{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/5925?format=json","vulnerability_id":"VCID-94qb-t2pd-jufu","summary":"","aliases":[{"alias":"CVE-2019-1002101"},{"alias":"GHSA-34jx-wx69-9x8v"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/50064?format=json","purl":"pkg:deb/debian/kubernetes@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/kubernetes@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/50065?format=json","purl":"pkg:deb/debian/kubernetes@1.20.5%2Breally1.20.2-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-nfzh-1ucd-hbcm"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/kubernetes@1.20.5%252Breally1.20.2-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/50063?format=json","purl":"pkg:deb/debian/kubernetes@1.20.5%2Breally1.20.2-1.1%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/kubernetes@1.20.5%252Breally1.20.2-1.1%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/50067?format=json","purl":"pkg:deb/debian/kubernetes@1.32.3%2Bds-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/kubernetes@1.32.3%252Bds-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/50066?format=json","purl":"pkg:deb/debian/kubernetes@1.33.4%2Bds-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/kubernetes@1.33.4%252Bds-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/384167?format=json","purl":"pkg:golang/k8s.io/kubernetes@1.11.9","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:golang/k8s.io/kubernetes@1.11.9"},{"url":"http://public2.vulnerablecode.io/api/packages/384168?format=json","purl":"pkg:golang/k8s.io/kubernetes@1.12.7","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:golang/k8s.io/kubernetes@1.12.7"},{"url":"http://public2.vulnerablecode.io/api/packages/384169?format=json","purl":"pkg:golang/k8s.io/kubernetes@1.13.5","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:golang/k8s.io/kubernetes@1.13.5"}],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/347963?format=json","purl":"pkg:rpm/redhat/ansible-service-broker@1.1.20-1?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-94qb-t2pd-jufu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ansible-service-broker@1.1.20-1%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/347975?format=json","purl":"pkg:rpm/redhat/atomic-enterprise-service-catalog@1:3.10.127-1.git.55.b54f8c7?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-94qb-t2pd-jufu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/atomic-enterprise-service-catalog@1:3.10.127-1.git.55.b54f8c7%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/347967?format=json","purl":"pkg:rpm/redhat/atomic-enterprise-service-catalog@1:3.11.98-1.git.0.a7877b0?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-94qb-t2pd-jufu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/atomic-enterprise-service-catalog@1:3.11.98-1.git.0.a7877b0%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/347985?format=json","purl":"pkg:rpm/redhat/atomic-openshift@3.9.74-1.git.0.78e56ea?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-94qb-t2pd-jufu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/atomic-openshift@3.9.74-1.git.0.78e56ea%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/347973?format=json","purl":"pkg:rpm/redhat/atomic-openshift@3.10.127-1.git.0.dab74c6?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-94qb-t2pd-jufu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/atomic-openshift@3.10.127-1.git.0.dab74c6%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/347957?format=json","purl":"pkg:rpm/redhat/atomic-openshift@3.11.98-1.git.0.0cbaff3?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-94qb-t2pd-jufu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/atomic-openshift@3.11.98-1.git.0.0cbaff3%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/347960?format=json","purl":"pkg:rpm/redhat/atomic-openshift-cluster-autoscaler@3.11.98-1.git.0.3b82207?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-94qb-t2pd-jufu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/atomic-openshift-cluster-autoscaler@3.11.98-1.git.0.3b82207%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/347959?format=json","purl":"pkg:rpm/redhat/atomic-openshift-descheduler@3.10.127-1.git.153.bc1eddd?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-94qb-t2pd-jufu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/atomic-openshift-descheduler@3.10.127-1.git.153.bc1eddd%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/347956?format=json","purl":"pkg:rpm/redhat/atomic-openshift-descheduler@3.11.98-1.git.153.6c2426d?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-94qb-t2pd-jufu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/atomic-openshift-descheduler@3.11.98-1.git.153.6c2426d%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/347984?format=json","purl":"pkg:rpm/redhat/atomic-openshift-dockerregistry@3.9.74-1.git.0.b102e93?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-94qb-t2pd-jufu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/atomic-openshift-dockerregistry@3.9.74-1.git.0.b102e93%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/347961?format=json","purl":"pkg:rpm/redhat/atomic-openshift-dockerregistry@3.10.127-1.git.0.f8aa6dd?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-94qb-t2pd-jufu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/atomic-openshift-dockerregistry@3.10.127-1.git.0.f8aa6dd%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/347974?format=json","purl":"pkg:rpm/redhat/atomic-openshift-dockerregistry@3.11.98-1.git.0.27979f1?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-94qb-t2pd-jufu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/atomic-openshift-dockerregistry@3.11.98-1.git.0.27979f1%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/347983?format=json","purl":"pkg:rpm/redhat/atomic-openshift-metrics-server@3.11.98-1.git.52.0623d01?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-94qb-t2pd-jufu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/atomic-openshift-metrics-server@3.11.98-1.git.52.0623d01%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/347986?format=json","purl":"pkg:rpm/redhat/atomic-openshift-node-problem-detector@3.10.127-1.git.0.4f5519b?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-94qb-t2pd-jufu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/atomic-openshift-node-problem-detector@3.10.127-1.git.0.4f5519b%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/347970?format=json","purl":"pkg:rpm/redhat/atomic-openshift-node-problem-detector@3.11.98-1.git.0.83348c7?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-94qb-t2pd-jufu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/atomic-openshift-node-problem-detector@3.11.98-1.git.0.83348c7%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/347977?format=json","purl":"pkg:rpm/redhat/atomic-openshift-service-idler@3.11.98-1.git.14.1793066?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-94qb-t2pd-jufu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/atomic-openshift-service-idler@3.11.98-1.git.14.1793066%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/347971?format=json","purl":"pkg:rpm/redhat/atomic-openshift-web-console@3.9.74-1.git.50.93129da?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-94qb-t2pd-jufu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/atomic-openshift-web-console@3.9.74-1.git.50.93129da%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/347976?format=json","purl":"pkg:rpm/redhat/atomic-openshift-web-console@3.10.127-1.git.50.eab7949?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-94qb-t2pd-jufu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/atomic-openshift-web-console@3.10.127-1.git.50.eab7949%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/347952?format=json","purl":"pkg:rpm/redhat/atomic-openshift-web-console@3.11.98-1.git.50.bd70c76?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-94qb-t2pd-jufu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/atomic-openshift-web-console@3.11.98-1.git.50.bd70c76%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/347969?format=json","purl":"pkg:rpm/redhat/cri-o@1.9.16-1.git78b2041?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-94qb-t2pd-jufu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/cri-o@1.9.16-1.git78b2041%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/347953?format=json","purl":"pkg:rpm/redhat/golang-github-openshift-oauth-proxy@3.11.98-1.git.0.fd9716c?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-94qb-t2pd-jufu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/golang-github-openshift-oauth-proxy@3.11.98-1.git.0.fd9716c%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/347978?format=json","purl":"pkg:rpm/redhat/golang-github-prometheus-alertmanager@3.11.98-1.git.92.7ebe477?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-94qb-t2pd-jufu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/golang-github-prometheus-alertmanager@3.11.98-1.git.92.7ebe477%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/347987?format=json","purl":"pkg:rpm/redhat/golang-github-prometheus-node_exporter@3.9.74-1.git.0.2ab615c?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-94qb-t2pd-jufu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/golang-github-prometheus-node_exporter@3.9.74-1.git.0.2ab615c%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/347955?format=json","purl":"pkg:rpm/redhat/golang-github-prometheus-node_exporter@3.10.127-1.git.0.8ebe819?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-94qb-t2pd-jufu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/golang-github-prometheus-node_exporter@3.10.127-1.git.0.8ebe819%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/347958?format=json","purl":"pkg:rpm/redhat/golang-github-prometheus-node_exporter@3.11.98-1.git.0.b02f11c?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-94qb-t2pd-jufu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/golang-github-prometheus-node_exporter@3.11.98-1.git.0.b02f11c%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/347954?format=json","purl":"pkg:rpm/redhat/golang-github-prometheus-prometheus@3.11.98-1.git.0.61907ad?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-94qb-t2pd-jufu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/golang-github-prometheus-prometheus@3.11.98-1.git.0.61907ad%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/347966?format=json","purl":"pkg:rpm/redhat/openshift-ansible@3.9.74-1.git.0.70a0a63?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-94qb-t2pd-jufu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openshift-ansible@3.9.74-1.git.0.70a0a63%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/347965?format=json","purl":"pkg:rpm/redhat/openshift-ansible@3.10.127-1.git.0.131da09?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-94qb-t2pd-jufu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openshift-ansible@3.10.127-1.git.0.131da09%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/347968?format=json","purl":"pkg:rpm/redhat/openshift-ansible@3.11.98-1.git.0.3cfa7c3?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-94qb-t2pd-jufu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openshift-ansible@3.11.98-1.git.0.3cfa7c3%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/347962?format=json","purl":"pkg:rpm/redhat/openshift-enterprise-autoheal@3.11.98-1.git.0.6737a19?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-94qb-t2pd-jufu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openshift-enterprise-autoheal@3.11.98-1.git.0.6737a19%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/347981?format=json","purl":"pkg:rpm/redhat/openshift-enterprise-cluster-capacity@3.10.127-1.git.0.44580c6?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-94qb-t2pd-jufu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openshift-enterprise-cluster-capacity@3.10.127-1.git.0.44580c6%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/347980?format=json","purl":"pkg:rpm/redhat/openshift-enterprise-cluster-capacity@3.11.98-1.git.0.deb9250?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-94qb-t2pd-jufu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openshift-enterprise-cluster-capacity@3.11.98-1.git.0.deb9250%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/347964?format=json","purl":"pkg:rpm/redhat/python-certifi@2018.4.16-2?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-94qb-t2pd-jufu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python-certifi@2018.4.16-2%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/347979?format=json","purl":"pkg:rpm/redhat/python-docker@2.4.2-2?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-7hmy-p927-akff"},{"vulnerability":"VCID-94qb-t2pd-jufu"},{"vulnerability":"VCID-mhqz-3aw4-qfcr"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python-docker@2.4.2-2%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/347982?format=json","purl":"pkg:rpm/redhat/python-libcloud@2.2.1-20180102gitd701bf9?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-94qb-t2pd-jufu"},{"vulnerability":"VCID-ddfq-gmcj-bqc5"},{"vulnerability":"VCID-pd9e-z11q-5fc9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python-libcloud@2.2.1-20180102gitd701bf9%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/347972?format=json","purl":"pkg:rpm/redhat/rubygem-fluent-plugin-viaq_data_model@0.0.18-1?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-94qb-t2pd-jufu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rubygem-fluent-plugin-viaq_data_model@0.0.18-1%3Farch=el7"}],"references":[{"reference_url":"https://access.redhat.com/errata/RHBA-2019:0619","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHBA-2019:0619"},{"reference_url":"https://access.redhat.com/errata/RHBA-2019:0620","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHBA-2019:0620"},{"reference_url":"https://access.redhat.com/errata/RHBA-2019:0636","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHBA-2019:0636"},{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-1002101.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-1002101.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-1002101","reference_id":"","reference_type":"","scores":[{"value":"0.49935","scoring_system":"epss","scoring_elements":"0.97886","published_at":"2026-06-12T12:55:00Z"},{"value":"0.49935","scoring_system":"epss","scoring_elements":"0.97877","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-1002101"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/kubernetes/kubernetes/commit/47063891dd782835170f500a83f37cc98c3c1013","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/kubernetes/kubernetes/commit/47063891dd782835170f500a83f37cc98c3c1013"},{"reference_url":"https://github.com/kubernetes/kubernetes/pull/75037","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/kubernetes/kubernetes/pull/75037"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BPV2RE5RMOGUVP5WJMXKQJZUBBLAFZPZ","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BPV2RE5RMOGUVP5WJMXKQJZUBBLAFZPZ"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QZB7E3DOZ5WDG46XAIU6K32CXHXPXB2F","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QZB7E3DOZ5WDG46XAIU6K32CXHXPXB2F"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2019-1002101","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2019-1002101"},{"reference_url":"https://www.twistlock.com/labs-blog/disclosing-directory-traversal-vulnerability-kubernetes-copy-cve-2019-1002101","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.twistlock.com/labs-blog/disclosing-directory-traversal-vulnerability-kubernetes-copy-cve-2019-1002101"},{"reference_url":"http://www.openwall.com/lists/oss-security/2019/06/21/1","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://www.openwall.com/lists/oss-security/2019/06/21/1"},{"reference_url":"http://www.openwall.com/lists/oss-security/2019/08/05/5","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://www.openwall.com/lists/oss-security/2019/08/05/5"},{"reference_url":"http://www.securityfocus.com/bid/107652","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://www.securityfocus.com/bid/107652"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1685213","reference_id":"1685213","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1685213"}],"weaknesses":[{"cwe_id":59,"name":"Improper Link Resolution Before File Access ('Link Following')","description":"The product attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource."}],"exploits":[],"severity_range_score":"4.0 - 6.9","exploitability":"0.5","weighted_severity":"6.2","risk_score":3.1,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-94qb-t2pd-jufu"}