Moderate severityNVD Advisory· Published Aug 25, 2022· Updated Aug 3, 2024
CVE-2021-3914
CVE-2021-3914
Description
It was found that the smallrye health metrics UI component did not properly sanitize some user inputs. An attacker could use this flaw to conduct cross-site scripting attacks.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
io.smallrye:smallrye-health-uiMaven | < 3.1.2 | 3.1.2 |
Affected products
1Patches
Vulnerability mechanics
Generated on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.
References
7- github.com/advisories/GHSA-pvc3-wvxr-7cmfghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2021-3914ghsaADVISORY
- access.redhat.com/security/cve/CVE-2021-3914ghsax_refsource_MISCWEB
- bugzilla.redhat.com/show_bug.cgighsax_refsource_MISCWEB
- github.com/smallrye/smallrye-health/commit/01b25a038824887363cd413d8cd14052f5fc3541ghsaWEB
- github.com/smallrye/smallrye-health/commit/47a33f19f5bb1e4216a15f3aee6ca3b1e2ccba59ghsaWEB
- github.com/smallrye/smallrye-health/pull/333ghsaWEB
News mentions
0No linked articles in our index yet.