Package Instance

reference_id

AVG-873

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-874

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-875

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-876

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-877

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2019-3822

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:haxx:libcurl::::::::
reference_id	cpe:2.3:a:haxx:libcurl::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:haxx:libcurl::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:active_iq_unified_manager::::::vsphere::*
reference_id	cpe:2.3:a:netapp:active_iq_unified_manager::::::vsphere::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:active_iq_unified_manager::::::vsphere::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:active_iq_unified_manager::::::windows::*
reference_id	cpe:2.3:a:netapp:active_iq_unified_manager::::::windows::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:active_iq_unified_manager::::::windows::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:clustered_data_ontap::::::::
reference_id	cpe:2.3:a:netapp:clustered_data_ontap::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:clustered_data_ontap::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:oncommand_insight:-:::::::*
reference_id	cpe:2.3:a:netapp:oncommand_insight:-:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:oncommand_insight:-:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:oncommand_workflow_automation:-:::::::*
reference_id	cpe:2.3:a:netapp:oncommand_workflow_automation:-:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:oncommand_workflow_automation:-:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:snapcenter:-:::::::*
reference_id	cpe:2.3:a:netapp:snapcenter:-:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:snapcenter:-:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:communications_operations_monitor:3.4:::::::*
reference_id	cpe:2.3:a:oracle:communications_operations_monitor:3.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:communications_operations_monitor:3.4:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:communications_operations_monitor:4.0:::::::*
reference_id	cpe:2.3:a:oracle:communications_operations_monitor:4.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:communications_operations_monitor:4.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:enterprise_manager_ops_center:12.3.3:::::::*
reference_id	cpe:2.3:a:oracle:enterprise_manager_ops_center:12.3.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:enterprise_manager_ops_center:12.3.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:enterprise_manager_ops_center:12.4.0:::::::*
reference_id	cpe:2.3:a:oracle:enterprise_manager_ops_center:12.4.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:enterprise_manager_ops_center:12.4.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:http_server:12.2.1.3.0:::::::*
reference_id	cpe:2.3:a:oracle:http_server:12.2.1.3.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:http_server:12.2.1.3.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:mysql_server::::::::
reference_id	cpe:2.3:a:oracle:mysql_server::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:mysql_server::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:secure_global_desktop:5.4:::::::*
reference_id	cpe:2.3:a:oracle:secure_global_desktop:5.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:secure_global_desktop:5.4:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:services_tools_bundle:19.2:::::::*
reference_id	cpe:2.3:a:oracle:services_tools_bundle:19.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:services_tools_bundle:19.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:siemens:sinema_remote_connect_client::::::::
reference_id	cpe:2.3:a:siemens:sinema_remote_connect_client::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:siemens:sinema_remote_connect_client::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04::::lts:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:16.04::::lts:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04::::lts:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:::::::*
reference_id	cpe:2.3:o:canonical:ubuntu_linux:18.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:::::::*
reference_id	cpe:2.3:o:debian:debian_linux:9.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:8.0:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux:8.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:8.0:::::::*

reference_url

reference_id

CVE-2019-3822

reference_type

scores

value	7.5
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:P/I:P/A:P

value	7.1
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://nvd.nist.gov/vuln/detail/CVE-2019-3822

reference_url	https://security.gentoo.org/glsa/201903-03
reference_id	GLSA-201903-03
reference_type
scores
url	https://security.gentoo.org/glsa/201903-03

reference_url	https://access.redhat.com/errata/RHSA-2019:3701
reference_id	RHSA-2019:3701
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3701

reference_url	https://usn.ubuntu.com/3882-1/
reference_id	USN-3882-1
reference_type
scores
url	https://usn.ubuntu.com/3882-1/

fixed_packages

url	pkg:apk/alpine/curl@7.64.0-r0?arch=s390x&distroversion=v3.14&reponame=main
purl	pkg:apk/alpine/curl@7.64.0-r0?arch=s390x&distroversion=v3.14&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@7.64.0-r0%3Farch=s390x&distroversion=v3.14&reponame=main

aliases CVE-2019-3822

risk_score 4.4

exploitability 0.5

weighted_severity 8.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-79sv-kzb5-hbc4

url VCID-v3qf-6wju-1bg8

vulnerability_id VCID-v3qf-6wju-1bg8

summary security update

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16890.json

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16890.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-16890

reference_id

reference_type

scores

value	0.01397
scoring_system	epss
scoring_elements	0.80347
published_at	2026-04-01T12:55:00Z

value	0.01397
scoring_system	epss
scoring_elements	0.80398
published_at	2026-04-13T12:55:00Z

value	0.01397
scoring_system	epss
scoring_elements	0.80353
published_at	2026-04-02T12:55:00Z

value	0.01397
scoring_system	epss
scoring_elements	0.80373
published_at	2026-04-04T12:55:00Z

value	0.01397
scoring_system	epss
scoring_elements	0.80362
published_at	2026-04-07T12:55:00Z

value	0.01397
scoring_system	epss
scoring_elements	0.80391
published_at	2026-04-08T12:55:00Z

value	0.01397
scoring_system	epss
scoring_elements	0.80402
published_at	2026-04-09T12:55:00Z

value	0.01397
scoring_system	epss
scoring_elements	0.8042
published_at	2026-04-11T12:55:00Z

value	0.01397
scoring_system	epss
scoring_elements	0.80405
published_at	2026-04-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-16890

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16890
reference_id
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16890

reference_url	https://cert-portal.siemens.com/productcert/pdf/ssa-436177.pdf
reference_id
reference_type
scores
url	https://cert-portal.siemens.com/productcert/pdf/ssa-436177.pdf

reference_url	https://curl.haxx.se/docs/CVE-2018-16890.html
reference_id
reference_type
scores
url	https://curl.haxx.se/docs/CVE-2018-16890.html

reference_url

https://curl.se/docs/CVE-2018-16890.html

reference_id

reference_type

scores

value	Medium
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2018-16890.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16890
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16890

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3822
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3822

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3823
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3823

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	3.1
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://lists.apache.org/thread.html/8338a0f605bdbb3a6098bb76f666a95fc2b2f53f37fa1ecc89f1146f%40%3Cdevnull.infra.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/8338a0f605bdbb3a6098bb76f666a95fc2b2f53f37fa1ecc89f1146f%40%3Cdevnull.infra.apache.org%3E

reference_url	https://security.netapp.com/advisory/ntap-20190315-0001/
reference_id
reference_type
scores
url	https://security.netapp.com/advisory/ntap-20190315-0001/

reference_url	https://support.f5.com/csp/article/K03314397?utm_source=f5support&amp%3Butm_medium=RSS
reference_id
reference_type
scores
url	https://support.f5.com/csp/article/K03314397?utm_source=f5support&amp%3Butm_medium=RSS

reference_url	https://www.debian.org/security/2019/dsa-4386
reference_id
reference_type
scores
url	https://www.debian.org/security/2019/dsa-4386

reference_url	https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html
reference_id
reference_type
scores
url	https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html

reference_url	https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html
reference_id
reference_type
scores
url	https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html

reference_url	http://www.securityfocus.com/bid/106947
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/106947

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1670252
reference_id	1670252
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1670252

reference_url	https://security.archlinux.org/ASA-201902-10
reference_id	ASA-201902-10
reference_type
scores
url	https://security.archlinux.org/ASA-201902-10

reference_url	https://security.archlinux.org/ASA-201902-11
reference_id	ASA-201902-11
reference_type
scores
url	https://security.archlinux.org/ASA-201902-11

reference_url	https://security.archlinux.org/ASA-201902-12
reference_id	ASA-201902-12
reference_type
scores
url	https://security.archlinux.org/ASA-201902-12

reference_url	https://security.archlinux.org/ASA-201902-13
reference_id	ASA-201902-13
reference_type
scores
url	https://security.archlinux.org/ASA-201902-13

reference_url	https://security.archlinux.org/ASA-201902-9
reference_id	ASA-201902-9
reference_type
scores
url	https://security.archlinux.org/ASA-201902-9

reference_url

reference_id

AVG-873

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-874

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-875

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-876

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-877

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2018-16890

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:f5:big-ip_access_policy_manager::::::::
reference_id	cpe:2.3:a:f5:big-ip_access_policy_manager::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:f5:big-ip_access_policy_manager::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:haxx:libcurl::::::::
reference_id	cpe:2.3:a:haxx:libcurl::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:haxx:libcurl::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:communications_operations_monitor:3.4:::::::*
reference_id	cpe:2.3:a:oracle:communications_operations_monitor:3.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:communications_operations_monitor:3.4:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:communications_operations_monitor:4.0:::::::*
reference_id	cpe:2.3:a:oracle:communications_operations_monitor:4.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:communications_operations_monitor:4.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:http_server:12.2.1.3.0:::::::*
reference_id	cpe:2.3:a:oracle:http_server:12.2.1.3.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:http_server:12.2.1.3.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:secure_global_desktop:5.4:::::::*
reference_id	cpe:2.3:a:oracle:secure_global_desktop:5.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:secure_global_desktop:5.4:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:siemens:sinema_remote_connect_client::::::::
reference_id	cpe:2.3:a:siemens:sinema_remote_connect_client::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:siemens:sinema_remote_connect_client::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04::::lts:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:16.04::::lts:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04::::lts:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:::::::*
reference_id	cpe:2.3:o:canonical:ubuntu_linux:18.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:::::::*
reference_id	cpe:2.3:o:debian:debian_linux:9.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:netapp:clustered_data_ontap::::::::
reference_id	cpe:2.3:o:netapp:clustered_data_ontap::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:netapp:clustered_data_ontap::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:8.0:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux:8.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:8.0:::::::*

reference_url

reference_id

CVE-2018-16890

reference_type

scores

value	5.0
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:N/I:N/A:P

value	5.4
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://nvd.nist.gov/vuln/detail/CVE-2018-16890

reference_url	https://access.redhat.com/errata/RHSA-2019:3701
reference_id	RHSA-2019:3701
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3701

reference_url	https://usn.ubuntu.com/3882-1/
reference_id	USN-3882-1
reference_type
scores
url	https://usn.ubuntu.com/3882-1/

fixed_packages

url	pkg:apk/alpine/curl@7.64.0-r0?arch=s390x&distroversion=v3.14&reponame=main
purl	pkg:apk/alpine/curl@7.64.0-r0?arch=s390x&distroversion=v3.14&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@7.64.0-r0%3Farch=s390x&distroversion=v3.14&reponame=main

aliases CVE-2018-16890

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-v3qf-6wju-1bg8

url VCID-w8ks-xk66-r3fm

vulnerability_id VCID-w8ks-xk66-r3fm

summary

Multiple vulnerabilities have been found in cURL, the worst of
    which could result in a Denial of Service condition.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-3823.json

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-3823.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-3823

reference_id

reference_type

scores

value	0.01673
scoring_system	epss
scoring_elements	0.82071
published_at	2026-04-01T12:55:00Z

value	0.01673
scoring_system	epss
scoring_elements	0.82137
published_at	2026-04-13T12:55:00Z

value	0.01673
scoring_system	epss
scoring_elements	0.82083
published_at	2026-04-02T12:55:00Z

value	0.01673
scoring_system	epss
scoring_elements	0.82104
published_at	2026-04-04T12:55:00Z

value	0.01673
scoring_system	epss
scoring_elements	0.821
published_at	2026-04-07T12:55:00Z

value	0.01673
scoring_system	epss
scoring_elements	0.82126
published_at	2026-04-08T12:55:00Z

value	0.01673
scoring_system	epss
scoring_elements	0.82134
published_at	2026-04-09T12:55:00Z

value	0.01673
scoring_system	epss
scoring_elements	0.82153
published_at	2026-04-11T12:55:00Z

value	0.01673
scoring_system	epss
scoring_elements	0.82144
published_at	2026-04-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-3823

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3823
reference_id
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3823

reference_url	https://cert-portal.siemens.com/productcert/pdf/ssa-936080.pdf
reference_id
reference_type
scores
url	https://cert-portal.siemens.com/productcert/pdf/ssa-936080.pdf

reference_url	https://curl.haxx.se/docs/CVE-2019-3823.html
reference_id
reference_type
scores
url	https://curl.haxx.se/docs/CVE-2019-3823.html

reference_url

https://curl.se/docs/CVE-2019-3823.html

reference_id

reference_type

scores

value	Low
scoring_system	cvssv3.1
scoring_elements

url

https://curl.se/docs/CVE-2019-3823.html

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16890
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16890

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3822
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3822

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3823
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3823

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://lists.apache.org/thread.html/8338a0f605bdbb3a6098bb76f666a95fc2b2f53f37fa1ecc89f1146f%40%3Cdevnull.infra.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/8338a0f605bdbb3a6098bb76f666a95fc2b2f53f37fa1ecc89f1146f%40%3Cdevnull.infra.apache.org%3E

reference_url	https://security.netapp.com/advisory/ntap-20190315-0001/
reference_id
reference_type
scores
url	https://security.netapp.com/advisory/ntap-20190315-0001/

reference_url	https://www.debian.org/security/2019/dsa-4386
reference_id
reference_type
scores
url	https://www.debian.org/security/2019/dsa-4386

reference_url	https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html
reference_id
reference_type
scores
url	https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html

reference_url	https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html
reference_id
reference_type
scores
url	https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html

reference_url	http://www.securityfocus.com/bid/106950
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/106950

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1670256
reference_id	1670256
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1670256

reference_url	https://security.archlinux.org/ASA-201902-10
reference_id	ASA-201902-10
reference_type
scores
url	https://security.archlinux.org/ASA-201902-10

reference_url	https://security.archlinux.org/ASA-201902-11
reference_id	ASA-201902-11
reference_type
scores
url	https://security.archlinux.org/ASA-201902-11

reference_url	https://security.archlinux.org/ASA-201902-12
reference_id	ASA-201902-12
reference_type
scores
url	https://security.archlinux.org/ASA-201902-12

reference_url	https://security.archlinux.org/ASA-201902-13
reference_id	ASA-201902-13
reference_type
scores
url	https://security.archlinux.org/ASA-201902-13

reference_url	https://security.archlinux.org/ASA-201902-9
reference_id	ASA-201902-9
reference_type
scores
url	https://security.archlinux.org/ASA-201902-9

reference_url

reference_id

AVG-873

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-874

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-875

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-876

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-877

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url