Details of VAR-202109-0372

ID

VAR-202109-0372

CVE

CVE-2021-1884

TITLE

plural Apple Product race condition vulnerabilities

Trust: 0.8

sources: JVNDB: JVNDB-2021-013511

DESCRIPTION

A race condition was addressed with improved locking. This issue is fixed in Security Update 2021-004 Mojave, iOS 14.5 and iPadOS 14.5, watchOS 7.4, Security Update 2021-003 Catalina, tvOS 14.5, macOS Big Sur 11.3. A remote attacker may be able to cause a denial of service. plural Apple The product contains a race condition vulnerability.Service operation interruption (DoS) It may be in a state. Pillow is a Python-based image processing library. There is currently no information about this vulnerability, please feel free to follow CNNVD or manufacturer announcements. Apple macOS is a set of dedicated operating systems developed by Apple Corporation for Mac computers. The following products and versions are affected: macOS: 11.0 20A2411, 11.0.1 20B29, 11.0.1 20B50, 11.1 20C69, 11.2 20D64, 11.2.1 20D74, 11.2.1 20D75, 11.2.2 20D80, 11.2.3 2. Information about the security content is also available at https://support.apple.com/HT212530. AMD Available for: macOS Catalina Impact: A local user may be able to cause unexpected system termination or read kernel memory Description: A logic issue was addressed with improved state management. CVE-2021-30676: shrek_wzw AMD Available for: macOS Catalina Impact: A remote attacker may be able to cause unexpected application termination or arbitrary code execution Description: A logic issue was addressed with improved state management. CVE-2021-30678: Yu Wang of Didi Research America AppleScript Available for: macOS Catalina Impact: A malicious application may bypass Gatekeeper checks Description: A logic issue was addressed with improved state management. CVE-2021-30669: Yair Hoffmann Audio Available for: macOS Catalina Impact: Parsing a maliciously crafted audio file may lead to disclosure of user information Description: This issue was addressed with improved checks. CVE-2021-30685: Mickey Jin (@patch1t) of Trend Micro Core Services Available for: macOS Catalina Impact: A malicious application may be able to gain root privileges Description: A validation issue existed in the handling of symlinks. CVE-2021-30681: Zhongcheng Li (CK01) CVMS Available for: macOS Catalina Impact: A local attacker may be able to elevate their privileges Description: This issue was addressed with improved checks. CVE-2021-30724: Mickey Jin (@patch1t) of Trend Micro Dock Available for: macOS Catalina Impact: A malicious application may be able to access a user's call history Description: An access issue was addressed with improved access restrictions. CVE-2021-30673: Josh Parnham (@joshparnham) Graphics Drivers Available for: macOS Catalina Impact: A remote attacker may cause an unexpected application termination or arbitrary code execution Description: A logic issue was addressed with improved state management. CVE-2021-30684: Liu Long of Ant Security Light-Year Lab Heimdal Available for: macOS Catalina Impact: A malicious application may cause a denial of service or potentially disclose memory contents Description: A memory corruption issue was addressed with improved state management. CVE-2021-1884: Gabe Kirkpatrick (@gabe_k) Heimdal Available for: macOS Catalina Impact: Processing maliciously crafted server messages may lead to heap corruption Description: This issue was addressed with improved checks. CVE-2021-1883: Gabe Kirkpatrick (@gabe_k) Heimdal Available for: macOS Catalina Impact: A local user may be able to leak sensitive user information Description: A logic issue was addressed with improved state management. CVE-2021-30697: Gabe Kirkpatrick (@gabe_k) Heimdal Available for: macOS Catalina Impact: A malicious application could execute arbitrary code leading to compromise of user information Description: A use after free issue was addressed with improved memory management. CVE-2021-30683: Gabe Kirkpatrick (@gabe_k) ImageIO Available for: macOS Catalina Impact: Processing a maliciously crafted image may lead to disclosure of user information Description: An out-of-bounds read was addressed with improved bounds checking. CVE-2021-30687: Hou JingYi (@hjy79425575) of Qihoo 360 ImageIO Available for: macOS Catalina Impact: Processing a maliciously crafted image may lead to arbitrary code execution Description: This issue was addressed with improved checks. CVE-2021-30701: Mickey Jin (@patch1t) of Trend Micro and Ye Zhang of Baidu Security ImageIO Available for: macOS Catalina Impact: Processing a maliciously crafted image may lead to arbitrary code execution Description: An out-of-bounds write was addressed with improved input validation. CVE-2021-30743: CFF of Topsec Alpha Team, an anonymous researcher, and Jeonghoon Shin(@singi21a) of THEORI working with Trend Micro Zero Day Initiative ImageIO Available for: macOS Catalina Impact: Processing a maliciously crafted ASTC file may disclose memory contents Description: This issue was addressed with improved checks. CVE-2021-30705: Ye Zhang of Baidu Security Intel Graphics Driver Available for: macOS Catalina Impact: A malicious application may be able to execute arbitrary code with kernel privileges Description: An out-of-bounds write issue was addressed with improved bounds checking. CVE-2021-30728: Liu Long of Ant Security Light-Year Lab Kernel Available for: macOS Catalina Impact: An application may be able to execute arbitrary code with kernel privileges Description: A logic issue was addressed with improved state management. CVE-2021-30704: an anonymous researcher Kernel Available for: macOS Catalina Impact: Processing a maliciously crafted message may lead to a denial of service Description: A logic issue was addressed with improved state management. CVE-2021-30715: The UK's National Cyber Security Centre (NCSC) Login Window Available for: macOS Catalina Impact: A person with physical access to a Mac may be able to bypass Login Window Description: A logic issue was addressed with improved state management. CVE-2021-30702: Jewel Lambert of Original Spin, LLC. Model I/O Available for: macOS Catalina Impact: Processing a maliciously crafted USD file may disclose memory contents Description: An information disclosure issue was addressed with improved state management. CVE-2021-30723: Mickey Jin (@patch1t) of Trend Micro CVE-2021-30691: Mickey Jin (@patch1t) of Trend Micro CVE-2021-30694: Mickey Jin (@patch1t) of Trend Micro CVE-2021-30692: Mickey Jin (@patch1t) of Trend Micro Model I/O Available for: macOS Catalina Impact: Processing a maliciously crafted USD file may disclose memory contents Description: An out-of-bounds read was addressed with improved input validation. CVE-2021-30746: Mickey Jin (@patch1t) of Trend Micro Model I/O Available for: macOS Catalina Impact: Processing a maliciously crafted image may lead to arbitrary code execution Description: A validation issue was addressed with improved logic. CVE-2021-30693: Mickey Jin (@patch1t) & Junzhi Lu (@pwn0rz) of Trend Micro Model I/O Available for: macOS Catalina Impact: Processing a maliciously crafted USD file may disclose memory contents Description: An out-of-bounds read was addressed with improved bounds checking. CVE-2021-30695: Mickey Jin (@patch1t) & Junzhi Lu (@pwn0rz) of Trend Micro Model I/O Available for: macOS Catalina Impact: Processing a maliciously crafted USD file may lead to unexpected application termination or arbitrary code execution Description: An out-of-bounds read was addressed with improved input validation. CVE-2021-30708: Mickey Jin (@patch1t) & Junzhi Lu (@pwn0rz) of Trend Micro Model I/O Available for: macOS Catalina Impact: Processing a maliciously crafted USD file may disclose memory contents Description: This issue was addressed with improved checks. CVE-2021-30709: Mickey Jin (@patch1t) of Trend Micro Model I/O Available for: macOS Catalina Impact: Processing a maliciously crafted USD file may lead to unexpected application termination or arbitrary code execution Description: A memory corruption issue was addressed with improved state management. CVE-2021-30725: Mickey Jin (@patch1t) of Trend Micro NSOpenPanel Available for: macOS Catalina Impact: An application may be able to gain elevated privileges Description: This issue was addressed by removing the vulnerable code. CVE-2020-36226 CVE-2020-36229 CVE-2020-36225 CVE-2020-36224 CVE-2020-36223 CVE-2020-36227 CVE-2020-36228 CVE-2020-36221 CVE-2020-36222 CVE-2020-36230 smbx Available for: macOS Catalina Impact: An attacker in a privileged network position may be able to perform denial of service Description: A logic issue was addressed with improved state management. CVE-2021-30716: Aleksandar Nikolic of Cisco Talos smbx Available for: macOS Catalina Impact: An attacker in a privileged network position may be able to execute arbitrary code Description: A memory corruption issue was addressed with improved state management. CVE-2021-30717: Aleksandar Nikolic of Cisco Talos smbx Available for: macOS Catalina Impact: A remote attacker may be able to cause unexpected application termination or arbitrary code execution Description: A logic issue was addressed with improved state management. CVE-2021-30712: Aleksandar Nikolic of Cisco Talos smbx Available for: macOS Catalina Impact: An attacker in a privileged network position may be able to leak sensitive user information Description: A path handling issue was addressed with improved validation. CVE-2021-30721: Aleksandar Nikolic of Cisco Talos smbx Available for: macOS Catalina Impact: An attacker in a privileged network position may be able to leak sensitive user information Description: An information disclosure issue was addressed with improved state management. CVE-2021-30722: Aleksandar Nikolic of Cisco Talos TCC Available for: macOS Catalina Impact: A malicious application may be able to send unauthorized Apple events to Finder Description: A validation issue was addressed with improved logic. CVE-2021-30671: Ryan Bell (@iRyanBell) Additional recognition App Store We would like to acknowledge Thijs Alkemade of Computest Research Division for their assistance. CFString We would like to acknowledge an anonymous researcher for their assistance. CoreCapture We would like to acknowledge Zuozhi Fan (@pattern_F_) of Ant- financial TianQiong Security Lab for their assistance. Installation note: This update may be obtained from the Mac App Store or Apple's Software Downloads web site: https://support.apple.com/downloads/ Information will also be posted to the Apple Security Updates web site: https://support.apple.com/kb/HT201222 This message is signed with Apple's Product Security PGP key, and details are available at: https://www.apple.com/support/security/pgp/ -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEbURczHs1TP07VIfuZcsbuWJ6jjAFAmCtU9EACgkQZcsbuWJ6 jjD30A//Y8naJNtsWjb81/k7PogzAk9k+9JXaW42pICvHllxSybcOt+hH8p59vsc UaNjdJOLjkkG0R4yRR0yU9vDlMu+cXmexmhMb8+dQ49PDjOXu4yqFXOUhezohGCP THgTqgTX5iItY57uF/AQfPpZK1zC39xBPfWbtRVNkzGkHX/OEoI1VheK1gXaZcDv q35GpiB3N28M+5U0sn4rqhNyQobNltCtAx/EEbDmfT+m7EwSuDYiCuH/bEQM0tzB dpLAp0w9Tjrz4R/FwyYpZolEUKyNEwHCHRLCg4djWz/cZJvQB4zjXQ6rjkJ0tUPT Hsb+c7JH/DNFZHD33V1xVEvsZCZNEyozZiRCwe0/yNrS8I5fPUUC7mCBMAIoOnrJ EqfOOq57M5w0s5IFFBwHWDUuVxW4ZjGjUlqNCcWVnET7iwgen0edfw3b8ErVKyFs OQkQmoyqaWzNHhcdZ3M7outWMFyVptIK013akfyH1kWjp8SElXq7+bF3eprE/FSI bqhqLtEFfmolRnHU0XP/wD5BxU1hAjVnnclBE7/R0gda2MlJ1XSHX0gRtrOsmw8K L8uGTk+xzYL6YXUrH3UBkrytxEpfGrIjvctIc1OOFlN6883nSceWHFCF6v/1UiMJ ioqUKtHryoL4nRpeepEHQU4VknDa6MFnieEOOpsNdforVJKwdkA\xf61C -----END PGP SIGNATURE-----

Trust: 2.43

sources: NVD: CVE-2021-1884 // JVNDB: JVNDB-2021-013511 // CNNVD: CNNVD-202104-975 // VULHUB: VHN-376544 // PACKETSTORM: 162820 // PACKETSTORM: 162821

AFFECTED PRODUCTS

vendor:	apple	model:	mac os x	scope:	gte	version:	10.14.0	Trust: 1.0
vendor:	apple	model:	ipados	scope:	lt	version:	14.5	Trust: 1.0
vendor:	apple	model:	watchos	scope:	lt	version:	7.4	Trust: 1.0
vendor:	apple	model:	tvos	scope:	lt	version:	14.5	Trust: 1.0
vendor:	apple	model:	macos	scope:	lt	version:	11.3	Trust: 1.0
vendor:	apple	model:	mac os x	scope:	eq	version:	10.14.6	Trust: 1.0
vendor:	apple	model:	mac os x	scope:	lt	version:	10.14.6	Trust: 1.0
vendor:	apple	model:	mac os x	scope:	gte	version:	10.15	Trust: 1.0
vendor:	apple	model:	mac os x	scope:	eq	version:	10.15.7	Trust: 1.0
vendor:	apple	model:	macos	scope:	gte	version:	11.0	Trust: 1.0
vendor:	apple	model:	mac os x	scope:	lt	version:	10.15.7	Trust: 1.0
vendor:	apple	model:	iphone os	scope:	lt	version:	14.5	Trust: 1.0
vendor:	アップル	model:	apple mac os x	scope:	-	version:	-	Trust: 0.8
vendor:	アップル	model:	ipados	scope:	-	version:	-	Trust: 0.8
vendor:	アップル	model:	watchos	scope:	-	version:	-	Trust: 0.8
vendor:	アップル	model:	ios	scope:	-	version:	-	Trust: 0.8
vendor:	アップル	model:	macos	scope:	-	version:	-	Trust: 0.8
vendor:	アップル	model:	tvos	scope:	-	version:	-	Trust: 0.8

sources: JVNDB: JVNDB-2021-013511 // NVD: CVE-2021-1884

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2021-1884
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2021-1884
value:	MEDIUM
Trust: 0.8
CNNVD:	CNNVD-202104-975
value:	MEDIUM
Trust: 0.6
CNNVD:	CNNVD-202104-1950
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-376544
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2021-1884
severity:	MEDIUM
baseScore:	4.3
vectorString:	AV:N/AC:M/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	8.6
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
VULHUB:	VHN-376544
severity:	MEDIUM
baseScore:	4.3
vectorString:	AV:N/AC:M/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	8.6
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2021-1884
baseSeverity:	MEDIUM
baseScore:	5.9
vectorString:	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
attackVector:	NETWORK
attackComplexity:	HIGH
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	HIGH
exploitabilityScore:	2.2
impactScore:	3.6
version:	3.1
Trust: 1.0
NVD:	CVE-2021-1884
baseSeverity:	MEDIUM
baseScore:	5.9
vectorString:	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
attackVector:	NETWORK
attackComplexity:	HIGH
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	HIGH
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: VULHUB: VHN-376544 // JVNDB: JVNDB-2021-013511 // CNNVD: CNNVD-202104-975 // CNNVD: CNNVD-202104-1950 // NVD: CVE-2021-1884

PROBLEMTYPE DATA

problemtype:	CWE-362	Trust: 1.1
problemtype:	Race condition (CWE-362) [NVD evaluation ]	Trust: 0.8

sources: VULHUB: VHN-376544 // JVNDB: JVNDB-2021-013511 // NVD: CVE-2021-1884

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-202104-1950

TYPE

other

Trust: 0.6

sources: CNNVD: CNNVD-202104-975

PATCH

title:	HT212530 Apple Security update	url:	https://support.apple.com/en-us/HT212317	Trust: 0.8
title:	Apple macOS Repair measures for the competition condition problem loophole	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=148627	Trust: 0.6
title:	Apple: macOS Big Sur 11.3	url:	https://vulmon.com/vendoradvisory?qidtp=apple_security_advisories&qid=c631c09ebe15d0799205eda727cdfeb3	Trust: 0.1
title:	pocs	url:	https://github.com/gabe-k/pocs	Trust: 0.1

sources: VULMON: CVE-2021-1884 // JVNDB: JVNDB-2021-013511 // CNNVD: CNNVD-202104-1950

EXTERNAL IDS

db:	NVD	id:	CVE-2021-1884	Trust: 3.6
db:	PACKETSTORM	id:	162820	Trust: 0.8
db:	JVNDB	id:	JVNDB-2021-013511	Trust: 0.8
db:	CS-HELP	id:	SB2021041363	Trust: 0.6
db:	CNNVD	id:	CNNVD-202104-975	Trust: 0.6
db:	AUSCERT	id:	ESB-2021.1408.2	Trust: 0.6
db:	AUSCERT	id:	ESB-2021.1794	Trust: 0.6
db:	CS-HELP	id:	SB2021052502	Trust: 0.6
db:	CS-HELP	id:	SB2021042704	Trust: 0.6
db:	CNNVD	id:	CNNVD-202104-1950	Trust: 0.6
db:	PACKETSTORM	id:	162821	Trust: 0.2
db:	VULHUB	id:	VHN-376544	Trust: 0.1
db:	VULMON	id:	CVE-2021-1884	Trust: 0.1

sources: VULHUB: VHN-376544 // VULMON: CVE-2021-1884 // JVNDB: JVNDB-2021-013511 // PACKETSTORM: 162820 // PACKETSTORM: 162821 // CNNVD: CNNVD-202104-975 // CNNVD: CNNVD-202104-1950 // NVD: CVE-2021-1884

REFERENCES

url:	https://support.apple.com/en-us/ht212317	Trust: 1.7
url:	https://support.apple.com/en-us/ht212323	Trust: 1.7
url:	https://support.apple.com/en-us/ht212324	Trust: 1.7
url:	https://support.apple.com/en-us/ht212325	Trust: 1.7
url:	https://support.apple.com/en-us/ht212530	Trust: 1.7
url:	https://support.apple.com/en-us/ht212531	Trust: 1.7
url:	https://nvd.nist.gov/vuln/detail/cve-2021-1884	Trust: 1.0
url:	https://www.cybersecurity-help.cz/vdb/sb2021041363	Trust: 0.6
url:	https://packetstormsecurity.com/files/162820/apple-security-advisory-2021-05-25-4.html	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2021.1408.2	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2021.1794	Trust: 0.6
url:	https://www.cybersecurity-help.cz/vdb/sb2021052502	Trust: 0.6
url:	https://vigilance.fr/vulnerability/apple-macos-multiple-vulnerabilities-35171	Trust: 0.6
url:	https://www.cybersecurity-help.cz/vdb/sb2021042704	Trust: 0.6
url:	https://nvd.nist.gov/vuln/detail/cve-2020-36228	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2020-36222	Trust: 0.2
url:	https://support.apple.com/downloads/	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2021-30669	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2020-36221	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2020-36225	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2021-30676	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2020-36226	Trust: 0.2
url:	https://www.apple.com/support/security/pgp/	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2020-36224	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2020-36229	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2020-36223	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2021-30679	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2021-30693	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2021-30678	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2021-30687	Trust: 0.2
url:	https://support.apple.com/kb/ht201222	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2020-36230	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2021-30681	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2020-36227	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2021-30683	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2021-30691	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2021-30692	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2021-1883	Trust: 0.2
url:	https://github.com/gabe-k/pocs	Trust: 0.1
url:	https://support.apple.com/kb/ht212325	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2021-30684	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2021-30671	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2021-30685	Trust: 0.1
url:	https://support.apple.com/ht212530.	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2021-30673	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2021-30695	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2021-30697	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2021-30694	Trust: 0.1
url:	https://support.apple.com/ht212531.	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2021-30690	Trust: 0.1

CREDITS

Apple

Trust: 0.2

sources: PACKETSTORM: 162820 // PACKETSTORM: 162821

SOURCES

db:	VULHUB	id:	VHN-376544
db:	VULMON	id:	CVE-2021-1884
db:	JVNDB	id:	JVNDB-2021-013511
db:	PACKETSTORM	id:	162820
db:	PACKETSTORM	id:	162821
db:	CNNVD	id:	CNNVD-202104-975
db:	CNNVD	id:	CNNVD-202104-1950
db:	NVD	id:	CVE-2021-1884

LAST UPDATE DATE

2024-08-14T13:16:08.678000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-376544	date:	2023-01-09T00:00:00
db:	JVNDB	id:	JVNDB-2021-013511	date:	2022-09-14T08:07:00
db:	CNNVD	id:	CNNVD-202104-975	date:	2021-04-14T00:00:00
db:	CNNVD	id:	CNNVD-202104-1950	date:	2021-09-17T00:00:00
db:	NVD	id:	CVE-2021-1884	date:	2023-01-09T16:41:59.350

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-376544	date:	2021-09-08T00:00:00
db:	JVNDB	id:	JVNDB-2021-013511	date:	2022-09-14T00:00:00
db:	PACKETSTORM	id:	162820	date:	2021-05-26T17:46:02
db:	PACKETSTORM	id:	162821	date:	2021-05-26T17:46:16
db:	CNNVD	id:	CNNVD-202104-975	date:	2021-04-13T00:00:00
db:	CNNVD	id:	CNNVD-202104-1950	date:	2021-04-27T00:00:00
db:	NVD	id:	CVE-2021-1884	date:	2021-09-08T15:15:12.567