CVE-2021-23218

Опубликовано: 10 янв. 2022

Источник: nvd

CVSS3: 5.3

CVSS3: 7.5

CVSS2: 4.3

EPSS Низкий

Описание

When running with FIPS mode enabled, Mirantis Container Runtime 20.10.8 leaks memory during TLS Handshakes which could be abused to cause a denial of service.

Ссылки

https://github.com/Mirantis/security/blob/main/advisories/0002.md
Third Party Advisory
https://github.com/Mirantis/security/blob/main/advisories/0002.md
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:mirantis:mirantis_container_runtime:20.10.8:*:*:*:*:*:*:*

EPSS

Процентиль: 56%

0.00334

Низкий

5.3 Medium

CVSS3

7.5 High

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-401

Связанные уязвимости

GHSA-3v69-r3x2-qgp5

github

около 4 лет назад

When running with FIPS mode enabled, Mirantis Container Runtime 20.10.8 leaks memory during TLS Handshakes which could be abused to cause a denial of service.

EPSS

Процентиль: 56%

0.00334

Низкий

5.3 Medium

CVSS3

7.5 High

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-401