{"vulnerability": "CVE-2021-2282", "sightings": [{"uuid": "0f5d478d-79d8-4631-82ca-fb5117b37e14", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22823", "type": "seen", "source": "https://t.me/cibsecurity/37304", "content": "\u203c CVE-2021-22823 \u203c\n\nA CWE-306: Missing Authentication for Critical Function vulnerability exists that could cause deletion of arbitrary files in the context of the user running IGSS due to lack of validation of network messages. Affected Product: Interactive Graphical SCADA System Data Collector (dc.exe) (V15.0.0.21320 and prior)\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-11T20:28:45.000000Z"}, {"uuid": "0c41a4e7-a9e5-4747-a04b-5e38f1c1dce0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22822", "type": "seen", "source": "https://t.me/arpsyndicate/1656", "content": "#ExploitObserverAlert\n\nCVE-2021-22822\n\nDESCRIPTION: Exploit Observer has 3 entries related to CVE-2021-22822. A CWE-79 Improper Neutralization of Input During Web Page Generation (?Cross-site Scripting?) vulnerability exists that could allow an attacker to impersonate the user who manages the charging station or carry out actions on their behalf when crafted malicious parameters are submitted to the charging station web server. Affected Products: EVlink City EVC1S22P4 / EVC1S7P4 (All versions prior to R8 V3.4.0.2 ), EVlink Parking EVW2 / EVF2 / EVP2PE (All versions prior to R8 V3.4.0.2), and EVlink Smart Wallbox EVB1A (All versions prior to R8 V3.4.0.2)\n\nFIRST-EPSS: 0.000720000\nNVD-IS: 2.7\nNVD-ES: 2.8", "creation_timestamp": "2023-12-10T16:36:24.000000Z"}, {"uuid": "b213b015-06eb-4e79-9eaf-ad066dbfba7c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22825", "type": "seen", "source": "https://t.me/cibsecurity/36507", "content": "\u203c CVE-2021-22825 \u203c\n\nA CWE-200: Exposure of Sensitive Information to an Unauthorized Actor vulnerability exists that could allow an attacker to access the system with elevated privileges when a privileged account clicks on a malicious URL that compromises the security token. Affected Products: AP7xxxx and AP8xxx with NMC2 (V6.9.6 or earlier), AP7xxx and AP8xxx with NMC3 (V1.1.0.3 or earlier), and APDU9xxx with NMC3 (V1.0.0.28 or earlier)\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-01-28T22:28:10.000000Z"}, {"uuid": "fb74ed96-8af6-4836-a2fb-5f08725aebc8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22826", "type": "seen", "source": "https://t.me/cibsecurity/36490", "content": "\u203c CVE-2021-22826 \u203c\n\nA CWE-20: Improper Input Validation vulnerability exists that could cause arbitrary code execution when the user visits a page containing the injected payload. This CVE is unique from CVE-2021-22827. Affected Product: EcoStruxure? Power Monitoring Expert 9.0 and prior versions\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-01-28T22:22:15.000000Z"}, {"uuid": "18b8c88b-1ee2-4f34-b089-0dabb6bb208f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22827", "type": "seen", "source": "https://t.me/cibsecurity/36490", "content": "\u203c CVE-2021-22826 \u203c\n\nA CWE-20: Improper Input Validation vulnerability exists that could cause arbitrary code execution when the user visits a page containing the injected payload. This CVE is unique from CVE-2021-22827. Affected Product: EcoStruxure? Power Monitoring Expert 9.0 and prior versions\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-01-28T22:22:15.000000Z"}]}