VulnerableCode Vulnerability Details

Search for vulnerabilities

Vulnerability details: VCID-61j5-aj1z-aaaq

Essentials
Severities (155)
References (77)
Severity details (63)
Exploits (0)
EPSS
History (0)

Vulnerability ID	VCID-61j5-aj1z-aaaq
Aliases	CVE-2021-22924
Summary	libcurl keeps previously used connections in a connection pool for subsequenttransfers to reuse, if one of them matches the setup.Due to errors in the logic, the config matching function did not take 'issuercert' into account and it compared the involved paths case insensitively,which could lead to libcurl reusing wrong connections.File paths are, or can be, case sensitive on many systems but not all, and caneven vary depending on used file systems.The comparison also didn't include the 'issuer cert' which a transfer can setto qualify how to verify the server certificate.
Status	Published
Exploitability	0.5
Weighted Severity	8.0
Risk	4.0
Affected and Fixed Packages	Package Details

Weaknesses (5)

CWE-706	Use of Incorrectly-Resolved Name or Reference
CWE-1035	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
CWE-937	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
CWE-295	Improper Certificate Validation
CWE-20	Improper Input Validation

System	Score	Found at
generic_textual	Medium	http://people.canonical.com/~ubuntu-security/cve/2021/CVE-2021-22924.html
rhas	Moderate	https://access.redhat.com/errata/RHSA-2021:3582
rhas	Moderate	https://access.redhat.com/errata/RHSA-2022:1354
cvssv3	3.7	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-22924.json
epss	0.00149	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00149	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00149	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00149	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00149	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00149	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00149	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00149	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00149	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00149	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00149	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00149	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00153	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00153	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00153	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00153	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00496	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00506	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00506	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00506	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00534	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00534	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00534	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00603	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00603	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00603	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00603	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00658	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00658	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00658	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00658	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00658	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00658	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00658	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00658	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00658	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00658	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00658	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00658	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00658	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00672	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00672	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00672	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00672	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00672	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00672	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00672	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00672	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00672	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00672	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00672	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00672	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00672	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00672	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00708	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00708	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00708	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00708	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00708	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00708	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00708	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00708	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00708	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00708	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00708	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00708	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00708	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00708	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00708	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00708	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00708	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00708	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00708	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00708	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00708	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00708	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00708	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00708	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00708	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00708	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00708	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00708	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00708	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00708	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00708	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00708	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.00708	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
epss	0.05859	https://api.first.org/data/v1/epss?cve=CVE-2021-22924
rhbs	medium	https://bugzilla.redhat.com/show_bug.cgi?id=1981460
cvssv3.1	3.7	https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf
cvssv3.1	8.2	https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf
generic_textual	HIGH	https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf
ssvc	Track	https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf
cvssv3.1	3.7	https://cert-portal.siemens.com/productcert/pdf/ssa-484086.pdf
ssvc	Track	https://cert-portal.siemens.com/productcert/pdf/ssa-484086.pdf
cvssv3.1	3.7	https://cert-portal.siemens.com/productcert/pdf/ssa-732250.pdf
ssvc	Track	https://cert-portal.siemens.com/productcert/pdf/ssa-732250.pdf
cvssv3.1	Medium	https://curl.se/docs/CVE-2021-22924.html
generic_textual	Medium	https://curl.se/docs/CVE-2021-22924.html
generic_textual	Low	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22898
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22924
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22945
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22946
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22947
cvssv3.1	5.4	https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
cvssv3.1	3.7	https://hackerone.com/reports/1223565
ssvc	Track	https://hackerone.com/reports/1223565
cvssv3.1	7.5	https://lists.apache.org/thread.html/r61db8e7dcb56dc000a5387a88f7a473bacec5ee01b9ff3f55308aacc@%3Cdev.kafka.apache.org%3E
generic_textual	HIGH	https://lists.apache.org/thread.html/r61db8e7dcb56dc000a5387a88f7a473bacec5ee01b9ff3f55308aacc@%3Cdev.kafka.apache.org%3E
cvssv3.1	7.5	https://lists.apache.org/thread.html/r61db8e7dcb56dc000a5387a88f7a473bacec5ee01b9ff3f55308aacc@%3Cusers.kafka.apache.org%3E
generic_textual	HIGH	https://lists.apache.org/thread.html/r61db8e7dcb56dc000a5387a88f7a473bacec5ee01b9ff3f55308aacc@%3Cusers.kafka.apache.org%3E
cvssv3.1	3.7	https://lists.apache.org/thread.html/r61db8e7dcb56dc000a5387a88f7a473bacec5ee01b9ff3f55308aacc%40%3Cdev.kafka.apache.org%3E
ssvc	Track	https://lists.apache.org/thread.html/r61db8e7dcb56dc000a5387a88f7a473bacec5ee01b9ff3f55308aacc%40%3Cdev.kafka.apache.org%3E
cvssv3.1	3.7	https://lists.apache.org/thread.html/r61db8e7dcb56dc000a5387a88f7a473bacec5ee01b9ff3f55308aacc%40%3Cusers.kafka.apache.org%3E
ssvc	Track	https://lists.apache.org/thread.html/r61db8e7dcb56dc000a5387a88f7a473bacec5ee01b9ff3f55308aacc%40%3Cusers.kafka.apache.org%3E
cvssv3.1	7.5	https://lists.apache.org/thread.html/rbf4ce74b0d1fa9810dec50ba3ace0caeea677af7c27a97111c06ccb7@%3Cdev.kafka.apache.org%3E
generic_textual	HIGH	https://lists.apache.org/thread.html/rbf4ce74b0d1fa9810dec50ba3ace0caeea677af7c27a97111c06ccb7@%3Cdev.kafka.apache.org%3E
cvssv3.1	7.5	https://lists.apache.org/thread.html/rbf4ce74b0d1fa9810dec50ba3ace0caeea677af7c27a97111c06ccb7@%3Cusers.kafka.apache.org%3E
generic_textual	HIGH	https://lists.apache.org/thread.html/rbf4ce74b0d1fa9810dec50ba3ace0caeea677af7c27a97111c06ccb7@%3Cusers.kafka.apache.org%3E
cvssv3.1	3.7	https://lists.apache.org/thread.html/rbf4ce74b0d1fa9810dec50ba3ace0caeea677af7c27a97111c06ccb7%40%3Cdev.kafka.apache.org%3E
ssvc	Track	https://lists.apache.org/thread.html/rbf4ce74b0d1fa9810dec50ba3ace0caeea677af7c27a97111c06ccb7%40%3Cdev.kafka.apache.org%3E
cvssv3.1	3.7	https://lists.apache.org/thread.html/rbf4ce74b0d1fa9810dec50ba3ace0caeea677af7c27a97111c06ccb7%40%3Cusers.kafka.apache.org%3E
ssvc	Track	https://lists.apache.org/thread.html/rbf4ce74b0d1fa9810dec50ba3ace0caeea677af7c27a97111c06ccb7%40%3Cusers.kafka.apache.org%3E
cvssv3.1	3.7	https://lists.debian.org/debian-lts-announce/2021/08/msg00017.html
ssvc	Track	https://lists.debian.org/debian-lts-announce/2021/08/msg00017.html
cvssv3.1	3.7	https://lists.debian.org/debian-lts-announce/2022/08/msg00017.html
ssvc	Track	https://lists.debian.org/debian-lts-announce/2022/08/msg00017.html
cvssv3.1	3.7	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FRUCW2UVNYUDZF72DQLFQR4PJEC6CF7V/
ssvc	Track	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FRUCW2UVNYUDZF72DQLFQR4PJEC6CF7V/
cvssv2	4.3	https://nvd.nist.gov/vuln/detail/CVE-2021-22924
cvssv3	3.7	https://nvd.nist.gov/vuln/detail/CVE-2021-22924
cvssv3.1	3.7	https://nvd.nist.gov/vuln/detail/CVE-2021-22924
archlinux	Medium	https://security.archlinux.org/AVG-2194
archlinux	Medium	https://security.archlinux.org/AVG-2195
archlinux	Medium	https://security.archlinux.org/AVG-2196
archlinux	Medium	https://security.archlinux.org/AVG-2197
archlinux	Medium	https://security.archlinux.org/AVG-2198
archlinux	Medium	https://security.archlinux.org/AVG-2199
cvssv3.1	3.7	https://security.netapp.com/advisory/ntap-20210902-0003/
ssvc	Track	https://security.netapp.com/advisory/ntap-20210902-0003/
generic_textual	Medium	https://ubuntu.com/security/notices/USN-5021-1
cvssv3.1	3.7	https://www.debian.org/security/2022/dsa-5197
ssvc	Track	https://www.debian.org/security/2022/dsa-5197
cvssv3.1	3.7	https://www.oracle.com/security-alerts/cpujan2022.html
cvssv3.1	6.6	https://www.oracle.com/security-alerts/cpujan2022.html
generic_textual	MODERATE	https://www.oracle.com/security-alerts/cpujan2022.html
ssvc	Track	https://www.oracle.com/security-alerts/cpujan2022.html
cvssv3.1	3.7	https://www.oracle.com/security-alerts/cpuoct2021.html
cvssv3.1	8.2	https://www.oracle.com/security-alerts/cpuoct2021.html
generic_textual	HIGH	https://www.oracle.com/security-alerts/cpuoct2021.html
ssvc	Track	https://www.oracle.com/security-alerts/cpuoct2021.html

Reference id	Reference type	URL
		http://people.canonical.com/~ubuntu-security/cve/2021/CVE-2021-22924.html
		https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-22924.json
		https://api.first.org/data/v1/epss?cve=CVE-2021-22924
		https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf
		https://cert-portal.siemens.com/productcert/pdf/ssa-484086.pdf
		https://cert-portal.siemens.com/productcert/pdf/ssa-732250.pdf
		https://curl.se/docs/CVE-2021-22924.html
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22898
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22924
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22945
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22946
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22947
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22576
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27774
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27775
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27776
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27781
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27782
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32205
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32206
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32207
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32208
		https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
		https://hackerone.com/reports/1223565
		https://lists.apache.org/thread.html/r61db8e7dcb56dc000a5387a88f7a473bacec5ee01b9ff3f55308aacc@%3Cdev.kafka.apache.org%3E
		https://lists.apache.org/thread.html/r61db8e7dcb56dc000a5387a88f7a473bacec5ee01b9ff3f55308aacc@%3Cusers.kafka.apache.org%3E
		https://lists.apache.org/thread.html/r61db8e7dcb56dc000a5387a88f7a473bacec5ee01b9ff3f55308aacc%40%3Cdev.kafka.apache.org%3E
		https://lists.apache.org/thread.html/r61db8e7dcb56dc000a5387a88f7a473bacec5ee01b9ff3f55308aacc%40%3Cusers.kafka.apache.org%3E
		https://lists.apache.org/thread.html/rbf4ce74b0d1fa9810dec50ba3ace0caeea677af7c27a97111c06ccb7@%3Cdev.kafka.apache.org%3E
		https://lists.apache.org/thread.html/rbf4ce74b0d1fa9810dec50ba3ace0caeea677af7c27a97111c06ccb7@%3Cusers.kafka.apache.org%3E
		https://lists.apache.org/thread.html/rbf4ce74b0d1fa9810dec50ba3ace0caeea677af7c27a97111c06ccb7%40%3Cdev.kafka.apache.org%3E
		https://lists.apache.org/thread.html/rbf4ce74b0d1fa9810dec50ba3ace0caeea677af7c27a97111c06ccb7%40%3Cusers.kafka.apache.org%3E
		https://lists.debian.org/debian-lts-announce/2021/08/msg00017.html
		https://lists.debian.org/debian-lts-announce/2022/08/msg00017.html
		https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FRUCW2UVNYUDZF72DQLFQR4PJEC6CF7V/
		https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FRUCW2UVNYUDZF72DQLFQR4PJEC6CF7V/
		https://security.netapp.com/advisory/ntap-20210902-0003/
		https://ubuntu.com/security/notices/USN-5021-1
		https://www.debian.org/security/2022/dsa-5197
		https://www.oracle.com/security-alerts/cpujan2022.html
		https://www.oracle.com/security-alerts/cpuoct2021.html
1981460		https://bugzilla.redhat.com/show_bug.cgi?id=1981460
991492		https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991492
ASA-202107-59		https://security.archlinux.org/ASA-202107-59
ASA-202107-60		https://security.archlinux.org/ASA-202107-60
ASA-202107-61		https://security.archlinux.org/ASA-202107-61
ASA-202107-62		https://security.archlinux.org/ASA-202107-62
ASA-202107-63		https://security.archlinux.org/ASA-202107-63
ASA-202107-64		https://security.archlinux.org/ASA-202107-64
AVG-2194		https://security.archlinux.org/AVG-2194
AVG-2195		https://security.archlinux.org/AVG-2195
AVG-2196		https://security.archlinux.org/AVG-2196
AVG-2197		https://security.archlinux.org/AVG-2197
AVG-2198		https://security.archlinux.org/AVG-2198
AVG-2199		https://security.archlinux.org/AVG-2199
cpe:2.3:a:haxx:libcurl::::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:haxx:libcurl::::::::
cpe:2.3:a:netapp:cloud_backup:-:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:cloud_backup:-:::::::*
cpe:2.3:a:netapp:clustered_data_ontap:-:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:clustered_data_ontap:-:::::::*
cpe:2.3:a:netapp:solidfire_\&_hci_management_node:-:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:solidfire_\&_hci_management_node:-:::::::*
cpe:2.3:a:oracle:mysql_server::::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:mysql_server::::::::
cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.57:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.57:::::::*
cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.58:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.58:::::::*
cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.59:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.59:::::::*
cpe:2.3:a:siemens:sinec_infrastructure_network_services::::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:siemens:sinec_infrastructure_network_services::::::::
cpe:2.3:a:siemens:sinema_remote_connect::::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:siemens:sinema_remote_connect::::::::
cpe:2.3:a:siemens:sinema_remote_connect_server::::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:siemens:sinema_remote_connect_server::::::::
cpe:2.3:a:splunk:universal_forwarder::::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:splunk:universal_forwarder::::::::
cpe:2.3:a:splunk:universal_forwarder:9.1.0:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:splunk:universal_forwarder:9.1.0:::::::*
cpe:2.3:o:debian:debian_linux:10.0:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:::::::*
cpe:2.3:o:debian:debian_linux:11.0:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:11.0:::::::*
cpe:2.3:o:debian:debian_linux:9.0:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:::::::*
cpe:2.3:o:fedoraproject:fedora:33:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:33:::::::*
cpe:2.3:o:netapp:solidfire_baseboard_management_controller_firmware:-:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:netapp:solidfire_baseboard_management_controller_firmware:-:::::::*
CVE-2021-22924		https://nvd.nist.gov/vuln/detail/CVE-2021-22924
RHSA-2021:3582		https://access.redhat.com/errata/RHSA-2021:3582
RHSA-2022:1354		https://access.redhat.com/errata/RHSA-2022:1354
USN-5021-1		https://usn.ubuntu.com/5021-1/

No exploits are available.

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N Found at https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-22924.json

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N Found at https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N Found at https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/ Found at https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N Found at https://cert-portal.siemens.com/productcert/pdf/ssa-484086.pdf

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/ Found at https://cert-portal.siemens.com/productcert/pdf/ssa-484086.pdf

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N Found at https://cert-portal.siemens.com/productcert/pdf/ssa-732250.pdf

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/ Found at https://cert-portal.siemens.com/productcert/pdf/ssa-732250.pdf

Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N Found at https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N Found at https://hackerone.com/reports/1223565

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/ Found at https://hackerone.com/reports/1223565

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N Found at https://lists.apache.org/thread.html/r61db8e7dcb56dc000a5387a88f7a473bacec5ee01b9ff3f55308aacc@%3Cdev.kafka.apache.org%3E

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N Found at https://lists.apache.org/thread.html/r61db8e7dcb56dc000a5387a88f7a473bacec5ee01b9ff3f55308aacc@%3Cusers.kafka.apache.org%3E

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N Found at https://lists.apache.org/thread.html/r61db8e7dcb56dc000a5387a88f7a473bacec5ee01b9ff3f55308aacc%40%3Cdev.kafka.apache.org%3E

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/ Found at https://lists.apache.org/thread.html/r61db8e7dcb56dc000a5387a88f7a473bacec5ee01b9ff3f55308aacc%40%3Cdev.kafka.apache.org%3E

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N Found at https://lists.apache.org/thread.html/r61db8e7dcb56dc000a5387a88f7a473bacec5ee01b9ff3f55308aacc%40%3Cusers.kafka.apache.org%3E

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/ Found at https://lists.apache.org/thread.html/r61db8e7dcb56dc000a5387a88f7a473bacec5ee01b9ff3f55308aacc%40%3Cusers.kafka.apache.org%3E

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N Found at https://lists.apache.org/thread.html/rbf4ce74b0d1fa9810dec50ba3ace0caeea677af7c27a97111c06ccb7@%3Cdev.kafka.apache.org%3E

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N Found at https://lists.apache.org/thread.html/rbf4ce74b0d1fa9810dec50ba3ace0caeea677af7c27a97111c06ccb7@%3Cusers.kafka.apache.org%3E

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N Found at https://lists.apache.org/thread.html/rbf4ce74b0d1fa9810dec50ba3ace0caeea677af7c27a97111c06ccb7%40%3Cdev.kafka.apache.org%3E

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/ Found at https://lists.apache.org/thread.html/rbf4ce74b0d1fa9810dec50ba3ace0caeea677af7c27a97111c06ccb7%40%3Cdev.kafka.apache.org%3E

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N Found at https://lists.apache.org/thread.html/rbf4ce74b0d1fa9810dec50ba3ace0caeea677af7c27a97111c06ccb7%40%3Cusers.kafka.apache.org%3E

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/ Found at https://lists.apache.org/thread.html/rbf4ce74b0d1fa9810dec50ba3ace0caeea677af7c27a97111c06ccb7%40%3Cusers.kafka.apache.org%3E

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N Found at https://lists.debian.org/debian-lts-announce/2021/08/msg00017.html

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/ Found at https://lists.debian.org/debian-lts-announce/2021/08/msg00017.html

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N Found at https://lists.debian.org/debian-lts-announce/2022/08/msg00017.html

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/ Found at https://lists.debian.org/debian-lts-announce/2022/08/msg00017.html

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N Found at https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FRUCW2UVNYUDZF72DQLFQR4PJEC6CF7V/

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/ Found at https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FRUCW2UVNYUDZF72DQLFQR4PJEC6CF7V/

Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N Found at https://nvd.nist.gov/vuln/detail/CVE-2021-22924

Exploitability (E)	Access Vector (AV)	Access Complexity (AC)	Authentication (Au)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
high functional unproven proof_of_concept not_defined	local adjacent_network network	high medium low	multiple single none	none partial complete	none partial complete	none partial complete

Exploitability (E)

Access Vector (AV)

Access Complexity (AC)

Authentication (Au)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

partial

complete

none

partial

complete

none

partial

complete

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N Found at https://nvd.nist.gov/vuln/detail/CVE-2021-22924

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N Found at https://nvd.nist.gov/vuln/detail/CVE-2021-22924

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N Found at https://security.netapp.com/advisory/ntap-20210902-0003/

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/ Found at https://security.netapp.com/advisory/ntap-20210902-0003/

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N Found at https://www.debian.org/security/2022/dsa-5197

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/ Found at https://www.debian.org/security/2022/dsa-5197

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N Found at https://www.oracle.com/security-alerts/cpujan2022.html

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H Found at https://www.oracle.com/security-alerts/cpujan2022.html

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/ Found at https://www.oracle.com/security-alerts/cpujan2022.html

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N Found at https://www.oracle.com/security-alerts/cpuoct2021.html

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N Found at https://www.oracle.com/security-alerts/cpuoct2021.html

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/ Found at https://www.oracle.com/security-alerts/cpuoct2021.html

Exploit Prediction Scoring System (EPSS)

Percentile	0.51735
EPSS Score	0.00149
Published At	Nov. 1, 2024, midnight

Date	Actor	Action	Source	VulnerableCode Version
There are no relevant records.