[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2021-28713":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-03T20:53:27.442Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":18,"aliases":19,"duplicate_of":9,"upstream":20,"downstream":21,"duplicates":88,"related":89,"reserved_at":9,"published_at":108,"modified_at":109,"state":110,"summary":111,"references_raw":120,"kevs":149,"epss":150,"epss_history":153,"metrics":422,"affected":433},"CVE-2021-28713","Rogue backends can cause DoS of guests via high frequency events T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Xen offers the ability to run PV backends in regular unprivileged guests, typically referred to as \"driver domains\". Running PV backends in driver domains has one primary security advantage: if a driver domain gets compromised, it doesn't have the privileges to take over the system. However, a malicious driver domain could try to attack other guests via sending events at a high frequency leading to a Denial of Service in the guest due to trying to service interrupts for elongated amounts of time. There are three affected backends: * blkfront patch 1, CVE-2021-28711 * netfront patch 2, CVE-2021-28712 * hvc_xen (console) patch 3, CVE-2021-28713",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":9,"likelihood_of_exploit":9,"capec":17},"NVD-CWE-NOINFO","Insufficient Information","NVD uses this CWE ID when there is insufficient information to assign a specific CWE.","placeholder","NVD-Reserved",[],[],[],[],[22,24,26,28,30,32,34,36,38,40,42,44,46,48,50,52,54,56,58,60,62,64,66,68,70,72,74,76,78,80,82,84,86],{"_key":23},"SUSE-SU-2022:0079-1",{"_key":25},"SUSE-SU-2022:0181-1",{"_key":27},"SUSE-SU-2022:0366-1",{"_key":29},"SUSE-SU-2022:0056-1",{"_key":31},"SUSE-SU-2022:0068-1",{"_key":33},"SUSE-SU-2022:0080-1",{"_key":35},"SUSE-SU-2022:0090-1",{"_key":37},"SUSE-SU-2022:0131-1",{"_key":39},"SUSE-SU-2022:0197-1",{"_key":41},"SUSE-SU-2022:0362-1",{"_key":43},"SUSE-SU-2022:0367-1",{"_key":45},"SUSE-SU-2022:0371-1",{"_key":47},"SUSE-SU-2022:0477-1",{"_key":49},"OPENSUSE-SU-2022:0056-1",{"_key":51},"OPENSUSE-SU-2022:0131-1",{"_key":53},"OPENSUSE-SU-2022:0366-1",{"_key":55},"DLA-2940-1",{"_key":57},"DLA-2941-1",{"_key":59},"DSA-5050-1",{"_key":61},"DSA-5096-1",{"_key":63},"MGASA-2021-0588",{"_key":65},"MGASA-2021-0589",{"_key":67},"DEBIAN-CVE-2021-28713",{"_key":69},"UBUNTU-CVE-2021-28713",{"_key":71},"USN-5298-1",{"_key":73},"USN-6001-1",{"_key":75},"USN-6013-1",{"_key":77},"USN-6014-1",{"_key":79},"USN-5278-1",{"_key":81},"USN-5337-1",{"_key":83},"USN-5338-1",{"_key":85},"USN-5368-1",{"_key":87},"USN-5377-1",[],[90,91,92,93,94,95,96,97,98,99,100,101,102,103,104,105,106,107],{"_key":23},{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},{"_key":37},{"_key":39},{"_key":41},{"_key":43},{"_key":45},{"_key":47},{"_key":49},{"_key":51},{"_key":53},{"_key":63},{"_key":65},"2022-01-05T16:10:24.000Z","2024-08-03T21:55:11.785Z","Modified",{"cisa_kev":112,"cisa_ransomware":112,"cisa_vendor":9,"epss_severity":113,"epss_score":114,"severity":115,"severity_score":116,"severity_version":117,"severity_source":118,"severity_vector":119,"severity_status":110},false,"low",0.00132,"medium",6.5,"v3.1","nvd","CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H",[121,129,135,141,145],{"url":122,"sources":123,"tags":125},"https://xenbits.xenproject.org/xsa/advisory-391.txt",[124,118],"cve.org",[126,127,128],"X Refsource MISC","Patch","Vendor Advisory",{"url":130,"sources":131,"tags":132},"https://www.debian.org/security/2022/dsa-5050",[124,118],[128,133,134],"X Refsource DEBIAN","Third Party Advisory",{"url":136,"sources":137,"tags":138},"https://lists.debian.org/debian-lts-announce/2022/03/msg00011.html",[124,118],[139,140,134],"Mailing List","X Refsource MLIST",{"url":142,"sources":143,"tags":144},"https://lists.debian.org/debian-lts-announce/2022/03/msg00012.html",[124,118],[139,140,134],{"url":146,"sources":147,"tags":148},"https://www.debian.org/security/2022/dsa-5096",[124,118],[128,133,134],[],{"date":151,"score":114,"percentile":152},"2026-06-03",0.32351,[154,158,161,164,167,170,173,176,179,182,185,188,191,194,197,201,204,207,210,213,216,219,222,225,228,231,234,237,240,243,246,249,252,255,258,261,264,268,271,274,277,280,283,286,289,292,295,298,301,304,307,310,313,316,319,322,325,328,331,334,336,338,341,344,347,350,353,356,359,362,365,368,370,373,376,379,382,385,388,391,394,396,399,402,405,408,411,414,417,419],{"date":155,"score":156,"percentile":157},"2025-11-04",0.00034,0.09126,{"date":159,"score":156,"percentile":160},"2025-11-05",0.09135,{"date":162,"score":156,"percentile":163},"2025-11-06",0.09257,{"date":165,"score":156,"percentile":166},"2025-11-07",0.09277,{"date":168,"score":156,"percentile":169},"2025-11-08",0.09279,{"date":171,"score":156,"percentile":172},"2025-11-09",0.09251,{"date":174,"score":156,"percentile":175},"2025-11-10",0.09207,{"date":177,"score":156,"percentile":178},"2025-11-11",0.09232,{"date":180,"score":156,"percentile":181},"2025-11-12",0.09268,{"date":183,"score":156,"percentile":184},"2025-11-13",0.09307,{"date":186,"score":156,"percentile":187},"2025-11-14",0.09337,{"date":189,"score":156,"percentile":190},"2025-11-15",0.09358,{"date":192,"score":156,"percentile":193},"2025-11-16",0.09362,{"date":195,"score":156,"percentile":196},"2025-11-17",0.09351,{"date":198,"score":199,"percentile":200},"2025-11-18",0.00078,0.19373,{"date":202,"score":199,"percentile":203},"2025-11-19",0.19395,{"date":205,"score":199,"percentile":206},"2025-11-20",0.19383,{"date":208,"score":156,"percentile":209},"2025-11-21",0.09412,{"date":211,"score":156,"percentile":212},"2025-11-22",0.09403,{"date":214,"score":156,"percentile":215},"2025-11-23",0.09379,{"date":217,"score":156,"percentile":218},"2025-11-24",0.09361,{"date":220,"score":156,"percentile":221},"2025-11-25",0.09349,{"date":223,"score":156,"percentile":224},"2025-11-26",0.09355,{"date":226,"score":156,"percentile":227},"2025-11-27",0.09366,{"date":229,"score":156,"percentile":230},"2025-11-28",0.09348,{"date":232,"score":156,"percentile":233},"2025-11-29",0.09377,{"date":235,"score":156,"percentile":236},"2025-11-30",0.09386,{"date":238,"score":156,"percentile":239},"2025-12-01",0.09434,{"date":241,"score":156,"percentile":242},"2025-12-02",0.09445,{"date":244,"score":156,"percentile":245},"2025-12-03",0.09469,{"date":247,"score":156,"percentile":248},"2025-12-04",0.09461,{"date":250,"score":156,"percentile":251},"2025-12-05",0.0952,{"date":253,"score":156,"percentile":254},"2025-12-06",0.09533,{"date":256,"score":156,"percentile":257},"2025-12-07",0.09537,{"date":259,"score":156,"percentile":260},"2025-12-08",0.09547,{"date":262,"score":156,"percentile":263},"2025-12-09",0.09595,{"date":265,"score":266,"percentile":267},"2025-12-10",0.00042,0.12578,{"date":269,"score":266,"percentile":270},"2025-12-11",0.12601,{"date":272,"score":266,"percentile":273},"2025-12-12",0.12646,{"date":275,"score":266,"percentile":276},"2025-12-13",0.12663,{"date":278,"score":266,"percentile":279},"2025-12-14",0.1264,{"date":281,"score":266,"percentile":282},"2025-12-15",0.12593,{"date":284,"score":266,"percentile":285},"2025-12-16",0.12567,{"date":287,"score":266,"percentile":288},"2025-12-17",0.12656,{"date":290,"score":266,"percentile":291},"2025-12-18",0.12739,{"date":293,"score":266,"percentile":294},"2025-12-19",0.12753,{"date":296,"score":266,"percentile":297},"2025-12-20",0.12749,{"date":299,"score":266,"percentile":300},"2025-12-21",0.12732,{"date":302,"score":266,"percentile":303},"2025-12-22",0.12692,{"date":305,"score":266,"percentile":306},"2025-12-23",0.12696,{"date":308,"score":266,"percentile":309},"2025-12-24",0.12716,{"date":311,"score":266,"percentile":312},"2025-12-25",0.12789,{"date":314,"score":266,"percentile":315},"2025-12-26",0.12779,{"date":317,"score":266,"percentile":318},"2025-12-27",0.12781,{"date":320,"score":266,"percentile":321},"2025-12-28",0.12763,{"date":323,"score":266,"percentile":324},"2025-12-29",0.12654,{"date":326,"score":266,"percentile":327},"2025-12-30",0.12638,{"date":329,"score":266,"percentile":330},"2025-12-31",0.12686,{"date":332,"score":266,"percentile":333},"2026-01-01",0.12715,{"date":335,"score":266,"percentile":303},"2026-01-02",{"date":337,"score":266,"percentile":288},"2026-01-03",{"date":339,"score":266,"percentile":340},"2026-01-04",0.12584,{"date":342,"score":266,"percentile":343},"2026-01-05",0.12525,{"date":345,"score":266,"percentile":346},"2026-01-06",0.12539,{"date":348,"score":266,"percentile":349},"2026-01-07",0.12571,{"date":351,"score":266,"percentile":352},"2026-01-08",0.1262,{"date":354,"score":266,"percentile":355},"2026-01-09",0.12643,{"date":357,"score":266,"percentile":358},"2026-01-10",0.12674,{"date":360,"score":266,"percentile":361},"2026-01-11",0.12647,{"date":363,"score":266,"percentile":364},"2026-01-12",0.12616,{"date":366,"score":266,"percentile":367},"2026-01-13",0.12594,{"date":369,"score":266,"percentile":324},"2026-01-14",{"date":371,"score":266,"percentile":372},"2026-01-15",0.12659,{"date":374,"score":266,"percentile":375},"2026-01-16",0.12705,{"date":377,"score":266,"percentile":378},"2026-01-17",0.12717,{"date":380,"score":266,"percentile":381},"2026-01-18",0.12655,{"date":383,"score":266,"percentile":384},"2026-01-19",0.12596,{"date":386,"score":266,"percentile":387},"2026-01-20",0.12577,{"date":389,"score":266,"percentile":390},"2026-01-21",0.12549,{"date":392,"score":266,"percentile":393},"2026-01-22",0.12515,{"date":395,"score":266,"percentile":270},"2026-01-23",{"date":397,"score":266,"percentile":398},"2026-01-24",0.1265,{"date":400,"score":266,"percentile":401},"2026-01-25",0.12603,{"date":403,"score":266,"percentile":404},"2026-01-26",0.12541,{"date":406,"score":266,"percentile":407},"2026-01-27",0.12528,{"date":409,"score":266,"percentile":410},"2026-01-28",0.12521,{"date":412,"score":266,"percentile":413},"2026-01-29",0.12502,{"date":415,"score":266,"percentile":416},"2026-01-30",0.12516,{"date":418,"score":266,"percentile":407},"2026-01-31",{"date":420,"score":266,"percentile":421},"2026-02-01",0.12527,[423],{"source":118,"cvss_v2_0":424,"cvss_v3_0":9,"cvss_v3_1":429,"cvss_v4_0":9},{"baseScore":425,"baseSeverity":9,"vectorString":426,"impactScore":427,"exploitabilityScore":428},2.1,"AV:L/AC:L/Au:N/C:N/I:N/A:P",2.9,3.9,{"baseScore":116,"baseSeverity":430,"vectorString":119,"impactScore":431,"exploitabilityScore":432},"MEDIUM",6.7,5.1,[434,447],{"ecosystem":9,"name":435,"vendor":436,"product":437,"cpe_part":438,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":439},"debian linux","debian","debian_linux","o",[440,443,445],{"version":441,"is_range":112,"range_type":442,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0","cpe",{"version":444,"is_range":112,"range_type":442,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"10.0",{"version":446,"is_range":112,"range_type":442,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"11.0",{"ecosystem":9,"name":448,"vendor":448,"product":448,"cpe_part":438,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":449},"xen",[450],{"version":451,"is_range":112,"range_type":442,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"na"]