VDB
CVE-2021-38561
CVE-2021-38561
PUBLISHED
CVSS 8.699999809265137 HIGH
In Red Hat OpenShift existieren mehrere Schwachstellen. Diese bestehen in den Modulen "Golang" und "kubeVirt". Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Dateien zu manipulieren, einen Denial of Service Zustand herbeizuführen oder Sicherheitsvorkehrungen zu umgehen.
EPSS 0.05% · 16.9th percentile
Risk Scores
CVSS 4.0
8.699999809265137
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
EPSS Score
0.05%
16.9th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Red Hat | Red Hat OpenShift Container Platform 4.13 | |
| Red Hat | Red Hat OpenShift Container Platform <4.11.44 | |
| Atlassian | Atlassian Confluence <10.0.2 | |
| Splunk | Splunk Splunk Enterprise <9.1.1 | |
| Red Hat | Red Hat OpenShift Container Platform 4.11 | |
| Red Hat | Red Hat OpenShift <4.12.0 | |
| Atlassian | Atlassian Confluence <10.1.1 | |
| Red Hat | Red Hat Enterprise Linux | |
| Splunk | Splunk Splunk Enterprise | |
| Splunk | Splunk Splunk Enterprise <9.2.1 | |
| Amazon | Amazon Linux 2 | |
| Red Hat | Red Hat OpenShift Container Platform 4.12 | |
| JFrog | JFrog Artifactory <7.46.3 | |
| Splunk | Splunk Splunk Enterprise <9.0.9 | |
| Red Hat | Red Hat OpenShift Container Platform <4.11.43 | |
| Atlassian | Atlassian Confluence <8.5.25 | |
| Red Hat | Red Hat OpenShift Developer Tools and Services 4.11 | |
| Splunk | Splunk Splunk Enterprise <9.0.6 | |
| JFrog | JFrog Artifactory | |
| Oracle | Oracle Linux |
…and 12 more
Timeline
- Oct 6, 2021 CVE Published
- Dec 26, 2022 EPSS Score
- Feb 5, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Mar 19, 2023 EPSS Score
- Apr 29, 2023 EPSS Score
- Jul 21, 2023 EPSS Score
- Aug 31, 2023 EPSS Score
- Oct 12, 2023 EPSS Score
- Nov 22, 2023 EPSS Score
- Jan 3, 2024 EPSS Score
- Feb 13, 2024 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-0515.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-0515 advisory
- https://ubuntu.com/security/notices/USN-6151-1 advisory
- https://www.cybersecurity-help.cz/vdb/SB2023032948 advisory
- https://www.ibm.com/support/pages/node/6596399 advisory
- https://www.ibm.com/support/pages/node/6596907 advisory
- https://www.ibm.com/support/pages/node/6596881 advisory
- https://www.ibm.com/support/pages/node/6596741 advisory
- https://www.ibm.com/support/pages/node/6596883 advisory
- https://www.ibm.com/support/pages/node/6596971 advisory
- https://www.ibm.com/support/pages/node/6596895 advisory
- https://www.ibm.com/support/pages/node/6596379 advisory
- https://www.ibm.com/support/pages/node/6596877 advisory
- https://www.ibm.com/support/pages/node/6596875 advisory
- https://alas.aws.amazon.com/AL2/ALASKERNEL-5.4-2022-027.html advisory
- https://alas.aws.amazon.com/AL2/ALASKERNEL-5.4-2022-029.html advisory
- https://www.ibm.com/blogs/psirt/security-bulletin-information-disclosure-and-denial-of-service-vulnerabilities-in-the-ibm-spectrum-protect-backup-archive-client-may-affect-ibm-spectrum-protect-for-space-management-cve-2022-22478/ advisory
- https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-0204.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-0204 advisory
- https://access.redhat.com/errata/RHSA-2023:0408 advisory
…and 61 more