Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2021:5191
HistoryDec 16, 2021 - 3:58 p.m.

(RHSA-2021:5191) Moderate: Red Hat 3scale API Management 2.11.1 Release - Container Images

2021-12-1615:58:47
access.redhat.com
24

0.003 Low

EPSS

Percentile

71.7%

JSON

Red Hat 3scale API Management delivers centralized API management features through a distributed, cloud-hosted layer. It includes built-in features to help in building a more successful API program, including access control, rate limits, payment gateway integration, and developer experience tools.

This advisory is intended to use with Container Images, for Red Hat 3scale API Management 2.11.1.

Security Fix(es):

  • rubygem-nokogiri: XML external entity injection via Nokogiri::XML::Schema (CVE-2020-26247)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Related

redhat 10
almalinux 3
nessus 57
osv 19
oraclelinux 3
rocky 4
openvas 24
suse 2
ibm 1
ubuntu 4
debian 2
amazon 2
slackware 1
photon 8
mageia 1
freebsd 2
fedora 1
cloudfoundry 1
cve 5
veracode 7
alpinelinux 1
ubuntucve 6
cvelist 5
cnvd 4
cbl_mariner 4
prion 5
nvd 5
debiancve 5
redhatcve 5
github 1
centos 1
redhat
redhat
(RHSA-2021:4628) Low: Openshift Logging 5.1.4 bug fix and security update
2021-11-17 02:19:22
(RHSA-2021:4766) Moderate: Release of OpenShift Serverless 1.19.0
2021-11-23 08:45:33
(RHSA-2021:4060) Moderate: libsolv security update
2021-11-02 07:49:29
almalinux
almalinux
Moderate: libsolv security update
2021-11-02 07:49:29
Important: kernel security, bug fix, and enhancement update
2021-11-02 07:47:41
Moderate: curl security update
2021-11-02 07:49:01
nessus
nessus
Oracle Linux 8 : libsolv (ELSA-2021-4060)
2021-11-02 00:00:00
RHEL 8 : libsolv (RHSA-2021:4060)
2021-11-02 00:00:00
Rocky Linux 8 : libsolv (RLSA-2021:4060)
2022-02-09 00:00:00
osv
osv
Moderate: libsolv security update
2021-11-02 07:49:29
Moderate: libsolv security update
2021-11-02 07:49:29
Important: kernel security, bug fix, and enhancement update
2021-11-02 07:47:41
oraclelinux
oraclelinux
libsolv security update
2021-11-02 00:00:00
kernel security, bug fix, and enhancement update
2021-11-03 00:00:00
curl security update
2021-11-02 00:00:00
rocky
rocky
libsolv security update
2021-11-02 07:49:29
kernel security, bug fix, and enhancement update
2021-11-02 07:47:41
kernel-rt security and bug fix update
2021-11-02 09:33:51
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2021:14807-1)
2021-09-24 00:00:00
openSUSE: Security Advisory for curl (openSUSE-SU-2021:1384-1)
2021-10-19 00:00:00
Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2022-1003)
2022-01-28 00:00:00
suse
suse
Security update for curl (moderate)
2021-10-06 00:00:00
Security update for curl (moderate)
2021-10-18 00:00:00
ibm
ibm
Security Bulletin: IBM MQ is vulnerable to multiple issues with libcurl (CVE-2021-22946, CVE-2021-22947)
2021-12-17 13:33:37
ubuntu
ubuntu
curl regression
2021-09-21 00:00:00
curl vulnerabilities
2021-09-15 00:00:00
curl vulnerabilities
2021-09-15 00:00:00
debian
debian
[SECURITY] [DLA 2773-1] curl security update
2021-09-30 21:58:49
[SECURITY] [DLA 2678-1] ruby-nokogiri security update
2021-06-06 19:00:59
amazon
amazon
Medium: curl
2021-11-10 22:13:00
Medium: curl
2021-12-08 02:22:00
slackware
slackware
[slackware-security] curl
2021-09-16 03:11:12
photon
photon
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2021-1.0-0434
2021-09-17 00:00:00
Moderate Photon OS Security Update - PHSA-2021-0301
2021-09-17 00:00:00
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2021-2.0-0392
2021-09-17 00:00:00
mageia
mageia
Updated curl packages fix security vulnerability
2021-09-23 07:49:29
freebsd
freebsd
cURL -- Multiple vulnerabilities
2021-09-15 00:00:00
nokogiri -- Security vulnerability
2021-01-22 00:00:00
fedora
fedora
[SECURITY] Fedora 35 Update: curl-7.79.1-1.fc35
2021-11-03 01:12:29
cloudfoundry
cloudfoundry
USN-5079-1: curl vulnerabilities | Cloud Foundry
2021-10-28 00:00:00
cve
cve
CVE-2020-26247
2020-12-30 19:15:12
CVE-2021-33929
2021-09-02 15:15:07
CVE-2021-33930
2021-09-02 15:15:07
veracode
veracode
XML External Entity (XXE)
2020-12-31 04:29:27
Denial Of Service (DoS)
2021-11-14 23:40:18
Denial Of Service (DoS)
2021-11-14 23:40:35
alpinelinux
alpinelinux
CVE-2020-26247
2020-12-30 19:15:12
ubuntucve
ubuntucve
CVE-2020-26247
2020-12-30 00:00:00
CVE-2021-33928
2021-09-02 00:00:00
CVE-2021-33930
2021-09-02 00:00:00
cvelist
cvelist
CVE-2020-26247 XXE in Nokogiri
2020-12-30 00:00:00
CVE-2021-33930
2021-09-02 14:58:13
CVE-2021-33928
2021-09-02 14:58:05
cnvd
cnvd
libsolv buffer overflow vulnerability (CNVD-2021-69607)
2021-09-03 00:00:00
libsolv buffer overflow vulnerability
2021-09-03 00:00:00
libsolv buffer overflow vulnerability (CNVD-2021-69608)
2021-09-03 00:00:00
cbl_mariner
cbl_mariner
CVE-2021-33930 affecting package libsolv 0.7.7-4
2021-11-06 00:29:51
CVE-2021-33938 affecting package libsolv 0.7.7-4
2021-11-06 00:29:51
CVE-2021-33928 affecting package libsolv 0.7.7-4
2021-11-06 00:29:51
prion
prion
Buffer overflow
2021-09-02 15:15:00
Buffer overflow
2021-09-02 15:15:00
Buffer overflow
2021-09-02 15:15:00
nvd
nvd
CVE-2021-33930
2021-09-02 15:15:07
CVE-2020-26247
2020-12-30 19:15:12
CVE-2021-33938
2021-09-02 15:15:07
debiancve
debiancve
CVE-2021-33930
2021-09-02 15:15:07
CVE-2021-33928
2021-09-02 15:15:07
CVE-2021-33938
2021-09-02 15:15:07
redhatcve
redhatcve
CVE-2021-33928
2021-09-02 18:06:07
CVE-2021-33929
2021-09-02 18:06:07
CVE-2021-33938
2021-09-02 18:06:14
github
github
Nokogiri::XML::Schema trusts input by default, exposing risk of XXE vulnerability
2020-12-30 18:35:06
centos
centos
bpftool, kernel, perf, python security update
2021-12-01 20:31:47

0.003 Low

EPSS

Percentile

71.7%

JSON
Related for RHSA-2021:5191
redhat10almalinux3nessus57osv19oraclelinux3rocky4openvas24suse2ibm1ubuntu4debian2amazon2slackware1photon8mageia1freebsd2fedora1cloudfoundry1cve5veracode7alpinelinux1ubuntucve6cvelist5cnvd4cbl_mariner4prion5nvd5debiancve5redhatcve5github1centos1