CVE-2021-3121

SOURCE - github

Summary

An issue was discovered in GoGo Protobuf before 1.3.2. plugin/unmarshal/unmarshal.go lacks certain index validation, aka the "skippy peanut butter" issue.

EPSS Score⁠: 0.00829 (0.819)

Common Weakness Enumeration (CWE)

SOURCE - nist

CWE-129⁠

Improper Validation of Array Index

SOURCE - github

CWE-129⁠

Improper Validation of Array Index

CWE-20⁠

Improper Input Validation

SOURCE - gitlab

CWE-1035⁠

OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities

CWE-129⁠

Improper Validation of Array Index

CWE-937⁠

OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities

SOURCE - redhat

CWE-129⁠

Improper Validation of Array Index

Sources (13)

Impacted images

nist

CREATED

3 years ago

UPDATED

2 years ago

SOURCE IDCVE-2021-3121⁠

EXPLOITABILITY SCORE

3.9

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)

CWE-129⁠

CVSS SCORE

8.6high

github

CREATED

2 years ago

UPDATED

2 years ago

SOURCE IDGHSA-c3h9-896r-86jm⁠

EXPLOITABILITY SCORE

3.9

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)

CWE-129⁠CWE-20⁠

CVSS SCORE

8.6high

alpine

CREATED

3 years ago

UPDATED

1 month ago

SOURCE IDCVE-2021-3121⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM SOURCE

debian

CREATED

3 years ago

UPDATED

8 months ago

SOURCE IDCVE-2021-3121⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM SOURCE

ubuntu

CREATED

3 years ago

UPDATED

10 days ago

SOURCE IDCVE-2021-3121⁠

EXPLOITABILITY SCORE

3.9

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

8.6medium

golang

CREATED

3 years ago

UPDATED

11 months ago

SOURCE IDGO-2021-0053⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM SOURCE

gitlab

CREATED

3 years ago

UPDATED

6 months ago

SOURCE ID

CVE-2021-3121

EXPLOITABILITY SCORE

3.9

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)

CWE-1035⁠CWE-129⁠CWE-937⁠

CVSS SCORE

8.6high

bitnami

CREATED

8 months ago

UPDATED

8 months ago

SOURCE ID

BIT-2021-3121

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

bitnami

CREATED

2 months ago

UPDATED

2 months ago

SOURCE ID

BIT-consul-2021-3121

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

bitnami

CREATED

2 months ago

UPDATED

2 months ago

SOURCE ID

BIT-protobuf-2021-3121

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

redhat

CREATED

3 years ago

UPDATED

10 months ago

SOURCE IDCVE-2021-3121⁠

EXPLOITABILITY SCORE

3.9

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)

CWE-129⁠

CVSS SCORE

8.6high

chainguard

CREATED

3 years ago

UPDATED

28 days ago

SOURCE ID

CVE-2021-3121

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM SOURCE

wolfi

CREATED

3 years ago

UPDATED

28 days ago

SOURCE ID

CVE-2021-3121

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM SOURCE