Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-dszf-bnkn-mycs

Summary An improper access control vulnerability in GitLab CE/EE affecting all versions from 13.11 prior to 14.7.7, 14.8 prior to 14.8.5, and 14.9 prior to 14.9.2 allows an unauthorized user to access pipeline analytics even when public pipelines are disabled

Aliases

alias	CVE-2022-1105

Fixed_packages

url	pkg:deb/debian/gitlab@15.10.8%2Bds1-2?distro=sid
purl	pkg:deb/debian/gitlab@15.10.8%2Bds1-2?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/gitlab@15.10.8%252Bds1-2%3Fdistro=sid

url	pkg:deb/debian/gitlab@17.6.5-19?distro=sid
purl	pkg:deb/debian/gitlab@17.6.5-19?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/gitlab@17.6.5-19%3Fdistro=sid

Affected_packages

References

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-1105

reference_id

reference_type

scores

value	0.002
scoring_system	epss
scoring_elements	0.42062
published_at	2026-04-01T12:55:00Z

value	0.002
scoring_system	epss
scoring_elements	0.42123
published_at	2026-04-02T12:55:00Z

value	0.002
scoring_system	epss
scoring_elements	0.42151
published_at	2026-04-04T12:55:00Z

value	0.002
scoring_system	epss
scoring_elements	0.42088
published_at	2026-04-07T12:55:00Z

value	0.002
scoring_system	epss
scoring_elements	0.42139
published_at	2026-04-08T12:55:00Z

value	0.002
scoring_system	epss
scoring_elements	0.4215
published_at	2026-04-09T12:55:00Z

value	0.002
scoring_system	epss
scoring_elements	0.42172
published_at	2026-04-11T12:55:00Z

value	0.002
scoring_system	epss
scoring_elements	0.42135
published_at	2026-04-12T12:55:00Z

value	0.002
scoring_system	epss
scoring_elements	0.42111
published_at	2026-04-13T12:55:00Z

value	0.002
scoring_system	epss
scoring_elements	0.42162
published_at	2026-04-16T12:55:00Z

value	0.002
scoring_system	epss
scoring_elements	0.42136
published_at	2026-04-18T12:55:00Z

value	0.002
scoring_system	epss
scoring_elements	0.42066
published_at	2026-04-21T12:55:00Z

value	0.002
scoring_system	epss
scoring_elements	0.42008
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-1105

Weaknesses

Exploits

Severity_range_score null

Exploitability null

Weighted_severity null

Risk_score null

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dszf-bnkn-mycs

Vulnerability Instance