CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-3914

It was found that the smallrye health metrics UI component did not properly sanitize some user inputs. An attacker could use this flaw to conduct cross-site scripting attacks.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 43.3%

CVSS Severity

CVSS v3 Score 6.1

References

https://access.redhat.com/security/cve/CVE-2021-3914
https://bugzilla.redhat.com/show_bug.cgi?id=2018015
https://access.redhat.com/security/cve/CVE-2021-3914
https://bugzilla.redhat.com/show_bug.cgi?id=2018015

Products affected by CVE-2021-3914

Redhat » Build Of Quarkus » Version: N/A

cpe:2.3:a:redhat:build_of_quarkus:-
Redhat » Build Of Quarkus » Version: 1.0

cpe:2.3:a:redhat:build_of_quarkus:1.0
Redhat » Build Of Quarkus » Version: 2.0

cpe:2.3:a:redhat:build_of_quarkus:2.0
Redhat » Build Of Quarkus » Version: 2.2.5

cpe:2.3:a:redhat:build_of_quarkus:2.2.5
Redhat » Build Of Quarkus » Version: 2.7

cpe:2.3:a:redhat:build_of_quarkus:2.7
Redhat » Openshift Application Runtimes » Version: 1.0

cpe:2.3:a:redhat:openshift_application_runtimes:1.0
Redhat » Smallrye Health » Version: N/A

cpe:2.3:a:redhat:smallrye_health:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-3914

Products

Pricing

Contact Us