{"vulnerability": "CVE-2021-21225", "sightings": [{"uuid": "6f968996-402f-4303-b835-ed8be909b05e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-21225", "type": "published-proof-of-concept", "source": "https://t.me/D4RKW0R1D/612", "content": "A Bug's Life: CVE-2021-21225\nIn this post, I want to showcase CVE-2021-21225, a vulnerability in V8's Array.prototype.concat implementation that I discovered in April 2021. It was used to gain code execution in Google Chrome's renderer process and won a $22000 bounty from Google which was donated to the EFF (matched by Google)\n\nhttps://tiszka.com/blog/CVE_2021_21225.html", "creation_timestamp": "2021-08-20T18:03:36.000000Z"}, {"uuid": "b0a04bd4-3803-4c7f-8a7d-651a0919ed39", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-21225", "type": "published-proof-of-concept", "source": "https://t.me/thebugbountyhunter/5610", "content": "A Bug's Life: CVE-2021-21225\nIn this post, I want to showcase CVE-2021-21225, a vulnerability in V8's Array.prototype.concat implementation that I discovered in April 2021. It was used to gain code execution in Google Chrome's renderer process and won a $22000 bounty from Google which was donated to the EFF (matched by Google)\n\nhttps://tiszka.com/blog/CVE_2021_21225.html", "creation_timestamp": "2021-08-20T01:24:52.000000Z"}, {"uuid": "52bfd1c1-4d37-4017-939e-a83c43abbefd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-21225", "type": "seen", "source": "https://infosec.exchange/users/andersonc0d3/statuses/115663199332538168", "content": "", "creation_timestamp": "2025-12-04T20:32:42.184306Z"}, {"uuid": "fc5519f1-0dd1-4662-83d6-052de290c25f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-21225", "type": "seen", "source": "https://bsky.app/profile/andersonc0d3.bsky.social/post/3m76td65fpk2x", "content": "", "creation_timestamp": "2025-12-04T20:39:20.005023Z"}, {"uuid": "b7022e37-ef4f-4111-abf0-41a99dc76319", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-21225", "type": "seen", "source": "https://bsky.app/profile/andersonc0d3.bsky.social/post/3m76tdcisnk2x", "content": "", "creation_timestamp": "2025-12-04T20:39:20.527961Z"}, {"uuid": "40e162c5-16c0-438e-8263-fca14f8dcfab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-21225", "type": "published-proof-of-concept", "source": "https://t.me/D4RKW0R1D/6528", "content": "A Bug's Life: CVE-2021-21225\nIn this post, I want to showcase CVE-2021-21225, a vulnerability in V8's Array.prototype.concat implementation that I discovered in April 2021. It was used to gain code execution in Google Chrome's renderer process and won a $22000 bounty from Google which was donated to the EFF (matched by Google)\n\nhttps://tiszka.com/blog/CVE_2021_21225.html", "creation_timestamp": "2021-08-20T16:03:39.000000Z"}, {"uuid": "782880ab-cb1e-41ba-ae2b-416178b7d5ec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-21225", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/4203", "content": "#Analytics\nTop 10 Most Used Vulns of the Month (Aug 1-31)\nCVE-2021-1675 - Print Spooler EoP\nhttps://t.me/cybersecuritytechnologies/3723\nCVE-2021-31956 - Win NTFS EoP\nhttps://t.me/cybersecuritytechnologies/4110\nCVE-2021-36958 - Print Spooler RCE\nhttps://mobile.twitter.com/gentilkiwi/status/1416429860566847490?s=20\nCVE-2021-39137 - A consensus-vuln in go-eth\nCVE-2021-22937 - Pulse ConnSecure RCE\nhttps://t.me/cybersecuritytechnologies/4044\nCVE-2021-34473 - Pre-auth Path Confusion\nhttps://www.zerodayinitiative.com/blog/2021/8/17/from-pwn2own-2021-a-new-attack-surface-on-microsoft-exchange-proxyshell\nCVE-2021-21225 - Vuln in V8's Array.prototype.concat\nhttps://t.me/cybersecuritytechnologies/4090\nCVE-2021-20090 - Path traversal in Buffalo routers\nhttps://t.me/cybersecuritytechnologies/3986\nCVE-2021-26084 - Confluence Server Webwork OGNL Inj\nhttps://t.me/cybersecuritytechnologies/4202\nCVE-2021-3711 - Vulns in OpenSSL\nhttps://nakedsecurity.sophos.com/2021/08/27/big-bad-decryption-bug-in-openssl-but-no-cause-for-alarm", "creation_timestamp": "2021-09-02T11:05:07.000000Z"}, {"uuid": "5b0ec5a8-674d-4af6-b1b1-da3fcf2a9ac0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-21225", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/4090", "content": "#exploit\nCVE-2021-21225:\nA vulnerability in V8's\u00a0Array.prototype.concat\u00a0implementation\nhttps://tiszka.com/blog/CVE_2021_21225.html", "creation_timestamp": "2021-08-17T15:07:17.000000Z"}]}