{"vulnerability": "CVE-2023-39421", "sightings": [{"uuid": "49e045ba-cda6-4097-865a-6c47429d0b1d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-39421", "type": "seen", "source": "https://t.me/cibsecurity/70060", "content": "\u203c CVE-2023-39421 \u203c\n\nThe RDPWin.dll component as used in the IRM Next Generation booking engine includes a set of hardcoded API keys for third-party services such as Twilio and Vonage. These keys allow unrestricted interaction with these services.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-07T16:18:45.000000Z"}]}