Published: 21/04/2021 Updated: 22/04/2021

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

VMScore: 446

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

In Alpine Linux apk-tools prior to 2.12.5, the tarball parser allows a buffer overflow and crash.

Vulnerable Product	Search on Vulmon	Subscribe to Product

Sinker is a Python tool to automate the execution of dockerized container scanning security tools merging their findings into one report.

Sinker 🐙 Sinker is a Python tool to automate: execution of dockerized container scanning tools; merge of multiple reports; post-execution tasks Why? Running these tools manually can be boring and time-consuming when there are multiple images and deployments Parsing their reports manually to get a unified view of the findings is challenging Which container scanning tool (

Product Report: Django-NV Generated By Admin User (admin) on 12/23/2021 07:55PM UTC Number of vulnerabilities found: 15 VULNERABILITIES DESCRIPTION VULNERABILITY ID : 9 TITLE: Starting a Process With a Shell, Possible Injection Detected, Security Issue SEVERITY: High RECOMMENDED TIME TO RESOLVE THE ISSUE: 30 days DESCRIPTION: An SQL injection attack consists of insertion or &l

CWE-125 https://gitlab.alpinelinux.org/alpine/aports/-/issues/12606 https://gitlab.alpinelinux.org/alpine/apk-tools/-/issues/10741 https://nvd.nist.gov https://github.com/mmartins000/sinker

CVE-2021-30139

Vulnerability Summary

Vulnerability Trend

Github Repositories

References

Vulmon Search

About

Products

Connect