{"url":"http://public2.vulnerablecode.io/api/packages/100055?format=json","purl":"pkg:rpm/redhat/redhat-virtualization-host@4.3.18-20210903.0?arch=el7_9","type":"rpm","namespace":"redhat","name":"redhat-virtualization-host","version":"4.3.18-20210903.0","qualifiers":{"arch":"el7_9"},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/80186?format=json","vulnerability_id":"VCID-26rm-y3rm-bubg","summary":"kernel: out-of-bounds write in xt_compat_target_from_user() in net/netfilter/x_tables.c","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-22555.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-22555.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-22555","reference_id":"","reference_type":"","scores":[{"value":"0.85239","scoring_system":"epss","scoring_elements":"0.99359","published_at":"2026-04-11T12:55:00Z"},{"value":"0.85239","scoring_system":"epss","scoring_elements":"0.99364","published_at":"2026-04-26T12:55:00Z"},{"value":"0.85239","scoring_system":"epss","scoring_elements":"0.99362","published_at":"2026-04-21T12:55:00Z"},{"value":"0.85239","scoring_system":"epss","scoring_elements":"0.99363","published_at":"2026-04-29T12:55:00Z"},{"value":"0.85239","scoring_system":"epss","scoring_elements":"0.9936","published_at":"2026-04-13T12:55:00Z"},{"value":"0.85239","scoring_system":"epss","scoring_elements":"0.99352","published_at":"2026-04-02T12:55:00Z"},{"value":"0.85239","scoring_system":"epss","scoring_elements":"0.99354","published_at":"2026-04-04T12:55:00Z"},{"value":"0.85239","scoring_system":"epss","scoring_elements":"0.99355","published_at":"2026-04-07T12:55:00Z"},{"value":"0.85239","scoring_system":"epss","scoring_elements":"0.99357","published_at":"2026-04-09T12:55:00Z"},{"value":"0.86303","scoring_system":"epss","scoring_elements":"0.99412","published_at":"2026-05-09T12:55:00Z"},{"value":"0.86303","scoring_system":"epss","scoring_elements":"0.9941","published_at":"2026-05-07T12:55:00Z"},{"value":"0.86303","scoring_system":"epss","scoring_elements":"0.99409","published_at":"2026-05-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-22555"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22555","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22555"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1980101","reference_id":"1980101","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1980101"},{"reference_url":"https://security.archlinux.org/AVG-2161","reference_id":"AVG-2161","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2161"},{"reference_url":"https://security.archlinux.org/AVG-2162","reference_id":"AVG-2162","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2162"},{"reference_url":"https://security.archlinux.org/AVG-2163","reference_id":"AVG-2163","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2163"},{"reference_url":"https://security.archlinux.org/AVG-2164","reference_id":"AVG-2164","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2164"},{"reference_url":"https://github.com/google/security-research/blob/d4d6a96c9c8b00929559a84f3d7560903b6413c2/pocs/linux/cve-2021-22555/exploit.c","reference_id":"CVE-2021-22555","reference_type":"exploit","scores":[],"url":"https://github.com/google/security-research/blob/d4d6a96c9c8b00929559a84f3d7560903b6413c2/pocs/linux/cve-2021-22555/exploit.c"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/50135.c","reference_id":"CVE-2021-22555","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/50135.c"},{"reference_url":"https://github.com/google/security-research/security/advisories/GHSA-xxx5-8mvq-3528","reference_id":"GHSA-xxx5-8mvq-3528","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-04T03:55:24Z/"}],"url":"https://github.com/google/security-research/security/advisories/GHSA-xxx5-8mvq-3528"},{"reference_url":"http://packetstormsecurity.com/files/163878/Kernel-Live-Patch-Security-Notice-LSN-0080-1.html","reference_id":"Kernel-Live-Patch-Security-Notice-LSN-0080-1.html","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-04T03:55:24Z/"}],"url":"http://packetstormsecurity.com/files/163878/Kernel-Live-Patch-Security-Notice-LSN-0080-1.html"},{"reference_url":"http://packetstormsecurity.com/files/164155/Kernel-Live-Patch-Security-Notice-LSN-0081-1.html","reference_id":"Kernel-Live-Patch-Security-Notice-LSN-0081-1.html","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-04T03:55:24Z/"}],"url":"http://packetstormsecurity.com/files/164155/Kernel-Live-Patch-Security-Notice-LSN-0081-1.html"},{"reference_url":"http://packetstormsecurity.com/files/165477/Kernel-Live-Patch-Security-Notice-LSN-0083-1.html","reference_id":"Kernel-Live-Patch-Security-Notice-LSN-0083-1.html","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-04T03:55:24Z/"}],"url":"http://packetstormsecurity.com/files/165477/Kernel-Live-Patch-Security-Notice-LSN-0083-1.html"},{"reference_url":"http://packetstormsecurity.com/files/163528/Linux-Kernel-Netfilter-Heap-Out-Of-Bounds-Write.html","reference_id":"Linux-Kernel-Netfilter-Heap-Out-Of-Bounds-Write.html","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-04T03:55:24Z/"}],"url":"http://packetstormsecurity.com/files/163528/Linux-Kernel-Netfilter-Heap-Out-Of-Bounds-Write.html"},{"reference_url":"http://packetstormsecurity.com/files/164437/Netfilter-x_tables-Heap-Out-Of-Bounds-Write-Privilege-Escalation.html","reference_id":"Netfilter-x_tables-Heap-Out-Of-Bounds-Write-Privilege-Escalation.html","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-04T03:55:24Z/"}],"url":"http://packetstormsecurity.com/files/164437/Netfilter-x_tables-Heap-Out-Of-Bounds-Write-Privilege-Escalation.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20210805-0010/","reference_id":"ntap-20210805-0010","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-04T03:55:24Z/"}],"url":"https://security.netapp.com/advisory/ntap-20210805-0010/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3044","reference_id":"RHSA-2021:3044","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3044"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3057","reference_id":"RHSA-2021:3057","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3057"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3088","reference_id":"RHSA-2021:3088","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3088"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3173","reference_id":"RHSA-2021:3173","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3173"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3181","reference_id":"RHSA-2021:3181","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3181"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3235","reference_id":"RHSA-2021:3235","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3235"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3321","reference_id":"RHSA-2021:3321","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3321"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3327","reference_id":"RHSA-2021:3327","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3327"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3328","reference_id":"RHSA-2021:3328","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3328"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3363","reference_id":"RHSA-2021:3363","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3363"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3375","reference_id":"RHSA-2021:3375","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3375"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3380","reference_id":"RHSA-2021:3380","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3380"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3381","reference_id":"RHSA-2021:3381","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3381"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3399","reference_id":"RHSA-2021:3399","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3399"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3477","reference_id":"RHSA-2021:3477","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3477"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3522","reference_id":"RHSA-2021:3522","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3522"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3523","reference_id":"RHSA-2021:3523","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3523"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3725","reference_id":"RHSA-2021:3725","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3725"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3812","reference_id":"RHSA-2021:3812","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3812"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3814","reference_id":"RHSA-2021:3814","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3814"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:17733","reference_id":"RHSA-2025:17733","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:17733"},{"reference_url":"https://usn.ubuntu.com/5039-1/","reference_id":"USN-5039-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5039-1/"},{"reference_url":"https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/net/netfilter/x_tables.c?id=9fa492cdc160cd27ce1046cb36f47d3b2b1efa21","reference_id":"x_tables.c?id=9fa492cdc160cd27ce1046cb36f47d3b2b1efa21","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-04T03:55:24Z/"}],"url":"https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/net/netfilter/x_tables.c?id=9fa492cdc160cd27ce1046cb36f47d3b2b1efa21"},{"reference_url":"https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/net/netfilter/x_tables.c?id=b29c457a6511435960115c0f548c4360d5f4801d","reference_id":"x_tables.c?id=b29c457a6511435960115c0f548c4360d5f4801d","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-04T03:55:24Z/"}],"url":"https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/net/netfilter/x_tables.c?id=b29c457a6511435960115c0f548c4360d5f4801d"}],"fixed_packages":[],"aliases":["CVE-2021-22555"],"risk_score":10.0,"exploitability":"2.0","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-26rm-y3rm-bubg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/80305?format=json","vulnerability_id":"VCID-5b2a-5xzp-yqb9","summary":"kernel: race condition for removal of the HCI controller","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-32399.json","reference_id":"","reference_type":"","scores":[{"value":"7.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-32399.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-32399","reference_id":"","reference_type":"","scores":[{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.19799","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.19672","published_at":"2026-05-09T12:55:00Z"},{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.19654","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.19648","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.19614","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.19505","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.19587","published_at":"2026-05-07T12:55:00Z"},{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.19945","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.20003","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.1973","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.1981","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.19862","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.19872","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.19827","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.1977","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.19744","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.19746","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.19759","published_at":"2026-04-21T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-32399"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32399","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32399"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1970807","reference_id":"1970807","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1970807"},{"reference_url":"https://security.archlinux.org/AVG-1958","reference_id":"AVG-1958","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1958"},{"reference_url":"https://security.archlinux.org/AVG-1959","reference_id":"AVG-1959","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1959"},{"reference_url":"https://security.archlinux.org/AVG-1960","reference_id":"AVG-1960","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1960"},{"reference_url":"https://security.archlinux.org/AVG-1961","reference_id":"AVG-1961","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1961"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2714","reference_id":"RHSA-2021:2714","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2714"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2715","reference_id":"RHSA-2021:2715","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2715"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2716","reference_id":"RHSA-2021:2716","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2716"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2736","reference_id":"RHSA-2021:2736","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2736"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3173","reference_id":"RHSA-2021:3173","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3173"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3181","reference_id":"RHSA-2021:3181","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3181"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3320","reference_id":"RHSA-2021:3320","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3320"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3321","reference_id":"RHSA-2021:3321","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3321"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3327","reference_id":"RHSA-2021:3327","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3327"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3328","reference_id":"RHSA-2021:3328","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3328"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3363","reference_id":"RHSA-2021:3363","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3363"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3375","reference_id":"RHSA-2021:3375","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3375"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3380","reference_id":"RHSA-2021:3380","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3380"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3381","reference_id":"RHSA-2021:3381","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3381"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3392","reference_id":"RHSA-2021:3392","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3392"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3399","reference_id":"RHSA-2021:3399","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3399"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3477","reference_id":"RHSA-2021:3477","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3477"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3522","reference_id":"RHSA-2021:3522","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3522"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3523","reference_id":"RHSA-2021:3523","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3523"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3725","reference_id":"RHSA-2021:3725","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3725"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0157","reference_id":"RHSA-2022:0157","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0157"},{"reference_url":"https://usn.ubuntu.com/4997-1/","reference_id":"USN-4997-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4997-1/"},{"reference_url":"https://usn.ubuntu.com/4997-2/","reference_id":"USN-4997-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4997-2/"},{"reference_url":"https://usn.ubuntu.com/5000-1/","reference_id":"USN-5000-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5000-1/"},{"reference_url":"https://usn.ubuntu.com/5000-2/","reference_id":"USN-5000-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5000-2/"},{"reference_url":"https://usn.ubuntu.com/5001-1/","reference_id":"USN-5001-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5001-1/"},{"reference_url":"https://usn.ubuntu.com/5016-1/","reference_id":"USN-5016-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5016-1/"},{"reference_url":"https://usn.ubuntu.com/5018-1/","reference_id":"USN-5018-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5018-1/"},{"reference_url":"https://usn.ubuntu.com/5343-1/","reference_id":"USN-5343-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5343-1/"}],"fixed_packages":[],"aliases":["CVE-2021-32399"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-5b2a-5xzp-yqb9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/37952?format=json","vulnerability_id":"VCID-941j-gajx-1qc9","summary":"A vulnerability in X.Org X11 library could lead to a Denial of\n    Service condition.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-31535.json","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-31535.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-31535","reference_id":"","reference_type":"","scores":[{"value":"0.0206","scoring_system":"epss","scoring_elements":"0.83844","published_at":"2026-04-01T12:55:00Z"},{"value":"0.0206","scoring_system":"epss","scoring_elements":"0.84037","published_at":"2026-05-09T12:55:00Z"},{"value":"0.0206","scoring_system":"epss","scoring_elements":"0.83998","published_at":"2026-05-05T12:55:00Z"},{"value":"0.0206","scoring_system":"epss","scoring_elements":"0.8402","published_at":"2026-05-07T12:55:00Z"},{"value":"0.0206","scoring_system":"epss","scoring_elements":"0.83857","published_at":"2026-04-02T12:55:00Z"},{"value":"0.0206","scoring_system":"epss","scoring_elements":"0.83873","published_at":"2026-04-04T12:55:00Z"},{"value":"0.0206","scoring_system":"epss","scoring_elements":"0.83875","published_at":"2026-04-07T12:55:00Z"},{"value":"0.0206","scoring_system":"epss","scoring_elements":"0.83898","published_at":"2026-04-08T12:55:00Z"},{"value":"0.0206","scoring_system":"epss","scoring_elements":"0.83905","published_at":"2026-04-09T12:55:00Z"},{"value":"0.0206","scoring_system":"epss","scoring_elements":"0.83921","published_at":"2026-04-11T12:55:00Z"},{"value":"0.0206","scoring_system":"epss","scoring_elements":"0.83915","published_at":"2026-04-12T12:55:00Z"},{"value":"0.0206","scoring_system":"epss","scoring_elements":"0.83911","published_at":"2026-04-13T12:55:00Z"},{"value":"0.0206","scoring_system":"epss","scoring_elements":"0.83937","published_at":"2026-04-16T12:55:00Z"},{"value":"0.0206","scoring_system":"epss","scoring_elements":"0.83938","published_at":"2026-04-21T12:55:00Z"},{"value":"0.0206","scoring_system":"epss","scoring_elements":"0.83963","published_at":"2026-04-24T12:55:00Z"},{"value":"0.0206","scoring_system":"epss","scoring_elements":"0.83971","published_at":"2026-04-26T12:55:00Z"},{"value":"0.0206","scoring_system":"epss","scoring_elements":"0.83976","published_at":"2026-04-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-31535"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-31535","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-31535"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1961822","reference_id":"1961822","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1961822"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=988737","reference_id":"988737","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=988737"},{"reference_url":"https://security.archlinux.org/ASA-202105-12","reference_id":"ASA-202105-12","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202105-12"},{"reference_url":"https://security.archlinux.org/AVG-1968","reference_id":"AVG-1968","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1968"},{"reference_url":"https://security.gentoo.org/glsa/202105-16","reference_id":"GLSA-202105-16","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202105-16"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3296","reference_id":"RHSA-2021:3296","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3296"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3477","reference_id":"RHSA-2021:3477","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3477"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4326","reference_id":"RHSA-2021:4326","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4326"},{"reference_url":"https://usn.ubuntu.com/4966-1/","reference_id":"USN-4966-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4966-1/"},{"reference_url":"https://usn.ubuntu.com/4966-2/","reference_id":"USN-4966-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4966-2/"}],"fixed_packages":[],"aliases":["CVE-2021-31535"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-941j-gajx-1qc9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/56200?format=json","vulnerability_id":"VCID-r1m1-kp4g-pbc7","summary":"A vulnerability has been discovered in SSSD, which can lead to arbitrary code execution.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3621.json","reference_id":"","reference_type":"","scores":[{"value":"6.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3621.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-3621","reference_id":"","reference_type":"","scores":[{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59531","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59713","published_at":"2026-05-09T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59606","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59654","published_at":"2026-05-07T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59605","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.5963","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59599","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.5965","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59663","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59683","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59665","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59646","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59679","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59687","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59671","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59641","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59661","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59647","published_at":"2026-04-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-3621"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3621","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3621"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1975142","reference_id":"1975142","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1975142"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=992710","reference_id":"992710","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=992710"},{"reference_url":"https://security.archlinux.org/AVG-2314","reference_id":"AVG-2314","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2314"},{"reference_url":"https://security.gentoo.org/glsa/202407-05","reference_id":"GLSA-202407-05","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202407-05"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3151","reference_id":"RHSA-2021:3151","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3151"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3178","reference_id":"RHSA-2021:3178","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3178"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3235","reference_id":"RHSA-2021:3235","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3235"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3336","reference_id":"RHSA-2021:3336","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3336"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3365","reference_id":"RHSA-2021:3365","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3365"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3477","reference_id":"RHSA-2021:3477","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3477"},{"reference_url":"https://usn.ubuntu.com/5067-1/","reference_id":"USN-5067-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5067-1/"}],"fixed_packages":[],"aliases":["CVE-2021-3621"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-r1m1-kp4g-pbc7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/80047?format=json","vulnerability_id":"VCID-vnyw-yc4e-eue9","summary":"kernel: use-after-free in route4_change() in net/sched/cls_route.c","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3715.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3715.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-3715","reference_id":"","reference_type":"","scores":[{"value":"0.00041","scoring_system":"epss","scoring_elements":"0.1241","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00041","scoring_system":"epss","scoring_elements":"0.12491","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00041","scoring_system":"epss","scoring_elements":"0.12542","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00041","scoring_system":"epss","scoring_elements":"0.12512","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00042","scoring_system":"epss","scoring_elements":"0.12638","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00042","scoring_system":"epss","scoring_elements":"0.12545","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00042","scoring_system":"epss","scoring_elements":"0.12557","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00042","scoring_system":"epss","scoring_elements":"0.12667","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00042","scoring_system":"epss","scoring_elements":"0.12678","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00042","scoring_system":"epss","scoring_elements":"0.12642","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00042","scoring_system":"epss","scoring_elements":"0.12528","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00042","scoring_system":"epss","scoring_elements":"0.12435","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00042","scoring_system":"epss","scoring_elements":"0.12569","published_at":"2026-05-07T12:55:00Z"},{"value":"0.00042","scoring_system":"epss","scoring_elements":"0.12629","published_at":"2026-05-09T12:55:00Z"},{"value":"0.00042","scoring_system":"epss","scoring_elements":"0.12768","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00042","scoring_system":"epss","scoring_elements":"0.12869","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00042","scoring_system":"epss","scoring_elements":"0.1292","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00042","scoring_system":"epss","scoring_elements":"0.12686","published_at":"2026-04-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-3715"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3715","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3715"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1993988","reference_id":"1993988","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1993988"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4431","reference_id":"RHSA-2020:4431","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4431"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4609","reference_id":"RHSA-2020:4609","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4609"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3438","reference_id":"RHSA-2021:3438","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3438"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3439","reference_id":"RHSA-2021:3439","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3439"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3441","reference_id":"RHSA-2021:3441","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3441"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3442","reference_id":"RHSA-2021:3442","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3442"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3443","reference_id":"RHSA-2021:3443","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3443"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3444","reference_id":"RHSA-2021:3444","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3444"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3445","reference_id":"RHSA-2021:3445","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3445"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3446","reference_id":"RHSA-2021:3446","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3446"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3477","reference_id":"RHSA-2021:3477","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3477"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7173","reference_id":"RHSA-2022:7173","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7173"}],"fixed_packages":[],"aliases":["CVE-2021-3715"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vnyw-yc4e-eue9"}],"fixing_vulnerabilities":[],"risk_score":"10.0","resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/redhat-virtualization-host@4.3.18-20210903.0%3Farch=el7_9"}