VulnerableCode Vulnerability Details

Search for vulnerabilities

Vulnerability details: VCID-6cjv-xp17-aaah

Essentials
Severities (157)
References (132)
Severity details (73)
Exploits (0)
EPSS
History (0)

Vulnerability ID	VCID-6cjv-xp17-aaah
Aliases	CVE-2021-3449 GHSA-83mx-573x-5rw9 VC-OPENSSL-20210325-CVE-2021-3449
Summary	An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it was present in the initial ClientHello), but includes a signature_algorithms_cert extension then a NULL pointer dereference will result, leading to a crash and a denial of service attack. A server is only vulnerable if it has TLSv1.2 and renegotiation enabled (which is the default configuration). OpenSSL TLS clients are not impacted by this issue. All OpenSSL 1.1.1 versions are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1k. OpenSSL 1.0.2 is not impacted by this issue. Fixed in OpenSSL 1.1.1k (Affected 1.1.1-1.1.1j).
Status	Published
Exploitability	0.5
Weighted Severity	8.0
Risk	4.0
Affected and Fixed Packages	Package Details

Weaknesses (3)

CWE-476	NULL Pointer Dereference
CWE-1035	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
CWE-937	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities

System	Score	Found at
generic_textual	High	http://people.canonical.com/~ubuntu-security/cve/2021/CVE-2021-3449.html
rhas	Important	https://access.redhat.com/errata/RHSA-2021:1024
rhas	Important	https://access.redhat.com/errata/RHSA-2021:1063
rhas	Important	https://access.redhat.com/errata/RHSA-2021:1131
rhas	Important	https://access.redhat.com/errata/RHSA-2021:1189
rhas	Important	https://access.redhat.com/errata/RHSA-2021:1195
rhas	Important	https://access.redhat.com/errata/RHSA-2021:1196
rhas	Important	https://access.redhat.com/errata/RHSA-2021:1199
rhas	Important	https://access.redhat.com/errata/RHSA-2021:1200
rhas	Important	https://access.redhat.com/errata/RHSA-2021:1202
rhas	Important	https://access.redhat.com/errata/RHSA-2021:1203
cvssv3	5.9	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3449.json
epss	0.00496	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.00496	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.00496	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.00496	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.00496	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.00496	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.00496	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.00496	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.00496	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.00496	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.00496	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.00496	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.08153	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.08153	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.08153	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.08693	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.08693	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.09743	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.09743	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.09743	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.09743	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.10677	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.10677	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.11357	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.11357	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.11357	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.13055	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.13055	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.13055	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.13055	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.13055	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.13055	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.13055	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.13055	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.13055	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.13055	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.13055	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.13055	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.13055	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.13055	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.13858	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.13858	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.13858	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.13858	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.13858	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.13858	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.13858	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.13858	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.13858	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.13858	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.13858	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.13858	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.13858	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.13858	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.13858	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.13858	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.13858	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.13858	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.13858	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.13858	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.13858	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.13858	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.13858	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.13858	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.13858	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.13858	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.13858	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.13858	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.13858	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.13858	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.13858	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.15401	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
epss	0.2491	https://api.first.org/data/v1/epss?cve=CVE-2021-3449
rhbs	high	https://bugzilla.redhat.com/show_bug.cgi?id=1941554
cvssv3.1	8.2	https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf
generic_textual	HIGH	https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf
cvssv3.1	5.9	https://cert-portal.siemens.com/productcert/pdf/ssa-772220.pdf
generic_textual	MODERATE	https://cert-portal.siemens.com/productcert/pdf/ssa-772220.pdf
generic_textual	High	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3449
cvssv3.1	7.5	https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
cvssv3.1_qr	MODERATE	https://github.com/advisories/GHSA-83mx-573x-5rw9
cvssv3.1	7.5	https://github.com/alexcrichton/openssl-src-rs
generic_textual	HIGH	https://github.com/alexcrichton/openssl-src-rs
cvssv3.1	5.9	https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=fb9fa6b51defd48157eeb207f52181f735d96148
generic_textual	MODERATE	https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=fb9fa6b51defd48157eeb207f52181f735d96148
cvssv3.1	5.9	https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44845
generic_textual	MODERATE	https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44845
cvssv3.1	5.9	https://kc.mcafee.com/corporate/index?page=content&id=SB10356
generic_textual	MODERATE	https://kc.mcafee.com/corporate/index?page=content&id=SB10356
cvssv3.1	5.9	https://lists.debian.org/debian-lts-announce/2021/08/msg00029.html
generic_textual	MODERATE	https://lists.debian.org/debian-lts-announce/2021/08/msg00029.html
cvssv3.1	5.9	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CCBFLLVQVILIVGZMBJL3IXZGKWQISYNP
generic_textual	MODERATE	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CCBFLLVQVILIVGZMBJL3IXZGKWQISYNP
cvssv2	4.3	https://nvd.nist.gov/vuln/detail/CVE-2021-3449
cvssv3	5.9	https://nvd.nist.gov/vuln/detail/CVE-2021-3449
cvssv3.1	5.9	https://nvd.nist.gov/vuln/detail/CVE-2021-3449
cvssv3.1	5.9	https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0013
generic_textual	MODERATE	https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0013
cvssv3.1	5.9	https://rustsec.org/advisories/RUSTSEC-2021-0055
generic_textual	MODERATE	https://rustsec.org/advisories/RUSTSEC-2021-0055
cvssv3.1	5.9	https://rustsec.org/advisories/RUSTSEC-2021-0055.html
generic_textual	MODERATE	https://rustsec.org/advisories/RUSTSEC-2021-0055.html
archlinux	High	https://security.archlinux.org/AVG-1736
cvssv3.1	5.9	https://security.FreeBSD.org/advisories/FreeBSD-SA-21:07.openssl.asc
generic_textual	MODERATE	https://security.FreeBSD.org/advisories/FreeBSD-SA-21:07.openssl.asc
cvssv3.1	5.9	https://security.gentoo.org/glsa/202103-03
generic_textual	MODERATE	https://security.gentoo.org/glsa/202103-03
cvssv3.1	5.9	https://security.netapp.com/advisory/ntap-20210326-0006
generic_textual	MODERATE	https://security.netapp.com/advisory/ntap-20210326-0006
cvssv3.1	5.9	https://security.netapp.com/advisory/ntap-20210513-0002
generic_textual	MODERATE	https://security.netapp.com/advisory/ntap-20210513-0002
cvssv3.1	5.9	https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-openssl-2021-GHY28dJd
generic_textual	MODERATE	https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-openssl-2021-GHY28dJd
generic_textual	High	https://ubuntu.com/security/notices/USN-4891-1
generic_textual	Medium	https://ubuntu.com/security/notices/USN-5038-1
cvssv3.1	5.9	https://www.debian.org/security/2021/dsa-4875
generic_textual	MODERATE	https://www.debian.org/security/2021/dsa-4875
cvssv3.1	5.9	https://www.openssl.org/news/secadv/20210325.txt
generic_textual	MODERATE	https://www.openssl.org/news/secadv/20210325.txt
cvssv3.1	7.5	https://www.oracle.com/security-alerts/cpuApr2021.html
generic_textual	HIGH	https://www.oracle.com/security-alerts/cpuApr2021.html
cvssv3.1	5.3	https://www.oracle.com/security-alerts/cpuapr2022.html
generic_textual	MODERATE	https://www.oracle.com/security-alerts/cpuapr2022.html
cvssv3.1	5.3	https://www.oracle.com//security-alerts/cpujul2021.html
generic_textual	MODERATE	https://www.oracle.com//security-alerts/cpujul2021.html
cvssv3.1	7.5	https://www.oracle.com/security-alerts/cpujul2022.html
generic_textual	HIGH	https://www.oracle.com/security-alerts/cpujul2022.html
cvssv3.1	8.2	https://www.oracle.com/security-alerts/cpuoct2021.html
generic_textual	HIGH	https://www.oracle.com/security-alerts/cpuoct2021.html
cvssv3.1	5.9	https://www.tenable.com/security/tns-2021-05
generic_textual	MODERATE	https://www.tenable.com/security/tns-2021-05
cvssv3.1	5.9	https://www.tenable.com/security/tns-2021-06
generic_textual	MODERATE	https://www.tenable.com/security/tns-2021-06
cvssv3.1	5.9	https://www.tenable.com/security/tns-2021-09
generic_textual	MODERATE	https://www.tenable.com/security/tns-2021-09
cvssv3.1	6.9	https://www.tenable.com/security/tns-2021-10
generic_textual	MODERATE	https://www.tenable.com/security/tns-2021-10
cvssv3.1	5.9	http://www.openwall.com/lists/oss-security/2021/03/27/1
generic_textual	MODERATE	http://www.openwall.com/lists/oss-security/2021/03/27/1
cvssv3.1	5.9	http://www.openwall.com/lists/oss-security/2021/03/27/2
generic_textual	MODERATE	http://www.openwall.com/lists/oss-security/2021/03/27/2
cvssv3.1	5.9	http://www.openwall.com/lists/oss-security/2021/03/28/3
generic_textual	MODERATE	http://www.openwall.com/lists/oss-security/2021/03/28/3
cvssv3.1	5.9	http://www.openwall.com/lists/oss-security/2021/03/28/4
generic_textual	MODERATE	http://www.openwall.com/lists/oss-security/2021/03/28/4

Reference id	Reference type	URL
		http://people.canonical.com/~ubuntu-security/cve/2021/CVE-2021-3449.html
		https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3449.json
		https://api.first.org/data/v1/epss?cve=CVE-2021-3449
		https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf
		https://cert-portal.siemens.com/productcert/pdf/ssa-772220.pdf
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3449
		https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
		https://github.com/alexcrichton/openssl-src-rs
		https://github.com/openssl/openssl/commit/fb9fa6b51defd48157eeb207f52181f735d96148
		https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=fb9fa6b51defd48157eeb207f52181f735d96148
		https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=fb9fa6b51defd48157eeb207f52181f735d96148
		https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44845
		https://kc.mcafee.com/corporate/index?page=content&id=SB10356
		https://lists.debian.org/debian-lts-announce/2021/08/msg00029.html
		https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CCBFLLVQVILIVGZMBJL3IXZGKWQISYNP/
		https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CCBFLLVQVILIVGZMBJL3IXZGKWQISYNP
		https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CCBFLLVQVILIVGZMBJL3IXZGKWQISYNP/
		https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0013
		https://rustsec.org/advisories/RUSTSEC-2021-0055
		https://rustsec.org/advisories/RUSTSEC-2021-0055.html
		https://security.FreeBSD.org/advisories/FreeBSD-SA-21:07.openssl.asc
		https://security.gentoo.org/glsa/202103-03
		https://security.netapp.com/advisory/ntap-20210326-0006
		https://security.netapp.com/advisory/ntap-20210326-0006/
		https://security.netapp.com/advisory/ntap-20210513-0002
		https://security.netapp.com/advisory/ntap-20210513-0002/
		https://security.netapp.com/advisory/ntap-20240621-0006/
		https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-openssl-2021-GHY28dJd
		https://ubuntu.com/security/notices/USN-4891-1
		https://ubuntu.com/security/notices/USN-5038-1
		https://www.debian.org/security/2021/dsa-4875
		https://www.openssl.org/news/secadv/20210325.txt
		https://www.oracle.com/security-alerts/cpuApr2021.html
		https://www.oracle.com/security-alerts/cpuapr2022.html
		https://www.oracle.com//security-alerts/cpujul2021.html
		https://www.oracle.com/security-alerts/cpujul2022.html
		https://www.oracle.com/security-alerts/cpuoct2021.html
		https://www.tenable.com/security/tns-2021-05
		https://www.tenable.com/security/tns-2021-06
		https://www.tenable.com/security/tns-2021-09
		https://www.tenable.com/security/tns-2021-10
		http://www.openwall.com/lists/oss-security/2021/03/27/1
		http://www.openwall.com/lists/oss-security/2021/03/27/2
		http://www.openwall.com/lists/oss-security/2021/03/28/3
		http://www.openwall.com/lists/oss-security/2021/03/28/4
1941554		https://bugzilla.redhat.com/show_bug.cgi?id=1941554
ASA-202103-10		https://security.archlinux.org/ASA-202103-10
AVG-1736		https://security.archlinux.org/AVG-1736
cpe:2.3:a:mcafee:web_gateway:10.1.1:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mcafee:web_gateway:10.1.1:::::::*
cpe:2.3:a:mcafee:web_gateway:8.2.19:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mcafee:web_gateway:8.2.19:::::::*
cpe:2.3:a:mcafee:web_gateway:9.2.10:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mcafee:web_gateway:9.2.10:::::::*
cpe:2.3:a:mcafee:web_gateway_cloud_service:10.1.1:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mcafee:web_gateway_cloud_service:10.1.1:::::::*
cpe:2.3:a:mcafee:web_gateway_cloud_service:8.2.19:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mcafee:web_gateway_cloud_service:8.2.19:::::::*
cpe:2.3:a:mcafee:web_gateway_cloud_service:9.2.10:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mcafee:web_gateway_cloud_service:9.2.10:::::::*
cpe:2.3:a:netapp:active_iq_unified_manager:-:::::vmware_vsphere::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:active_iq_unified_manager:-:::::vmware_vsphere::
cpe:2.3:a:netapp:cloud_volumes_ontap_mediator:-:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:cloud_volumes_ontap_mediator:-:::::::*
cpe:2.3:a:netapp:e-series_performance_analyzer:-:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:e-series_performance_analyzer:-:::::::*
cpe:2.3:a:netapp:oncommand_insight:-:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:oncommand_insight:-:::::::*
cpe:2.3:a:netapp:oncommand_workflow_automation:-:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:oncommand_workflow_automation:-:::::::*
cpe:2.3:a:netapp:ontap_select_deploy_administration_utility:-:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:ontap_select_deploy_administration_utility:-:::::::*
cpe:2.3:a:netapp:santricity_smi-s_provider:-:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:santricity_smi-s_provider:-:::::::*
cpe:2.3:a:netapp:snapcenter:-:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:snapcenter:-:::::::*
cpe:2.3:a:netapp:storagegrid:-:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:storagegrid:-:::::::*
cpe:2.3:a:nodejs:node.js:::::-:::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:::::-:::*
cpe:2.3:a:nodejs:node.js:::::lts:::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:::::lts:::*
cpe:2.3:a:openssl:openssl::::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl::::::::
cpe:2.3:a:oracle:communications_communications_policy_management:12.6.0.0.0:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:communications_communications_policy_management:12.6.0.0.0:::::::*
cpe:2.3:a:oracle:enterprise_manager_for_storage_management:13.4.0.0:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:enterprise_manager_for_storage_management:13.4.0.0:::::::*
cpe:2.3:a:oracle:essbase:21.2:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:essbase:21.2:::::::*
cpe:2.3:a:oracle:graalvm:19.3.5::::enterprise:::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:graalvm:19.3.5::::enterprise:::
cpe:2.3:a:oracle:graalvm:20.3.1.2::::enterprise:::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:graalvm:20.3.1.2::::enterprise:::
cpe:2.3:a:oracle:graalvm:21.0.0.2::::enterprise:::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:graalvm:21.0.0.2::::enterprise:::
cpe:2.3:a:oracle:jd_edwards_enterpriseone_tools::::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jd_edwards_enterpriseone_tools::::::::
cpe:2.3:a:oracle:jd_edwards_world_security:a9.4:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jd_edwards_world_security:a9.4:::::::*
cpe:2.3:a:oracle:mysql_connectors::::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:mysql_connectors::::::::
cpe:2.3:a:oracle:mysql_server::::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:mysql_server::::::::
cpe:2.3:a:oracle:mysql_workbench::::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:mysql_workbench::::::::
cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.57:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.57:::::::*
cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.58:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.58:::::::*
cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.59:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.59:::::::*
cpe:2.3:a:oracle:primavera_unifier::::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:primavera_unifier::::::::
cpe:2.3:a:oracle:primavera_unifier:19.12:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:primavera_unifier:19.12:::::::*
cpe:2.3:a:oracle:primavera_unifier:20.12:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:primavera_unifier:20.12:::::::*
cpe:2.3:a:oracle:primavera_unifier:21.12:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:primavera_unifier:21.12:::::::*
cpe:2.3:a:oracle:secure_backup::::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:secure_backup::::::::
cpe:2.3:a:oracle:secure_global_desktop:5.6:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:secure_global_desktop:5.6:::::::*
cpe:2.3:a:oracle:zfs_storage_appliance_kit:8.8:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:zfs_storage_appliance_kit:8.8:::::::*
cpe:2.3:a:siemens:simatic_logon::::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:siemens:simatic_logon::::::::
cpe:2.3:a:siemens:simatic_logon:1.5:sp3_update_1::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:siemens:simatic_logon:1.5:sp3_update_1::::::
cpe:2.3:a:siemens:simatic_wincc_runtime_advanced::::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:siemens:simatic_wincc_runtime_advanced::::::::
cpe:2.3:a:siemens:simatic_wincc_telecontrol:-:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:siemens:simatic_wincc_telecontrol:-:::::::*
cpe:2.3:a:siemens:sinec_infrastructure_network_services::::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:siemens:sinec_infrastructure_network_services::::::::
cpe:2.3:a:siemens:sinec_nms:1.0:-::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:siemens:sinec_nms:1.0:-::::::
cpe:2.3:a:siemens:sinec_nms:1.0:sp1::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:siemens:sinec_nms:1.0:sp1::::::
cpe:2.3:a:siemens:sinec_pni:-:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:siemens:sinec_pni:-:::::::*
cpe:2.3:a:siemens:sinema_server:14.0:-::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:siemens:sinema_server:14.0:-::::::
cpe:2.3:a:siemens:sinema_server:14.0:sp1::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:siemens:sinema_server:14.0:sp1::::::
cpe:2.3:a:siemens:sinema_server:14.0:sp2::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:siemens:sinema_server:14.0:sp2::::::
cpe:2.3:a:siemens:sinema_server:14.0:sp2_update1::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:siemens:sinema_server:14.0:sp2_update1::::::
cpe:2.3:a:siemens:sinema_server:14.0:sp2_update2::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:siemens:sinema_server:14.0:sp2_update2::::::
cpe:2.3:a:siemens:sinumerik_opc_ua_server::::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:siemens:sinumerik_opc_ua_server::::::::
cpe:2.3:a:siemens:tia_administrator::::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:siemens:tia_administrator::::::::
cpe:2.3:a:sonicwall:capture_client:3.5:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sonicwall:capture_client:3.5:::::::*
cpe:2.3:a:tenable:log_correlation_engine::::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:tenable:log_correlation_engine::::::::
cpe:2.3:a:tenable:nessus::::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:tenable:nessus::::::::
cpe:2.3:a:tenable:nessus_network_monitor:5.11.0:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:tenable:nessus_network_monitor:5.11.0:::::::*
cpe:2.3:a:tenable:nessus_network_monitor:5.11.1:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:tenable:nessus_network_monitor:5.11.1:::::::*
cpe:2.3:a:tenable:nessus_network_monitor:5.12.0:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:tenable:nessus_network_monitor:5.12.0:::::::*
cpe:2.3:a:tenable:nessus_network_monitor:5.12.1:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:tenable:nessus_network_monitor:5.12.1:::::::*
cpe:2.3:a:tenable:nessus_network_monitor:5.13.0:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:tenable:nessus_network_monitor:5.13.0:::::::*
cpe:2.3:a:tenable:tenable.sc::::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:tenable:tenable.sc::::::::
cpe:2.3:o:debian:debian_linux:10.0:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:::::::*
cpe:2.3:o:debian:debian_linux:9.0:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:::::::*
cpe:2.3:o:fedoraproject:fedora:34:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:34:::::::*
cpe:2.3:o:freebsd:freebsd:12.2:-::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:freebsd:freebsd:12.2:-::::::
cpe:2.3:o:freebsd:freebsd:12.2:p1::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:freebsd:freebsd:12.2:p1::::::
cpe:2.3:o:freebsd:freebsd:12.2:p2::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:freebsd:freebsd:12.2:p2::::::
cpe:2.3:o:sonicwall:sonicos:7.0.1.0:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:sonicwall:sonicos:7.0.1.0:::::::*
CVE-2021-3449		https://nvd.nist.gov/vuln/detail/CVE-2021-3449
GHSA-83mx-573x-5rw9		https://github.com/advisories/GHSA-83mx-573x-5rw9
RHSA-2021:1024		https://access.redhat.com/errata/RHSA-2021:1024
RHSA-2021:1063		https://access.redhat.com/errata/RHSA-2021:1063
RHSA-2021:1131		https://access.redhat.com/errata/RHSA-2021:1131
RHSA-2021:1189		https://access.redhat.com/errata/RHSA-2021:1189
RHSA-2021:1195		https://access.redhat.com/errata/RHSA-2021:1195
RHSA-2021:1196		https://access.redhat.com/errata/RHSA-2021:1196
RHSA-2021:1199		https://access.redhat.com/errata/RHSA-2021:1199
RHSA-2021:1200		https://access.redhat.com/errata/RHSA-2021:1200
RHSA-2021:1202		https://access.redhat.com/errata/RHSA-2021:1202
RHSA-2021:1203		https://access.redhat.com/errata/RHSA-2021:1203
USN-4891-1		https://usn.ubuntu.com/4891-1/
USN-5038-1		https://usn.ubuntu.com/5038-1/

No exploits are available.

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3449.json

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N Found at https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://cert-portal.siemens.com/productcert/pdf/ssa-772220.pdf

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://github.com/alexcrichton/openssl-src-rs

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=fb9fa6b51defd48157eeb207f52181f735d96148

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44845

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://kc.mcafee.com/corporate/index?page=content&id=SB10356

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://lists.debian.org/debian-lts-announce/2021/08/msg00029.html

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CCBFLLVQVILIVGZMBJL3IXZGKWQISYNP

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P Found at https://nvd.nist.gov/vuln/detail/CVE-2021-3449

Exploitability (E)	Access Vector (AV)	Access Complexity (AC)	Authentication (Au)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
high functional unproven proof_of_concept not_defined	local adjacent_network network	high medium low	multiple single none	none partial complete	none partial complete	none partial complete

Exploitability (E)

Access Vector (AV)

Access Complexity (AC)

Authentication (Au)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

partial

complete

none

partial

complete

none

partial

complete

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://nvd.nist.gov/vuln/detail/CVE-2021-3449

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://nvd.nist.gov/vuln/detail/CVE-2021-3449

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0013

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://rustsec.org/advisories/RUSTSEC-2021-0055

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://rustsec.org/advisories/RUSTSEC-2021-0055.html

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://security.FreeBSD.org/advisories/FreeBSD-SA-21:07.openssl.asc

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://security.gentoo.org/glsa/202103-03

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://security.netapp.com/advisory/ntap-20210326-0006

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://security.netapp.com/advisory/ntap-20210513-0002

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-openssl-2021-GHY28dJd

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://www.debian.org/security/2021/dsa-4875

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://www.openssl.org/news/secadv/20210325.txt

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N Found at https://www.oracle.com/security-alerts/cpuApr2021.html

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N Found at https://www.oracle.com/security-alerts/cpuapr2022.html

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N Found at https://www.oracle.com//security-alerts/cpujul2021.html

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N Found at https://www.oracle.com/security-alerts/cpujul2022.html

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N Found at https://www.oracle.com/security-alerts/cpuoct2021.html

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://www.tenable.com/security/tns-2021-05

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://www.tenable.com/security/tns-2021-06

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://www.tenable.com/security/tns-2021-09

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:L/A:N Found at https://www.tenable.com/security/tns-2021-10

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Found at http://www.openwall.com/lists/oss-security/2021/03/27/1

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Found at http://www.openwall.com/lists/oss-security/2021/03/27/2

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Found at http://www.openwall.com/lists/oss-security/2021/03/28/3

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Found at http://www.openwall.com/lists/oss-security/2021/03/28/4

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Exploit Prediction Scoring System (EPSS)

Percentile	0.76708
EPSS Score	0.00496
Published At	Nov. 1, 2024, midnight

Date	Actor	Action	Source	VulnerableCode Version
There are no relevant records.

Reference id	Reference type	URL
		http://people.canonical.com/~ubuntu-security/cve/2021/CVE-2021-3449.html
		https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3449.json
		https://api.first.org/data/v1/epss?cve=CVE-2021-3449
		https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf
		https://cert-portal.siemens.com/productcert/pdf/ssa-772220.pdf
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3449
		https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
		https://github.com/alexcrichton/openssl-src-rs
		https://github.com/openssl/openssl/commit/fb9fa6b51defd48157eeb207f52181f735d96148
		https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=fb9fa6b51defd48157eeb207f52181f735d96148
		https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=fb9fa6b51defd48157eeb207f52181f735d96148
		https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44845
		https://kc.mcafee.com/corporate/index?page=content&id=SB10356
		https://lists.debian.org/debian-lts-announce/2021/08/msg00029.html
		https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CCBFLLVQVILIVGZMBJL3IXZGKWQISYNP/
		https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CCBFLLVQVILIVGZMBJL3IXZGKWQISYNP
		https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CCBFLLVQVILIVGZMBJL3IXZGKWQISYNP/
		https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0013
		https://rustsec.org/advisories/RUSTSEC-2021-0055
		https://rustsec.org/advisories/RUSTSEC-2021-0055.html
		https://security.FreeBSD.org/advisories/FreeBSD-SA-21:07.openssl.asc
		https://security.gentoo.org/glsa/202103-03
		https://security.netapp.com/advisory/ntap-20210326-0006
		https://security.netapp.com/advisory/ntap-20210326-0006/
		https://security.netapp.com/advisory/ntap-20210513-0002
		https://security.netapp.com/advisory/ntap-20210513-0002/
		https://security.netapp.com/advisory/ntap-20240621-0006/
		https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-openssl-2021-GHY28dJd
		https://ubuntu.com/security/notices/USN-4891-1
		https://ubuntu.com/security/notices/USN-5038-1
		https://www.debian.org/security/2021/dsa-4875
		https://www.openssl.org/news/secadv/20210325.txt
		https://www.oracle.com/security-alerts/cpuApr2021.html
		https://www.oracle.com/security-alerts/cpuapr2022.html
		https://www.oracle.com//security-alerts/cpujul2021.html
		https://www.oracle.com/security-alerts/cpujul2022.html
		https://www.oracle.com/security-alerts/cpuoct2021.html
		https://www.tenable.com/security/tns-2021-05
		https://www.tenable.com/security/tns-2021-06
		https://www.tenable.com/security/tns-2021-09
		https://www.tenable.com/security/tns-2021-10
		http://www.openwall.com/lists/oss-security/2021/03/27/1
		http://www.openwall.com/lists/oss-security/2021/03/27/2
		http://www.openwall.com/lists/oss-security/2021/03/28/3
		http://www.openwall.com/lists/oss-security/2021/03/28/4
1941554		https://bugzilla.redhat.com/show_bug.cgi?id=1941554
ASA-202103-10		https://security.archlinux.org/ASA-202103-10
AVG-1736		https://security.archlinux.org/AVG-1736
cpe:2.3:a:mcafee:web_gateway:10.1.1:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mcafee:web_gateway:10.1.1:::::::*
cpe:2.3:a:mcafee:web_gateway:8.2.19:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mcafee:web_gateway:8.2.19:::::::*
cpe:2.3:a:mcafee:web_gateway:9.2.10:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mcafee:web_gateway:9.2.10:::::::*
cpe:2.3:a:mcafee:web_gateway_cloud_service:10.1.1:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mcafee:web_gateway_cloud_service:10.1.1:::::::*
cpe:2.3:a:mcafee:web_gateway_cloud_service:8.2.19:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mcafee:web_gateway_cloud_service:8.2.19:::::::*
cpe:2.3:a:mcafee:web_gateway_cloud_service:9.2.10:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mcafee:web_gateway_cloud_service:9.2.10:::::::*
cpe:2.3:a:netapp:active_iq_unified_manager:-:::::vmware_vsphere::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:active_iq_unified_manager:-:::::vmware_vsphere::
cpe:2.3:a:netapp:cloud_volumes_ontap_mediator:-:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:cloud_volumes_ontap_mediator:-:::::::*
cpe:2.3:a:netapp:e-series_performance_analyzer:-:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:e-series_performance_analyzer:-:::::::*
cpe:2.3:a:netapp:oncommand_insight:-:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:oncommand_insight:-:::::::*
cpe:2.3:a:netapp:oncommand_workflow_automation:-:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:oncommand_workflow_automation:-:::::::*
cpe:2.3:a:netapp:ontap_select_deploy_administration_utility:-:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:ontap_select_deploy_administration_utility:-:::::::*
cpe:2.3:a:netapp:santricity_smi-s_provider:-:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:santricity_smi-s_provider:-:::::::*
cpe:2.3:a:netapp:snapcenter:-:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:snapcenter:-:::::::*
cpe:2.3:a:netapp:storagegrid:-:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:storagegrid:-:::::::*
cpe:2.3:a:nodejs:node.js:::::-:::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:::::-:::*
cpe:2.3:a:nodejs:node.js:::::lts:::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:::::lts:::*
cpe:2.3:a:openssl:openssl::::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl::::::::
cpe:2.3:a:oracle:communications_communications_policy_management:12.6.0.0.0:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:communications_communications_policy_management:12.6.0.0.0:::::::*
cpe:2.3:a:oracle:enterprise_manager_for_storage_management:13.4.0.0:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:enterprise_manager_for_storage_management:13.4.0.0:::::::*
cpe:2.3:a:oracle:essbase:21.2:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:essbase:21.2:::::::*
cpe:2.3:a:oracle:graalvm:19.3.5::::enterprise:::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:graalvm:19.3.5::::enterprise:::
cpe:2.3:a:oracle:graalvm:20.3.1.2::::enterprise:::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:graalvm:20.3.1.2::::enterprise:::
cpe:2.3:a:oracle:graalvm:21.0.0.2::::enterprise:::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:graalvm:21.0.0.2::::enterprise:::
cpe:2.3:a:oracle:jd_edwards_enterpriseone_tools::::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jd_edwards_enterpriseone_tools::::::::
cpe:2.3:a:oracle:jd_edwards_world_security:a9.4:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jd_edwards_world_security:a9.4:::::::*
cpe:2.3:a:oracle:mysql_connectors::::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:mysql_connectors::::::::
cpe:2.3:a:oracle:mysql_server::::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:mysql_server::::::::
cpe:2.3:a:oracle:mysql_workbench::::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:mysql_workbench::::::::
cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.57:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.57:::::::*
cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.58:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.58:::::::*
cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.59:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.59:::::::*
cpe:2.3:a:oracle:primavera_unifier::::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:primavera_unifier::::::::
cpe:2.3:a:oracle:primavera_unifier:19.12:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:primavera_unifier:19.12:::::::*
cpe:2.3:a:oracle:primavera_unifier:20.12:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:primavera_unifier:20.12:::::::*
cpe:2.3:a:oracle:primavera_unifier:21.12:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:primavera_unifier:21.12:::::::*
cpe:2.3:a:oracle:secure_backup::::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:secure_backup::::::::
cpe:2.3:a:oracle:secure_global_desktop:5.6:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:secure_global_desktop:5.6:::::::*
cpe:2.3:a:oracle:zfs_storage_appliance_kit:8.8:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:zfs_storage_appliance_kit:8.8:::::::*
cpe:2.3:a:siemens:simatic_logon::::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:siemens:simatic_logon::::::::
cpe:2.3:a:siemens:simatic_logon:1.5:sp3_update_1::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:siemens:simatic_logon:1.5:sp3_update_1::::::
cpe:2.3:a:siemens:simatic_wincc_runtime_advanced::::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:siemens:simatic_wincc_runtime_advanced::::::::
cpe:2.3:a:siemens:simatic_wincc_telecontrol:-:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:siemens:simatic_wincc_telecontrol:-:::::::*
cpe:2.3:a:siemens:sinec_infrastructure_network_services::::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:siemens:sinec_infrastructure_network_services::::::::
cpe:2.3:a:siemens:sinec_nms:1.0:-::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:siemens:sinec_nms:1.0:-::::::
cpe:2.3:a:siemens:sinec_nms:1.0:sp1::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:siemens:sinec_nms:1.0:sp1::::::
cpe:2.3:a:siemens:sinec_pni:-:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:siemens:sinec_pni:-:::::::*
cpe:2.3:a:siemens:sinema_server:14.0:-::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:siemens:sinema_server:14.0:-::::::
cpe:2.3:a:siemens:sinema_server:14.0:sp1::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:siemens:sinema_server:14.0:sp1::::::
cpe:2.3:a:siemens:sinema_server:14.0:sp2::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:siemens:sinema_server:14.0:sp2::::::
cpe:2.3:a:siemens:sinema_server:14.0:sp2_update1::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:siemens:sinema_server:14.0:sp2_update1::::::
cpe:2.3:a:siemens:sinema_server:14.0:sp2_update2::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:siemens:sinema_server:14.0:sp2_update2::::::
cpe:2.3:a:siemens:sinumerik_opc_ua_server::::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:siemens:sinumerik_opc_ua_server::::::::
cpe:2.3:a:siemens:tia_administrator::::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:siemens:tia_administrator::::::::
cpe:2.3:a:sonicwall:capture_client:3.5:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sonicwall:capture_client:3.5:::::::*
cpe:2.3:a:tenable:log_correlation_engine::::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:tenable:log_correlation_engine::::::::
cpe:2.3:a:tenable:nessus::::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:tenable:nessus::::::::
cpe:2.3:a:tenable:nessus_network_monitor:5.11.0:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:tenable:nessus_network_monitor:5.11.0:::::::*
cpe:2.3:a:tenable:nessus_network_monitor:5.11.1:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:tenable:nessus_network_monitor:5.11.1:::::::*
cpe:2.3:a:tenable:nessus_network_monitor:5.12.0:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:tenable:nessus_network_monitor:5.12.0:::::::*
cpe:2.3:a:tenable:nessus_network_monitor:5.12.1:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:tenable:nessus_network_monitor:5.12.1:::::::*
cpe:2.3:a:tenable:nessus_network_monitor:5.13.0:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:tenable:nessus_network_monitor:5.13.0:::::::*
cpe:2.3:a:tenable:tenable.sc::::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:tenable:tenable.sc::::::::
cpe:2.3:o:debian:debian_linux:10.0:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:::::::*
cpe:2.3:o:debian:debian_linux:9.0:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:::::::*
cpe:2.3:o:fedoraproject:fedora:34:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:34:::::::*
cpe:2.3:o:freebsd:freebsd:12.2:-::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:freebsd:freebsd:12.2:-::::::
cpe:2.3:o:freebsd:freebsd:12.2:p1::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:freebsd:freebsd:12.2:p1::::::
cpe:2.3:o:freebsd:freebsd:12.2:p2::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:freebsd:freebsd:12.2:p2::::::
cpe:2.3:o:sonicwall:sonicos:7.0.1.0:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:sonicwall:sonicos:7.0.1.0:::::::*
CVE-2021-3449		https://nvd.nist.gov/vuln/detail/CVE-2021-3449
GHSA-83mx-573x-5rw9		https://github.com/advisories/GHSA-83mx-573x-5rw9
RHSA-2021:1024		https://access.redhat.com/errata/RHSA-2021:1024
RHSA-2021:1063		https://access.redhat.com/errata/RHSA-2021:1063
RHSA-2021:1131		https://access.redhat.com/errata/RHSA-2021:1131
RHSA-2021:1189		https://access.redhat.com/errata/RHSA-2021:1189
RHSA-2021:1195		https://access.redhat.com/errata/RHSA-2021:1195
RHSA-2021:1196		https://access.redhat.com/errata/RHSA-2021:1196
RHSA-2021:1199		https://access.redhat.com/errata/RHSA-2021:1199
RHSA-2021:1200		https://access.redhat.com/errata/RHSA-2021:1200
RHSA-2021:1202		https://access.redhat.com/errata/RHSA-2021:1202
RHSA-2021:1203		https://access.redhat.com/errata/RHSA-2021:1203
USN-4891-1		https://usn.ubuntu.com/4891-1/
USN-5038-1		https://usn.ubuntu.com/5038-1/