{"vulnerability": "CVE-2021-38399", "sightings": [{"uuid": "bdecd840-e531-427a-8ece-a2172c29a792", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-38399", "type": "seen", "source": "https://t.me/cibsecurity/52190", "content": "\u203c CVE-2021-38399 \u203c\n\nHoneywell Experion PKS C200, C200E, C300, and ACE controllers are vulnerable to relative path traversal, which may allow an attacker access to unauthorized files and directories.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-10-28T07:28:57.000000Z"}, {"uuid": "bc99ffab-b07d-4b57-a983-7abfc804ce18", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-38399", "type": "seen", "source": "https://t.me/thehackernews/1565", "content": "Multiple critical vulnerabilities have been discovered in Honeywell Experion PKS and ACE Controllers that could be exploited for RCE and DoS attacks on critical processes.\n\nhttps://thehackernews.com/2021/10/multiple-critical-flaws-discovered-in.html\n\nCVE-2021-38397 (CVSS 10)\nTypeCVE-2021-38395 (CVSS 9.1)\nCVE-2021-38399 (CVSS 7.5)", "creation_timestamp": "2021-10-06T09:39:48.000000Z"}]}