{"vulnerability": "CVE-2021-4403", "sightings": [{"uuid": "31feef02-26b4-4053-8d95-bf07810b7a42", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-44038", "type": "seen", "source": "https://t.me/cibsecurity/32743", "content": "\u203c CVE-2021-44038 \u203c\n\nAn issue was discovered in Quagga through 1.2.4. Unsafe chown/chmod operations in the suggested spec file allow users (with control of the non-root-owned directory /etc/quagga) to escalate their privileges to root upon package installation or update.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-19T22:17:18.000000Z"}, {"uuid": "69454469-fb85-47b3-b928-e8abc8e2dcd5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-44037", "type": "seen", "source": "https://t.me/cibsecurity/32726", "content": "\u203c CVE-2021-44037 \u203c\n\nTeam Password Manager (aka TeamPasswordManager) before 10.135.236 allows password-reset poisoning.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-19T20:17:18.000000Z"}, {"uuid": "74692ed1-429f-4a99-a0f9-612c4047f5b2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-44033", "type": "seen", "source": "https://t.me/cibsecurity/32672", "content": "\u203c CVE-2021-44033 \u203c\n\nIn Ionic Identity Vault before 5.0.5, the protection mechanism for invalid unlock attempts can be bypassed.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-19T07:16:24.000000Z"}, {"uuid": "c59deaba-baf9-4158-ae0c-921980a47100", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-44035", "type": "seen", "source": "https://t.me/cibsecurity/34197", "content": "\u203c CVE-2021-44035 \u203c\n\nWolters Kluwer TeamMate AM 12.4 Update 1 mishandles attachment uploads, such that an authenticated user may download and execute malicious files.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-12-17T18:37:10.000000Z"}, {"uuid": "840e3735-73b0-4669-838d-d4853d917fe1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-44036", "type": "seen", "source": "https://t.me/cibsecurity/32722", "content": "\u203c CVE-2021-44036 \u203c\n\nTeam Password Manager (aka TeamPasswordManager) before 10.135.236 has a CSRF vulnerability during import.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-19T20:17:13.000000Z"}]}