{"url":"http://public2.vulnerablecode.io/api/packages/190352?format=json","purl":"pkg:ebuild/dev-java/icedtea@3.21.0","type":"ebuild","namespace":"dev-java","name":"icedtea","version":"3.21.0","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"7.2.6.4","latest_non_vulnerable_version":"7.2.6.4","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/96373?format=json","vulnerability_id":"VCID-1dmq-7kkk-9ffr","summary":"Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: JSSE). Supported versions that are affected are Java SE: 7u261, 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with network access via TLS to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Java SE Embedded accessible data. Note: Applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.1 Base Score 3.7 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N).","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14577.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14577.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14577","reference_id":"","reference_type":"","scores":[{"value":"0.00283","scoring_system":"epss","scoring_elements":"0.52017","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00283","scoring_system":"epss","scoring_elements":"0.51956","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14577"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14556","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14556"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14562","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14562"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14573","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14573"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14577","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14577"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14578","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14578"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14579","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14579"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14581","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14581"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14583","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14583"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14593","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14593"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14621","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14621"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1856988","reference_id":"1856988","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1856988"},{"reference_url":"https://usn.ubuntu.com/4433-1/","reference_id":"4433-1","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:56Z/"}],"url":"https://usn.ubuntu.com/4433-1/"},{"reference_url":"https://usn.ubuntu.com/4453-1/","reference_id":"4453-1","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:56Z/"}],"url":"https://usn.ubuntu.com/4453-1/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6CFJPOYF3CWYEPCDOAOCNFJTQIKKWPHW/","reference_id":"6CFJPOYF3CWYEPCDOAOCNFJTQIKKWPHW","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:56Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6CFJPOYF3CWYEPCDOAOCNFJTQIKKWPHW/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DFZ36XIW5ENQAW6BB7WHRFFTTJX7KGMR/","reference_id":"DFZ36XIW5ENQAW6BB7WHRFFTTJX7KGMR","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:56Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DFZ36XIW5ENQAW6BB7WHRFFTTJX7KGMR/"},{"reference_url":"https://www.debian.org/security/2020/dsa-4734","reference_id":"dsa-4734","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:56Z/"}],"url":"https://www.debian.org/security/2020/dsa-4734"},{"reference_url":"https://security.gentoo.org/glsa/202209-15","reference_id":"GLSA-202209-15","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:56Z/"}],"url":"https://security.gentoo.org/glsa/202209-15"},{"reference_url":"https://security.gentoo.org/glsa/202409-26","reference_id":"GLSA-202409-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-26"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MEPHBZPNSLX43B26DWKB7OS6AROTS2BO/","reference_id":"MEPHBZPNSLX43B26DWKB7OS6AROTS2BO","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:56Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MEPHBZPNSLX43B26DWKB7OS6AROTS2BO/"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00019.html","reference_id":"msg00019.html","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:56Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00019.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2020/08/msg00021.html","reference_id":"msg00021.html","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:56Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2020/08/msg00021.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00027.html","reference_id":"msg00027.html","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:56Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00027.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00041.html","reference_id":"msg00041.html","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:56Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00041.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20200717-0005/","reference_id":"ntap-20200717-0005","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:56Z/"}],"url":"https://security.netapp.com/advisory/ntap-20200717-0005/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QQUMIAON2YEFRONMIUVHAKYCIOLICDBA/","reference_id":"QQUMIAON2YEFRONMIUVHAKYCIOLICDBA","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:56Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QQUMIAON2YEFRONMIUVHAKYCIOLICDBA/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2968","reference_id":"RHSA-2020:2968","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2968"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2969","reference_id":"RHSA-2020:2969","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2969"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2970","reference_id":"RHSA-2020:2970","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2970"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2972","reference_id":"RHSA-2020:2972","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2972"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2985","reference_id":"RHSA-2020:2985","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2985"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3098","reference_id":"RHSA-2020:3098","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3098"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3099","reference_id":"RHSA-2020:3099","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3099"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3100","reference_id":"RHSA-2020:3100","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3100"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3101","reference_id":"RHSA-2020:3101","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3101"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3386","reference_id":"RHSA-2020:3386","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3386"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3387","reference_id":"RHSA-2020:3387","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3387"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3388","reference_id":"RHSA-2020:3388","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3388"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5585","reference_id":"RHSA-2020:5585","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5585"}],"fixed_packages":[],"aliases":["CVE-2020-14577"],"risk_score":1.6,"exploitability":"0.5","weighted_severity":"3.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-1dmq-7kkk-9ffr"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/96370?format=json","vulnerability_id":"VCID-3t92-bzzd-b3f8","summary":"Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Java SE, Java SE Embedded accessible data as well as unauthorized read access to a subset of Java SE, Java SE Embedded accessible data. Note: Applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.1 Base Score 4.8 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N).","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14556.json","reference_id":"","reference_type":"","scores":[{"value":"4.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14556.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14556","reference_id":"","reference_type":"","scores":[{"value":"0.00576","scoring_system":"epss","scoring_elements":"0.69182","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00576","scoring_system":"epss","scoring_elements":"0.69221","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14556"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14556","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14556"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14562","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14562"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14573","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14573"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14577","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14577"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14578","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14578"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14579","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14579"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14581","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14581"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14583","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14583"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14593","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14593"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14621","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14621"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1856896","reference_id":"1856896","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1856896"},{"reference_url":"https://usn.ubuntu.com/4433-1/","reference_id":"4433-1","reference_type":"","scores":[{"value":"4.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:18Z/"}],"url":"https://usn.ubuntu.com/4433-1/"},{"reference_url":"https://usn.ubuntu.com/4453-1/","reference_id":"4453-1","reference_type":"","scores":[{"value":"4.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:18Z/"}],"url":"https://usn.ubuntu.com/4453-1/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6CFJPOYF3CWYEPCDOAOCNFJTQIKKWPHW/","reference_id":"6CFJPOYF3CWYEPCDOAOCNFJTQIKKWPHW","reference_type":"","scores":[{"value":"4.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:18Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6CFJPOYF3CWYEPCDOAOCNFJTQIKKWPHW/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DFZ36XIW5ENQAW6BB7WHRFFTTJX7KGMR/","reference_id":"DFZ36XIW5ENQAW6BB7WHRFFTTJX7KGMR","reference_type":"","scores":[{"value":"4.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:18Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DFZ36XIW5ENQAW6BB7WHRFFTTJX7KGMR/"},{"reference_url":"https://www.debian.org/security/2020/dsa-4734","reference_id":"dsa-4734","reference_type":"","scores":[{"value":"4.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:18Z/"}],"url":"https://www.debian.org/security/2020/dsa-4734"},{"reference_url":"https://security.gentoo.org/glsa/202008-24","reference_id":"GLSA-202008-24","reference_type":"","scores":[{"value":"4.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:18Z/"}],"url":"https://security.gentoo.org/glsa/202008-24"},{"reference_url":"https://security.gentoo.org/glsa/202209-15","reference_id":"GLSA-202209-15","reference_type":"","scores":[{"value":"4.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:18Z/"}],"url":"https://security.gentoo.org/glsa/202209-15"},{"reference_url":"https://security.gentoo.org/glsa/202409-26","reference_id":"GLSA-202409-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-26"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MEPHBZPNSLX43B26DWKB7OS6AROTS2BO/","reference_id":"MEPHBZPNSLX43B26DWKB7OS6AROTS2BO","reference_type":"","scores":[{"value":"4.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:18Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MEPHBZPNSLX43B26DWKB7OS6AROTS2BO/"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00019.html","reference_id":"msg00019.html","reference_type":"","scores":[{"value":"4.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:18Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00019.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2020/08/msg00021.html","reference_id":"msg00021.html","reference_type":"","scores":[{"value":"4.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:18Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2020/08/msg00021.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00027.html","reference_id":"msg00027.html","reference_type":"","scores":[{"value":"4.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:18Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00027.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00041.html","reference_id":"msg00041.html","reference_type":"","scores":[{"value":"4.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:18Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00041.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20200717-0005/","reference_id":"ntap-20200717-0005","reference_type":"","scores":[{"value":"4.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:18Z/"}],"url":"https://security.netapp.com/advisory/ntap-20200717-0005/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QQUMIAON2YEFRONMIUVHAKYCIOLICDBA/","reference_id":"QQUMIAON2YEFRONMIUVHAKYCIOLICDBA","reference_type":"","scores":[{"value":"4.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:18Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QQUMIAON2YEFRONMIUVHAKYCIOLICDBA/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2968","reference_id":"RHSA-2020:2968","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2968"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2969","reference_id":"RHSA-2020:2969","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2969"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2970","reference_id":"RHSA-2020:2970","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2970"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2972","reference_id":"RHSA-2020:2972","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2972"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2985","reference_id":"RHSA-2020:2985","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2985"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3098","reference_id":"RHSA-2020:3098","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3098"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3099","reference_id":"RHSA-2020:3099","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3099"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3100","reference_id":"RHSA-2020:3100","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3100"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3101","reference_id":"RHSA-2020:3101","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3101"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3386","reference_id":"RHSA-2020:3386","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3386"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5585","reference_id":"RHSA-2020:5585","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5585"}],"fixed_packages":[],"aliases":["CVE-2020-14556"],"risk_score":2.1,"exploitability":"0.5","weighted_severity":"4.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3t92-bzzd-b3f8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/96447?format=json","vulnerability_id":"VCID-4c3j-7pf2-fkbc","summary":"Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JGSS). Supported versions that are affected are Oracle Java SE: 17.0.4.1, 19; Oracle GraalVM Enterprise Edition: 21.3.3 and 22.2.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via Kerberos to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N).","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21618.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21618.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21618","reference_id":"","reference_type":"","scores":[{"value":"0.0018","scoring_system":"epss","scoring_elements":"0.39307","published_at":"2026-06-04T12:55:00Z"},{"value":"0.0018","scoring_system":"epss","scoring_elements":"0.39395","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21618"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21618","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21618"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21619","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21619"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21624","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21624"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21628","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21628"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39399","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39399"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-21835","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-21835"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-21843","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-21843"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2133817","reference_id":"2133817","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2133817"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/37QDWJBGEPP65X43NXQTXQ7KASLUHON6/","reference_id":"37QDWJBGEPP65X43NXQTXQ7KASLUHON6","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-27T15:10:27Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/37QDWJBGEPP65X43NXQTXQ7KASLUHON6/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3ARF4QF4N3X5GSFHXUBWARGLISGKJ33R/","reference_id":"3ARF4QF4N3X5GSFHXUBWARGLISGKJ33R","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-27T15:10:27Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3ARF4QF4N3X5GSFHXUBWARGLISGKJ33R/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3QLQ7OD33W6LT3HWI7VYDFFJLV75Y73K/","reference_id":"3QLQ7OD33W6LT3HWI7VYDFFJLV75Y73K","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-27T15:10:27Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3QLQ7OD33W6LT3HWI7VYDFFJLV75Y73K/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EXSBV3W6EP6B7XJ63Z2FPVBH6HAPGJ5T/","reference_id":"EXSBV3W6EP6B7XJ63Z2FPVBH6HAPGJ5T","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-27T15:10:27Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EXSBV3W6EP6B7XJ63Z2FPVBH6HAPGJ5T/"},{"reference_url":"https://security.gentoo.org/glsa/202409-26","reference_id":"GLSA-202409-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-26"},{"reference_url":"https://security.netapp.com/advisory/ntap-20221028-0012/","reference_id":"ntap-20221028-0012","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-27T15:10:27Z/"}],"url":"https://security.netapp.com/advisory/ntap-20221028-0012/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:6999","reference_id":"RHSA-2022:6999","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:6999"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7000","reference_id":"RHSA-2022:7000","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7000"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7001","reference_id":"RHSA-2022:7001","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7001"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7008","reference_id":"RHSA-2022:7008","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7008"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7009","reference_id":"RHSA-2022:7009","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7009"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7010","reference_id":"RHSA-2022:7010","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7010"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7011","reference_id":"RHSA-2022:7011","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7011"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7012","reference_id":"RHSA-2022:7012","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7012"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7013","reference_id":"RHSA-2022:7013","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7013"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7051","reference_id":"RHSA-2022:7051","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7051"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7052","reference_id":"RHSA-2022:7052","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7052"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7053","reference_id":"RHSA-2022:7053","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7053"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7054","reference_id":"RHSA-2022:7054","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7054"},{"reference_url":"https://usn.ubuntu.com/5719-1/","reference_id":"USN-5719-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5719-1/"}],"fixed_packages":[],"aliases":["CVE-2022-21618"],"risk_score":2.4,"exploitability":"0.5","weighted_severity":"4.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4c3j-7pf2-fkbc"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/96429?format=json","vulnerability_id":"VCID-4sr3-ebqa-xug8","summary":"Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JNDI). Supported versions that are affected are Oracle Java SE: 8u341, 8u345-perf, 11.0.16.1, 17.0.4.1, 19; Oracle GraalVM Enterprise Edition: 20.3.7, 21.3.3 and 22.2.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 3.7 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N).","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21624.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21624.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21624","reference_id":"","reference_type":"","scores":[{"value":"0.00264","scoring_system":"epss","scoring_elements":"0.5011","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00264","scoring_system":"epss","scoring_elements":"0.50172","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21624"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21618","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21618"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21619","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21619"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21624","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21624"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21626","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21626"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21628","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21628"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39399","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39399"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-21835","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-21835"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-21843","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-21843"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2133765","reference_id":"2133765","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2133765"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/37QDWJBGEPP65X43NXQTXQ7KASLUHON6/","reference_id":"37QDWJBGEPP65X43NXQTXQ7KASLUHON6","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-27T15:11:29Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/37QDWJBGEPP65X43NXQTXQ7KASLUHON6/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3ARF4QF4N3X5GSFHXUBWARGLISGKJ33R/","reference_id":"3ARF4QF4N3X5GSFHXUBWARGLISGKJ33R","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-27T15:11:29Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3ARF4QF4N3X5GSFHXUBWARGLISGKJ33R/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3QLQ7OD33W6LT3HWI7VYDFFJLV75Y73K/","reference_id":"3QLQ7OD33W6LT3HWI7VYDFFJLV75Y73K","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-27T15:11:29Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3QLQ7OD33W6LT3HWI7VYDFFJLV75Y73K/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EXSBV3W6EP6B7XJ63Z2FPVBH6HAPGJ5T/","reference_id":"EXSBV3W6EP6B7XJ63Z2FPVBH6HAPGJ5T","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-27T15:11:29Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EXSBV3W6EP6B7XJ63Z2FPVBH6HAPGJ5T/"},{"reference_url":"https://security.gentoo.org/glsa/202409-26","reference_id":"GLSA-202409-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-26"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HNGMDNIHAA73BEX6XPA2IMXJSGOKKYE6/","reference_id":"HNGMDNIHAA73BEX6XPA2IMXJSGOKKYE6","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-27T15:11:29Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HNGMDNIHAA73BEX6XPA2IMXJSGOKKYE6/"},{"reference_url":"https://security.netapp.com/advisory/ntap-20221028-0012/","reference_id":"ntap-20221028-0012","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-27T15:11:29Z/"}],"url":"https://security.netapp.com/advisory/ntap-20221028-0012/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PB3CIGOFG7CENUVVE4FFZT2HI5FO77XU/","reference_id":"PB3CIGOFG7CENUVVE4FFZT2HI5FO77XU","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-27T15:11:29Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PB3CIGOFG7CENUVVE4FFZT2HI5FO77XU/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:6999","reference_id":"RHSA-2022:6999","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:6999"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7000","reference_id":"RHSA-2022:7000","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7000"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7001","reference_id":"RHSA-2022:7001","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7001"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7002","reference_id":"RHSA-2022:7002","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7002"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7003","reference_id":"RHSA-2022:7003","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7003"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7004","reference_id":"RHSA-2022:7004","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7004"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7005","reference_id":"RHSA-2022:7005","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7005"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7006","reference_id":"RHSA-2022:7006","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7006"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7007","reference_id":"RHSA-2022:7007","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7007"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7008","reference_id":"RHSA-2022:7008","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7008"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7009","reference_id":"RHSA-2022:7009","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7009"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7010","reference_id":"RHSA-2022:7010","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7010"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7011","reference_id":"RHSA-2022:7011","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7011"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7012","reference_id":"RHSA-2022:7012","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7012"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7013","reference_id":"RHSA-2022:7013","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7013"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7049","reference_id":"RHSA-2022:7049","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7049"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7050","reference_id":"RHSA-2022:7050","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7050"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7051","reference_id":"RHSA-2022:7051","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7051"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7052","reference_id":"RHSA-2022:7052","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7052"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7053","reference_id":"RHSA-2022:7053","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7053"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7054","reference_id":"RHSA-2022:7054","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7054"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:8880","reference_id":"RHSA-2022:8880","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:8880"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0128","reference_id":"RHSA-2023:0128","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0128"},{"reference_url":"https://usn.ubuntu.com/5719-1/","reference_id":"USN-5719-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5719-1/"}],"fixed_packages":[],"aliases":["CVE-2022-21624"],"risk_score":1.6,"exploitability":"0.5","weighted_severity":"3.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4sr3-ebqa-xug8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6949?format=json","vulnerability_id":"VCID-754t-89mm-43h2","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-35565.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-35565.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-35565","reference_id":"","reference_type":"","scores":[{"value":"0.00153","scoring_system":"epss","scoring_elements":"0.35697","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00153","scoring_system":"epss","scoring_elements":"0.35793","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-35565"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35550","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35550"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35556","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35556"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35559","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35559"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35561","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35561"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35564","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35564"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35565","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35565"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35567","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35567"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35578","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35578"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35586","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35586"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35603","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35603"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2014508","reference_id":"2014508","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2014508"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6EUURAQOIJYFZHQ7DFZCO6IKDPIAWTNK/","reference_id":"6EUURAQOIJYFZHQ7DFZCO6IKDPIAWTNK","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:32:11Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6EUURAQOIJYFZHQ7DFZCO6IKDPIAWTNK/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7WTVCIVHTX3XONYOEGUMLKCM4QEC6INT/","reference_id":"7WTVCIVHTX3XONYOEGUMLKCM4QEC6INT","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:32:11Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7WTVCIVHTX3XONYOEGUMLKCM4QEC6INT/"},{"reference_url":"https://security.archlinux.org/AVG-2478","reference_id":"AVG-2478","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2478"},{"reference_url":"https://security.archlinux.org/AVG-2479","reference_id":"AVG-2479","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2479"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DJILEHYV2U37HKMGFEQ7CAVOV4DUWW2O/","reference_id":"DJILEHYV2U37HKMGFEQ7CAVOV4DUWW2O","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:32:11Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DJILEHYV2U37HKMGFEQ7CAVOV4DUWW2O/"},{"reference_url":"https://www.debian.org/security/2021/dsa-5000","reference_id":"dsa-5000","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:32:11Z/"}],"url":"https://www.debian.org/security/2021/dsa-5000"},{"reference_url":"https://security.gentoo.org/glsa/202209-05","reference_id":"GLSA-202209-05","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:32:11Z/"}],"url":"https://security.gentoo.org/glsa/202209-05"},{"reference_url":"https://security.gentoo.org/glsa/202409-26","reference_id":"GLSA-202409-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-26"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GTYZWIXDFUV2H57YQZJWPOD3BC3I3EIQ/","reference_id":"GTYZWIXDFUV2H57YQZJWPOD3BC3I3EIQ","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:32:11Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GTYZWIXDFUV2H57YQZJWPOD3BC3I3EIQ/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GXTUWAWXVU37GRNIG4TPMA47THO6VAE6/","reference_id":"GXTUWAWXVU37GRNIG4TPMA47THO6VAE6","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:32:11Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GXTUWAWXVU37GRNIG4TPMA47THO6VAE6/"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2021/11/msg00008.html","reference_id":"msg00008.html","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:32:11Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2021/11/msg00008.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20240621-0006/","reference_id":"ntap-20240621-0006","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:32:11Z/"}],"url":"https://security.netapp.com/advisory/ntap-20240621-0006/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3884","reference_id":"RHSA-2021:3884","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3884"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3885","reference_id":"RHSA-2021:3885","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3885"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3886","reference_id":"RHSA-2021:3886","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3886"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3887","reference_id":"RHSA-2021:3887","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3887"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3889","reference_id":"RHSA-2021:3889","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3889"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3891","reference_id":"RHSA-2021:3891","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3891"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3892","reference_id":"RHSA-2021:3892","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3892"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3893","reference_id":"RHSA-2021:3893","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3893"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3960","reference_id":"RHSA-2021:3960","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3960"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3961","reference_id":"RHSA-2021:3961","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3961"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3967","reference_id":"RHSA-2021:3967","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3967"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3968","reference_id":"RHSA-2021:3968","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3968"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:5030","reference_id":"RHSA-2021:5030","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:5030"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0310","reference_id":"RHSA-2022:0310","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0310"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0345","reference_id":"RHSA-2022:0345","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0345"},{"reference_url":"https://usn.ubuntu.com/5202-1/","reference_id":"USN-5202-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5202-1/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/V362B2BWTH5IJDL45QPQGMBKIQOG7JX5/","reference_id":"V362B2BWTH5IJDL45QPQGMBKIQOG7JX5","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:32:11Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/V362B2BWTH5IJDL45QPQGMBKIQOG7JX5/"}],"fixed_packages":[],"aliases":["CVE-2021-35565"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-754t-89mm-43h2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/96374?format=json","vulnerability_id":"VCID-86r8-k7yd-mua5","summary":"Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u261 and 8u251; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded. Note: Applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.1 Base Score 3.7 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L).","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14578.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14578.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14578","reference_id":"","reference_type":"","scores":[{"value":"0.00158","scoring_system":"epss","scoring_elements":"0.36485","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00158","scoring_system":"epss","scoring_elements":"0.36392","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14578"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14556","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14556"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14562","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14562"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14573","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14573"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14577","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14577"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14578","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14578"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14579","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14579"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14581","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14581"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14583","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14583"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14593","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14593"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14621","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14621"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1856991","reference_id":"1856991","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1856991"},{"reference_url":"https://usn.ubuntu.com/4453-1/","reference_id":"4453-1","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:55Z/"}],"url":"https://usn.ubuntu.com/4453-1/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6CFJPOYF3CWYEPCDOAOCNFJTQIKKWPHW/","reference_id":"6CFJPOYF3CWYEPCDOAOCNFJTQIKKWPHW","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:55Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6CFJPOYF3CWYEPCDOAOCNFJTQIKKWPHW/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DFZ36XIW5ENQAW6BB7WHRFFTTJX7KGMR/","reference_id":"DFZ36XIW5ENQAW6BB7WHRFFTTJX7KGMR","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:55Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DFZ36XIW5ENQAW6BB7WHRFFTTJX7KGMR/"},{"reference_url":"https://www.debian.org/security/2020/dsa-4734","reference_id":"dsa-4734","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:55Z/"}],"url":"https://www.debian.org/security/2020/dsa-4734"},{"reference_url":"https://security.gentoo.org/glsa/202008-24","reference_id":"GLSA-202008-24","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:55Z/"}],"url":"https://security.gentoo.org/glsa/202008-24"},{"reference_url":"https://security.gentoo.org/glsa/202209-15","reference_id":"GLSA-202209-15","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:55Z/"}],"url":"https://security.gentoo.org/glsa/202209-15"},{"reference_url":"https://security.gentoo.org/glsa/202409-26","reference_id":"GLSA-202409-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-26"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2020/08/msg00021.html","reference_id":"msg00021.html","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:55Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2020/08/msg00021.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00041.html","reference_id":"msg00041.html","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:55Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00041.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20200717-0005/","reference_id":"ntap-20200717-0005","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:55Z/"}],"url":"https://security.netapp.com/advisory/ntap-20200717-0005/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2968","reference_id":"RHSA-2020:2968","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2968"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2972","reference_id":"RHSA-2020:2972","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2972"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2985","reference_id":"RHSA-2020:2985","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2985"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3100","reference_id":"RHSA-2020:3100","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3100"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3101","reference_id":"RHSA-2020:3101","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3101"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3386","reference_id":"RHSA-2020:3386","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3386"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3387","reference_id":"RHSA-2020:3387","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3387"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3388","reference_id":"RHSA-2020:3388","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3388"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5585","reference_id":"RHSA-2020:5585","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5585"}],"fixed_packages":[],"aliases":["CVE-2020-14578"],"risk_score":1.6,"exploitability":"0.5","weighted_severity":"3.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-86r8-k7yd-mua5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/96409?format=json","vulnerability_id":"VCID-895e-vekz-yyag","summary":"Vulnerability in the Java SE product of Oracle Java SE (component: JNDI). The supported version that is affected is Java SE: 7u301. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 3.7 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L).","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2432.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2432.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-2432","reference_id":"","reference_type":"","scores":[{"value":"0.00233","scoring_system":"epss","scoring_elements":"0.46282","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00233","scoring_system":"epss","scoring_elements":"0.4635","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-2432"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1994980","reference_id":"1994980","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1994980"},{"reference_url":"https://security.gentoo.org/glsa/202209-05","reference_id":"GLSA-202209-05","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:15:34Z/"}],"url":"https://security.gentoo.org/glsa/202209-05"},{"reference_url":"https://security.gentoo.org/glsa/202409-26","reference_id":"GLSA-202409-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-26"},{"reference_url":"https://security.netapp.com/advisory/ntap-20210723-0002/","reference_id":"ntap-20210723-0002","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:15:34Z/"}],"url":"https://security.netapp.com/advisory/ntap-20210723-0002/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3293","reference_id":"RHSA-2021:3293","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3293"}],"fixed_packages":[],"aliases":["CVE-2021-2432"],"risk_score":1.6,"exploitability":"0.5","weighted_severity":"3.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-895e-vekz-yyag"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/96387?format=json","vulnerability_id":"VCID-8aqq-hqvu-z3g3","summary":"Vulnerability in the Java SE product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 11.0.8 and 15. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 5.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N).","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14803.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14803.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14803","reference_id":"","reference_type":"","scores":[{"value":"0.00041","scoring_system":"epss","scoring_elements":"0.12735","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00041","scoring_system":"epss","scoring_elements":"0.12651","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14803"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14779","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14779"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14781","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14781"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14782","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14782"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14792","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14792"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14796","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14796"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14797","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14797"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14798","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14798"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14803","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14803"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1889895","reference_id":"1889895","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1889895"},{"reference_url":"https://www.debian.org/security/2020/dsa-4779","reference_id":"dsa-4779","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:56:08Z/"}],"url":"https://www.debian.org/security/2020/dsa-4779"},{"reference_url":"https://security.gentoo.org/glsa/202101-19","reference_id":"GLSA-202101-19","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:56:08Z/"}],"url":"https://security.gentoo.org/glsa/202101-19"},{"reference_url":"https://security.gentoo.org/glsa/202409-26","reference_id":"GLSA-202409-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-26"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2020/10/msg00031.html","reference_id":"msg00031.html","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:56:08Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2020/10/msg00031.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00041.html","reference_id":"msg00041.html","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:56:08Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00041.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20201023-0004/","reference_id":"ntap-20201023-0004","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:56:08Z/"}],"url":"https://security.netapp.com/advisory/ntap-20201023-0004/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4305","reference_id":"RHSA-2020:4305","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4305"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4306","reference_id":"RHSA-2020:4306","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4306"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4307","reference_id":"RHSA-2020:4307","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4307"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4316","reference_id":"RHSA-2020:4316","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4316"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4347","reference_id":"RHSA-2020:4347","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4347"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4348","reference_id":"RHSA-2020:4348","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4348"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4349","reference_id":"RHSA-2020:4349","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4349"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4350","reference_id":"RHSA-2020:4350","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4350"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4352","reference_id":"RHSA-2020:4352","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4352"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0717","reference_id":"RHSA-2021:0717","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0717"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0733","reference_id":"RHSA-2021:0733","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0733"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0736","reference_id":"RHSA-2021:0736","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0736"},{"reference_url":"https://usn.ubuntu.com/4607-1/","reference_id":"USN-4607-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4607-1/"},{"reference_url":"https://usn.ubuntu.com/4607-2/","reference_id":"USN-4607-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4607-2/"}],"fixed_packages":[],"aliases":["CVE-2020-14803"],"risk_score":2.4,"exploitability":"0.5","weighted_severity":"4.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8aqq-hqvu-z3g3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/96379?format=json","vulnerability_id":"VCID-8cga-w5ms-mufw","summary":"Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: JAXP). Supported versions that are affected are Java SE: 7u261, 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Java SE, Java SE Embedded accessible data. Note: This vulnerability can only be exploited by supplying data to APIs in the specified Component without using Untrusted Java Web Start applications or Untrusted Java applets, such as through a web service. CVSS 3.1 Base Score 5.3 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N).","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14621.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14621.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14621","reference_id":"","reference_type":"","scores":[{"value":"0.00474","scoring_system":"epss","scoring_elements":"0.65103","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00474","scoring_system":"epss","scoring_elements":"0.65145","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14621"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14556","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14556"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14562","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14562"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14573","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14573"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14577","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14577"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14578","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14578"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14579","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14579"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14581","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14581"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14583","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14583"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14593","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14593"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14621","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14621"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1856885","reference_id":"1856885","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1856885"},{"reference_url":"https://usn.ubuntu.com/4433-1/","reference_id":"4433-1","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:53:09Z/"}],"url":"https://usn.ubuntu.com/4433-1/"},{"reference_url":"https://usn.ubuntu.com/4453-1/","reference_id":"4453-1","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:53:09Z/"}],"url":"https://usn.ubuntu.com/4453-1/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6CFJPOYF3CWYEPCDOAOCNFJTQIKKWPHW/","reference_id":"6CFJPOYF3CWYEPCDOAOCNFJTQIKKWPHW","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:53:09Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6CFJPOYF3CWYEPCDOAOCNFJTQIKKWPHW/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DFZ36XIW5ENQAW6BB7WHRFFTTJX7KGMR/","reference_id":"DFZ36XIW5ENQAW6BB7WHRFFTTJX7KGMR","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:53:09Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DFZ36XIW5ENQAW6BB7WHRFFTTJX7KGMR/"},{"reference_url":"https://www.debian.org/security/2020/dsa-4734","reference_id":"dsa-4734","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:53:09Z/"}],"url":"https://www.debian.org/security/2020/dsa-4734"},{"reference_url":"https://security.gentoo.org/glsa/202008-24","reference_id":"GLSA-202008-24","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:53:09Z/"}],"url":"https://security.gentoo.org/glsa/202008-24"},{"reference_url":"https://security.gentoo.org/glsa/202209-15","reference_id":"GLSA-202209-15","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:53:09Z/"}],"url":"https://security.gentoo.org/glsa/202209-15"},{"reference_url":"https://security.gentoo.org/glsa/202409-26","reference_id":"GLSA-202409-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-26"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MEPHBZPNSLX43B26DWKB7OS6AROTS2BO/","reference_id":"MEPHBZPNSLX43B26DWKB7OS6AROTS2BO","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:53:09Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MEPHBZPNSLX43B26DWKB7OS6AROTS2BO/"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00019.html","reference_id":"msg00019.html","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:53:09Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00019.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2020/08/msg00021.html","reference_id":"msg00021.html","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:53:09Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2020/08/msg00021.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00027.html","reference_id":"msg00027.html","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:53:09Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00027.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00041.html","reference_id":"msg00041.html","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:53:09Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00041.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20200717-0005/","reference_id":"ntap-20200717-0005","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:53:09Z/"}],"url":"https://security.netapp.com/advisory/ntap-20200717-0005/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QQUMIAON2YEFRONMIUVHAKYCIOLICDBA/","reference_id":"QQUMIAON2YEFRONMIUVHAKYCIOLICDBA","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:53:09Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QQUMIAON2YEFRONMIUVHAKYCIOLICDBA/"},{"reference_url":"https://lists.apache.org/thread.html/rf96c5afb26b596b4b97883aa90b6c0b0fc4c26aaeea7123c21912103%40%3Cj-users.xerces.apache.org%3E","reference_id":"rf96c5afb26b596b4b97883aa90b6c0b0fc4c26aaeea7123c21912103%40%3Cj-users.xerces.apache.org%3E","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:53:09Z/"}],"url":"https://lists.apache.org/thread.html/rf96c5afb26b596b4b97883aa90b6c0b0fc4c26aaeea7123c21912103%40%3Cj-users.xerces.apache.org%3E"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2968","reference_id":"RHSA-2020:2968","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2968"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2969","reference_id":"RHSA-2020:2969","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2969"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2970","reference_id":"RHSA-2020:2970","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2970"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2972","reference_id":"RHSA-2020:2972","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2972"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2985","reference_id":"RHSA-2020:2985","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2985"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3098","reference_id":"RHSA-2020:3098","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3098"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3099","reference_id":"RHSA-2020:3099","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3099"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3100","reference_id":"RHSA-2020:3100","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3100"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3101","reference_id":"RHSA-2020:3101","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3101"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3386","reference_id":"RHSA-2020:3386","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3386"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3387","reference_id":"RHSA-2020:3387","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3387"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3388","reference_id":"RHSA-2020:3388","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3388"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5585","reference_id":"RHSA-2020:5585","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5585"}],"fixed_packages":[],"aliases":["CVE-2020-14621"],"risk_score":2.4,"exploitability":"0.5","weighted_severity":"4.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8cga-w5ms-mufw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3315?format=json","vulnerability_id":"VCID-9awt-wevr-53d7","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2341.json","reference_id":"","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2341.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-2341","reference_id":"","reference_type":"","scores":[{"value":"0.00378","scoring_system":"epss","scoring_elements":"0.5969","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00378","scoring_system":"epss","scoring_elements":"0.59639","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-2341"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-2341","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-2341"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-2369","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-2369"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-2388","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-2388"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1982874","reference_id":"1982874","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1982874"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/A4TTUHVQF2MGUTP6GTCXLZS4GXK3XUWC/","reference_id":"A4TTUHVQF2MGUTP6GTCXLZS4GXK3XUWC","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T13:52:12Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/A4TTUHVQF2MGUTP6GTCXLZS4GXK3XUWC/"},{"reference_url":"https://security.archlinux.org/ASA-202107-53","reference_id":"ASA-202107-53","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202107-53"},{"reference_url":"https://security.archlinux.org/ASA-202107-54","reference_id":"ASA-202107-54","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202107-54"},{"reference_url":"https://security.archlinux.org/ASA-202107-65","reference_id":"ASA-202107-65","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202107-65"},{"reference_url":"https://security.archlinux.org/ASA-202107-66","reference_id":"ASA-202107-66","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202107-66"},{"reference_url":"https://security.archlinux.org/AVG-2188","reference_id":"AVG-2188","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2188"},{"reference_url":"https://security.archlinux.org/AVG-2189","reference_id":"AVG-2189","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2189"},{"reference_url":"https://security.archlinux.org/AVG-2190","reference_id":"AVG-2190","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2190"},{"reference_url":"https://www.debian.org/security/2021/dsa-4946","reference_id":"dsa-4946","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T13:52:12Z/"}],"url":"https://www.debian.org/security/2021/dsa-4946"},{"reference_url":"https://security.gentoo.org/glsa/202209-05","reference_id":"GLSA-202209-05","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T13:52:12Z/"}],"url":"https://security.gentoo.org/glsa/202209-05"},{"reference_url":"https://security.gentoo.org/glsa/202409-26","reference_id":"GLSA-202409-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-26"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2021/08/msg00011.html","reference_id":"msg00011.html","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T13:52:12Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2021/08/msg00011.html"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N57OFX5EJKHHDW4WAOBZFWA5CL4VIIK5/","reference_id":"N57OFX5EJKHHDW4WAOBZFWA5CL4VIIK5","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T13:52:12Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N57OFX5EJKHHDW4WAOBZFWA5CL4VIIK5/"},{"reference_url":"https://security.netapp.com/advisory/ntap-20210723-0002/","reference_id":"ntap-20210723-0002","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T13:52:12Z/"}],"url":"https://security.netapp.com/advisory/ntap-20210723-0002/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PJJ75FHSUZGWPV4UJTSMQHWLOQ77LHTG/","reference_id":"PJJ75FHSUZGWPV4UJTSMQHWLOQ77LHTG","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T13:52:12Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PJJ75FHSUZGWPV4UJTSMQHWLOQ77LHTG/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2774","reference_id":"RHSA-2021:2774","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2774"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2775","reference_id":"RHSA-2021:2775","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2775"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2776","reference_id":"RHSA-2021:2776","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2776"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2777","reference_id":"RHSA-2021:2777","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2777"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2778","reference_id":"RHSA-2021:2778","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2778"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2779","reference_id":"RHSA-2021:2779","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2779"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2780","reference_id":"RHSA-2021:2780","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2780"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2781","reference_id":"RHSA-2021:2781","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2781"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2782","reference_id":"RHSA-2021:2782","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2782"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2783","reference_id":"RHSA-2021:2783","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2783"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2784","reference_id":"RHSA-2021:2784","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2784"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2845","reference_id":"RHSA-2021:2845","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2845"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3292","reference_id":"RHSA-2021:3292","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3292"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3293","reference_id":"RHSA-2021:3293","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3293"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4089","reference_id":"RHSA-2021:4089","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4089"},{"reference_url":"https://usn.ubuntu.com/5202-1/","reference_id":"USN-5202-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5202-1/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VTRQIXB52KIXUAO6JBYUKYWXST2NKNAK/","reference_id":"VTRQIXB52KIXUAO6JBYUKYWXST2NKNAK","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T13:52:12Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VTRQIXB52KIXUAO6JBYUKYWXST2NKNAK/"}],"fixed_packages":[],"aliases":["CVE-2021-2341"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9awt-wevr-53d7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/96378?format=json","vulnerability_id":"VCID-9h9j-2kzq-k3fv","summary":"Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: 2D). Supported versions that are affected are Java SE: 7u261, 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, Java SE Embedded, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 7.4 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N).","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14593.json","reference_id":"","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14593.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14593","reference_id":"","reference_type":"","scores":[{"value":"0.00409","scoring_system":"epss","scoring_elements":"0.61598","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00409","scoring_system":"epss","scoring_elements":"0.6155","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14593"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14556","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14556"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14562","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14562"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14573","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14573"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14577","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14577"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14578","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14578"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14579","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14579"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14581","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14581"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14583","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14583"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14593","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14593"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14621","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14621"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1856784","reference_id":"1856784","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1856784"},{"reference_url":"https://usn.ubuntu.com/4433-1/","reference_id":"4433-1","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:35Z/"}],"url":"https://usn.ubuntu.com/4433-1/"},{"reference_url":"https://usn.ubuntu.com/4453-1/","reference_id":"4453-1","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:35Z/"}],"url":"https://usn.ubuntu.com/4453-1/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6CFJPOYF3CWYEPCDOAOCNFJTQIKKWPHW/","reference_id":"6CFJPOYF3CWYEPCDOAOCNFJTQIKKWPHW","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:35Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6CFJPOYF3CWYEPCDOAOCNFJTQIKKWPHW/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DFZ36XIW5ENQAW6BB7WHRFFTTJX7KGMR/","reference_id":"DFZ36XIW5ENQAW6BB7WHRFFTTJX7KGMR","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:35Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DFZ36XIW5ENQAW6BB7WHRFFTTJX7KGMR/"},{"reference_url":"https://www.debian.org/security/2020/dsa-4734","reference_id":"dsa-4734","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:35Z/"}],"url":"https://www.debian.org/security/2020/dsa-4734"},{"reference_url":"https://security.gentoo.org/glsa/202008-24","reference_id":"GLSA-202008-24","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:35Z/"}],"url":"https://security.gentoo.org/glsa/202008-24"},{"reference_url":"https://security.gentoo.org/glsa/202209-15","reference_id":"GLSA-202209-15","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:35Z/"}],"url":"https://security.gentoo.org/glsa/202209-15"},{"reference_url":"https://security.gentoo.org/glsa/202409-26","reference_id":"GLSA-202409-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-26"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MEPHBZPNSLX43B26DWKB7OS6AROTS2BO/","reference_id":"MEPHBZPNSLX43B26DWKB7OS6AROTS2BO","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:35Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MEPHBZPNSLX43B26DWKB7OS6AROTS2BO/"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00019.html","reference_id":"msg00019.html","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:35Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00019.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2020/08/msg00021.html","reference_id":"msg00021.html","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:35Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2020/08/msg00021.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00027.html","reference_id":"msg00027.html","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:35Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00027.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00041.html","reference_id":"msg00041.html","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:35Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00041.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20200717-0005/","reference_id":"ntap-20200717-0005","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:35Z/"}],"url":"https://security.netapp.com/advisory/ntap-20200717-0005/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QQUMIAON2YEFRONMIUVHAKYCIOLICDBA/","reference_id":"QQUMIAON2YEFRONMIUVHAKYCIOLICDBA","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:35Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QQUMIAON2YEFRONMIUVHAKYCIOLICDBA/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2968","reference_id":"RHSA-2020:2968","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2968"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2969","reference_id":"RHSA-2020:2969","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2969"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2970","reference_id":"RHSA-2020:2970","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2970"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2972","reference_id":"RHSA-2020:2972","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2972"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2985","reference_id":"RHSA-2020:2985","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2985"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3098","reference_id":"RHSA-2020:3098","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3098"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3099","reference_id":"RHSA-2020:3099","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3099"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3100","reference_id":"RHSA-2020:3100","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3100"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3101","reference_id":"RHSA-2020:3101","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3101"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3386","reference_id":"RHSA-2020:3386","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3386"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3387","reference_id":"RHSA-2020:3387","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3387"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3388","reference_id":"RHSA-2020:3388","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3388"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5585","reference_id":"RHSA-2020:5585","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5585"}],"fixed_packages":[],"aliases":["CVE-2020-14593"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9h9j-2kzq-k3fv"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6946?format=json","vulnerability_id":"VCID-9q99-7g57-kkg9","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-35586.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-35586.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-35586","reference_id":"","reference_type":"","scores":[{"value":"0.00167","scoring_system":"epss","scoring_elements":"0.37584","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00167","scoring_system":"epss","scoring_elements":"0.37491","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-35586"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35550","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35550"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35556","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35556"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35559","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35559"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35561","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35561"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35564","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35564"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35565","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35565"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35567","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35567"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35578","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35578"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35586","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35586"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35603","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35603"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2015308","reference_id":"2015308","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2015308"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6EUURAQOIJYFZHQ7DFZCO6IKDPIAWTNK/","reference_id":"6EUURAQOIJYFZHQ7DFZCO6IKDPIAWTNK","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:32:02Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6EUURAQOIJYFZHQ7DFZCO6IKDPIAWTNK/"},{"reference_url":"https://security.archlinux.org/AVG-2477","reference_id":"AVG-2477","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2477"},{"reference_url":"https://security.archlinux.org/AVG-2478","reference_id":"AVG-2478","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2478"},{"reference_url":"https://security.archlinux.org/AVG-2479","reference_id":"AVG-2479","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2479"},{"reference_url":"https://www.debian.org/security/2021/dsa-5000","reference_id":"dsa-5000","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:32:02Z/"}],"url":"https://www.debian.org/security/2021/dsa-5000"},{"reference_url":"https://www.debian.org/security/2021/dsa-5012","reference_id":"dsa-5012","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:32:02Z/"}],"url":"https://www.debian.org/security/2021/dsa-5012"},{"reference_url":"https://security.gentoo.org/glsa/202209-05","reference_id":"GLSA-202209-05","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:32:02Z/"}],"url":"https://security.gentoo.org/glsa/202209-05"},{"reference_url":"https://security.gentoo.org/glsa/202409-26","reference_id":"GLSA-202409-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-26"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GTYZWIXDFUV2H57YQZJWPOD3BC3I3EIQ/","reference_id":"GTYZWIXDFUV2H57YQZJWPOD3BC3I3EIQ","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:32:02Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GTYZWIXDFUV2H57YQZJWPOD3BC3I3EIQ/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GXTUWAWXVU37GRNIG4TPMA47THO6VAE6/","reference_id":"GXTUWAWXVU37GRNIG4TPMA47THO6VAE6","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:32:02Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GXTUWAWXVU37GRNIG4TPMA47THO6VAE6/"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2021/11/msg00008.html","reference_id":"msg00008.html","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:32:02Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2021/11/msg00008.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20240621-0006/","reference_id":"ntap-20240621-0006","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:32:02Z/"}],"url":"https://security.netapp.com/advisory/ntap-20240621-0006/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3884","reference_id":"RHSA-2021:3884","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3884"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3885","reference_id":"RHSA-2021:3885","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3885"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3886","reference_id":"RHSA-2021:3886","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3886"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3887","reference_id":"RHSA-2021:3887","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3887"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3889","reference_id":"RHSA-2021:3889","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3889"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3891","reference_id":"RHSA-2021:3891","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3891"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3892","reference_id":"RHSA-2021:3892","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3892"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3893","reference_id":"RHSA-2021:3893","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3893"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3960","reference_id":"RHSA-2021:3960","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3960"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3961","reference_id":"RHSA-2021:3961","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3961"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3967","reference_id":"RHSA-2021:3967","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3967"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3968","reference_id":"RHSA-2021:3968","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3968"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4135","reference_id":"RHSA-2021:4135","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4135"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4531","reference_id":"RHSA-2021:4531","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4531"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4532","reference_id":"RHSA-2021:4532","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4532"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:5030","reference_id":"RHSA-2021:5030","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:5030"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0310","reference_id":"RHSA-2022:0310","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0310"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0345","reference_id":"RHSA-2022:0345","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0345"},{"reference_url":"https://usn.ubuntu.com/5202-1/","reference_id":"USN-5202-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5202-1/"}],"fixed_packages":[],"aliases":["CVE-2021-35586"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9q99-7g57-kkg9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/96375?format=json","vulnerability_id":"VCID-9z9j-fn2b-qkgn","summary":"Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u261 and 8u251; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded. Note: Applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.1 Base Score 3.7 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L).","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14579.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14579.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14579","reference_id":"","reference_type":"","scores":[{"value":"0.00158","scoring_system":"epss","scoring_elements":"0.36485","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00158","scoring_system":"epss","scoring_elements":"0.36392","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14579"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14556","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14556"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14562","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14562"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14573","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14573"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14577","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14577"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14578","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14578"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14579","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14579"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14581","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14581"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14583","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14583"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14593","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14593"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14621","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14621"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1856995","reference_id":"1856995","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1856995"},{"reference_url":"https://usn.ubuntu.com/4453-1/","reference_id":"4453-1","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:53Z/"}],"url":"https://usn.ubuntu.com/4453-1/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6CFJPOYF3CWYEPCDOAOCNFJTQIKKWPHW/","reference_id":"6CFJPOYF3CWYEPCDOAOCNFJTQIKKWPHW","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:53Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6CFJPOYF3CWYEPCDOAOCNFJTQIKKWPHW/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DFZ36XIW5ENQAW6BB7WHRFFTTJX7KGMR/","reference_id":"DFZ36XIW5ENQAW6BB7WHRFFTTJX7KGMR","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:53Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DFZ36XIW5ENQAW6BB7WHRFFTTJX7KGMR/"},{"reference_url":"https://www.debian.org/security/2020/dsa-4734","reference_id":"dsa-4734","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:53Z/"}],"url":"https://www.debian.org/security/2020/dsa-4734"},{"reference_url":"https://security.gentoo.org/glsa/202008-24","reference_id":"GLSA-202008-24","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:53Z/"}],"url":"https://security.gentoo.org/glsa/202008-24"},{"reference_url":"https://security.gentoo.org/glsa/202209-15","reference_id":"GLSA-202209-15","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:53Z/"}],"url":"https://security.gentoo.org/glsa/202209-15"},{"reference_url":"https://security.gentoo.org/glsa/202409-26","reference_id":"GLSA-202409-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-26"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2020/08/msg00021.html","reference_id":"msg00021.html","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:53Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2020/08/msg00021.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00041.html","reference_id":"msg00041.html","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:53Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00041.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20200717-0005/","reference_id":"ntap-20200717-0005","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:53Z/"}],"url":"https://security.netapp.com/advisory/ntap-20200717-0005/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2968","reference_id":"RHSA-2020:2968","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2968"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2972","reference_id":"RHSA-2020:2972","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2972"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2985","reference_id":"RHSA-2020:2985","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2985"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3100","reference_id":"RHSA-2020:3100","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3100"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3101","reference_id":"RHSA-2020:3101","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3101"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3386","reference_id":"RHSA-2020:3386","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3386"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3387","reference_id":"RHSA-2020:3387","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3387"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3388","reference_id":"RHSA-2020:3388","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3388"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5585","reference_id":"RHSA-2020:5585","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5585"}],"fixed_packages":[],"aliases":["CVE-2020-14579"],"risk_score":1.6,"exploitability":"0.5","weighted_severity":"3.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9z9j-fn2b-qkgn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/96371?format=json","vulnerability_id":"VCID-a2vb-fgag-43ht","summary":"Vulnerability in the Java SE product of Oracle Java SE (component: ImageIO). Supported versions that are affected are Java SE: 11.0.7 and 14.0.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14562.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14562.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14562","reference_id":"","reference_type":"","scores":[{"value":"0.0059","scoring_system":"epss","scoring_elements":"0.69597","published_at":"2026-06-05T12:55:00Z"},{"value":"0.0059","scoring_system":"epss","scoring_elements":"0.69558","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14562"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14556","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14556"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14562","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14562"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14573","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14573"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14577","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14577"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14578","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14578"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14579","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14579"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14581","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14581"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14583","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14583"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14593","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14593"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14621","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14621"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1856810","reference_id":"1856810","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1856810"},{"reference_url":"https://usn.ubuntu.com/4433-1/","reference_id":"4433-1","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:53:28Z/"}],"url":"https://usn.ubuntu.com/4433-1/"},{"reference_url":"https://www.debian.org/security/2020/dsa-4734","reference_id":"dsa-4734","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:53:28Z/"}],"url":"https://www.debian.org/security/2020/dsa-4734"},{"reference_url":"https://security.gentoo.org/glsa/202008-24","reference_id":"GLSA-202008-24","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:53:28Z/"}],"url":"https://security.gentoo.org/glsa/202008-24"},{"reference_url":"https://security.gentoo.org/glsa/202209-15","reference_id":"GLSA-202209-15","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:53:28Z/"}],"url":"https://security.gentoo.org/glsa/202209-15"},{"reference_url":"https://security.gentoo.org/glsa/202409-26","reference_id":"GLSA-202409-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-26"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MEPHBZPNSLX43B26DWKB7OS6AROTS2BO/","reference_id":"MEPHBZPNSLX43B26DWKB7OS6AROTS2BO","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:53:28Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MEPHBZPNSLX43B26DWKB7OS6AROTS2BO/"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00019.html","reference_id":"msg00019.html","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:53:28Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00019.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00027.html","reference_id":"msg00027.html","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:53:28Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00027.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20200717-0005/","reference_id":"ntap-20200717-0005","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:53:28Z/"}],"url":"https://security.netapp.com/advisory/ntap-20200717-0005/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QQUMIAON2YEFRONMIUVHAKYCIOLICDBA/","reference_id":"QQUMIAON2YEFRONMIUVHAKYCIOLICDBA","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:53:28Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QQUMIAON2YEFRONMIUVHAKYCIOLICDBA/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2969","reference_id":"RHSA-2020:2969","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2969"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2970","reference_id":"RHSA-2020:2970","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2970"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3098","reference_id":"RHSA-2020:3098","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3098"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3099","reference_id":"RHSA-2020:3099","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3099"}],"fixed_packages":[],"aliases":["CVE-2020-14562"],"risk_score":2.4,"exploitability":"0.5","weighted_severity":"4.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-a2vb-fgag-43ht"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6952?format=json","vulnerability_id":"VCID-ajdd-f5y6-ykbf","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-35559.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-35559.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-35559","reference_id":"","reference_type":"","scores":[{"value":"0.00117","scoring_system":"epss","scoring_elements":"0.30218","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00117","scoring_system":"epss","scoring_elements":"0.30144","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-35559"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35550","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35550"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35556","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35556"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35559","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35559"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35561","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35561"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35564","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35564"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35565","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35565"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35567","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35567"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35578","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35578"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35586","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35586"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35603","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35603"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2014518","reference_id":"2014518","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2014518"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6EUURAQOIJYFZHQ7DFZCO6IKDPIAWTNK/","reference_id":"6EUURAQOIJYFZHQ7DFZCO6IKDPIAWTNK","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-06-25T16:02:35Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6EUURAQOIJYFZHQ7DFZCO6IKDPIAWTNK/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7WTVCIVHTX3XONYOEGUMLKCM4QEC6INT/","reference_id":"7WTVCIVHTX3XONYOEGUMLKCM4QEC6INT","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-06-25T16:02:35Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7WTVCIVHTX3XONYOEGUMLKCM4QEC6INT/"},{"reference_url":"https://security.archlinux.org/AVG-2477","reference_id":"AVG-2477","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2477"},{"reference_url":"https://security.archlinux.org/AVG-2478","reference_id":"AVG-2478","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2478"},{"reference_url":"https://security.archlinux.org/AVG-2479","reference_id":"AVG-2479","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2479"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DJILEHYV2U37HKMGFEQ7CAVOV4DUWW2O/","reference_id":"DJILEHYV2U37HKMGFEQ7CAVOV4DUWW2O","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-06-25T16:02:35Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DJILEHYV2U37HKMGFEQ7CAVOV4DUWW2O/"},{"reference_url":"https://www.debian.org/security/2021/dsa-5000","reference_id":"dsa-5000","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-06-25T16:02:35Z/"}],"url":"https://www.debian.org/security/2021/dsa-5000"},{"reference_url":"https://www.debian.org/security/2021/dsa-5012","reference_id":"dsa-5012","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-06-25T16:02:35Z/"}],"url":"https://www.debian.org/security/2021/dsa-5012"},{"reference_url":"https://security.gentoo.org/glsa/202209-05","reference_id":"GLSA-202209-05","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-06-25T16:02:35Z/"}],"url":"https://security.gentoo.org/glsa/202209-05"},{"reference_url":"https://security.gentoo.org/glsa/202409-26","reference_id":"GLSA-202409-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-26"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GTYZWIXDFUV2H57YQZJWPOD3BC3I3EIQ/","reference_id":"GTYZWIXDFUV2H57YQZJWPOD3BC3I3EIQ","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-06-25T16:02:35Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GTYZWIXDFUV2H57YQZJWPOD3BC3I3EIQ/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GXTUWAWXVU37GRNIG4TPMA47THO6VAE6/","reference_id":"GXTUWAWXVU37GRNIG4TPMA47THO6VAE6","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-06-25T16:02:35Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GXTUWAWXVU37GRNIG4TPMA47THO6VAE6/"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2021/11/msg00008.html","reference_id":"msg00008.html","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-06-25T16:02:35Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2021/11/msg00008.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20240621-0006/","reference_id":"ntap-20240621-0006","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-06-25T16:02:35Z/"}],"url":"https://security.netapp.com/advisory/ntap-20240621-0006/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3884","reference_id":"RHSA-2021:3884","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3884"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3885","reference_id":"RHSA-2021:3885","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3885"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3886","reference_id":"RHSA-2021:3886","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3886"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3887","reference_id":"RHSA-2021:3887","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3887"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3889","reference_id":"RHSA-2021:3889","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3889"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3891","reference_id":"RHSA-2021:3891","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3891"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3892","reference_id":"RHSA-2021:3892","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3892"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3893","reference_id":"RHSA-2021:3893","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3893"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3960","reference_id":"RHSA-2021:3960","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3960"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3961","reference_id":"RHSA-2021:3961","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3961"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3967","reference_id":"RHSA-2021:3967","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3967"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3968","reference_id":"RHSA-2021:3968","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3968"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4135","reference_id":"RHSA-2021:4135","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4135"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4531","reference_id":"RHSA-2021:4531","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4531"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4532","reference_id":"RHSA-2021:4532","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4532"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:5030","reference_id":"RHSA-2021:5030","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:5030"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0310","reference_id":"RHSA-2022:0310","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0310"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0345","reference_id":"RHSA-2022:0345","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0345"},{"reference_url":"https://usn.ubuntu.com/5202-1/","reference_id":"USN-5202-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5202-1/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/V362B2BWTH5IJDL45QPQGMBKIQOG7JX5/","reference_id":"V362B2BWTH5IJDL45QPQGMBKIQOG7JX5","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-06-25T16:02:35Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/V362B2BWTH5IJDL45QPQGMBKIQOG7JX5/"}],"fixed_packages":[],"aliases":["CVE-2021-35559"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ajdd-f5y6-ykbf"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3314?format=json","vulnerability_id":"VCID-bn6d-evcd-mfdd","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2369.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2369.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-2369","reference_id":"","reference_type":"","scores":[{"value":"0.00376","scoring_system":"epss","scoring_elements":"0.59537","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00376","scoring_system":"epss","scoring_elements":"0.59487","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-2369"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-2341","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-2341"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-2369","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-2369"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-2388","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-2388"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1982879","reference_id":"1982879","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T13:52:28Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1982879"},{"reference_url":"https://security.archlinux.org/ASA-202107-53","reference_id":"ASA-202107-53","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202107-53"},{"reference_url":"https://security.archlinux.org/ASA-202107-54","reference_id":"ASA-202107-54","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202107-54"},{"reference_url":"https://security.archlinux.org/ASA-202107-65","reference_id":"ASA-202107-65","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202107-65"},{"reference_url":"https://security.archlinux.org/ASA-202107-66","reference_id":"ASA-202107-66","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202107-66"},{"reference_url":"https://security.archlinux.org/AVG-2188","reference_id":"AVG-2188","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2188"},{"reference_url":"https://security.archlinux.org/AVG-2189","reference_id":"AVG-2189","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2189"},{"reference_url":"https://security.archlinux.org/AVG-2190","reference_id":"AVG-2190","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2190"},{"reference_url":"https://www.debian.org/security/2021/dsa-4946","reference_id":"dsa-4946","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T13:52:28Z/"}],"url":"https://www.debian.org/security/2021/dsa-4946"},{"reference_url":"https://security.gentoo.org/glsa/202209-05","reference_id":"GLSA-202209-05","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T13:52:28Z/"}],"url":"https://security.gentoo.org/glsa/202209-05"},{"reference_url":"https://security.gentoo.org/glsa/202409-26","reference_id":"GLSA-202409-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-26"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2021/08/msg00011.html","reference_id":"msg00011.html","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T13:52:28Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2021/08/msg00011.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20210723-0002/","reference_id":"ntap-20210723-0002","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T13:52:28Z/"}],"url":"https://security.netapp.com/advisory/ntap-20210723-0002/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2774","reference_id":"RHSA-2021:2774","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2774"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2775","reference_id":"RHSA-2021:2775","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2775"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2776","reference_id":"RHSA-2021:2776","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2776"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2777","reference_id":"RHSA-2021:2777","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2777"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2778","reference_id":"RHSA-2021:2778","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2778"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2779","reference_id":"RHSA-2021:2779","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2779"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2780","reference_id":"RHSA-2021:2780","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2780"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2781","reference_id":"RHSA-2021:2781","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2781"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2782","reference_id":"RHSA-2021:2782","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2782"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2783","reference_id":"RHSA-2021:2783","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2783"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2784","reference_id":"RHSA-2021:2784","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2784"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2845","reference_id":"RHSA-2021:2845","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2845"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3292","reference_id":"RHSA-2021:3292","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3292"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3293","reference_id":"RHSA-2021:3293","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3293"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4089","reference_id":"RHSA-2021:4089","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4089"},{"reference_url":"https://usn.ubuntu.com/5202-1/","reference_id":"USN-5202-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5202-1/"}],"fixed_packages":[],"aliases":["CVE-2021-2369"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-bn6d-evcd-mfdd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/96382?format=json","vulnerability_id":"VCID-ce4j-dm6b-pqfg","summary":"Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Java SE, Java SE Embedded accessible data. Note: Applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.1 Base Score 3.7 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N).","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14782.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14782.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14782","reference_id":"","reference_type":"","scores":[{"value":"0.00144","scoring_system":"epss","scoring_elements":"0.34555","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00144","scoring_system":"epss","scoring_elements":"0.34458","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14782"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14779","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14779"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14781","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14781"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14782","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14782"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14792","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14792"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14796","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14796"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14797","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14797"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14798","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14798"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14803","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14803"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1889290","reference_id":"1889290","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1889290"},{"reference_url":"https://www.debian.org/security/2020/dsa-4779","reference_id":"dsa-4779","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:39Z/"}],"url":"https://www.debian.org/security/2020/dsa-4779"},{"reference_url":"https://security.gentoo.org/glsa/202101-19","reference_id":"GLSA-202101-19","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:39Z/"}],"url":"https://security.gentoo.org/glsa/202101-19"},{"reference_url":"https://security.gentoo.org/glsa/202409-26","reference_id":"GLSA-202409-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-26"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2020/10/msg00031.html","reference_id":"msg00031.html","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:39Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2020/10/msg00031.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00041.html","reference_id":"msg00041.html","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:39Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00041.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20201023-0004/","reference_id":"ntap-20201023-0004","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:39Z/"}],"url":"https://security.netapp.com/advisory/ntap-20201023-0004/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4305","reference_id":"RHSA-2020:4305","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4305"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4306","reference_id":"RHSA-2020:4306","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4306"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4307","reference_id":"RHSA-2020:4307","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4307"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4316","reference_id":"RHSA-2020:4316","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4316"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4347","reference_id":"RHSA-2020:4347","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4347"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4348","reference_id":"RHSA-2020:4348","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4348"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4349","reference_id":"RHSA-2020:4349","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4349"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4350","reference_id":"RHSA-2020:4350","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4350"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4352","reference_id":"RHSA-2020:4352","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4352"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5586","reference_id":"RHSA-2020:5586","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5586"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0717","reference_id":"RHSA-2021:0717","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0717"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0736","reference_id":"RHSA-2021:0736","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0736"},{"reference_url":"https://usn.ubuntu.com/4607-1/","reference_id":"USN-4607-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4607-1/"},{"reference_url":"https://usn.ubuntu.com/4607-2/","reference_id":"USN-4607-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4607-2/"}],"fixed_packages":[],"aliases":["CVE-2020-14782"],"risk_score":1.6,"exploitability":"0.5","weighted_severity":"3.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ce4j-dm6b-pqfg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6948?format=json","vulnerability_id":"VCID-cwky-3rmp-97b4","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-35567.json","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-35567.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-35567","reference_id":"","reference_type":"","scores":[{"value":"0.00162","scoring_system":"epss","scoring_elements":"0.36892","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00162","scoring_system":"epss","scoring_elements":"0.368","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-35567"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35550","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35550"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35556","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35556"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35559","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35559"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35561","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35561"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35564","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35564"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35565","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35565"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35567","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35567"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35578","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35578"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35586","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35586"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35603","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35603"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2015658","reference_id":"2015658","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2015658"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6EUURAQOIJYFZHQ7DFZCO6IKDPIAWTNK/","reference_id":"6EUURAQOIJYFZHQ7DFZCO6IKDPIAWTNK","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:14:55Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6EUURAQOIJYFZHQ7DFZCO6IKDPIAWTNK/"},{"reference_url":"https://security.archlinux.org/AVG-2477","reference_id":"AVG-2477","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2477"},{"reference_url":"https://security.archlinux.org/AVG-2478","reference_id":"AVG-2478","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2478"},{"reference_url":"https://security.archlinux.org/AVG-2479","reference_id":"AVG-2479","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2479"},{"reference_url":"https://www.debian.org/security/2021/dsa-5000","reference_id":"dsa-5000","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:14:55Z/"}],"url":"https://www.debian.org/security/2021/dsa-5000"},{"reference_url":"https://www.debian.org/security/2021/dsa-5012","reference_id":"dsa-5012","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:14:55Z/"}],"url":"https://www.debian.org/security/2021/dsa-5012"},{"reference_url":"https://security.gentoo.org/glsa/202209-05","reference_id":"GLSA-202209-05","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:14:55Z/"}],"url":"https://security.gentoo.org/glsa/202209-05"},{"reference_url":"https://security.gentoo.org/glsa/202409-26","reference_id":"GLSA-202409-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-26"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GTYZWIXDFUV2H57YQZJWPOD3BC3I3EIQ/","reference_id":"GTYZWIXDFUV2H57YQZJWPOD3BC3I3EIQ","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:14:55Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GTYZWIXDFUV2H57YQZJWPOD3BC3I3EIQ/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GXTUWAWXVU37GRNIG4TPMA47THO6VAE6/","reference_id":"GXTUWAWXVU37GRNIG4TPMA47THO6VAE6","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:14:55Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GXTUWAWXVU37GRNIG4TPMA47THO6VAE6/"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2021/11/msg00008.html","reference_id":"msg00008.html","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:14:55Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2021/11/msg00008.html"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3884","reference_id":"RHSA-2021:3884","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3884"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3885","reference_id":"RHSA-2021:3885","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3885"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3886","reference_id":"RHSA-2021:3886","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3886"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3887","reference_id":"RHSA-2021:3887","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3887"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3889","reference_id":"RHSA-2021:3889","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3889"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3891","reference_id":"RHSA-2021:3891","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3891"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3892","reference_id":"RHSA-2021:3892","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3892"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3893","reference_id":"RHSA-2021:3893","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3893"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3960","reference_id":"RHSA-2021:3960","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3960"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3961","reference_id":"RHSA-2021:3961","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3961"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3967","reference_id":"RHSA-2021:3967","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3967"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3968","reference_id":"RHSA-2021:3968","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3968"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4135","reference_id":"RHSA-2021:4135","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4135"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4531","reference_id":"RHSA-2021:4531","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4531"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4532","reference_id":"RHSA-2021:4532","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4532"},{"reference_url":"https://usn.ubuntu.com/5202-1/","reference_id":"USN-5202-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5202-1/"}],"fixed_packages":[],"aliases":["CVE-2021-35567"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-cwky-3rmp-97b4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/96433?format=json","vulnerability_id":"VCID-dpq1-6qrj-1ydk","summary":"Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JSSE).  Supported versions that are affected are Oracle Java SE: 11.0.17, 17.0.5, 19.0.1; Oracle GraalVM Enterprise Edition: 20.3.8, 21.3.4 and  22.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via DTLS to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition.  Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 5.3 (Availability impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-21835.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-21835.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-21835","reference_id":"","reference_type":"","scores":[{"value":"0.00053","scoring_system":"epss","scoring_elements":"0.16839","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00053","scoring_system":"epss","scoring_elements":"0.1692","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-21835"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21618","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21618"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21619","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21619"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21624","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21624"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21626","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21626"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21628","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21628"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39399","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39399"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-21835","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-21835"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-21843","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-21843"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2160421","reference_id":"2160421","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2160421"},{"reference_url":"https://security.gentoo.org/glsa/202409-26","reference_id":"GLSA-202409-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-26"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0190","reference_id":"RHSA-2023:0190","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0190"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0191","reference_id":"RHSA-2023:0191","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0191"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0192","reference_id":"RHSA-2023:0192","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0192"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0193","reference_id":"RHSA-2023:0193","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0193"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0194","reference_id":"RHSA-2023:0194","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0194"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0195","reference_id":"RHSA-2023:0195","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0195"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0196","reference_id":"RHSA-2023:0196","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0196"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0197","reference_id":"RHSA-2023:0197","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0197"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0198","reference_id":"RHSA-2023:0198","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0198"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0199","reference_id":"RHSA-2023:0199","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0199"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0200","reference_id":"RHSA-2023:0200","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0200"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0201","reference_id":"RHSA-2023:0201","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0201"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0202","reference_id":"RHSA-2023:0202","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0202"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0352","reference_id":"RHSA-2023:0352","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0352"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0353","reference_id":"RHSA-2023:0353","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0353"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0388","reference_id":"RHSA-2023:0388","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0388"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0389","reference_id":"RHSA-2023:0389","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0389"},{"reference_url":"https://usn.ubuntu.com/5897-1/","reference_id":"USN-5897-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5897-1/"}],"fixed_packages":[],"aliases":["CVE-2023-21835"],"risk_score":2.4,"exploitability":"0.5","weighted_severity":"4.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-dpq1-6qrj-1ydk"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6947?format=json","vulnerability_id":"VCID-e6dp-udwu-4bcz","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-35578.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-35578.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-35578","reference_id":"","reference_type":"","scores":[{"value":"0.00144","scoring_system":"epss","scoring_elements":"0.34436","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00144","scoring_system":"epss","scoring_elements":"0.34339","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-35578"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35550","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35550"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35556","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35556"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35559","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35559"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35561","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35561"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35564","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35564"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35565","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35565"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35567","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35567"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35578","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35578"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35586","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35586"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35603","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35603"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2015653","reference_id":"2015653","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2015653"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6EUURAQOIJYFZHQ7DFZCO6IKDPIAWTNK/","reference_id":"6EUURAQOIJYFZHQ7DFZCO6IKDPIAWTNK","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-07-18T17:53:39Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6EUURAQOIJYFZHQ7DFZCO6IKDPIAWTNK/"},{"reference_url":"https://security.archlinux.org/AVG-2477","reference_id":"AVG-2477","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2477"},{"reference_url":"https://security.archlinux.org/AVG-2478","reference_id":"AVG-2478","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2478"},{"reference_url":"https://security.archlinux.org/AVG-2479","reference_id":"AVG-2479","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2479"},{"reference_url":"https://www.debian.org/security/2021/dsa-5000","reference_id":"dsa-5000","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-07-18T17:53:39Z/"}],"url":"https://www.debian.org/security/2021/dsa-5000"},{"reference_url":"https://www.debian.org/security/2021/dsa-5012","reference_id":"dsa-5012","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-07-18T17:53:39Z/"}],"url":"https://www.debian.org/security/2021/dsa-5012"},{"reference_url":"https://security.gentoo.org/glsa/202209-05","reference_id":"GLSA-202209-05","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-07-18T17:53:39Z/"}],"url":"https://security.gentoo.org/glsa/202209-05"},{"reference_url":"https://security.gentoo.org/glsa/202409-26","reference_id":"GLSA-202409-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-26"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GTYZWIXDFUV2H57YQZJWPOD3BC3I3EIQ/","reference_id":"GTYZWIXDFUV2H57YQZJWPOD3BC3I3EIQ","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-07-18T17:53:39Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GTYZWIXDFUV2H57YQZJWPOD3BC3I3EIQ/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GXTUWAWXVU37GRNIG4TPMA47THO6VAE6/","reference_id":"GXTUWAWXVU37GRNIG4TPMA47THO6VAE6","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-07-18T17:53:39Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GXTUWAWXVU37GRNIG4TPMA47THO6VAE6/"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2021/11/msg00008.html","reference_id":"msg00008.html","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-07-18T17:53:39Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2021/11/msg00008.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20240621-0006/","reference_id":"ntap-20240621-0006","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-07-18T17:53:39Z/"}],"url":"https://security.netapp.com/advisory/ntap-20240621-0006/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3884","reference_id":"RHSA-2021:3884","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3884"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3885","reference_id":"RHSA-2021:3885","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3885"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3886","reference_id":"RHSA-2021:3886","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3886"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3887","reference_id":"RHSA-2021:3887","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3887"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3889","reference_id":"RHSA-2021:3889","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3889"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3891","reference_id":"RHSA-2021:3891","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3891"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3892","reference_id":"RHSA-2021:3892","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3892"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3893","reference_id":"RHSA-2021:3893","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3893"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3960","reference_id":"RHSA-2021:3960","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3960"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3961","reference_id":"RHSA-2021:3961","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3961"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3967","reference_id":"RHSA-2021:3967","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3967"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3968","reference_id":"RHSA-2021:3968","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3968"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4135","reference_id":"RHSA-2021:4135","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4135"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4531","reference_id":"RHSA-2021:4531","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4531"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4532","reference_id":"RHSA-2021:4532","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4532"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:5030","reference_id":"RHSA-2021:5030","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:5030"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0345","reference_id":"RHSA-2022:0345","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0345"},{"reference_url":"https://usn.ubuntu.com/5202-1/","reference_id":"USN-5202-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5202-1/"}],"fixed_packages":[],"aliases":["CVE-2021-35578"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-e6dp-udwu-4bcz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/96431?format=json","vulnerability_id":"VCID-f2f4-z1sv-fqcn","summary":"Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Lightweight HTTP Server). Supported versions that are affected are Oracle Java SE: 8u341, 8u345-perf, 11.0.16.1, 17.0.4.1, 19; Oracle GraalVM Enterprise Edition: 20.3.7, 21.3.3 and 22.2.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21628.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21628.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21628","reference_id":"","reference_type":"","scores":[{"value":"0.00203","scoring_system":"epss","scoring_elements":"0.42293","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00203","scoring_system":"epss","scoring_elements":"0.42369","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21628"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21618","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21618"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21619","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21619"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21624","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21624"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21626","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21626"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21628","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21628"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39399","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39399"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-21835","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-21835"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-21843","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-21843"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2133769","reference_id":"2133769","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2133769"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/37QDWJBGEPP65X43NXQTXQ7KASLUHON6/","reference_id":"37QDWJBGEPP65X43NXQTXQ7KASLUHON6","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-23T16:44:33Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/37QDWJBGEPP65X43NXQTXQ7KASLUHON6/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3ARF4QF4N3X5GSFHXUBWARGLISGKJ33R/","reference_id":"3ARF4QF4N3X5GSFHXUBWARGLISGKJ33R","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-23T16:44:33Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3ARF4QF4N3X5GSFHXUBWARGLISGKJ33R/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3QLQ7OD33W6LT3HWI7VYDFFJLV75Y73K/","reference_id":"3QLQ7OD33W6LT3HWI7VYDFFJLV75Y73K","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-23T16:44:33Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3QLQ7OD33W6LT3HWI7VYDFFJLV75Y73K/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EXSBV3W6EP6B7XJ63Z2FPVBH6HAPGJ5T/","reference_id":"EXSBV3W6EP6B7XJ63Z2FPVBH6HAPGJ5T","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-23T16:44:33Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EXSBV3W6EP6B7XJ63Z2FPVBH6HAPGJ5T/"},{"reference_url":"https://security.gentoo.org/glsa/202409-26","reference_id":"GLSA-202409-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-26"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HNGMDNIHAA73BEX6XPA2IMXJSGOKKYE6/","reference_id":"HNGMDNIHAA73BEX6XPA2IMXJSGOKKYE6","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-23T16:44:33Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HNGMDNIHAA73BEX6XPA2IMXJSGOKKYE6/"},{"reference_url":"https://security.netapp.com/advisory/ntap-20221028-0012/","reference_id":"ntap-20221028-0012","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-23T16:44:33Z/"}],"url":"https://security.netapp.com/advisory/ntap-20221028-0012/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PB3CIGOFG7CENUVVE4FFZT2HI5FO77XU/","reference_id":"PB3CIGOFG7CENUVVE4FFZT2HI5FO77XU","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-23T16:44:33Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PB3CIGOFG7CENUVVE4FFZT2HI5FO77XU/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:6999","reference_id":"RHSA-2022:6999","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:6999"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7000","reference_id":"RHSA-2022:7000","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7000"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7001","reference_id":"RHSA-2022:7001","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7001"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7002","reference_id":"RHSA-2022:7002","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7002"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7003","reference_id":"RHSA-2022:7003","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7003"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7004","reference_id":"RHSA-2022:7004","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7004"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7005","reference_id":"RHSA-2022:7005","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7005"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7006","reference_id":"RHSA-2022:7006","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7006"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7007","reference_id":"RHSA-2022:7007","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7007"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7008","reference_id":"RHSA-2022:7008","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7008"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7009","reference_id":"RHSA-2022:7009","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7009"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7010","reference_id":"RHSA-2022:7010","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7010"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7011","reference_id":"RHSA-2022:7011","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7011"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7012","reference_id":"RHSA-2022:7012","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7012"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7013","reference_id":"RHSA-2022:7013","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7013"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7049","reference_id":"RHSA-2022:7049","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7049"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7050","reference_id":"RHSA-2022:7050","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7050"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7051","reference_id":"RHSA-2022:7051","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7051"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7052","reference_id":"RHSA-2022:7052","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7052"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7053","reference_id":"RHSA-2022:7053","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7053"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7054","reference_id":"RHSA-2022:7054","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7054"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:8880","reference_id":"RHSA-2022:8880","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:8880"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0128","reference_id":"RHSA-2023:0128","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0128"},{"reference_url":"https://usn.ubuntu.com/5719-1/","reference_id":"USN-5719-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5719-1/"}],"fixed_packages":[],"aliases":["CVE-2022-21628"],"risk_score":2.4,"exploitability":"0.5","weighted_severity":"4.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-f2f4-z1sv-fqcn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6950?format=json","vulnerability_id":"VCID-fd7c-w5ta-1yc1","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-35564.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-35564.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-35564","reference_id":"","reference_type":"","scores":[{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.2842","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28347","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-35564"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35550","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35550"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35556","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35556"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35559","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35559"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35561","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35561"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35564","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35564"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35565","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35565"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35567","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35567"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35578","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35578"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35586","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35586"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35603","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35603"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2015061","reference_id":"2015061","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2015061"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6EUURAQOIJYFZHQ7DFZCO6IKDPIAWTNK/","reference_id":"6EUURAQOIJYFZHQ7DFZCO6IKDPIAWTNK","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-07-19T18:55:09Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6EUURAQOIJYFZHQ7DFZCO6IKDPIAWTNK/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7WTVCIVHTX3XONYOEGUMLKCM4QEC6INT/","reference_id":"7WTVCIVHTX3XONYOEGUMLKCM4QEC6INT","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-07-19T18:55:09Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7WTVCIVHTX3XONYOEGUMLKCM4QEC6INT/"},{"reference_url":"https://security.archlinux.org/AVG-2477","reference_id":"AVG-2477","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2477"},{"reference_url":"https://security.archlinux.org/AVG-2478","reference_id":"AVG-2478","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2478"},{"reference_url":"https://security.archlinux.org/AVG-2479","reference_id":"AVG-2479","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2479"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DJILEHYV2U37HKMGFEQ7CAVOV4DUWW2O/","reference_id":"DJILEHYV2U37HKMGFEQ7CAVOV4DUWW2O","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-07-19T18:55:09Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DJILEHYV2U37HKMGFEQ7CAVOV4DUWW2O/"},{"reference_url":"https://www.debian.org/security/2021/dsa-5000","reference_id":"dsa-5000","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-07-19T18:55:09Z/"}],"url":"https://www.debian.org/security/2021/dsa-5000"},{"reference_url":"https://www.debian.org/security/2021/dsa-5012","reference_id":"dsa-5012","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-07-19T18:55:09Z/"}],"url":"https://www.debian.org/security/2021/dsa-5012"},{"reference_url":"https://security.gentoo.org/glsa/202209-05","reference_id":"GLSA-202209-05","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-07-19T18:55:09Z/"}],"url":"https://security.gentoo.org/glsa/202209-05"},{"reference_url":"https://security.gentoo.org/glsa/202409-26","reference_id":"GLSA-202409-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-26"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GTYZWIXDFUV2H57YQZJWPOD3BC3I3EIQ/","reference_id":"GTYZWIXDFUV2H57YQZJWPOD3BC3I3EIQ","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-07-19T18:55:09Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GTYZWIXDFUV2H57YQZJWPOD3BC3I3EIQ/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GXTUWAWXVU37GRNIG4TPMA47THO6VAE6/","reference_id":"GXTUWAWXVU37GRNIG4TPMA47THO6VAE6","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-07-19T18:55:09Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GXTUWAWXVU37GRNIG4TPMA47THO6VAE6/"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2021/11/msg00008.html","reference_id":"msg00008.html","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-07-19T18:55:09Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2021/11/msg00008.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20240621-0006/","reference_id":"ntap-20240621-0006","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-07-19T18:55:09Z/"}],"url":"https://security.netapp.com/advisory/ntap-20240621-0006/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3884","reference_id":"RHSA-2021:3884","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3884"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3885","reference_id":"RHSA-2021:3885","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3885"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3886","reference_id":"RHSA-2021:3886","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3886"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3887","reference_id":"RHSA-2021:3887","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3887"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3889","reference_id":"RHSA-2021:3889","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3889"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3891","reference_id":"RHSA-2021:3891","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3891"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3892","reference_id":"RHSA-2021:3892","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3892"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3893","reference_id":"RHSA-2021:3893","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3893"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3960","reference_id":"RHSA-2021:3960","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3960"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3961","reference_id":"RHSA-2021:3961","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3961"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3967","reference_id":"RHSA-2021:3967","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3967"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3968","reference_id":"RHSA-2021:3968","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3968"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4135","reference_id":"RHSA-2021:4135","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4135"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4531","reference_id":"RHSA-2021:4531","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4531"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4532","reference_id":"RHSA-2021:4532","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4532"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:5030","reference_id":"RHSA-2021:5030","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:5030"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0310","reference_id":"RHSA-2022:0310","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0310"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0345","reference_id":"RHSA-2022:0345","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0345"},{"reference_url":"https://usn.ubuntu.com/5202-1/","reference_id":"USN-5202-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5202-1/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/V362B2BWTH5IJDL45QPQGMBKIQOG7JX5/","reference_id":"V362B2BWTH5IJDL45QPQGMBKIQOG7JX5","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-07-19T18:55:09Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/V362B2BWTH5IJDL45QPQGMBKIQOG7JX5/"}],"fixed_packages":[],"aliases":["CVE-2021-35564"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fd7c-w5ta-1yc1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6944?format=json","vulnerability_id":"VCID-fk6t-6cx2-ckh7","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-35603.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-35603.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-35603","reference_id":"","reference_type":"","scores":[{"value":"0.00136","scoring_system":"epss","scoring_elements":"0.3329","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00136","scoring_system":"epss","scoring_elements":"0.33188","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-35603"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35550","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35550"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35556","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35556"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35559","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35559"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35561","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35561"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35564","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35564"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35565","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35565"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35567","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35567"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35578","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35578"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35586","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35586"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35603","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35603"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2015311","reference_id":"2015311","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2015311"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6EUURAQOIJYFZHQ7DFZCO6IKDPIAWTNK/","reference_id":"6EUURAQOIJYFZHQ7DFZCO6IKDPIAWTNK","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-18T17:52:57Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6EUURAQOIJYFZHQ7DFZCO6IKDPIAWTNK/"},{"reference_url":"https://security.archlinux.org/AVG-2477","reference_id":"AVG-2477","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2477"},{"reference_url":"https://security.archlinux.org/AVG-2478","reference_id":"AVG-2478","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2478"},{"reference_url":"https://security.archlinux.org/AVG-2479","reference_id":"AVG-2479","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2479"},{"reference_url":"https://www.debian.org/security/2021/dsa-5000","reference_id":"dsa-5000","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-18T17:52:57Z/"}],"url":"https://www.debian.org/security/2021/dsa-5000"},{"reference_url":"https://www.debian.org/security/2021/dsa-5012","reference_id":"dsa-5012","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-18T17:52:57Z/"}],"url":"https://www.debian.org/security/2021/dsa-5012"},{"reference_url":"https://security.gentoo.org/glsa/202209-05","reference_id":"GLSA-202209-05","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-18T17:52:57Z/"}],"url":"https://security.gentoo.org/glsa/202209-05"},{"reference_url":"https://security.gentoo.org/glsa/202409-26","reference_id":"GLSA-202409-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-26"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GTYZWIXDFUV2H57YQZJWPOD3BC3I3EIQ/","reference_id":"GTYZWIXDFUV2H57YQZJWPOD3BC3I3EIQ","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-18T17:52:57Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GTYZWIXDFUV2H57YQZJWPOD3BC3I3EIQ/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GXTUWAWXVU37GRNIG4TPMA47THO6VAE6/","reference_id":"GXTUWAWXVU37GRNIG4TPMA47THO6VAE6","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-18T17:52:57Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GXTUWAWXVU37GRNIG4TPMA47THO6VAE6/"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2021/11/msg00008.html","reference_id":"msg00008.html","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-18T17:52:57Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2021/11/msg00008.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20240621-0006/","reference_id":"ntap-20240621-0006","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-18T17:52:57Z/"}],"url":"https://security.netapp.com/advisory/ntap-20240621-0006/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3884","reference_id":"RHSA-2021:3884","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3884"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3885","reference_id":"RHSA-2021:3885","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3885"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3886","reference_id":"RHSA-2021:3886","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3886"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3887","reference_id":"RHSA-2021:3887","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3887"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3889","reference_id":"RHSA-2021:3889","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3889"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3891","reference_id":"RHSA-2021:3891","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3891"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3892","reference_id":"RHSA-2021:3892","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3892"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3893","reference_id":"RHSA-2021:3893","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3893"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3960","reference_id":"RHSA-2021:3960","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3960"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3961","reference_id":"RHSA-2021:3961","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3961"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3967","reference_id":"RHSA-2021:3967","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3967"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3968","reference_id":"RHSA-2021:3968","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3968"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4135","reference_id":"RHSA-2021:4135","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4135"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4531","reference_id":"RHSA-2021:4531","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4531"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4532","reference_id":"RHSA-2021:4532","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4532"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0968","reference_id":"RHSA-2022:0968","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0968"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0969","reference_id":"RHSA-2022:0969","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0969"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0970","reference_id":"RHSA-2022:0970","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0970"},{"reference_url":"https://usn.ubuntu.com/5202-1/","reference_id":"USN-5202-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5202-1/"}],"fixed_packages":[],"aliases":["CVE-2021-35603"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fk6t-6cx2-ckh7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6953?format=json","vulnerability_id":"VCID-fubs-k5u5-1yf8","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-35556.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-35556.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-35556","reference_id":"","reference_type":"","scores":[{"value":"0.00137","scoring_system":"epss","scoring_elements":"0.33352","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00137","scoring_system":"epss","scoring_elements":"0.3325","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-35556"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35550","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35550"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35556","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35556"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35559","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35559"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35561","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35561"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35564","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35564"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35565","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35565"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35567","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35567"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35578","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35578"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35586","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35586"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35603","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35603"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2014515","reference_id":"2014515","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2014515"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6EUURAQOIJYFZHQ7DFZCO6IKDPIAWTNK/","reference_id":"6EUURAQOIJYFZHQ7DFZCO6IKDPIAWTNK","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-06-24T14:32:53Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6EUURAQOIJYFZHQ7DFZCO6IKDPIAWTNK/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7WTVCIVHTX3XONYOEGUMLKCM4QEC6INT/","reference_id":"7WTVCIVHTX3XONYOEGUMLKCM4QEC6INT","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-06-24T14:32:53Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7WTVCIVHTX3XONYOEGUMLKCM4QEC6INT/"},{"reference_url":"https://security.archlinux.org/AVG-2477","reference_id":"AVG-2477","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2477"},{"reference_url":"https://security.archlinux.org/AVG-2478","reference_id":"AVG-2478","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2478"},{"reference_url":"https://security.archlinux.org/AVG-2479","reference_id":"AVG-2479","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2479"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DJILEHYV2U37HKMGFEQ7CAVOV4DUWW2O/","reference_id":"DJILEHYV2U37HKMGFEQ7CAVOV4DUWW2O","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-06-24T14:32:53Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DJILEHYV2U37HKMGFEQ7CAVOV4DUWW2O/"},{"reference_url":"https://www.debian.org/security/2021/dsa-5000","reference_id":"dsa-5000","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-06-24T14:32:53Z/"}],"url":"https://www.debian.org/security/2021/dsa-5000"},{"reference_url":"https://www.debian.org/security/2021/dsa-5012","reference_id":"dsa-5012","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-06-24T14:32:53Z/"}],"url":"https://www.debian.org/security/2021/dsa-5012"},{"reference_url":"https://security.gentoo.org/glsa/202209-05","reference_id":"GLSA-202209-05","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-06-24T14:32:53Z/"}],"url":"https://security.gentoo.org/glsa/202209-05"},{"reference_url":"https://security.gentoo.org/glsa/202409-26","reference_id":"GLSA-202409-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-26"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GTYZWIXDFUV2H57YQZJWPOD3BC3I3EIQ/","reference_id":"GTYZWIXDFUV2H57YQZJWPOD3BC3I3EIQ","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-06-24T14:32:53Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GTYZWIXDFUV2H57YQZJWPOD3BC3I3EIQ/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GXTUWAWXVU37GRNIG4TPMA47THO6VAE6/","reference_id":"GXTUWAWXVU37GRNIG4TPMA47THO6VAE6","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-06-24T14:32:53Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GXTUWAWXVU37GRNIG4TPMA47THO6VAE6/"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2021/11/msg00008.html","reference_id":"msg00008.html","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-06-24T14:32:53Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2021/11/msg00008.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20240621-0006/","reference_id":"ntap-20240621-0006","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-06-24T14:32:53Z/"}],"url":"https://security.netapp.com/advisory/ntap-20240621-0006/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3884","reference_id":"RHSA-2021:3884","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3884"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3885","reference_id":"RHSA-2021:3885","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3885"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3886","reference_id":"RHSA-2021:3886","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3886"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3887","reference_id":"RHSA-2021:3887","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3887"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3889","reference_id":"RHSA-2021:3889","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3889"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3891","reference_id":"RHSA-2021:3891","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3891"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3892","reference_id":"RHSA-2021:3892","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3892"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3893","reference_id":"RHSA-2021:3893","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3893"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3960","reference_id":"RHSA-2021:3960","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3960"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3961","reference_id":"RHSA-2021:3961","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3961"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3967","reference_id":"RHSA-2021:3967","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3967"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3968","reference_id":"RHSA-2021:3968","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3968"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4135","reference_id":"RHSA-2021:4135","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4135"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4531","reference_id":"RHSA-2021:4531","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4531"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4532","reference_id":"RHSA-2021:4532","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4532"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:5030","reference_id":"RHSA-2021:5030","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:5030"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0310","reference_id":"RHSA-2022:0310","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0310"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0345","reference_id":"RHSA-2022:0345","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0345"},{"reference_url":"https://usn.ubuntu.com/5202-1/","reference_id":"USN-5202-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5202-1/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/V362B2BWTH5IJDL45QPQGMBKIQOG7JX5/","reference_id":"V362B2BWTH5IJDL45QPQGMBKIQOG7JX5","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-06-24T14:32:53Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/V362B2BWTH5IJDL45QPQGMBKIQOG7JX5/"}],"fixed_packages":[],"aliases":["CVE-2021-35556"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fubs-k5u5-1yf8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/96428?format=json","vulnerability_id":"VCID-gn2w-qhhs-gfea","summary":"Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Security). Supported versions that are affected are Oracle Java SE: 8u341, 8u345-perf, 11.0.16.1, 17.0.4.1, 19; Oracle GraalVM Enterprise Edition: 20.3.7, 21.3.3 and 22.2.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 3.7 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N).","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21619.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21619.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21619","reference_id":"","reference_type":"","scores":[{"value":"0.00199","scoring_system":"epss","scoring_elements":"0.41906","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00199","scoring_system":"epss","scoring_elements":"0.41981","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21619"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21618","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21618"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21619","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21619"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21624","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21624"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21626","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21626"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21628","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21628"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39399","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39399"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-21835","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-21835"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-21843","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-21843"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2133745","reference_id":"2133745","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2133745"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/37QDWJBGEPP65X43NXQTXQ7KASLUHON6/","reference_id":"37QDWJBGEPP65X43NXQTXQ7KASLUHON6","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-20T16:08:54Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/37QDWJBGEPP65X43NXQTXQ7KASLUHON6/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3ARF4QF4N3X5GSFHXUBWARGLISGKJ33R/","reference_id":"3ARF4QF4N3X5GSFHXUBWARGLISGKJ33R","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-20T16:08:54Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3ARF4QF4N3X5GSFHXUBWARGLISGKJ33R/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3QLQ7OD33W6LT3HWI7VYDFFJLV75Y73K/","reference_id":"3QLQ7OD33W6LT3HWI7VYDFFJLV75Y73K","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-20T16:08:54Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3QLQ7OD33W6LT3HWI7VYDFFJLV75Y73K/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EXSBV3W6EP6B7XJ63Z2FPVBH6HAPGJ5T/","reference_id":"EXSBV3W6EP6B7XJ63Z2FPVBH6HAPGJ5T","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-20T16:08:54Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EXSBV3W6EP6B7XJ63Z2FPVBH6HAPGJ5T/"},{"reference_url":"https://security.gentoo.org/glsa/202409-26","reference_id":"GLSA-202409-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-26"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HNGMDNIHAA73BEX6XPA2IMXJSGOKKYE6/","reference_id":"HNGMDNIHAA73BEX6XPA2IMXJSGOKKYE6","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-20T16:08:54Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HNGMDNIHAA73BEX6XPA2IMXJSGOKKYE6/"},{"reference_url":"https://security.netapp.com/advisory/ntap-20221028-0012/","reference_id":"ntap-20221028-0012","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-20T16:08:54Z/"}],"url":"https://security.netapp.com/advisory/ntap-20221028-0012/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PB3CIGOFG7CENUVVE4FFZT2HI5FO77XU/","reference_id":"PB3CIGOFG7CENUVVE4FFZT2HI5FO77XU","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-20T16:08:54Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PB3CIGOFG7CENUVVE4FFZT2HI5FO77XU/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:6999","reference_id":"RHSA-2022:6999","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:6999"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7000","reference_id":"RHSA-2022:7000","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7000"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7001","reference_id":"RHSA-2022:7001","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7001"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7002","reference_id":"RHSA-2022:7002","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7002"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7003","reference_id":"RHSA-2022:7003","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7003"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7004","reference_id":"RHSA-2022:7004","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7004"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7005","reference_id":"RHSA-2022:7005","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7005"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7006","reference_id":"RHSA-2022:7006","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7006"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7007","reference_id":"RHSA-2022:7007","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7007"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7008","reference_id":"RHSA-2022:7008","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7008"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7009","reference_id":"RHSA-2022:7009","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7009"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7010","reference_id":"RHSA-2022:7010","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7010"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7011","reference_id":"RHSA-2022:7011","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7011"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7012","reference_id":"RHSA-2022:7012","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7012"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7013","reference_id":"RHSA-2022:7013","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7013"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7049","reference_id":"RHSA-2022:7049","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7049"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7050","reference_id":"RHSA-2022:7050","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7050"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7051","reference_id":"RHSA-2022:7051","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7051"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7052","reference_id":"RHSA-2022:7052","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7052"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7053","reference_id":"RHSA-2022:7053","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7053"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7054","reference_id":"RHSA-2022:7054","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7054"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:8880","reference_id":"RHSA-2022:8880","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:8880"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0128","reference_id":"RHSA-2023:0128","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0128"},{"reference_url":"https://usn.ubuntu.com/5719-1/","reference_id":"USN-5719-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5719-1/"}],"fixed_packages":[],"aliases":["CVE-2022-21619"],"risk_score":1.6,"exploitability":"0.5","weighted_severity":"3.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-gn2w-qhhs-gfea"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/96377?format=json","vulnerability_id":"VCID-gyt8-tngh-fufb","summary":"Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u261, 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, Java SE Embedded, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE, Java SE Embedded. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 8.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H).","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14583.json","reference_id":"","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14583.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14583","reference_id":"","reference_type":"","scores":[{"value":"0.01018","scoring_system":"epss","scoring_elements":"0.77582","published_at":"2026-06-05T12:55:00Z"},{"value":"0.01018","scoring_system":"epss","scoring_elements":"0.77554","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14583"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14556","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14556"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14562","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14562"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14573","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14573"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14577","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14577"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14578","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14578"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14579","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14579"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14581","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14581"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14583","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14583"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14593","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14593"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14621","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14621"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1856448","reference_id":"1856448","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1856448"},{"reference_url":"https://usn.ubuntu.com/4433-1/","reference_id":"4433-1","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-27T17:55:01Z/"}],"url":"https://usn.ubuntu.com/4433-1/"},{"reference_url":"https://usn.ubuntu.com/4453-1/","reference_id":"4453-1","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-27T17:55:01Z/"}],"url":"https://usn.ubuntu.com/4453-1/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6CFJPOYF3CWYEPCDOAOCNFJTQIKKWPHW/","reference_id":"6CFJPOYF3CWYEPCDOAOCNFJTQIKKWPHW","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-27T17:55:01Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6CFJPOYF3CWYEPCDOAOCNFJTQIKKWPHW/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DFZ36XIW5ENQAW6BB7WHRFFTTJX7KGMR/","reference_id":"DFZ36XIW5ENQAW6BB7WHRFFTTJX7KGMR","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-27T17:55:01Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DFZ36XIW5ENQAW6BB7WHRFFTTJX7KGMR/"},{"reference_url":"https://www.debian.org/security/2020/dsa-4734","reference_id":"dsa-4734","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-27T17:55:01Z/"}],"url":"https://www.debian.org/security/2020/dsa-4734"},{"reference_url":"https://security.gentoo.org/glsa/202008-24","reference_id":"GLSA-202008-24","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-27T17:55:01Z/"}],"url":"https://security.gentoo.org/glsa/202008-24"},{"reference_url":"https://security.gentoo.org/glsa/202209-15","reference_id":"GLSA-202209-15","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-27T17:55:01Z/"}],"url":"https://security.gentoo.org/glsa/202209-15"},{"reference_url":"https://security.gentoo.org/glsa/202409-26","reference_id":"GLSA-202409-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-26"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MEPHBZPNSLX43B26DWKB7OS6AROTS2BO/","reference_id":"MEPHBZPNSLX43B26DWKB7OS6AROTS2BO","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-27T17:55:01Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MEPHBZPNSLX43B26DWKB7OS6AROTS2BO/"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00019.html","reference_id":"msg00019.html","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-27T17:55:01Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00019.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2020/08/msg00021.html","reference_id":"msg00021.html","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-27T17:55:01Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2020/08/msg00021.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00027.html","reference_id":"msg00027.html","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-27T17:55:01Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00027.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00041.html","reference_id":"msg00041.html","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-27T17:55:01Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00041.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20200717-0005/","reference_id":"ntap-20200717-0005","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-27T17:55:01Z/"}],"url":"https://security.netapp.com/advisory/ntap-20200717-0005/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QQUMIAON2YEFRONMIUVHAKYCIOLICDBA/","reference_id":"QQUMIAON2YEFRONMIUVHAKYCIOLICDBA","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-27T17:55:01Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QQUMIAON2YEFRONMIUVHAKYCIOLICDBA/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2968","reference_id":"RHSA-2020:2968","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2968"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2969","reference_id":"RHSA-2020:2969","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2969"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2970","reference_id":"RHSA-2020:2970","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2970"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2972","reference_id":"RHSA-2020:2972","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2972"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2985","reference_id":"RHSA-2020:2985","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2985"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3098","reference_id":"RHSA-2020:3098","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3098"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3099","reference_id":"RHSA-2020:3099","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3099"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3100","reference_id":"RHSA-2020:3100","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3100"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3101","reference_id":"RHSA-2020:3101","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3101"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3386","reference_id":"RHSA-2020:3386","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3386"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3387","reference_id":"RHSA-2020:3387","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3387"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3388","reference_id":"RHSA-2020:3388","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3388"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5585","reference_id":"RHSA-2020:5585","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5585"}],"fixed_packages":[],"aliases":["CVE-2020-14583"],"risk_score":3.8,"exploitability":"0.5","weighted_severity":"7.5","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-gyt8-tngh-fufb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/96384?format=json","vulnerability_id":"VCID-hba8-8876-yufu","summary":"Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 3.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N).","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14796.json","reference_id":"","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14796.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14796","reference_id":"","reference_type":"","scores":[{"value":"0.00134","scoring_system":"epss","scoring_elements":"0.32567","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00134","scoring_system":"epss","scoring_elements":"0.32496","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14796"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14779","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14779"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14781","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14781"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14782","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14782"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14792","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14792"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14796","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14796"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14797","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14797"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14798","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14798"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14803","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14803"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1889697","reference_id":"1889697","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1889697"},{"reference_url":"https://www.debian.org/security/2020/dsa-4779","reference_id":"dsa-4779","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:20Z/"}],"url":"https://www.debian.org/security/2020/dsa-4779"},{"reference_url":"https://security.gentoo.org/glsa/202101-19","reference_id":"GLSA-202101-19","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:20Z/"}],"url":"https://security.gentoo.org/glsa/202101-19"},{"reference_url":"https://security.gentoo.org/glsa/202409-26","reference_id":"GLSA-202409-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-26"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2020/10/msg00031.html","reference_id":"msg00031.html","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:20Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2020/10/msg00031.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00041.html","reference_id":"msg00041.html","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:20Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00041.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20201023-0004/","reference_id":"ntap-20201023-0004","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:20Z/"}],"url":"https://security.netapp.com/advisory/ntap-20201023-0004/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4305","reference_id":"RHSA-2020:4305","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4305"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4306","reference_id":"RHSA-2020:4306","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4306"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4307","reference_id":"RHSA-2020:4307","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4307"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4316","reference_id":"RHSA-2020:4316","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4316"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4347","reference_id":"RHSA-2020:4347","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4347"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4348","reference_id":"RHSA-2020:4348","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4348"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4349","reference_id":"RHSA-2020:4349","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4349"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4350","reference_id":"RHSA-2020:4350","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4350"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4352","reference_id":"RHSA-2020:4352","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4352"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5585","reference_id":"RHSA-2020:5585","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5585"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5586","reference_id":"RHSA-2020:5586","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5586"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0530","reference_id":"RHSA-2021:0530","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0530"},{"reference_url":"https://usn.ubuntu.com/4607-1/","reference_id":"USN-4607-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4607-1/"},{"reference_url":"https://usn.ubuntu.com/4607-2/","reference_id":"USN-4607-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4607-2/"}],"fixed_packages":[],"aliases":["CVE-2020-14796"],"risk_score":1.4,"exploitability":"0.5","weighted_severity":"2.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-hba8-8876-yufu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/96383?format=json","vulnerability_id":"VCID-k5zw-z2mr-sbfb","summary":"Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Java SE, Java SE Embedded accessible data as well as unauthorized read access to a subset of Java SE, Java SE Embedded accessible data. Note: Applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.1 Base Score 4.2 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N).","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14792.json","reference_id":"","reference_type":"","scores":[{"value":"4.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14792.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14792","reference_id":"","reference_type":"","scores":[{"value":"0.00186","scoring_system":"epss","scoring_elements":"0.40306","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00186","scoring_system":"epss","scoring_elements":"0.40225","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14792"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14779","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14779"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14781","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14781"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14782","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14782"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14792","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14792"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14796","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14796"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14797","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14797"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14798","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14798"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14803","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14803"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1889280","reference_id":"1889280","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1889280"},{"reference_url":"https://www.debian.org/security/2020/dsa-4779","reference_id":"dsa-4779","reference_type":"","scores":[{"value":"4.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:26Z/"}],"url":"https://www.debian.org/security/2020/dsa-4779"},{"reference_url":"https://security.gentoo.org/glsa/202101-19","reference_id":"GLSA-202101-19","reference_type":"","scores":[{"value":"4.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:26Z/"}],"url":"https://security.gentoo.org/glsa/202101-19"},{"reference_url":"https://security.gentoo.org/glsa/202409-26","reference_id":"GLSA-202409-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-26"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2020/10/msg00031.html","reference_id":"msg00031.html","reference_type":"","scores":[{"value":"4.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:26Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2020/10/msg00031.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00041.html","reference_id":"msg00041.html","reference_type":"","scores":[{"value":"4.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:26Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00041.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20201023-0004/","reference_id":"ntap-20201023-0004","reference_type":"","scores":[{"value":"4.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:26Z/"}],"url":"https://security.netapp.com/advisory/ntap-20201023-0004/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4305","reference_id":"RHSA-2020:4305","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4305"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4306","reference_id":"RHSA-2020:4306","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4306"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4307","reference_id":"RHSA-2020:4307","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4307"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4316","reference_id":"RHSA-2020:4316","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4316"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4347","reference_id":"RHSA-2020:4347","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4347"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4348","reference_id":"RHSA-2020:4348","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4348"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4349","reference_id":"RHSA-2020:4349","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4349"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4350","reference_id":"RHSA-2020:4350","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4350"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4352","reference_id":"RHSA-2020:4352","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4352"},{"reference_url":"https://usn.ubuntu.com/4607-1/","reference_id":"USN-4607-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4607-1/"},{"reference_url":"https://usn.ubuntu.com/4607-2/","reference_id":"USN-4607-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4607-2/"}],"fixed_packages":[],"aliases":["CVE-2020-14792"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-k5zw-z2mr-sbfb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/96381?format=json","vulnerability_id":"VCID-m1v2-g3pc-d3d9","summary":"Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: JNDI). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Java SE Embedded accessible data. Note: Applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.1 Base Score 3.7 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N).","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14781.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14781.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14781","reference_id":"","reference_type":"","scores":[{"value":"0.00103","scoring_system":"epss","scoring_elements":"0.27754","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00103","scoring_system":"epss","scoring_elements":"0.27687","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14781"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14779","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14779"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14781","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14781"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14782","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14782"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14792","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14792"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14796","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14796"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14797","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14797"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14798","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14798"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14803","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14803"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1889274","reference_id":"1889274","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1889274"},{"reference_url":"https://www.debian.org/security/2020/dsa-4779","reference_id":"dsa-4779","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:41Z/"}],"url":"https://www.debian.org/security/2020/dsa-4779"},{"reference_url":"https://security.gentoo.org/glsa/202101-19","reference_id":"GLSA-202101-19","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:41Z/"}],"url":"https://security.gentoo.org/glsa/202101-19"},{"reference_url":"https://security.gentoo.org/glsa/202409-26","reference_id":"GLSA-202409-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-26"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2020/10/msg00031.html","reference_id":"msg00031.html","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:41Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2020/10/msg00031.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00041.html","reference_id":"msg00041.html","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:41Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00041.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20201023-0004/","reference_id":"ntap-20201023-0004","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:41Z/"}],"url":"https://security.netapp.com/advisory/ntap-20201023-0004/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4305","reference_id":"RHSA-2020:4305","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4305"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4306","reference_id":"RHSA-2020:4306","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4306"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4307","reference_id":"RHSA-2020:4307","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4307"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4316","reference_id":"RHSA-2020:4316","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4316"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4347","reference_id":"RHSA-2020:4347","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4347"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4348","reference_id":"RHSA-2020:4348","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4348"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4349","reference_id":"RHSA-2020:4349","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4349"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4350","reference_id":"RHSA-2020:4350","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4350"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4352","reference_id":"RHSA-2020:4352","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4352"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5586","reference_id":"RHSA-2020:5586","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5586"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0717","reference_id":"RHSA-2021:0717","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0717"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0736","reference_id":"RHSA-2021:0736","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0736"},{"reference_url":"https://usn.ubuntu.com/4607-1/","reference_id":"USN-4607-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4607-1/"},{"reference_url":"https://usn.ubuntu.com/4607-2/","reference_id":"USN-4607-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4607-2/"}],"fixed_packages":[],"aliases":["CVE-2020-14781"],"risk_score":1.6,"exploitability":"0.5","weighted_severity":"3.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-m1v2-g3pc-d3d9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6954?format=json","vulnerability_id":"VCID-qbaf-vf9e-b3gz","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-35550.json","reference_id":"","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-35550.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-35550","reference_id":"","reference_type":"","scores":[{"value":"0.00091","scoring_system":"epss","scoring_elements":"0.25773","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00091","scoring_system":"epss","scoring_elements":"0.2567","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-35550"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35550","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35550"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35556","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35556"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35559","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35559"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35561","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35561"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35564","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35564"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35565","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35565"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35567","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35567"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35578","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35578"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35586","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35586"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35603","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35603"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2015648","reference_id":"2015648","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2015648"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6EUURAQOIJYFZHQ7DFZCO6IKDPIAWTNK/","reference_id":"6EUURAQOIJYFZHQ7DFZCO6IKDPIAWTNK","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-24T14:29:28Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6EUURAQOIJYFZHQ7DFZCO6IKDPIAWTNK/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7WTVCIVHTX3XONYOEGUMLKCM4QEC6INT/","reference_id":"7WTVCIVHTX3XONYOEGUMLKCM4QEC6INT","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-24T14:29:28Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7WTVCIVHTX3XONYOEGUMLKCM4QEC6INT/"},{"reference_url":"https://security.archlinux.org/AVG-2478","reference_id":"AVG-2478","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2478"},{"reference_url":"https://security.archlinux.org/AVG-2479","reference_id":"AVG-2479","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2479"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DJILEHYV2U37HKMGFEQ7CAVOV4DUWW2O/","reference_id":"DJILEHYV2U37HKMGFEQ7CAVOV4DUWW2O","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-24T14:29:28Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DJILEHYV2U37HKMGFEQ7CAVOV4DUWW2O/"},{"reference_url":"https://www.debian.org/security/2021/dsa-5000","reference_id":"dsa-5000","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-24T14:29:28Z/"}],"url":"https://www.debian.org/security/2021/dsa-5000"},{"reference_url":"https://security.gentoo.org/glsa/202209-05","reference_id":"GLSA-202209-05","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-24T14:29:28Z/"}],"url":"https://security.gentoo.org/glsa/202209-05"},{"reference_url":"https://security.gentoo.org/glsa/202409-26","reference_id":"GLSA-202409-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-26"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GTYZWIXDFUV2H57YQZJWPOD3BC3I3EIQ/","reference_id":"GTYZWIXDFUV2H57YQZJWPOD3BC3I3EIQ","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-24T14:29:28Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GTYZWIXDFUV2H57YQZJWPOD3BC3I3EIQ/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GXTUWAWXVU37GRNIG4TPMA47THO6VAE6/","reference_id":"GXTUWAWXVU37GRNIG4TPMA47THO6VAE6","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-24T14:29:28Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GXTUWAWXVU37GRNIG4TPMA47THO6VAE6/"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2021/11/msg00008.html","reference_id":"msg00008.html","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-24T14:29:28Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2021/11/msg00008.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20240621-0006/","reference_id":"ntap-20240621-0006","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-24T14:29:28Z/"}],"url":"https://security.netapp.com/advisory/ntap-20240621-0006/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3884","reference_id":"RHSA-2021:3884","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3884"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3885","reference_id":"RHSA-2021:3885","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3885"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3886","reference_id":"RHSA-2021:3886","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3886"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3887","reference_id":"RHSA-2021:3887","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3887"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3889","reference_id":"RHSA-2021:3889","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3889"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3891","reference_id":"RHSA-2021:3891","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3891"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3892","reference_id":"RHSA-2021:3892","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3892"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3893","reference_id":"RHSA-2021:3893","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3893"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3960","reference_id":"RHSA-2021:3960","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3960"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3961","reference_id":"RHSA-2021:3961","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3961"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3967","reference_id":"RHSA-2021:3967","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3967"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3968","reference_id":"RHSA-2021:3968","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3968"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0968","reference_id":"RHSA-2022:0968","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0968"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0969","reference_id":"RHSA-2022:0969","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0969"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0970","reference_id":"RHSA-2022:0970","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0970"},{"reference_url":"https://usn.ubuntu.com/5202-1/","reference_id":"USN-5202-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5202-1/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/V362B2BWTH5IJDL45QPQGMBKIQOG7JX5/","reference_id":"V362B2BWTH5IJDL45QPQGMBKIQOG7JX5","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-24T14:29:28Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/V362B2BWTH5IJDL45QPQGMBKIQOG7JX5/"}],"fixed_packages":[],"aliases":["CVE-2021-35550"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qbaf-vf9e-b3gz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6951?format=json","vulnerability_id":"VCID-qrbh-r1s1-uqhm","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-35561.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-35561.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-35561","reference_id":"","reference_type":"","scores":[{"value":"0.00176","scoring_system":"epss","scoring_elements":"0.38921","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00176","scoring_system":"epss","scoring_elements":"0.38833","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-35561"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35550","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35550"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35556","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35556"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35559","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35559"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35561","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35561"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35564","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35564"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35565","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35565"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35567","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35567"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35578","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35578"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35586","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35586"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35603","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35603"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2014524","reference_id":"2014524","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2014524"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6EUURAQOIJYFZHQ7DFZCO6IKDPIAWTNK/","reference_id":"6EUURAQOIJYFZHQ7DFZCO6IKDPIAWTNK","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:32:13Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6EUURAQOIJYFZHQ7DFZCO6IKDPIAWTNK/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7WTVCIVHTX3XONYOEGUMLKCM4QEC6INT/","reference_id":"7WTVCIVHTX3XONYOEGUMLKCM4QEC6INT","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:32:13Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7WTVCIVHTX3XONYOEGUMLKCM4QEC6INT/"},{"reference_url":"https://security.archlinux.org/AVG-2477","reference_id":"AVG-2477","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2477"},{"reference_url":"https://security.archlinux.org/AVG-2478","reference_id":"AVG-2478","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2478"},{"reference_url":"https://security.archlinux.org/AVG-2479","reference_id":"AVG-2479","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2479"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DJILEHYV2U37HKMGFEQ7CAVOV4DUWW2O/","reference_id":"DJILEHYV2U37HKMGFEQ7CAVOV4DUWW2O","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:32:13Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DJILEHYV2U37HKMGFEQ7CAVOV4DUWW2O/"},{"reference_url":"https://www.debian.org/security/2021/dsa-5000","reference_id":"dsa-5000","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:32:13Z/"}],"url":"https://www.debian.org/security/2021/dsa-5000"},{"reference_url":"https://www.debian.org/security/2021/dsa-5012","reference_id":"dsa-5012","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:32:13Z/"}],"url":"https://www.debian.org/security/2021/dsa-5012"},{"reference_url":"https://security.gentoo.org/glsa/202209-05","reference_id":"GLSA-202209-05","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:32:13Z/"}],"url":"https://security.gentoo.org/glsa/202209-05"},{"reference_url":"https://security.gentoo.org/glsa/202409-26","reference_id":"GLSA-202409-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-26"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GTYZWIXDFUV2H57YQZJWPOD3BC3I3EIQ/","reference_id":"GTYZWIXDFUV2H57YQZJWPOD3BC3I3EIQ","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:32:13Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GTYZWIXDFUV2H57YQZJWPOD3BC3I3EIQ/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GXTUWAWXVU37GRNIG4TPMA47THO6VAE6/","reference_id":"GXTUWAWXVU37GRNIG4TPMA47THO6VAE6","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:32:13Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GXTUWAWXVU37GRNIG4TPMA47THO6VAE6/"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2021/11/msg00008.html","reference_id":"msg00008.html","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:32:13Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2021/11/msg00008.html"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3884","reference_id":"RHSA-2021:3884","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3884"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3885","reference_id":"RHSA-2021:3885","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3885"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3886","reference_id":"RHSA-2021:3886","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3886"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3887","reference_id":"RHSA-2021:3887","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3887"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3889","reference_id":"RHSA-2021:3889","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3889"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3891","reference_id":"RHSA-2021:3891","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3891"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3892","reference_id":"RHSA-2021:3892","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3892"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3893","reference_id":"RHSA-2021:3893","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3893"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3960","reference_id":"RHSA-2021:3960","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3960"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3961","reference_id":"RHSA-2021:3961","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3961"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3967","reference_id":"RHSA-2021:3967","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3967"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3968","reference_id":"RHSA-2021:3968","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3968"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4135","reference_id":"RHSA-2021:4135","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4135"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4531","reference_id":"RHSA-2021:4531","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4531"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4532","reference_id":"RHSA-2021:4532","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4532"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:4957","reference_id":"RHSA-2022:4957","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:4957"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:4959","reference_id":"RHSA-2022:4959","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:4959"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:5837","reference_id":"RHSA-2022:5837","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:5837"},{"reference_url":"https://usn.ubuntu.com/5202-1/","reference_id":"USN-5202-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5202-1/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/V362B2BWTH5IJDL45QPQGMBKIQOG7JX5/","reference_id":"V362B2BWTH5IJDL45QPQGMBKIQOG7JX5","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:32:13Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/V362B2BWTH5IJDL45QPQGMBKIQOG7JX5/"}],"fixed_packages":[],"aliases":["CVE-2021-35561"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qrbh-r1s1-uqhm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/96372?format=json","vulnerability_id":"VCID-ra3y-ftm6-zqhe","summary":"Vulnerability in the Java SE product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Java SE: 11.0.7 and 14.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Java SE accessible data. Note: Applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.1 Base Score 3.7 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N).","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14573.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14573.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14573","reference_id":"","reference_type":"","scores":[{"value":"0.00405","scoring_system":"epss","scoring_elements":"0.61355","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00405","scoring_system":"epss","scoring_elements":"0.61307","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14573"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14556","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14556"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14562","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14562"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14573","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14573"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14577","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14577"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14578","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14578"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14579","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14579"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14581","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14581"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14583","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14583"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14593","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14593"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14621","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14621"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1856951","reference_id":"1856951","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1856951"},{"reference_url":"https://usn.ubuntu.com/4433-1/","reference_id":"4433-1","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:03Z/"}],"url":"https://usn.ubuntu.com/4433-1/"},{"reference_url":"https://www.debian.org/security/2020/dsa-4734","reference_id":"dsa-4734","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:03Z/"}],"url":"https://www.debian.org/security/2020/dsa-4734"},{"reference_url":"https://security.gentoo.org/glsa/202008-24","reference_id":"GLSA-202008-24","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:03Z/"}],"url":"https://security.gentoo.org/glsa/202008-24"},{"reference_url":"https://security.gentoo.org/glsa/202209-15","reference_id":"GLSA-202209-15","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:03Z/"}],"url":"https://security.gentoo.org/glsa/202209-15"},{"reference_url":"https://security.gentoo.org/glsa/202409-26","reference_id":"GLSA-202409-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-26"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MEPHBZPNSLX43B26DWKB7OS6AROTS2BO/","reference_id":"MEPHBZPNSLX43B26DWKB7OS6AROTS2BO","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:03Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MEPHBZPNSLX43B26DWKB7OS6AROTS2BO/"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00019.html","reference_id":"msg00019.html","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:03Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00019.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00027.html","reference_id":"msg00027.html","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:03Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00027.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20200717-0005/","reference_id":"ntap-20200717-0005","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:03Z/"}],"url":"https://security.netapp.com/advisory/ntap-20200717-0005/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QQUMIAON2YEFRONMIUVHAKYCIOLICDBA/","reference_id":"QQUMIAON2YEFRONMIUVHAKYCIOLICDBA","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:03Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QQUMIAON2YEFRONMIUVHAKYCIOLICDBA/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2969","reference_id":"RHSA-2020:2969","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2969"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2970","reference_id":"RHSA-2020:2970","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2970"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3098","reference_id":"RHSA-2020:3098","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3098"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3099","reference_id":"RHSA-2020:3099","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3099"}],"fixed_packages":[],"aliases":["CVE-2020-14573"],"risk_score":1.6,"exploitability":"0.5","weighted_severity":"3.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ra3y-ftm6-zqhe"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/96380?format=json","vulnerability_id":"VCID-rcby-ck9v-eqc5","summary":"Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Serialization). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded. Note: Applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.1 Base Score 3.7 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L).","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14779.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14779.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14779","reference_id":"","reference_type":"","scores":[{"value":"0.00164","scoring_system":"epss","scoring_elements":"0.37133","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00164","scoring_system":"epss","scoring_elements":"0.37042","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14779"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14779","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14779"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14781","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14781"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14782","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14782"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14792","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14792"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14796","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14796"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14797","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14797"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14798","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14798"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14803","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14803"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1889271","reference_id":"1889271","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1889271"},{"reference_url":"https://www.debian.org/security/2020/dsa-4779","reference_id":"dsa-4779","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:44Z/"}],"url":"https://www.debian.org/security/2020/dsa-4779"},{"reference_url":"https://security.gentoo.org/glsa/202101-19","reference_id":"GLSA-202101-19","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:44Z/"}],"url":"https://security.gentoo.org/glsa/202101-19"},{"reference_url":"https://security.gentoo.org/glsa/202409-26","reference_id":"GLSA-202409-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-26"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2020/10/msg00031.html","reference_id":"msg00031.html","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:44Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2020/10/msg00031.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00041.html","reference_id":"msg00041.html","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:44Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00041.html"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N6CJCO52DHIQJHLPF6HMTC5Z2VKFRQMY/","reference_id":"N6CJCO52DHIQJHLPF6HMTC5Z2VKFRQMY","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:44Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N6CJCO52DHIQJHLPF6HMTC5Z2VKFRQMY/"},{"reference_url":"https://security.netapp.com/advisory/ntap-20201023-0004/","reference_id":"ntap-20201023-0004","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:44Z/"}],"url":"https://security.netapp.com/advisory/ntap-20201023-0004/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OMJMTXFJRONFT72YAEQNRFKYZZU4W3HD/","reference_id":"OMJMTXFJRONFT72YAEQNRFKYZZU4W3HD","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:44Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OMJMTXFJRONFT72YAEQNRFKYZZU4W3HD/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4305","reference_id":"RHSA-2020:4305","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4305"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4306","reference_id":"RHSA-2020:4306","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4306"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4307","reference_id":"RHSA-2020:4307","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4307"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4316","reference_id":"RHSA-2020:4316","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4316"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4347","reference_id":"RHSA-2020:4347","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4347"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4348","reference_id":"RHSA-2020:4348","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4348"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4349","reference_id":"RHSA-2020:4349","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4349"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4350","reference_id":"RHSA-2020:4350","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4350"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4352","reference_id":"RHSA-2020:4352","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4352"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5585","reference_id":"RHSA-2020:5585","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5585"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5586","reference_id":"RHSA-2020:5586","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5586"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0530","reference_id":"RHSA-2021:0530","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0530"},{"reference_url":"https://usn.ubuntu.com/4607-1/","reference_id":"USN-4607-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4607-1/"},{"reference_url":"https://usn.ubuntu.com/4607-2/","reference_id":"USN-4607-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4607-2/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XKRGVMZT3EUUWKUA6DBT56FT3UOKPHQ2/","reference_id":"XKRGVMZT3EUUWKUA6DBT56FT3UOKPHQ2","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:44Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XKRGVMZT3EUUWKUA6DBT56FT3UOKPHQ2/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XVPLGNHNJ4UJ6IO6R2XXEKCTCI2DRPDQ/","reference_id":"XVPLGNHNJ4UJ6IO6R2XXEKCTCI2DRPDQ","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:44Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XVPLGNHNJ4UJ6IO6R2XXEKCTCI2DRPDQ/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YCKZAI4AWSKO5O5VDXHFFKNLOZGZ3KEE/","reference_id":"YCKZAI4AWSKO5O5VDXHFFKNLOZGZ3KEE","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:44Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YCKZAI4AWSKO5O5VDXHFFKNLOZGZ3KEE/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z7XEONOP6JB7SD7AMUWZTLZF2L4QD546/","reference_id":"Z7XEONOP6JB7SD7AMUWZTLZF2L4QD546","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:44Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z7XEONOP6JB7SD7AMUWZTLZF2L4QD546/"}],"fixed_packages":[],"aliases":["CVE-2020-14779"],"risk_score":1.6,"exploitability":"0.5","weighted_severity":"3.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rcby-ck9v-eqc5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/96430?format=json","vulnerability_id":"VCID-rxw3-h85j-37aw","summary":"Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Security). Supported versions that are affected are Oracle Java SE: 8u341, 8u345-perf, 11.0.16.1; Oracle GraalVM Enterprise Edition: 20.3.7, 21.3.3 and 22.2.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21626.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21626.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21626","reference_id":"","reference_type":"","scores":[{"value":"0.00146","scoring_system":"epss","scoring_elements":"0.34665","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00146","scoring_system":"epss","scoring_elements":"0.34762","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21626"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21619","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21619"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21624","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21624"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21626","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21626"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21628","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21628"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39399","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39399"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-21835","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-21835"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-21843","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-21843"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2133753","reference_id":"2133753","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2133753"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3ARF4QF4N3X5GSFHXUBWARGLISGKJ33R/","reference_id":"3ARF4QF4N3X5GSFHXUBWARGLISGKJ33R","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-20T16:08:47Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3ARF4QF4N3X5GSFHXUBWARGLISGKJ33R/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3QLQ7OD33W6LT3HWI7VYDFFJLV75Y73K/","reference_id":"3QLQ7OD33W6LT3HWI7VYDFFJLV75Y73K","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-20T16:08:47Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3QLQ7OD33W6LT3HWI7VYDFFJLV75Y73K/"},{"reference_url":"https://security.gentoo.org/glsa/202409-26","reference_id":"GLSA-202409-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-26"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HNGMDNIHAA73BEX6XPA2IMXJSGOKKYE6/","reference_id":"HNGMDNIHAA73BEX6XPA2IMXJSGOKKYE6","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-20T16:08:47Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HNGMDNIHAA73BEX6XPA2IMXJSGOKKYE6/"},{"reference_url":"https://security.netapp.com/advisory/ntap-20221028-0012/","reference_id":"ntap-20221028-0012","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-20T16:08:47Z/"}],"url":"https://security.netapp.com/advisory/ntap-20221028-0012/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PB3CIGOFG7CENUVVE4FFZT2HI5FO77XU/","reference_id":"PB3CIGOFG7CENUVVE4FFZT2HI5FO77XU","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-20T16:08:47Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PB3CIGOFG7CENUVVE4FFZT2HI5FO77XU/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:6999","reference_id":"RHSA-2022:6999","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:6999"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7000","reference_id":"RHSA-2022:7000","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7000"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7001","reference_id":"RHSA-2022:7001","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7001"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7002","reference_id":"RHSA-2022:7002","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7002"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7003","reference_id":"RHSA-2022:7003","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7003"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7004","reference_id":"RHSA-2022:7004","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7004"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7005","reference_id":"RHSA-2022:7005","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7005"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7006","reference_id":"RHSA-2022:7006","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7006"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7007","reference_id":"RHSA-2022:7007","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7007"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7008","reference_id":"RHSA-2022:7008","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7008"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7009","reference_id":"RHSA-2022:7009","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7009"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7010","reference_id":"RHSA-2022:7010","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7010"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7011","reference_id":"RHSA-2022:7011","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7011"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7012","reference_id":"RHSA-2022:7012","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7012"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7013","reference_id":"RHSA-2022:7013","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7013"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7049","reference_id":"RHSA-2022:7049","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7049"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7050","reference_id":"RHSA-2022:7050","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7050"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7051","reference_id":"RHSA-2022:7051","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7051"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7052","reference_id":"RHSA-2022:7052","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7052"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7053","reference_id":"RHSA-2022:7053","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7053"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7054","reference_id":"RHSA-2022:7054","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7054"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:8880","reference_id":"RHSA-2022:8880","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:8880"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0128","reference_id":"RHSA-2023:0128","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0128"},{"reference_url":"https://usn.ubuntu.com/5719-1/","reference_id":"USN-5719-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5719-1/"}],"fixed_packages":[],"aliases":["CVE-2022-21626"],"risk_score":2.4,"exploitability":"0.5","weighted_severity":"4.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rxw3-h85j-37aw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/96735?format=json","vulnerability_id":"VCID-spbd-ep4q-t3cr","summary":"Vulnerability in the Java SE product of Oracle Java SE (component: JavaFX). The supported version that is affected is Java SE: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 8.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H).","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14664.json","reference_id":"","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14664.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14664","reference_id":"","reference_type":"","scores":[{"value":"0.01068","scoring_system":"epss","scoring_elements":"0.78062","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01068","scoring_system":"epss","scoring_elements":"0.7809","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14664"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14664","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14664"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1866027","reference_id":"1866027","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1866027"},{"reference_url":"https://security.gentoo.org/glsa/202209-15","reference_id":"GLSA-202209-15","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-27T17:54:50Z/"}],"url":"https://security.gentoo.org/glsa/202209-15"},{"reference_url":"https://security.gentoo.org/glsa/202409-26","reference_id":"GLSA-202409-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-26"},{"reference_url":"https://security.netapp.com/advisory/ntap-20200717-0005/","reference_id":"ntap-20200717-0005","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-27T17:54:50Z/"}],"url":"https://security.netapp.com/advisory/ntap-20200717-0005/"},{"reference_url":"https://www.zerodayinitiative.com/advisories/ZDI-20-897/","reference_id":"ZDI-20-897","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-27T17:54:50Z/"}],"url":"https://www.zerodayinitiative.com/advisories/ZDI-20-897/"}],"fixed_packages":[],"aliases":["CVE-2020-14664"],"risk_score":3.8,"exploitability":"0.5","weighted_severity":"7.5","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-spbd-ep4q-t3cr"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6945?format=json","vulnerability_id":"VCID-v59b-dnzb-a7g9","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-35588.json","reference_id":"","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-35588.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-35588","reference_id":"","reference_type":"","scores":[{"value":"0.00162","scoring_system":"epss","scoring_elements":"0.36808","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00162","scoring_system":"epss","scoring_elements":"0.369","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-35588"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2015659","reference_id":"2015659","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2015659"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6EUURAQOIJYFZHQ7DFZCO6IKDPIAWTNK/","reference_id":"6EUURAQOIJYFZHQ7DFZCO6IKDPIAWTNK","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-26T19:11:40Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6EUURAQOIJYFZHQ7DFZCO6IKDPIAWTNK/"},{"reference_url":"https://security.archlinux.org/AVG-2479","reference_id":"AVG-2479","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2479"},{"reference_url":"https://security.gentoo.org/glsa/202209-05","reference_id":"GLSA-202209-05","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-26T19:11:40Z/"}],"url":"https://security.gentoo.org/glsa/202209-05"},{"reference_url":"https://security.gentoo.org/glsa/202409-26","reference_id":"GLSA-202409-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-26"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GTYZWIXDFUV2H57YQZJWPOD3BC3I3EIQ/","reference_id":"GTYZWIXDFUV2H57YQZJWPOD3BC3I3EIQ","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-26T19:11:40Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GTYZWIXDFUV2H57YQZJWPOD3BC3I3EIQ/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GXTUWAWXVU37GRNIG4TPMA47THO6VAE6/","reference_id":"GXTUWAWXVU37GRNIG4TPMA47THO6VAE6","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-26T19:11:40Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GXTUWAWXVU37GRNIG4TPMA47THO6VAE6/"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2021/11/msg00008.html","reference_id":"msg00008.html","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-26T19:11:40Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2021/11/msg00008.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20240621-0006/","reference_id":"ntap-20240621-0006","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-26T19:11:40Z/"}],"url":"https://security.netapp.com/advisory/ntap-20240621-0006/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3884","reference_id":"RHSA-2021:3884","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3884"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3885","reference_id":"RHSA-2021:3885","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3885"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3889","reference_id":"RHSA-2021:3889","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3889"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3893","reference_id":"RHSA-2021:3893","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3893"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3960","reference_id":"RHSA-2021:3960","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3960"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3961","reference_id":"RHSA-2021:3961","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3961"},{"reference_url":"https://usn.ubuntu.com/5202-1/","reference_id":"USN-5202-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5202-1/"}],"fixed_packages":[],"aliases":["CVE-2021-35588"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-v59b-dnzb-a7g9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/96385?format=json","vulnerability_id":"VCID-wcyb-taz1-nkhh","summary":"Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Java SE, Java SE Embedded accessible data. Note: Applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.1 Base Score 3.7 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N).","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14797.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14797.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14797","reference_id":"","reference_type":"","scores":[{"value":"0.00161","scoring_system":"epss","scoring_elements":"0.36758","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00161","scoring_system":"epss","scoring_elements":"0.36665","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14797"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14779","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14779"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14781","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14781"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14782","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14782"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14792","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14792"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14796","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14796"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14797","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14797"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14798","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14798"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14803","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14803"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1889717","reference_id":"1889717","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1889717"},{"reference_url":"https://www.debian.org/security/2020/dsa-4779","reference_id":"dsa-4779","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:18Z/"}],"url":"https://www.debian.org/security/2020/dsa-4779"},{"reference_url":"https://security.gentoo.org/glsa/202101-19","reference_id":"GLSA-202101-19","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:18Z/"}],"url":"https://security.gentoo.org/glsa/202101-19"},{"reference_url":"https://security.gentoo.org/glsa/202409-26","reference_id":"GLSA-202409-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-26"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2020/10/msg00031.html","reference_id":"msg00031.html","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:18Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2020/10/msg00031.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00041.html","reference_id":"msg00041.html","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:18Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00041.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20201023-0004/","reference_id":"ntap-20201023-0004","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:18Z/"}],"url":"https://security.netapp.com/advisory/ntap-20201023-0004/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4305","reference_id":"RHSA-2020:4305","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4305"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4306","reference_id":"RHSA-2020:4306","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4306"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4307","reference_id":"RHSA-2020:4307","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4307"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4316","reference_id":"RHSA-2020:4316","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4316"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4347","reference_id":"RHSA-2020:4347","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4347"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4348","reference_id":"RHSA-2020:4348","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4348"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4349","reference_id":"RHSA-2020:4349","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4349"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4350","reference_id":"RHSA-2020:4350","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4350"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4352","reference_id":"RHSA-2020:4352","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4352"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5585","reference_id":"RHSA-2020:5585","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5585"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5586","reference_id":"RHSA-2020:5586","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5586"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0530","reference_id":"RHSA-2021:0530","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0530"},{"reference_url":"https://usn.ubuntu.com/4607-1/","reference_id":"USN-4607-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4607-1/"},{"reference_url":"https://usn.ubuntu.com/4607-2/","reference_id":"USN-4607-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4607-2/"}],"fixed_packages":[],"aliases":["CVE-2020-14797"],"risk_score":1.6,"exploitability":"0.5","weighted_severity":"3.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wcyb-taz1-nkhh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/96386?format=json","vulnerability_id":"VCID-ws2t-dv43-gkdv","summary":"Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 3.1 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N).","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14798.json","reference_id":"","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14798.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14798","reference_id":"","reference_type":"","scores":[{"value":"0.00246","scoring_system":"epss","scoring_elements":"0.48164","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00246","scoring_system":"epss","scoring_elements":"0.48101","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14798"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14779","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14779"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14781","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14781"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14782","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14782"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14792","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14792"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14796","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14796"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14797","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14797"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14798","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14798"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14803","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14803"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1891135","reference_id":"1891135","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1891135"},{"reference_url":"https://www.debian.org/security/2020/dsa-4779","reference_id":"dsa-4779","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:17Z/"}],"url":"https://www.debian.org/security/2020/dsa-4779"},{"reference_url":"https://security.gentoo.org/glsa/202101-19","reference_id":"GLSA-202101-19","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:17Z/"}],"url":"https://security.gentoo.org/glsa/202101-19"},{"reference_url":"https://security.gentoo.org/glsa/202409-26","reference_id":"GLSA-202409-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-26"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2020/10/msg00031.html","reference_id":"msg00031.html","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:17Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2020/10/msg00031.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00041.html","reference_id":"msg00041.html","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:17Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00041.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20201023-0004/","reference_id":"ntap-20201023-0004","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:17Z/"}],"url":"https://security.netapp.com/advisory/ntap-20201023-0004/"},{"reference_url":"https://usn.ubuntu.com/4607-1/","reference_id":"USN-4607-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4607-1/"},{"reference_url":"https://usn.ubuntu.com/4607-2/","reference_id":"USN-4607-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4607-2/"}],"fixed_packages":[],"aliases":["CVE-2020-14798"],"risk_score":1.4,"exploitability":"0.5","weighted_severity":"2.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ws2t-dv43-gkdv"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/96434?format=json","vulnerability_id":"VCID-x1kg-b1un-xkfm","summary":"Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Sound).  Supported versions that are affected are Oracle Java SE: 8u351, 8u351-perf, 11.0.17, 17.0.5, 19.0.1; Oracle GraalVM Enterprise Edition: 20.3.8, 21.3.4 and  22.3.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition.  Successful attacks of this vulnerability can result in  unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 3.7 (Integrity impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N).","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-21843.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-21843.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-21843","reference_id":"","reference_type":"","scores":[{"value":"0.0011","scoring_system":"epss","scoring_elements":"0.28983","published_at":"2026-06-04T12:55:00Z"},{"value":"0.0011","scoring_system":"epss","scoring_elements":"0.29052","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-21843"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21618","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21618"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21619","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21619"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21624","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21624"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21626","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21626"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21628","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21628"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39399","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39399"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-21835","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-21835"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-21843","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-21843"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2160475","reference_id":"2160475","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2160475"},{"reference_url":"https://security.gentoo.org/glsa/202409-26","reference_id":"GLSA-202409-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-26"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0190","reference_id":"RHSA-2023:0190","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0190"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0191","reference_id":"RHSA-2023:0191","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0191"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0192","reference_id":"RHSA-2023:0192","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0192"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0193","reference_id":"RHSA-2023:0193","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0193"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0194","reference_id":"RHSA-2023:0194","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0194"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0195","reference_id":"RHSA-2023:0195","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0195"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0196","reference_id":"RHSA-2023:0196","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0196"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0197","reference_id":"RHSA-2023:0197","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0197"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0198","reference_id":"RHSA-2023:0198","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0198"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0199","reference_id":"RHSA-2023:0199","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0199"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0200","reference_id":"RHSA-2023:0200","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0200"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0201","reference_id":"RHSA-2023:0201","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0201"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0202","reference_id":"RHSA-2023:0202","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0202"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0203","reference_id":"RHSA-2023:0203","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0203"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0204","reference_id":"RHSA-2023:0204","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0204"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0205","reference_id":"RHSA-2023:0205","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0205"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0206","reference_id":"RHSA-2023:0206","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0206"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0207","reference_id":"RHSA-2023:0207","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0207"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0208","reference_id":"RHSA-2023:0208","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0208"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0209","reference_id":"RHSA-2023:0209","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0209"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0210","reference_id":"RHSA-2023:0210","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0210"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0352","reference_id":"RHSA-2023:0352","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0352"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0353","reference_id":"RHSA-2023:0353","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0353"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0354","reference_id":"RHSA-2023:0354","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0354"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0387","reference_id":"RHSA-2023:0387","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0387"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0388","reference_id":"RHSA-2023:0388","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0388"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0389","reference_id":"RHSA-2023:0389","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0389"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3136","reference_id":"RHSA-2023:3136","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3136"},{"reference_url":"https://usn.ubuntu.com/5897-1/","reference_id":"USN-5897-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5897-1/"},{"reference_url":"https://usn.ubuntu.com/5898-1/","reference_id":"USN-5898-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5898-1/"}],"fixed_packages":[],"aliases":["CVE-2023-21843"],"risk_score":1.6,"exploitability":"0.5","weighted_severity":"3.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-x1kg-b1un-xkfm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/96452?format=json","vulnerability_id":"VCID-xzgt-fz3r-tufu","summary":"Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Serialization).  Supported versions that are affected are Oracle Java SE: 8u351, 8u351-perf; Oracle GraalVM Enterprise Edition: 20.3.8 and  21.3.4. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition.  Successful attacks of this vulnerability can result in  unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 5.3 (Integrity impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N).","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-21830.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-21830.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-21830","reference_id":"","reference_type":"","scores":[{"value":"0.00135","scoring_system":"epss","scoring_elements":"0.32988","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00135","scoring_system":"epss","scoring_elements":"0.33092","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-21830"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2160490","reference_id":"2160490","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2160490"},{"reference_url":"https://www.oracle.com/security-alerts/cpujul2023.html","reference_id":"cpujul2023.html","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-24T22:10:55Z/"}],"url":"https://www.oracle.com/security-alerts/cpujul2023.html"},{"reference_url":"https://security.gentoo.org/glsa/202409-26","reference_id":"GLSA-202409-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-26"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0203","reference_id":"RHSA-2023:0203","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0203"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0204","reference_id":"RHSA-2023:0204","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0204"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0205","reference_id":"RHSA-2023:0205","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0205"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0206","reference_id":"RHSA-2023:0206","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0206"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0207","reference_id":"RHSA-2023:0207","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0207"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0208","reference_id":"RHSA-2023:0208","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0208"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0209","reference_id":"RHSA-2023:0209","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0209"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0210","reference_id":"RHSA-2023:0210","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0210"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0354","reference_id":"RHSA-2023:0354","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0354"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0387","reference_id":"RHSA-2023:0387","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0387"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3136","reference_id":"RHSA-2023:3136","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3136"},{"reference_url":"https://usn.ubuntu.com/5898-1/","reference_id":"USN-5898-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5898-1/"}],"fixed_packages":[],"aliases":["CVE-2023-21830"],"risk_score":2.4,"exploitability":"0.5","weighted_severity":"4.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xzgt-fz3r-tufu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/96376?format=json","vulnerability_id":"VCID-y69k-6jjd-h3bk","summary":"Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: 2D). Supported versions that are affected are Java SE: 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Java SE Embedded accessible data. Note: Applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.1 Base Score 3.7 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N).","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14581.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14581.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14581","reference_id":"","reference_type":"","scores":[{"value":"0.00385","scoring_system":"epss","scoring_elements":"0.60064","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00385","scoring_system":"epss","scoring_elements":"0.60017","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14581"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14556","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14556"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14562","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14562"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14573","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14573"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14577","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14577"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14578","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14578"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14579","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14579"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14581","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14581"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14583","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14583"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14593","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14593"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14621","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14621"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1857172","reference_id":"1857172","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1857172"},{"reference_url":"https://usn.ubuntu.com/4433-1/","reference_id":"4433-1","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:50Z/"}],"url":"https://usn.ubuntu.com/4433-1/"},{"reference_url":"https://usn.ubuntu.com/4453-1/","reference_id":"4453-1","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:50Z/"}],"url":"https://usn.ubuntu.com/4453-1/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6CFJPOYF3CWYEPCDOAOCNFJTQIKKWPHW/","reference_id":"6CFJPOYF3CWYEPCDOAOCNFJTQIKKWPHW","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:50Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6CFJPOYF3CWYEPCDOAOCNFJTQIKKWPHW/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DFZ36XIW5ENQAW6BB7WHRFFTTJX7KGMR/","reference_id":"DFZ36XIW5ENQAW6BB7WHRFFTTJX7KGMR","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:50Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DFZ36XIW5ENQAW6BB7WHRFFTTJX7KGMR/"},{"reference_url":"https://www.debian.org/security/2020/dsa-4734","reference_id":"dsa-4734","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:50Z/"}],"url":"https://www.debian.org/security/2020/dsa-4734"},{"reference_url":"https://security.gentoo.org/glsa/202209-15","reference_id":"GLSA-202209-15","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:50Z/"}],"url":"https://security.gentoo.org/glsa/202209-15"},{"reference_url":"https://security.gentoo.org/glsa/202409-26","reference_id":"GLSA-202409-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-26"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MEPHBZPNSLX43B26DWKB7OS6AROTS2BO/","reference_id":"MEPHBZPNSLX43B26DWKB7OS6AROTS2BO","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:50Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MEPHBZPNSLX43B26DWKB7OS6AROTS2BO/"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00019.html","reference_id":"msg00019.html","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:50Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00019.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2020/08/msg00021.html","reference_id":"msg00021.html","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:50Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2020/08/msg00021.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00027.html","reference_id":"msg00027.html","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:50Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00027.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00041.html","reference_id":"msg00041.html","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:50Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00041.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20200717-0005/","reference_id":"ntap-20200717-0005","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:50Z/"}],"url":"https://security.netapp.com/advisory/ntap-20200717-0005/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QQUMIAON2YEFRONMIUVHAKYCIOLICDBA/","reference_id":"QQUMIAON2YEFRONMIUVHAKYCIOLICDBA","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:50Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QQUMIAON2YEFRONMIUVHAKYCIOLICDBA/"}],"fixed_packages":[],"aliases":["CVE-2020-14581"],"risk_score":1.6,"exploitability":"0.5","weighted_severity":"3.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-y69k-6jjd-h3bk"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/96432?format=json","vulnerability_id":"VCID-ytpy-r3q9-qbc9","summary":"Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Oracle Java SE: 11.0.16.1, 17.0.4.1, 19; Oracle GraalVM Enterprise Edition: 20.3.7, 21.3.3 and 22.2.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 3.7 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N).","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-39399.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-39399.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-39399","reference_id":"","reference_type":"","scores":[{"value":"0.00215","scoring_system":"epss","scoring_elements":"0.44059","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00215","scoring_system":"epss","scoring_elements":"0.44128","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-39399"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21618","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21618"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21619","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21619"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21624","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21624"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21626","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21626"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21628","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21628"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39399","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39399"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-21835","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-21835"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-21843","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-21843"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2133776","reference_id":"2133776","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2133776"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/37QDWJBGEPP65X43NXQTXQ7KASLUHON6/","reference_id":"37QDWJBGEPP65X43NXQTXQ7KASLUHON6","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-17T17:04:36Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/37QDWJBGEPP65X43NXQTXQ7KASLUHON6/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EXSBV3W6EP6B7XJ63Z2FPVBH6HAPGJ5T/","reference_id":"EXSBV3W6EP6B7XJ63Z2FPVBH6HAPGJ5T","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-17T17:04:36Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EXSBV3W6EP6B7XJ63Z2FPVBH6HAPGJ5T/"},{"reference_url":"https://security.gentoo.org/glsa/202409-26","reference_id":"GLSA-202409-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-26"},{"reference_url":"https://security.netapp.com/advisory/ntap-20221028-0012/","reference_id":"ntap-20221028-0012","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-17T17:04:36Z/"}],"url":"https://security.netapp.com/advisory/ntap-20221028-0012/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:6999","reference_id":"RHSA-2022:6999","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:6999"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7000","reference_id":"RHSA-2022:7000","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7000"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7001","reference_id":"RHSA-2022:7001","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7001"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7008","reference_id":"RHSA-2022:7008","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7008"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7009","reference_id":"RHSA-2022:7009","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7009"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7010","reference_id":"RHSA-2022:7010","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7010"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7011","reference_id":"RHSA-2022:7011","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7011"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7012","reference_id":"RHSA-2022:7012","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7012"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7013","reference_id":"RHSA-2022:7013","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7013"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7051","reference_id":"RHSA-2022:7051","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7051"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7052","reference_id":"RHSA-2022:7052","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7052"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7053","reference_id":"RHSA-2022:7053","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7053"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7054","reference_id":"RHSA-2022:7054","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7054"},{"reference_url":"https://usn.ubuntu.com/5719-1/","reference_id":"USN-5719-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5719-1/"}],"fixed_packages":[],"aliases":["CVE-2022-39399"],"risk_score":1.6,"exploitability":"0.5","weighted_severity":"3.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ytpy-r3q9-qbc9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3313?format=json","vulnerability_id":"VCID-zsyv-sfjk-2bbw","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2388.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2388.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-2388","reference_id":"","reference_type":"","scores":[{"value":"0.00805","scoring_system":"epss","scoring_elements":"0.74524","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00805","scoring_system":"epss","scoring_elements":"0.74491","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-2388"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-2341","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-2341"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-2369","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-2369"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-2388","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-2388"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1983075","reference_id":"1983075","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1983075"},{"reference_url":"https://security.archlinux.org/ASA-202107-53","reference_id":"ASA-202107-53","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202107-53"},{"reference_url":"https://security.archlinux.org/ASA-202107-54","reference_id":"ASA-202107-54","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202107-54"},{"reference_url":"https://security.archlinux.org/ASA-202107-65","reference_id":"ASA-202107-65","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202107-65"},{"reference_url":"https://security.archlinux.org/ASA-202107-66","reference_id":"ASA-202107-66","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202107-66"},{"reference_url":"https://security.archlinux.org/AVG-2188","reference_id":"AVG-2188","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2188"},{"reference_url":"https://security.archlinux.org/AVG-2189","reference_id":"AVG-2189","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2189"},{"reference_url":"https://security.archlinux.org/AVG-2190","reference_id":"AVG-2190","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2190"},{"reference_url":"https://www.debian.org/security/2021/dsa-4946","reference_id":"dsa-4946","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-26T13:58:23Z/"}],"url":"https://www.debian.org/security/2021/dsa-4946"},{"reference_url":"https://security.gentoo.org/glsa/202209-05","reference_id":"GLSA-202209-05","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-26T13:58:23Z/"}],"url":"https://security.gentoo.org/glsa/202209-05"},{"reference_url":"https://security.gentoo.org/glsa/202409-26","reference_id":"GLSA-202409-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-26"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2021/08/msg00011.html","reference_id":"msg00011.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-26T13:58:23Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2021/08/msg00011.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20210723-0002/","reference_id":"ntap-20210723-0002","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-26T13:58:23Z/"}],"url":"https://security.netapp.com/advisory/ntap-20210723-0002/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2774","reference_id":"RHSA-2021:2774","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2774"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2775","reference_id":"RHSA-2021:2775","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2775"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2776","reference_id":"RHSA-2021:2776","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2776"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2777","reference_id":"RHSA-2021:2777","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2777"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2778","reference_id":"RHSA-2021:2778","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2778"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2779","reference_id":"RHSA-2021:2779","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2779"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2780","reference_id":"RHSA-2021:2780","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2780"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2781","reference_id":"RHSA-2021:2781","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2781"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2782","reference_id":"RHSA-2021:2782","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2782"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2783","reference_id":"RHSA-2021:2783","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2783"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2784","reference_id":"RHSA-2021:2784","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2784"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2845","reference_id":"RHSA-2021:2845","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2845"},{"reference_url":"https://usn.ubuntu.com/5202-1/","reference_id":"USN-5202-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5202-1/"}],"fixed_packages":[],"aliases":["CVE-2021-2388"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zsyv-sfjk-2bbw"}],"fixing_vulnerabilities":[],"risk_score":"4.0","resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-java/icedtea@3.21.0"}