Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-uv5z-hewg-xfgs
SummaryAn issue has been discovered in GitLab EE affecting all versions starting from 14.5 before 15.1.6, all versions starting from 15.2 before 15.2.4, all versions starting from 15.3 before 15.3.2. GitLab's Zentao integration has an insecure direct object reference vulnerability that may be exploited by an attacker to leak Zentao project issues.
Aliases
0
alias CVE-2022-3331
Fixed_packages
0
url pkg:deb/debian/gitlab@0?distro=sid
purl pkg:deb/debian/gitlab@0?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gitlab@0%3Fdistro=sid
1
url pkg:deb/debian/gitlab@17.6.5-19?distro=sid
purl pkg:deb/debian/gitlab@17.6.5-19?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gitlab@17.6.5-19%3Fdistro=sid
Affected_packages
References
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-3331
reference_id
reference_type
scores
0
value 0.00174
scoring_system epss
scoring_elements 0.38535
published_at 2026-04-24T12:55:00Z
1
value 0.00174
scoring_system epss
scoring_elements 0.38775
published_at 2026-04-12T12:55:00Z
2
value 0.00174
scoring_system epss
scoring_elements 0.38747
published_at 2026-04-13T12:55:00Z
3
value 0.00174
scoring_system epss
scoring_elements 0.38793
published_at 2026-04-16T12:55:00Z
4
value 0.00174
scoring_system epss
scoring_elements 0.38771
published_at 2026-04-18T12:55:00Z
5
value 0.00174
scoring_system epss
scoring_elements 0.38691
published_at 2026-04-21T12:55:00Z
6
value 0.00174
scoring_system epss
scoring_elements 0.38789
published_at 2026-04-02T12:55:00Z
7
value 0.00174
scoring_system epss
scoring_elements 0.3881
published_at 2026-04-04T12:55:00Z
8
value 0.00174
scoring_system epss
scoring_elements 0.38738
published_at 2026-04-07T12:55:00Z
9
value 0.00174
scoring_system epss
scoring_elements 0.38788
published_at 2026-04-08T12:55:00Z
10
value 0.00174
scoring_system epss
scoring_elements 0.38799
published_at 2026-04-09T12:55:00Z
11
value 0.00174
scoring_system epss
scoring_elements 0.38811
published_at 2026-04-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-3331
1
reference_url https://hackerone.com/reports/1542834
reference_id 1542834
reference_type
scores
0
value 3.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-14T20:18:42Z/
url https://hackerone.com/reports/1542834
2
reference_url https://gitlab.com/gitlab-org/gitlab/-/issues/360372
reference_id 360372
reference_type
scores
0
value 3.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-14T20:18:42Z/
url https://gitlab.com/gitlab-org/gitlab/-/issues/360372
3
reference_url https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3331.json
reference_id CVE-2022-3331.json
reference_type
scores
0
value 3.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-14T20:18:42Z/
url https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3331.json
Weaknesses
Exploits
Severity_range_score3.5 - 3.5
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-uv5z-hewg-xfgs