[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2022-21505":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":424,"aliases":425,"duplicate_of":9,"upstream":426,"downstream":427,"duplicates":458,"related":459,"reserved_at":9,"published_at":470,"modified_at":471,"state":472,"summary":473,"references_raw":482,"kevs":495,"epss":496,"epss_history":499,"metrics":762,"affected":770},"CVE-2022-21505","In the linux kernel, if IMA appraisal is used with the \"ima_appraise=log\" boot param, lockdown can be defeated with kexec on any machine when Secure Boot is disabled or unavailable. IMA prevents setting \"ima_appraise=log\" from the boot param when Secure Boot is enabled, but this does not cover cases where lockdown is used without Secure Boot. CVSS 3.1 Base Score 6.7 (Confidentiality, Integrity, Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H).",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":9,"capec":18},"CWE-346","Origin Validation Error","The product does not properly verify that the source of data or communication is valid.","weakness","Draft","Class",[19,23,76,88,92,263,267,271,275,279,283,287,291,412,416,420],{"id":20,"name":21,"techniques":22},"CAPEC-111","JSON Hijacking (aka JavaScript Hijacking)",[],{"id":24,"name":25,"techniques":26},"CAPEC-141","Cache Poisoning",[27],{"id":28,"name":29,"tactics":30,"countermeasures":37},"T1557.002","ARP Cache Poisoning",[31,34],{"id":32,"name":33},"TA0031","Credential Access",{"id":35,"name":36},"TA0100","Collection",[38,43,47,51,55,59,63,67,71],{"id":39,"name":40,"tactic":41},"D3-UGLPA","User Geolocation Logon Pattern Analysis",{"name":42},"Detect",{"id":44,"name":45,"tactic":46},"D3-PMAD","Protocol Metadata Anomaly Detection",{"name":42},{"id":48,"name":49,"tactic":50},"D3-CSPP","Client-server Payload Profiling",{"name":42},{"id":52,"name":53,"tactic":54},"D3-PHDURA","Per Host Download-Upload Ratio Analysis",{"name":42},{"id":56,"name":57,"tactic":58},"D3-NTSA","Network Traffic Signature Analysis",{"name":42},{"id":60,"name":61,"tactic":62},"D3-APCA","Application Protocol Command Analysis",{"name":42},{"id":64,"name":65,"tactic":66},"D3-NTCD","Network Traffic Community Deviation",{"name":42},{"id":68,"name":69,"tactic":70},"D3-RTSD","Remote Terminal Session Detection",{"name":42},{"id":72,"name":73,"tactic":74},"D3-NTF","Network Traffic Filtering",{"name":75},"Isolate",{"id":77,"name":78,"techniques":79},"CAPEC-142","DNS Cache Poisoning",[80],{"id":81,"name":82,"tactics":83,"countermeasures":87},"T1584.002","DNS Server",[84],{"id":85,"name":86},"TA0042","Resource Development",[],{"id":89,"name":90,"techniques":91},"CAPEC-160","Exploit Script-Based APIs",[],{"id":93,"name":94,"techniques":95},"CAPEC-21","Exploitation of Trusted Identifiers",[96,211,239],{"id":97,"name":98,"tactics":99,"countermeasures":109},"T1134","Access Token Manipulation",[100,103,106],{"id":101,"name":102},"TA0030","Defense Evasion",{"id":104,"name":105},"TA0005","Stealth",{"id":107,"name":108},"TA0111","Privilege Escalation",[110,115,119,123,127,131,135,139,143,148,152,156,161,166,170,174,178,182,187,191,195,199,203,207],{"id":111,"name":112,"tactic":113},"D3-CI","Configuration Inventory",{"name":114},"Model",{"id":116,"name":117,"tactic":118},"D3-NTPM","Network Traffic Policy Mapping",{"name":114},{"id":120,"name":121,"tactic":122},"D3-AM","Access Modeling",{"name":114},{"id":124,"name":125,"tactic":126},"D3-AEM","Application Exception Monitoring",{"name":42},{"id":128,"name":129,"tactic":130},"D3-SCA","System Call Analysis",{"name":42},{"id":132,"name":133,"tactic":134},"D3-CCSA","Credential Compromise Scope Analysis",{"name":42},{"id":136,"name":137,"tactic":138},"D3-OPM","Operational Process Monitoring",{"name":42},{"id":140,"name":141,"tactic":142},"D3-PSA","Process Spawn Analysis",{"name":42},{"id":144,"name":145,"tactic":146},"D3-ST","Session Termination",{"name":147},"Evict",{"id":149,"name":150,"tactic":151},"D3-CR","Credential Revocation",{"name":147},{"id":153,"name":154,"tactic":155},"D3-ANCI","Authentication Cache Invalidation",{"name":147},{"id":157,"name":158,"tactic":159},"D3-DUC","Decoy User Credential",{"name":160},"Deceive",{"id":162,"name":163,"tactic":164},"D3-CH","Credential Hardening",{"name":165},"Harden",{"id":167,"name":168,"tactic":169},"D3-MFA","Multi-factor Authentication",{"name":165},{"id":171,"name":172,"tactic":173},"D3-CRO","Credential Rotation",{"name":165},{"id":175,"name":176,"tactic":177},"D3-TB","Token Binding",{"name":165},{"id":179,"name":180,"tactic":181},"D3-TBA","Token-based Authentication",{"name":165},{"id":183,"name":184,"tactic":185},"D3-RC","Restore Configuration",{"name":186},"Restore",{"id":188,"name":189,"tactic":190},"D3-RIC","Reissue Credential",{"name":186},{"id":192,"name":193,"tactic":194},"D3-SCF","System Call Filtering",{"name":75},{"id":196,"name":197,"tactic":198},"D3-CTS","Credential Transmission Scoping",{"name":75},{"id":200,"name":201,"tactic":202},"D3-EAL","Executable Allowlisting",{"name":75},{"id":204,"name":205,"tactic":206},"D3-EDL","Executable Denylisting",{"name":75},{"id":208,"name":209,"tactic":210},"D3-HBPI","Hardware-based Process Isolation",{"name":75},{"id":212,"name":213,"tactics":214,"countermeasures":216},"T1528","Steal Application Access Token",[215],{"id":32,"name":33},[217,219,221,223,225,227,229,231,233,235,237],{"id":132,"name":133,"tactic":218},{"name":42},{"id":149,"name":150,"tactic":220},{"name":147},{"id":153,"name":154,"tactic":222},{"name":147},{"id":157,"name":158,"tactic":224},{"name":160},{"id":162,"name":163,"tactic":226},{"name":165},{"id":167,"name":168,"tactic":228},{"name":165},{"id":171,"name":172,"tactic":230},{"name":165},{"id":175,"name":176,"tactic":232},{"name":165},{"id":179,"name":180,"tactic":234},{"name":165},{"id":188,"name":189,"tactic":236},{"name":186},{"id":196,"name":197,"tactic":238},{"name":75},{"id":240,"name":241,"tactics":242,"countermeasures":244},"T1539","Steal Web Session Cookie",[243],{"id":32,"name":33},[245,247,249,251,253,255,257,259,261],{"id":132,"name":133,"tactic":246},{"name":42},{"id":149,"name":150,"tactic":248},{"name":147},{"id":153,"name":154,"tactic":250},{"name":147},{"id":157,"name":158,"tactic":252},{"name":160},{"id":162,"name":163,"tactic":254},{"name":165},{"id":167,"name":168,"tactic":256},{"name":165},{"id":171,"name":172,"tactic":258},{"name":165},{"id":188,"name":189,"tactic":260},{"name":186},{"id":196,"name":197,"tactic":262},{"name":75},{"id":264,"name":265,"techniques":266},"CAPEC-384","Application API Message Manipulation via Man-in-the-Middle",[],{"id":268,"name":269,"techniques":270},"CAPEC-385","Transaction or Event Tampering via Application API Manipulation",[],{"id":272,"name":273,"techniques":274},"CAPEC-386","Application API Navigation Remapping",[],{"id":276,"name":277,"techniques":278},"CAPEC-387","Navigation Remapping To Propagate Malicious Content",[],{"id":280,"name":281,"techniques":282},"CAPEC-388","Application API Button Hijacking",[],{"id":284,"name":285,"techniques":286},"CAPEC-510","SaaS User Request Forgery",[],{"id":288,"name":289,"techniques":290},"CAPEC-59","Session Credential Falsification through Prediction",[],{"id":292,"name":293,"techniques":294},"CAPEC-60","Reusing Session IDs (aka Session Replay)",[295,325],{"id":296,"name":297,"tactics":298,"countermeasures":302},"T1134.001","Token Impersonation/Theft",[299,300,301],{"id":101,"name":102},{"id":104,"name":105},{"id":107,"name":108},[303,305,307,309,311,313,315,317,319,321,323],{"id":132,"name":133,"tactic":304},{"name":42},{"id":149,"name":150,"tactic":306},{"name":147},{"id":153,"name":154,"tactic":308},{"name":147},{"id":157,"name":158,"tactic":310},{"name":160},{"id":162,"name":163,"tactic":312},{"name":165},{"id":167,"name":168,"tactic":314},{"name":165},{"id":171,"name":172,"tactic":316},{"name":165},{"id":175,"name":176,"tactic":318},{"name":165},{"id":179,"name":180,"tactic":320},{"name":165},{"id":188,"name":189,"tactic":322},{"name":186},{"id":196,"name":197,"tactic":324},{"name":75},{"id":326,"name":327,"tactics":328,"countermeasures":333},"T1550.004","Web Session Cookie",[329,330],{"id":101,"name":102},{"id":331,"name":332},"TA0109","Lateral Movement",[334,336,338,340,342,344,346,348,350,354,358,360,362,366,370,374,378,380,382,384,386,388,390,392,394,398,400,402,406,410],{"id":39,"name":40,"tactic":335},{"name":42},{"id":44,"name":45,"tactic":337},{"name":42},{"id":48,"name":49,"tactic":339},{"name":42},{"id":52,"name":53,"tactic":341},{"name":42},{"id":56,"name":57,"tactic":343},{"name":42},{"id":60,"name":61,"tactic":345},{"name":42},{"id":64,"name":65,"tactic":347},{"name":42},{"id":68,"name":69,"tactic":349},{"name":42},{"id":351,"name":352,"tactic":353},"D3-PLA","Process Lineage Analysis",{"name":42},{"id":355,"name":356,"tactic":357},"D3-PSMD","Process Self-Modification Detection",{"name":42},{"id":140,"name":141,"tactic":359},{"name":42},{"id":132,"name":133,"tactic":361},{"name":42},{"id":363,"name":364,"tactic":365},"D3-PT","Process Termination",{"name":147},{"id":367,"name":368,"tactic":369},"D3-PS","Process Suspension",{"name":147},{"id":371,"name":372,"tactic":373},"D3-HR","Host Reboot",{"name":147},{"id":375,"name":376,"tactic":377},"D3-HS","Host Shutdown",{"name":147},{"id":149,"name":150,"tactic":379},{"name":147},{"id":153,"name":154,"tactic":381},{"name":147},{"id":157,"name":158,"tactic":383},{"name":160},{"id":162,"name":163,"tactic":385},{"name":165},{"id":167,"name":168,"tactic":387},{"name":165},{"id":171,"name":172,"tactic":389},{"name":165},{"id":188,"name":189,"tactic":391},{"name":186},{"id":72,"name":73,"tactic":393},{"name":75},{"id":395,"name":396,"tactic":397},"D3-KBPI","Kernel-based Process Isolation",{"name":75},{"id":192,"name":193,"tactic":399},{"name":75},{"id":208,"name":209,"tactic":401},{"name":75},{"id":403,"name":404,"tactic":405},"D3-ABPI","Application-based Process Isolation",{"name":75},{"id":407,"name":408,"tactic":409},"D3-WSAM","Web Session Access Mediation",{"name":75},{"id":196,"name":197,"tactic":411},{"name":75},{"id":413,"name":414,"techniques":415},"CAPEC-75","Manipulating Writeable Configuration Files",[],{"id":417,"name":418,"techniques":419},"CAPEC-76","Manipulating Web Input to File System Calls",[],{"id":421,"name":422,"techniques":423},"CAPEC-89","Pharming",[],[],[],[],[428,430,432,434,436,438,440,442,444,446,448,450,452,454,456],{"_key":429},"SUSE-SU-2022:2809-1",{"_key":431},"SUSE-SU-2022:2892-1",{"_key":433},"SUSE-SU-2022:2722-1",{"_key":435},"SUSE-SU-2022:2741-1",{"_key":437},"SUSE-SU-2022:2803-1",{"_key":439},"SUSE-SU-2022:2875-1",{"_key":441},"SUSE-SU-2022:2875-2",{"_key":443},"SUSE-SU-2022:2892-2",{"_key":445},"MGASA-2022-0278",{"_key":447},"MGASA-2022-0279",{"_key":449},"DEBIAN-CVE-2022-21505",{"_key":451},"RHSA-2023:2148",{"_key":453},"RHSA-2023:2458",{"_key":455},"UBUNTU-CVE-2022-21505",{"_key":457},"USN-6031-1",[],[460,461,462,463,464,465,466,467,468,469],{"_key":429},{"_key":431},{"_key":433},{"_key":435},{"_key":437},{"_key":439},{"_key":441},{"_key":443},{"_key":445},{"_key":447},"2024-12-24T18:48:23.588Z","2024-12-27T16:52:05.331Z","Analyzed",{"cisa_kev":474,"cisa_ransomware":474,"cisa_vendor":9,"epss_severity":475,"epss_score":476,"severity":477,"severity_score":478,"severity_version":479,"severity_source":480,"severity_vector":481,"severity_status":472},false,"low",0.0007,"medium",6.7,"v3.1","cve.org","CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",[483,490],{"url":484,"sources":485,"tags":487},"https://git.kernel.org/linus/543ce63b664e2c2f9533d089a4664b559c3e6b5b",[480,486],"nvd",[488,489],"Issue Tracking","Broken Link",{"url":491,"sources":492,"tags":493},"https://linux.oracle.com/cve/CVE-2022-21505.html",[480,486],[494],"Vendor Advisory",[],{"date":497,"score":476,"percentile":498},"2026-06-03",0.2152,[500,504,507,510,513,516,519,522,525,527,530,532,535,537,540,544,547,550,553,555,558,561,564,567,570,573,576,579,582,585,588,590,593,595,598,601,604,607,610,613,616,619,622,625,628,631,634,637,640,643,646,648,651,654,657,660,663,666,669,672,675,678,680,683,686,689,692,695,698,701,704,707,710,712,715,718,720,723,726,729,732,735,738,741,744,747,749,753,756,759],{"date":501,"score":502,"percentile":503},"2025-11-04",0.00049,0.15063,{"date":505,"score":502,"percentile":506},"2025-11-05",0.15095,{"date":508,"score":502,"percentile":509},"2025-11-06",0.15192,{"date":511,"score":502,"percentile":512},"2025-11-07",0.15214,{"date":514,"score":502,"percentile":515},"2025-11-08",0.15224,{"date":517,"score":502,"percentile":518},"2025-11-09",0.15199,{"date":520,"score":502,"percentile":521},"2025-11-10",0.15159,{"date":523,"score":502,"percentile":524},"2025-11-11",0.1518,{"date":526,"score":502,"percentile":515},"2025-11-12",{"date":528,"score":502,"percentile":529},"2025-11-13",0.15249,{"date":531,"score":502,"percentile":529},"2025-11-14",{"date":533,"score":502,"percentile":534},"2025-11-15",0.15209,{"date":536,"score":502,"percentile":509},"2025-11-16",{"date":538,"score":502,"percentile":539},"2025-11-17",0.15149,{"date":541,"score":542,"percentile":543},"2025-11-18",0.00133,0.27776,{"date":545,"score":542,"percentile":546},"2025-11-19",0.27802,{"date":548,"score":542,"percentile":549},"2025-11-20",0.27814,{"date":551,"score":502,"percentile":552},"2025-11-21",0.15176,{"date":554,"score":502,"percentile":524},"2025-11-22",{"date":556,"score":502,"percentile":557},"2025-11-23",0.15175,{"date":559,"score":502,"percentile":560},"2025-11-24",0.15137,{"date":562,"score":502,"percentile":563},"2025-11-25",0.15132,{"date":565,"score":502,"percentile":566},"2025-11-26",0.1512,{"date":568,"score":502,"percentile":569},"2025-11-27",0.15129,{"date":571,"score":502,"percentile":572},"2025-11-28",0.15109,{"date":574,"score":502,"percentile":575},"2025-11-29",0.15087,{"date":577,"score":502,"percentile":578},"2025-11-30",0.15096,{"date":580,"score":502,"percentile":581},"2025-12-01",0.15134,{"date":583,"score":502,"percentile":584},"2025-12-02",0.15147,{"date":586,"score":502,"percentile":587},"2025-12-03",0.15173,{"date":589,"score":502,"percentile":563},"2025-12-04",{"date":591,"score":502,"percentile":592},"2025-12-05",0.15197,{"date":594,"score":502,"percentile":512},"2025-12-06",{"date":596,"score":502,"percentile":597},"2025-12-07",0.15193,{"date":599,"score":502,"percentile":600},"2025-12-08",0.15208,{"date":602,"score":502,"percentile":603},"2025-12-09",0.15265,{"date":605,"score":502,"percentile":606},"2025-12-10",0.15327,{"date":608,"score":502,"percentile":609},"2025-12-11",0.15358,{"date":611,"score":502,"percentile":612},"2025-12-12",0.15412,{"date":614,"score":502,"percentile":615},"2025-12-13",0.15419,{"date":617,"score":502,"percentile":618},"2025-12-14",0.1538,{"date":620,"score":502,"percentile":621},"2025-12-15",0.15349,{"date":623,"score":502,"percentile":624},"2025-12-16",0.15372,{"date":626,"score":502,"percentile":627},"2025-12-17",0.15466,{"date":629,"score":502,"percentile":630},"2025-12-18",0.15523,{"date":632,"score":502,"percentile":633},"2025-12-19",0.15567,{"date":635,"score":502,"percentile":636},"2025-12-20",0.15545,{"date":638,"score":502,"percentile":639},"2025-12-21",0.15509,{"date":641,"score":502,"percentile":642},"2025-12-22",0.15461,{"date":644,"score":502,"percentile":645},"2025-12-23",0.1545,{"date":647,"score":502,"percentile":642},"2025-12-24",{"date":649,"score":502,"percentile":650},"2025-12-25",0.15536,{"date":652,"score":502,"percentile":653},"2025-12-26",0.15528,{"date":655,"score":502,"percentile":656},"2025-12-27",0.15541,{"date":658,"score":502,"percentile":659},"2025-12-28",0.15495,{"date":661,"score":502,"percentile":662},"2025-12-29",0.15465,{"date":664,"score":502,"percentile":665},"2025-12-30",0.15477,{"date":667,"score":502,"percentile":668},"2025-12-31",0.15542,{"date":670,"score":502,"percentile":671},"2026-01-01",0.15638,{"date":673,"score":502,"percentile":674},"2026-01-02",0.15626,{"date":676,"score":502,"percentile":677},"2026-01-03",0.15603,{"date":679,"score":502,"percentile":639},"2026-01-04",{"date":681,"score":502,"percentile":682},"2026-01-05",0.15469,{"date":684,"score":502,"percentile":685},"2026-01-06",0.15482,{"date":687,"score":502,"percentile":688},"2026-01-07",0.1552,{"date":690,"score":502,"percentile":691},"2026-01-08",0.15574,{"date":693,"score":502,"percentile":694},"2026-01-09",0.15585,{"date":696,"score":502,"percentile":697},"2026-01-10",0.156,{"date":699,"score":502,"percentile":700},"2026-01-11",0.15557,{"date":702,"score":502,"percentile":703},"2026-01-12",0.15519,{"date":705,"score":502,"percentile":706},"2026-01-13",0.15507,{"date":708,"score":502,"percentile":709},"2026-01-14",0.15562,{"date":711,"score":502,"percentile":700},"2026-01-15",{"date":713,"score":502,"percentile":714},"2026-01-16",0.1557,{"date":716,"score":502,"percentile":717},"2026-01-17",0.1559,{"date":719,"score":502,"percentile":653},"2026-01-18",{"date":721,"score":502,"percentile":722},"2026-01-19",0.1546,{"date":724,"score":502,"percentile":725},"2026-01-20",0.15441,{"date":727,"score":502,"percentile":728},"2026-01-21",0.15436,{"date":730,"score":502,"percentile":731},"2026-01-22",0.1536,{"date":733,"score":502,"percentile":734},"2026-01-23",0.15437,{"date":736,"score":502,"percentile":737},"2026-01-24",0.1547,{"date":739,"score":502,"percentile":740},"2026-01-25",0.15402,{"date":742,"score":502,"percentile":743},"2026-01-26",0.1532,{"date":745,"score":502,"percentile":746},"2026-01-27",0.15317,{"date":748,"score":502,"percentile":606},"2026-01-28",{"date":750,"score":751,"percentile":752},"2026-01-29",0.00045,0.13755,{"date":754,"score":751,"percentile":755},"2026-01-30",0.13764,{"date":757,"score":751,"percentile":758},"2026-01-31",0.13775,{"date":760,"score":751,"percentile":761},"2026-02-01",0.13788,[763,768],{"source":480,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":764,"cvss_v4_0":9},{"baseScore":478,"baseSeverity":765,"vectorString":481,"impactScore":766,"exploitabilityScore":767},"MEDIUM",9.8,2.1,{"source":486,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":769,"cvss_v4_0":9},{"baseScore":478,"baseSeverity":765,"vectorString":481,"impactScore":766,"exploitabilityScore":767},[771,784],{"ecosystem":9,"name":772,"vendor":773,"product":774,"cpe_part":775,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":776},"Oracle Linux","oracle corporation","oracle linux","a",[777,780,782],{"version":778,"is_range":474,"range_type":480,"version_start":778,"version_start_type":779,"version_end":778,"version_end_type":779,"fixed_in":9},"Oracle Linux: 7","including",{"version":781,"is_range":474,"range_type":480,"version_start":781,"version_start_type":779,"version_end":781,"version_end_type":779,"fixed_in":9},"Oracle Linux: 8",{"version":783,"is_range":474,"range_type":480,"version_start":783,"version_start_type":779,"version_end":783,"version_end_type":779,"fixed_in":9},"Oracle Linux: 9",{"ecosystem":9,"name":785,"vendor":786,"product":785,"cpe_part":787,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":788},"linux","oracle","o",[789,792,794],{"version":790,"is_range":474,"range_type":791,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7","cpe",{"version":793,"is_range":474,"range_type":791,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8",{"version":795,"is_range":474,"range_type":791,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9"]