Search for vulnerabilities
Vulnerability details: VCID-gfdc-2q2q-aaak
Vulnerability ID VCID-gfdc-2q2q-aaak
Aliases CVE-2021-34558
Summary The crypto/tls package of Go through 1.16.5 does not properly assert that the type of public key in an X.509 certificate matches the expected type when doing a RSA based key exchange, allowing a malicious TLS server to cause a TLS client to panic.
Status Published
Exploitability 0.5
Weighted Severity 8.0
Risk 4.0
Affected and Fixed Packages Package Details
Weaknesses (2)
CWE-295 Improper Certificate Validation
CWE-20 Improper Input Validation
System Score Found at
rhas Moderate https://access.redhat.com/errata/RHSA-2021:2983
rhas Moderate https://access.redhat.com/errata/RHSA-2021:2984
rhas Moderate https://access.redhat.com/errata/RHSA-2021:3009
rhas Moderate https://access.redhat.com/errata/RHSA-2021:3015
rhas Moderate https://access.redhat.com/errata/RHSA-2021:3076
rhas Moderate https://access.redhat.com/errata/RHSA-2021:3146
rhas Moderate https://access.redhat.com/errata/RHSA-2021:3248
rhas Moderate https://access.redhat.com/errata/RHSA-2021:3259
rhas Moderate https://access.redhat.com/errata/RHSA-2021:3361
rhas Moderate https://access.redhat.com/errata/RHSA-2021:3555
rhas Moderate https://access.redhat.com/errata/RHSA-2021:3556
rhas Moderate https://access.redhat.com/errata/RHSA-2021:3598
rhas Low https://access.redhat.com/errata/RHSA-2021:3733
rhas Moderate https://access.redhat.com/errata/RHSA-2021:3759
rhas Moderate https://access.redhat.com/errata/RHSA-2021:3820
rhas Moderate https://access.redhat.com/errata/RHSA-2021:4104
rhas Moderate https://access.redhat.com/errata/RHSA-2021:4226
rhas Moderate https://access.redhat.com/errata/RHSA-2021:4582
rhas Moderate https://access.redhat.com/errata/RHSA-2021:4722
rhas Moderate https://access.redhat.com/errata/RHSA-2021:4725
rhas Moderate https://access.redhat.com/errata/RHSA-2021:4914
rhas Moderate https://access.redhat.com/errata/RHSA-2021:5085
rhas Moderate https://access.redhat.com/errata/RHSA-2021:5086
rhas Moderate https://access.redhat.com/errata/RHSA-2022:0191
rhas Important https://access.redhat.com/errata/RHSA-2022:0237
rhas Important https://access.redhat.com/errata/RHSA-2022:0260
rhas Moderate https://access.redhat.com/errata/RHSA-2022:0577
rhas Moderate https://access.redhat.com/errata/RHSA-2022:0947
rhas Moderate https://access.redhat.com/errata/RHSA-2022:0988
rhas Moderate https://access.redhat.com/errata/RHSA-2022:0998
rhas Moderate https://access.redhat.com/errata/RHSA-2022:1329
rhas Important https://access.redhat.com/errata/RHSA-2022:1372
cvssv3 6.5 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-34558.json
epss 0.00263 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00263 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00263 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00263 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00263 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00263 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00263 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00263 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00263 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00263 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00263 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00263 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00341 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00341 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00341 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00341 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00605 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00605 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00605 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00605 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00605 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00605 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00605 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00605 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00605 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00605 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00605 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00605 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00605 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00605 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00605 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00605 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00605 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00605 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00605 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00605 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00605 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00674 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00674 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00674 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00674 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00674 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00674 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00674 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00674 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00674 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00674 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00674 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00674 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00674 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00674 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00674 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00674 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00674 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00674 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00674 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00674 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00674 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00674 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00674 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00674 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00674 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00674 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00674 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00674 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00674 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00674 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00674 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00674 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00674 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00674 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00674 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00677 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00677 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00677 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00677 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00677 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00677 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00677 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00677 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00677 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00677 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00677 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00839 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00839 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00839 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00839 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.00911 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
epss 0.056 https://api.first.org/data/v1/epss?cve=CVE-2021-34558
cvssv3.1 5.3 https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
cvssv3.1 5.3 https://groups.google.com/g/golang-announce
generic_textual MODERATE https://groups.google.com/g/golang-announce
cvssv2 2.6 https://nvd.nist.gov/vuln/detail/CVE-2021-34558
cvssv3 6.5 https://nvd.nist.gov/vuln/detail/CVE-2021-34558
cvssv3.1 6.5 https://nvd.nist.gov/vuln/detail/CVE-2021-34558
archlinux Low https://security.archlinux.org/AVG-2147
cvssv3.1 5.3 https://security.gentoo.org/glsa/202208-02
generic_textual MODERATE https://security.gentoo.org/glsa/202208-02
cvssv3.1 6.6 https://www.oracle.com/security-alerts/cpujan2022.html
generic_textual MODERATE https://www.oracle.com/security-alerts/cpujan2022.html
cvssv3.1 8.2 https://www.oracle.com/security-alerts/cpuoct2021.html
generic_textual HIGH https://www.oracle.com/security-alerts/cpuoct2021.html
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-34558.json
https://api.first.org/data/v1/epss?cve=CVE-2021-34558
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-34558
https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
https://golang.org/doc/devel/release#go1.16.minor
https://groups.google.com/g/golang-announce
https://groups.google.com/g/golang-announce/c/n9FxMelZGAQ
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3BA7MFVXRBEKRTLSLYDICTYCGEMK2HZ7/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3XBQUFVI5TMV4KMKI7GKA223LHGPQISE/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6BTC3JQUASFN5U2XA4UZIGAPZQBD5JSS/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/D7FRFM7WWR2JCT6NORQ7AO6B453OMI3I/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ITRXPCHUCJGXCX2CUEPKZRRTB27GG4ZB/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JYIUSR4YP52PWG7YE7AA3DZ5OSURNFJB/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LBMLUQMN6XRKPVOI5XFFBP4XSR7RNTYR/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NLOGBB7XBBRB3J5FDPW5KWHSH7IRF64W/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WXJ2MVMAHOIGRH37ZSFYC4EVWLJFL2EQ/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3BA7MFVXRBEKRTLSLYDICTYCGEMK2HZ7/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3XBQUFVI5TMV4KMKI7GKA223LHGPQISE/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6BTC3JQUASFN5U2XA4UZIGAPZQBD5JSS/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/D7FRFM7WWR2JCT6NORQ7AO6B453OMI3I/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ITRXPCHUCJGXCX2CUEPKZRRTB27GG4ZB/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JYIUSR4YP52PWG7YE7AA3DZ5OSURNFJB/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LBMLUQMN6XRKPVOI5XFFBP4XSR7RNTYR/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NLOGBB7XBBRB3J5FDPW5KWHSH7IRF64W/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WXJ2MVMAHOIGRH37ZSFYC4EVWLJFL2EQ/
https://security.gentoo.org/glsa/202208-02
https://security.netapp.com/advisory/ntap-20210813-0005/
https://www.oracle.com/security-alerts/cpujan2022.html
https://www.oracle.com/security-alerts/cpuoct2021.html
ASA-202107-42 https://security.archlinux.org/ASA-202107-42
AVG-2147 https://security.archlinux.org/AVG-2147
cpe:2.3:a:golang:go:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*
cpe:2.3:a:netapp:cloud_insights_telegraf:-:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:cloud_insights_telegraf:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:storagegrid:-:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:storagegrid:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:trident:-:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:trident:-:*:*:*:*:*:*:*
cpe:2.3:a:oracle:timesten_in-memory_database:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:timesten_in-memory_database:*:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*
CVE-2021-34558 https://nvd.nist.gov/vuln/detail/CVE-2021-34558
RHEA-2021:3941 https://bugzilla.redhat.com/show_bug.cgi?id=1983596
RHSA-2021:2983 https://access.redhat.com/errata/RHSA-2021:2983
RHSA-2021:2984 https://access.redhat.com/errata/RHSA-2021:2984
RHSA-2021:3009 https://access.redhat.com/errata/RHSA-2021:3009
RHSA-2021:3015 https://access.redhat.com/errata/RHSA-2021:3015
RHSA-2021:3076 https://access.redhat.com/errata/RHSA-2021:3076
RHSA-2021:3146 https://access.redhat.com/errata/RHSA-2021:3146
RHSA-2021:3229 https://access.redhat.com/errata/RHSA-2021:3229
RHSA-2021:3248 https://access.redhat.com/errata/RHSA-2021:3248
RHSA-2021:3259 https://access.redhat.com/errata/RHSA-2021:3259
RHSA-2021:3361 https://access.redhat.com/errata/RHSA-2021:3361
RHSA-2021:3555 https://access.redhat.com/errata/RHSA-2021:3555
RHSA-2021:3556 https://access.redhat.com/errata/RHSA-2021:3556
RHSA-2021:3598 https://access.redhat.com/errata/RHSA-2021:3598
RHSA-2021:3733 https://access.redhat.com/errata/RHSA-2021:3733
RHSA-2021:3759 https://access.redhat.com/errata/RHSA-2021:3759
RHSA-2021:3820 https://access.redhat.com/errata/RHSA-2021:3820
RHSA-2021:4104 https://access.redhat.com/errata/RHSA-2021:4104
RHSA-2021:4226 https://access.redhat.com/errata/RHSA-2021:4226
RHSA-2021:4582 https://access.redhat.com/errata/RHSA-2021:4582
RHSA-2021:4722 https://access.redhat.com/errata/RHSA-2021:4722
RHSA-2021:4725 https://access.redhat.com/errata/RHSA-2021:4725
RHSA-2021:4914 https://access.redhat.com/errata/RHSA-2021:4914
RHSA-2021:5085 https://access.redhat.com/errata/RHSA-2021:5085
RHSA-2021:5086 https://access.redhat.com/errata/RHSA-2021:5086
RHSA-2022:0191 https://access.redhat.com/errata/RHSA-2022:0191
RHSA-2022:0237 https://access.redhat.com/errata/RHSA-2022:0237
RHSA-2022:0260 https://access.redhat.com/errata/RHSA-2022:0260
RHSA-2022:0577 https://access.redhat.com/errata/RHSA-2022:0577
RHSA-2022:0947 https://access.redhat.com/errata/RHSA-2022:0947
RHSA-2022:0988 https://access.redhat.com/errata/RHSA-2022:0988
RHSA-2022:0998 https://access.redhat.com/errata/RHSA-2022:0998
RHSA-2022:1329 https://access.redhat.com/errata/RHSA-2022:1329
RHSA-2022:1372 https://access.redhat.com/errata/RHSA-2022:1372
RHSA-2022:7954 https://access.redhat.com/errata/RHSA-2022:7954
RHSA-2024:2988 https://access.redhat.com/errata/RHSA-2024:2988
No exploits are available.
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H Found at https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-34558.json
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N Found at https://groups.google.com/g/golang-announce
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: AV:N/AC:H/Au:N/C:N/I:N/A:P Found at https://nvd.nist.gov/vuln/detail/CVE-2021-34558
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H Found at https://nvd.nist.gov/vuln/detail/CVE-2021-34558
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H Found at https://nvd.nist.gov/vuln/detail/CVE-2021-34558
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N Found at https://security.gentoo.org/glsa/202208-02
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H Found at https://www.oracle.com/security-alerts/cpujan2022.html
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N Found at https://www.oracle.com/security-alerts/cpuoct2021.html
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Exploit Prediction Scoring System (EPSS)
Percentile 0.66491
EPSS Score 0.00263
Published At Nov. 1, 2024, midnight
Date Actor Action Source VulnerableCode Version
There are no relevant records.