{"vulnerability": "CVE-2021-1008", "sightings": [{"uuid": "16655acd-06f2-492a-9fc0-c155c6a27f4b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-1008", "type": "seen", "source": "https://t.me/cibsecurity/34093", "content": "\u203c CVE-2021-1008 \u203c\n\nIn addSubInfo of SubscriptionController.java, there is a possible way to force the user to make a factory reset due to a logic error in the code. This could lead to local denial of service with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12Android ID: A-197327688\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-12-15T22:40:18.000000Z"}, {"uuid": "979dac5d-440f-4679-a82c-8f9c0a6c6967", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-10086", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/4386", "content": "#exploit\n1. CVE-2021-39246:\nTor Browser through 10.5.6, 11.x through 11.0a4 allows a correlation attack excessive verbose logging - Windows, macOS, Linux\nhttps://sick.codes/sick-2021-111\n2. CVE-2020-10086:\nGitLab 10.4 - 12.8.1 - Directory Traversal\nhttps://github.com/Mochican/CVE-2021-10086", "creation_timestamp": "2021-09-27T13:09:13.000000Z"}]}