0628\u0629 \u062e\u062f\u0645\u0627\u062a \u0623\u0645\u0627\u0646 \u0627\u0644\u0634\u0628\u0643\u0629 (NSS) \u0627\u0644\u062e\u0627\u0635\u0629 \u0628\u062a\u0637\u0628\u064a\u0642\u0627\u062a mozilla\n\u0648\u0641\u064a \u062a\u0642\u0631\u064a\u0631 \u0639\u0646 \u0627\u0644\u0634\u0631\u0643\u0629 \u0623\u0646 \u0627\u0644\u062e\u0637\u0623 \u0644\u0627 \u064a\u0624\u062b\u0631 \u0639\u0644\u0649 Firefox \u0648\u0644\u0643\u0646 \u064a\u064f\u0639\u062a\u0642\u062f \u0623\u0646 Thunderbird \u0648 LibreOffice \u0648 Evolution \u0648 Evince \u0642\u062f \u062a\u0623\u062b\u0631 \u0628\u0627\u0644\u062e\u0637\u0623 \u060c \u0648\u062a\u0645 \u0627\u0644\u062a\u0635\u062d\u064a\u062d \u0641\u064a \u0627\u0644\u0625\u0635\u062f\u0627\u0631\u0627\u062a 3.73.0 \u0648 3.68.1 \u0645\u0646 NSS\n#CVE-2021-43527\nMozilla\nhttps://www.mozilla.org/en-US/security/advisories/mfsa2021-51/\n\nGoogle Project Zero\nhttps://googleprojectzero.blogspot.com/2021/12/this-shouldnt-have-happened.html?m=1", "creation_timestamp": "2022-07-08T01:37:58.000000Z"}, {"uuid": "fade4591-97f3-4432-9b7b-9e9543495826", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-43527", "type": "seen", "source": "https://t.me/true_secator/2397", "content": "Mozilla \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0430 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0434\u043b\u044f \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 Network Security Services (NSS), \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u043f\u043e\u0442\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u043c\u043e\u0436\u0435\u0442 \u0431\u044b\u0442\u044c \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0430 \u0434\u043b\u044f \u0432\u044b\u0437\u043e\u0432\u0430 \u0441\u0431\u043e\u044f \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u044f \u0438 \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u043e\u0433\u043e \u043a\u043e\u0434\u0430. \u041e\u0448\u0438\u0431\u043a\u0430 \u0431\u044b\u043b\u0430 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0430 \u0422\u044d\u0432\u0438\u0441\u043e\u043c \u041e\u0440\u043c\u0430\u043d\u0434\u0438 \u0438\u0437 Google Project Zero \u0438 \u043f\u043e\u043b\u0443\u0447\u0438\u043b\u0430 \u043d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435\u043c BigSig.\n \nNSS - \u044d\u0442\u043e \u043d\u0430\u0431\u043e\u0440 \u043a\u0440\u0438\u043f\u0442\u043e\u0433\u0440\u0430\u0444\u0438\u0447\u0435\u0441\u043a\u0438\u0445 \u043a\u043e\u043c\u043f\u044c\u044e\u0442\u0435\u0440\u043d\u044b\u0445 \u0431\u0438\u0431\u043b\u0438\u043e\u0442\u0435\u043a \u0441 \u043e\u0442\u043a\u0440\u044b\u0442\u044b\u043c \u0438\u0441\u0445\u043e\u0434\u043d\u044b\u043c \u043a\u043e\u0434\u043e\u043c, \u043f\u0440\u0435\u0434\u043d\u0430\u0437\u043d\u0430\u0447\u0435\u043d\u043d\u044b\u0445 \u0434\u043b\u044f \u043a\u0440\u043e\u0441\u0441\u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u0435\u043d\u043d\u043e\u0439 \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u043a\u0438 \u043a\u043b\u0438\u0435\u043d\u0442-\u0441\u0435\u0440\u0432\u0435\u0440\u043d\u044b\u0445 \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u0439 \u0441 \u043f\u043e\u0434\u0434\u0435\u0440\u0436\u043a\u043e\u0439 SSL v3, TLS, PKCS5, PKCS7, PKCS11, PKCS12, X.509 v3 \u0438 \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0442\u0430\u043d\u0434\u0430\u0440\u0442\u043e\u0432 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438. NSS \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f \u043c\u043d\u043e\u0433\u0438\u043c\u0438 \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u044f\u043c\u0438, \u0432\u043a\u043b\u044e\u0447\u0430\u044f AOL, Red Hat \u0438 Google.\n \nCVE-2021-43527 \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u0435\u0442 \u0430\u043a\u0442\u0443\u0430\u043b\u044c\u043d\u044b\u0435 \u0432\u0435\u0440\u0441\u0438\u0438 NSS \u0434\u043e 3.73 \u0438\u043b\u0438 3.68.1 ESR \u0438 \u0437\u0430\u043a\u043b\u044e\u0447\u0430\u0435\u0442\u0441\u044f \u0432 \u043f\u0435\u0440\u0435\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u0435 \u0431\u0443\u0444\u0435\u0440\u0430 \u043d\u0430 \u043e\u0441\u043d\u043e\u0432\u0435 \u043a\u0443\u0447\u0438 \u043f\u0440\u0438 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0435 \u0446\u0438\u0444\u0440\u043e\u0432\u044b\u0445 \u043f\u043e\u0434\u043f\u0438\u0441\u0435\u0439 DSA \u0438 RSA-PSS, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0437\u0430\u043a\u043e\u0434\u0438\u0440\u043e\u0432\u0430\u043d\u044b \u0441 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435\u043c \u0434\u0432\u043e\u0438\u0447\u043d\u043e\u0433\u043e \u0444\u043e\u0440\u043c\u0430\u0442\u0430 DER. \n \nBigSig \u043d\u0435 \u043e\u043a\u0430\u0437\u044b\u0432\u0430\u0435\u0442 \u043d\u0438\u043a\u0430\u043a\u043e\u0433\u043e \u0432\u043b\u0438\u044f\u043d\u0438\u044f \u043d\u0430 \u0441\u0430\u043c Mozilla Firefox, \u0430 \u0432\u043e\u0442 \u043f\u043e\u0447\u0442\u043e\u0432\u044b\u0435 \u043a\u043b\u0438\u0435\u043d\u0442\u044b, \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u044b \u043f\u0440\u043e\u0441\u043c\u043e\u0442\u0440\u0430 PDF-\u0444\u0430\u0439\u043b\u043e\u0432 \u0438 \u0434\u0440\u0443\u0433\u0438\u0435 \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u044f, \u0432 \u043e\u0441\u043d\u043e\u0432\u0435 \u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u0440\u0435\u0430\u043b\u0438\u0437\u043e\u0432\u0430\u043d NSS \u0434\u043b\u044f \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0438 \u043f\u043e\u0434\u043f\u0438\u0441\u0438, \u0442\u0430\u043a\u0438\u0435 \u043a\u0430\u043a Red Hat, Thunderbird, LibreOffice, Evolution \u0438 Evince \u043c\u043e\u0436\u043d\u043e \u0441\u0447\u0438\u0442\u0430\u0442\u044c \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u043c\u0438.\n \n\u0421\u0430\u043c\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c, \u043f\u043e \u043c\u043d\u0435\u043d\u0438\u044e \u044d\u043a\u0441\u043f\u0435\u0440\u0442\u043e\u0432, \u0443\u043d\u0438\u043a\u0430\u043b\u044c\u043d\u0430 \u0441\u0432\u043e\u0435\u0439 \u043f\u0440\u043e\u0441\u0442\u043e\u0442\u043e\u0439 \u0438 \u0432\u043e\u0437\u0440\u0430\u0441\u0442\u043e\u043c (\u043d\u0430\u0447\u0438\u043d\u0430\u044f \u0441 \u0432\u0435\u0440\u0441\u0438\u0438 3.14, \u0432\u044b\u043f\u0443\u0449\u0435\u043d\u043d\u043e\u0439 \u0432 \u043e\u043a\u0442\u044f\u0431\u0440\u0435 2012 \u0433\u043e\u0434\u0430).\n \n\u0422\u0430\u043a \u0447\u0442\u043e \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0447\u0438\u043a\u0430\u043c \u0440\u0435\u0448\u0435\u043d\u0438\u0439 \u043d\u0430 \u043e\u0441\u043d\u043e\u0432\u0435 NSS \u0432 \u0431\u043b\u0438\u0436\u0430\u0439\u0448\u0435\u0435 \u0432\u0440\u0435\u043c\u044f \u043f\u0440\u0435\u0434\u0441\u0442\u043e\u0438\u0442 \u0441\u0432\u043e\u044f \u0440\u0430\u0431\u043e\u0442\u0430 \u043d\u0430\u0434 \u043e\u0448\u0438\u0431\u043a\u0430\u043c\u0438 \u0438 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435\u043c \u0441\u0432\u043e\u0438\u0445 \u0431\u0438\u0431\u043b\u0438\u043e\u0442\u0435\u043a.", "creation_timestamp": "2021-12-02T10:05:57.000000Z"}, {"uuid": "5d50b2df-5f95-4dc2-8425-cffa5027d1df", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2021-43527", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mk2ha7xm7v2g", "content": "", "creation_timestamp": "2026-04-22T02:29:17.737230Z"}, {"uuid": "60a8985f-e33f-4dcc-a195-c07eaa50b995", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2021-43527", "type": "seen", "source": "https://bsky.app/profile/filippo.abyssdomain.expert/post/3mjklsutb6s2j", "content": "", "creation_timestamp": "2026-04-15T19:08:43.763686Z"}, {"uuid": "4ee14ae2-6007-437b-878b-030da8a9a081", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2021-43527", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mjnuvsllad2g", "content": "", "creation_timestamp": "2026-04-17T02:29:24.061596Z"}, {"uuid": "cb10e8f9-f71c-4923-a7c4-202dedf9ae64", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-43527", "type": "seen", "source": "https://t.me/ggfcvj/2953", "content": "\u0642\u0627\u0645 Tavis Ormandy \u0627\u0644\u0628\u0627\u062d\u062b \u0641\u064a Google Project Zero \u0628\u0625\u0643\u062a\u0634\u0627\u0641 \u062e\u0637\u0623 \u0641\u064a \u0645\u0643\u062a\u0628\u0629 \u062e\u062f\u0645\u0627\u062a \u0623\u0645\u0627\u0646 \u0627\u0644\u0634\u0628\u0643\u0629 (NSS) \u0627\u0644\u062e\u0627\u0635\u0629 \u0628\u062a\u0637\u0628\u064a\u0642\u0627\u062a mozilla\n\u0648\u0641\u064a \u062a\u0642\u0631\u064a\u0631 \u0639\u0646 \u0627\u0644\u0634\u0631\u0643\u0629 \u0623\u0646 \u0627\u0644\u062e\u0637\u0623 \u0644\u0627 \u064a\u0624\u062b\u0631 \u0639\u0644\u0649 Firefox \u0648\u0644\u0643\u0646 \u064a\u064f\u0639\u062a\u0642\u062f \u0623\u0646 Thunderbird \u0648 LibreOffice \u0648 Evolution \u0648 Evince \u0642\u062f \u062a\u0623\u062b\u0631 \u0628\u0627\u0644\u062e\u0637\u0623 \u060c \u0648\u062a\u0645 \u0627\u0644\u062a\u0635\u062d\u064a\u062d \u0641\u064a \u0627\u0644\u0625\u0635\u062f\u0627\u0631\u0627\u062a 3.73.0 \u0648 3.68.1 \u0645\u0646 NSS\n#CVE-2021-43527\nMozilla\nhttps://www.mozilla.org/en-US/security/advisories/mfsa2021-51/\n\nGoogle Project Zero\nhttps://googleprojectzero.blogspot.com/2021/12/this-shouldnt-have-happened.html?m=1", "creation_timestamp": "2021-12-03T14:02:22.000000Z"}, {"uuid": "fcf77a85-4b20-4ea8-a6df-14023628a154", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-43527", "type": "seen", "source": "https://t.me/anwar1213xx/1410", "content": "\u0642\u0627\u0645 Tavis Ormandy \u0627\u0644\u0628\u0627\u062d\u062b \u0641\u064a Google Project Zero \u0628\u0625\u0643\u062a\u0634\u0627\u0641 \u062e\u0637\u0623 \u0641\u064a \u0645\u0643\u062a\u0628\u0629 \u062e\u062f\u0645\u0627\u062a \u0623\u0645\u0627\u0646 \u0627\u0644\u0634\u0628\u0643\u0629 (NSS) \u0627\u0644\u062e\u0627\u0635\u0629 \u0628\u062a\u0637\u0628\u064a\u0642\u0627\u062a mozilla\n\u0648\u0641\u064a \u062a\u0642\u0631\u064a\u0631 \u0639\u0646 \u0627\u0644\u0634\u0631\u0643\u0629 \u0623\u0646 \u0627\u0644\u062e\u0637\u0623 \u0644\u0627 \u064a\u0624\u062b\u0631 \u0639\u0644\u0649 Firefox \u0648\u0644\u0643\u0646 \u064a\u064f\u0639\u062a\u0642\u062f \u0623\u0646 Thunderbird \u0648 LibreOffice \u0648 Evolution \u0648 Evince \u0642\u062f \u062a\u0623\u062b\u0631 \u0628\u0627\u0644\u062e\u0637\u0623 \u060c \u0648\u062a\u0645 \u0627\u0644\u062a\u0635\u062d\u064a\u062d \u0641\u064a \u0627\u0644\u0625\u0635\u062f\u0627\u0631\u0627\u062a 3.73.0 \u0648 3.68.1 \u0645\u0646 NSS\n#CVE-2021-43527\nMozilla\nhttps://www.mozilla.org/en-US/security/advisories/mfsa2021-51/\n\nGoogle Project Zero\nhttps://googleprojectzero.blogspot.com/2021/12/this-shouldnt-have-happened.html?m=1", "creation_timestamp": "2021-12-03T15:02:32.000000Z"}, {"uuid": "95c3b949-f8a2-4eef-9d22-56b25845b9a3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-43527", "type": "seen", "source": "https://t.me/cibsecurity/58390", "content": "\u203c CVE-2021-43529 \u203c\n\nThunderbird versions prior to 91.3.0 are vulnerable to the heap overflow described in CVE-2021-43527 when processing S/MIME messages. Thunderbird versions 91.3.0 and later will not call the vulnerable code when processing S/MIME messages that contain certificates with DER-encoded DSA or RSA-PSS signatures.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-17T00:14:09.000000Z"}, {"uuid": "a392eded-4e10-43d6-a45a-6346ba2b1716", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2021-43527", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mjqfe77gah2r", "content": "", "creation_timestamp": "2026-04-18T02:29:07.282836Z"}, {"uuid": "70422e07-e5fb-4610-8e12-bbd87931cc45", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-43527", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/8061", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2021-43529\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Thunderbird versions prior to 91.3.0 are vulnerable to the heap overflow described in CVE-2021-43527 when processing S/MIME messages. Thunderbird versions 91.3.0 and later will not call the vulnerable code when processing S/MIME messages that contain certificates with DER-encoded DSA or RSA-PSS signatures.\n\ud83d\udccf Published: 2023-02-16T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-19T15:00:31.859Z\n\ud83d\udd17 References:\n1. https://bugzilla.mozilla.org/show_bug.cgi?id=CVE-2021-43529", "creation_timestamp": "2025-03-19T15:17:43.000000Z"}, {"uuid": "574e8b69-40c5-47eb-8482-cc2e9e6a2a0b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-43527", "type": "seen", "source": "https://t.me/Termux_AND_Security7667/407", "content": "\u0642\u0627\u0645 Tavis Ormandy \u0627\u0644\u0628\u0627\u062d\u062b \u0641\u064a Google Project Zero \u0628\u0625\u0643\u062a\u0634\u0627\u0641 \u062e\u0637\u0623 \u0641\u064a \u0645\u0643\u062a\u0628\u0629 \u062e\u062f\u0645\u0627\u062a \u0623\u0645\u0627\u0646 \u0627\u0644\u0634\u0628\u0643\u0629 (NSS) \u0627\u0644\u062e\u0627\u0635\u0629 \u0628\u062a\u0637\u0628\u064a\u0642\u0627\u062a mozilla\n\u0648\u0641\u064a \u062a\u0642\u0631\u064a\u0631 \u0639\u0646 \u0627\u0644\u0634\u0631\u0643\u0629 \u0623\u0646 \u0627\u0644\u062e\u0637\u0623 \u0644\u0627 \u064a\u0624\u062b\u0631 \u0639\u0644\u0649 Firefox \u0648\u0644\u0643\u0646 \u064a\u064f\u0639\u062a\u0642\u062f \u0623\u0646 Thunderbird \u0648 LibreOffice \u0648 Evolution \u0648 Evince \u0642\u062f \u062a\u0623\u062b\u0631 \u0628\u0627\u0644\u062e\u0637\u0623 \u060c \u0648\u062a\u0645 \u0627\u0644\u062a\u0635\u062d\u064a\u062d \u0641\u064a \u0627\u0644\u0625\u0635\u062f\u0627\u0631\u0627\u062a 3.73.0 \u0648 3.68.1 \u0645\u0646 NSS\n#CVE-2021-43527\nMozilla\nhttps://www.mozilla.org/en-US/security/advisories/mfsa2021-51/\n\nGoogle Project Zero\nhttps://googleprojectzero.blogspot.com/2021/12/this-shouldnt-have-happened.html?m=1", "creation_timestamp": "2021-12-03T15:02:06.000000Z"}, {"uuid": "c6042ce2-be03-4d67-a298-1960da67afbe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-43527", "type": "seen", "source": "https://t.me/hack77z99/9371", "content": "\u0642\u0627\u0645 Tavis Ormandy \u0627\u0644\u0628\u0627\u062d\u062b \u0641\u064a Google Project Zero \u0628\u0625\u0643\u062a\u0634\u0627\u0641 \u062e\u0637\u0623 \u0641\u064a \u0645\u0643\u062a\u0628\u0629 \u062e\u062f\u0645\u0627\u062a \u0623\u0645\u0627\u0646 \u0627\u0644\u0634\u0628\u0643\u0629 (NSS) \u0627\u0644\u062e\u0627\u0635\u0629 \u0628\u062a\u0637\u0628\u064a\u0642\u0627\u062a mozilla\n\u0648\u0641\u064a \u062a\u0642\u0631\u064a\u0631 \u0639\u0646 \u0627\u0644\u0634\u0631\u0643\u0629 \u0623\u0646 \u0627\u0644\u062e\u0637\u0623 \u0644\u0627 \u064a\u0624\u062b\u0631 \u0639\u0644\u0649 Firefox \u0648\u0644\u0643\u0646 \u064a\u064f\u0639\u062a\u0642\u062f \u0623\u0646 Thunderbird \u0648 LibreOffice \u0648 Evolution \u0648 Evince \u0642\u062f \u062a\u0623\u062b\u0631 \u0628\u0627\u0644\u062e\u0637\u0623 \u060c \u0648\u062a\u0645 \u0627\u0644\u062a\u0635\u062d\u064a\u062d \u0641\u064a \u0627\u0644\u0625\u0635\u062f\u0627\u0631\u0627\u062a 3.73.0 \u0648 3.68.1 \u0645\u0646 NSS\n#CVE-2021-43527\nMozilla\nhttps://www.mozilla.org/en-US/security/advisories/mfsa2021-51/\n\nGoogle Project Zero\nhttps://googleprojectzero.blogspot.com/2021/12/this-shouldnt-have-happened.html?m=1", "creation_timestamp": "2021-12-03T15:02:28.000000Z"}, {"uuid": "f515e5f5-7730-4c72-a528-4d69a436af83", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-43527", "type": "seen", "source": "https://t.me/ctinow/182523", "content": "https://ift.tt/Zni27SH\nCVE-2021-43527 | Oracle Fujitsu M10-1 XCP Firmware out-of-bounds write", "creation_timestamp": "2024-02-10T10:41:37.000000Z"}, {"uuid": "686256a6-a8bf-437d-b027-4df6f8636b27", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-43527", "type": "seen", "source": "https://t.me/cibsecurity/33646", "content": "\u203c CVE-2021-43527 \u203c\n\nNSS (Network Security Services) versions prior to 3.73 or 3.68.1 ESR are vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS signatures. Applications using NSS for handling signatures encoded within CMS, S/MIME, PKCS \\#7, or PKCS \\#12 are likely to be impacted. Applications using NSS for certificate validation or other TLS, X.509, OCSP or CRL functionality may be impacted, depending on how they configure NSS. *Note: This vulnerability does NOT impact Mozilla Firefox.* However, email clients and PDF viewers that use NSS for signature verification, such as Thunderbird, LibreOffice, Evolution and Evince are believed to be impacted. This vulnerability affects NSS < 3.73 and NSS < 3.68.1.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-12-09T00:23:51.000000Z"}, {"uuid": "efa6e0e8-15a7-498e-a2a6-74ba14e2693f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-43527", "type": "seen", "source": "https://t.me/VulnerabilityNews/31814", "content": "Thunderbird versions prior to 91.3.0 are vulnerable to the heap overflow described in CVE-2021-43527 when processing S/MIME messages. Thunderbird versions 91.3.0 and later will not call the vulnerable code when processing S/MIME messages that contain certificates with DER-encoded DSA or RSA-PSS signatures.\nPublished at: February 16, 2023 at 11:15PM\nView on website", "creation_timestamp": "2023-02-17T00:42:50.000000Z"}, {"uuid": "f4626951-ebaa-48a8-91ee-b40b33b26529", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-43527", "type": "seen", "source": "https://t.me/CyberSecurityTechnologies/4878", "content": "#Threat_Research\nThis shouldn't have happened:\nA vulnerability postmortem (CVE-2021-43527)\nhttps://googleprojectzero.blogspot.com\n]-> NSS: memory corruption validating dsa/rsa-pss signatures\nhttps://bugs.chromium.org/p/project-zero/issues/detail?id=2237", "creation_timestamp": "2022-06-29T01:20:19.000000Z"}, {"uuid": "bb27d904-a31a-4ab2-9417-6c63129dfddb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-43527", "type": "seen", "source": "https://t.me/Linux_Arabs/61", "content": "\u0642\u0627\u0645 Tavis Ormandy \u0627\u0644\u0628\u0627\u062d\u062b \u0641\u064a Google Project Zero \u0628\u0625\u0643\u062a\u0634\u0627\u0641 \u062e\u0637\u0623 \u0641\u064a \u0645\u0643\u062a\u0628\u0629 \u062e\u062f\u0645\u0627\u062a \u0623\u0645\u0627\u0646 \u0627\u0644\u0634\u0628\u0643\u0629 (NSS) \u0627\u0644\u062e\u0627\u0635\u0629 \u0628\u062a\u0637\u0628\u064a\u0642\u0627\u062a mozilla\n\u0648\u0641\u064a \u062a\u0642\u0631\u064a\u0631 \u0639\u0646 \u0627\u0644\u0634\u0631\u0643\u0629 \u0623\u0646 \u0627\u0644\u062e\u0637\u0623 \u0644\u0627 \u064a\u0624\u062b\u0631 \u0639\u0644\u0649 Firefox \u0648\u0644\u0643\u0646 \u064a\u064f\u0639\u062a\u0642\u062f \u0623\u0646 Thunderbird \u0648 LibreOffice \u0648 Evolution \u0648 Evince \u0642\u062f \u062a\u0623\u062b\u0631 \u0628\u0627\u0644\u062e\u0637\u0623 \u060c \u0648\u062a\u0645 \u0627\u0644\u062a\u0635\u062d\u064a\u062d \u0641\u064a \u0627\u0644\u0625\u0635\u062f\u0627\u0631\u0627\u062a 3.73.0 \u0648 3.68.1 \u0645\u0646 NSS\n#CVE-2021-43527\nMozilla\nhttps://www.mozilla.org/en-US/security/advisories/mfsa2021-51/\n\nGoogle Project Zero\nhttps://googleprojectzero.blogspot.com/2021/12/this-shouldnt-have-happened.html?m=1", "creation_timestamp": "2024-11-02T22:56:11.000000Z"}]}