{"vulnerability": "cve-2021-3336", "sightings": [{"uuid": "efa238fb-c432-4693-af91-d4311bfd7283", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-33360", "type": "seen", "source": "https://t.me/cibsecurity/59789", "content": "\u203c CVE-2021-33360 \u203c\n\nAn issue found in Stoqey gnuplot v.0.0.3 and earlier allows attackers to execute arbitrary code via the src/index.ts, plotCallack, child_process, and/or filePath parameter(s).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-12T17:29:16.000000Z"}, {"uuid": "162f7869-1910-45d2-9a1f-c4089ead6a56", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-33367", "type": "seen", "source": "https://t.me/cibsecurity/58720", "content": "\u203c CVE-2021-33367 \u203c\n\nBuffer Overflow vulnerability in Freeimage v3.18.0 allows attacker to cause a denial of service via a crafted JXR file.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-23T00:52:20.000000Z"}, {"uuid": "cbfea0e2-1031-469c-88ae-41529f9bdb90", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-33363", "type": "seen", "source": "https://t.me/cibsecurity/28757", "content": "\u203c CVE-2021-33363 \u203c\n\nMemory leak in the infe_box_read function in MP4Box in GPAC 1.0.1 allows attackers to read memory via a crafted file.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-09-14T00:14:58.000000Z"}, {"uuid": "493c8b9d-ad87-4f67-8f01-e9979ea37b41", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-33366", "type": "seen", "source": "https://t.me/cibsecurity/28743", "content": "\u203c CVE-2021-33366 \u203c\n\nMemory leak in the gf_isom_oinf_read_entry function in MP4Box in GPAC 1.0.1 allows attackers to read memory via a crafted file.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-09-13T22:15:08.000000Z"}, {"uuid": "45e86d46-1941-420e-822d-ef1adc786cc5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-33361", "type": "seen", "source": "https://t.me/cibsecurity/28758", "content": "\u203c CVE-2021-33361 \u203c\n\nMemory leak in the afra_box_read function in MP4Box in GPAC 1.0.1 allows attackers to read memory via a crafted file.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-09-14T00:14:59.000000Z"}, {"uuid": "2b0e3ae4-3794-499f-bf0b-6ba82fc38942", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-33365", "type": "seen", "source": "https://t.me/cibsecurity/28756", "content": "\u203c CVE-2021-33365 \u203c\n\nMemory leak in the gf_isom_get_root_od function in MP4Box in GPAC 1.0.1 allows attackers to read memory via a crafted file.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-09-14T00:14:58.000000Z"}, {"uuid": "bf4118fa-eb24-4e42-8516-66a89989da41", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-33362", "type": "seen", "source": "https://t.me/cibsecurity/28751", "content": "\u203c CVE-2021-33362 \u203c\n\nStack buffer overflow in the hevc_parse_vps_extension function in MP4Box in GPAC 1.0.1 allows attackers to cause a denial of service or execute arbitrary code via a crafted file.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-09-13T22:15:21.000000Z"}, {"uuid": "c4f9e2b5-49ee-45e6-a424-fa77d748653e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-3336", "type": "seen", "source": "https://t.me/cibsecurity/22818", "content": "\u203c CVE-2021-3336 \u203c\n\nDoTls13CertificateVerify in tls13.c in wolfSSL through 4.6.0 does not cease processing for certain anomalous peer behavior (sending an ED22519, ED448, ECC, or RSA signature without the corresponding certificate).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-01-29T08:25:09.000000Z"}]}