CVE-2021-3703

HIGH

Serverless <1.17.0 - Info Disclosure

Title source: llm
STIX 2.1

Description

It was found that the CVE-2021-27918, CVE-2021-31525 and CVE-2021-33196 have been incorrectly mentioned as fixed in RHSA for Serverless 1.16.0 and Serverless client kn 1.16.0. These have been fixed with Serverless 1.17.0.

References (2)

Core 2
Core References
Issue Tracking, Vendor Advisory x_refsource_misc
https://bugzilla.redhat.com/show_bug.cgi?id=1992955
Vendor Advisory x_refsource_misc
https://access.redhat.com/security/cve/CVE-2021-3703

Scores

CVSS v3 7.5
EPSS 0.0043
EPSS Percentile 63.0%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Details

Status published
Products (1)
redhat/openshift_serverless < 1.17.0
Published Aug 26, 2022
Tracked Since Feb 18, 2026