Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-y1ja-wmsu-8kew
SummaryA blind SSRF vulnerability was identified in all versions of GitLab EE prior to 15.4.6, 15.5 prior to 15.5.5, and 15.6 prior to 15.6.1 which allows an attacker to connect to a local host.
Aliases
0
alias CVE-2022-4335
Fixed_packages
0
url pkg:deb/debian/gitlab@0?distro=sid
purl pkg:deb/debian/gitlab@0?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gitlab@0%3Fdistro=sid
1
url pkg:deb/debian/gitlab@17.6.5-19?distro=sid
purl pkg:deb/debian/gitlab@17.6.5-19?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gitlab@17.6.5-19%3Fdistro=sid
Affected_packages
References
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-4335
reference_id
reference_type
scores
0
value 0.00368
scoring_system epss
scoring_elements 0.58728
published_at 2026-04-24T12:55:00Z
1
value 0.00368
scoring_system epss
scoring_elements 0.58783
published_at 2026-04-11T12:55:00Z
2
value 0.00368
scoring_system epss
scoring_elements 0.58744
published_at 2026-04-13T12:55:00Z
3
value 0.00368
scoring_system epss
scoring_elements 0.58776
published_at 2026-04-16T12:55:00Z
4
value 0.00368
scoring_system epss
scoring_elements 0.58781
published_at 2026-04-18T12:55:00Z
5
value 0.00368
scoring_system epss
scoring_elements 0.5876
published_at 2026-04-21T12:55:00Z
6
value 0.00368
scoring_system epss
scoring_elements 0.58716
published_at 2026-04-02T12:55:00Z
7
value 0.00368
scoring_system epss
scoring_elements 0.58737
published_at 2026-04-04T12:55:00Z
8
value 0.00368
scoring_system epss
scoring_elements 0.58705
published_at 2026-04-07T12:55:00Z
9
value 0.00368
scoring_system epss
scoring_elements 0.58758
published_at 2026-04-08T12:55:00Z
10
value 0.00368
scoring_system epss
scoring_elements 0.58764
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-4335
1
reference_url https://hackerone.com/reports/1462437
reference_id 1462437
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-28T14:37:07Z/
url https://hackerone.com/reports/1462437
2
reference_url https://gitlab.com/gitlab-org/gitlab/-/issues/353018
reference_id 353018
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-28T14:37:07Z/
url https://gitlab.com/gitlab-org/gitlab/-/issues/353018
3
reference_url https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-4335.json
reference_id CVE-2022-4335.json
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-28T14:37:07Z/
url https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-4335.json
Weaknesses
Exploits
Severity_range_score4.3 - 4.3
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-y1ja-wmsu-8kew