Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-fjaw-huga-rfft
SummarySerialization of sensitive data in GitLab EE affecting all versions from 14.9 prior to 15.2.5, 15.3 prior to 15.3.4, and 15.4 prior to 15.4.1 can leak sensitive information via cache
Aliases
0
alias CVE-2022-3291
Fixed_packages
0
url pkg:deb/debian/gitlab@0?distro=sid
purl pkg:deb/debian/gitlab@0?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gitlab@0%3Fdistro=sid
1
url pkg:deb/debian/gitlab@17.6.5-19?distro=sid
purl pkg:deb/debian/gitlab@17.6.5-19?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gitlab@17.6.5-19%3Fdistro=sid
Affected_packages
References
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-3291
reference_id
reference_type
scores
0
value 0.00446
scoring_system epss
scoring_elements 0.63525
published_at 2026-04-24T12:55:00Z
1
value 0.00446
scoring_system epss
scoring_elements 0.63513
published_at 2026-04-16T12:55:00Z
2
value 0.00446
scoring_system epss
scoring_elements 0.6352
published_at 2026-04-18T12:55:00Z
3
value 0.00446
scoring_system epss
scoring_elements 0.63507
published_at 2026-04-21T12:55:00Z
4
value 0.00446
scoring_system epss
scoring_elements 0.6345
published_at 2026-04-02T12:55:00Z
5
value 0.00446
scoring_system epss
scoring_elements 0.63476
published_at 2026-04-04T12:55:00Z
6
value 0.00446
scoring_system epss
scoring_elements 0.63441
published_at 2026-04-07T12:55:00Z
7
value 0.00446
scoring_system epss
scoring_elements 0.63493
published_at 2026-04-08T12:55:00Z
8
value 0.00446
scoring_system epss
scoring_elements 0.6351
published_at 2026-04-09T12:55:00Z
9
value 0.00446
scoring_system epss
scoring_elements 0.63527
published_at 2026-04-11T12:55:00Z
10
value 0.00446
scoring_system epss
scoring_elements 0.63512
published_at 2026-04-12T12:55:00Z
11
value 0.00446
scoring_system epss
scoring_elements 0.63477
published_at 2026-04-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-3291
1
reference_url https://gitlab.com/gitlab-org/gitlab/-/issues/354299
reference_id 354299
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-13T15:42:20Z/
url https://gitlab.com/gitlab-org/gitlab/-/issues/354299
2
reference_url https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3291.json
reference_id CVE-2022-3291.json
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-13T15:42:20Z/
url https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3291.json
Weaknesses
Exploits
Severity_range_score6.5 - 6.5
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-fjaw-huga-rfft