Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:rpm/redhat/openshift@4.8.0-202107161820.p0.git.051ac4f.assembly.stream?arch=el7
Typerpm
Namespaceredhat
Nameopenshift
Version4.8.0-202107161820.p0.git.051ac4f.assembly.stream
Qualifiers
arch el7
Subpath
Is_vulnerabletrue
Next_non_vulnerable_versionnull
Latest_non_vulnerable_versionnull
Affected_by_vulnerabilities
0
url VCID-jgn7-651b-p3cm
vulnerability_id VCID-jgn7-651b-p3cm
summary 
Access Restriction Bypass in kube-apiserver
A vulnerability in Kubernetes `kube-apiserver` could allow node updates to bypass a _Validating Admission Webhook_ and allow unauthorized node updates. The information that is provided to the admission controller could contain old configurations that overwrite values used for validation. Since the overwriting takes place before the validation, this could lead the admission controller to accept requests that should be blocked. The vulnerability can be exploited when an update action on node resources is performed and an admission controller is in place and configured to validate the action.

Users are only affected by this vulnerability if they are running a _Validating Admission Webhook_ for Nodes that denies admission based partially on the old state of the Node object. It only impacts validating admission plugins that rely on old values in certain fields and does not impact calls from kubelets that go through the built-in NodeRestriction admission plugin.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-25735.json
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-25735.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-25735
reference_id
reference_type
scores
0
value 0.14393
scoring_system epss
scoring_elements 0.94446
published_at 2026-04-24T12:55:00Z
1
value 0.14393
scoring_system epss
scoring_elements 0.94443
published_at 2026-04-18T12:55:00Z
2
value 0.14393
scoring_system epss
scoring_elements 0.94437
published_at 2026-04-16T12:55:00Z
3
value 0.14393
scoring_system epss
scoring_elements 0.94422
published_at 2026-04-13T12:55:00Z
4
value 0.14393
scoring_system epss
scoring_elements 0.9442
published_at 2026-04-11T12:55:00Z
5
value 0.14393
scoring_system epss
scoring_elements 0.94418
published_at 2026-04-09T12:55:00Z
6
value 0.14393
scoring_system epss
scoring_elements 0.94414
published_at 2026-04-08T12:55:00Z
7
value 0.14393
scoring_system epss
scoring_elements 0.94405
published_at 2026-04-07T12:55:00Z
8
value 0.14393
scoring_system epss
scoring_elements 0.94384
published_at 2026-04-01T12:55:00Z
9
value 0.14393
scoring_system epss
scoring_elements 0.94403
published_at 2026-04-04T12:55:00Z
10
value 0.14393
scoring_system epss
scoring_elements 0.94391
published_at 2026-04-02T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-25735
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1937562
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=1937562
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25735
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25735
4
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
5
reference_url https://github.com/kubernetes/kubernetes
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/kubernetes/kubernetes
6
reference_url https://github.com/kubernetes/kubernetes/commit/00e81db174ef7aca497be5f42d87e46d14df2a90
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/kubernetes/kubernetes/commit/00e81db174ef7aca497be5f42d87e46d14df2a90
7
reference_url https://github.com/kubernetes/kubernetes/issues/100096
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/kubernetes/kubernetes/issues/100096
8
reference_url https://github.com/kubernetes/kubernetes/pull/99946
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/kubernetes/kubernetes/pull/99946
9
reference_url https://groups.google.com/g/kubernetes-security-announce/c/FKAGqT4jx9Y
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://groups.google.com/g/kubernetes-security-announce/c/FKAGqT4jx9Y
10
reference_url https://nvd.nist.gov/vuln/detail/CVE-2021-25735
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2021-25735
11
reference_url https://pkg.go.dev/k8s.io/kubernetes@v1.23.5/cmd/kube-apiserver
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://pkg.go.dev/k8s.io/kubernetes@v1.23.5/cmd/kube-apiserver
12
reference_url https://sysdig.com/blog/cve-2021-25735-kubernetes-admission-bypass
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://sysdig.com/blog/cve-2021-25735-kubernetes-admission-bypass
13
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=990793
reference_id 990793
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=990793
14
reference_url https://security.archlinux.org/AVG-1825
reference_id AVG-1825
reference_type
scores
0
value Medium
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1825
15
reference_url https://access.redhat.com/errata/RHSA-2021:2437
reference_id RHSA-2021:2437
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:2437
fixed_packages
aliases CVE-2021-25735, GHSA-g42g-737j-qx6j
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jgn7-651b-p3cm
1
url VCID-jjnq-w1uh-dudy
vulnerability_id VCID-jjnq-w1uh-dudy
summary 
Incomplete List of Disallowed Inputs in Kubernetes
A security issue was discovered in Kubernetes where a user may be able to redirect pod traffic to private networks on a Node. Kubernetes already prevents creation of Endpoint IPs in the localhost or link-local range, but the same validation was not performed on EndpointSlice IPs.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-25737.json
reference_id
reference_type
scores
0
value 2.7
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-25737.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-25737
reference_id
reference_type
scores
0
value 0.00379
scoring_system epss
scoring_elements 0.59401
published_at 2026-04-24T12:55:00Z
1
value 0.00379
scoring_system epss
scoring_elements 0.59426
published_at 2026-04-21T12:55:00Z
2
value 0.00379
scoring_system epss
scoring_elements 0.59444
published_at 2026-04-18T12:55:00Z
3
value 0.00379
scoring_system epss
scoring_elements 0.59438
published_at 2026-04-16T12:55:00Z
4
value 0.00379
scoring_system epss
scoring_elements 0.59406
published_at 2026-04-13T12:55:00Z
5
value 0.00379
scoring_system epss
scoring_elements 0.59424
published_at 2026-04-12T12:55:00Z
6
value 0.00379
scoring_system epss
scoring_elements 0.59441
published_at 2026-04-11T12:55:00Z
7
value 0.00379
scoring_system epss
scoring_elements 0.59422
published_at 2026-04-09T12:55:00Z
8
value 0.00379
scoring_system epss
scoring_elements 0.59408
published_at 2026-04-08T12:55:00Z
9
value 0.00379
scoring_system epss
scoring_elements 0.59293
published_at 2026-04-01T12:55:00Z
10
value 0.00379
scoring_system epss
scoring_elements 0.59357
published_at 2026-04-07T12:55:00Z
11
value 0.00379
scoring_system epss
scoring_elements 0.59367
published_at 2026-04-02T12:55:00Z
12
value 0.00379
scoring_system epss
scoring_elements 0.59391
published_at 2026-04-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-25737
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25737
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25737
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 2.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://github.com/kubernetes/kubernetes
reference_id
reference_type
scores
0
value 4.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/kubernetes/kubernetes
5
reference_url https://github.com/kubernetes/kubernetes/issues/102106
reference_id
reference_type
scores
0
value 4.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/kubernetes/kubernetes/issues/102106
6
reference_url https://groups.google.com/g/kubernetes-security-announce/c/xAiN3924thY
reference_id
reference_type
scores
0
value 4.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://groups.google.com/g/kubernetes-security-announce/c/xAiN3924thY
7
reference_url https://nvd.nist.gov/vuln/detail/CVE-2021-25737
reference_id
reference_type
scores
0
value 4.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2021-25737
8
reference_url https://security.netapp.com/advisory/ntap-20211004-0004
reference_id
reference_type
scores
0
value 4.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://security.netapp.com/advisory/ntap-20211004-0004
9
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1954917
reference_id 1954917
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1954917
10
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=990793
reference_id 990793
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=990793
11
reference_url https://security.archlinux.org/ASA-202106-29
reference_id ASA-202106-29
reference_type
scores
url https://security.archlinux.org/ASA-202106-29
12
reference_url https://security.archlinux.org/AVG-1970
reference_id AVG-1970
reference_type
scores
0
value Low
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1970
13
reference_url https://access.redhat.com/errata/RHSA-2021:2437
reference_id RHSA-2021:2437
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:2437
fixed_packages
aliases CVE-2021-25737, GHSA-mfv7-gq43-w965
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jjnq-w1uh-dudy
2
url VCID-p2h1-hg14-3ke9
vulnerability_id VCID-p2h1-hg14-3ke9
summary 
Improper Input Validation in GoGo Protobuf
An issue was discovered in GoGo Protobuf before 1.3.2. plugin/unmarshal/unmarshal.go lacks certain index validation, aka the "skippy peanut butter" issue.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3121.json
reference_id
reference_type
scores
0
value 8.6
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3121.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-3121
reference_id
reference_type
scores
0
value 0.00135
scoring_system epss
scoring_elements 0.33043
published_at 2026-04-24T12:55:00Z
1
value 0.00135
scoring_system epss
scoring_elements 0.33233
published_at 2026-04-12T12:55:00Z
2
value 0.00135
scoring_system epss
scoring_elements 0.3319
published_at 2026-04-21T12:55:00Z
3
value 0.00135
scoring_system epss
scoring_elements 0.33226
published_at 2026-04-18T12:55:00Z
4
value 0.00135
scoring_system epss
scoring_elements 0.33249
published_at 2026-04-16T12:55:00Z
5
value 0.00135
scoring_system epss
scoring_elements 0.3321
published_at 2026-04-13T12:55:00Z
6
value 0.00135
scoring_system epss
scoring_elements 0.33201
published_at 2026-04-01T12:55:00Z
7
value 0.00135
scoring_system epss
scoring_elements 0.33328
published_at 2026-04-02T12:55:00Z
8
value 0.00135
scoring_system epss
scoring_elements 0.3336
published_at 2026-04-04T12:55:00Z
9
value 0.00135
scoring_system epss
scoring_elements 0.33193
published_at 2026-04-07T12:55:00Z
10
value 0.00135
scoring_system epss
scoring_elements 0.33236
published_at 2026-04-08T12:55:00Z
11
value 0.00135
scoring_system epss
scoring_elements 0.33269
published_at 2026-04-09T12:55:00Z
12
value 0.00135
scoring_system epss
scoring_elements 0.33274
published_at 2026-04-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-3121
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121
3
reference_url https://discuss.hashicorp.com/t/hcsec-2021-23-consul-exposed-to-denial-of-service-in-gogo-protobuf-dependency/29025
reference_id
reference_type
scores
0
value 8.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://discuss.hashicorp.com/t/hcsec-2021-23-consul-exposed-to-denial-of-service-in-gogo-protobuf-dependency/29025
4
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
5
reference_url https://github.com/gogo/protobuf
reference_id
reference_type
scores
0
value 8.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/gogo/protobuf
6
reference_url https://github.com/gogo/protobuf/commit/b03c65ea87cdc3521ede29f62fe3ce239267c1bc
reference_id
reference_type
scores
0
value 8.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/gogo/protobuf/commit/b03c65ea87cdc3521ede29f62fe3ce239267c1bc
7
reference_url https://github.com/gogo/protobuf/compare/v1.3.1...v1.3.2
reference_id
reference_type
scores
0
value 8.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/gogo/protobuf/compare/v1.3.1...v1.3.2
8
reference_url https://lists.apache.org/thread.html/r68032132c0399c29d6cdc7bd44918535da54060a10a12b1591328bff@%3Cnotifications.skywalking.apache.org%3E
reference_id
reference_type
scores
0
value 8.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/r68032132c0399c29d6cdc7bd44918535da54060a10a12b1591328bff@%3Cnotifications.skywalking.apache.org%3E
9
reference_url https://lists.apache.org/thread.html/r88d69555cb74a129a7bf84838073b61259b4a3830190e05a3b87994e@%3Ccommits.pulsar.apache.org%3E
reference_id
reference_type
scores
0
value 8.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/r88d69555cb74a129a7bf84838073b61259b4a3830190e05a3b87994e@%3Ccommits.pulsar.apache.org%3E
10
reference_url https://lists.apache.org/thread.html/rc1e9ff22c5641d73701ba56362fb867d40ed287cca000b131dcf4a44@%3Ccommits.pulsar.apache.org%3E
reference_id
reference_type
scores
0
value 8.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/rc1e9ff22c5641d73701ba56362fb867d40ed287cca000b131dcf4a44@%3Ccommits.pulsar.apache.org%3E
11
reference_url https://nvd.nist.gov/vuln/detail/CVE-2021-3121
reference_id
reference_type
scores
0
value 8.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2021-3121
12
reference_url https://pkg.go.dev/vuln/GO-2021-0053
reference_id
reference_type
scores
0
value 8.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://pkg.go.dev/vuln/GO-2021-0053
13
reference_url https://security.netapp.com/advisory/ntap-20210219-0006
reference_id
reference_type
scores
0
value 8.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://security.netapp.com/advisory/ntap-20210219-0006
14
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1921650
reference_id 1921650
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1921650
15
reference_url https://access.redhat.com/errata/RHSA-2020:5633
reference_id RHSA-2020:5633
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:5633
16
reference_url https://access.redhat.com/errata/RHSA-2020:5635
reference_id RHSA-2020:5635
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:5635
17
reference_url https://access.redhat.com/errata/RHSA-2021:0607
reference_id RHSA-2021:0607
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0607
18
reference_url https://access.redhat.com/errata/RHSA-2021:0719
reference_id RHSA-2021:0719
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0719
19
reference_url https://access.redhat.com/errata/RHSA-2021:1005
reference_id RHSA-2021:1005
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:1005
20
reference_url https://access.redhat.com/errata/RHSA-2021:1006
reference_id RHSA-2021:1006
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:1006
21
reference_url https://access.redhat.com/errata/RHSA-2021:1007
reference_id RHSA-2021:1007
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:1007
22
reference_url https://access.redhat.com/errata/RHSA-2021:1225
reference_id RHSA-2021:1225
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:1225
23
reference_url https://access.redhat.com/errata/RHSA-2021:1227
reference_id RHSA-2021:1227
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:1227
24
reference_url https://access.redhat.com/errata/RHSA-2021:1552
reference_id RHSA-2021:1552
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:1552
25
reference_url https://access.redhat.com/errata/RHSA-2021:1563
reference_id RHSA-2021:1563
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:1563
26
reference_url https://access.redhat.com/errata/RHSA-2021:2121
reference_id RHSA-2021:2121
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:2121
27
reference_url https://access.redhat.com/errata/RHSA-2021:2136
reference_id RHSA-2021:2136
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:2136
28
reference_url https://access.redhat.com/errata/RHSA-2021:2286
reference_id RHSA-2021:2286
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:2286
29
reference_url https://access.redhat.com/errata/RHSA-2021:2374
reference_id RHSA-2021:2374
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:2374
30
reference_url https://access.redhat.com/errata/RHSA-2021:2437
reference_id RHSA-2021:2437
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:2437
31
reference_url https://access.redhat.com/errata/RHSA-2021:2438
reference_id RHSA-2021:2438
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:2438
32
reference_url https://access.redhat.com/errata/RHSA-2021:2920
reference_id RHSA-2021:2920
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:2920
33
reference_url https://access.redhat.com/errata/RHSA-2021:2977
reference_id RHSA-2021:2977
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:2977
34
reference_url https://access.redhat.com/errata/RHSA-2021:3259
reference_id RHSA-2021:3259
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:3259
35
reference_url https://access.redhat.com/errata/RHSA-2021:3262
reference_id RHSA-2021:3262
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:3262
36
reference_url https://access.redhat.com/errata/RHSA-2021:3303
reference_id RHSA-2021:3303
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:3303
37
reference_url https://access.redhat.com/errata/RHSA-2021:3759
reference_id RHSA-2021:3759
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:3759
38
reference_url https://access.redhat.com/errata/RHSA-2021:4104
reference_id RHSA-2021:4104
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:4104
39
reference_url https://access.redhat.com/errata/RHSA-2022:0056
reference_id RHSA-2022:0056
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:0056
40
reference_url https://access.redhat.com/errata/RHSA-2022:0283
reference_id RHSA-2022:0283
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:0283
41
reference_url https://access.redhat.com/errata/RHSA-2022:0577
reference_id RHSA-2022:0577
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:0577
42
reference_url https://access.redhat.com/errata/RHSA-2022:1276
reference_id RHSA-2022:1276
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:1276
43
reference_url https://access.redhat.com/errata/RHSA-2022:1679
reference_id RHSA-2022:1679
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:1679
44
reference_url https://access.redhat.com/errata/RHSA-2022:6536
reference_id RHSA-2022:6536
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6536
45
reference_url https://access.redhat.com/errata/RHSA-2022:6916
reference_id RHSA-2022:6916
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6916
fixed_packages
aliases CVE-2021-3121, GHSA-c3h9-896r-86jm
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-p2h1-hg14-3ke9
3
url VCID-w63n-2fx2-hyht
vulnerability_id VCID-w63n-2fx2-hyht
summary openshift: Injected service-ca.crt incorrectly contains additional internal CAs
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3636.json
reference_id
reference_type
scores
0
value 4.6
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3636.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-3636
reference_id
reference_type
scores
0
value 0.00031
scoring_system epss
scoring_elements 0.08805
published_at 2026-04-01T12:55:00Z
1
value 0.00031
scoring_system epss
scoring_elements 0.08831
published_at 2026-04-02T12:55:00Z
2
value 0.00031
scoring_system epss
scoring_elements 0.0888
published_at 2026-04-04T12:55:00Z
3
value 0.00031
scoring_system epss
scoring_elements 0.08812
published_at 2026-04-07T12:55:00Z
4
value 0.00031
scoring_system epss
scoring_elements 0.0889
published_at 2026-04-08T12:55:00Z
5
value 0.00031
scoring_system epss
scoring_elements 0.08917
published_at 2026-04-09T12:55:00Z
6
value 0.00031
scoring_system epss
scoring_elements 0.08916
published_at 2026-04-11T12:55:00Z
7
value 0.00031
scoring_system epss
scoring_elements 0.08884
published_at 2026-04-12T12:55:00Z
8
value 0.00031
scoring_system epss
scoring_elements 0.08871
published_at 2026-04-13T12:55:00Z
9
value 0.00031
scoring_system epss
scoring_elements 0.08762
published_at 2026-04-16T12:55:00Z
10
value 0.00031
scoring_system epss
scoring_elements 0.08737
published_at 2026-04-18T12:55:00Z
11
value 0.00031
scoring_system epss
scoring_elements 0.08888
published_at 2026-04-21T12:55:00Z
12
value 0.00031
scoring_system epss
scoring_elements 0.08905
published_at 2026-04-24T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-3636
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1978621
reference_id 1978621
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1978621
3
reference_url https://access.redhat.com/errata/RHSA-2021:2437
reference_id RHSA-2021:2437
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:2437
fixed_packages
aliases CVE-2021-3636
risk_score 2.0
exploitability 0.5
weighted_severity 4.1
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-w63n-2fx2-hyht
Fixing_vulnerabilities
Risk_score4.0
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openshift@4.8.0-202107161820.p0.git.051ac4f.assembly.stream%3Farch=el7