CVE-2021-41190

🗓️ 17 Nov 2021 19:20:11Reported by GitHub_MType

cve🔗 web.nvd.nist.gov📰️ 7 Media mentions👁 255 Views

The OCI Distribution Spec project API protocol for content distributio

Reporter	Title	Published	Views	Family All 185
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in go and opm affect IBM Robotic Process Automation.	16 Jul 202413:59	–	ibm
IBM Security Bulletins	Security Bulletin: IBM CICS TX Advanced is vulnerable to an Open Container Initiative Distribution Specification vulnerability (CVE-2021-41190).	14 Feb 202321:04	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Cloud Pak for Security includes components with multiple known vulnerabilities	8 Jun 202321:56	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Security Vulnerabilities may affect IBM Robotic Process Automation for Cloud Pak	25 Aug 202202:03	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Storage Fusion is vulnerable to denial of server, and security bypass due to Golang vulnerabilities.	13 May 202418:39	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Cloud Kubernetes Service is affected by a containerd security vulnerability (CVE-2021-41190)	14 Dec 202114:50	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities affect IBM® Db2® On Openshift and IBM® Db2® and Db2 Warehouse® on Cloud Pak for Data	29 Jun 202217:05	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Storage Fusion HCI is vulnerable to denial of service, authentication bypass, and incorrect privilege assignment due to Golang vulnerabilities.	11 May 202416:57	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Edge Application Manager 4.5 addresses multiple security vulnerabilities	31 May 202305:42	–	ibm
IBM Security Bulletins	Security Bulletin: IBM CICS TX Standard is vulnerable to an Open Container Initiative Distribution Specification vulnerability (CVE-2021-41190).	14 Feb 202321:14	–	ibm

NVD

Vulners

Node

linuxfoundation open_container_initiative_distribution_specificationRange≤1.0.0

linuxfoundation open_container_initiative_image_format_specificationRange≤1.0.1

Node

fedoraproject fedoraMatch34

fedoraproject fedoraMatch35

[
  {
    "product": "distribution-spec",
    "vendor": "opencontainers",
    "versions": [
      {
        "status": "affected",
        "version": "< 1.0.1"
      }
    ]
  }
]

Source	Link
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/A2RRFNTMFYKOTRKD37F5ANMCIO3GGJML/
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T4OJ764CKKCWCVONHD4YXTGR7HZ7LRUV/
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3TUZNDAH2B26VPBK342UC3BHZNLBUXGX/
github	www.github.com/opencontainers/distribution-spec/security/advisories/GHSA-mc8v-mgrf-8f4m
github	www.github.com/opencontainers/distribution-spec/commit/ac28cac0557bcd3084714ab09f9f2356fe504923
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RZTO6N55WHKHIZI4IMLY2QFBPMVTAERM/
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YIGVQWOA5XXCQXEOOKZX4CDAGLBDRPRX/
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DX63GRWFEI5RVMYV6XLMCG4OHPWZML27/
openwall	www.openwall.com/lists/oss-security/2021/11/19/10
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SQBCYJUIM5GVCMFUPRWKRZNXMMI5EFA4/

21 Nov 2024 06:25Current

5.7Medium risk

Vulners AI Score5.7

CVSS 24

CVSS 3.13 - 5

EPSS0.00383

CWE-843