Lucene search
K

20 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/05 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2021-4235

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Due to unbounded alias chasing, a maliciously crafted YAML file can cause the system to consume significant system resources. If parsing user input, this may be...

5.5CVSS6.4AI score0.00415EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.6 views

TencentOS Server 3: ostree (TSSA-2023:0103)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2023:0103 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

8.2CVSS7.2AI score0.02607EPSS
Exploits7References16
CBLMariner
CBLMariner
added 2025/01/12 9:15 a.m.47 views

CVE-2021-4235 affecting package application-gateway-kubernetes-ingress 1.4.0-27

CVE-2021-4235 affecting package application-gateway-kubernetes-ingress 1.4.0-27. This CVE either no longer is or was never applicable...

5.5CVSS6.6AI score0.00415EPSS
Exploits1
Ubuntu
Ubuntu
added 2023/08/14 8:42 a.m.53 views

USN-6287-1: Go yaml vulnerabilities

Simon Ferquel discovered that the Go yaml package incorrectly handled certain YAML documents. If a user or an automated system were tricked into opening a specially crafted input file, a remote attacker could possibly use this issue to cause the system to crash, resulting in a denial of service...

7.5CVSS6.5AI score0.017EPSS
Exploits1
OpenVAS
OpenVAS
added 2023/07/06 12:0 a.m.25 views

Debian: Security Advisory (DLA-3479-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7AI score0.017EPSS
Exploits1References4
Debian
Debian
added 2023/07/05 8:29 p.m.24 views

[SECURITY] [DLA 3479-1] golang-yaml.v2 security update

Debian LTS Advisory DLA-3479-1 [email protected] https://www.debian.org/lts/security/ Roberto C. Sánchez July 05, 2023 https://wiki.debian.org/LTS Package : golang-yaml.v2 Version : 2.2.2-1+deb10u1 CVE ID : CVE-2021-4235 CVE-2022-3064 Two denial of service vulnerabilities have been...

7.5CVSS6.7AI score0.017EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2023/06/24 1:26 a.m.55 views

Moderate: Red Hat Security Advisory: OpenShift Container Platform 4.12.22 bug fix and security update

Red Hat OpenShift Container Platform release 4.12.22 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.12. Red Hat Product Security has rated this update as having a...

5.5CVSS6.6AI score0.00415EPSS
Exploits1References12
RedHat Linux
RedHat Linux
added 2023/05/17 10:30 p.m.51 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.13.0 security update

Red Hat OpenShift Container Platform release 4.13.0 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.13. Red Hat Product Security has rated this update as having a...

9.1CVSS7AI score0.05994EPSS
Exploits9References909
RedHat Linux
RedHat Linux
added 2023/02/07 9:23 p.m.35 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.12.2 security update

Red Hat OpenShift Container Platform release 4.12.2 is now available with updates to packages and images that fix several bugs and add enhancements. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, whic...

9.1CVSS6.7AI score0.01319EPSS
Exploits2References21
RedHat Linux
RedHat Linux
added 2023/02/07 9:22 p.m.30 views

Moderate: Red Hat Security Advisory: OpenShift Container Platform 4.12.2 security update

Red Hat OpenShift Container Platform release 4.12.2 is now available with updates to packages and images that fix several bugs and add enhancements. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which...

5.5CVSS6.6AI score0.00415EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2023/01/17 7:29 p.m.88 views

Moderate: Red Hat Security Advisory: OpenShift Container Platform 4.12.0 packages and security update

Red Hat OpenShift Container Platform release 4.12.0 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.12. Red Hat Product Security has rated this update as having a...

8.2CVSS6.7AI score0.02607EPSS
Exploits7References13
OSV
OSV
added 2022/12/27 10:15 p.m.5 views

AZL-44229 CVE-2021-4235 affecting package delve 1.5.0-16

Due to unbounded alias chasing, a maliciously crafted YAML file can cause the system to consume significant system resources. If parsing user input, this may be used as a denial of service vector...

5.5CVSS7.1AI score0.00415EPSS
Exploits1References1
NVD
NVD
added 2022/12/27 10:15 p.m.30 views

CVE-2021-4235

Due to unbounded alias chasing, a maliciously crafted YAML file can cause the system to consume significant system resources. If parsing user input, this may be used as a denial of service vector...

5.5CVSS0.00415EPSS
Exploits1References4
Chainguard
Chainguard
added 2022/12/27 10:15 p.m.80 views

CVE-2021-4235 vulnerabilities

Vulnerabilities for packages: dex-k8s-authenticator, k3d...

5.5CVSS6.5AI score0.00415EPSS
Exploits1
Wolfi
Wolfi
added 2022/12/27 10:15 p.m.35 views

CVE-2021-4235 vulnerabilities

Vulnerabilities for packages: k3d...

5.5CVSS7.5AI score0.00415EPSS
Exploits1
CVE
CVE
added 2022/12/27 9:13 p.m.598 views

CVE-2021-4235

CVE-2021-4235 describes a denial-of-service risk from unbounded alias chasing in YAML parsing. In connected documents, two Mariner advisories link this CVE to the Go-YAML-based YAML processing used by container tools and specify practical fixes. The Mariner entries note that affected packages are...

5.5CVSS6.1AI score0.00415EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2022/12/27 9:13 p.m.37 views

CVE-2021-4235 Denial of service in gopkg.in/yaml.v2

Due to unbounded alias chasing, a maliciously crafted YAML file can cause the system to consume significant system resources. If parsing user input, this may be used as a denial of service vector...

6.4AI score0.00415EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2022/12/27 9:13 p.m.6 views

CVE-2021-4235 Denial of service in gopkg.in/yaml.v2

Due to unbounded alias chasing, a maliciously crafted YAML file can cause the system to consume significant system resources. If parsing user input, this may be used as a denial of service vector...

5.4AI score0.00415EPSS
Exploits1References4
Debian CVE
Debian CVE
added 2022/12/27 9:13 p.m.29 views

CVE-2021-4235

Due to unbounded alias chasing, a maliciously crafted YAML file can cause the system to consume significant system resources. If parsing user input, this may be used as a denial of service vector...

5.5CVSS5.6AI score0.00415EPSS
Exploits1
CBLMariner
CBLMariner
added 2022/12/27 5:58 p.m.39 views

CVE-2021-4235 affecting package etcd 3.5.1-6

CVE-2021-4235 affecting package etcd 3.5.1-6. An upgraded version of the package is available that resolves this issue...

5.5CVSS9.8AI score0.00415EPSS
Exploits1
Rows per page
Query Builder