{"cve_id":"CVE-2021-41277","title":"Metabase - Local File Inclusion","severity":"high","actively_exploited":true,"patterns":["/api/geojson"],"events":2,"unique_ips":1,"actors":[{"ip":"80.87.206.229","events":2,"country_code":"RU","country":"Russia","org":"OVH SAS","rdns":"","scanner_tag":null}],"top_asns":[{"asn":16276,"org":"OVH SAS","events":2,"ips":1}],"fingerprints":{"ja4h":["ge11nn0400_9c3956fad5da"],"ja4":["t13i191000_9dc949149365_e5728521abd4"]},"sample_paths":["/api/geojson?url=file:///etc/hosts"],"timeline":[{"day":"2026-07-01","events":1,"ips":1},{"day":"2026-07-05","events":1,"ips":1}],"window_hours":168}