{"vulnerability": "CVE-2021-4145", "sightings": [{"uuid": "84075211-47b4-4d4a-b316-44ad2695a0a5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-41458", "type": "seen", "source": "https://t.me/cibsecurity/44615", "content": "\u203c CVE-2021-41458 \u203c\n\nIn GPAC MP4Box v1.1.0, there is a stack buffer overflow at src/utils/error.c:1769 which leads to a denial of service vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-16T14:21:21.000000Z"}, {"uuid": "e4762961-27d5-4be7-91cd-564ca83873c1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-41451", "type": "seen", "source": "https://t.me/cibsecurity/34196", "content": "\u203c CVE-2021-41451 \u203c\n\nAn HTTP/1.1 misconfiguration in web interface of TP-Link AX10v1 before V1_211117 could allow an attacker to send a specially crafted HTTP/0.9 packet that could cause a cache poisoning attack.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-12-17T18:37:09.000000Z"}, {"uuid": "f6a4e0d5-f0b6-4fab-a9ca-ab35ae690a39", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-4145", "type": "seen", "source": "https://t.me/cibsecurity/36265", "content": "\u203c CVE-2021-4145 \u203c\n\nA NULL pointer dereference issue was found in the block mirror layer of QEMU in versions prior to 6.2.0. The `self` pointer is dereferenced in mirror_wait_on_conflicts() without ensuring that it's not NULL. A malicious unprivileged user within the guest could use this flaw to crash the QEMU process on the host when writing data reaches the threshold of mirroring node.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-01-25T22:19:02.000000Z"}, {"uuid": "32402d26-8435-4863-9cf2-f0ae14951513", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-41456", "type": "seen", "source": "https://t.me/cibsecurity/29793", "content": "\u203c CVE-2021-41456 \u203c\n\nThere is a stack buffer overflow in MP4Box v1.0.1 at src/filters/dmx_nhml.c:1004 in the nhmldmx_send_sample() function szXmlTo parameter which leads to a denial of service vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-10-01T16:15:06.000000Z"}, {"uuid": "62626c33-8e7c-419c-8368-54e44e7b3395", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-41450", "type": "seen", "source": "https://t.me/cibsecurity/33591", "content": "\u203c CVE-2021-41450 \u203c\n\nAn HTTP request smuggling attack in TP-Link AX10v1 before v1_211117 allows a remote unauthenticated attacker to DoS the web application via sending a specific HTTP packet.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-12-08T18:22:41.000000Z"}, {"uuid": "9e6cd276-cab6-47c0-88ed-9c07156f5420", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-41459", "type": "seen", "source": "https://t.me/cibsecurity/29792", "content": "\u203c CVE-2021-41459 \u203c\n\nThere is a stack buffer overflow in MP4Box v1.0.1 at src/filters/dmx_nhml.c:1008 in the nhmldmx_send_sample() function szXmlFrom parameter which leads to a denial of service vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-10-01T16:15:05.000000Z"}, {"uuid": "88590435-b894-4a66-b47b-069afdda5d99", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-41457", "type": "seen", "source": "https://t.me/cibsecurity/29790", "content": "\u203c CVE-2021-41457 \u203c\n\nThere is a stack buffer overflow in MP4Box 1.1.0 at src/filters/dmx_nhml.c in nhmldmx_init_parsing which leads to a denial of service vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-10-01T16:15:03.000000Z"}]}