Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:rpm/redhat/nodejs-nodemon@2.0.20-2?arch=el9_1

Type rpm

Namespace redhat

Name nodejs-nodemon

Version 2.0.20-2

Qualifiers

arch	el9_1

Subpath

Is_vulnerable true

Next_non_vulnerable_version null

Latest_non_vulnerable_version null

Affected_by_vulnerabilities

url

VCID-turp-dju7-c7fx

vulnerability_id

VCID-turp-dju7-c7fx

summary

Prototype Pollution in minimist
Minimist <=1.2.5 is vulnerable to Prototype Pollution via file index.js, function setKey() (lines 69-95).

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-44906.json

reference_id

reference_type

scores

value	3.1
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-44906.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-44906

reference_id

reference_type

scores

value	0.00882
scoring_system	epss
scoring_elements	0.75471
published_at	2026-04-29T12:55:00Z

value	0.00882
scoring_system	epss
scoring_elements	0.75467
published_at	2026-04-26T12:55:00Z

value	0.00882
scoring_system	epss
scoring_elements	0.75462
published_at	2026-04-24T12:55:00Z

value	0.00882
scoring_system	epss
scoring_elements	0.75428
published_at	2026-04-21T12:55:00Z

value	0.00882
scoring_system	epss
scoring_elements	0.75438
published_at	2026-04-18T12:55:00Z

value	0.00882
scoring_system	epss
scoring_elements	0.75432
published_at	2026-04-16T12:55:00Z

value	0.00882
scoring_system	epss
scoring_elements	0.75391
published_at	2026-04-13T12:55:00Z

value	0.00882
scoring_system	epss
scoring_elements	0.75337
published_at	2026-04-01T12:55:00Z

value	0.00882
scoring_system	epss
scoring_elements	0.75424
published_at	2026-04-11T12:55:00Z

value	0.00882
scoring_system	epss
scoring_elements	0.75402
published_at	2026-04-12T12:55:00Z

value	0.00882
scoring_system	epss
scoring_elements	0.7534
published_at	2026-04-02T12:55:00Z

value	0.00882
scoring_system	epss
scoring_elements	0.75372
published_at	2026-04-04T12:55:00Z

value	0.00882
scoring_system	epss
scoring_elements	0.75351
published_at	2026-04-07T12:55:00Z

value	0.00882
scoring_system	epss
scoring_elements	0.75395
published_at	2026-04-08T12:55:00Z

value	0.00882
scoring_system	epss
scoring_elements	0.75404
published_at	2026-04-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-44906

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44906
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44906

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/Marynk/JavaScript-vulnerability-detection/blob/main/minimist%20PoC.zip

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/Marynk/JavaScript-vulnerability-detection/blob/main/minimist%20PoC.zip

reference_url

https://github.com/minimistjs/minimist/commit/34e20b8461118608703d6485326abbb8e35e1703

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/minimistjs/minimist/commit/34e20b8461118608703d6485326abbb8e35e1703

reference_url

https://github.com/minimistjs/minimist/commit/bc8ecee43875261f4f17eb20b1243d3ed15e70eb

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/minimistjs/minimist/commit/bc8ecee43875261f4f17eb20b1243d3ed15e70eb

reference_url

https://github.com/minimistjs/minimist/commit/c2b981977fa834b223b408cfb860f933c9811e4d

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/minimistjs/minimist/commit/c2b981977fa834b223b408cfb860f933c9811e4d

reference_url

https://github.com/minimistjs/minimist/commit/ef9153fc52b6cea0744b2239921c5dcae4697f11

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/minimistjs/minimist/commit/ef9153fc52b6cea0744b2239921c5dcae4697f11

reference_url

https://github.com/minimistjs/minimist/commits/v0.2.4

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/minimistjs/minimist/commits/v0.2.4

reference_url

https://github.com/minimistjs/minimist/issues/11

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/minimistjs/minimist/issues/11

reference_url

https://github.com/minimistjs/minimist/pull/24

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/minimistjs/minimist/pull/24

reference_url

https://github.com/substack/minimist

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/substack/minimist

reference_url

https://github.com/substack/minimist/blob/master/index.js#L69

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/substack/minimist/blob/master/index.js#L69

reference_url

https://github.com/substack/minimist/issues/164

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/substack/minimist/issues/164

reference_url

https://security.netapp.com/advisory/ntap-20240621-0006

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://security.netapp.com/advisory/ntap-20240621-0006

reference_url

https://snyk.io/vuln/SNYK-JS-MINIMIST-559764

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://snyk.io/vuln/SNYK-JS-MINIMIST-559764

reference_url

https://stackoverflow.com/questions/8588563/adding-custom-properties-to-a-function/20278068#20278068

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://stackoverflow.com/questions/8588563/adding-custom-properties-to-a-function/20278068#20278068

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2066009
reference_id	2066009
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2066009

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2021-44906

reference_id

CVE-2021-44906

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2021-44906

reference_url

https://github.com/advisories/GHSA-xvch-5gv4-984h

reference_id

GHSA-xvch-5gv4-984h

reference_type

scores

value	CRITICAL
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-xvch-5gv4-984h

reference_url	https://access.redhat.com/errata/RHSA-2022:1739
reference_id	RHSA-2022:1739
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:1739

reference_url	https://access.redhat.com/errata/RHSA-2022:4914
reference_id	RHSA-2022:4914
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:4914

reference_url	https://access.redhat.com/errata/RHSA-2022:5069
reference_id	RHSA-2022:5069
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:5069

reference_url	https://access.redhat.com/errata/RHSA-2022:5892
reference_id	RHSA-2022:5892
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:5892

reference_url	https://access.redhat.com/errata/RHSA-2022:5893
reference_id	RHSA-2022:5893
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:5893

reference_url	https://access.redhat.com/errata/RHSA-2022:5894
reference_id	RHSA-2022:5894
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:5894

reference_url	https://access.redhat.com/errata/RHSA-2022:5928
reference_id	RHSA-2022:5928
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:5928

reference_url	https://access.redhat.com/errata/RHSA-2022:7044
reference_id	RHSA-2022:7044
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:7044

reference_url	https://access.redhat.com/errata/RHSA-2022:8652
reference_id	RHSA-2022:8652
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:8652

reference_url	https://access.redhat.com/errata/RHSA-2022:9073
reference_id	RHSA-2022:9073
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:9073

reference_url	https://access.redhat.com/errata/RHSA-2023:0050
reference_id	RHSA-2023:0050
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:0050

reference_url	https://access.redhat.com/errata/RHSA-2023:0321
reference_id	RHSA-2023:0321
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:0321

reference_url	https://access.redhat.com/errata/RHSA-2023:0612
reference_id	RHSA-2023:0612
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:0612

reference_url	https://access.redhat.com/errata/RHSA-2023:1533
reference_id	RHSA-2023:1533
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1533

reference_url	https://access.redhat.com/errata/RHSA-2023:1742
reference_id	RHSA-2023:1742
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1742

reference_url	https://access.redhat.com/errata/RHSA-2025:1747
reference_id	RHSA-2025:1747
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:1747

fixed_packages

aliases

CVE-2021-44906, GHSA-xvch-5gv4-984h

risk_score

4.5

exploitability

0.5

weighted_severity

9.0

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-turp-dju7-c7fx

url

VCID-v72h-ew1u-xfcz

vulnerability_id

VCID-v72h-ew1u-xfcz

summary

minimatch ReDoS vulnerability
A vulnerability was found in the minimatch package. This flaw allows a Regular Expression Denial of Service (ReDoS) when calling the braceExpand function with specific arguments, resulting in a Denial of Service.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3517.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3517.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-3517

reference_id

reference_type

scores

value	0.00452
scoring_system	epss
scoring_elements	0.63677
published_at	2026-04-07T12:55:00Z

value	0.00452
scoring_system	epss
scoring_elements	0.63717
published_at	2026-04-04T12:55:00Z

value	0.00452
scoring_system	epss
scoring_elements	0.63691
published_at	2026-04-02T12:55:00Z

value	0.00452
scoring_system	epss
scoring_elements	0.63746
published_at	2026-04-09T12:55:00Z

value	0.00452
scoring_system	epss
scoring_elements	0.63728
published_at	2026-04-08T12:55:00Z

value	0.00464
scoring_system	epss
scoring_elements	0.6437
published_at	2026-04-11T12:55:00Z

value	0.00476
scoring_system	epss
scoring_elements	0.64922
published_at	2026-04-16T12:55:00Z

value	0.0049
scoring_system	epss
scoring_elements	0.65553
published_at	2026-04-13T12:55:00Z

value	0.0049
scoring_system	epss
scoring_elements	0.6561
published_at	2026-04-29T12:55:00Z

value	0.0049
scoring_system	epss
scoring_elements	0.65612
published_at	2026-04-26T12:55:00Z

value	0.0049
scoring_system	epss
scoring_elements	0.65601
published_at	2026-04-24T12:55:00Z

value	0.0049
scoring_system	epss
scoring_elements	0.65586
published_at	2026-04-21T12:55:00Z

value	0.0049
scoring_system	epss
scoring_elements	0.65602
published_at	2026-04-18T12:55:00Z

value	0.0049
scoring_system	epss
scoring_elements	0.65581
published_at	2026-04-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-3517

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3517
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3517

reference_url

https://github.com/grafana/grafana-image-renderer/issues/329

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-13T13:40:25Z/

url

https://github.com/grafana/grafana-image-renderer/issues/329

reference_url

https://github.com/isaacs/minimatch

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/isaacs/minimatch

reference_url

https://github.com/isaacs/minimatch/commit/a8763f4388e51956be62dc6025cec1126beeb5e6

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-13T13:40:25Z/

url

https://github.com/isaacs/minimatch/commit/a8763f4388e51956be62dc6025cec1126beeb5e6

reference_url

https://github.com/nodejs/node/issues/42510

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/nodejs/node/issues/42510

reference_url

https://lists.debian.org/debian-lts-announce/2023/01/msg00011.html

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-13T13:40:25Z/

url

https://lists.debian.org/debian-lts-announce/2023/01/msg00011.html

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MTEUUTNIEBHGKUKKLNUZSV7IEP6IP3Q3

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MTEUUTNIEBHGKUKKLNUZSV7IEP6IP3Q3

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UM6XJ73Q3NAM5KSGCOKJ2ZIA6GUWUJLK

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UM6XJ73Q3NAM5KSGCOKJ2ZIA6GUWUJLK

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2022-3517

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2022-3517

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2134609
reference_id	2134609
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2134609

reference_url

https://github.com/advisories/GHSA-f8q6-p94x-37v3

reference_id

GHSA-f8q6-p94x-37v3

reference_type

scores

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-f8q6-p94x-37v3

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MTEUUTNIEBHGKUKKLNUZSV7IEP6IP3Q3/

reference_id

MTEUUTNIEBHGKUKKLNUZSV7IEP6IP3Q3

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-13T13:40:25Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MTEUUTNIEBHGKUKKLNUZSV7IEP6IP3Q3/

reference_url	https://access.redhat.com/errata/RHSA-2022:8832
reference_id	RHSA-2022:8832
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:8832

reference_url	https://access.redhat.com/errata/RHSA-2022:8833
reference_id	RHSA-2022:8833
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:8833

reference_url	https://access.redhat.com/errata/RHSA-2022:9073
reference_id	RHSA-2022:9073
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:9073

reference_url	https://access.redhat.com/errata/RHSA-2023:0050
reference_id	RHSA-2023:0050
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:0050

reference_url	https://access.redhat.com/errata/RHSA-2023:0321
reference_id	RHSA-2023:0321
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:0321

reference_url	https://access.redhat.com/errata/RHSA-2023:0471
reference_id	RHSA-2023:0471
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:0471

reference_url	https://access.redhat.com/errata/RHSA-2023:0612
reference_id	RHSA-2023:0612
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:0612

reference_url	https://access.redhat.com/errata/RHSA-2023:1533
reference_id	RHSA-2023:1533
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1533

reference_url	https://access.redhat.com/errata/RHSA-2023:1742
reference_id	RHSA-2023:1742
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1742

reference_url	https://access.redhat.com/errata/RHSA-2023:1743
reference_id	RHSA-2023:1743
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1743

reference_url	https://access.redhat.com/errata/RHSA-2023:3742
reference_id	RHSA-2023:3742
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3742

reference_url	https://access.redhat.com/errata/RHSA-2025:11814
reference_id	RHSA-2025:11814
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:11814

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UM6XJ73Q3NAM5KSGCOKJ2ZIA6GUWUJLK/

reference_id

UM6XJ73Q3NAM5KSGCOKJ2ZIA6GUWUJLK

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-13T13:40:25Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UM6XJ73Q3NAM5KSGCOKJ2ZIA6GUWUJLK/

reference_url	https://usn.ubuntu.com/6086-1/
reference_id	USN-6086-1
reference_type
scores
url	https://usn.ubuntu.com/6086-1/

fixed_packages

aliases

CVE-2022-3517, GHSA-f8q6-p94x-37v3

risk_score

4.0

exploitability

0.5

weighted_severity

8.0

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-v72h-ew1u-xfcz

Fixing_vulnerabilities

Risk_score 4.5

Resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/nodejs-nodemon@2.0.20-2%3Farch=el9_1

Package Instance