{"vulnerability": "CVE-2021-38306", "sightings": [{"uuid": "56ab7f9f-f939-4066-ad0f-9e42c9ef2254", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-38306", "type": "seen", "source": "https://t.me/cibsecurity/27769", "content": "\u203c CVE-2021-38306 \u203c\n\nNetwork Attached Storage on LG N1T1*** 10124 devices allows an unauthenticated attacker to gain root access via OS command injection in the en/ajp/plugins/access.ssh/checkInstall.php destServer parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-08-24T16:23:30.000000Z"}]}