{"vulnerability": "CVE-2021-3481", "sightings": [{"uuid": "6c52aca9-3af2-4514-b975-2e59639dee5b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-3481", "type": "seen", "source": "https://t.me/arpsyndicate/2744", "content": "#ExploitObserverAlert\n\nCVE-2021-3481\n\nDESCRIPTION: Exploit Observer has 6 entries related to CVE-2021-3481. A flaw was found in Qt. An out-of-bounds read vulnerability was found in QRadialFetchSimd in qt/qtbase/src/gui/painting/qdrawhelper_p.h in Qt/Qtbase. While rendering and displaying a crafted Scalable Vector Graphics (SVG) file this flaw may lead to an unauthorized memory access. The highest threat from this vulnerability is to data confidentiality and the application availability.\n\nFIRST-EPSS: 0.000700000\nNVD-IS: 5.2\nNVD-ES: 1.8", "creation_timestamp": "2024-01-09T10:43:28.000000Z"}, {"uuid": "f6340d24-ea68-4d7f-89f5-86e4a6112283", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-34814", "type": "seen", "source": "https://t.me/cibsecurity/30507", "content": "\u203c CVE-2021-34814 \u203c\n\nProofpoint Spam Engine before 8.12.0-2106240000 has a Security Control Bypass.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-10-13T18:26:36.000000Z"}, {"uuid": "4cadd90d-2088-4c29-8a8a-6de847d283e6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-34817", "type": "seen", "source": "https://t.me/cibsecurity/26253", "content": "\u203c CVE-2021-34817 \u203c\n\nA Cross-Site Scripting (XSS) issue in the chat component of Etherpad 1.8.13 allows remote attackers to inject arbitrary JavaScript or HTML by importing a crafted pad.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-07-19T18:32:26.000000Z"}, {"uuid": "efa6c8a2-7b30-4845-9078-56ce11dcca6c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-3481", "type": "seen", "source": "https://t.me/cibsecurity/48502", "content": "\u203c CVE-2021-3481 \u203c\n\nA flaw was found in Qt. An out-of-bounds read vulnerability was found in QRadialFetchSimd in qt/qtbase/src/gui/painting/qdrawhelper_p.h in Qt/Qtbase. While rendering and displaying a crafted Scalable Vector Graphics (SVG) file this flaw may lead to an unauthorized memory access. The highest threat from this vulnerability is to data confidentiality and the application availability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-08-22T18:26:41.000000Z"}, {"uuid": "e57440cd-b349-49dc-b80f-16fb16a6c465", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-34811", "type": "seen", "source": "https://t.me/cibsecurity/25540", "content": "\u203c CVE-2021-34811 \u203c\n\nServer-Side Request Forgery (SSRF) vulnerability in task management component in Synology Download Station before 3.8.16-3566 allows remote authenticated users to access intranet resources via unspecified vectors.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-06-18T07:11:34.000000Z"}]}