{"vulnerability": "CVE-2021-42837", "sightings": [{"uuid": "97a1b40f-4781-464b-af6b-57a64a2cc432", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-42837", "type": "seen", "source": "https://t.me/cibsecurity/31914", "content": "\u203c CVE-2021-42837 \u203c\n\nAn issue was discovered in Talend Data Catalog before 7.3-20210930. After setting up SAML/OAuth, authentication is not correctly enforced on the native login page. Any valid user from the SAML/OAuth provider can be used as the username with an arbitrary password, and login will succeed.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-05T21:26:15.000000Z"}]}