{"vulnerability": "CVE-2021-4207", "sightings": [{"uuid": "b57c5133-18c8-4c55-8940-f57e2a947c5e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-42079", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/916", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2021-42079\n\ud83d\udd39 Description: An authenticated administrator is able to prepare an alert that is able to execute an SSRF attack. This is exclusively with POST requests.\n\ud83d\udccf Published: 2023-07-10T06:29:48.339Z\n\ud83d\udccf Modified: 2025-01-09T07:56:44.142Z\n\ud83d\udd17 References:\n1. https://www.wbsec.nl/osnexus\n2. https://cisrt.divd.nl/DIVD-2021-00020/\n3. https://www.osnexus.com/products/software-defined-storage\n4. https://csirt.divd.nl/CVE-2021-42079", "creation_timestamp": "2025-01-09T08:17:23.000000Z"}, {"uuid": "66bacfc6-9cf8-4485-823b-09dec34f8165", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-4207", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/8397", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2021-4207\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: A flaw was found in the QXL display device emulation in QEMU. A double fetch of guest controlled values `cursor->header.width` and `cursor->header.height` can lead to the allocation of a small cursor object followed by a subsequent heap-based buffer overflow. A malicious privileged guest user could use this flaw to crash the QEMU process on the host or potentially execute arbitrary code within the context of the QEMU process.\n\ud83d\udccf Published: 2022-04-29T16:07:33.000Z\n\ud83d\udccf Modified: 2025-03-21T18:03:41.449Z\n\ud83d\udd17 References:\n1. https://bugzilla.redhat.com/show_bug.cgi?id=2036966\n2. https://starlabs.sg/advisories/21-4207/\n3. https://www.debian.org/security/2022/dsa-5133\n4. https://security.gentoo.org/glsa/202208-27\n5. https://lists.debian.org/debian-lts-announce/2022/09/msg00008.html", "creation_timestamp": "2025-03-21T18:19:59.000000Z"}, {"uuid": "eec9a9cd-c7d2-426e-a13b-fc94da7b9f70", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-42076", "type": "seen", "source": "https://t.me/cibsecurity/31959", "content": "\u203c CVE-2021-42076 \u203c\n\nAn issue was discovered in Barrier before 2.3.4. An attacker can cause memory exhaustion in the barriers component (aka the server-side implementation of Barrier) and barrierc by sending long TCP messages.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-08T07:28:46.000000Z"}, {"uuid": "f2b1f036-4279-49c7-9c0c-92e25655390b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-4207", "type": "seen", "source": "https://t.me/arpsyndicate/694", "content": "#ExploitObserverAlert\n\nCVE-2021-4207\n\nDESCRIPTION: Exploit Observer has 6 entries related to CVE-2021-4207. A flaw was found in the QXL display device emulation in QEMU. A double fetch of guest controlled values `cursor->header.width` and `cursor->header.height` can lead to the allocation of a small cursor object followed by a subsequent heap-based buffer overflow. A malicious privileged guest user could use this flaw to crash the QEMU process on the host or potentially execute arbitrary code within the context of the QEMU process.\n\nFIRST-EPSS: 0.000500000\nNVD-IS: 6.0\nNVD-ES: 1.5", "creation_timestamp": "2023-11-29T07:42:11.000000Z"}, {"uuid": "3380235f-7fd7-4c6b-904a-1c44db405ec8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-4207", "type": "seen", "source": "https://t.me/cibsecurity/41668", "content": "\u203c CVE-2021-4207 \u203c\n\nA flaw was found in the QXL display device emulation in QEMU. A double fetch of guest controlled values `cursor->header.width` and `cursor->header.height` can lead to the allocation of a small cursor object followed by a subsequent heap-based buffer overflow. A malicious privileged guest user could use this flaw to crash the QEMU process on the host or potentially execute arbitrary code within the context of the QEMU process.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-29T20:25:01.000000Z"}, {"uuid": "18c1df2e-2750-4619-9c5d-b2de817e983b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-42075", "type": "seen", "source": "https://t.me/cibsecurity/31958", "content": "\u203c CVE-2021-42075 \u203c\n\nAn issue was discovered in Barrier before 2.3.4. The barriers component (aka the server-side implementation of Barrier) does not correctly close file descriptors for established TCP connections. An unauthenticated remote attacker can thus cause file descriptor exhaustion in the server process, leading to denial of service.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-08T07:28:45.000000Z"}, {"uuid": "87fd7372-1ac3-4fe3-8497-48903ec2087c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-42072", "type": "seen", "source": "https://t.me/cibsecurity/31957", "content": "\u203c CVE-2021-42072 \u203c\n\nAn issue was discovered in Barrier before 2.4.0. The barriers component (aka the server-side implementation of Barrier) does not sufficiently verify the identify of connecting clients. Clients can thus exploit weaknesses in the provided protocol to cause denial-of-service or stage further attacks that could lead to information leaks or integrity corruption.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-08T07:28:44.000000Z"}, {"uuid": "559a8e16-3236-44cd-a9c9-243de13010e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-42073", "type": "seen", "source": "https://t.me/cibsecurity/31946", "content": "\u203c CVE-2021-42073 \u203c\n\nAn issue was discovered in Barrier before 2.4.0. An attacker can enter an active session state with the barriers component (aka the server-side implementation of Barrier) simply by supplying a client label that identifies a valid client configuration. This label is \"Unnamed\" by default but could instead be guessed from hostnames or other publicly available information. In the active session state, an attacker can capture input device events from the server, and also modify the clipboard content on the server.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-08T07:28:32.000000Z"}, {"uuid": "b91c32d8-20ca-4dac-aa51-e3ccad7d745e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-42078", "type": "seen", "source": "https://t.me/cibsecurity/31954", "content": "\u203c CVE-2021-42078 \u203c\n\nPHP Event Calendar through 2021-11-04 allows persistent cross-site scripting (XSS), as demonstrated by the /server/ajax/events_manager.php title parameter. This can be exploited by an adversary in multiple ways, e.g., to perform actions on the page in the context of other users, or to deface the site.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-08T07:28:41.000000Z"}, {"uuid": "412417cf-8872-48db-b887-56a2ec2e5458", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-42074", "type": "seen", "source": "https://t.me/cibsecurity/31956", "content": "\u203c CVE-2021-42074 \u203c\n\nAn issue was discovered in Barrier before 2.3.4. An unauthenticated attacker can cause a segmentation fault in the barriers component (aka the server-side implementation of Barrier) by quickly opening and closing TCP connections while sending a Hello message for each TCP session.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-08T07:28:43.000000Z"}, {"uuid": "d23b0a80-6ffc-4148-9115-4ac4e804ca54", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-42077", "type": "seen", "source": "https://t.me/cibsecurity/31952", "content": "\u203c CVE-2021-42077 \u203c\n\nPHP Event Calendar before 2021-09-03 allows SQL injection, as demonstrated by the /server/ajax/user_manager.php username parameter. This can be used to execute SQL statements directly on the database, allowing an adversary in some cases to completely compromise the database system. It can also be used to bypass the login form.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-08T07:28:39.000000Z"}, {"uuid": "80435d2c-68d5-4b89-80b0-81d39ab26534", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-42071", "type": "seen", "source": "https://t.me/cibsecurity/30188", "content": "\u203c CVE-2021-42071 \u203c\n\nIn Visual Tools DVR VX16 4.2.28.0, an unauthenticated attacker can achieve remote command execution via shell metacharacters in the cgi-bin/slogin/login.py Uaer-Agent HTTP header.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-10-07T20:34:11.000000Z"}]}