[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2021-21284":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T20:55:29.923Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":40,"aliases":41,"duplicate_of":9,"upstream":43,"downstream":44,"duplicates":73,"related":74,"reserved_at":9,"published_at":90,"modified_at":91,"state":92,"summary":93,"references_raw":102,"kevs":155,"epss":156,"epss_history":159,"metrics":430,"affected":445},"CVE-2021-21284","In Docker before versions 9.03.15, 20.10.3 there is a vulnerability involving the --userns-remap option in which access to remapped root allows privilege escalation to real root. When using \"--userns-remap\", if the root user in the remapped namespace has access to the host filesystem they can modify files under \"/var/lib/docker/\u003Cremapping>\" that cause writing files with extended privileges. Versions 20.10.3 and 19.03.15 contain patches that prevent privilege escalation from remapped user.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-22","Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')","The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.","weakness","Stable","Base","High",[20,24,28,32,36],{"id":21,"name":22,"techniques":23},"CAPEC-126","Path Traversal",[],{"id":25,"name":26,"techniques":27},"CAPEC-64","Using Slashes and URL Encoding Combined to Bypass Validation Logic",[],{"id":29,"name":30,"techniques":31},"CAPEC-76","Manipulating Web Input to File System Calls",[],{"id":33,"name":34,"techniques":35},"CAPEC-78","Using Escaped Slashes in Alternate Encoding",[],{"id":37,"name":38,"techniques":39},"CAPEC-79","Using Slashes in Alternate Encoding",[],[],[42],"GHSA-7452-xqpj-6rpc",[],[45,47,49,51,53,55,57,59,61,63,65,67,69,71],{"_key":46},"SUSE-SU-2021:0435-1",{"_key":48},"SUSE-SU-2021:0445-1",{"_key":50},"SUSE-SU-2021:1458-1",{"_key":52},"SUSE-SU-2021:1954-1",{"_key":54},"SUSE-SU-2025:03540-1",{"_key":56},"UBUNTU-CVE-2021-21284",{"_key":58},"OPENSUSE-SU-2021:0278-1",{"_key":60},"OPENSUSE-SU-2021:0878-1",{"_key":62},"OPENSUSE-SU-2021:1954-1",{"_key":64},"OPENSUSE-SU-2024:10722-1",{"_key":66},"DSA-4865-1",{"_key":68},"SUSE-SU-2025:03545-1",{"_key":70},"OPENSUSE-SU-2025:15589-1",{"_key":72},"DEBIAN-CVE-2021-21284",[],[75,76,77,78,79,80,81,82,83,84,85,86,88],{"_key":46},{"_key":48},{"_key":50},{"_key":52},{"_key":54},{"_key":58},{"_key":60},{"_key":62},{"_key":64},{"_key":68},{"_key":70},{"_key":87},"CGA-Q775-GJGX-8578",{"_key":89},"CGA-PV2F-W2W8-CMQJ","2021-02-02T17:55:22.000Z","2024-08-03T18:09:15.042Z","Modified",{"cisa_kev":94,"cisa_ransomware":94,"cisa_vendor":9,"epss_severity":95,"epss_score":96,"severity":97,"severity_score":98,"severity_version":99,"severity_source":100,"severity_vector":101,"severity_status":92},false,"low",0.0002,"medium",6.8,"v3.1","cve.org","CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:N",[103,113,118,122,127,132,136,141,146,151],{"url":104,"sources":105,"tags":108},"https://docs.docker.com/engine/release-notes/#20103",[100,106,107],"nvd","osv_go",[109,110,111,112],"X Refsource MISC","Release Notes","Vendor Advisory","WEB",{"url":114,"sources":115,"tags":116},"https://github.com/moby/moby/releases/tag/v20.10.3",[100,106,107],[109,110,117,112],"Third Party Advisory",{"url":119,"sources":120,"tags":121},"https://github.com/moby/moby/releases/tag/v19.03.15",[100,106,107],[109,110,117,112],{"url":123,"sources":124,"tags":125},"https://github.com/moby/moby/security/advisories/GHSA-7452-xqpj-6rpc",[100,106,107],[126,117,112],"X Refsource CONFIRM",{"url":128,"sources":129,"tags":130},"https://github.com/moby/moby/commit/64bd4485b3a66a597c02c95f5776395e540b2c7c",[100,106,107],[109,131,117,112],"Patch",{"url":133,"sources":134,"tags":135},"https://security.netapp.com/advisory/ntap-20210226-0005/",[100,106],[126,117],{"url":137,"sources":138,"tags":139},"https://www.debian.org/security/2021/dsa-4865",[100,106,107],[111,140,117,112],"X Refsource DEBIAN",{"url":142,"sources":143,"tags":144},"https://security.gentoo.org/glsa/202107-23",[100,106,107],[111,145,131,117,112],"X Refsource GENTOO",{"url":147,"sources":148,"tags":149},"https://nvd.nist.gov/vuln/detail/CVE-2021-21284",[107],[150],"Advisory",{"url":152,"sources":153,"tags":154},"https://security.netapp.com/advisory/ntap-20210226-0005",[107],[112],[],{"date":157,"score":96,"percentile":158},"2026-06-04",0.05779,[160,164,167,170,173,176,178,181,184,187,190,193,196,199,202,206,209,212,215,218,221,224,227,230,233,236,239,242,245,248,251,254,257,260,262,265,268,271,274,277,280,283,286,289,292,295,298,301,304,307,310,313,316,319,323,326,329,332,334,337,340,343,346,349,352,355,358,361,364,367,370,373,376,379,382,385,388,391,394,397,400,403,406,409,412,415,418,421,424,427],{"date":161,"score":162,"percentile":163},"2025-11-04",0.00023,0.04856,{"date":165,"score":162,"percentile":166},"2025-11-05",0.04862,{"date":168,"score":162,"percentile":169},"2025-11-06",0.04976,{"date":171,"score":162,"percentile":172},"2025-11-07",0.04984,{"date":174,"score":162,"percentile":175},"2025-11-08",0.0498,{"date":177,"score":162,"percentile":175},"2025-11-09",{"date":179,"score":162,"percentile":180},"2025-11-10",0.04958,{"date":182,"score":162,"percentile":183},"2025-11-11",0.04997,{"date":185,"score":162,"percentile":186},"2025-11-12",0.05017,{"date":188,"score":162,"percentile":189},"2025-11-13",0.05052,{"date":191,"score":162,"percentile":192},"2025-11-14",0.05087,{"date":194,"score":162,"percentile":195},"2025-11-15",0.05109,{"date":197,"score":162,"percentile":198},"2025-11-16",0.05125,{"date":200,"score":162,"percentile":201},"2025-11-17",0.05119,{"date":203,"score":204,"percentile":205},"2025-11-18",0.00304,0.50749,{"date":207,"score":204,"percentile":208},"2025-11-19",0.5076,{"date":210,"score":204,"percentile":211},"2025-11-20",0.50747,{"date":213,"score":162,"percentile":214},"2025-11-21",0.05173,{"date":216,"score":162,"percentile":217},"2025-11-22",0.05163,{"date":219,"score":162,"percentile":220},"2025-11-23",0.05153,{"date":222,"score":162,"percentile":223},"2025-11-24",0.05137,{"date":225,"score":162,"percentile":226},"2025-11-25",0.05148,{"date":228,"score":162,"percentile":229},"2025-11-26",0.05187,{"date":231,"score":162,"percentile":232},"2025-11-27",0.05205,{"date":234,"score":162,"percentile":235},"2025-11-28",0.05188,{"date":237,"score":162,"percentile":238},"2025-11-29",0.05232,{"date":240,"score":162,"percentile":241},"2025-11-30",0.05229,{"date":243,"score":162,"percentile":244},"2025-12-01",0.05316,{"date":246,"score":162,"percentile":247},"2025-12-02",0.05331,{"date":249,"score":162,"percentile":250},"2025-12-03",0.05354,{"date":252,"score":162,"percentile":253},"2025-12-04",0.05305,{"date":255,"score":162,"percentile":256},"2025-12-05",0.05369,{"date":258,"score":162,"percentile":259},"2025-12-06",0.05382,{"date":261,"score":162,"percentile":259},"2025-12-07",{"date":263,"score":162,"percentile":264},"2025-12-08",0.0539,{"date":266,"score":162,"percentile":267},"2025-12-09",0.05431,{"date":269,"score":162,"percentile":270},"2025-12-10",0.05498,{"date":272,"score":162,"percentile":273},"2025-12-11",0.05505,{"date":275,"score":162,"percentile":276},"2025-12-12",0.05536,{"date":278,"score":162,"percentile":279},"2025-12-13",0.05579,{"date":281,"score":162,"percentile":282},"2025-12-14",0.05559,{"date":284,"score":162,"percentile":285},"2025-12-15",0.05539,{"date":287,"score":162,"percentile":288},"2025-12-16",0.05553,{"date":290,"score":162,"percentile":291},"2025-12-17",0.05616,{"date":293,"score":162,"percentile":294},"2025-12-18",0.05653,{"date":296,"score":162,"percentile":297},"2025-12-19",0.05645,{"date":299,"score":162,"percentile":300},"2025-12-20",0.05642,{"date":302,"score":162,"percentile":303},"2025-12-21",0.05631,{"date":305,"score":162,"percentile":306},"2025-12-22",0.05583,{"date":308,"score":162,"percentile":309},"2025-12-23",0.05594,{"date":311,"score":162,"percentile":312},"2025-12-24",0.05628,{"date":314,"score":162,"percentile":315},"2025-12-25",0.05664,{"date":317,"score":162,"percentile":318},"2025-12-26",0.05658,{"date":320,"score":321,"percentile":322},"2025-12-27",0.00028,0.07247,{"date":324,"score":162,"percentile":325},"2025-12-28",0.0565,{"date":327,"score":162,"percentile":328},"2025-12-29",0.05636,{"date":330,"score":162,"percentile":331},"2025-12-30",0.05623,{"date":333,"score":162,"percentile":318},"2025-12-31",{"date":335,"score":162,"percentile":336},"2026-01-01",0.0573,{"date":338,"score":96,"percentile":339},"2026-01-02",0.04724,{"date":341,"score":96,"percentile":342},"2026-01-03",0.0471,{"date":344,"score":96,"percentile":345},"2026-01-04",0.04607,{"date":347,"score":96,"percentile":348},"2026-01-05",0.04545,{"date":350,"score":96,"percentile":351},"2026-01-06",0.04542,{"date":353,"score":96,"percentile":354},"2026-01-07",0.04562,{"date":356,"score":96,"percentile":357},"2026-01-08",0.04591,{"date":359,"score":96,"percentile":360},"2026-01-09",0.0459,{"date":362,"score":96,"percentile":363},"2026-01-10",0.04596,{"date":365,"score":96,"percentile":366},"2026-01-11",0.04581,{"date":368,"score":96,"percentile":369},"2026-01-12",0.04592,{"date":371,"score":96,"percentile":372},"2026-01-13",0.04583,{"date":374,"score":96,"percentile":375},"2026-01-14",0.04627,{"date":377,"score":96,"percentile":378},"2026-01-15",0.04535,{"date":380,"score":96,"percentile":381},"2026-01-16",0.04499,{"date":383,"score":96,"percentile":384},"2026-01-17",0.04498,{"date":386,"score":96,"percentile":387},"2026-01-18",0.04479,{"date":389,"score":96,"percentile":390},"2026-01-19",0.04432,{"date":392,"score":96,"percentile":393},"2026-01-20",0.04388,{"date":395,"score":96,"percentile":396},"2026-01-21",0.04379,{"date":398,"score":96,"percentile":399},"2026-01-22",0.04364,{"date":401,"score":96,"percentile":402},"2026-01-23",0.04414,{"date":404,"score":96,"percentile":405},"2026-01-24",0.04458,{"date":407,"score":96,"percentile":408},"2026-01-25",0.04453,{"date":410,"score":96,"percentile":411},"2026-01-26",0.0444,{"date":413,"score":96,"percentile":414},"2026-01-27",0.04428,{"date":416,"score":96,"percentile":417},"2026-01-28",0.04413,{"date":419,"score":96,"percentile":420},"2026-01-29",0.0443,{"date":422,"score":96,"percentile":423},"2026-01-30",0.04438,{"date":425,"score":96,"percentile":426},"2026-01-31",0.04415,{"date":428,"score":96,"percentile":429},"2026-02-01",0.04531,[431,436,443],{"source":100,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":432,"cvss_v4_0":9},{"baseScore":98,"baseSeverity":433,"vectorString":101,"impactScore":434,"exploitabilityScore":435},"MEDIUM",6.7,5.9,{"source":106,"cvss_v2_0":437,"cvss_v3_0":9,"cvss_v3_1":442,"cvss_v4_0":9},{"baseScore":438,"baseSeverity":9,"vectorString":439,"impactScore":440,"exploitabilityScore":441},2.7,"AV:A/AC:L/Au:S/C:N/I:P/A:N",2.9,5.1,{"baseScore":98,"baseSeverity":433,"vectorString":101,"impactScore":434,"exploitabilityScore":435},{"source":107,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":444,"cvss_v4_0":9},{"baseScore":98,"baseSeverity":9,"vectorString":101,"impactScore":434,"exploitabilityScore":435},[446,455,469,483,489],{"ecosystem":9,"name":447,"vendor":448,"product":449,"cpe_part":450,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":451},"debian linux","debian","debian_linux","o",[452],{"version":453,"is_range":94,"range_type":454,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"10.0","cpe",{"ecosystem":9,"name":456,"vendor":456,"product":456,"cpe_part":457,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":458},"docker","a",[459,464],{"version":460,"is_range":461,"range_type":454,"version_start":9,"version_start_type":9,"version_end":462,"version_end_type":463,"fixed_in":9},"lt19.03.15",true,"19.03.15","excluding",{"version":465,"is_range":461,"range_type":454,"version_start":466,"version_start_type":467,"version_end":468,"version_end_type":463,"fixed_in":9},"gte20.0.0_lt20.10.3","20.0.0","including","20.10.3",{"ecosystem":470,"name":471,"vendor":472,"product":473,"cpe_part":9,"purl_type":474,"purl_namespace":472,"purl_name":473,"source":9,"versions":475},"Go","github.com/moby/moby","github.com/moby","moby","golang",[476,480],{"version":477,"is_range":461,"range_type":478,"version_start":9,"version_start_type":9,"version_end":479,"version_end_type":463,"fixed_in":9},"lt19_3_15","semver","19.3.15",{"version":481,"is_range":461,"range_type":478,"version_start":482,"version_start_type":467,"version_end":468,"version_end_type":463,"fixed_in":9},"gte20_10_0_beta1_lt20_10_3","20.10.0-beta1",{"ecosystem":9,"name":473,"vendor":473,"product":473,"cpe_part":457,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":484},[485,487],{"version":486,"is_range":461,"range_type":100,"version_start":9,"version_start_type":9,"version_end":462,"version_end_type":463,"fixed_in":9},"\u003C 19.03.15",{"version":488,"is_range":461,"range_type":100,"version_start":466,"version_start_type":467,"version_end":468,"version_end_type":463,"fixed_in":9},">= 20.0.0, \u003C 20.10.3",{"ecosystem":9,"name":490,"vendor":491,"product":492,"cpe_part":457,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":493},"e-series santricity os controller","netapp","e-series_santricity_os_controller",[494],{"version":495,"is_range":461,"range_type":454,"version_start":496,"version_start_type":467,"version_end":497,"version_end_type":467,"fixed_in":9},"gte11.0.0_lte11.60.3","11.0.0","11.60.3"]