<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>Most recent sightings.</title>
    <link>https://vulnerability.circl.lu</link>
    <description>Contains only the most 10 recent sightings.</description>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>python-feedgen</generator>
    <language>en</language>
    <lastBuildDate>Sun, 05 Jul 2026 18:23:05 +0000</lastBuildDate>
    <item>
      <title>380b6750-b33d-4bc1-a186-228431f02247</title>
      <link>https://vulnerability.circl.lu/sighting/380b6750-b33d-4bc1-a186-228431f02247/export</link>
      <description>{"uuid": "380b6750-b33d-4bc1-a186-228431f02247", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-44142", "type": "published-proof-of-concept", "source": "Telegram/d-rVDZTUKUG3IYUJ4BAdDnIieq971JGpK_Ia99hM3eRIwok", "content": "", "creation_timestamp": "2025-10-28T09:00:04.000000Z"}</description>
      <content:encoded>{"uuid": "380b6750-b33d-4bc1-a186-228431f02247", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-44142", "type": "published-proof-of-concept", "source": "Telegram/d-rVDZTUKUG3IYUJ4BAdDnIieq971JGpK_Ia99hM3eRIwok", "content": "", "creation_timestamp": "2025-10-28T09:00:04.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/380b6750-b33d-4bc1-a186-228431f02247/export</guid>
      <pubDate>Tue, 28 Oct 2025 09:00:04 +0000</pubDate>
    </item>
    <item>
      <title>45249cbe-b270-4fc1-9ca2-e106ea3650e5</title>
      <link>https://vulnerability.circl.lu/sighting/45249cbe-b270-4fc1-9ca2-e106ea3650e5/export</link>
      <description>{"uuid": "45249cbe-b270-4fc1-9ca2-e106ea3650e5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-44144", "type": "seen", "source": "https://t.me/arpsyndicate/4522", "content": "#ExploitObserverAlert\n\nCVE-2021-44144\n\nDESCRIPTION: Exploit Observer has 5 entries in 2 file formats related to CVE-2021-44144. Croatia Control Asterix 2.8.1 has a heap-based buffer over-read, with additional details to be disclosed at a later date.\n\nFIRST-EPSS: 0.001660000\nNVD-IS: 5.2\nNVD-ES: 3.9\nARPS-EXPLOITABILITY: 0.5949341", "creation_timestamp": "2024-04-12T05:08:13.000000Z"}</description>
      <content:encoded>{"uuid": "45249cbe-b270-4fc1-9ca2-e106ea3650e5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-44144", "type": "seen", "source": "https://t.me/arpsyndicate/4522", "content": "#ExploitObserverAlert\n\nCVE-2021-44144\n\nDESCRIPTION: Exploit Observer has 5 entries in 2 file formats related to CVE-2021-44144. Croatia Control Asterix 2.8.1 has a heap-based buffer over-read, with additional details to be disclosed at a later date.\n\nFIRST-EPSS: 0.001660000\nNVD-IS: 5.2\nNVD-ES: 3.9\nARPS-EXPLOITABILITY: 0.5949341", "creation_timestamp": "2024-04-12T05:08:13.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/45249cbe-b270-4fc1-9ca2-e106ea3650e5/export</guid>
      <pubDate>Fri, 12 Apr 2024 05:08:13 +0000</pubDate>
    </item>
    <item>
      <title>79cd5ba5-502d-44c6-9466-c82a7cfc0c03</title>
      <link>https://vulnerability.circl.lu/sighting/79cd5ba5-502d-44c6-9466-c82a7cfc0c03/export</link>
      <description>{"uuid": "79cd5ba5-502d-44c6-9466-c82a7cfc0c03", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-44140", "type": "seen", "source": "https://t.me/arpsyndicate/3235", "content": "#ExploitObserverAlert\n\nCVE-2021-44140\n\nDESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to CVE-2021-44140. Remote attackers may delete arbitrary files in a system hosting a JSPWiki instance, versions up to 2.11.0.M8, by using a carefuly crafted http request on logout, given that those files are reachable to the user running the JSPWiki instance. Apache JSPWiki users should upgrade to 2.11.0 or later.\n\nFIRST-EPSS: 0.004630000\nNVD-IS: 5.2\nNVD-ES: 3.9", "creation_timestamp": "2024-01-28T06:33:25.000000Z"}</description>
      <content:encoded>{"uuid": "79cd5ba5-502d-44c6-9466-c82a7cfc0c03", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-44140", "type": "seen", "source": "https://t.me/arpsyndicate/3235", "content": "#ExploitObserverAlert\n\nCVE-2021-44140\n\nDESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to CVE-2021-44140. Remote attackers may delete arbitrary files in a system hosting a JSPWiki instance, versions up to 2.11.0.M8, by using a carefuly crafted http request on logout, given that those files are reachable to the user running the JSPWiki instance. Apache JSPWiki users should upgrade to 2.11.0 or later.\n\nFIRST-EPSS: 0.004630000\nNVD-IS: 5.2\nNVD-ES: 3.9", "creation_timestamp": "2024-01-28T06:33:25.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/79cd5ba5-502d-44c6-9466-c82a7cfc0c03/export</guid>
      <pubDate>Sun, 28 Jan 2024 06:33:25 +0000</pubDate>
    </item>
    <item>
      <title>627b7399-96d2-44f3-89d2-558e429263c0</title>
      <link>https://vulnerability.circl.lu/sighting/627b7399-96d2-44f3-89d2-558e429263c0/export</link>
      <description>{"uuid": "627b7399-96d2-44f3-89d2-558e429263c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-44141", "type": "seen", "source": "https://t.me/cibsecurity/37874", "content": "\u203c CVE-2021-44141 \u203c\n\nAll versions of Samba prior to 4.15.5 are vulnerable to a malicious client using a server symlink to determine if a file or directory exists in an area of the server file system not exported under the share definition. SMB1 with unix extensions has to be enabled in order for this attack to succeed.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-21T20:11:42.000000Z"}</description>
      <content:encoded>{"uuid": "627b7399-96d2-44f3-89d2-558e429263c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-44141", "type": "seen", "source": "https://t.me/cibsecurity/37874", "content": "\u203c CVE-2021-44141 \u203c\n\nAll versions of Samba prior to 4.15.5 are vulnerable to a malicious client using a server symlink to determine if a file or directory exists in an area of the server file system not exported under the share definition. SMB1 with unix extensions has to be enabled in order for this attack to succeed.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-21T20:11:42.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/627b7399-96d2-44f3-89d2-558e429263c0/export</guid>
      <pubDate>Mon, 21 Feb 2022 20:11:42 +0000</pubDate>
    </item>
    <item>
      <title>accd1cf8-3655-4ebd-bdce-99700f81f933</title>
      <link>https://vulnerability.circl.lu/sighting/accd1cf8-3655-4ebd-bdce-99700f81f933/export</link>
      <description>{"uuid": "accd1cf8-3655-4ebd-bdce-99700f81f933", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-44142", "type": "seen", "source": "https://t.me/cibsecurity/37861", "content": "\u203c CVE-2021-44142 \u203c\n\nThe Samba vfs_fruit module uses extended file attributes (EA, xattr) to provide \"...enhanced compatibility with Apple SMB clients and interoperability with a Netatalk 3 AFP fileserver.\" Samba versions prior to 4.13.17, 4.14.12 and 4.15.5 with vfs_fruit configured allow out-of-bounds heap read and write via specially crafted extended file attributes. A remote attacker with write access to extended file attributes can execute arbitrary code with the privileges of smbd, typically root.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-21T18:41:21.000000Z"}</description>
      <content:encoded>{"uuid": "accd1cf8-3655-4ebd-bdce-99700f81f933", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-44142", "type": "seen", "source": "https://t.me/cibsecurity/37861", "content": "\u203c CVE-2021-44142 \u203c\n\nThe Samba vfs_fruit module uses extended file attributes (EA, xattr) to provide \"...enhanced compatibility with Apple SMB clients and interoperability with a Netatalk 3 AFP fileserver.\" Samba versions prior to 4.13.17, 4.14.12 and 4.15.5 with vfs_fruit configured allow out-of-bounds heap read and write via specially crafted extended file attributes. A remote attacker with write access to extended file attributes can execute arbitrary code with the privileges of smbd, typically root.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-21T18:41:21.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/accd1cf8-3655-4ebd-bdce-99700f81f933/export</guid>
      <pubDate>Mon, 21 Feb 2022 18:41:21 +0000</pubDate>
    </item>
    <item>
      <title>ad3276cd-72e9-49c6-b6b3-2a1fadc25be9</title>
      <link>https://vulnerability.circl.lu/sighting/ad3276cd-72e9-49c6-b6b3-2a1fadc25be9/export</link>
      <description>{"uuid": "ad3276cd-72e9-49c6-b6b3-2a1fadc25be9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-44142", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/5346", "content": "#Threat_Research\n1. CVE-2021-44142:\nDetails on a Samba Code Execution Bug\nhttps://www.zerodayinitiative.com/blog/2022/2/1/cve-2021-44142-details-on-a-samba-code-execution-bug-demonstrated-at-pwn2own-austin\n2. Investigating Lateral Movement -\nWMI and Scheduled Tasks\nhttps://blog.gigamon.com/2022/02/03/investigating-lateral-movement-wmi-and-scheduled-tasks", "creation_timestamp": "2022-02-05T13:27:01.000000Z"}</description>
      <content:encoded>{"uuid": "ad3276cd-72e9-49c6-b6b3-2a1fadc25be9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-44142", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/5346", "content": "#Threat_Research\n1. CVE-2021-44142:\nDetails on a Samba Code Execution Bug\nhttps://www.zerodayinitiative.com/blog/2022/2/1/cve-2021-44142-details-on-a-samba-code-execution-bug-demonstrated-at-pwn2own-austin\n2. Investigating Lateral Movement -\nWMI and Scheduled Tasks\nhttps://blog.gigamon.com/2022/02/03/investigating-lateral-movement-wmi-and-scheduled-tasks", "creation_timestamp": "2022-02-05T13:27:01.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/ad3276cd-72e9-49c6-b6b3-2a1fadc25be9/export</guid>
      <pubDate>Sat, 05 Feb 2022 13:27:01 +0000</pubDate>
    </item>
    <item>
      <title>38b513bf-2252-4479-b46c-e4447f744725</title>
      <link>https://vulnerability.circl.lu/sighting/38b513bf-2252-4479-b46c-e4447f744725/export</link>
      <description>{"uuid": "38b513bf-2252-4479-b46c-e4447f744725", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2021-44142", "type": "seen", "source": "https://www.govcert.gov.hk/en/alerts_detail.php?id=731", "content": "", "creation_timestamp": "2022-02-04T04:00:00.000000Z"}</description>
      <content:encoded>{"uuid": "38b513bf-2252-4479-b46c-e4447f744725", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2021-44142", "type": "seen", "source": "https://www.govcert.gov.hk/en/alerts_detail.php?id=731", "content": "", "creation_timestamp": "2022-02-04T04:00:00.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/38b513bf-2252-4479-b46c-e4447f744725/export</guid>
      <pubDate>Fri, 04 Feb 2022 04:00:00 +0000</pubDate>
    </item>
    <item>
      <title>abbff834-f290-40f4-9b4a-ea8037b3be93</title>
      <link>https://vulnerability.circl.lu/sighting/abbff834-f290-40f4-9b4a-ea8037b3be93/export</link>
      <description>{"uuid": "abbff834-f290-40f4-9b4a-ea8037b3be93", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-44142", "type": "seen", "source": "https://t.me/poxek/677", "content": "CVE-2021-44142: Details on a Samba code execution\n\u0418\u0441\u0442\u043e\u0447\u043d\u0438\u043a\n\n@dnevnik_infosec", "creation_timestamp": "2022-02-02T22:57:57.000000Z"}</description>
      <content:encoded>{"uuid": "abbff834-f290-40f4-9b4a-ea8037b3be93", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-44142", "type": "seen", "source": "https://t.me/poxek/677", "content": "CVE-2021-44142: Details on a Samba code execution\n\u0418\u0441\u0442\u043e\u0447\u043d\u0438\u043a\n\n@dnevnik_infosec", "creation_timestamp": "2022-02-02T22:57:57.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/abbff834-f290-40f4-9b4a-ea8037b3be93/export</guid>
      <pubDate>Wed, 02 Feb 2022 22:57:57 +0000</pubDate>
    </item>
    <item>
      <title>08279d95-9f3d-4645-993a-fb92bfbdffff</title>
      <link>https://vulnerability.circl.lu/sighting/08279d95-9f3d-4645-993a-fb92bfbdffff/export</link>
      <description>{"uuid": "08279d95-9f3d-4645-993a-fb92bfbdffff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-44142", "type": "published-proof-of-concept", "source": "https://t.me/cKure/8700", "content": "\u25a0\u25a0\u25a1\u25a1\u25a1 CVE-2021-44142: DETAILS ON A SAMBA CODE EXECUTION BUG DEMONSTRATED AT PWN2OWN AUSTIN.\n\nhttps://www.zerodayinitiative.com/blog/2022/2/1/cve-2021-44142-details-on-a-samba-code-execution-bug-demonstrated-at-pwn2own-austin", "creation_timestamp": "2022-02-02T16:50:26.000000Z"}</description>
      <content:encoded>{"uuid": "08279d95-9f3d-4645-993a-fb92bfbdffff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-44142", "type": "published-proof-of-concept", "source": "https://t.me/cKure/8700", "content": "\u25a0\u25a0\u25a1\u25a1\u25a1 CVE-2021-44142: DETAILS ON A SAMBA CODE EXECUTION BUG DEMONSTRATED AT PWN2OWN AUSTIN.\n\nhttps://www.zerodayinitiative.com/blog/2022/2/1/cve-2021-44142-details-on-a-samba-code-execution-bug-demonstrated-at-pwn2own-austin", "creation_timestamp": "2022-02-02T16:50:26.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/08279d95-9f3d-4645-993a-fb92bfbdffff/export</guid>
      <pubDate>Wed, 02 Feb 2022 16:50:26 +0000</pubDate>
    </item>
    <item>
      <title>638c930f-68ac-4adb-88b8-1a97dbea281d</title>
      <link>https://vulnerability.circl.lu/sighting/638c930f-68ac-4adb-88b8-1a97dbea281d/export</link>
      <description>{"uuid": "638c930f-68ac-4adb-88b8-1a97dbea281d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-44142", "type": "seen", "source": "Telegram/RdANidSmSSMlyUqcZxC_em2qNTDr2s2tFxU7p-_uQAgpJd5k", "content": "", "creation_timestamp": "2022-02-02T10:40:49.000000Z"}</description>
      <content:encoded>{"uuid": "638c930f-68ac-4adb-88b8-1a97dbea281d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-44142", "type": "seen", "source": "Telegram/RdANidSmSSMlyUqcZxC_em2qNTDr2s2tFxU7p-_uQAgpJd5k", "content": "", "creation_timestamp": "2022-02-02T10:40:49.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/638c930f-68ac-4adb-88b8-1a97dbea281d/export</guid>
      <pubDate>Wed, 02 Feb 2022 10:40:49 +0000</pubDate>
    </item>
  </channel>
</rss>
