CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-3516

There's a flaw in libxml2's xmllint in versions before 2.9.11. An attacker who is able to submit a crafted file to be processed by xmllint could trigger a use-after-free. The greatest impact of this flaw is to confidentiality, integrity, and availability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 56.9%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 6.8

References

Products affected by CVE-2021-3516

Netapp » Clustered Data Ontap » Version: N/A

cpe:2.3:a:netapp:clustered_data_ontap:-
Netapp » Clustered Data Ontap Antivirus Connector » Version: N/A

cpe:2.3:a:netapp:clustered_data_ontap_antivirus_connector:-
Netapp » Ontap Select Deploy Administration Utility » Version: N/A

cpe:2.3:a:netapp:ontap_select_deploy_administration_utility:-
Oracle » Zfs Storage Appliance Kit » Version: 8.8

cpe:2.3:a:oracle:zfs_storage_appliance_kit:8.8
Redhat » Jboss Core Services » Version: N/A

cpe:2.3:a:redhat:jboss_core_services:-
Xmlsoft » Xmllint » Version: Any

cpe:2.3:a:xmlsoft:xmllint:*
Debian » Debian Linux » Version: 9.0

cpe:2.3:o:debian:debian_linux:9.0
Fedoraproject » Fedora » Version: 33

cpe:2.3:o:fedoraproject:fedora:33
Fedoraproject » Fedora » Version: 34

cpe:2.3:o:fedoraproject:fedora:34
Redhat » Enterprise Linux » Version: 6.0

cpe:2.3:o:redhat:enterprise_linux:6.0
Redhat » Enterprise Linux » Version: 7.0

cpe:2.3:o:redhat:enterprise_linux:7.0
Redhat » Enterprise Linux » Version: 8.0

cpe:2.3:o:redhat:enterprise_linux:8.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-3516

Products

Pricing

Contact Us