{"vulnerability": "CVE-2021-38666", "sightings": [{"uuid": "5f449763-7d54-4992-aefd-dfcf08208c0c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-38666", "type": "published-proof-of-concept", "source": "https://t.me/cKure/8443", "content": "\u25a0\u25a0\u25a0\u25a1\u25a1 Remote Deserialization Bug in Microsoft's RDP Client through Smart Card Extension (CVE-2021-38666)\n\nhttps://thalium.github.io/blog/posts/deserialization-bug-through-rdp-smart-card-extension/", "creation_timestamp": "2021-12-18T14:12:53.000000Z"}, {"uuid": "8edac825-5cf8-4855-8992-6b4db20d3441", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-38666", "type": "published-proof-of-concept", "source": "https://t.me/BlueRedTeam/1170", "content": "#exploit\n\n+ CVE-2021-37999:\nGoogle Chrome NTP XSS via Google Search CSRF\nhttps://bugs.chromium.org/p/chromium/issues/detail?id=1251541\n\n+ CVE-2021-38666:\nRemote Desktop Client RCE Vulnerability\nhttps://github.com/DarkSprings/CVE-2021-38666-poc\n\n@BlueRedTeam", "creation_timestamp": "2021-11-13T07:15:28.000000Z"}, {"uuid": "020cde6d-946a-4f19-ad35-7fb605fc25ae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-38666", "type": "published-proof-of-concept", "source": "https://t.me/thebugbountyhunter/5908", "content": "Remote Deserialization Bug in Microsoft's RDP Client through Smart Card Extension (CVE-2021-38666) Bounty award: $5,000.\nhttps://thalium.github.io/blog/posts/deserialization-bug-through-rdp-smart-card-extension/", "creation_timestamp": "2021-12-30T20:50:54.000000Z"}]}