{"url":"http://public2.vulnerablecode.io/api/packages/100383?format=json","purl":"pkg:rpm/redhat/redhat-virtualization-host@4.4.6-20210615.0?arch=el8_4","type":"rpm","namespace":"redhat","name":"redhat-virtualization-host","version":"4.4.6-20210615.0","qualifiers":{"arch":"el8_4"},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/46200?format=json","vulnerability_id":"VCID-ca52-wfc7-2ubd","summary":"Multiple vulnerabilities have been found in GLib, the worst of\n    which could result in the arbitrary execution of code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-27219.json","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-27219.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-27219","reference_id":"","reference_type":"","scores":[{"value":"0.01367","scoring_system":"epss","scoring_elements":"0.80395","published_at":"2026-05-16T12:55:00Z"},{"value":"0.01367","scoring_system":"epss","scoring_elements":"0.80266","published_at":"2026-04-26T12:55:00Z"},{"value":"0.01367","scoring_system":"epss","scoring_elements":"0.80281","published_at":"2026-04-29T12:55:00Z"},{"value":"0.01367","scoring_system":"epss","scoring_elements":"0.80297","published_at":"2026-05-05T12:55:00Z"},{"value":"0.01367","scoring_system":"epss","scoring_elements":"0.8032","published_at":"2026-05-07T12:55:00Z"},{"value":"0.01367","scoring_system":"epss","scoring_elements":"0.80336","published_at":"2026-05-09T12:55:00Z"},{"value":"0.01367","scoring_system":"epss","scoring_elements":"0.80332","published_at":"2026-05-11T12:55:00Z"},{"value":"0.01367","scoring_system":"epss","scoring_elements":"0.80349","published_at":"2026-05-12T12:55:00Z"},{"value":"0.01367","scoring_system":"epss","scoring_elements":"0.80389","published_at":"2026-05-14T12:55:00Z"},{"value":"0.01367","scoring_system":"epss","scoring_elements":"0.80392","published_at":"2026-05-15T12:55:00Z"},{"value":"0.01367","scoring_system":"epss","scoring_elements":"0.80204","published_at":"2026-04-12T12:55:00Z"},{"value":"0.01367","scoring_system":"epss","scoring_elements":"0.80199","published_at":"2026-04-13T12:55:00Z"},{"value":"0.01367","scoring_system":"epss","scoring_elements":"0.80228","published_at":"2026-04-16T12:55:00Z"},{"value":"0.01367","scoring_system":"epss","scoring_elements":"0.80229","published_at":"2026-04-18T12:55:00Z"},{"value":"0.01367","scoring_system":"epss","scoring_elements":"0.80233","published_at":"2026-04-21T12:55:00Z"},{"value":"0.01367","scoring_system":"epss","scoring_elements":"0.80259","published_at":"2026-04-24T12:55:00Z"},{"value":"0.02131","scoring_system":"epss","scoring_elements":"0.84107","published_at":"2026-04-01T12:55:00Z"},{"value":"0.02131","scoring_system":"epss","scoring_elements":"0.84168","published_at":"2026-04-09T12:55:00Z"},{"value":"0.02131","scoring_system":"epss","scoring_elements":"0.84186","published_at":"2026-04-11T12:55:00Z"},{"value":"0.02131","scoring_system":"epss","scoring_elements":"0.84121","published_at":"2026-04-02T12:55:00Z"},{"value":"0.02131","scoring_system":"epss","scoring_elements":"0.84139","published_at":"2026-04-04T12:55:00Z"},{"value":"0.02131","scoring_system":"epss","scoring_elements":"0.8414","published_at":"2026-04-07T12:55:00Z"},{"value":"0.02131","scoring_system":"epss","scoring_elements":"0.84162","published_at":"2026-04-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-27219"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27219","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27219"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://gitlab.gnome.org/GNOME/glib/-/issues/2319","reference_id":"","reference_type":"","scores":[],"url":"https://gitlab.gnome.org/GNOME/glib/-/issues/2319"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1929858","reference_id":"1929858","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1929858"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=982778","reference_id":"982778","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=982778"},{"reference_url":"https://security.archlinux.org/AVG-1574","reference_id":"AVG-1574","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1574"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-27219","reference_id":"CVE-2021-27219","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-27219"},{"reference_url":"https://security.gentoo.org/glsa/202107-13","reference_id":"GLSA-202107-13","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202107-13"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2147","reference_id":"RHSA-2021:2147","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2147"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2170","reference_id":"RHSA-2021:2170","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2170"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2171","reference_id":"RHSA-2021:2171","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2171"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2172","reference_id":"RHSA-2021:2172","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2172"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2173","reference_id":"RHSA-2021:2173","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2173"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2174","reference_id":"RHSA-2021:2174","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2174"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2175","reference_id":"RHSA-2021:2175","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2175"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2203","reference_id":"RHSA-2021:2203","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2203"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2204","reference_id":"RHSA-2021:2204","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2204"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2467","reference_id":"RHSA-2021:2467","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2467"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2519","reference_id":"RHSA-2021:2519","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2519"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2522","reference_id":"RHSA-2021:2522","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2522"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4526","reference_id":"RHSA-2021:4526","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4526"},{"reference_url":"https://usn.ubuntu.com/4759-1/","reference_id":"USN-4759-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4759-1/"}],"fixed_packages":[],"aliases":["CVE-2021-27219"],"risk_score":4.4,"exploitability":"0.5","weighted_severity":"8.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ca52-wfc7-2ubd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/80228?format=json","vulnerability_id":"VCID-k9bk-q1ds-6ke5","summary":"hw: vt-d related privilege escalation","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-24489.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-24489.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-24489","reference_id":"","reference_type":"","scores":[{"value":"0.00068","scoring_system":"epss","scoring_elements":"0.21075","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00068","scoring_system":"epss","scoring_elements":"0.21093","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00068","scoring_system":"epss","scoring_elements":"0.21114","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00068","scoring_system":"epss","scoring_elements":"0.21175","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00068","scoring_system":"epss","scoring_elements":"0.21185","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00068","scoring_system":"epss","scoring_elements":"0.21142","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00068","scoring_system":"epss","scoring_elements":"0.21091","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00068","scoring_system":"epss","scoring_elements":"0.21082","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00068","scoring_system":"epss","scoring_elements":"0.21071","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00068","scoring_system":"epss","scoring_elements":"0.20944","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00068","scoring_system":"epss","scoring_elements":"0.20947","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00068","scoring_system":"epss","scoring_elements":"0.20914","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00068","scoring_system":"epss","scoring_elements":"0.21228","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00068","scoring_system":"epss","scoring_elements":"0.21281","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00068","scoring_system":"epss","scoring_elements":"0.21032","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.21964","published_at":"2026-05-11T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.21914","published_at":"2026-05-07T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.21993","published_at":"2026-05-09T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.21987","published_at":"2026-05-12T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22068","published_at":"2026-05-14T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22086","published_at":"2026-05-15T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22083","published_at":"2026-05-16T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.21841","published_at":"2026-05-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-24489"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24489","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24489"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24511","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24511"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24512","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24512"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24513","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24513"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1962650","reference_id":"1962650","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1962650"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989615","reference_id":"989615","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989615"},{"reference_url":"https://security.archlinux.org/ASA-202106-34","reference_id":"ASA-202106-34","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202106-34"},{"reference_url":"https://security.archlinux.org/AVG-2051","reference_id":"AVG-2051","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2051"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2299","reference_id":"RHSA-2021:2299","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2299"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2300","reference_id":"RHSA-2021:2300","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2300"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2301","reference_id":"RHSA-2021:2301","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2301"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2302","reference_id":"RHSA-2021:2302","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2302"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2303","reference_id":"RHSA-2021:2303","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2303"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2304","reference_id":"RHSA-2021:2304","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2304"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2305","reference_id":"RHSA-2021:2305","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2305"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2306","reference_id":"RHSA-2021:2306","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2306"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2307","reference_id":"RHSA-2021:2307","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2307"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2308","reference_id":"RHSA-2021:2308","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2308"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2519","reference_id":"RHSA-2021:2519","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2519"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2522","reference_id":"RHSA-2021:2522","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2522"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3027","reference_id":"RHSA-2021:3027","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3027"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3028","reference_id":"RHSA-2021:3028","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3028"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3029","reference_id":"RHSA-2021:3029","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3029"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3176","reference_id":"RHSA-2021:3176","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3176"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3255","reference_id":"RHSA-2021:3255","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3255"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3317","reference_id":"RHSA-2021:3317","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3317"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3322","reference_id":"RHSA-2021:3322","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3322"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3323","reference_id":"RHSA-2021:3323","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3323"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3364","reference_id":"RHSA-2021:3364","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3364"},{"reference_url":"https://usn.ubuntu.com/4985-1/","reference_id":"USN-4985-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4985-1/"}],"fixed_packages":[],"aliases":["CVE-2020-24489"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-k9bk-q1ds-6ke5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/40022?format=json","vulnerability_id":"VCID-mmjs-fy7f-fkbt","summary":"A vulnerability in polkit could lead to local root privilege\n    escalation.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3560.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3560.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-3560","reference_id":"","reference_type":"","scores":[{"value":"0.06272","scoring_system":"epss","scoring_elements":"0.9096","published_at":"2026-04-26T12:55:00Z"},{"value":"0.06272","scoring_system":"epss","scoring_elements":"0.90957","published_at":"2026-04-29T12:55:00Z"},{"value":"0.06319","scoring_system":"epss","scoring_elements":"0.91036","published_at":"2026-05-07T12:55:00Z"},{"value":"0.06319","scoring_system":"epss","scoring_elements":"0.91022","published_at":"2026-05-05T12:55:00Z"},{"value":"0.07266","scoring_system":"epss","scoring_elements":"0.91663","published_at":"2026-04-24T12:55:00Z"},{"value":"0.07266","scoring_system":"epss","scoring_elements":"0.91656","published_at":"2026-04-21T12:55:00Z"},{"value":"0.09551","scoring_system":"epss","scoring_elements":"0.92909","published_at":"2026-05-09T12:55:00Z"},{"value":"0.09858","scoring_system":"epss","scoring_elements":"0.93041","published_at":"2026-05-11T12:55:00Z"},{"value":"0.09858","scoring_system":"epss","scoring_elements":"0.93048","published_at":"2026-05-12T12:55:00Z"},{"value":"0.09858","scoring_system":"epss","scoring_elements":"0.93071","published_at":"2026-05-14T12:55:00Z"},{"value":"0.10481","scoring_system":"epss","scoring_elements":"0.93323","published_at":"2026-05-16T12:55:00Z"},{"value":"0.10481","scoring_system":"epss","scoring_elements":"0.93329","published_at":"2026-05-15T12:55:00Z"},{"value":"0.10912","scoring_system":"epss","scoring_elements":"0.93394","published_at":"2026-04-12T12:55:00Z"},{"value":"0.10912","scoring_system":"epss","scoring_elements":"0.93413","published_at":"2026-04-16T12:55:00Z"},{"value":"0.10912","scoring_system":"epss","scoring_elements":"0.93418","published_at":"2026-04-18T12:55:00Z"},{"value":"0.10912","scoring_system":"epss","scoring_elements":"0.9339","published_at":"2026-04-09T12:55:00Z"},{"value":"0.10912","scoring_system":"epss","scoring_elements":"0.93386","published_at":"2026-04-08T12:55:00Z"},{"value":"0.10912","scoring_system":"epss","scoring_elements":"0.93378","published_at":"2026-04-07T12:55:00Z"},{"value":"0.10912","scoring_system":"epss","scoring_elements":"0.9337","published_at":"2026-04-02T12:55:00Z"},{"value":"0.10912","scoring_system":"epss","scoring_elements":"0.93362","published_at":"2026-04-01T12:55:00Z"},{"value":"0.10912","scoring_system":"epss","scoring_elements":"0.93395","published_at":"2026-04-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-3560"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3560","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3560"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1961710","reference_id":"1961710","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-01-29T21:24:12Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1961710"},{"reference_url":"https://github.blog/2021-06-10-privilege-escalation-polkit-root-on-linux-with-bug/","reference_id":"2021-06-10-privilege-escalation-polkit-root-on-linux-with-bug","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-01-29T21:24:12Z/"}],"url":"https://github.blog/2021-06-10-privilege-escalation-polkit-root-on-linux-with-bug/"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989429","reference_id":"989429","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989429"},{"reference_url":"https://security.archlinux.org/ASA-202106-24","reference_id":"ASA-202106-24","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202106-24"},{"reference_url":"https://security.archlinux.org/AVG-2028","reference_id":"AVG-2028","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2028"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/50011.sh","reference_id":"CVE-2021-3560","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/50011.sh"},{"reference_url":"http://packetstormsecurity.com/files/172846/Facebook-Fizz-Denial-Of-Service.html","reference_id":"Facebook-Fizz-Denial-Of-Service.html","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-01-29T21:24:12Z/"}],"url":"http://packetstormsecurity.com/files/172846/Facebook-Fizz-Denial-Of-Service.html"},{"reference_url":"https://security.gentoo.org/glsa/202107-31","reference_id":"GLSA-202107-31","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202107-31"},{"reference_url":"http://packetstormsecurity.com/files/172836/polkit-Authentication-Bypass.html","reference_id":"polkit-Authentication-Bypass.html","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-01-29T21:24:12Z/"}],"url":"http://packetstormsecurity.com/files/172836/polkit-Authentication-Bypass.html"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2236","reference_id":"RHSA-2021:2236","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2236"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2237","reference_id":"RHSA-2021:2237","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2237"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2238","reference_id":"RHSA-2021:2238","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2238"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2522","reference_id":"RHSA-2021:2522","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2522"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2555","reference_id":"RHSA-2021:2555","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2555"},{"reference_url":"https://usn.ubuntu.com/4980-1/","reference_id":"USN-4980-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4980-1/"}],"fixed_packages":[],"aliases":["CVE-2021-3560"],"risk_score":10.0,"exploitability":"2.0","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-mmjs-fy7f-fkbt"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/80453?format=json","vulnerability_id":"VCID-wjtw-v83z-ruax","summary":"kernel: userspace applications can misuse the KVM API to cause a write of 16 bytes at an offset up to 32 GB from vcpu->run","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3501.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3501.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-3501","reference_id":"","reference_type":"","scores":[{"value":"0.00042","scoring_system":"epss","scoring_elements":"0.12963","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00042","scoring_system":"epss","scoring_elements":"0.13048","published_at":"2026-05-16T12:55:00Z"},{"value":"0.00042","scoring_system":"epss","scoring_elements":"0.12937","published_at":"2026-05-09T12:55:00Z"},{"value":"0.00042","scoring_system":"epss","scoring_elements":"0.12926","published_at":"2026-05-11T12:55:00Z"},{"value":"0.00042","scoring_system":"epss","scoring_elements":"0.12952","published_at":"2026-05-12T12:55:00Z"},{"value":"0.00042","scoring_system":"epss","scoring_elements":"0.13026","published_at":"2026-05-14T12:55:00Z"},{"value":"0.00042","scoring_system":"epss","scoring_elements":"0.1303","published_at":"2026-05-15T12:55:00Z"},{"value":"0.00042","scoring_system":"epss","scoring_elements":"0.13054","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00042","scoring_system":"epss","scoring_elements":"0.13107","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00042","scoring_system":"epss","scoring_elements":"0.1291","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00042","scoring_system":"epss","scoring_elements":"0.12989","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00042","scoring_system":"epss","scoring_elements":"0.13041","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00042","scoring_system":"epss","scoring_elements":"0.13002","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00042","scoring_system":"epss","scoring_elements":"0.12964","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00042","scoring_system":"epss","scoring_elements":"0.12918","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00042","scoring_system":"epss","scoring_elements":"0.12818","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00042","scoring_system":"epss","scoring_elements":"0.12821","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00042","scoring_system":"epss","scoring_elements":"0.1292","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00042","scoring_system":"epss","scoring_elements":"0.12944","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00042","scoring_system":"epss","scoring_elements":"0.12912","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00042","scoring_system":"epss","scoring_elements":"0.12806","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00042","scoring_system":"epss","scoring_elements":"0.12716","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00042","scoring_system":"epss","scoring_elements":"0.12865","published_at":"2026-05-07T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-3501"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3501","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3501"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1950136","reference_id":"1950136","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1950136"},{"reference_url":"https://security.archlinux.org/AVG-1851","reference_id":"AVG-1851","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1851"},{"reference_url":"https://security.archlinux.org/AVG-1852","reference_id":"AVG-1852","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1852"},{"reference_url":"https://security.archlinux.org/AVG-1853","reference_id":"AVG-1853","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1853"},{"reference_url":"https://security.archlinux.org/AVG-1854","reference_id":"AVG-1854","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1854"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2165","reference_id":"RHSA-2021:2165","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2165"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2168","reference_id":"RHSA-2021:2168","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2168"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2169","reference_id":"RHSA-2021:2169","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2169"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2522","reference_id":"RHSA-2021:2522","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2522"},{"reference_url":"https://usn.ubuntu.com/4977-1/","reference_id":"USN-4977-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4977-1/"},{"reference_url":"https://usn.ubuntu.com/4983-1/","reference_id":"USN-4983-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4983-1/"}],"fixed_packages":[],"aliases":["CVE-2021-3501"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wjtw-v83z-ruax"}],"fixing_vulnerabilities":[],"risk_score":"10.0","resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/redhat-virtualization-host@4.4.6-20210615.0%3Farch=el8_4"}