{"vulnerability": "CVE-2021-41357", "sightings": [{"uuid": "4282a2f8-8744-4b1b-884a-0c620f1627ed", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-41357", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2023-06-14T21:10:04.000000Z"}, {"uuid": "d53b74e6-46fc-48cc-b782-441927dbad91", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-41357", "type": "seen", "source": "https://feedsin.space/feed/CISAKevBot/items/2971534", "content": "", "creation_timestamp": "2024-12-24T20:30:46.991579Z"}, {"uuid": "2cc08c9a-8fb0-4e17-8fe8-f7b6c75a1751", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-41357", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2025-02-23T02:10:32.000000Z"}, {"uuid": "b835addd-f345-47be-aa91-7444ca623dc1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "af0120d0-3dac-4a6a-974b-a9f33d2a9846", "vulnerability": "CVE-2021-41357", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/043acd33-b861-4b1e-ae05-0e29ba906253", "content": "", "creation_timestamp": "2026-02-02T12:27:48.740289Z"}, {"uuid": "41d18dd3-3dd9-4a82-9ed5-276e50eabdb3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-41357", "type": "seen", "source": "https://t.me/arpsyndicate/1018", "content": "#ExploitObserverAlert\n\nCVE-2021-41357\n\nDESCRIPTION: Exploit Observer has 6 entries related to CVE-2021-41357. Win32k Elevation of Privilege Vulnerability\n\nFIRST-EPSS: 0.005580000\nNVD-IS: 5.9\nNVD-ES: 1.8", "creation_timestamp": "2023-12-03T20:09:02.000000Z"}, {"uuid": "364d0c4f-f6e6-4b76-9141-9bf39ec99a05", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-41357", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/11481", "content": "#exploit\n\"Win32k Vulnerability Dead?\nTaking win32k Exploitation To The Next Level\", 2024.\n\n// CVE-2021-41357, CVE-2023-28274, CVE-2022-21882, CVE-2022-26914, CVE-2022-41113", "creation_timestamp": "2024-11-25T22:22:32.000000Z"}, {"uuid": "d0301eb6-7108-43f1-b6ae-16e71434b8a7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-41357", "type": "published-proof-of-concept", "source": "https://t.me/Rootsec_2/5242", "content": "#exploit\n\"Win32k Vulnerability Dead?\nTaking win32k Exploitation To The Next Level\", 2024.\n\n// CVE-2021-41357, CVE-2023-28274, CVE-2022-21882, CVE-2022-26914, CVE-2022-41113", "creation_timestamp": "2024-11-25T13:03:20.000000Z"}, {"uuid": "cad5fef4-ab7e-42fc-b3e3-13814325e828", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-41357", "type": "seen", "source": "https://t.me/iiLinux/194", "content": "Win32k Vulnerability Dead?\nTaking win32k Exploitation To The Next Level\n\n// CVE-2021-41357, CVE-2023-28274, CVE-2022-21882, CVE-2022-26914, CVE-2022-41113", "creation_timestamp": "2024-12-14T11:42:40.000000Z"}, {"uuid": "27d38ec2-bf36-454f-a131-feeadee560f6", "vulnerability_lookup_origin": "caeb2787-0d58-4236-9039-7c86c3e566f3", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-41357", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/e960361b-2b24-4a07-9be1-2c4774a249e1", "content": "", "creation_timestamp": "2026-06-19T12:47:17.280289Z"}, {"uuid": "83ab15db-7765-474b-aff7-3943cd7f2558", "vulnerability_lookup_origin": "caeb2787-0d58-4236-9039-7c86c3e566f3", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-41357", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/a9485575-c2fc-4c07-b272-35b705c8acba", "content": "", "creation_timestamp": "2026-06-23T14:05:20.698717Z"}, {"uuid": "bd3e2632-c8e5-4de3-b1b6-c4a1f1c14762", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-41357", "type": "seen", "source": "https://t.me/EchelonEyes/221", "content": "CISA \u0434\u043e\u0431\u0430\u0432\u0438\u043b\u0430 7 CVE \u0432 \u0441\u043f\u0438\u0441\u043e\u043a \u043d\u0430\u0438\u0431\u043e\u043b\u0435\u0435 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u043c\u044b\u0445 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439\n\n\u0410\u0433\u0435\u043d\u0442\u0441\u0442\u0432\u043e \u0421\u0428\u0410 \u043f\u043e \u043a\u0438\u0431\u0435\u0440\u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0438 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u044b (CISA) \u0434\u043e\u0431\u0430\u0432\u0438\u043b\u043e 7 CVE \u0432 \u0441\u0432\u043e\u0439 \u0441\u043f\u0438\u0441\u043e\u043a \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u043c\u044b\u0445 \u043f\u0440\u043e\u0431\u043b\u0435\u043c \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438. \u0412 \u0438\u0445 \u0447\u0438\u0441\u043b\u043e \u0432\u0445\u043e\u0434\u044f\u0442 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 Windows, Linux, Jenkins. \u041e\u0436\u0438\u0434\u0430\u0435\u0442\u0441\u044f, \u0447\u0442\u043e \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0431\u0443\u0434\u0443\u0442 \u0432\u044b\u043f\u0443\u0449\u0435\u043d\u044b \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0447\u0438\u043a\u0430\u043c\u0438 \u0434\u043e 16 \u043c\u0430\u044f.\n\nCVE-2022-29464 \u2013 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c WSO2, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u0430\u044f \u0441 \u043d\u0435\u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u043d\u043e\u0439 \u0437\u0430\u0433\u0440\u0443\u0437\u043a\u043e\u0439 \u0444\u0430\u0439\u043b\u043e\u0432. \u041e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0430 18 \u0430\u043f\u0440\u0435\u043b\u044f 2022 \u0433\u043e\u0434\u0430. \u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 \u0438\u0437 Rapid7 \u0432\u0441\u043a\u043e\u0440\u0435 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0438\u043b\u0438 \u043e\u0431\u0449\u0435\u0434\u043e\u0441\u0442\u0443\u043f\u043d\u044b\u0439 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442, \u043a\u043e\u0442\u043e\u0440\u044b\u0439 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043b\u0438 \u0434\u043b\u044f \u0440\u0430\u0437\u0432\u0435\u0440\u0442\u044b\u0432\u0430\u043d\u0438\u044f \u0432\u0435\u0431-\u0448\u0435\u043b\u043b\u043e\u0432 \u0438 \u043c\u0430\u0439\u043d\u0435\u0440\u043e\u0432.\n\nCVE-2022-26904 \u0438 CVE-2022-21919 \u043f\u0440\u0438\u0432\u043e\u0434\u044f\u0442 \u043a \u043f\u043e\u0432\u044b\u0448\u0435\u043d\u0438\u044e \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0439 \u0432 \u0441\u043b\u0443\u0436\u0431\u0435 \u043f\u0440\u043e\u0444\u0438\u043b\u0435\u0439 Windows. \u0412 \u0438\u043d\u0442\u0435\u0440\u043d\u0435\u0442\u0435 \u043f\u0440\u0438\u0441\u0443\u0442\u0441\u0442\u0432\u0443\u044e\u0442 \u043e\u0431\u0449\u0435\u0434\u043e\u0441\u0442\u0443\u043f\u043d\u044b\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u044b.\n\nCVE-2022-0847 \u2013 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c, \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u0430\u044f \u043a\u0430\u043a Dirty Pipe, \u0432\u044b\u0437\u044b\u0432\u0430\u0435\u0442 \u043f\u043e\u0432\u044b\u0448\u0435\u043d\u0438\u0435 \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0439 \u0432 \u044f\u0434\u0440\u0435 Linux.\n\nCVE-2021-41357 \u0438 CVE-2021-40450 \u043c\u043e\u0436\u0435\u0442 \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043f\u043e\u0432\u044b\u0448\u0435\u043d\u0438\u0435 \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0439 \u0432 Win32k. \u041f\u0443\u0431\u043b\u0438\u0447\u043d\u044b\u0445 \u0443\u043f\u043e\u043c\u0438\u043d\u0430\u043d\u0438\u0439 \u043e\u0431 \u0438\u0445 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0438 \u043d\u0435\u0442.\n\nCVE-2019-1003029 \u043c\u043e\u0436\u0435\u0442 \u043f\u0440\u0438\u0432\u0435\u0441\u0442\u0438 \u043a \u043e\u0431\u0445\u043e\u0434\u0443 \u043f\u0435\u0441\u043e\u0447\u043d\u0438\u0446\u044b Jenkins Script Security Plugin. \u0420\u0430\u043d\u0435\u0435 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043b\u0430\u0441\u044c \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u043c \u041f\u041e Capoae \u0434\u043b\u044f \u0440\u0430\u0437\u0432\u0435\u0440\u0442\u044b\u0432\u0430\u043d\u0438\u044f \u043a\u0440\u0438\u043f\u0442\u043e\u043c\u0430\u0439\u043d\u0435\u0440\u043e\u0432 XMRig.\n\n\u0418\u0441\u0442\u043e\u0447\u043d\u0438\u043a: https://www.bleepingcomputer.com/news/security/cisa-adds-7-vulnerabilities-to-list-of-bugs-exploited-in-attacks/\n\n#CISA #\u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c", "creation_timestamp": "2026-07-17T05:00:06.173722Z"}]}