Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-w9b7-vajk-3kdq
Summary
Kube-proxy may unintentionally forward traffic
Kube-proxy on Windows can unintentionally forward traffic to local processes listening on the same port (`spec.ports[*].port`) as a LoadBalancer Service when the LoadBalancer controller does not set the `status.loadBalancer.ingress[].ip` field. Clusters 
where the LoadBalancer controller sets the `status.loadBalancer.ingress[].ip` field are unaffected.
Aliases
0
alias CVE-2021-25736
1
alias GHSA-35c7-w35f-xwgh
Fixed_packages
0
url pkg:deb/debian/kubernetes@0?distro=trixie
purl pkg:deb/debian/kubernetes@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/kubernetes@0%3Fdistro=trixie
1
url pkg:deb/debian/kubernetes@1.20.5%2Breally1.20.2-1?distro=trixie
purl pkg:deb/debian/kubernetes@1.20.5%2Breally1.20.2-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-42kp-8t9h-dfat
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/kubernetes@1.20.5%252Breally1.20.2-1%3Fdistro=trixie
2
url pkg:deb/debian/kubernetes@1.20.5%2Breally1.20.2-1.1%2Bdeb12u1?distro=trixie
purl pkg:deb/debian/kubernetes@1.20.5%2Breally1.20.2-1.1%2Bdeb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/kubernetes@1.20.5%252Breally1.20.2-1.1%252Bdeb12u1%3Fdistro=trixie
3
url pkg:deb/debian/kubernetes@1.32.3%2Bds-2?distro=trixie
purl pkg:deb/debian/kubernetes@1.32.3%2Bds-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/kubernetes@1.32.3%252Bds-2%3Fdistro=trixie
4
url pkg:deb/debian/kubernetes@1.33.4%2Bds-1?distro=trixie
purl pkg:deb/debian/kubernetes@1.33.4%2Bds-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/kubernetes@1.33.4%252Bds-1%3Fdistro=trixie
5
url pkg:golang/k8s.io/kubernetes@1.21.0
purl pkg:golang/k8s.io/kubernetes@1.21.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-jjnq-w1uh-dudy
resource_url http://public2.vulnerablecode.io/packages/pkg:golang/k8s.io/kubernetes@1.21.0
Affected_packages
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-25736.json
reference_id
reference_type
scores
0
value 5.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-25736.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-25736
reference_id
reference_type
scores
0
value 0.0008
scoring_system epss
scoring_elements 0.23573
published_at 2026-04-24T12:55:00Z
1
value 0.0008
scoring_system epss
scoring_elements 0.23684
published_at 2026-04-21T12:55:00Z
2
value 0.0008
scoring_system epss
scoring_elements 0.23706
published_at 2026-04-18T12:55:00Z
3
value 0.0008
scoring_system epss
scoring_elements 0.23716
published_at 2026-04-16T12:55:00Z
4
value 0.0008
scoring_system epss
scoring_elements 0.23705
published_at 2026-04-13T12:55:00Z
5
value 0.0008
scoring_system epss
scoring_elements 0.23762
published_at 2026-04-12T12:55:00Z
6
value 0.0008
scoring_system epss
scoring_elements 0.23806
published_at 2026-04-11T12:55:00Z
7
value 0.0008
scoring_system epss
scoring_elements 0.23791
published_at 2026-04-09T12:55:00Z
8
value 0.0008
scoring_system epss
scoring_elements 0.23744
published_at 2026-04-08T12:55:00Z
9
value 0.0008
scoring_system epss
scoring_elements 0.23674
published_at 2026-04-07T12:55:00Z
10
value 0.0008
scoring_system epss
scoring_elements 0.23846
published_at 2026-04-02T12:55:00Z
11
value 0.0008
scoring_system epss
scoring_elements 0.23887
published_at 2026-04-04T12:55:00Z
12
value 0.0008
scoring_system epss
scoring_elements 0.23729
published_at 2026-04-01T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-25736
2
reference_url https://github.com/kubernetes/kubernetes
reference_id
reference_type
scores
0
value 5.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/kubernetes/kubernetes
3
reference_url https://github.com/kubernetes/kubernetes/commit/b014610de3e5cf1bb0f7844b5758d29fc18b75e6
reference_id
reference_type
scores
0
value 5.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/kubernetes/kubernetes/commit/b014610de3e5cf1bb0f7844b5758d29fc18b75e6
4
reference_url https://github.com/kubernetes/kubernetes/pull/99958
reference_id
reference_type
scores
0
value 5.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-12T14:39:48Z/
url https://github.com/kubernetes/kubernetes/pull/99958
5
reference_url https://groups.google.com/g/kubernetes-security-announce/c/lIoOPObO51Q/m/O15LOazPAgAJ
reference_id
reference_type
scores
0
value 5.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-12T14:39:48Z/
url https://groups.google.com/g/kubernetes-security-announce/c/lIoOPObO51Q/m/O15LOazPAgAJ
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2021-25736
reference_id
reference_type
scores
0
value 5.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2021-25736
7
reference_url https://security.netapp.com/advisory/ntap-20231221-0003
reference_id
reference_type
scores
0
value 5.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://security.netapp.com/advisory/ntap-20231221-0003
8
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1946538
reference_id 1946538
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1946538
9
reference_url https://security.netapp.com/advisory/ntap-20231221-0003/
reference_id ntap-20231221-0003
reference_type
scores
0
value 5.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-12T14:39:48Z/
url https://security.netapp.com/advisory/ntap-20231221-0003/
10
reference_url https://access.redhat.com/errata/RHSA-2021:2130
reference_id RHSA-2021:2130
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:2130
Weaknesses
0
cwe_id 200
name Exposure of Sensitive Information to an Unauthorized Actor
description The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
Exploits
Severity_range_score4.0 - 6.9
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-w9b7-vajk-3kdq