[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2021-20199":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T20:55:29.923Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":424,"aliases":434,"duplicate_of":9,"upstream":436,"downstream":437,"duplicates":460,"related":461,"reserved_at":9,"published_at":469,"modified_at":470,"state":471,"summary":472,"references_raw":480,"kevs":517,"epss":518,"epss_history":521,"metrics":791,"affected":804},"CVE-2021-20199","Rootless containers run with Podman, receive all traffic with a source IP address of 127.0.0.1 (including from remote hosts). This impacts containerized applications that trust localhost (127.0.01) connections by default and do not require authentication. This issue affects Podman 1.8.0 onwards.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":9,"capec":18},"CWE-346","Origin Validation Error","The product does not properly verify that the source of data or communication is valid.","weakness","Draft","Class",[19,23,76,88,92,263,267,271,275,279,283,287,291,412,416,420],{"id":20,"name":21,"techniques":22},"CAPEC-111","JSON Hijacking (aka JavaScript Hijacking)",[],{"id":24,"name":25,"techniques":26},"CAPEC-141","Cache Poisoning",[27],{"id":28,"name":29,"tactics":30,"countermeasures":37},"T1557.002","ARP Cache Poisoning",[31,34],{"id":32,"name":33},"TA0031","Credential Access",{"id":35,"name":36},"TA0100","Collection",[38,43,47,51,55,59,63,67,71],{"id":39,"name":40,"tactic":41},"D3-UGLPA","User Geolocation Logon Pattern Analysis",{"name":42},"Detect",{"id":44,"name":45,"tactic":46},"D3-PMAD","Protocol Metadata Anomaly Detection",{"name":42},{"id":48,"name":49,"tactic":50},"D3-CSPP","Client-server Payload Profiling",{"name":42},{"id":52,"name":53,"tactic":54},"D3-PHDURA","Per Host Download-Upload Ratio Analysis",{"name":42},{"id":56,"name":57,"tactic":58},"D3-NTSA","Network Traffic Signature Analysis",{"name":42},{"id":60,"name":61,"tactic":62},"D3-APCA","Application Protocol Command Analysis",{"name":42},{"id":64,"name":65,"tactic":66},"D3-NTCD","Network Traffic Community Deviation",{"name":42},{"id":68,"name":69,"tactic":70},"D3-RTSD","Remote Terminal Session Detection",{"name":42},{"id":72,"name":73,"tactic":74},"D3-NTF","Network Traffic Filtering",{"name":75},"Isolate",{"id":77,"name":78,"techniques":79},"CAPEC-142","DNS Cache Poisoning",[80],{"id":81,"name":82,"tactics":83,"countermeasures":87},"T1584.002","DNS Server",[84],{"id":85,"name":86},"TA0042","Resource Development",[],{"id":89,"name":90,"techniques":91},"CAPEC-160","Exploit Script-Based APIs",[],{"id":93,"name":94,"techniques":95},"CAPEC-21","Exploitation of Trusted Identifiers",[96,211,239],{"id":97,"name":98,"tactics":99,"countermeasures":109},"T1134","Access Token Manipulation",[100,103,106],{"id":101,"name":102},"TA0030","Defense Evasion",{"id":104,"name":105},"TA0005","Stealth",{"id":107,"name":108},"TA0111","Privilege Escalation",[110,115,119,123,127,131,135,139,143,148,152,156,161,166,170,174,178,182,187,191,195,199,203,207],{"id":111,"name":112,"tactic":113},"D3-CI","Configuration Inventory",{"name":114},"Model",{"id":116,"name":117,"tactic":118},"D3-NTPM","Network Traffic Policy Mapping",{"name":114},{"id":120,"name":121,"tactic":122},"D3-AM","Access Modeling",{"name":114},{"id":124,"name":125,"tactic":126},"D3-AEM","Application Exception Monitoring",{"name":42},{"id":128,"name":129,"tactic":130},"D3-SCA","System Call Analysis",{"name":42},{"id":132,"name":133,"tactic":134},"D3-CCSA","Credential Compromise Scope Analysis",{"name":42},{"id":136,"name":137,"tactic":138},"D3-OPM","Operational Process Monitoring",{"name":42},{"id":140,"name":141,"tactic":142},"D3-PSA","Process Spawn Analysis",{"name":42},{"id":144,"name":145,"tactic":146},"D3-ST","Session Termination",{"name":147},"Evict",{"id":149,"name":150,"tactic":151},"D3-CR","Credential Revocation",{"name":147},{"id":153,"name":154,"tactic":155},"D3-ANCI","Authentication Cache Invalidation",{"name":147},{"id":157,"name":158,"tactic":159},"D3-DUC","Decoy User Credential",{"name":160},"Deceive",{"id":162,"name":163,"tactic":164},"D3-CH","Credential Hardening",{"name":165},"Harden",{"id":167,"name":168,"tactic":169},"D3-MFA","Multi-factor Authentication",{"name":165},{"id":171,"name":172,"tactic":173},"D3-CRO","Credential Rotation",{"name":165},{"id":175,"name":176,"tactic":177},"D3-TB","Token Binding",{"name":165},{"id":179,"name":180,"tactic":181},"D3-TBA","Token-based Authentication",{"name":165},{"id":183,"name":184,"tactic":185},"D3-RC","Restore Configuration",{"name":186},"Restore",{"id":188,"name":189,"tactic":190},"D3-RIC","Reissue Credential",{"name":186},{"id":192,"name":193,"tactic":194},"D3-SCF","System Call Filtering",{"name":75},{"id":196,"name":197,"tactic":198},"D3-CTS","Credential Transmission Scoping",{"name":75},{"id":200,"name":201,"tactic":202},"D3-EAL","Executable Allowlisting",{"name":75},{"id":204,"name":205,"tactic":206},"D3-EDL","Executable Denylisting",{"name":75},{"id":208,"name":209,"tactic":210},"D3-HBPI","Hardware-based Process Isolation",{"name":75},{"id":212,"name":213,"tactics":214,"countermeasures":216},"T1528","Steal Application Access Token",[215],{"id":32,"name":33},[217,219,221,223,225,227,229,231,233,235,237],{"id":132,"name":133,"tactic":218},{"name":42},{"id":149,"name":150,"tactic":220},{"name":147},{"id":153,"name":154,"tactic":222},{"name":147},{"id":157,"name":158,"tactic":224},{"name":160},{"id":162,"name":163,"tactic":226},{"name":165},{"id":167,"name":168,"tactic":228},{"name":165},{"id":171,"name":172,"tactic":230},{"name":165},{"id":175,"name":176,"tactic":232},{"name":165},{"id":179,"name":180,"tactic":234},{"name":165},{"id":188,"name":189,"tactic":236},{"name":186},{"id":196,"name":197,"tactic":238},{"name":75},{"id":240,"name":241,"tactics":242,"countermeasures":244},"T1539","Steal Web Session Cookie",[243],{"id":32,"name":33},[245,247,249,251,253,255,257,259,261],{"id":132,"name":133,"tactic":246},{"name":42},{"id":149,"name":150,"tactic":248},{"name":147},{"id":153,"name":154,"tactic":250},{"name":147},{"id":157,"name":158,"tactic":252},{"name":160},{"id":162,"name":163,"tactic":254},{"name":165},{"id":167,"name":168,"tactic":256},{"name":165},{"id":171,"name":172,"tactic":258},{"name":165},{"id":188,"name":189,"tactic":260},{"name":186},{"id":196,"name":197,"tactic":262},{"name":75},{"id":264,"name":265,"techniques":266},"CAPEC-384","Application API Message Manipulation via Man-in-the-Middle",[],{"id":268,"name":269,"techniques":270},"CAPEC-385","Transaction or Event Tampering via Application API Manipulation",[],{"id":272,"name":273,"techniques":274},"CAPEC-386","Application API Navigation Remapping",[],{"id":276,"name":277,"techniques":278},"CAPEC-387","Navigation Remapping To Propagate Malicious Content",[],{"id":280,"name":281,"techniques":282},"CAPEC-388","Application API Button Hijacking",[],{"id":284,"name":285,"techniques":286},"CAPEC-510","SaaS User Request Forgery",[],{"id":288,"name":289,"techniques":290},"CAPEC-59","Session Credential Falsification through Prediction",[],{"id":292,"name":293,"techniques":294},"CAPEC-60","Reusing Session IDs (aka Session Replay)",[295,325],{"id":296,"name":297,"tactics":298,"countermeasures":302},"T1134.001","Token Impersonation/Theft",[299,300,301],{"id":101,"name":102},{"id":104,"name":105},{"id":107,"name":108},[303,305,307,309,311,313,315,317,319,321,323],{"id":132,"name":133,"tactic":304},{"name":42},{"id":149,"name":150,"tactic":306},{"name":147},{"id":153,"name":154,"tactic":308},{"name":147},{"id":157,"name":158,"tactic":310},{"name":160},{"id":162,"name":163,"tactic":312},{"name":165},{"id":167,"name":168,"tactic":314},{"name":165},{"id":171,"name":172,"tactic":316},{"name":165},{"id":175,"name":176,"tactic":318},{"name":165},{"id":179,"name":180,"tactic":320},{"name":165},{"id":188,"name":189,"tactic":322},{"name":186},{"id":196,"name":197,"tactic":324},{"name":75},{"id":326,"name":327,"tactics":328,"countermeasures":333},"T1550.004","Web Session Cookie",[329,330],{"id":101,"name":102},{"id":331,"name":332},"TA0109","Lateral Movement",[334,336,338,340,342,344,346,348,350,354,358,360,362,366,370,374,378,380,382,384,386,388,390,392,394,398,400,402,406,410],{"id":39,"name":40,"tactic":335},{"name":42},{"id":44,"name":45,"tactic":337},{"name":42},{"id":48,"name":49,"tactic":339},{"name":42},{"id":52,"name":53,"tactic":341},{"name":42},{"id":56,"name":57,"tactic":343},{"name":42},{"id":60,"name":61,"tactic":345},{"name":42},{"id":64,"name":65,"tactic":347},{"name":42},{"id":68,"name":69,"tactic":349},{"name":42},{"id":351,"name":352,"tactic":353},"D3-PLA","Process Lineage Analysis",{"name":42},{"id":355,"name":356,"tactic":357},"D3-PSMD","Process Self-Modification Detection",{"name":42},{"id":140,"name":141,"tactic":359},{"name":42},{"id":132,"name":133,"tactic":361},{"name":42},{"id":363,"name":364,"tactic":365},"D3-PT","Process Termination",{"name":147},{"id":367,"name":368,"tactic":369},"D3-PS","Process Suspension",{"name":147},{"id":371,"name":372,"tactic":373},"D3-HR","Host Reboot",{"name":147},{"id":375,"name":376,"tactic":377},"D3-HS","Host Shutdown",{"name":147},{"id":149,"name":150,"tactic":379},{"name":147},{"id":153,"name":154,"tactic":381},{"name":147},{"id":157,"name":158,"tactic":383},{"name":160},{"id":162,"name":163,"tactic":385},{"name":165},{"id":167,"name":168,"tactic":387},{"name":165},{"id":171,"name":172,"tactic":389},{"name":165},{"id":188,"name":189,"tactic":391},{"name":186},{"id":72,"name":73,"tactic":393},{"name":75},{"id":395,"name":396,"tactic":397},"D3-KBPI","Kernel-based Process Isolation",{"name":75},{"id":192,"name":193,"tactic":399},{"name":75},{"id":208,"name":209,"tactic":401},{"name":75},{"id":403,"name":404,"tactic":405},"D3-ABPI","Application-based Process Isolation",{"name":75},{"id":407,"name":408,"tactic":409},"D3-WSAM","Web Session Access Mediation",{"name":75},{"id":196,"name":197,"tactic":411},{"name":75},{"id":413,"name":414,"techniques":415},"CAPEC-75","Manipulating Writeable Configuration Files",[],{"id":417,"name":418,"techniques":419},"CAPEC-76","Manipulating Web Input to File System Calls",[],{"id":421,"name":422,"techniques":423},"CAPEC-89","Pharming",[],[425],{"_key":426,"name":427,"source":428,"url":429,"maturity":430,"reliability_score":431,"verified":432,"type":9,"platforms":433,"requires_auth":9,"exploitdb":9,"metasploit":9},"GITHUB_CONTAINERS_PODMAN","Podman","github","https://github.com/containers/podman/issues/5138","poc",0.3,false,[],[435],"GHSA-grh6-q6m2-rh72",[],[438,440,442,444,446,448,450,452,454,456,458],{"_key":439},"SUSE-SU-2022:23018-1",{"_key":441},"SUSE-SU-2022:3312-1",{"_key":443},"SUSE-SU-2023:0187-1",{"_key":445},"SUSE-SU-2023:0326-1",{"_key":447},"OPENSUSE-SU-2022:23018-1",{"_key":449},"OPENSUSE-SU-2024:11177-1",{"_key":451},"OPENSUSE-SU-2024:11757-1",{"_key":453},"UBUNTU-CVE-2021-20199",{"_key":455},"RHSA-2021:1796",{"_key":457},"DEBIAN-CVE-2021-20199",{"_key":459},"RHSA-2022:7954",[],[462,463,464,465,466,467,468],{"_key":439},{"_key":441},{"_key":443},{"_key":445},{"_key":447},{"_key":449},{"_key":451},"2021-02-02T18:12:26.000Z","2024-08-03T17:30:07.575Z","Modified",{"cisa_kev":432,"cisa_ransomware":432,"cisa_vendor":9,"epss_severity":473,"epss_score":474,"severity":475,"severity_score":476,"severity_version":477,"severity_source":478,"severity_vector":479,"severity_status":471},"low",0.00134,"medium",5.9,"v3.1","nvd","CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",[481,491,495,500,504,509,513],{"url":482,"sources":483,"tags":486},"https://bugzilla.redhat.com/show_bug.cgi?id=1919050",[484,478,485],"cve.org","osv_go",[487,488,489,490],"X Refsource MISC","Issue Tracking","Third Party Advisory","WEB",{"url":429,"sources":492,"tags":493},[484,478,485],[487,494,489,490],"Exploit",{"url":496,"sources":497,"tags":498},"https://github.com/rootless-containers/rootlesskit/pull/206",[484,478,485],[487,499,489,490],"Patch",{"url":501,"sources":502,"tags":503},"https://github.com/containers/podman/pull/9052",[484,478,485],[487,499,489,490],{"url":505,"sources":506,"tags":507},"https://nvd.nist.gov/vuln/detail/CVE-2021-20199",[485],[508],"Advisory",{"url":510,"sources":511,"tags":512},"https://github.com/containers/podman/pull/9225",[485],[490],{"url":514,"sources":515,"tags":516},"https://github.com/containers/podman/releases/tag/v3.0.0-rc3",[485],[490],[],{"date":519,"score":474,"percentile":520},"2026-06-04",0.32474,[522,526,529,532,535,538,541,544,547,550,553,556,559,561,564,568,571,574,577,580,582,585,588,591,594,597,599,602,605,608,611,614,617,620,623,626,629,632,635,638,641,644,647,650,653,656,659,662,665,668,671,674,677,680,683,686,689,693,696,699,702,705,708,711,713,716,719,722,725,727,730,733,736,739,743,746,749,752,755,758,761,764,767,770,773,775,779,782,785,788],{"date":523,"score":524,"percentile":525},"2025-11-04",0.00445,0.62616,{"date":527,"score":524,"percentile":528},"2025-11-05",0.626,{"date":530,"score":524,"percentile":531},"2025-11-06",0.62609,{"date":533,"score":524,"percentile":534},"2025-11-07",0.62625,{"date":536,"score":524,"percentile":537},"2025-11-08",0.6263,{"date":539,"score":524,"percentile":540},"2025-11-09",0.62622,{"date":542,"score":524,"percentile":543},"2025-11-10",0.62606,{"date":545,"score":524,"percentile":546},"2025-11-11",0.62619,{"date":548,"score":524,"percentile":549},"2025-11-12",0.62642,{"date":551,"score":524,"percentile":552},"2025-11-13",0.62648,{"date":554,"score":524,"percentile":555},"2025-11-14",0.62659,{"date":557,"score":524,"percentile":558},"2025-11-15",0.62651,{"date":560,"score":524,"percentile":549},"2025-11-16",{"date":562,"score":524,"percentile":563},"2025-11-17",0.62645,{"date":565,"score":566,"percentile":567},"2025-11-18",0.00108,0.24725,{"date":569,"score":566,"percentile":570},"2025-11-19",0.24752,{"date":572,"score":566,"percentile":573},"2025-11-20",0.24763,{"date":575,"score":524,"percentile":576},"2025-11-21",0.62655,{"date":578,"score":524,"percentile":579},"2025-11-22",0.62665,{"date":581,"score":524,"percentile":549},"2025-11-23",{"date":583,"score":524,"percentile":584},"2025-11-24",0.62636,{"date":586,"score":524,"percentile":587},"2025-11-25",0.6264,{"date":589,"score":524,"percentile":590},"2025-11-26",0.62644,{"date":592,"score":524,"percentile":593},"2025-11-27",0.6265,{"date":595,"score":524,"percentile":596},"2025-11-28",0.62631,{"date":598,"score":524,"percentile":543},"2025-11-29",{"date":600,"score":524,"percentile":601},"2025-11-30",0.62599,{"date":603,"score":524,"percentile":604},"2025-12-01",0.62764,{"date":606,"score":524,"percentile":607},"2025-12-02",0.6278,{"date":609,"score":524,"percentile":610},"2025-12-03",0.62783,{"date":612,"score":524,"percentile":613},"2025-12-04",0.62607,{"date":615,"score":524,"percentile":616},"2025-12-05",0.62618,{"date":618,"score":524,"percentile":619},"2025-12-06",0.62621,{"date":621,"score":524,"percentile":622},"2025-12-07",0.62613,{"date":624,"score":524,"percentile":625},"2025-12-08",0.6262,{"date":627,"score":524,"percentile":628},"2025-12-09",0.62654,{"date":630,"score":524,"percentile":631},"2025-12-10",0.62697,{"date":633,"score":524,"percentile":634},"2025-12-11",0.62714,{"date":636,"score":524,"percentile":637},"2025-12-12",0.62739,{"date":639,"score":524,"percentile":640},"2025-12-13",0.62747,{"date":642,"score":524,"percentile":643},"2025-12-14",0.62745,{"date":645,"score":524,"percentile":646},"2025-12-15",0.62732,{"date":648,"score":524,"percentile":649},"2025-12-16",0.62748,{"date":651,"score":524,"percentile":652},"2025-12-17",0.62761,{"date":654,"score":524,"percentile":655},"2025-12-18",0.62798,{"date":657,"score":524,"percentile":658},"2025-12-19",0.62812,{"date":660,"score":524,"percentile":661},"2025-12-20",0.62813,{"date":663,"score":524,"percentile":664},"2025-12-21",0.62803,{"date":666,"score":524,"percentile":667},"2025-12-22",0.62794,{"date":669,"score":524,"percentile":670},"2025-12-23",0.62809,{"date":672,"score":524,"percentile":673},"2025-12-24",0.62816,{"date":675,"score":524,"percentile":676},"2025-12-25",0.62847,{"date":678,"score":524,"percentile":679},"2025-12-26",0.62845,{"date":681,"score":524,"percentile":682},"2025-12-27",0.62903,{"date":684,"score":524,"percentile":685},"2025-12-28",0.62823,{"date":687,"score":524,"percentile":688},"2025-12-29",0.62818,{"date":690,"score":691,"percentile":692},"2025-12-30",0.00604,0.68914,{"date":694,"score":691,"percentile":695},"2025-12-31",0.68929,{"date":697,"score":691,"percentile":698},"2026-01-01",0.69104,{"date":700,"score":691,"percentile":701},"2026-01-02",0.69093,{"date":703,"score":691,"percentile":704},"2026-01-03",0.69092,{"date":706,"score":691,"percentile":707},"2026-01-04",0.68932,{"date":709,"score":691,"percentile":710},"2026-01-05",0.68921,{"date":712,"score":691,"percentile":707},"2026-01-06",{"date":714,"score":691,"percentile":715},"2026-01-07",0.68949,{"date":717,"score":691,"percentile":718},"2026-01-08",0.68966,{"date":720,"score":691,"percentile":721},"2026-01-09",0.68974,{"date":723,"score":691,"percentile":724},"2026-01-10",0.68975,{"date":726,"score":691,"percentile":718},"2026-01-11",{"date":728,"score":691,"percentile":729},"2026-01-12",0.68959,{"date":731,"score":691,"percentile":732},"2026-01-13",0.68957,{"date":734,"score":691,"percentile":735},"2026-01-14",0.68988,{"date":737,"score":691,"percentile":738},"2026-01-15",0.68993,{"date":740,"score":741,"percentile":742},"2026-01-16",0.00729,0.72158,{"date":744,"score":741,"percentile":745},"2026-01-17",0.72154,{"date":747,"score":741,"percentile":748},"2026-01-18",0.72128,{"date":750,"score":741,"percentile":751},"2026-01-19",0.72121,{"date":753,"score":741,"percentile":754},"2026-01-20",0.72126,{"date":756,"score":741,"percentile":757},"2026-01-21",0.7213,{"date":759,"score":741,"percentile":760},"2026-01-22",0.72138,{"date":762,"score":741,"percentile":763},"2026-01-23",0.7217,{"date":765,"score":741,"percentile":766},"2026-01-24",0.72177,{"date":768,"score":741,"percentile":769},"2026-01-25",0.72157,{"date":771,"score":741,"percentile":772},"2026-01-26",0.72153,{"date":774,"score":741,"percentile":772},"2026-01-27",{"date":776,"score":777,"percentile":778},"2026-01-28",0.00638,0.69975,{"date":780,"score":777,"percentile":781},"2026-01-29",0.69973,{"date":783,"score":777,"percentile":784},"2026-01-30",0.69981,{"date":786,"score":777,"percentile":787},"2026-01-31",0.69986,{"date":789,"score":777,"percentile":790},"2026-02-01",0.7012,[792,802],{"source":478,"cvss_v2_0":793,"cvss_v3_0":9,"cvss_v3_1":798,"cvss_v4_0":9},{"baseScore":794,"baseSeverity":9,"vectorString":795,"impactScore":796,"exploitabilityScore":797},4.3,"AV:N/AC:M/Au:N/C:N/I:P/A:N",2.9,8.6,{"baseScore":476,"baseSeverity":799,"vectorString":479,"impactScore":800,"exploitabilityScore":801},"MEDIUM",6,5.6,{"source":485,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":803,"cvss_v4_0":9},{"baseScore":476,"baseSeverity":9,"vectorString":479,"impactScore":800,"exploitabilityScore":801},[805,818],{"ecosystem":806,"name":807,"vendor":808,"product":809,"cpe_part":9,"purl_type":810,"purl_namespace":808,"purl_name":809,"source":9,"versions":811},"Go","github.com/containers/podman/v3","github.com/containers/podman","v3","golang",[812],{"version":813,"is_range":814,"range_type":815,"version_start":9,"version_start_type":9,"version_end":816,"version_end_type":817,"fixed_in":9},"lt3_0_0",true,"semver","3.0.0","excluding",{"ecosystem":9,"name":819,"vendor":820,"product":819,"cpe_part":821,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":822},"podman","podman_project","a",[823],{"version":824,"is_range":814,"range_type":825,"version_start":826,"version_start_type":827,"version_end":816,"version_end_type":817,"fixed_in":9},"gte1.8.0_lt3.0.0","cpe","1.8.0","including"]