Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:rpm/redhat/openshift-clients@4.13.0-202305291355.p0.g1024efc.assembly.stream?arch=el8

Type rpm

Namespace redhat

Name openshift-clients

Version 4.13.0-202305291355.p0.g1024efc.assembly.stream

Qualifiers

arch	el8

Subpath

Is_vulnerable true

Next_non_vulnerable_version null

Latest_non_vulnerable_version null

Affected_by_vulnerabilities

url

VCID-1n1h-e2p4-9yhs

vulnerability_id

VCID-1n1h-e2p4-9yhs

summary

golang.org/x/crypto/ssh Denial of service via crafted Signer
The golang.org/x/crypto/ssh package before 0.0.0-20220314234659-1baeb1ce4c0b for Go allows an attacker to crash a server in certain circumstances involving AddHostKey.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-27191.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-27191.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-27191

reference_id

reference_type

scores

value	0.00089
scoring_system	epss
scoring_elements	0.25246
published_at	2026-04-21T12:55:00Z

value	0.00089
scoring_system	epss
scoring_elements	0.25443
published_at	2026-04-02T12:55:00Z

value	0.00089
scoring_system	epss
scoring_elements	0.25318
published_at	2026-04-08T12:55:00Z

value	0.00089
scoring_system	epss
scoring_elements	0.2525
published_at	2026-04-07T12:55:00Z

value	0.00089
scoring_system	epss
scoring_elements	0.25479
published_at	2026-04-04T12:55:00Z

value	0.00089
scoring_system	epss
scoring_elements	0.25276
published_at	2026-04-18T12:55:00Z

value	0.00089
scoring_system	epss
scoring_elements	0.25286
published_at	2026-04-16T12:55:00Z

value	0.00089
scoring_system	epss
scoring_elements	0.2528
published_at	2026-04-13T12:55:00Z

value	0.00089
scoring_system	epss
scoring_elements	0.25333
published_at	2026-04-12T12:55:00Z

value	0.00089
scoring_system	epss
scoring_elements	0.25374
published_at	2026-04-11T12:55:00Z

value	0.00089
scoring_system	epss
scoring_elements	0.25363
published_at	2026-04-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-27191

reference_url

https://cs.opensource.google/go/x/crypto

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://cs.opensource.google/go/x/crypto

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27191
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27191

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://go.dev/cl/392355

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://go.dev/cl/392355

reference_url

https://go.googlesource.com/crypto/+/1baeb1ce4c0b006eff0f294c47cb7617598dfb3d

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://go.googlesource.com/crypto/+/1baeb1ce4c0b006eff0f294c47cb7617598dfb3d

reference_url

https://groups.google.com/g/golang-announce

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://groups.google.com/g/golang-announce

reference_url

https://groups.google.com/g/golang-announce/c/-cp44ypCT5s

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://groups.google.com/g/golang-announce/c/-cp44ypCT5s

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DLUJZV3HBP56ADXU6QH2V7RNYUPMVBXQ

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DLUJZV3HBP56ADXU6QH2V7RNYUPMVBXQ

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EZ3S7LB65N54HXXBCB67P4TTOHTNPP5O

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EZ3S7LB65N54HXXBCB67P4TTOHTNPP5O

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HHGBEGJ54DZZGTXFUQNS7ZIG3E624YAF

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HHGBEGJ54DZZGTXFUQNS7ZIG3E624YAF

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/J5WPM42UR6XIBQNQPNQHM32X7S4LJTRX

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/J5WPM42UR6XIBQNQPNQHM32X7S4LJTRX

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QTFOIDHQRGNI4P6LYN6ILH5G443RYYKB

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QTFOIDHQRGNI4P6LYN6ILH5G443RYYKB

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RQXU752ALW53OJAF5MG3WMR5CCZVLWW6

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RQXU752ALW53OJAF5MG3WMR5CCZVLWW6

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YHYRQB7TRMHDB3NEHW5XBRG7PPMUTPGV

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YHYRQB7TRMHDB3NEHW5XBRG7PPMUTPGV

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/Z55VUVGO7E5PJFXIOVAY373NZRHBNCI5

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/Z55VUVGO7E5PJFXIOVAY373NZRHBNCI5

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZFUNHFHQVJSADNH7EZ3B53CYDZVEEPBP

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZFUNHFHQVJSADNH7EZ3B53CYDZVEEPBP

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZQNPPQWSTP2IX7SHE6TS4SP4EVMI5EZK

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZQNPPQWSTP2IX7SHE6TS4SP4EVMI5EZK

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZY2SLWOQR4ZURQ7UBRZ7JIX6H6F5JHJR

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZY2SLWOQR4ZURQ7UBRZ7JIX6H6F5JHJR

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2022-27191

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2022-27191

reference_url

https://pkg.go.dev/vuln/GO-2021-0356

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://pkg.go.dev/vuln/GO-2021-0356

reference_url

https://raw.githubusercontent.com/golang/vulndb/df2d3d326300e2ae768f00351ffa96cc2c56cf54/reports/GO-2021-0356.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://raw.githubusercontent.com/golang/vulndb/df2d3d326300e2ae768f00351ffa96cc2c56cf54/reports/GO-2021-0356.yaml

reference_url

https://security.netapp.com/advisory/ntap-20220429-0002

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://security.netapp.com/advisory/ntap-20220429-0002

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2064702
reference_id	2064702
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2064702

reference_url	https://access.redhat.com/errata/RHSA-2022:5068
reference_id	RHSA-2022:5068
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:5068

reference_url	https://access.redhat.com/errata/RHSA-2022:5069
reference_id	RHSA-2022:5069
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:5069

reference_url	https://access.redhat.com/errata/RHSA-2022:6527
reference_id	RHSA-2022:6527
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:6527

reference_url	https://access.redhat.com/errata/RHSA-2022:7401
reference_id	RHSA-2022:7401
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:7401

reference_url	https://access.redhat.com/errata/RHSA-2022:7457
reference_id	RHSA-2022:7457
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:7457

reference_url	https://access.redhat.com/errata/RHSA-2022:7469
reference_id	RHSA-2022:7469
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:7469

reference_url	https://access.redhat.com/errata/RHSA-2022:7954
reference_id	RHSA-2022:7954
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:7954

reference_url	https://access.redhat.com/errata/RHSA-2022:8634
reference_id	RHSA-2022:8634
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:8634

reference_url	https://access.redhat.com/errata/RHSA-2022:8893
reference_id	RHSA-2022:8893
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:8893

reference_url	https://access.redhat.com/errata/RHSA-2022:8932
reference_id	RHSA-2022:8932
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:8932

reference_url	https://access.redhat.com/errata/RHSA-2022:8938
reference_id	RHSA-2022:8938
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:8938

reference_url	https://access.redhat.com/errata/RHSA-2022:9096
reference_id	RHSA-2022:9096
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:9096

reference_url	https://access.redhat.com/errata/RHSA-2022:9107
reference_id	RHSA-2022:9107
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:9107

reference_url	https://access.redhat.com/errata/RHSA-2023:1325
reference_id	RHSA-2023:1325
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1325

reference_url	https://access.redhat.com/errata/RHSA-2023:1326
reference_id	RHSA-2023:1326
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1326

reference_url	https://access.redhat.com/errata/RHSA-2023:3366
reference_id	RHSA-2023:3366
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3366

reference_url	https://access.redhat.com/errata/RHSA-2023:3943
reference_id	RHSA-2023:3943
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3943

reference_url	https://access.redhat.com/errata/RHSA-2023:4488
reference_id	RHSA-2023:4488
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4488

fixed_packages

aliases

CVE-2022-27191, GHSA-8c26-wmh5-6g9v

risk_score

4.0

exploitability

0.5

weighted_severity

8.0

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-1n1h-e2p4-9yhs

url

VCID-4ufj-v5z1-huec

vulnerability_id

VCID-4ufj-v5z1-huec

summary

Multiple vulnerabilities have been discovered in Go, the worst of which could lead to remote code execution.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-24534.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-24534.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-24534

reference_id

reference_type

scores

value	0.00119
scoring_system	epss
scoring_elements	0.30833
published_at	2026-04-13T12:55:00Z

value	0.00119
scoring_system	epss
scoring_elements	0.30809
published_at	2026-04-21T12:55:00Z

value	0.00119
scoring_system	epss
scoring_elements	0.30844
published_at	2026-04-18T12:55:00Z

value	0.00119
scoring_system	epss
scoring_elements	0.30864
published_at	2026-04-16T12:55:00Z

value	0.00119
scoring_system	epss
scoring_elements	0.3083
published_at	2026-04-07T12:55:00Z

value	0.00119
scoring_system	epss
scoring_elements	0.30888
published_at	2026-04-08T12:55:00Z

value	0.00119
scoring_system	epss
scoring_elements	0.30918
published_at	2026-04-09T12:55:00Z

value	0.00119
scoring_system	epss
scoring_elements	0.30921
published_at	2026-04-11T12:55:00Z

value	0.00119
scoring_system	epss
scoring_elements	0.30878
published_at	2026-04-12T12:55:00Z

value	0.00137
scoring_system	epss
scoring_elements	0.33636
published_at	2026-04-02T12:55:00Z

value	0.00137
scoring_system	epss
scoring_elements	0.33669
published_at	2026-04-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-24534

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24534
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24534

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2184483
reference_id	2184483
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2184483

reference_url

https://go.dev/cl/481994

reference_id

481994

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-12T17:14:51Z/

url

https://go.dev/cl/481994

reference_url

https://go.dev/issue/58975

reference_id

58975

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-12T17:14:51Z/

url

https://go.dev/issue/58975

reference_url

https://pkg.go.dev/vuln/GO-2023-1704

reference_id

GO-2023-1704

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-12T17:14:51Z/

url

https://pkg.go.dev/vuln/GO-2023-1704

reference_url

https://security.netapp.com/advisory/ntap-20230526-0007/

reference_id

ntap-20230526-0007

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-12T17:14:51Z/

url

https://security.netapp.com/advisory/ntap-20230526-0007/

reference_url	https://access.redhat.com/errata/RHSA-2023:3167
reference_id	RHSA-2023:3167
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3167

reference_url	https://access.redhat.com/errata/RHSA-2023:3318
reference_id	RHSA-2023:3318
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3318

reference_url	https://access.redhat.com/errata/RHSA-2023:3319
reference_id	RHSA-2023:3319
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3319

reference_url	https://access.redhat.com/errata/RHSA-2023:3366
reference_id	RHSA-2023:3366
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3366

reference_url	https://access.redhat.com/errata/RHSA-2023:3367
reference_id	RHSA-2023:3367
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3367

reference_url	https://access.redhat.com/errata/RHSA-2023:3445
reference_id	RHSA-2023:3445
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3445

reference_url	https://access.redhat.com/errata/RHSA-2023:3450
reference_id	RHSA-2023:3450
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3450

reference_url	https://access.redhat.com/errata/RHSA-2023:3455
reference_id	RHSA-2023:3455
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3455

reference_url	https://access.redhat.com/errata/RHSA-2023:3536
reference_id	RHSA-2023:3536
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3536

reference_url	https://access.redhat.com/errata/RHSA-2023:3540
reference_id	RHSA-2023:3540
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3540

reference_url	https://access.redhat.com/errata/RHSA-2023:3612
reference_id	RHSA-2023:3612
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3612

reference_url	https://access.redhat.com/errata/RHSA-2023:3624
reference_id	RHSA-2023:3624
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3624

reference_url	https://access.redhat.com/errata/RHSA-2023:3918
reference_id	RHSA-2023:3918
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3918

reference_url	https://access.redhat.com/errata/RHSA-2023:3943
reference_id	RHSA-2023:3943
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3943

reference_url	https://access.redhat.com/errata/RHSA-2023:4003
reference_id	RHSA-2023:4003
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4003

reference_url	https://access.redhat.com/errata/RHSA-2023:4335
reference_id	RHSA-2023:4335
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4335

reference_url	https://access.redhat.com/errata/RHSA-2023:4459
reference_id	RHSA-2023:4459
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4459

reference_url	https://access.redhat.com/errata/RHSA-2023:4470
reference_id	RHSA-2023:4470
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4470

reference_url	https://access.redhat.com/errata/RHSA-2023:4627
reference_id	RHSA-2023:4627
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4627

reference_url	https://access.redhat.com/errata/RHSA-2023:4657
reference_id	RHSA-2023:4657
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4657

reference_url	https://access.redhat.com/errata/RHSA-2023:4664
reference_id	RHSA-2023:4664
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4664

reference_url	https://access.redhat.com/errata/RHSA-2023:5964
reference_id	RHSA-2023:5964
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5964

reference_url	https://access.redhat.com/errata/RHSA-2023:5976
reference_id	RHSA-2023:5976
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5976

reference_url	https://access.redhat.com/errata/RHSA-2023:6346
reference_id	RHSA-2023:6346
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6346

reference_url	https://access.redhat.com/errata/RHSA-2023:6363
reference_id	RHSA-2023:6363
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6363

reference_url	https://access.redhat.com/errata/RHSA-2023:6402
reference_id	RHSA-2023:6402
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6402

reference_url	https://access.redhat.com/errata/RHSA-2023:6420
reference_id	RHSA-2023:6420
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6420

reference_url	https://access.redhat.com/errata/RHSA-2023:6473
reference_id	RHSA-2023:6473
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6473

reference_url	https://access.redhat.com/errata/RHSA-2023:6474
reference_id	RHSA-2023:6474
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6474

reference_url	https://access.redhat.com/errata/RHSA-2023:6832
reference_id	RHSA-2023:6832
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6832

reference_url	https://access.redhat.com/errata/RHSA-2023:6938
reference_id	RHSA-2023:6938
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6938

reference_url	https://access.redhat.com/errata/RHSA-2023:6939
reference_id	RHSA-2023:6939
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6939

reference_url	https://access.redhat.com/errata/RHSA-2024:2944
reference_id	RHSA-2024:2944
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2944

reference_url	https://usn.ubuntu.com/6038-1/
reference_id	USN-6038-1
reference_type
scores
url	https://usn.ubuntu.com/6038-1/

reference_url	https://usn.ubuntu.com/6038-2/
reference_id	USN-6038-2
reference_type
scores
url	https://usn.ubuntu.com/6038-2/

reference_url	https://usn.ubuntu.com/6140-1/
reference_id	USN-6140-1
reference_type
scores
url	https://usn.ubuntu.com/6140-1/

reference_url

https://groups.google.com/g/golang-announce/c/Xdv6JL9ENs8

reference_id

Xdv6JL9ENs8

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-12T17:14:51Z/

url

https://groups.google.com/g/golang-announce/c/Xdv6JL9ENs8

fixed_packages

aliases

CVE-2023-24534

risk_score

3.4

exploitability

0.5

weighted_severity

6.8

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-4ufj-v5z1-huec

url

VCID-a473-9skg-tkbn

vulnerability_id

VCID-a473-9skg-tkbn

summary

Multiple vulnerabilities have been discovered in Go, the worst of which could lead to information leakage or a denial of service.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-24540.json

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-24540.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-24540

reference_id

reference_type

scores

value	0.00246
scoring_system	epss
scoring_elements	0.47834
published_at	2026-04-02T12:55:00Z

value	0.00246
scoring_system	epss
scoring_elements	0.47856
published_at	2026-04-04T12:55:00Z

value	0.00246
scoring_system	epss
scoring_elements	0.47804
published_at	2026-04-07T12:55:00Z

value	0.00246
scoring_system	epss
scoring_elements	0.47857
published_at	2026-04-08T12:55:00Z

value	0.00246
scoring_system	epss
scoring_elements	0.47853
published_at	2026-04-12T12:55:00Z

value	0.00246
scoring_system	epss
scoring_elements	0.47877
published_at	2026-04-11T12:55:00Z

value	0.00246
scoring_system	epss
scoring_elements	0.47863
published_at	2026-04-13T12:55:00Z

value	0.00246
scoring_system	epss
scoring_elements	0.47917
published_at	2026-04-16T12:55:00Z

value	0.00246
scoring_system	epss
scoring_elements	0.47911
published_at	2026-04-18T12:55:00Z

value	0.00246
scoring_system	epss
scoring_elements	0.47864
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-24540

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24540
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24540

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2196027
reference_id	2196027
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2196027

reference_url	https://security.gentoo.org/glsa/202408-07
reference_id	GLSA-202408-07
reference_type
scores
url	https://security.gentoo.org/glsa/202408-07

reference_url	https://access.redhat.com/errata/RHSA-2023:3318
reference_id	RHSA-2023:3318
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3318

reference_url	https://access.redhat.com/errata/RHSA-2023:3319
reference_id	RHSA-2023:3319
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3319

reference_url	https://access.redhat.com/errata/RHSA-2023:3323
reference_id	RHSA-2023:3323
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3323

reference_url	https://access.redhat.com/errata/RHSA-2023:3366
reference_id	RHSA-2023:3366
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3366

reference_url	https://access.redhat.com/errata/RHSA-2023:3367
reference_id	RHSA-2023:3367
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3367

reference_url	https://access.redhat.com/errata/RHSA-2023:3379
reference_id	RHSA-2023:3379
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3379

reference_url	https://access.redhat.com/errata/RHSA-2023:3409
reference_id	RHSA-2023:3409
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3409

reference_url	https://access.redhat.com/errata/RHSA-2023:3410
reference_id	RHSA-2023:3410
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3410

reference_url	https://access.redhat.com/errata/RHSA-2023:3415
reference_id	RHSA-2023:3415
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3415

reference_url	https://access.redhat.com/errata/RHSA-2023:3435
reference_id	RHSA-2023:3435
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3435

reference_url	https://access.redhat.com/errata/RHSA-2023:3445
reference_id	RHSA-2023:3445
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3445

reference_url	https://access.redhat.com/errata/RHSA-2023:3545
reference_id	RHSA-2023:3545
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3545

reference_url	https://access.redhat.com/errata/RHSA-2023:3612
reference_id	RHSA-2023:3612
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3612

reference_url	https://access.redhat.com/errata/RHSA-2023:3624
reference_id	RHSA-2023:3624
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3624

reference_url	https://access.redhat.com/errata/RHSA-2023:3644
reference_id	RHSA-2023:3644
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3644

reference_url	https://access.redhat.com/errata/RHSA-2023:3905
reference_id	RHSA-2023:3905
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3905

reference_url	https://access.redhat.com/errata/RHSA-2023:3910
reference_id	RHSA-2023:3910
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3910

reference_url	https://access.redhat.com/errata/RHSA-2023:3911
reference_id	RHSA-2023:3911
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3911

reference_url	https://access.redhat.com/errata/RHSA-2023:3914
reference_id	RHSA-2023:3914
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3914

reference_url	https://access.redhat.com/errata/RHSA-2023:3915
reference_id	RHSA-2023:3915
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3915

reference_url	https://access.redhat.com/errata/RHSA-2023:3918
reference_id	RHSA-2023:3918
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3918

reference_url	https://access.redhat.com/errata/RHSA-2023:4289
reference_id	RHSA-2023:4289
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4289

reference_url	https://access.redhat.com/errata/RHSA-2023:4335
reference_id	RHSA-2023:4335
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4335

reference_url	https://access.redhat.com/errata/RHSA-2023:4420
reference_id	RHSA-2023:4420
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4420

reference_url	https://access.redhat.com/errata/RHSA-2023:4421
reference_id	RHSA-2023:4421
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4421

reference_url	https://access.redhat.com/errata/RHSA-2023:4470
reference_id	RHSA-2023:4470
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4470

reference_url	https://access.redhat.com/errata/RHSA-2023:4627
reference_id	RHSA-2023:4627
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4627

reference_url	https://access.redhat.com/errata/RHSA-2023:4664
reference_id	RHSA-2023:4664
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4664

reference_url	https://access.redhat.com/errata/RHSA-2023:5376
reference_id	RHSA-2023:5376
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5376

reference_url	https://access.redhat.com/errata/RHSA-2023:5947
reference_id	RHSA-2023:5947
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5947

reference_url	https://access.redhat.com/errata/RHSA-2023:6346
reference_id	RHSA-2023:6346
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6346

reference_url	https://access.redhat.com/errata/RHSA-2023:6363
reference_id	RHSA-2023:6363
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6363

reference_url	https://access.redhat.com/errata/RHSA-2023:6402
reference_id	RHSA-2023:6402
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6402

reference_url	https://access.redhat.com/errata/RHSA-2023:6473
reference_id	RHSA-2023:6473
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6473

reference_url	https://access.redhat.com/errata/RHSA-2023:6474
reference_id	RHSA-2023:6474
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6474

reference_url	https://access.redhat.com/errata/RHSA-2023:6938
reference_id	RHSA-2023:6938
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6938

reference_url	https://access.redhat.com/errata/RHSA-2023:6939
reference_id	RHSA-2023:6939
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6939

reference_url	https://access.redhat.com/errata/RHSA-2024:2944
reference_id	RHSA-2024:2944
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2944

reference_url	https://access.redhat.com/errata/RHSA-2024:4119
reference_id	RHSA-2024:4119
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4119

reference_url	https://usn.ubuntu.com/6140-1/
reference_id	USN-6140-1
reference_type
scores
url	https://usn.ubuntu.com/6140-1/

fixed_packages

aliases

CVE-2023-24540

risk_score

3.6

exploitability

0.5

weighted_severity

7.3

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-a473-9skg-tkbn

url

VCID-evjj-hwvm-fbca

vulnerability_id

VCID-evjj-hwvm-fbca

summary

Multiple vulnerabilities have been discovered in Go, the worst of which could lead to remote code execution.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-24538.json

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-24538.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-24538

reference_id

reference_type

scores

value	0.00646
scoring_system	epss
scoring_elements	0.70687
published_at	2026-04-04T12:55:00Z

value	0.00646
scoring_system	epss
scoring_elements	0.70668
published_at	2026-04-02T12:55:00Z

value	0.00654
scoring_system	epss
scoring_elements	0.70951
published_at	2026-04-21T12:55:00Z

value	0.00654
scoring_system	epss
scoring_elements	0.70869
published_at	2026-04-07T12:55:00Z

value	0.00654
scoring_system	epss
scoring_elements	0.70912
published_at	2026-04-08T12:55:00Z

value	0.00654
scoring_system	epss
scoring_elements	0.70927
published_at	2026-04-09T12:55:00Z

value	0.00654
scoring_system	epss
scoring_elements	0.7095
published_at	2026-04-11T12:55:00Z

value	0.00654
scoring_system	epss
scoring_elements	0.70935
published_at	2026-04-12T12:55:00Z

value	0.00654
scoring_system	epss
scoring_elements	0.70919
published_at	2026-04-13T12:55:00Z

value	0.00654
scoring_system	epss
scoring_elements	0.70965
published_at	2026-04-16T12:55:00Z

value	0.00654
scoring_system	epss
scoring_elements	0.70972
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-24538

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24538
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24538

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2184481
reference_id	2184481
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2184481

reference_url

https://go.dev/cl/482079

reference_id

482079

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-12T17:02:13Z/

url

https://go.dev/cl/482079

reference_url

https://go.dev/issue/59234

reference_id

59234

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-12T17:02:13Z/

url

https://go.dev/issue/59234

reference_url

https://pkg.go.dev/vuln/GO-2023-1703

reference_id

GO-2023-1703

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-12T17:02:13Z/

url

https://pkg.go.dev/vuln/GO-2023-1703

reference_url	https://access.redhat.com/errata/RHSA-2023:3318
reference_id	RHSA-2023:3318
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3318

reference_url	https://access.redhat.com/errata/RHSA-2023:3319
reference_id	RHSA-2023:3319
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3319

reference_url	https://access.redhat.com/errata/RHSA-2023:3323
reference_id	RHSA-2023:3323
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3323

reference_url	https://access.redhat.com/errata/RHSA-2023:3366
reference_id	RHSA-2023:3366
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3366

reference_url	https://access.redhat.com/errata/RHSA-2023:3367
reference_id	RHSA-2023:3367
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3367

reference_url	https://access.redhat.com/errata/RHSA-2023:3445
reference_id	RHSA-2023:3445
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3445

reference_url	https://access.redhat.com/errata/RHSA-2023:3450
reference_id	RHSA-2023:3450
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3450

reference_url	https://access.redhat.com/errata/RHSA-2023:3455
reference_id	RHSA-2023:3455
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3455

reference_url	https://access.redhat.com/errata/RHSA-2023:3536
reference_id	RHSA-2023:3536
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3536

reference_url	https://access.redhat.com/errata/RHSA-2023:3540
reference_id	RHSA-2023:3540
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3540

reference_url	https://access.redhat.com/errata/RHSA-2023:3612
reference_id	RHSA-2023:3612
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3612

reference_url	https://access.redhat.com/errata/RHSA-2023:3624
reference_id	RHSA-2023:3624
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3624

reference_url	https://access.redhat.com/errata/RHSA-2023:3918
reference_id	RHSA-2023:3918
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3918

reference_url	https://access.redhat.com/errata/RHSA-2023:3943
reference_id	RHSA-2023:3943
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3943

reference_url	https://access.redhat.com/errata/RHSA-2023:4003
reference_id	RHSA-2023:4003
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4003

reference_url	https://access.redhat.com/errata/RHSA-2023:4335
reference_id	RHSA-2023:4335
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4335

reference_url	https://access.redhat.com/errata/RHSA-2023:4470
reference_id	RHSA-2023:4470
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4470

reference_url	https://access.redhat.com/errata/RHSA-2023:4627
reference_id	RHSA-2023:4627
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4627

reference_url	https://access.redhat.com/errata/RHSA-2023:4657
reference_id	RHSA-2023:4657
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4657

reference_url	https://access.redhat.com/errata/RHSA-2023:4664
reference_id	RHSA-2023:4664
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4664

reference_url	https://access.redhat.com/errata/RHSA-2023:5964
reference_id	RHSA-2023:5964
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5964

reference_url	https://access.redhat.com/errata/RHSA-2023:6346
reference_id	RHSA-2023:6346
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6346

reference_url	https://access.redhat.com/errata/RHSA-2023:6363
reference_id	RHSA-2023:6363
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6363

reference_url	https://access.redhat.com/errata/RHSA-2023:6402
reference_id	RHSA-2023:6402
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6402

reference_url	https://access.redhat.com/errata/RHSA-2023:6473
reference_id	RHSA-2023:6473
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6473

reference_url	https://access.redhat.com/errata/RHSA-2023:6474
reference_id	RHSA-2023:6474
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6474

reference_url	https://access.redhat.com/errata/RHSA-2023:6938
reference_id	RHSA-2023:6938
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6938

reference_url	https://access.redhat.com/errata/RHSA-2023:6939
reference_id	RHSA-2023:6939
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6939

reference_url	https://access.redhat.com/errata/RHSA-2024:0746
reference_id	RHSA-2024:0746
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0746

reference_url	https://access.redhat.com/errata/RHSA-2024:2944
reference_id	RHSA-2024:2944
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2944

reference_url	https://usn.ubuntu.com/6038-1/
reference_id	USN-6038-1
reference_type
scores
url	https://usn.ubuntu.com/6038-1/

reference_url	https://usn.ubuntu.com/6038-2/
reference_id	USN-6038-2
reference_type
scores
url	https://usn.ubuntu.com/6038-2/

reference_url	https://usn.ubuntu.com/6140-1/
reference_id	USN-6140-1
reference_type
scores
url	https://usn.ubuntu.com/6140-1/

reference_url	https://usn.ubuntu.com/7061-1/
reference_id	USN-7061-1
reference_type
scores
url	https://usn.ubuntu.com/7061-1/

reference_url

https://groups.google.com/g/golang-announce/c/Xdv6JL9ENs8

reference_id

Xdv6JL9ENs8

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-12T17:02:13Z/

url

https://groups.google.com/g/golang-announce/c/Xdv6JL9ENs8

fixed_packages

aliases

CVE-2023-24538

risk_score

4.4

exploitability

0.5

weighted_severity

8.8

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-evjj-hwvm-fbca

url

VCID-sbxp-ce7p-23dm

vulnerability_id

VCID-sbxp-ce7p-23dm

summary

golang: path/filepath: path-filepath filepath.Clean path traversal

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-41722.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-41722.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-41722

reference_id

reference_type

scores

value	0.0039
scoring_system	epss
scoring_elements	0.6001
published_at	2026-04-02T12:55:00Z

value	0.0039
scoring_system	epss
scoring_elements	0.60104
published_at	2026-04-18T12:55:00Z

value	0.0039
scoring_system	epss
scoring_elements	0.6009
published_at	2026-04-21T12:55:00Z

value	0.0039
scoring_system	epss
scoring_elements	0.60075
published_at	2026-04-12T12:55:00Z

value	0.0039
scoring_system	epss
scoring_elements	0.60058
published_at	2026-04-13T12:55:00Z

value	0.0039
scoring_system	epss
scoring_elements	0.60097
published_at	2026-04-16T12:55:00Z

value	0.0039
scoring_system	epss
scoring_elements	0.60034
published_at	2026-04-04T12:55:00Z

value	0.0039
scoring_system	epss
scoring_elements	0.60004
published_at	2026-04-07T12:55:00Z

value	0.0039
scoring_system	epss
scoring_elements	0.60055
published_at	2026-04-08T12:55:00Z

value	0.0039
scoring_system	epss
scoring_elements	0.60069
published_at	2026-04-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-41722

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41722
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41722

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2203008
reference_id	2203008
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2203008

reference_url

https://go.dev/cl/468123

reference_id

468123

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-07T17:58:38Z/

url

https://go.dev/cl/468123

reference_url

https://go.dev/issue/57274

reference_id

57274

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-07T17:58:38Z/

url

https://go.dev/issue/57274

reference_url

https://pkg.go.dev/vuln/GO-2023-1568

reference_id

GO-2023-1568

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-07T17:58:38Z/

url

https://pkg.go.dev/vuln/GO-2023-1568

reference_url	https://access.redhat.com/errata/RHSA-2023:1325
reference_id	RHSA-2023:1325
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1325

reference_url	https://access.redhat.com/errata/RHSA-2023:3304
reference_id	RHSA-2023:3304
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3304

reference_url	https://access.redhat.com/errata/RHSA-2023:3366
reference_id	RHSA-2023:3366
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3366

fixed_packages

aliases

CVE-2022-41722

risk_score

3.4

exploitability

0.5

weighted_severity

6.8

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-sbxp-ce7p-23dm

url

VCID-yr11-kwf1-pqfz

vulnerability_id

VCID-yr11-kwf1-pqfz

summary

Multiple vulnerabilities have been discovered in Go, the worst of which could lead to remote code execution.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-24537.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-24537.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-24537

reference_id

reference_type

scores

value	0.00012
scoring_system	epss
scoring_elements	0.01512
published_at	2026-04-16T12:55:00Z

value	0.00012
scoring_system	epss
scoring_elements	0.01616
published_at	2026-04-21T12:55:00Z

value	0.00012
scoring_system	epss
scoring_elements	0.01528
published_at	2026-04-18T12:55:00Z

value	0.00012
scoring_system	epss
scoring_elements	0.01536
published_at	2026-04-07T12:55:00Z

value	0.00012
scoring_system	epss
scoring_elements	0.01539
published_at	2026-04-08T12:55:00Z

value	0.00012
scoring_system	epss
scoring_elements	0.01543
published_at	2026-04-09T12:55:00Z

value	0.00012
scoring_system	epss
scoring_elements	0.01534
published_at	2026-04-11T12:55:00Z

value	0.00012
scoring_system	epss
scoring_elements	0.01526
published_at	2026-04-12T12:55:00Z

value	0.00012
scoring_system	epss
scoring_elements	0.01525
published_at	2026-04-13T12:55:00Z

value	0.00013
scoring_system	epss
scoring_elements	0.02281
published_at	2026-04-04T12:55:00Z

value	0.00013
scoring_system	epss
scoring_elements	0.02276
published_at	2026-04-02T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-24537

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24537
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24537

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2184484
reference_id	2184484
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2184484

reference_url

https://go.dev/cl/482078

reference_id

482078

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-12T17:00:19Z/

url

https://go.dev/cl/482078

reference_url

https://go.dev/issue/59180

reference_id

59180

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-12T17:00:19Z/

url

https://go.dev/issue/59180

reference_url

https://pkg.go.dev/vuln/GO-2023-1702

reference_id

GO-2023-1702

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-12T17:00:19Z/

url

https://pkg.go.dev/vuln/GO-2023-1702

reference_url	https://access.redhat.com/errata/RHSA-2023:3167
reference_id	RHSA-2023:3167
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3167

reference_url	https://access.redhat.com/errata/RHSA-2023:3318
reference_id	RHSA-2023:3318
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3318

reference_url	https://access.redhat.com/errata/RHSA-2023:3319
reference_id	RHSA-2023:3319
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3319

reference_url	https://access.redhat.com/errata/RHSA-2023:3323
reference_id	RHSA-2023:3323
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3323

reference_url	https://access.redhat.com/errata/RHSA-2023:3366
reference_id	RHSA-2023:3366
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3366

reference_url	https://access.redhat.com/errata/RHSA-2023:3367
reference_id	RHSA-2023:3367
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3367

reference_url	https://access.redhat.com/errata/RHSA-2023:3445
reference_id	RHSA-2023:3445
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3445

reference_url	https://access.redhat.com/errata/RHSA-2023:3450
reference_id	RHSA-2023:3450
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3450

reference_url	https://access.redhat.com/errata/RHSA-2023:3455
reference_id	RHSA-2023:3455
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3455

reference_url	https://access.redhat.com/errata/RHSA-2023:3536
reference_id	RHSA-2023:3536
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3536

reference_url	https://access.redhat.com/errata/RHSA-2023:3540
reference_id	RHSA-2023:3540
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3540

reference_url	https://access.redhat.com/errata/RHSA-2023:3612
reference_id	RHSA-2023:3612
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3612

reference_url	https://access.redhat.com/errata/RHSA-2023:3624
reference_id	RHSA-2023:3624
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3624

reference_url	https://access.redhat.com/errata/RHSA-2023:3918
reference_id	RHSA-2023:3918
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3918

reference_url	https://access.redhat.com/errata/RHSA-2023:3943
reference_id	RHSA-2023:3943
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3943

reference_url	https://access.redhat.com/errata/RHSA-2023:4003
reference_id	RHSA-2023:4003
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4003

reference_url	https://access.redhat.com/errata/RHSA-2023:4335
reference_id	RHSA-2023:4335
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4335

reference_url	https://access.redhat.com/errata/RHSA-2023:4470
reference_id	RHSA-2023:4470
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4470

reference_url	https://access.redhat.com/errata/RHSA-2023:4627
reference_id	RHSA-2023:4627
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4627

reference_url	https://access.redhat.com/errata/RHSA-2023:4657
reference_id	RHSA-2023:4657
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4657

reference_url	https://access.redhat.com/errata/RHSA-2023:4664
reference_id	RHSA-2023:4664
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4664

reference_url	https://access.redhat.com/errata/RHSA-2023:5964
reference_id	RHSA-2023:5964
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5964

reference_url	https://access.redhat.com/errata/RHSA-2023:6363
reference_id	RHSA-2023:6363
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6363

reference_url	https://access.redhat.com/errata/RHSA-2023:6474
reference_id	RHSA-2023:6474
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6474

reference_url	https://access.redhat.com/errata/RHSA-2023:6938
reference_id	RHSA-2023:6938
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6938

reference_url	https://access.redhat.com/errata/RHSA-2023:6939
reference_id	RHSA-2023:6939
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6939

reference_url	https://access.redhat.com/errata/RHSA-2024:2944
reference_id	RHSA-2024:2944
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2944

reference_url	https://usn.ubuntu.com/6038-1/
reference_id	USN-6038-1
reference_type
scores
url	https://usn.ubuntu.com/6038-1/

reference_url	https://usn.ubuntu.com/6038-2/
reference_id	USN-6038-2
reference_type
scores
url	https://usn.ubuntu.com/6038-2/

reference_url	https://usn.ubuntu.com/6140-1/
reference_id	USN-6140-1
reference_type
scores
url	https://usn.ubuntu.com/6140-1/

reference_url

https://groups.google.com/g/golang-announce/c/Xdv6JL9ENs8

reference_id

Xdv6JL9ENs8

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-12T17:00:19Z/

url

https://groups.google.com/g/golang-announce/c/Xdv6JL9ENs8

fixed_packages

aliases

CVE-2023-24537

risk_score

3.4

exploitability

0.5

weighted_severity

6.8

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-yr11-kwf1-pqfz

Fixing_vulnerabilities

Risk_score 4.4

Resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openshift-clients@4.13.0-202305291355.p0.g1024efc.assembly.stream%3Farch=el8

Package Instance