System	Score	Found at
epss	0.03766	https://api.first.org/data/v1/epss?cve=CVE-2021-26437
epss	0.03766	https://api.first.org/data/v1/epss?cve=CVE-2021-26437
epss	0.03766	https://api.first.org/data/v1/epss?cve=CVE-2021-26437
epss	0.03766	https://api.first.org/data/v1/epss?cve=CVE-2021-26437
cvssv3.1	5.5	https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26437
ssvc	Track	https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26437
archlinux	Medium	https://security.archlinux.org/AVG-2427

Reference id	Reference type	URL
		https://api.first.org/data/v1/epss?cve=CVE-2021-26437
AVG-2427		https://security.archlinux.org/AVG-2427
cpe:2.3:a:microsoft:visual_studio_code:*:*:*:*:*:*:*:*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:microsoft:visual_studio_code:*:*:*:*:*:*:*:*
CVE-2021-26437		https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26437

No exploits are available.

Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C Found at https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26437

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

---

Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-26T21:01:11Z/ Found at https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26437

---

Percentile	0.88304
EPSS Score	0.03766
Published At	June 11, 2026, 12:55 p.m.

Date	Actor	Action	Source	VulnerableCode Version
2026-06-11T17:32:19.498016+00:00	Vulnrichment	Import	https://github.com/cisagov/vulnrichment/blob/develop/2021/26xxx/CVE-2021-26437.json	38.6.0