{"vulnerability": "CVE-2021-23758", "sightings": [{"uuid": "f65e0cc7-d854-4850-97b7-c7865b2ea987", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-23758", "type": "seen", "source": "MISP/30cbf1e5-40c5-456e-b63a-f5298da02bf0", "content": "", "creation_timestamp": "2023-01-28T20:13:34.000000Z"}, {"uuid": "120db7e5-e5d2-44f6-8ea4-2f2722c8bc09", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-23758", "type": "seen", "source": "MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd", "content": "", "creation_timestamp": "2025-02-06T03:13:45.000000Z"}, {"uuid": "3ca2912a-2e5f-4607-bb36-723c5f6b9c96", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-23758", "type": "seen", "source": "MISP/a9d21043-f825-4bac-8d2b-56fb9e8343e7", "content": "", "creation_timestamp": "2025-10-23T21:12:59.000000Z"}, {"uuid": "38d9bc3b-9d70-4600-a4c3-58685195fc11", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-23758", "type": "seen", "source": "https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/ajaxpro_deserialization_rce.rb", "content": "", "creation_timestamp": "2023-11-02T18:27:53.000000Z"}, {"uuid": "8eafa269-d253-4cbb-8625-2309e1651162", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-23758", "type": "seen", "source": "MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd", "content": "", "creation_timestamp": "2025-02-23T04:10:35.000000Z"}, {"uuid": "7a99e0c1-3cfd-498a-b840-3ab139534361", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-23758", "type": "seen", "source": "https://t.me/cibsecurity/33334", "content": "\u203c CVE-2021-23758 \u203c\n\nAll versions of package ajaxpro.2 are vulnerable to Deserialization of Untrusted Data due to the possibility of deserialization of arbitrary .NET classes, which can be abused to gain remote code execution.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-12-03T22:38:06.000000Z"}, {"uuid": "0a6f8402-bb9d-457f-800b-d38068670a02", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-23758", "type": "published-proof-of-concept", "source": "https://t.me/cKure/8425", "content": "\u25a0\u25a0\u25a0\u25a0\u25a1 CVE-2021-23758 AjaxPro.NET deserialization.\n\nhttps://mp.weixin.qq.com/s/7y-iyMMZAoN4B2dGvCFvXg", "creation_timestamp": "2021-12-15T22:01:22.000000Z"}, {"uuid": "c2f8caad-bc87-4768-bdae-e5c3abe16636", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-23758", "type": "seen", "source": "https://t.me/club31337/1360", "content": "Acunetix v15.2 - 13 Dec 2022 LINUX\n\nDownload: https://mega.nz/file/vkkHTK6R#Rszpm8d08Mes5hHc1lVHfIH5BdOCf5z73mg6o00s1QU\nPassword: Pwn3rzs\n\nSetup + instructions are inside the archive, just read the README.txt file :)\n\nEnjoy!\n\nChangelog:\n\nNEW SECURITY CHECKS\nUpdated the WordPress plugin vulnerabilities.\nAdded the AjaxPro.NET Professional Deserialization RCE (CVE-2021-23758).\nImproved the out-of-band detection.\n\nIMPROVEMENTS\nAdded ability to send HTTP requests to pre-request scripts.\nVarious DeepScan improvements, generally improving the processing of JavaScript-rich web applications.\nUpdated the embedded Chromium browser to v108.0.5359.71.\nImplemented the scan id to limit the caching, such as file list and libraries, to a scan.\nImproved the performance of alert transmission for AcuSensor.\n\nFIXES\nFixed the MongoDB injection and removed JSON parsing from the feature extraction library to avoid scan crashes.\nFixed the issue that sent bogus report because of inconsistent last scan id.\nImproved the Pre-request script to send an HTTP job.\nFixed the formatting issue for vulnerabilities exported to GitHub Issues.\nFixed the unhandled exception that the IAST Bridge throws.\nFixed the business logic recorder issue that failed to replay the logic sequence recorder.\nFixed the issue that the custom scripts folder was not created during the installation.\nFixed the issue that failed to show the Chinese on some headings when switched to Chinese.\nFixed the manual intervention required information box that began to appear in the notification bar instead of being displayed as a dialog box.\nAdded cURL as a backup if NSLookup is not present.\nFixed the Jira integration that failed to create the epic issues.\nFixed the issue that long scan names overlap with the AcuSensor icon.\nFixed the issue that the authorization bearer was not used throughout the scan.", "creation_timestamp": "2024-11-11T00:20:21.000000Z"}, {"uuid": "1944cc33-c33f-4954-83c6-e38ded29f473", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-23758", "type": "published-proof-of-concept", "source": "https://t.me/BlueRedTeam/1486", "content": "#exploit\n1. CVE-2021-23758:\nAjaxPro .NET - deserialization/RCE vulnerability\nhttps://mp.weixin.qq.com/s/7y-iyMMZAoN4B2dGvCFvXg\n\n2. CVE-2021-25467: \nKernel LPE in the Vision DSP Kernel Driver\nhttps://labs.taszk.io/blog/post/62_ss_dsp_oob_write\n\n3. CVE-2021-30990:\nBypassing macOS Gatekeeper\nhttps://ronmasas.com/posts/bypass-macos-gatekeeper\n\n@BlueRedTeam", "creation_timestamp": "2021-12-16T06:45:25.000000Z"}, {"uuid": "e626d6ee-9525-423d-b80b-71c655d7b164", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-23758", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/4985", "content": "#exploit\n1. CVE-2021-23758:\nAjaxPro .NET - deserialization/RCE vulnerability\nhttps://mp.weixin.qq.com/s/7y-iyMMZAoN4B2dGvCFvXg\n\n2. CVE-2021-25467: \nKernel LPE in the Vision DSP Kernel Driver\nhttps://labs.taszk.io/blog/post/62_ss_dsp_oob_write\n\n3. CVE-2021-30990:\nBypassing macOS Gatekeeper\nhttps://ronmasas.com/posts/bypass-macos-gatekeeper", "creation_timestamp": "2021-12-16T12:39:02.000000Z"}, {"uuid": "bed9626f-e1f4-4d6f-90d0-8faed0575675", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-23758", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/5229", "content": "#Threat_Research\n1. Zooming in on Zero-click Exploits\n(against the Windows Zoom client)\nhttps://googleprojectzero.blogspot.com/2022/01/zooming-in-on-zero-click-exploits.html\n2. RCE in Ajax NET Professional:\nVulnerability/exploitation details for CVE-2021-23758\nhttps://mogwailabs.de/en/blog/2022/01/vulnerability-spotlight-rce-in-ajax.net-professional", "creation_timestamp": "2022-01-19T11:01:01.000000Z"}]}