{"vulnerability": "CVE-2021-3698", "sightings": [{"uuid": "7b1889a2-ff00-46d6-8365-f8f15d2bb270", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-3698", "type": "seen", "source": "https://t.me/cibsecurity/38701", "content": "\u203c CVE-2021-3698 \u203c\n\nA flaw was found in Cockpit in versions prior to 260 in the way it handles the certificate verification performed by the System Security Services Daemon (SSSD). This flaw allows client certificates to authenticate successfully, regardless of the Certificate Revocation List (CRL) configuration or the certificate status. The highest threat from this vulnerability is to confidentiality.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-10T20:23:08.000000Z"}, {"uuid": "3df0f4c0-0229-4bcc-b50b-5e59269d447d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-36988", "type": "seen", "source": "https://t.me/cibsecurity/31357", "content": "\u203c CVE-2021-36988 \u203c\n\nThere is a Parameter verification issue in Huawei Smartphone.Successful exploitation of this vulnerability can affect service integrity.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-10-28T16:17:24.000000Z"}, {"uuid": "12edf186-2da5-4f16-85e7-21e956e791f0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-36987", "type": "seen", "source": "https://t.me/cibsecurity/31362", "content": "\u203c CVE-2021-36987 \u203c\n\nThere is a issue that nodes in the linked list being freed for multiple times in Huawei Smartphone due to race conditions. Successful exploitation of this vulnerability can cause the system to restart.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-10-28T16:17:31.000000Z"}, {"uuid": "aed4ebf6-2042-4fb0-ad49-cb63cfb692ff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-36981", "type": "seen", "source": "https://t.me/cibsecurity/28057", "content": "\u203c CVE-2021-36981 \u203c\n\nIn the server in SerNet verinice before 1.22.2, insecure Java deserialization allows remote authenticated attackers to execute arbitrary code.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-08-31T07:32:59.000000Z"}]}