[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2021-21334":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T20:55:29.923Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":19,"aliases":20,"duplicate_of":9,"upstream":22,"downstream":23,"duplicates":42,"related":43,"reserved_at":9,"published_at":54,"modified_at":55,"state":56,"summary":57,"references_raw":66,"kevs":143,"epss":144,"epss_history":147,"metrics":407,"affected":422},"CVE-2021-21334","In containerd (an industry-standard container runtime) before versions 1.3.10 and 1.4.4, containers launched through containerd's CRI implementation (through Kubernetes, crictl, or any other pod/container client that uses the containerd CRI service) that share the same image may receive incorrect environment variables, including values that are defined for other containers. If the affected containers have different security contexts, this may allow sensitive information to be unintentionally shared. If you are not using containerd's CRI implementation (through one of the mechanisms described above), you are not vulnerable to this issue. If you are not launching multiple containers or Kubernetes pods from the same image which have different environment variables, you are not vulnerable to this issue. If you are not launching multiple containers or Kubernetes pods from the same image in rapid succession, you have reduced likelihood of being vulnerable to this issue This vulnerability has been fixed in containerd 1.3.10 and containerd 1.4.4. Users should update to these versions.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":9,"capec":18},"CWE-668","Exposure of Resource to Wrong Sphere","The product exposes a resource to the wrong control sphere, providing unintended actors with inappropriate access to the resource.","weakness","Draft","Class",[],[],[21],"GHSA-6g2q-w5j3-fwh4",[],[24,26,28,30,32,34,36,38,40],{"_key":25},"SUSE-SU-2021:1458-1",{"_key":27},"SUSE-SU-2021:1954-1",{"_key":29},"UBUNTU-CVE-2021-21334",{"_key":31},"OPENSUSE-SU-2021:0878-1",{"_key":33},"OPENSUSE-SU-2021:1954-1",{"_key":35},"OPENSUSE-SU-2024:10693-1",{"_key":37},"MGASA-2021-0248",{"_key":39},"USN-4881-1",{"_key":41},"DEBIAN-CVE-2021-21334",[],[44,45,46,47,48,49,50,52],{"_key":25},{"_key":27},{"_key":31},{"_key":33},{"_key":35},{"_key":37},{"_key":51},"CGA-743Q-CCVG-4798",{"_key":53},"CGA-7RP9-2WXH-G5RJ","2021-03-10T21:30:18.000Z","2024-08-03T18:09:15.415Z","Modified",{"cisa_kev":58,"cisa_ransomware":58,"cisa_vendor":9,"epss_severity":59,"epss_score":60,"severity":61,"severity_score":62,"severity_version":63,"severity_source":64,"severity_vector":65,"severity_status":56},false,"low",0.00405,"medium",6.3,"v3.1","cve.org","CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",[67,76,82,86,91,97,101,105,110,115,119,123,127,131,135,139],{"url":68,"sources":69,"tags":72},"https://github.com/containerd/containerd/security/advisories/GHSA-6g2q-w5j3-fwh4",[64,70,71],"nvd","osv_go",[73,74,75],"X Refsource CONFIRM","Third Party Advisory","WEB",{"url":77,"sources":78,"tags":79},"https://github.com/containerd/containerd/releases/tag/v1.4.4",[64,70,71],[80,81,74,75],"X Refsource MISC","Release Notes",{"url":83,"sources":84,"tags":85},"https://github.com/containerd/containerd/releases/tag/v1.3.10",[64,70,71],[80,81,74,75],{"url":87,"sources":88,"tags":89},"https://github.com/containerd/containerd/commit/05f951a3781f4f2c1911b05e61c160e9c30eaa8e",[64,70,71],[80,90,74,75],"Patch",{"url":92,"sources":93,"tags":94},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KUE2Z2ZUWBHRU36ZGBD2YSJCYB6ELPXE/",[64,70],[95,96],"Vendor Advisory","X Refsource FEDORA",{"url":98,"sources":99,"tags":100},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QIBPKSX5IOWPM3ZPFB3JVLXWDHSZTTWT/",[64,70],[95,96],{"url":102,"sources":103,"tags":104},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VTXHA5JOWQRCCUZH7ZQBEYN6KZKJEYSD/",[64,70],[95,96],{"url":106,"sources":107,"tags":108},"https://security.gentoo.org/glsa/202105-33",[64,70,71],[95,109,74,75],"X Refsource GENTOO",{"url":111,"sources":112,"tags":113},"https://nvd.nist.gov/vuln/detail/CVE-2021-21334",[71],[114],"Advisory",{"url":116,"sources":117,"tags":118},"https://github.com/containerd/cri/pull/1628",[71],[75],{"url":120,"sources":121,"tags":122},"https://github.com/containerd/cri/pull/1629",[71],[75],{"url":124,"sources":125,"tags":126},"https://github.com/containerd/containerd/commit/2d9c8aa4b3f4313982c5c999af57212a1c5d144b",[71],[75],{"url":128,"sources":129,"tags":130},"https://github.com/containerd/containerd/commit/cbcb2f57fbe221986f96b552855eb802f63193de",[71],[75],{"url":132,"sources":133,"tags":134},"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KUE2Z2ZUWBHRU36ZGBD2YSJCYB6ELPXE",[71],[75],{"url":136,"sources":137,"tags":138},"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QIBPKSX5IOWPM3ZPFB3JVLXWDHSZTTWT",[71],[75],{"url":140,"sources":141,"tags":142},"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VTXHA5JOWQRCCUZH7ZQBEYN6KZKJEYSD",[71],[75],[],{"date":145,"score":60,"percentile":146},"2026-06-04",0.61356,[148,152,155,158,161,164,167,170,173,176,179,182,185,188,191,195,198,201,203,205,208,211,214,217,219,222,225,228,231,234,237,240,243,246,249,252,255,258,261,264,267,270,273,276,279,282,285,288,291,294,297,299,302,305,308,311,314,317,320,323,326,329,332,334,336,339,342,345,348,351,354,357,360,363,366,369,371,374,377,379,381,384,387,390,393,395,397,399,401,404],{"date":149,"score":150,"percentile":151},"2025-11-04",0.00361,0.57564,{"date":153,"score":150,"percentile":154},"2025-11-05",0.57542,{"date":156,"score":150,"percentile":157},"2025-11-06",0.57544,{"date":159,"score":150,"percentile":160},"2025-11-07",0.57559,{"date":162,"score":150,"percentile":163},"2025-11-08",0.57561,{"date":165,"score":150,"percentile":166},"2025-11-09",0.57549,{"date":168,"score":150,"percentile":169},"2025-11-10",0.57526,{"date":171,"score":150,"percentile":172},"2025-11-11",0.57539,{"date":174,"score":150,"percentile":175},"2025-11-12",0.57563,{"date":177,"score":150,"percentile":178},"2025-11-13",0.57569,{"date":180,"score":150,"percentile":181},"2025-11-14",0.57572,{"date":183,"score":150,"percentile":184},"2025-11-15",0.57565,{"date":186,"score":150,"percentile":187},"2025-11-16",0.5755,{"date":189,"score":150,"percentile":190},"2025-11-17",0.57546,{"date":192,"score":193,"percentile":194},"2025-11-18",0.00821,0.723,{"date":196,"score":193,"percentile":197},"2025-11-19",0.72309,{"date":199,"score":193,"percentile":200},"2025-11-20",0.72317,{"date":202,"score":150,"percentile":151},"2025-11-21",{"date":204,"score":150,"percentile":163},"2025-11-22",{"date":206,"score":150,"percentile":207},"2025-11-23",0.57533,{"date":209,"score":150,"percentile":210},"2025-11-24",0.57528,{"date":212,"score":150,"percentile":213},"2025-11-25",0.5753,{"date":215,"score":150,"percentile":216},"2025-11-26",0.57532,{"date":218,"score":150,"percentile":207},"2025-11-27",{"date":220,"score":150,"percentile":221},"2025-11-28",0.57508,{"date":223,"score":150,"percentile":224},"2025-11-29",0.57493,{"date":226,"score":150,"percentile":227},"2025-11-30",0.57488,{"date":229,"score":150,"percentile":230},"2025-12-01",0.57645,{"date":232,"score":150,"percentile":233},"2025-12-02",0.5766,{"date":235,"score":150,"percentile":236},"2025-12-03",0.57658,{"date":238,"score":150,"percentile":239},"2025-12-04",0.57486,{"date":241,"score":150,"percentile":242},"2025-12-05",0.57499,{"date":244,"score":150,"percentile":245},"2025-12-06",0.57498,{"date":247,"score":150,"percentile":248},"2025-12-07",0.57494,{"date":250,"score":150,"percentile":251},"2025-12-08",0.57495,{"date":253,"score":150,"percentile":254},"2025-12-09",0.57522,{"date":256,"score":150,"percentile":257},"2025-12-10",0.57576,{"date":259,"score":150,"percentile":260},"2025-12-11",0.57601,{"date":262,"score":150,"percentile":263},"2025-12-12",0.57625,{"date":265,"score":150,"percentile":266},"2025-12-13",0.57623,{"date":268,"score":150,"percentile":269},"2025-12-14",0.57624,{"date":271,"score":150,"percentile":272},"2025-12-15",0.57608,{"date":274,"score":150,"percentile":275},"2025-12-16",0.57622,{"date":277,"score":150,"percentile":278},"2025-12-17",0.57632,{"date":280,"score":150,"percentile":281},"2025-12-18",0.57669,{"date":283,"score":150,"percentile":284},"2025-12-19",0.57676,{"date":286,"score":150,"percentile":287},"2025-12-20",0.57675,{"date":289,"score":150,"percentile":290},"2025-12-21",0.57653,{"date":292,"score":150,"percentile":293},"2025-12-22",0.57636,{"date":295,"score":150,"percentile":296},"2025-12-23",0.57644,{"date":298,"score":150,"percentile":236},"2025-12-24",{"date":300,"score":150,"percentile":301},"2025-12-25",0.57703,{"date":303,"score":150,"percentile":304},"2025-12-26",0.577,{"date":306,"score":150,"percentile":307},"2025-12-27",0.57754,{"date":309,"score":150,"percentile":310},"2025-12-28",0.57672,{"date":312,"score":150,"percentile":313},"2025-12-29",0.57663,{"date":315,"score":150,"percentile":316},"2025-12-30",0.57664,{"date":318,"score":150,"percentile":319},"2025-12-31",0.57698,{"date":321,"score":150,"percentile":322},"2026-01-01",0.57871,{"date":324,"score":150,"percentile":325},"2026-01-02",0.57853,{"date":327,"score":150,"percentile":328},"2026-01-03",0.5785,{"date":330,"score":150,"percentile":331},"2026-01-04",0.57673,{"date":333,"score":150,"percentile":313},"2026-01-05",{"date":335,"score":150,"percentile":331},"2026-01-06",{"date":337,"score":150,"percentile":338},"2026-01-07",0.57701,{"date":340,"score":150,"percentile":341},"2026-01-08",0.57721,{"date":343,"score":150,"percentile":344},"2026-01-09",0.57726,{"date":346,"score":150,"percentile":347},"2026-01-10",0.57725,{"date":349,"score":150,"percentile":350},"2026-01-11",0.57709,{"date":352,"score":150,"percentile":353},"2026-01-12",0.57671,{"date":355,"score":150,"percentile":356},"2026-01-13",0.5765,{"date":358,"score":150,"percentile":359},"2026-01-14",0.57694,{"date":361,"score":150,"percentile":362},"2026-01-15",0.57697,{"date":364,"score":150,"percentile":365},"2026-01-16",0.57722,{"date":367,"score":150,"percentile":368},"2026-01-17",0.57711,{"date":370,"score":150,"percentile":301},"2026-01-18",{"date":372,"score":150,"percentile":373},"2026-01-19",0.57688,{"date":375,"score":150,"percentile":376},"2026-01-20",0.57695,{"date":378,"score":150,"percentile":304},"2026-01-21",{"date":380,"score":150,"percentile":319},"2026-01-22",{"date":382,"score":150,"percentile":383},"2026-01-23",0.57735,{"date":385,"score":150,"percentile":386},"2026-01-24",0.57743,{"date":388,"score":150,"percentile":389},"2026-01-25",0.57705,{"date":391,"score":150,"percentile":392},"2026-01-26",0.57691,{"date":394,"score":150,"percentile":301},"2026-01-27",{"date":396,"score":150,"percentile":350},"2026-01-28",{"date":398,"score":150,"percentile":368},"2026-01-29",{"date":400,"score":150,"percentile":368},"2026-01-30",{"date":402,"score":150,"percentile":403},"2026-01-31",0.57713,{"date":405,"score":150,"percentile":406},"2026-02-01",0.57859,[408,413,420],{"source":64,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":409,"cvss_v4_0":9},{"baseScore":62,"baseSeverity":410,"vectorString":65,"impactScore":411,"exploitabilityScore":412},"MEDIUM",6.7,4.6,{"source":70,"cvss_v2_0":414,"cvss_v3_0":9,"cvss_v3_1":419,"cvss_v4_0":9},{"baseScore":415,"baseSeverity":9,"vectorString":416,"impactScore":417,"exploitabilityScore":418},4.3,"AV:N/AC:M/Au:N/C:P/I:N/A:N",2.9,8.6,{"baseScore":62,"baseSeverity":410,"vectorString":65,"impactScore":411,"exploitabilityScore":412},{"source":71,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":421,"cvss_v4_0":9},{"baseScore":62,"baseSeverity":9,"vectorString":65,"impactScore":411,"exploitabilityScore":412},[423,437,447,458],{"ecosystem":9,"name":424,"vendor":424,"product":424,"cpe_part":425,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":426},"containerd","a",[427,432],{"version":428,"is_range":429,"range_type":64,"version_start":9,"version_start_type":9,"version_end":430,"version_end_type":431,"fixed_in":9},"\u003C 1.3.10",true,"1.3.10","excluding",{"version":433,"is_range":429,"range_type":64,"version_start":434,"version_start_type":435,"version_end":436,"version_end_type":431,"fixed_in":9},">= 1.4.0, \u003C 1.4.4","1.4.0","including","1.4.4",{"ecosystem":9,"name":438,"vendor":439,"product":438,"cpe_part":440,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":441},"fedora","fedoraproject","o",[442,445],{"version":443,"is_range":58,"range_type":444,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"33","cpe",{"version":446,"is_range":58,"range_type":444,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"34",{"ecosystem":448,"name":449,"vendor":450,"product":424,"cpe_part":9,"purl_type":451,"purl_namespace":450,"purl_name":424,"source":9,"versions":452},"Go","github.com/containerd/containerd","github.com/containerd","golang",[453,456],{"version":454,"is_range":429,"range_type":455,"version_start":434,"version_start_type":435,"version_end":436,"version_end_type":431,"fixed_in":9},"gte1_4_0_lt1_4_4","semver",{"version":457,"is_range":429,"range_type":455,"version_start":9,"version_start_type":9,"version_end":430,"version_end_type":431,"fixed_in":9},"lt1_3_10",{"ecosystem":9,"name":424,"vendor":459,"product":424,"cpe_part":425,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":460},"linuxfoundation",[461,463],{"version":462,"is_range":429,"range_type":444,"version_start":9,"version_start_type":9,"version_end":430,"version_end_type":431,"fixed_in":9},"lt1.3.10",{"version":464,"is_range":429,"range_type":444,"version_start":434,"version_start_type":435,"version_end":436,"version_end_type":431,"fixed_in":9},"gte1.4.0_lt1.4.4"]