Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-k29f-m5ey-f3d6
SummaryAll versions of GitLab CE/EE starting from 12.8 before 13.10.5, all versions starting from 13.11 before 13.11.5, and all versions starting from 13.12 before 13.12.2 were affected by an issue in the handling of x509 certificates that could be used to spoof author of signed commits.
Aliases
0
alias CVE-2021-22218
Fixed_packages
0
url pkg:alpm/archlinux/gitlab@13.12.2-1
purl pkg:alpm/archlinux/gitlab@13.12.2-1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/gitlab@13.12.2-1
1
url pkg:deb/debian/gitlab@15.10.8%2Bds1-2?distro=sid
purl pkg:deb/debian/gitlab@15.10.8%2Bds1-2?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gitlab@15.10.8%252Bds1-2%3Fdistro=sid
2
url pkg:deb/debian/gitlab@17.6.5-19?distro=sid
purl pkg:deb/debian/gitlab@17.6.5-19?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gitlab@17.6.5-19%3Fdistro=sid
Affected_packages
0
url pkg:alpm/archlinux/gitlab@13.11.3-1
purl pkg:alpm/archlinux/gitlab@13.11.3-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3gk7-f7rw-s3bt
1
vulnerability VCID-8ahg-hgub-43b5
2
vulnerability VCID-bakk-7gzs-sfd8
3
vulnerability VCID-k29f-m5ey-f3d6
4
vulnerability VCID-kbpk-h81g-g7dr
5
vulnerability VCID-n7d2-p93t-73fg
6
vulnerability VCID-n83t-8xmt-q7cs
7
vulnerability VCID-s8ds-5b7r-gfed
8
vulnerability VCID-t5qj-bzm5-5qhe
9
vulnerability VCID-y93u-mrdn-abe3
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/gitlab@13.11.3-1
References
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-22218
reference_id
reference_type
scores
0
value 0.00125
scoring_system epss
scoring_elements 0.31477
published_at 2026-04-24T12:55:00Z
1
value 0.00125
scoring_system epss
scoring_elements 0.31672
published_at 2026-04-01T12:55:00Z
2
value 0.00125
scoring_system epss
scoring_elements 0.31804
published_at 2026-04-02T12:55:00Z
3
value 0.00125
scoring_system epss
scoring_elements 0.31848
published_at 2026-04-04T12:55:00Z
4
value 0.00125
scoring_system epss
scoring_elements 0.31668
published_at 2026-04-07T12:55:00Z
5
value 0.00125
scoring_system epss
scoring_elements 0.31719
published_at 2026-04-08T12:55:00Z
6
value 0.00125
scoring_system epss
scoring_elements 0.31749
published_at 2026-04-09T12:55:00Z
7
value 0.00125
scoring_system epss
scoring_elements 0.31752
published_at 2026-04-11T12:55:00Z
8
value 0.00125
scoring_system epss
scoring_elements 0.31712
published_at 2026-04-12T12:55:00Z
9
value 0.00125
scoring_system epss
scoring_elements 0.31677
published_at 2026-04-13T12:55:00Z
10
value 0.00125
scoring_system epss
scoring_elements 0.31709
published_at 2026-04-16T12:55:00Z
11
value 0.00125
scoring_system epss
scoring_elements 0.31687
published_at 2026-04-18T12:55:00Z
12
value 0.00125
scoring_system epss
scoring_elements 0.31654
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-22218
1
reference_url https://security.archlinux.org/ASA-202106-21
reference_id ASA-202106-21
reference_type
scores
url https://security.archlinux.org/ASA-202106-21
2
reference_url https://security.archlinux.org/AVG-2023
reference_id AVG-2023
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2023
Weaknesses
Exploits
Severity_range_score7.0 - 8.9
Exploitability0.5
Weighted_severity8.0
Risk_score4.0
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-k29f-m5ey-f3d6