{"vulnerability": "CVE-2021-38646", "sightings": [{"uuid": "31550b47-689b-41d2-bda7-80e6786def43", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-38646", "type": "seen", "source": "MISP/63ddead6-4b82-414c-ad8e-c516b950b446", "content": "", "creation_timestamp": "2021-10-25T22:32:43.000000Z"}, {"uuid": "ddd99e50-d3d5-4694-852a-f685d992d02f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-38646", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2023-06-14T21:10:04.000000Z"}, {"uuid": "9a3b6d1c-670d-4c0b-baf2-ea308a9bfd5d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-38646", "type": "seen", "source": "https://feedsin.space/feed/CISAKevBot/items/2971484", "content": "", "creation_timestamp": "2024-12-24T20:29:59.327474Z"}, {"uuid": "b5f68185-70db-4de6-8604-3be639184fab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-38646", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2025-02-23T02:10:31.000000Z"}, {"uuid": "88b59760-7d9d-4aac-be2b-55b934e362ee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-38646", "type": "published-proof-of-concept", "source": "https://t.me/cKure/7741", "content": "\u25a0\u25a0\u25a0\u25a0\u25a1 Code Execution in Microsoft Office (CVE-2021-38646)\n\nhttps://spaceraccoon.dev/all-your-d-base-are-belong-to-us-part-2-code-execution-in-microsoft-office", "creation_timestamp": "2021-10-24T07:35:33.000000Z"}, {"uuid": "85fa98c6-39a0-4156-8f15-780459409377", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "af0120d0-3dac-4a6a-974b-a9f33d2a9846", "vulnerability": "CVE-2021-38646", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/336c2a6b-7714-497e-ab1f-9b677e40341e", "content": "", "creation_timestamp": "2026-02-02T12:27:55.234427Z"}, {"uuid": "cae2cdbb-2a32-4c6c-a6f7-c09edf1e3dac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-38646", "type": "seen", "source": "https://t.me/arpsyndicate/1301", "content": "#ExploitObserverAlert\n\nCVE-2021-38646\n\nDESCRIPTION: Exploit Observer has 5 entries related to CVE-2021-38646. Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability\n\nFIRST-EPSS: 0.012750000\nNVD-IS: 5.9\nNVD-ES: 1.8", "creation_timestamp": "2023-12-04T20:46:02.000000Z"}, {"uuid": "c5f78299-ec63-4390-a831-a73e63314f31", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-38646", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/4632", "content": "#exploit\nCVE-2021-38646:\n1. Code Execution in Microsoft Office\nhttps://medium.com/csg-govtech/all-your-d-base-are-belong-to-us-part-2-code-execution-in-microsoft-office-cve-2021-38646-fa6e70362162\n\n2. Windows User Profile Service 0day LPE\nhttps://github.com/klinix5/ProfSvcLPE/blob/main/write-up.docx\n]-> PoC: https://github.com/klinix5/ProfSvcLPE/tree/main/DoubleJunctionEoP", "creation_timestamp": "2021-10-30T14:25:18.000000Z"}]}