[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2021-3595":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T20:55:29.923Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":19,"aliases":20,"duplicate_of":9,"upstream":21,"downstream":22,"duplicates":73,"related":74,"reserved_at":9,"published_at":93,"modified_at":94,"state":95,"summary":96,"references_raw":104,"kevs":139,"epss":140,"epss_history":143,"metrics":410,"affected":421},"CVE-2021-3595","An invalid pointer initialization issue was found in the SLiRP networking implementation of QEMU. The flaw exists in the tftp_input() function and could occur while processing a udp packet that is smaller than the size of the 'tftp_t' structure. This issue may lead to out-of-bounds read access or indirect host memory disclosure to the guest. The highest threat from this vulnerability is to data confidentiality. This flaw affects libslirp versions prior to 4.6.0.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":9,"capec":18},"CWE-824","Access of Uninitialized Pointer","The product accesses or uses a pointer that has not been initialized.","weakness","Incomplete","Base",[],[],[],[],[23,25,27,29,31,33,35,37,39,41,43,45,47,49,51,53,55,57,59,61,63,65,67,69,71],{"_key":24},"SUSE-SU-2021:14848-1",{"_key":26},"RHSA-2021:4191",{"_key":28},"SUSE-SU-2021:2428-1",{"_key":30},"SUSE-SU-2021:2448-1",{"_key":32},"SUSE-SU-2021:2461-1",{"_key":34},"SUSE-SU-2021:2474-1",{"_key":36},"SUSE-SU-2021:2546-1",{"_key":38},"SUSE-SU-2021:2563-1",{"_key":40},"SUSE-SU-2021:2591-1",{"_key":42},"SUSE-SU-2021:2924-1",{"_key":44},"SUSE-SU-2021:2955-1",{"_key":46},"SUSE-SU-2021:2957-1",{"_key":48},"SUSE-SU-2021:3322-1",{"_key":50},"SUSE-SU-2022:1465-1",{"_key":52},"SUSE-SU-2022:1730-1",{"_key":54},"OPENSUSE-SU-2021:1202-1",{"_key":56},"OPENSUSE-SU-2021:2474-1",{"_key":58},"OPENSUSE-SU-2021:2591-1",{"_key":60},"DLA-2753-1",{"_key":62},"DLA-3362-1",{"_key":64},"MGASA-2021-0480",{"_key":66},"UBUNTU-CVE-2021-3595",{"_key":68},"USN-5009-1",{"_key":70},"USN-5010-1",{"_key":72},"DEBIAN-CVE-2021-3595",[],[75,76,77,78,79,80,81,82,83,84,85,86,87,88,89,90,91,92],{"_key":24},{"_key":28},{"_key":30},{"_key":32},{"_key":34},{"_key":36},{"_key":38},{"_key":40},{"_key":42},{"_key":44},{"_key":46},{"_key":48},{"_key":50},{"_key":52},{"_key":54},{"_key":56},{"_key":58},{"_key":64},"2021-06-15T00:00:00.000Z","2024-08-03T17:01:07.535Z","Modified",{"cisa_kev":97,"cisa_ransomware":97,"cisa_vendor":9,"epss_severity":98,"epss_score":99,"severity":98,"severity_score":100,"severity_version":101,"severity_source":102,"severity_vector":103,"severity_status":95},false,"low",0.00025,3.8,"v3.1","nvd","CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N",[105,113,118,122,126,130,135],{"url":106,"sources":107,"tags":109},"https://bugzilla.redhat.com/show_bug.cgi?id=1970489",[108,102],"cve.org",[110,111,112],"Issue Tracking","Patch","Third Party Advisory",{"url":114,"sources":115,"tags":116},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GCKWZWY64EHTOQMLVLTSZ4AA27EWRJMH/",[108,102],[117],"Vendor Advisory",{"url":119,"sources":120,"tags":121},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SGPQZFVJCFGDSISFXPCQTTBBD7QZLJKI/",[108,102],[117],{"url":123,"sources":124,"tags":125},"https://security.gentoo.org/glsa/202107-44",[108,102],[117,112],{"url":127,"sources":128,"tags":129},"https://security.netapp.com/advisory/ntap-20210805-0004/",[108,102],[112],{"url":131,"sources":132,"tags":133},"https://lists.debian.org/debian-lts-announce/2021/09/msg00000.html",[108,102],[134,112],"Mailing List",{"url":136,"sources":137,"tags":138},"https://lists.debian.org/debian-lts-announce/2023/03/msg00013.html",[108,102],[134],[],{"date":141,"score":99,"percentile":142},"2026-06-04",0.07273,[144,148,151,154,157,160,163,166,169,172,175,178,181,184,187,191,194,197,200,203,206,209,212,215,217,220,223,226,229,233,236,239,242,245,248,251,254,257,260,263,266,269,271,274,277,280,283,286,289,292,295,298,301,304,307,310,313,316,319,322,325,327,330,333,335,338,341,344,347,349,352,355,358,361,364,367,369,372,375,378,381,384,387,390,393,396,399,402,405,407],{"date":145,"score":146,"percentile":147},"2025-11-04",0.00028,0.06571,{"date":149,"score":146,"percentile":150},"2025-11-05",0.06595,{"date":152,"score":146,"percentile":153},"2025-11-06",0.06709,{"date":155,"score":146,"percentile":156},"2025-11-07",0.06723,{"date":158,"score":146,"percentile":159},"2025-11-08",0.06721,{"date":161,"score":146,"percentile":162},"2025-11-09",0.06701,{"date":164,"score":146,"percentile":165},"2025-11-10",0.06677,{"date":167,"score":146,"percentile":168},"2025-11-11",0.06699,{"date":170,"score":146,"percentile":171},"2025-11-12",0.06738,{"date":173,"score":146,"percentile":174},"2025-11-13",0.06772,{"date":176,"score":146,"percentile":177},"2025-11-14",0.06797,{"date":179,"score":146,"percentile":180},"2025-11-15",0.06823,{"date":182,"score":146,"percentile":183},"2025-11-16",0.06835,{"date":185,"score":146,"percentile":186},"2025-11-17",0.0683,{"date":188,"score":189,"percentile":190},"2025-11-18",0.00066,0.16113,{"date":192,"score":189,"percentile":193},"2025-11-19",0.16124,{"date":195,"score":189,"percentile":196},"2025-11-20",0.16109,{"date":198,"score":146,"percentile":199},"2025-11-21",0.06948,{"date":201,"score":146,"percentile":202},"2025-11-22",0.06951,{"date":204,"score":146,"percentile":205},"2025-11-23",0.06941,{"date":207,"score":146,"percentile":208},"2025-11-24",0.06922,{"date":210,"score":146,"percentile":211},"2025-11-25",0.06924,{"date":213,"score":146,"percentile":214},"2025-11-26",0.06925,{"date":216,"score":146,"percentile":208},"2025-11-27",{"date":218,"score":146,"percentile":219},"2025-11-28",0.0691,{"date":221,"score":146,"percentile":222},"2025-11-29",0.0695,{"date":224,"score":146,"percentile":225},"2025-11-30",0.06954,{"date":227,"score":146,"percentile":228},"2025-12-01",0.06998,{"date":230,"score":231,"percentile":232},"2025-12-02",0.00022,0.04847,{"date":234,"score":231,"percentile":235},"2025-12-03",0.04874,{"date":237,"score":231,"percentile":238},"2025-12-04",0.0482,{"date":240,"score":231,"percentile":241},"2025-12-05",0.04894,{"date":243,"score":231,"percentile":244},"2025-12-06",0.0491,{"date":246,"score":231,"percentile":247},"2025-12-07",0.04911,{"date":249,"score":231,"percentile":250},"2025-12-08",0.04912,{"date":252,"score":231,"percentile":253},"2025-12-09",0.04956,{"date":255,"score":231,"percentile":256},"2025-12-10",0.05013,{"date":258,"score":231,"percentile":259},"2025-12-11",0.04996,{"date":261,"score":231,"percentile":262},"2025-12-12",0.05012,{"date":264,"score":231,"percentile":265},"2025-12-13",0.05049,{"date":267,"score":231,"percentile":268},"2025-12-14",0.05038,{"date":270,"score":231,"percentile":259},"2025-12-15",{"date":272,"score":231,"percentile":273},"2025-12-16",0.04995,{"date":275,"score":231,"percentile":276},"2025-12-17",0.05052,{"date":278,"score":231,"percentile":279},"2025-12-18",0.05091,{"date":281,"score":231,"percentile":282},"2025-12-19",0.05072,{"date":284,"score":231,"percentile":285},"2025-12-20",0.05073,{"date":287,"score":231,"percentile":288},"2025-12-21",0.05083,{"date":290,"score":231,"percentile":291},"2025-12-22",0.05016,{"date":293,"score":231,"percentile":294},"2025-12-23",0.05024,{"date":296,"score":231,"percentile":297},"2025-12-24",0.05044,{"date":299,"score":231,"percentile":300},"2025-12-25",0.05078,{"date":302,"score":231,"percentile":303},"2025-12-26",0.05079,{"date":305,"score":231,"percentile":306},"2025-12-27",0.05084,{"date":308,"score":231,"percentile":309},"2025-12-28",0.0507,{"date":311,"score":231,"percentile":312},"2025-12-29",0.05063,{"date":314,"score":231,"percentile":315},"2025-12-30",0.05002,{"date":317,"score":231,"percentile":318},"2025-12-31",0.05028,{"date":320,"score":231,"percentile":321},"2026-01-01",0.05106,{"date":323,"score":231,"percentile":324},"2026-01-02",0.05101,{"date":326,"score":231,"percentile":288},"2026-01-03",{"date":328,"score":231,"percentile":329},"2026-01-04",0.04984,{"date":331,"score":231,"percentile":332},"2026-01-05",0.04918,{"date":334,"score":231,"percentile":250},"2026-01-06",{"date":336,"score":231,"percentile":337},"2026-01-07",0.04933,{"date":339,"score":231,"percentile":340},"2026-01-08",0.04964,{"date":342,"score":231,"percentile":343},"2026-01-09",0.04969,{"date":345,"score":231,"percentile":346},"2026-01-10",0.04982,{"date":348,"score":231,"percentile":340},"2026-01-11",{"date":350,"score":231,"percentile":351},"2026-01-12",0.0497,{"date":353,"score":231,"percentile":354},"2026-01-13",0.04957,{"date":356,"score":231,"percentile":357},"2026-01-14",0.05004,{"date":359,"score":231,"percentile":360},"2026-01-15",0.04944,{"date":362,"score":231,"percentile":363},"2026-01-16",0.04925,{"date":365,"score":231,"percentile":366},"2026-01-17",0.04928,{"date":368,"score":231,"percentile":247},"2026-01-18",{"date":370,"score":231,"percentile":371},"2026-01-19",0.0486,{"date":373,"score":231,"percentile":374},"2026-01-20",0.04825,{"date":376,"score":231,"percentile":377},"2026-01-21",0.04815,{"date":379,"score":231,"percentile":380},"2026-01-22",0.04799,{"date":382,"score":231,"percentile":383},"2026-01-23",0.04852,{"date":385,"score":231,"percentile":386},"2026-01-24",0.04895,{"date":388,"score":231,"percentile":389},"2026-01-25",0.04876,{"date":391,"score":231,"percentile":392},"2026-01-26",0.04854,{"date":394,"score":231,"percentile":395},"2026-01-27",0.04836,{"date":397,"score":231,"percentile":398},"2026-01-28",0.04817,{"date":400,"score":231,"percentile":401},"2026-01-29",0.04834,{"date":403,"score":231,"percentile":404},"2026-01-30",0.0484,{"date":406,"score":231,"percentile":238},"2026-01-31",{"date":408,"score":231,"percentile":409},"2026-02-01",0.04923,[411],{"source":102,"cvss_v2_0":412,"cvss_v3_0":9,"cvss_v3_1":417,"cvss_v4_0":9},{"baseScore":413,"baseSeverity":9,"vectorString":414,"impactScore":415,"exploitabilityScore":416},2.1,"AV:L/AC:L/Au:N/C:P/I:N/A:N",2.9,3.9,{"baseScore":100,"baseSeverity":418,"vectorString":103,"impactScore":419,"exploitabilityScore":420},"LOW",2.3,5.1,[422,431,439,449],{"ecosystem":9,"name":423,"vendor":424,"product":425,"cpe_part":426,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":427},"debian linux","debian","debian_linux","o",[428],{"version":429,"is_range":97,"range_type":430,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0","cpe",{"ecosystem":9,"name":432,"vendor":433,"product":432,"cpe_part":426,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":434},"fedora","fedoraproject",[435,437],{"version":436,"is_range":97,"range_type":430,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"33",{"version":438,"is_range":97,"range_type":430,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"34",{"ecosystem":9,"name":440,"vendor":441,"product":440,"cpe_part":442,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":443},"libslirp","libslirp_project","a",[444],{"version":445,"is_range":446,"range_type":430,"version_start":9,"version_start_type":9,"version_end":447,"version_end_type":448,"fixed_in":9},"lt4.6.0",true,"4.6.0","excluding",{"ecosystem":9,"name":450,"vendor":451,"product":452,"cpe_part":426,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":453},"enterprise linux","redhat","enterprise_linux",[454],{"version":455,"is_range":97,"range_type":430,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.0"]