Lucene search

CBL MarinerCBLMARINER:6470

HistoryApr 09, 2022 - 6:51 a.m.

CVE-2021-21303 affecting package helm for versions less than 3.4.1-4

2022-04-0906:51:58

CBL Mariner

cve-2021-21303

package helm

versions less than 3.4.1-4

patched version

unix

CVSS2

3.5

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:S/C:N/I:P/A:N

CVSS3

6.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:N/I:H/A:N

AI Score

Confidence

High

EPSS

0.001

Percentile

24.2%

JSON

CVE-2021-21303 affecting package helm for versions less than 3.4.1-4. A patched version of the package is available.

OSVersionArchitecturePackageVersionFilename
CBL-Mariner2.0allhelm< 3.4.1-4UNKNOWN

OS	Version	Architecture	Package	Version	Filename
CBL-Mariner	2.0	all	helm	< 3.4.1-4	UNKNOWN

CVSS2

3.5

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:S/C:N/I:P/A:N

CVSS3

6.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:N/I:H/A:N

AI Score

Confidence

High

EPSS

0.001

Percentile

24.2%

JSON

Related for CBLMARINER:6470