{"vulnerability": "CVE-2021-44226", "sightings": [{"uuid": "49169241-77cd-476c-b480-6bb7705865d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-44226", "type": "published-proof-of-concept", "source": "https://t.me/BlueRedTeam/1858", "content": "#Red_Team\n1. Pwning 3CX Phone Management Backends from the Internet\nhttps://medium.com/@frycos/pwning-3cx-phone-management-backends-from-the-internet-d0096339dd88\n2. Local Privilege Escalation Attack via Razer Synapse Installer (CVE-2021-44226)\nhttps://blog.syss.com/posts/razer-lpe-attack\n\n@BlueRedTeam", "creation_timestamp": "2022-03-31T10:38:06.000000Z"}, {"uuid": "ed3ecadf-27f2-4138-9343-685783b63286", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-44226", "type": "seen", "source": "https://t.me/cibsecurity/39464", "content": "\u203c CVE-2021-44226 \u203c\n\nRazer Synapse before 3.7.0228.022817 allows privilege escalation because it relies on %PROGRAMDATA%\\Razer\\Synapse3\\Service\\bin even if %PROGRAMDATA%\\Razer has been created by any unprivileged user before Synapse is installed. The unprivileged user may have placed Trojan horse DLLs there.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-24T01:28:59.000000Z"}, {"uuid": "317bc2ef-04a4-4e14-aa03-6c58b6dffaf4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-44226", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/5716", "content": "#Red_Team_Tactics\n1. Pwning 3CX Phone Management Backends from the Internet\nhttps://medium.com/@frycos/pwning-3cx-phone-management-backends-from-the-internet-d0096339dd88\n2. Local Privilege Escalation Attack via Razer Synapse Installer (CVE-2021-44226)\nhttps://blog.syss.com/posts/razer-lpe-attack", "creation_timestamp": "2022-03-31T12:23:44.000000Z"}]}