CVE-2021-3502

Bokeh Plot Bokeh.set_log_level("info"); {"40985f53-aab7-4ebb-81b8-9780d97ef354":{"defs":[],"roots":{"references":[{"attributes":{},"id":"262245","type":"DataRange1d"},{"attributes":{"formatter":{"id":"262329"},"major_label_policy":{"id":"262327"},"ticker":{"id":"262258"}},"id":"262257","type":"LinearAxis"},{"attributes":{"factors":["root","checkov","chart","helmResource","CVE","image"],"palette":["#3288bd","#66c2a5","#abdda4","#e6f598","#fee08b","#fdae61","#f46d43","#d53e4f"]},"id":"262311","type":"CategoricalColorMapper"},{"attributes":{"callback":null},"id":"262276","type":"TapTool"},{"attributes":{"graph_layout":{"CKV_K8S_10":[-0.24341744186095543,0.05721227753171031],"CKV_K8S_11":[-0.25159063020254524,-0.05977295467504135],"CKV_K8S_12":[-0.269607665111049,0.09951569384863444],"CKV_K8S_13":[-0.3038657618231827,-0.07493145499378105],"CKV_K8S_15":[-0.3364451690873683,-0.05744394334406082],"CKV_K8S_20":[-0.34376176742421904,0.03712392955678217],"CKV_K8S_22":[-0.2819043578032088,-0.10416298361394846],"CKV_K8S_23":[-0.2237437789366822,0.09580420248794451],"CKV_K8S_28":[-0.19761315818866196,-0.06615197467467722],"CKV_K8S_31":[-0.18963282928759048,0.05575777040541725],"CKV_K8S_37":[-0.30055932890622156,0.04920824029677674],"CKV_K8S_38":[-0.3163786370886473,-0.015347129537960328],"CKV_K8S_40":[-0.23596935070304187,-0.10275829415747736],"CKV_K8S_43":[-0.3535054220415429,-0.011302006957821971],"CKV_K8S_9":[-0.3115986816016467,0.0838114783457385],"CVE-2016-1585":[0.2887867646790107,0.07519825129559042],"CVE-2016-2781":[0.26441073232317946,-0.10555194811326828],"CVE-2017-7475":[0.32936658280456244,-0.051447701948859254],"CVE-2018-18064":[0.1389955513258196,-0.1169680668951494],"CVE-2019-6461":[0.23630109284395645,0.06625300683111042],"CVE-2019-6462":[0.23996122238635254,0.007430118319261454],"CVE-2020-26301":[0.27576861276870024,-0.04846927959380946],"CVE-2020-27748":[0.09144015568245475,-0.14147877024067995],"CVE-2021-20066":[0.2863293984248752,-0.1506264628544819],"CVE-2021-22945":[0.07819483496211571,-0.06801036418704823],"CVE-2021-22946":[0.20828449068168634,-0.13054909709352883],"CVE-2021-22947":[0.14226420099732254,-0.17763348419190306],"CVE-2021-23406":[0.08690971880050971,0.007538613157009747],"CVE-2021-31879":[0.22145344642955653,0.10874613726608927],"CVE-2021-33574":[0.2415867839950783,-0.17724504452402054],"CVE-2021-3468":[0.3270921606726376,-0.0019627834412815196],"CVE-2021-3502":[0.318613481832008,-0.10192851190542722],"CVE-2021-3711":[0.29375232778798194,0.02750546491591531],"CVE-2021-3712":[0.16564788506271366,0.05252944950900427],"CVE-2021-37750":[0.16411033978759854,0.10671722749642427],"CVE-2021-40528":[0.19136444101721195,-0.18836824372359345],"Deployment.default":[-0.2015924446939433,-0.006590818572607434],"PRISMA-2021-0125":[0.10983832513588168,0.06807225883711039],"datadog/synthetics-private-location":[-0.27488471850202306,-0.0012589850340243949],"deps":[-0.23669087938009362,1.0],"gcr.io/datadoghq/synthetics-private-location-worker:1.14.0":[0.17228947224141067,-0.03846381582606759]}},"id":"262290","type":"StaticLayoutProvider"},{"attributes":{},"id":"262254","type":"BasicTicker"},{"attributes":{"data_source":{"id":"262283"},"glyph":{"id":"262312"},"hover_glyph":null,"muted_glyph":null,"view":{"id":"262285"}},"id":"262284","type":"GlyphRenderer"},{"attributes":{"axis":{"id":"262257"},"dimension":1,"ticker":null},"id":"262260","type":"Grid"},{"attributes":{"axis":{"id":"262253"},"ticker":null},"id":"262256","type":"Grid"},{"attributes":{},"id":"262261","type":"PanTool"},{"attributes":{},"id":"262286","type":"MultiLine"},{"attributes":{},"id":"262266","type":"HelpTool"},{"attributes":{"background_fill_color":{"value":"white"},"source":{"id":"262283"},"text":{"field":"name"},"x":{"field":"x"},"y":{"field":"y"}},"id":"262321","type":"LabelSet"},{"attributes":{},"id":"262249","type":"LinearScale"},{"attributes":{"formatter":{"id":"262326"},"major_label_policy":{"id":"262324"},"ticker":{"id":"262254"}},"id":"262253","type":"LinearAxis"},{"attributes":{},"id":"262265","type":"ResetTool"},{"attributes":{"overlay":{"id":"262341"}},"id":"262277","type":"BoxSelectTool"},{"attributes":{},"id":"262326","type":"BasicTickFormatter"},{"attributes":{},"id":"262324","type":"AllLabels"},{"attributes":{},"id":"262334","type":"NodesOnly"},{"attributes":{"data":{"end":["CKV_K8S_38","CKV_K8S_40","CKV_K8S_23","CKV_K8S_31","CKV_K8S_43","CKV_K8S_22","CKV_K8S_28","CKV_K8S_20","CKV_K8S_12","CKV_K8S_37","CKV_K8S_15","CKV_K8S_10","CKV_K8S_11","CKV_K8S_13","CKV_K8S_9","Deployment.default","CKV_K8S_40","CKV_K8S_23","CKV_K8S_31","CKV_K8S_43","CKV_K8S_22","CKV_K8S_28","CKV_K8S_20","CKV_K8S_12","CKV_K8S_37","CKV_K8S_15","CKV_K8S_10","CKV_K8S_11","CKV_K8S_13","CKV_K8S_9","gcr.io/datadoghq/synthetics-private-location-worker:1.14.0","CVE-2021-3711","CVE-2021-3712","PRISMA-2021-0125","CVE-2021-23406","CVE-2020-26301","CVE-2021-37750","CVE-2021-33574","CVE-2016-1585","CVE-2021-22945","CVE-2021-22946","CVE-2020-27748","CVE-2019-6462","CVE-2019-6461","CVE-2018-18064","CVE-2016-2781","CVE-2021-31879","CVE-2021-40528","CVE-2021-22947","CVE-2021-20066","CVE-2021-3502","CVE-2021-3468","CVE-2017-7475"],"start":["datadog/synthetics-private-location","datadog/synthetics-private-location","datadog/synthetics-private-location","datadog/synthetics-private-location","datadog/synthetics-private-location","datadog/synthetics-private-location","datadog/synthetics-private-location","datadog/synthetics-private-location","datadog/synthetics-private-location","datadog/synthetics-private-location","datadog/synthetics-private-location","datadog/synthetics-private-location","datadog/synthetics-private-location","datadog/synthetics-private-location","datadog/synthetics-private-location","CKV_K8S_38","Deployment.default","Deployment.default","Deployment.default","Deployment.default","Deployment.default","Deployment.default","Deployment.default","Deployment.default","Deployment.default","Deployment.default","Deployment.default","Deployment.default","Deployment.default","Deployment.default","Deployment.default","gcr.io/datadoghq/synthetics-private-location-worker:1.14.0","gcr.io/datadoghq/synthetics-private-location-worker:1.14.0","gcr.io/datadoghq/synthetics-private-location-worker:1.14.0","gcr.io/datadoghq/synthetics-private-location-worker:1.14.0","gcr.io/datadoghq/synthetics-private-location-worker:1.14.0","gcr.io/datadoghq/synthetics-private-location-worker:1.14.0","gcr.io/datadoghq/synthetics-private-location-worker:1.14.0","gcr.io/datadoghq/synthetics-private-location-worker:1.14.0","gcr.io/datadoghq/synthetics-private-location-worker:1.14.0","gcr.io/datadoghq/synthetics-private-location-worker:1.14.0","gcr.io/datadoghq/synthetics-private-location-worker:1.14.0","gcr.io/datadoghq/synthetics-private-location-worker:1.14.0","gcr.io/datadoghq/synthetics-private-location-worker:1.14.0","gcr.io/datadoghq/synthetics-private-location-worker:1.14.0","gcr.io/datadoghq/synthetics-private-location-worker:1.14.0","gcr.io/datadoghq/synthetics-private-location-worker:1.14.0","gcr.io/datadoghq/synthetics-private-location-worker:1.14.0","gcr.io/datadoghq/synthetics-private-location-worker:1.14.0","gcr.io/datadoghq/synthetics-private-location-worker:1.14.0","gcr.io/datadoghq/synthetics-private-location-worker:1.14.0","gcr.io/datadoghq/synthetics-private-location-worker:1.14.0","gcr.io/datadoghq/synthetics-private-location-worker:1.14.0"]},"selected":{"id":"262345"},"selection_policy":{"id":"262344"}},"id":"262287","type":"ColumnDataSource"},{"attributes":{"overlay":{"id":"262267"}},"id":"262263","type":"BoxZoomTool"},{"attributes":{"bottom_units":"screen","fill_alpha":0.5,"fill_color":"lightgrey","left_units":"screen","level":"overlay","line_alpha":1.0,"line_color":"black","line_dash":[4,4],"line_width":2,"right_units":"screen","syncable":false,"top_units":"screen"},"id":"262341","type":"BoxAnnotation"},{"attributes":{},"id":"262327","type":"AllLabels"},{"attributes":{"text":"datadog-synthetics-private-location"},"id":"262243","type":"Title"},{"attributes":{"callback":null,"tooltips":[["Name","@name"],["NodeType","@nodeType"],["Description","@description"]]},"id":"262275","type":"HoverTool"},{"attributes":{"bottom_units":"screen","fill_alpha":0.5,"fill_color":"lightgrey","left_units":"screen","level":"overlay","line_alpha":1.0,"line_color":"black","line_dash":[4,4],"line_width":2,"right_units":"screen","syncable":false,"top_units":"screen"},"id":"262267","type":"BoxAnnotation"},{"attributes":{"data_source":{"id":"262287"},"glyph":{"id":"262286"},"hover_glyph":null,"muted_glyph":null,"view":{"id":"262289"}},"id":"262288","type":"GlyphRenderer"},{"attributes":{},"id":"262343","type":"Selection"},{"attributes":{"source":{"id":"262287"}},"id":"262289","type":"CDSView"},{"attributes":{"edge_renderer":{"id":"262288"},"inspection_policy":{"id":"262334"},"layout_provider":{"id":"262290"},"node_renderer":{"id":"262284"},"selection_policy":{"id":"262339"}},"id":"262281","type":"GraphRenderer"},{"attributes":{},"id":"262344","type":"UnionRenderers"},{"attributes":{"data":{"cvssScore":[null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,9.8,7.4,7.3,7,7,6.5,9.8,9.8,9.1,7.5,6.5,6.5,6.5,6.5,6.5,6.1,5.9,5.9,5.6,5.5,5.5,5.5],"description":["datadog/synthetics-private-location",null,"Ensure that Service Account Tokens are only mounted where necessary","Deployment.RELEASE-NAME-synthetics-private-location.default (container 0) - synthetics-private-location","Containers should run as a high UID to avoid host conflict","Minimize the admission of root containers","Ensure that the seccomp profile is set to docker/default or runtime/default","Image should use digest","Use read-only filesystem for containers where possible","Minimize the admission of containers with the NET_RAW capability","Containers should not run with allowPrivilegeEscalation"

Bokeh Plot Bokeh.set_log_level("info"); {"b3f30312-9ff6-49b7-a493-b9314f05e285":{"defs":[],"roots":{"references":[{"attributes":{},"id":"575690","type":"MultiLine"},{"attributes":{"data_source":{"id":"575691"},"glyph":{"id":"575690"},"hover_glyph":null,"muted_glyph":null,"view":{"id":"575693"}},"id":"575692","type":"GlyphRenderer"},{"attributes":{},"id":"575649","type":"DataRange1d"},{"attributes":{"edge_renderer":{"id":"575692"},"inspection_policy":{"id":"575738"},"layout_provider":{"id":"575694"},"node_renderer":{"id":"575688"},"selection_policy":{"id":"575743"}},"id":"575685","type":"GraphRenderer"},{"attributes":{"data":{"cvssScore":[null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,9.8,5.5,9.8,9.8,9.8,9.8,9.8,9.8,9.8,9.8,9.8,9.8,9.1,9.1,9.1,9.1,9.1,9.1,9.1,8.8,8.8,8.8,8.6,8.1,7.8,7.8,7.8,7.8,7.5,7.5,7.5,7.5,7.4,6.5,6.5,6.5,6.5,6.5,6.1,5.9,5.9,5.9,5.9,5.5,5.5,5.5,5.5,5.5,5.5,5.5,5.5,5.5,5.5,5.5,5.5,5.5,5.5,5.3,5.3,5.3,5.3,9.8,9.8,7.8,7.8,7.5,7.5,7.5,7.5,7.5,7.5,6.5,6.5,6.5,6.5,6.5,6.5,6.5,6.5,6.5,6.5,6.1,5.9,5.5,5.5,5.5,5.5,5.5,5.5,5.5,5.3,null],"description":["k8s-at-home/photoprism",null,"Ensure that Service Account Tokens are only mounted where necessary","Deployment.RELEASE-NAME-photoprism.default (container 0) - RELEASE-NAME-photoprism","Containers should run as a high UID to avoid host conflict","Apply security context to your pods and containers","Minimize the admission of root containers","Ensure that the seccomp profile is set to docker/default or runtime/default","Image should use digest","Apply security context to your pods and containers","Use read-only filesystem for containers where possible"

Bokeh Plot Bokeh.set_log_level("info"); {"4c3f997c-1974-4d49-93fb-944dbeaf01f9":{"defs":[],"roots":{"references":[{"attributes":{"formatter":{"id":"1097658"},"major_label_policy":{"id":"1097656"},"ticker":{"id":"1097586"}},"id":"1097585","type":"LinearAxis"},{"attributes":{},"id":"1097659","type":"AllLabels"},{"attributes":{},"id":"1097593","type":"PanTool"},{"attributes":{"overlay":{"id":"1097599"}},"id":"1097595","type":"BoxZoomTool"},{"attributes":{},"id":"1097671","type":"NodesOnly"},{"attributes":{},"id":"1097675","type":"Selection"},{"attributes":{},"id":"1097618","type":"MultiLine"},{"attributes":{},"id":"1097666","type":"NodesOnly"},{"attributes":{"source":{"id":"1097615"}},"id":"1097617","type":"CDSView"},{"attributes":{"formatter":{"id":"1097661"},"major_label_policy":{"id":"1097659"},"ticker":{"id":"1097590"}},"id":"1097589","type":"LinearAxis"},{"attributes":{"edge_renderer":{"id":"1097620"},"inspection_policy":{"id":"1097666"},"layout_provider":{"id":"1097622"},"node_renderer":{"id":"1097616"},"selection_policy":{"id":"1097671"}},"id":"1097613","type":"GraphRenderer"},{"attributes":{"bottom_units":"screen","fill_alpha":0.5,"fill_color":"lightgrey","left_units":"screen","level":"overlay","line_alpha":1.0,"line_color":"black","line_dash":[4,4],"line_width":2,"right_units":"screen","syncable":false,"top_units":"screen"},"id":"1097599","type":"BoxAnnotation"},{"attributes":{},"id":"1097583","type":"LinearScale"},{"attributes":{"data":{"cvssScore":[null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,9.8,9.8,9.8,6.1,9.8,9.8,9.1,8.8,7.5,7.5,7.5,7.5,7.5,6.5,6.5,6.5,6.5,6.5,6.5,6.5,6.5,6.5,6.5,6.5,6.5,6.5,6.5,6.5,6.5,6.5,5.9,5.9,5.7,5.5,5.5,5.5,5.5,5.5,5.5,5.5,5.5,5.5,5.3],"description":["wbstack/mediawiki",null,"Ensure that Service Account Tokens are only mounted where necessary","Deployment.RELEASE-NAME-mediawiki-app-web.default (container 0) - mediawiki","Containers should run as a high UID to avoid host conflict","Apply security context to your pods and containers","Minimize the admission of root containers","Ensure that the seccomp profile is set to docker/default or runtime/default","Image should use digest","Apply security context to your pods and containers","Use read-only filesystem for containers where possible"