[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2021-3859":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":26,"aliases":27,"duplicate_of":9,"upstream":29,"downstream":30,"duplicates":49,"related":50,"reserved_at":9,"published_at":51,"modified_at":52,"state":53,"summary":54,"references_raw":63,"kevs":117,"epss":118,"epss_history":121,"metrics":392,"affected":400},"CVE-2021-3859","A flaw was found in Undertow that tripped the client-side invocation timeout with certain calls made over HTTP2. This flaw allows an attacker to carry out denial of service attacks.",null,[11,19],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":9,"capec":18},"CWE-668","Exposure of Resource to Wrong Sphere","The product exposes a resource to the wrong control sphere, providing unintended actors with inappropriate access to the resource.","weakness","Draft","Class",[],{"_key":20,"id":20,"name":21,"description":22,"type":15,"status":23,"abstraction":24,"likelihood_of_exploit":9,"capec":25},"CWE-214","Invocation of Process Using Visible Sensitive Information","A process is invoked with sensitive command-line arguments, environment variables, or other elements that can be seen by other processes on the operating system.","Incomplete","Base",[],[],[28],"GHSA-339q-62wm-c39w",[],[31,33,35,37,39,41,43,45,47],{"_key":32},"RHSA-2022:0400",{"_key":34},"RHSA-2022:0401",{"_key":36},"RHSA-2022:0405",{"_key":38},"DEBIAN-CVE-2021-3859",{"_key":40},"UBUNTU-CVE-2021-3859",{"_key":42},"RHSA-2022:0447",{"_key":44},"RHSA-2022:0448",{"_key":46},"RHSA-2024:10207",{"_key":48},"RHSA-2025:4226",[],[],"2022-08-26T00:00:00.000Z","2024-08-03T17:09:09.581Z","Modified",{"cisa_kev":55,"cisa_ransomware":55,"cisa_vendor":9,"epss_severity":56,"epss_score":57,"severity":58,"severity_score":59,"severity_version":60,"severity_source":61,"severity_vector":62,"severity_status":53},false,"low",0.00318,"high",7.5,"v3.1","nvd","CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",[64,73,78,83,87,91,95,100,104,108,113],{"url":65,"sources":66,"tags":69},"https://bugzilla.redhat.com/show_bug.cgi?id=2010378",[67,61,68],"cve.org","osv_maven",[70,71,72],"Issue Tracking","Vendor Advisory","WEB",{"url":74,"sources":75,"tags":76},"https://issues.redhat.com/browse/UNDERTOW-1979",[67,61,68],[70,77,71,72],"Patch",{"url":79,"sources":80,"tags":81},"https://github.com/undertow-io/undertow/pull/1296",[67,61,68],[82,72],"Third Party Advisory",{"url":84,"sources":85,"tags":86},"https://github.com/undertow-io/undertow/commit/e43f0ada3f4da6e8579e0020cec3cb1a81e487c2",[67,61,68],[77,82,72],{"url":88,"sources":89,"tags":90},"https://access.redhat.com/security/cve/CVE-2021-3859",[67,61],[71],{"url":92,"sources":93,"tags":94},"https://security.netapp.com/advisory/ntap-20221201-0004/",[67,61],[82],{"url":96,"sources":97,"tags":98},"https://nvd.nist.gov/vuln/detail/CVE-2021-3859",[68],[99],"Advisory",{"url":101,"sources":102,"tags":103},"https://github.com/undertow-io/undertow/commit/db0f5be43f8e2a4b88fbedd2eb6d5a95a29ceaa8",[68],[72],{"url":105,"sources":106,"tags":107},"https://access.redhat.com/security/cve/cve-2021-3859",[68],[72],{"url":109,"sources":110,"tags":111},"https://github.com/undertow-io/undertow",[68],[112],"PACKAGE",{"url":114,"sources":115,"tags":116},"https://security.netapp.com/advisory/ntap-20221201-0004",[68],[72],[],{"date":119,"score":57,"percentile":120},"2026-06-04",0.55155,[122,126,129,132,135,137,140,143,146,149,152,155,158,161,163,167,170,173,176,179,182,185,188,191,194,197,200,203,206,210,212,215,218,220,223,226,229,232,235,238,241,245,248,251,254,257,260,263,266,269,272,275,278,281,284,287,290,293,296,299,302,305,308,312,315,318,321,324,327,330,333,336,340,343,346,348,351,354,356,359,362,365,368,371,374,377,380,383,386,389],{"date":123,"score":124,"percentile":125},"2025-11-04",0.00903,0.7496,{"date":127,"score":124,"percentile":128},"2025-11-05",0.74952,{"date":130,"score":124,"percentile":131},"2025-11-06",0.7495,{"date":133,"score":124,"percentile":134},"2025-11-07",0.74968,{"date":136,"score":124,"percentile":134},"2025-11-08",{"date":138,"score":124,"percentile":139},"2025-11-09",0.74964,{"date":141,"score":124,"percentile":142},"2025-11-10",0.74949,{"date":144,"score":124,"percentile":145},"2025-11-11",0.74951,{"date":147,"score":124,"percentile":148},"2025-11-12",0.7497,{"date":150,"score":124,"percentile":151},"2025-11-13",0.74977,{"date":153,"score":124,"percentile":154},"2025-11-14",0.74982,{"date":156,"score":124,"percentile":157},"2025-11-15",0.7498,{"date":159,"score":124,"percentile":160},"2025-11-16",0.74979,{"date":162,"score":124,"percentile":134},"2025-11-17",{"date":164,"score":165,"percentile":166},"2025-11-18",0.01749,0.81052,{"date":168,"score":165,"percentile":169},"2025-11-19",0.81054,{"date":171,"score":165,"percentile":172},"2025-11-20",0.81057,{"date":174,"score":124,"percentile":175},"2025-11-21",0.74991,{"date":177,"score":124,"percentile":178},"2025-11-22",0.74984,{"date":180,"score":124,"percentile":181},"2025-11-23",0.74971,{"date":183,"score":124,"percentile":184},"2025-11-24",0.74967,{"date":186,"score":124,"percentile":187},"2025-11-25",0.74969,{"date":189,"score":124,"percentile":190},"2025-11-26",0.74975,{"date":192,"score":124,"percentile":193},"2025-11-27",0.74976,{"date":195,"score":124,"percentile":196},"2025-11-28",0.74963,{"date":198,"score":124,"percentile":199},"2025-11-29",0.74962,{"date":201,"score":124,"percentile":202},"2025-11-30",0.74961,{"date":204,"score":124,"percentile":205},"2025-12-01",0.75089,{"date":207,"score":208,"percentile":209},"2025-12-02",0.00814,0.73652,{"date":211,"score":208,"percentile":209},"2025-12-03",{"date":213,"score":208,"percentile":214},"2025-12-04",0.73522,{"date":216,"score":208,"percentile":217},"2025-12-05",0.73531,{"date":219,"score":208,"percentile":217},"2025-12-06",{"date":221,"score":208,"percentile":222},"2025-12-07",0.73532,{"date":224,"score":208,"percentile":225},"2025-12-08",0.73536,{"date":227,"score":208,"percentile":228},"2025-12-09",0.73564,{"date":230,"score":208,"percentile":231},"2025-12-10",0.73596,{"date":233,"score":208,"percentile":234},"2025-12-11",0.73613,{"date":236,"score":208,"percentile":237},"2025-12-12",0.73635,{"date":239,"score":208,"percentile":240},"2025-12-13",0.73638,{"date":242,"score":243,"percentile":244},"2025-12-14",0.01372,0.79741,{"date":246,"score":243,"percentile":247},"2025-12-15",0.79739,{"date":249,"score":243,"percentile":250},"2025-12-16",0.79748,{"date":252,"score":243,"percentile":253},"2025-12-17",0.79758,{"date":255,"score":243,"percentile":256},"2025-12-18",0.79777,{"date":258,"score":243,"percentile":259},"2025-12-19",0.79786,{"date":261,"score":243,"percentile":262},"2025-12-20",0.79778,{"date":264,"score":243,"percentile":265},"2025-12-21",0.79771,{"date":267,"score":243,"percentile":268},"2025-12-22",0.79772,{"date":270,"score":243,"percentile":271},"2025-12-23",0.79773,{"date":273,"score":243,"percentile":274},"2025-12-24",0.79788,{"date":276,"score":243,"percentile":277},"2025-12-25",0.79809,{"date":279,"score":243,"percentile":280},"2025-12-26",0.79805,{"date":282,"score":243,"percentile":283},"2025-12-27",0.79848,{"date":285,"score":243,"percentile":286},"2025-12-28",0.79794,{"date":288,"score":243,"percentile":289},"2025-12-29",0.79791,{"date":291,"score":243,"percentile":292},"2025-12-30",0.79796,{"date":294,"score":243,"percentile":295},"2025-12-31",0.79808,{"date":297,"score":243,"percentile":298},"2026-01-01",0.79899,{"date":300,"score":243,"percentile":301},"2026-01-02",0.79896,{"date":303,"score":208,"percentile":304},"2026-01-03",0.73881,{"date":306,"score":124,"percentile":307},"2026-01-04",0.75171,{"date":309,"score":310,"percentile":311},"2026-01-05",0.0029,0.5208,{"date":313,"score":310,"percentile":314},"2026-01-06",0.52088,{"date":316,"score":310,"percentile":317},"2026-01-07",0.52111,{"date":319,"score":310,"percentile":320},"2026-01-08",0.52131,{"date":322,"score":310,"percentile":323},"2026-01-09",0.52117,{"date":325,"score":310,"percentile":326},"2026-01-10",0.52114,{"date":328,"score":310,"percentile":329},"2026-01-11",0.52096,{"date":331,"score":310,"percentile":332},"2026-01-12",0.52055,{"date":334,"score":310,"percentile":335},"2026-01-13",0.52031,{"date":337,"score":338,"percentile":339},"2026-01-14",0.00273,0.50407,{"date":341,"score":338,"percentile":342},"2026-01-15",0.50411,{"date":344,"score":338,"percentile":345},"2026-01-16",0.50431,{"date":347,"score":338,"percentile":342},"2026-01-17",{"date":349,"score":338,"percentile":350},"2026-01-18",0.50385,{"date":352,"score":338,"percentile":353},"2026-01-19",0.50361,{"date":355,"score":338,"percentile":353},"2026-01-20",{"date":357,"score":338,"percentile":358},"2026-01-21",0.50362,{"date":360,"score":338,"percentile":361},"2026-01-22",0.50369,{"date":363,"score":338,"percentile":364},"2026-01-23",0.50418,{"date":366,"score":338,"percentile":367},"2026-01-24",0.50424,{"date":369,"score":338,"percentile":370},"2026-01-25",0.50375,{"date":372,"score":338,"percentile":373},"2026-01-26",0.5035,{"date":375,"score":338,"percentile":376},"2026-01-27",0.50355,{"date":378,"score":338,"percentile":379},"2026-01-28",0.50368,{"date":381,"score":338,"percentile":382},"2026-01-29",0.50366,{"date":384,"score":338,"percentile":385},"2026-01-30",0.5037,{"date":387,"score":338,"percentile":388},"2026-01-31",0.50376,{"date":390,"score":338,"percentile":391},"2026-02-01",0.50509,[393,398],{"source":61,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":394,"cvss_v4_0":9},{"baseScore":59,"baseSeverity":395,"vectorString":62,"impactScore":396,"exploitabilityScore":397},"HIGH",6,10,{"source":68,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":399,"cvss_v4_0":9},{"baseScore":59,"baseSeverity":9,"vectorString":62,"impactScore":396,"exploitabilityScore":397},[401,414,423,428,433,442,450],{"ecosystem":402,"name":403,"vendor":404,"product":405,"cpe_part":9,"purl_type":406,"purl_namespace":404,"purl_name":405,"source":9,"versions":407},"Maven","io.undertow:undertow-core","io.undertow","undertow-core","maven",[408],{"version":409,"is_range":410,"range_type":411,"version_start":9,"version_start_type":9,"version_end":412,"version_end_type":413,"fixed_in":9},"lt2_2_15",true,"ecosystem","2.2.15","excluding",{"ecosystem":9,"name":415,"vendor":416,"product":417,"cpe_part":418,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":419},"cloud secure agent","netapp","cloud_secure_agent","a",[420],{"version":421,"is_range":55,"range_type":422,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"na","cpe",{"ecosystem":9,"name":424,"vendor":416,"product":425,"cpe_part":418,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":426},"oncommand insight","oncommand_insight",[427],{"version":421,"is_range":55,"range_type":422,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":429,"vendor":416,"product":430,"cpe_part":418,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":431},"oncommand workflow automation","oncommand_workflow_automation",[432],{"version":421,"is_range":55,"range_type":422,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":434,"vendor":435,"product":436,"cpe_part":418,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":437},"jboss enterprise application platform","redhat","jboss_enterprise_application_platform",[438,440],{"version":439,"is_range":55,"range_type":422,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.3",{"version":441,"is_range":55,"range_type":422,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.4",{"ecosystem":9,"name":443,"vendor":435,"product":444,"cpe_part":418,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":445},"single sign-on","single_sign-on",[446,448],{"version":447,"is_range":55,"range_type":422,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.4.10",{"version":449,"is_range":55,"range_type":422,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.5.1",{"ecosystem":9,"name":451,"vendor":435,"product":451,"cpe_part":418,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":452},"undertow",[453],{"version":454,"is_range":410,"range_type":422,"version_start":9,"version_start_type":9,"version_end":412,"version_end_type":413,"fixed_in":9},"lt2.2.15"]