{"vulnerability": "CVE-2021-4204", "sightings": [{"uuid": "9683a468-d013-4e42-90c9-7aa8c0ba601a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-4204", "type": "seen", "source": "https://t.me/linkersec/170", "content": "Two eBPF exploits\n\nExploits for two bugs in the eBPF code, CVE-2021-4204 and CVE-2022-23222, by tr3e with brief write-ups in Chinese.", "creation_timestamp": "2022-06-30T11:13:53.000000Z"}, {"uuid": "fb5f2984-e267-4a9a-b98a-b5fb66622aaf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-42048", "type": "seen", "source": "https://t.me/cibsecurity/50647", "content": "\u203c CVE-2021-42048 \u203c\n\nAn issue was discovered in the Growth extension in MediaWiki through 1.36.2. Any admin can add arbitrary JavaScript code to the Newcomer home page footer, which can be executed by viewers with zero edits.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-29T07:40:51.000000Z"}, {"uuid": "390d3a47-1f3c-4389-9525-3af1e9098a49", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-42047", "type": "seen", "source": "https://t.me/cibsecurity/50684", "content": "\u203c CVE-2021-42047 \u203c\n\nAn issue was discovered in the Growth extension in MediaWiki through 1.36.2. On any Wiki with the Mentor Dashboard feature enabled, users can login with a mentor account and trigger an XSS payload (such as alert) via Growthexperiments-mentor-dashboard-mentee-overview-no-js-fallback.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-29T07:47:52.000000Z"}, {"uuid": "e301f7ba-772f-4a43-8abb-13e71dd9cc3d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-42042", "type": "seen", "source": "https://t.me/cibsecurity/30120", "content": "\u203c CVE-2021-42042 \u203c\n\nAn issue was discovered in SpecialEditGrowthConfig in the GrowthExperiments extension in MediaWiki through 1.36.2. The growthexperiments-edit-config-error-invalid-title MediaWiki message was not being properly sanitized and allowed for the injection and execution of HTML and JavaScript.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-10-07T00:32:34.000000Z"}, {"uuid": "774dcbc8-4e1c-473d-a928-ddedccc24d08", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-42043", "type": "seen", "source": "https://t.me/cibsecurity/30125", "content": "\u203c CVE-2021-42043 \u203c\n\nAn issue was discovered in Special:MediaSearch in the MediaSearch extension in MediaWiki through 1.36.2. The suggestion text (a parameter to mediasearch-did-you-mean) was not being properly sanitized and allowed for the injection and execution of HTML and JavaScript via the intitle: search operator within the query.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-10-07T00:32:42.000000Z"}, {"uuid": "82888665-93e2-4f02-9c39-6711a39cfe33", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-4204", "type": "seen", "source": "https://t.me/cibsecurity/48654", "content": "\u203c CVE-2021-4204 \u203c\n\nAn out-of-bounds (OOB) memory access flaw was found in the Linux kernel's eBPF due to an Improper Input Validation. This flaw allows a local attacker with a special privilege to crash the system or leak internal information.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-08-24T20:22:46.000000Z"}, {"uuid": "9d367395-03ff-42d6-a53e-1872208cd514", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-42040", "type": "seen", "source": "https://t.me/cibsecurity/30128", "content": "\u203c CVE-2021-42040 \u203c\n\nAn issue was discovered in MediaWiki through 1.36.2. A parser function related to loop control allowed for an infinite loop (and php-fpm hang) within the Loops extension because egLoopsCountLimit is mishandled. This could lead to memory exhaustion.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-10-07T00:32:45.000000Z"}, {"uuid": "6cfca5de-08e9-4fb8-b579-d5cc8be5e9f6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-4204", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/6156", "content": "#exploit\nLinux Kernel eBPF LPE\n1. CVE-2021-4204:\nhttps://github.com/tr3ee/CVE-2021-4204\n\n2. CVE-2022-23222:\nhttps://github.com/tr3ee/CVE-2022-23222", "creation_timestamp": "2022-07-01T05:52:30.000000Z"}]}