{"vulnerability": "cve-2021-3992", "sightings": [{"uuid": "f76c2789-c8f9-45e9-b098-cdb97aeab3ae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-39929", "type": "seen", "source": "https://t.me/cibsecurity/32715", "content": "\u203c CVE-2021-39929 \u203c\n\nUncontrolled Recursion in the Bluetooth DHT dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-19T20:17:05.000000Z"}, {"uuid": "ecb2d3ed-3c43-4804-bc04-8d3d5b55bcbb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-39924", "type": "seen", "source": "https://t.me/cibsecurity/32709", "content": "\u203c CVE-2021-39924 \u203c\n\nLarge loop in the Bluetooth DHT dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-19T20:16:58.000000Z"}, {"uuid": "d80e889f-ac1b-47aa-b2d7-a1cec753b5db", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-39926", "type": "seen", "source": "https://t.me/cibsecurity/32708", "content": "\u203c CVE-2021-39926 \u203c\n\nBuffer overflow in the Bluetooth HCI_ISO dissector in Wireshark 3.4.0 to 3.4.9 allows denial of service via packet injection or crafted capture file\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-19T20:16:56.000000Z"}, {"uuid": "4aeec91c-7a98-4c0e-a40a-f3dd5be11a43", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-39923", "type": "seen", "source": "https://t.me/cibsecurity/32725", "content": "\u203c CVE-2021-39923 \u203c\n\nNULL pointer exception in the IPPUSB dissector in Wireshark 3.4.0 to 3.4.9 allows denial of service via packet injection or crafted capture file\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-19T20:17:17.000000Z"}, {"uuid": "641356ee-929e-4127-943b-9d80a9d69669", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-39922", "type": "seen", "source": "https://t.me/cibsecurity/32724", "content": "\u203c CVE-2021-39922 \u203c\n\nBuffer overflow in the C12.22 dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-19T20:17:16.000000Z"}, {"uuid": "7f25e9a3-1d1e-4118-b690-bc35d4cf8ab1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-39925", "type": "seen", "source": "https://t.me/cibsecurity/32714", "content": "\u203c CVE-2021-39925 \u203c\n\nBuffer overflow in the Bluetooth SDP dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-19T20:17:04.000000Z"}, {"uuid": "1b34e69c-37b4-4d66-8441-db6588443d46", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-39921", "type": "seen", "source": "https://t.me/cibsecurity/32712", "content": "\u203c CVE-2021-39921 \u203c\n\nNULL pointer exception in the Modbus dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-19T20:17:01.000000Z"}, {"uuid": "323d4131-95b9-4841-8807-99014c877b9c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-39928", "type": "seen", "source": "https://t.me/cibsecurity/32659", "content": "\u203c CVE-2021-39928 \u203c\n\nNULL pointer exception in the IEEE 802.11 dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-18T22:15:55.000000Z"}, {"uuid": "c03aa1f2-f45d-4578-9290-aa14383caa38", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-39920", "type": "seen", "source": "https://t.me/cibsecurity/32657", "content": "\u203c CVE-2021-39920 \u203c\n\nNULL pointer exception in the IPPUSB dissector in Wireshark 3.4.0 to 3.4.9 allows denial of service via packet injection or crafted capture file\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-18T22:15:53.000000Z"}, {"uuid": "384e9975-55f7-4f11-8a6e-fcaef0155c59", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-39923", "type": "seen", "source": "https://t.me/tech_b0lt_Genona/2934", "content": "\u0423 GitLab'\u0430 \u0432 GitLab \u0435\u0441\u0442\u044c \u0437\u0430\u043c\u0435\u0447\u0430\u0442\u0435\u043b\u044c\u043d\u0430\u044f \u0440\u0435\u043f\u0430 \u0432 \u043a\u043e\u0442\u043e\u0440\u043e\u0439 \u0441\u043e\u0431\u0438\u0440\u0430\u044e\u0442\u0441\u044f CVE \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u044b\u0435 \u0441 \u043d\u0438\u043c\n\nhttps://gitlab.com/gitlab-org/cves\n\n\u0422\u0430\u043c \u0443\u0434\u043e\u0431\u043d\u043e \u043c\u043e\u0436\u043d\u043e \u0441\u043b\u0435\u0434\u0438\u0442\u044c \u0447\u0435\u0433\u043e \u043d\u043e\u0432\u0435\u043d\u044c\u043a\u043e\u0433\u043e \u043f\u043e\u044f\u0432\u043b\u044f\u0435\u0442\u0441\u044f \u0438 \u0438\u0437\u043c\u0435\u043d\u044f\u0435\u0442\u0441\u044f\n\u0412\u043e\u0442, \u043d\u0430\u043f\u0440\u0438\u043c\u0435\u0440, \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u044f \u0434\u043b\u044f CVE-2021-39923\nhttps://gitlab.com/gitlab-org/cves/-/commit/cd66080376206983db21d30b545670290119daed\n\n\u0418\u043b\u0438 \u0434\u043e\u0431\u0430\u0432\u043b\u0435\u043d\u0438\u0435 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438 \u043e CVE-2021-39890\nhttps://gitlab.com/gitlab-org/cves/-/commit/81afc741b4b2db7379b6dd0bd1ab0e88c57f95fb\n\n\u041f\u043e\u0441\u043b\u0435\u0434\u043d\u044f\u044f, \u043a\u0441\u0442\u0430\u0442\u0438, \u044f\u0432\u043b\u044f\u0435\u0442\u0441\u044f \u043a\u0440\u0438\u0442\u0438\u0447\u043d\u043e\u0439 \u0438 \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u0435\u0442 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0438\u0435 \u0432\u0435\u0440\u0441\u0438\u0438 GitLab\nIt was possible to bypass 2FA for LDAP users and access some specific pages with Basic Authentication in GitLab 14.1.1 and above.\nhttps://www.cve.org/CVERecord?id=CVE-2021-39890\nhttps://vulmon.com/vulnerabilitydetails?qid=CVE-2021-39890", "creation_timestamp": "2021-12-08T11:46:28.000000Z"}, {"uuid": "3a3a907c-058c-4475-8d75-8696a7e1594e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-3992", "type": "seen", "source": "https://t.me/cibsecurity/33185", "content": "\u203c CVE-2021-3992 \u203c\n\nkimai2 is vulnerable to Improper Access Control\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-12-01T14:35:45.000000Z"}]}