Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:rpm/redhat/rh-sso7-keycloak@15.0.2-3.redhat_00002.1?arch=el7sso
Typerpm
Namespaceredhat
Namerh-sso7-keycloak
Version15.0.2-3.redhat_00002.1
Qualifiers
arch el7sso
Subpath
Is_vulnerabletrue
Next_non_vulnerable_versionnull
Latest_non_vulnerable_versionnull
Affected_by_vulnerabilities
0
url VCID-u3tj-vmem-jbb9
vulnerability_id VCID-u3tj-vmem-jbb9
summary 
Incorrect Authorization
A flaw was found in Keycloak which allows an attacker with any existing user account to create new default user accounts via the administrative REST API even when new user registration is disabled.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4133.json
reference_id
reference_type
scores
0
value 8.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4133.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-4133
reference_id
reference_type
scores
0
value 0.00428
scoring_system epss
scoring_elements 0.62525
published_at 2026-04-29T12:55:00Z
1
value 0.00428
scoring_system epss
scoring_elements 0.62528
published_at 2026-04-26T12:55:00Z
2
value 0.00428
scoring_system epss
scoring_elements 0.62502
published_at 2026-04-21T12:55:00Z
3
value 0.00428
scoring_system epss
scoring_elements 0.62518
published_at 2026-04-18T12:55:00Z
4
value 0.00428
scoring_system epss
scoring_elements 0.62512
published_at 2026-04-24T12:55:00Z
5
value 0.00428
scoring_system epss
scoring_elements 0.6247
published_at 2026-04-13T12:55:00Z
6
value 0.00428
scoring_system epss
scoring_elements 0.62492
published_at 2026-04-12T12:55:00Z
7
value 0.00428
scoring_system epss
scoring_elements 0.62503
published_at 2026-04-11T12:55:00Z
8
value 0.00428
scoring_system epss
scoring_elements 0.62484
published_at 2026-04-09T12:55:00Z
9
value 0.00428
scoring_system epss
scoring_elements 0.6242
published_at 2026-04-02T12:55:00Z
10
value 0.00428
scoring_system epss
scoring_elements 0.62361
published_at 2026-04-01T12:55:00Z
11
value 0.00428
scoring_system epss
scoring_elements 0.6245
published_at 2026-04-04T12:55:00Z
12
value 0.00428
scoring_system epss
scoring_elements 0.62468
published_at 2026-04-08T12:55:00Z
13
value 0.00428
scoring_system epss
scoring_elements 0.62417
published_at 2026-04-07T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-4133
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2033602
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=2033602
3
reference_url https://github.com/keycloak/keycloak
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/keycloak/keycloak
4
reference_url https://github.com/keycloak/keycloak/issues/9247
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/keycloak/keycloak/issues/9247
5
reference_url https://www.oracle.com/security-alerts/cpuapr2022.html
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://www.oracle.com/security-alerts/cpuapr2022.html
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2021-4133
reference_id CVE-2021-4133
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2021-4133
7
reference_url https://github.com/advisories/GHSA-83x4-9cwr-5487
reference_id GHSA-83x4-9cwr-5487
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-83x4-9cwr-5487
8
reference_url https://github.com/keycloak/keycloak/security/advisories/GHSA-83x4-9cwr-5487
reference_id GHSA-83x4-9cwr-5487
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/keycloak/keycloak/security/advisories/GHSA-83x4-9cwr-5487
9
reference_url https://access.redhat.com/errata/RHSA-2021:5217
reference_id RHSA-2021:5217
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:5217
10
reference_url https://access.redhat.com/errata/RHSA-2021:5218
reference_id RHSA-2021:5218
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:5218
11
reference_url https://access.redhat.com/errata/RHSA-2021:5219
reference_id RHSA-2021:5219
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:5219
12
reference_url https://access.redhat.com/errata/RHSA-2022:0015
reference_id RHSA-2022:0015
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:0015
13
reference_url https://access.redhat.com/errata/RHSA-2022:0034
reference_id RHSA-2022:0034
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:0034
14
reference_url https://access.redhat.com/errata/RHSA-2022:0151
reference_id RHSA-2022:0151
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:0151
15
reference_url https://access.redhat.com/errata/RHSA-2022:0152
reference_id RHSA-2022:0152
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:0152
16
reference_url https://access.redhat.com/errata/RHSA-2022:0155
reference_id RHSA-2022:0155
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:0155
17
reference_url https://access.redhat.com/errata/RHSA-2022:0164
reference_id RHSA-2022:0164
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:0164
fixed_packages
aliases CVE-2021-4133, GHSA-83x4-9cwr-5487
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-u3tj-vmem-jbb9
Fixing_vulnerabilities
Risk_score4.0
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-sso7-keycloak@15.0.2-3.redhat_00002.1%3Farch=el7sso