{
  "request": {
    "method": "GET",
    "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23358.json",
    "headers": {}
  },
  "response": {
    "status": 200,
    "body": {
      "name": "CVE-2021-23358",
      "threat_severity": "Moderate",
      "public_date": "2021-03-29T00:00:00Z",
      "bugzilla": {
        "description": "CVE-2021-23358 nodejs-underscore: Arbitrary code execution via the template function",
        "id": "1944286",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1944286"
      },
      "cvss": {
        "cvss_base_score": "7.2",
        "cvss_scoring_vector": "AV:N/AC:L/Au:S/C:C/I:C/A:C",
        "status": "verified"
      },
      "cvss3": {
        "cvss3_base_score": "7.2",
        "cvss3_scoring_vector": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
        "status": "verified"
      },
      "cwe": "CWE-94",
      "details": [
        "A flaw was found in nodejs-underscore. Arbitrary code execution is possible due to the use of the template function without data sanitization. This results in the remote code execution on the operating system."
      ],
      "statement": "Red Hat Product Security has rated this update as having a security impact of Moderate.",
      "affected_release": [
        {
          "product_name": "Red Hat Enterprise Linux 8",
          "release_date": "2021-08-10T00:00:00Z",
          "advisory": "RHSA-2021:3079",
          "cpe": "cpe:/a:redhat:enterprise_linux:8",
          "package": "nodejs-underscore-1.9.1-2.el8"
        }
      ],
      "package_state": [
        {
          "product_name": "Red Hat Enterprise Linux 6",
          "fix_state": "Out of support scope",
          "package_name": "nodejs-underscore",
          "cpe": "cpe:/o:redhat:enterprise_linux:6"
        }
      ]
    }
  }
}