Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:ebuild/dev-lang/php@8.0.23

Type ebuild

Namespace dev-lang

Name php

Version 8.0.23

Qualifiers

Subpath

Is_vulnerable false

Next_non_vulnerable_version 8.0.25

Latest_non_vulnerable_version 8.3.12

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-2tux-e678-hubz

vulnerability_id VCID-2tux-e678-hubz

summary Multiple vulnerabilities have been discovered in PHP, the worst of which could result in local root privilege escalation.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-31627.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-31627.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-31627

reference_id

reference_type

scores

value	0.00181
scoring_system	epss
scoring_elements	0.3976
published_at	2026-04-02T12:55:00Z

value	0.00181
scoring_system	epss
scoring_elements	0.39782
published_at	2026-04-04T12:55:00Z

value	0.00181
scoring_system	epss
scoring_elements	0.39701
published_at	2026-04-07T12:55:00Z

value	0.00181
scoring_system	epss
scoring_elements	0.39755
published_at	2026-04-08T12:55:00Z

value	0.00181
scoring_system	epss
scoring_elements	0.39769
published_at	2026-04-09T12:55:00Z

value	0.00181
scoring_system	epss
scoring_elements	0.39779
published_at	2026-04-11T12:55:00Z

value	0.00181
scoring_system	epss
scoring_elements	0.39743
published_at	2026-04-12T12:55:00Z

value	0.00181
scoring_system	epss
scoring_elements	0.39727
published_at	2026-04-13T12:55:00Z

value	0.00181
scoring_system	epss
scoring_elements	0.39777
published_at	2026-04-16T12:55:00Z

value	0.00181
scoring_system	epss
scoring_elements	0.39748
published_at	2026-04-18T12:55:00Z

value	0.00181
scoring_system	epss
scoring_elements	0.39664
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-31627

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2107018
reference_id	2107018
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2107018

reference_url	https://security.gentoo.org/glsa/202209-20
reference_id	GLSA-202209-20
reference_type
scores
url	https://security.gentoo.org/glsa/202209-20

reference_url	https://usn.ubuntu.com/5530-1/
reference_id	USN-5530-1
reference_type
scores
url	https://usn.ubuntu.com/5530-1/

fixed_packages

url	pkg:ebuild/dev-lang/php@7.4.30
purl	pkg:ebuild/dev-lang/php@7.4.30
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/php@7.4.30

url	pkg:ebuild/dev-lang/php@8.0.23
purl	pkg:ebuild/dev-lang/php@8.0.23
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/php@8.0.23

url	pkg:ebuild/dev-lang/php@8.1.8
purl	pkg:ebuild/dev-lang/php@8.1.8
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/php@8.1.8

aliases CVE-2022-31627

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2tux-e678-hubz

url VCID-8kna-v21h-qfb5

vulnerability_id VCID-8kna-v21h-qfb5

summary Multiple vulnerabilities have been discovered in PHP, the worst of which could result in local root privilege escalation.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-21704.json

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-21704.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-21704

reference_id

reference_type

scores

value	0.0015
scoring_system	epss
scoring_elements	0.35369
published_at	2026-04-01T12:55:00Z

value	0.0015
scoring_system	epss
scoring_elements	0.35467
published_at	2026-04-21T12:55:00Z

value	0.0015
scoring_system	epss
scoring_elements	0.35528
published_at	2026-04-16T12:55:00Z

value	0.0015
scoring_system	epss
scoring_elements	0.35518
published_at	2026-04-18T12:55:00Z

value	0.0015
scoring_system	epss
scoring_elements	0.35568
published_at	2026-04-02T12:55:00Z

value	0.0015
scoring_system	epss
scoring_elements	0.35594
published_at	2026-04-04T12:55:00Z

value	0.0015
scoring_system	epss
scoring_elements	0.35476
published_at	2026-04-07T12:55:00Z

value	0.0015
scoring_system	epss
scoring_elements	0.35522
published_at	2026-04-08T12:55:00Z

value	0.0015
scoring_system	epss
scoring_elements	0.35546
published_at	2026-04-09T12:55:00Z

value	0.0015
scoring_system	epss
scoring_elements	0.35555
published_at	2026-04-11T12:55:00Z

value	0.0015
scoring_system	epss
scoring_elements	0.35511
published_at	2026-04-12T12:55:00Z

value	0.0015
scoring_system	epss
scoring_elements	0.35489
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-21704

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-21704
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-21704

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-21705
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-21705

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1978790
reference_id	1978790
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1978790

reference_url	https://security.archlinux.org/ASA-202107-15
reference_id	ASA-202107-15
reference_type
scores
url	https://security.archlinux.org/ASA-202107-15

reference_url

https://security.archlinux.org/AVG-2132

reference_id

AVG-2132

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2132

reference_url	https://security.gentoo.org/glsa/202209-20
reference_id	GLSA-202209-20
reference_type
scores
url	https://security.gentoo.org/glsa/202209-20

reference_url	https://usn.ubuntu.com/5006-1/
reference_id	USN-5006-1
reference_type
scores
url	https://usn.ubuntu.com/5006-1/

reference_url	https://usn.ubuntu.com/5006-2/
reference_id	USN-5006-2
reference_type
scores
url	https://usn.ubuntu.com/5006-2/

fixed_packages

url	pkg:ebuild/dev-lang/php@7.4.30
purl	pkg:ebuild/dev-lang/php@7.4.30
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/php@7.4.30

url	pkg:ebuild/dev-lang/php@8.0.23
purl	pkg:ebuild/dev-lang/php@8.0.23
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/php@8.0.23

url	pkg:ebuild/dev-lang/php@8.1.8
purl	pkg:ebuild/dev-lang/php@8.1.8
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/php@8.1.8

aliases CVE-2021-21704

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8kna-v21h-qfb5

url VCID-99r7-s4va-3kes

vulnerability_id VCID-99r7-s4va-3kes

summary Multiple vulnerabilities have been discovered in PHP, the worst of which could result in local root privilege escalation.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-21705.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-21705.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-21705

reference_id

reference_type

scores

value	0.00294
scoring_system	epss
scoring_elements	0.5263
published_at	2026-04-01T12:55:00Z

value	0.00294
scoring_system	epss
scoring_elements	0.52755
published_at	2026-04-21T12:55:00Z

value	0.00294
scoring_system	epss
scoring_elements	0.52765
published_at	2026-04-16T12:55:00Z

value	0.00294
scoring_system	epss
scoring_elements	0.52772
published_at	2026-04-18T12:55:00Z

value	0.00294
scoring_system	epss
scoring_elements	0.52673
published_at	2026-04-02T12:55:00Z

value	0.00294
scoring_system	epss
scoring_elements	0.527
published_at	2026-04-04T12:55:00Z

value	0.00294
scoring_system	epss
scoring_elements	0.52664
published_at	2026-04-07T12:55:00Z

value	0.00294
scoring_system	epss
scoring_elements	0.52715
published_at	2026-04-08T12:55:00Z

value	0.00294
scoring_system	epss
scoring_elements	0.52709
published_at	2026-04-09T12:55:00Z

value	0.00294
scoring_system	epss
scoring_elements	0.52759
published_at	2026-04-11T12:55:00Z

value	0.00294
scoring_system	epss
scoring_elements	0.52742
published_at	2026-04-12T12:55:00Z

value	0.00294
scoring_system	epss
scoring_elements	0.52726
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-21705

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-21704
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-21704

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-21705
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-21705

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1978755
reference_id	1978755
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1978755

reference_url	https://security.archlinux.org/ASA-202107-15
reference_id	ASA-202107-15
reference_type
scores
url	https://security.archlinux.org/ASA-202107-15

reference_url

https://security.archlinux.org/AVG-2132

reference_id

AVG-2132

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2132

reference_url	https://security.gentoo.org/glsa/202209-20
reference_id	GLSA-202209-20
reference_type
scores
url	https://security.gentoo.org/glsa/202209-20

reference_url	https://access.redhat.com/errata/RHSA-2021:2992
reference_id	RHSA-2021:2992
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:2992

reference_url	https://access.redhat.com/errata/RHSA-2022:1935
reference_id	RHSA-2022:1935
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:1935

reference_url	https://usn.ubuntu.com/5006-1/
reference_id	USN-5006-1
reference_type
scores
url	https://usn.ubuntu.com/5006-1/

reference_url	https://usn.ubuntu.com/5006-2/
reference_id	USN-5006-2
reference_type
scores
url	https://usn.ubuntu.com/5006-2/

fixed_packages

url	pkg:ebuild/dev-lang/php@7.4.30
purl	pkg:ebuild/dev-lang/php@7.4.30
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/php@7.4.30

url	pkg:ebuild/dev-lang/php@8.0.23
purl	pkg:ebuild/dev-lang/php@8.0.23
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/php@8.0.23

url	pkg:ebuild/dev-lang/php@8.1.8
purl	pkg:ebuild/dev-lang/php@8.1.8
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/php@8.1.8

aliases CVE-2021-21705

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-99r7-s4va-3kes

url VCID-buvz-8rkh-8kak

vulnerability_id VCID-buvz-8rkh-8kak

summary Multiple vulnerabilities have been discovered in PHP, the worst of which could result in local root privilege escalation.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-21708.json

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-21708.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-21708

reference_id

reference_type

scores

value	0.00218
scoring_system	epss
scoring_elements	0.44373
published_at	2026-04-21T12:55:00Z

value	0.00218
scoring_system	epss
scoring_elements	0.44453
published_at	2026-04-16T12:55:00Z

value	0.00218
scoring_system	epss
scoring_elements	0.44444
published_at	2026-04-18T12:55:00Z

value	0.0026
scoring_system	epss
scoring_elements	0.49347
published_at	2026-04-12T12:55:00Z

value	0.0026
scoring_system	epss
scoring_elements	0.49349
published_at	2026-04-13T12:55:00Z

value	0.0026
scoring_system	epss
scoring_elements	0.49374
published_at	2026-04-11T12:55:00Z

value	0.00267
scoring_system	epss
scoring_elements	0.50217
published_at	2026-04-08T12:55:00Z

value	0.00267
scoring_system	epss
scoring_elements	0.5021
published_at	2026-04-09T12:55:00Z

value	0.00267
scoring_system	epss
scoring_elements	0.5014
published_at	2026-04-01T12:55:00Z

value	0.00267
scoring_system	epss
scoring_elements	0.50185
published_at	2026-04-02T12:55:00Z

value	0.00267
scoring_system	epss
scoring_elements	0.50213
published_at	2026-04-04T12:55:00Z

value	0.00267
scoring_system	epss
scoring_elements	0.50163
published_at	2026-04-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-21708

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-21707
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-21707

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-21708
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-21708

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2055879
reference_id	2055879
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2055879

reference_url

https://security.archlinux.org/AVG-2695

reference_id

AVG-2695

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2695

reference_url	https://security.gentoo.org/glsa/202209-20
reference_id	GLSA-202209-20
reference_type
scores
url	https://security.gentoo.org/glsa/202209-20

reference_url	https://access.redhat.com/errata/RHSA-2022:7624
reference_id	RHSA-2022:7624
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:7624

reference_url	https://access.redhat.com/errata/RHSA-2022:7628
reference_id	RHSA-2022:7628
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:7628

reference_url	https://access.redhat.com/errata/RHSA-2022:8197
reference_id	RHSA-2022:8197
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:8197

reference_url	https://access.redhat.com/errata/RHSA-2025:3016
reference_id	RHSA-2025:3016
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:3016

reference_url	https://access.redhat.com/errata/RHSA-2025:3076
reference_id	RHSA-2025:3076
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:3076

reference_url	https://usn.ubuntu.com/5303-1/
reference_id	USN-5303-1
reference_type
scores
url	https://usn.ubuntu.com/5303-1/

fixed_packages

url	pkg:ebuild/dev-lang/php@7.4.30
purl	pkg:ebuild/dev-lang/php@7.4.30
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/php@7.4.30

url	pkg:ebuild/dev-lang/php@8.0.23
purl	pkg:ebuild/dev-lang/php@8.0.23
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/php@8.0.23

url	pkg:ebuild/dev-lang/php@8.1.8
purl	pkg:ebuild/dev-lang/php@8.1.8
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/php@8.1.8

aliases CVE-2021-21708

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-buvz-8rkh-8kak

url VCID-c524-3my9-n7d3

vulnerability_id VCID-c524-3my9-n7d3

summary Multiple vulnerabilities have been discovered in PHP, the worst of which could result in local root privilege escalation.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-31625.json

reference_id

reference_type

scores

value	7.0
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-31625.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-31625

reference_id

reference_type

scores

value	0.00766
scoring_system	epss
scoring_elements	0.73493
published_at	2026-04-21T12:55:00Z

value	0.00766
scoring_system	epss
scoring_elements	0.73491
published_at	2026-04-16T12:55:00Z

value	0.00766
scoring_system	epss
scoring_elements	0.735
published_at	2026-04-18T12:55:00Z

value	0.00766
scoring_system	epss
scoring_elements	0.73408
published_at	2026-04-02T12:55:00Z

value	0.00766
scoring_system	epss
scoring_elements	0.73431
published_at	2026-04-04T12:55:00Z

value	0.00766
scoring_system	epss
scoring_elements	0.73403
published_at	2026-04-07T12:55:00Z

value	0.00766
scoring_system	epss
scoring_elements	0.7344
published_at	2026-04-08T12:55:00Z

value	0.00766
scoring_system	epss
scoring_elements	0.73453
published_at	2026-04-09T12:55:00Z

value	0.00766
scoring_system	epss
scoring_elements	0.73476
published_at	2026-04-11T12:55:00Z

value	0.00766
scoring_system	epss
scoring_elements	0.73457
published_at	2026-04-12T12:55:00Z

value	0.00766
scoring_system	epss
scoring_elements	0.73449
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-31625

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31625
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31625

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31626
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31626

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2098521
reference_id	2098521
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2098521

reference_url

https://security.archlinux.org/AVG-2768

reference_id

AVG-2768

reference_type

scores

value	Unknown
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2768

reference_url	https://security.gentoo.org/glsa/202209-20
reference_id	GLSA-202209-20
reference_type
scores
url	https://security.gentoo.org/glsa/202209-20

reference_url	https://access.redhat.com/errata/RHSA-2022:5491
reference_id	RHSA-2022:5491
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:5491

reference_url	https://access.redhat.com/errata/RHSA-2022:6158
reference_id	RHSA-2022:6158
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:6158

reference_url	https://access.redhat.com/errata/RHSA-2022:7624
reference_id	RHSA-2022:7624
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:7624

reference_url	https://access.redhat.com/errata/RHSA-2022:8197
reference_id	RHSA-2022:8197
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:8197

reference_url	https://usn.ubuntu.com/5479-1/
reference_id	USN-5479-1
reference_type
scores
url	https://usn.ubuntu.com/5479-1/

reference_url	https://usn.ubuntu.com/5479-2/
reference_id	USN-5479-2
reference_type
scores
url	https://usn.ubuntu.com/5479-2/

reference_url	https://usn.ubuntu.com/5479-3/
reference_id	USN-5479-3
reference_type
scores
url	https://usn.ubuntu.com/5479-3/

fixed_packages

url	pkg:ebuild/dev-lang/php@7.4.30
purl	pkg:ebuild/dev-lang/php@7.4.30
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/php@7.4.30

url	pkg:ebuild/dev-lang/php@8.0.23
purl	pkg:ebuild/dev-lang/php@8.0.23
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/php@8.0.23

url	pkg:ebuild/dev-lang/php@8.1.8
purl	pkg:ebuild/dev-lang/php@8.1.8
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/php@8.1.8

aliases CVE-2022-31625

risk_score 3.1

exploitability 0.5

weighted_severity 6.3

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-c524-3my9-n7d3

url VCID-k9ne-3nu5-xqdv

vulnerability_id VCID-k9ne-3nu5-xqdv

summary Multiple vulnerabilities have been discovered in PHP, the worst of which could result in local root privilege escalation.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-21703.json

reference_id

reference_type

scores

value	6.4
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-21703.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-21703

reference_id

reference_type

scores

value	0.00133
scoring_system	epss
scoring_elements	0.32825
published_at	2026-04-01T12:55:00Z

value	0.00133
scoring_system	epss
scoring_elements	0.32811
published_at	2026-04-21T12:55:00Z

value	0.00133
scoring_system	epss
scoring_elements	0.3287
published_at	2026-04-16T12:55:00Z

value	0.00133
scoring_system	epss
scoring_elements	0.32847
published_at	2026-04-18T12:55:00Z

value	0.00133
scoring_system	epss
scoring_elements	0.32956
published_at	2026-04-02T12:55:00Z

value	0.00133
scoring_system	epss
scoring_elements	0.32991
published_at	2026-04-04T12:55:00Z

value	0.00133
scoring_system	epss
scoring_elements	0.32814
published_at	2026-04-07T12:55:00Z

value	0.00133
scoring_system	epss
scoring_elements	0.32861
published_at	2026-04-08T12:55:00Z

value	0.00133
scoring_system	epss
scoring_elements	0.3289
published_at	2026-04-09T12:55:00Z

value	0.00133
scoring_system	epss
scoring_elements	0.32891
published_at	2026-04-11T12:55:00Z

value	0.00133
scoring_system	epss
scoring_elements	0.32853
published_at	2026-04-12T12:55:00Z

value	0.00133
scoring_system	epss
scoring_elements	0.32828
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-21703

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-21703
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-21703

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2016535
reference_id	2016535
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2016535

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=997003
reference_id	997003
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=997003

reference_url

https://security.archlinux.org/AVG-2486

reference_id

AVG-2486

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2486

reference_url	https://security.gentoo.org/glsa/202209-20
reference_id	GLSA-202209-20
reference_type
scores
url	https://security.gentoo.org/glsa/202209-20

reference_url	https://access.redhat.com/errata/RHSA-2022:1935
reference_id	RHSA-2022:1935
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:1935

reference_url	https://access.redhat.com/errata/RHSA-2022:5491
reference_id	RHSA-2022:5491
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:5491

reference_url	https://usn.ubuntu.com/5125-1/
reference_id	USN-5125-1
reference_type
scores
url	https://usn.ubuntu.com/5125-1/

fixed_packages

url	pkg:ebuild/dev-lang/php@7.4.30
purl	pkg:ebuild/dev-lang/php@7.4.30
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/php@7.4.30

url	pkg:ebuild/dev-lang/php@8.0.23
purl	pkg:ebuild/dev-lang/php@8.0.23
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/php@8.0.23

url	pkg:ebuild/dev-lang/php@8.1.8
purl	pkg:ebuild/dev-lang/php@8.1.8
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/php@8.1.8

aliases CVE-2021-21703

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-k9ne-3nu5-xqdv

url VCID-yfbz-bzvk-xke4

vulnerability_id VCID-yfbz-bzvk-xke4

summary Multiple vulnerabilities have been discovered in PHP, the worst of which could result in local root privilege escalation.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-31626.json

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-31626.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-31626

reference_id

reference_type

scores

value	0.1024
scoring_system	epss
scoring_elements	0.93176
published_at	2026-04-21T12:55:00Z

value	0.1024
scoring_system	epss
scoring_elements	0.93164
published_at	2026-04-16T12:55:00Z

value	0.1024
scoring_system	epss
scoring_elements	0.93168
published_at	2026-04-18T12:55:00Z

value	0.1024
scoring_system	epss
scoring_elements	0.93128
published_at	2026-04-02T12:55:00Z

value	0.1024
scoring_system	epss
scoring_elements	0.93132
published_at	2026-04-04T12:55:00Z

value	0.1024
scoring_system	epss
scoring_elements	0.9313
published_at	2026-04-07T12:55:00Z

value	0.1024
scoring_system	epss
scoring_elements	0.93139
published_at	2026-04-08T12:55:00Z

value	0.1024
scoring_system	epss
scoring_elements	0.93144
published_at	2026-04-09T12:55:00Z

value	0.1024
scoring_system	epss
scoring_elements	0.93149
published_at	2026-04-11T12:55:00Z

value	0.1024
scoring_system	epss
scoring_elements	0.93146
published_at	2026-04-12T12:55:00Z

value	0.1024
scoring_system	epss
scoring_elements	0.93147
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-31626

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31625
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31625

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31626
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31626

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2098523
reference_id	2098523
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2098523

reference_url

https://security.archlinux.org/AVG-2768

reference_id

AVG-2768

reference_type

scores

value	Unknown
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2768

reference_url	https://security.gentoo.org/glsa/202209-20
reference_id	GLSA-202209-20
reference_type
scores
url	https://security.gentoo.org/glsa/202209-20

reference_url	https://access.redhat.com/errata/RHSA-2022:5467
reference_id	RHSA-2022:5467
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:5467

reference_url	https://access.redhat.com/errata/RHSA-2022:5468
reference_id	RHSA-2022:5468
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:5468

reference_url	https://access.redhat.com/errata/RHSA-2022:5471
reference_id	RHSA-2022:5471
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:5471

reference_url	https://access.redhat.com/errata/RHSA-2022:5491
reference_id	RHSA-2022:5491
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:5491

reference_url	https://access.redhat.com/errata/RHSA-2022:5904
reference_id	RHSA-2022:5904
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:5904

reference_url	https://usn.ubuntu.com/5479-1/
reference_id	USN-5479-1
reference_type
scores
url	https://usn.ubuntu.com/5479-1/

reference_url	https://usn.ubuntu.com/5479-2/
reference_id	USN-5479-2
reference_type
scores
url	https://usn.ubuntu.com/5479-2/

fixed_packages

url	pkg:ebuild/dev-lang/php@7.4.30
purl	pkg:ebuild/dev-lang/php@7.4.30
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/php@7.4.30

url	pkg:ebuild/dev-lang/php@8.0.23
purl	pkg:ebuild/dev-lang/php@8.0.23
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/php@8.0.23

url	pkg:ebuild/dev-lang/php@8.1.8
purl	pkg:ebuild/dev-lang/php@8.1.8
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/php@8.1.8

aliases CVE-2022-31626

risk_score 4.0

exploitability 0.5

weighted_severity 7.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-yfbz-bzvk-xke4

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/php@8.0.23

Package Instance