{"vulnerability": "CVE-2021-3978", "sightings": [{"uuid": "1cdf564e-162d-4250-8378-a2a5ef05c1ff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-3978", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113911088253196556", "content": "", "creation_timestamp": "2025-01-29T10:07:48.004459Z"}, {"uuid": "cd18696a-2a13-4419-a513-8b0d2755dc57", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-3978", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lgv2fkrfvs2i", "content": "", "creation_timestamp": "2025-01-29T13:14:32.540915Z"}, {"uuid": "dc5a9fdd-e847-46b2-bfeb-6b515f38e5d1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-3978", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/3372", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2021-3978\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: No description available\n\ud83d\udccf Published: 2025-01-29T10:15:07.750\n\ud83d\udccf Modified: N/A\n\ud83d\udd17 References:\n1. https://github.com/cloudflare/cfrpki/security/advisories/GHSA-3pqh-p72c-fj85", "creation_timestamp": "2025-01-29T11:18:14.000000Z"}, {"uuid": "8081b6bc-b2f6-45bc-9dff-496f0b186e08", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-3978", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/3376", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2021-3978\n\ud83d\udd25 CVSS Score: 8.3 (CVSS_V3)\n\ud83d\udd39 Description: ### Impact\n\nWhen copying files with rsync, octorpki uses the \"-a\" flag 0, which forces rsync to copy binaries with the suid bit set as root. Since the provided service definition defaults to root (https://github.com/cloudflare/cfrpki/blob/master/package/octorpki.service) this could allow for a vector, when combined with another vulnerability that causes octorpki to process a malicious TAL file, for a local privilege escalation.  \n\n## For more information\n\nIf you have any questions or comments about this advisory email us at security@cloudflare.com\n\ud83d\udccf Published: 2021-11-19T19:34:26Z\n\ud83d\udccf Modified: 2025-01-29T16:56:35Z\n\ud83d\udd17 References:\n1. https://github.com/cloudflare/cfrpki/security/advisories/GHSA-3pqh-p72c-fj85\n2. https://nvd.nist.gov/vuln/detail/CVE-2021-3978\n3. https://github.com/cloudflare/cfrpki", "creation_timestamp": "2025-01-29T17:11:10.000000Z"}, {"uuid": "0a227878-661b-44a4-b46d-6449063982b8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-39783", "type": "seen", "source": "https://t.me/cibsecurity/39861", "content": "\u203c CVE-2021-39783 \u203c\n\nIn rcsservice, there is a possible way to modify TTY mode due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12LAndroid ID: A-197960597\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-30T20:18:50.000000Z"}, {"uuid": "06339516-ab0e-4b63-a110-1d7c95731792", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-3978", "type": "seen", "source": "https://t.me/cvedetector/16679", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2021-3978 - Cloudflare octorpki SUID Privilege Escalation Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2021-3978 \nPublished : Jan. 29, 2025, 10:15 a.m. | 1\u00a0hour, 46\u00a0minutes ago \nDescription : When copying files with rsync, octorpki uses the \"-a\" flag 0, which forces rsync to copy binaries with the suid bit set as root. Since the provided service definition defaults to root (  ) this could allow for a vector, when combined with another vulnerability that causes octorpki to process a malicious TAL file, for a local privilege escalation. \nSeverity: 7.5 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"29 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-29T13:10:48.000000Z"}, {"uuid": "957281c1-7a52-4f3a-a7ab-c07d423229be", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-39780", "type": "seen", "source": "https://t.me/cibsecurity/39862", "content": "\u203c CVE-2021-39780 \u203c\n\nIn Traceur, there is a possible bypass of developer settings requirements for capturing system traces due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-12LAndroid ID: A-204992293\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-30T20:18:51.000000Z"}, {"uuid": "b8af116e-7444-493e-973f-53102a52cd2a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-39782", "type": "seen", "source": "https://t.me/cibsecurity/39858", "content": "\u203c CVE-2021-39782 \u203c\n\nIn Telephony, there is a possible unauthorized modification of the PLMN SIM file due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12LAndroid ID: A-202760015\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-30T20:18:44.000000Z"}, {"uuid": "dfc0ed65-c021-4e0d-8d91-5972e56c9d26", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-39788", "type": "seen", "source": "https://t.me/cibsecurity/39851", "content": "\u203c CVE-2021-39788 \u203c\n\nIn TelecomManager, there is a possible way to check if a particular self managed phone account was registered on the device due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12LAndroid ID: A-191768014\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-30T20:18:34.000000Z"}, {"uuid": "1ad84b25-b60c-4881-b62d-4b1bd5a2d9f8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-39781", "type": "seen", "source": "https://t.me/cibsecurity/39849", "content": "\u203c CVE-2021-39781 \u203c\n\nIn SmsController, there is a possible information disclosure due to a permissions bypass. This could lead to local escalation of privilege and sending sms with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12LAndroid ID: A-195311502\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-30T20:18:32.000000Z"}, {"uuid": "b776e3d2-73d9-40cf-a6ba-1a6c78ad4674", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-39787", "type": "seen", "source": "https://t.me/cibsecurity/39844", "content": "\u203c CVE-2021-39787 \u203c\n\nIn SystemUI, there is a possible arbitrary Activity launch due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-12LAndroid ID: A-202506934\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-30T20:12:45.000000Z"}, {"uuid": "1743a035-a011-46f7-866d-b2287d8dc2ce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-39786", "type": "seen", "source": "https://t.me/cibsecurity/39841", "content": "\u203c CVE-2021-39786 \u203c\n\nIn NFC, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12LAndroid ID: A-192551247\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-30T20:12:42.000000Z"}, {"uuid": "772e3498-052b-4beb-a425-5223a247441f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-39784", "type": "seen", "source": "https://t.me/cibsecurity/39828", "content": "\u203c CVE-2021-39784 \u203c\n\nIn CellBroadcastReceiver, there is a possible path to enable specific cellular features due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12LAndroid ID: A-200163477\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-30T20:12:27.000000Z"}]}