{"vulnerability": "CVE-2021-3461", "sightings": [{"uuid": "556aa4eb-d90f-4e3e-b61d-6d31cd9c60b1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-3461", "type": "seen", "source": "https://t.me/arpsyndicate/3175", "content": "#ExploitObserverAlert\n\nCVE-2021-3461\n\nDESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to CVE-2021-3461. A flaw was found in keycloak where keycloak may fail to logout user session if the logout request comes from external SAML identity provider and Principal Type is set to Attribute [Name].\n\nFIRST-EPSS: 0.000620000\nNVD-IS: 5.2\nNVD-ES: 1.8", "creation_timestamp": "2024-01-28T03:00:14.000000Z"}, {"uuid": "c2a2529c-bede-4f47-adbf-599390cd26fb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-34613", "type": "seen", "source": "https://t.me/cibsecurity/26023", "content": "\u203c CVE-2021-34613 \u203c\n\nA remote arbitrary command execution vulnerability was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.10.0, 6.9.6 and 6.8.9. Aruba has released updates to ClearPass Policy Manager that address this security vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-07-09T00:39:10.000000Z"}, {"uuid": "3feb634e-c5ca-4824-9638-fd1712c68646", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-34618", "type": "seen", "source": "https://t.me/cibsecurity/26269", "content": "\u203c CVE-2021-34618 \u203c\n\nA remote denial of service (DoS) vulnerability was discovered in some Aruba Instant Access Point (IAP) products in version(s): Aruba Instant 6.4.x: 6.4.4.8-4.2.4.18 and below; Aruba Instant 6.5.x: 6.5.4.18 and below; Aruba Instant 8.3.x: 8.3.0.14 and below; Aruba Instant 8.4.x: All versions; Aruba Instant 8.5.x: 8.5.0.11 and below; Aruba Instant 8.6.x: 8.6.0.7 and below; Aruba Instant 8.7.x: 8.7.1.1 and below. Aruba has released patches for Aruba Instant that address this security vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-07-20T00:32:42.000000Z"}]}