Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/53802?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/53802?format=api", "vulnerability_id": "VCID-eun3-dgw9-ruaj", "summary": "Prototype Pollution in y18n\nThe npm package y18n before versions 3.2.2, 4.0.1, and 5.0.5 is vulnerable to Prototype Pollution.", "aliases": [ { "alias": "CVE-2020-7774" }, { "alias": "GHSA-c4w7-xm78-47vh" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/332255?format=api", "purl": "pkg:apk/alpine/nodejs@12.22.1-r0?arch=aarch64&distroversion=v3.11&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@12.22.1-r0%3Farch=aarch64&distroversion=v3.11&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/332256?format=api", "purl": "pkg:apk/alpine/nodejs@12.22.1-r0?arch=armhf&distroversion=v3.11&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@12.22.1-r0%3Farch=armhf&distroversion=v3.11&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/332257?format=api", "purl": "pkg:apk/alpine/nodejs@12.22.1-r0?arch=armv7&distroversion=v3.11&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@12.22.1-r0%3Farch=armv7&distroversion=v3.11&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/332258?format=api", "purl": "pkg:apk/alpine/nodejs@12.22.1-r0?arch=ppc64le&distroversion=v3.11&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@12.22.1-r0%3Farch=ppc64le&distroversion=v3.11&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/332259?format=api", "purl": "pkg:apk/alpine/nodejs@12.22.1-r0?arch=s390x&distroversion=v3.11&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@12.22.1-r0%3Farch=s390x&distroversion=v3.11&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/332260?format=api", "purl": "pkg:apk/alpine/nodejs@12.22.1-r0?arch=x86&distroversion=v3.11&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@12.22.1-r0%3Farch=x86&distroversion=v3.11&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/332261?format=api", "purl": "pkg:apk/alpine/nodejs@12.22.1-r0?arch=x86_64&distroversion=v3.11&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@12.22.1-r0%3Farch=x86_64&distroversion=v3.11&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/349214?format=api", "purl": "pkg:apk/alpine/nodejs@12.22.1-r0?arch=aarch64&distroversion=v3.12&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@12.22.1-r0%3Farch=aarch64&distroversion=v3.12&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/349215?format=api", "purl": "pkg:apk/alpine/nodejs@12.22.1-r0?arch=armhf&distroversion=v3.12&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@12.22.1-r0%3Farch=armhf&distroversion=v3.12&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/349216?format=api", "purl": "pkg:apk/alpine/nodejs@12.22.1-r0?arch=armv7&distroversion=v3.12&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@12.22.1-r0%3Farch=armv7&distroversion=v3.12&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/349217?format=api", "purl": "pkg:apk/alpine/nodejs@12.22.1-r0?arch=mips64&distroversion=v3.12&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@12.22.1-r0%3Farch=mips64&distroversion=v3.12&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/349218?format=api", "purl": "pkg:apk/alpine/nodejs@12.22.1-r0?arch=ppc64le&distroversion=v3.12&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@12.22.1-r0%3Farch=ppc64le&distroversion=v3.12&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/349219?format=api", "purl": "pkg:apk/alpine/nodejs@12.22.1-r0?arch=s390x&distroversion=v3.12&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@12.22.1-r0%3Farch=s390x&distroversion=v3.12&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/349220?format=api", "purl": "pkg:apk/alpine/nodejs@12.22.1-r0?arch=x86&distroversion=v3.12&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@12.22.1-r0%3Farch=x86&distroversion=v3.12&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/349221?format=api", "purl": "pkg:apk/alpine/nodejs@12.22.1-r0?arch=x86_64&distroversion=v3.12&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@12.22.1-r0%3Farch=x86_64&distroversion=v3.12&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/1121013?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=aarch64&distroversion=edge&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=aarch64&distroversion=edge&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/1099625?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=aarch64&distroversion=v3.15&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=aarch64&distroversion=v3.15&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/1100469?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=aarch64&distroversion=v3.18&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=aarch64&distroversion=v3.18&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/1086265?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=aarch64&distroversion=v3.23&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=aarch64&distroversion=v3.23&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/1121014?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=armhf&distroversion=edge&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=armhf&distroversion=edge&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/1099626?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=armhf&distroversion=v3.15&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=armhf&distroversion=v3.15&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/1100470?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=armhf&distroversion=v3.18&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=armhf&distroversion=v3.18&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/1086266?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=armhf&distroversion=v3.23&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=armhf&distroversion=v3.23&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/1121015?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=armv7&distroversion=edge&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=armv7&distroversion=edge&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/1099627?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=armv7&distroversion=v3.15&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=armv7&distroversion=v3.15&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/1100471?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=armv7&distroversion=v3.18&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=armv7&distroversion=v3.18&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/1086267?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=armv7&distroversion=v3.23&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=armv7&distroversion=v3.23&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/1121016?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=loongarch64&distroversion=edge&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=loongarch64&distroversion=edge&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/1086268?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=loongarch64&distroversion=v3.23&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=loongarch64&distroversion=v3.23&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/1121017?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=ppc64le&distroversion=edge&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=ppc64le&distroversion=edge&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/1099628?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=ppc64le&distroversion=v3.15&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=ppc64le&distroversion=v3.15&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/1100472?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=ppc64le&distroversion=v3.18&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=ppc64le&distroversion=v3.18&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/1086269?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=ppc64le&distroversion=v3.23&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=ppc64le&distroversion=v3.23&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/1121018?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=riscv64&distroversion=edge&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=riscv64&distroversion=edge&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/1086270?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=riscv64&distroversion=v3.23&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=riscv64&distroversion=v3.23&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/1121019?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=s390x&distroversion=edge&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=s390x&distroversion=edge&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/1099629?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=s390x&distroversion=v3.15&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=s390x&distroversion=v3.15&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/1100473?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=s390x&distroversion=v3.18&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=s390x&distroversion=v3.18&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/1086271?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=s390x&distroversion=v3.23&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=s390x&distroversion=v3.23&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/1121021?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=x86_64&distroversion=edge&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=x86_64&distroversion=edge&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/1099631?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=x86_64&distroversion=v3.15&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=x86_64&distroversion=v3.15&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/1100475?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=x86_64&distroversion=v3.18&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=x86_64&distroversion=v3.18&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/1086273?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=x86_64&distroversion=v3.23&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=x86_64&distroversion=v3.23&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/1121020?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=x86&distroversion=edge&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=x86&distroversion=edge&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/1099630?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=x86&distroversion=v3.15&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=x86&distroversion=v3.15&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/1100474?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=x86&distroversion=v3.18&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=x86&distroversion=v3.18&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/1086272?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=x86&distroversion=v3.23&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=x86&distroversion=v3.23&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/384657?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=aarch64&distroversion=v3.13&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=aarch64&distroversion=v3.13&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/384658?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=armhf&distroversion=v3.13&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=armhf&distroversion=v3.13&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/384659?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=armv7&distroversion=v3.13&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=armv7&distroversion=v3.13&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/384660?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=mips64&distroversion=v3.13&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=mips64&distroversion=v3.13&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/384661?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=ppc64le&distroversion=v3.13&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=ppc64le&distroversion=v3.13&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/384662?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=s390x&distroversion=v3.13&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=s390x&distroversion=v3.13&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/384663?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=x86&distroversion=v3.13&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=x86&distroversion=v3.13&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/384664?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=x86_64&distroversion=v3.13&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=x86_64&distroversion=v3.13&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/459121?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=aarch64&distroversion=v3.17&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=aarch64&distroversion=v3.17&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/459122?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=armhf&distroversion=v3.17&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=armhf&distroversion=v3.17&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/459123?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=armv7&distroversion=v3.17&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=armv7&distroversion=v3.17&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/459124?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=ppc64le&distroversion=v3.17&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=ppc64le&distroversion=v3.17&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/459125?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=s390x&distroversion=v3.17&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=s390x&distroversion=v3.17&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/459126?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=x86&distroversion=v3.17&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=x86&distroversion=v3.17&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/459127?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=x86_64&distroversion=v3.17&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=x86_64&distroversion=v3.17&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/485279?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=aarch64&distroversion=v3.16&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=aarch64&distroversion=v3.16&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/485280?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=armhf&distroversion=v3.16&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=armhf&distroversion=v3.16&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/485281?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=armv7&distroversion=v3.16&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=armv7&distroversion=v3.16&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/485282?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=ppc64le&distroversion=v3.16&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=ppc64le&distroversion=v3.16&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/485283?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=s390x&distroversion=v3.16&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=s390x&distroversion=v3.16&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/485284?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=x86&distroversion=v3.16&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=x86&distroversion=v3.16&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/485285?format=api", "purl": "pkg:apk/alpine/nodejs@14.16.1-r0?arch=x86_64&distroversion=v3.16&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@14.16.1-r0%3Farch=x86_64&distroversion=v3.16&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/609444?format=api", "purl": "pkg:deb/debian/node-y18n@4.0.0-4", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/node-y18n@4.0.0-4" }, { "url": "http://public2.vulnerablecode.io/api/packages/119263?format=api", "purl": "pkg:deb/debian/node-y18n@4.0.0-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/node-y18n@4.0.0-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/119264?format=api", "purl": "pkg:deb/debian/node-y18n@4.0.0-4?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/node-y18n@4.0.0-4%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/119262?format=api", "purl": "pkg:deb/debian/node-y18n@5.0.8%2B~5.0.0-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/node-y18n@5.0.8%252B~5.0.0-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/119265?format=api", "purl": "pkg:deb/debian/node-y18n@5.0.8%2B~5.0.0-4?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/node-y18n@5.0.8%252B~5.0.0-4%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/506461?format=api", "purl": "pkg:ebuild/net-libs/nodejs@16.20.2", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/net-libs/nodejs@16.20.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/506462?format=api", "purl": "pkg:ebuild/net-libs/nodejs@18.17.1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/net-libs/nodejs@18.17.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/506463?format=api", "purl": "pkg:ebuild/net-libs/nodejs@20.5.1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/net-libs/nodejs@20.5.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/79152?format=api", "purl": "pkg:npm/y18n@3.2.2", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/y18n@3.2.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/79153?format=api", "purl": "pkg:npm/y18n@4.0.1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/y18n@4.0.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/79154?format=api", "purl": "pkg:npm/y18n@5.0.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/y18n@5.0.5" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/609442?format=api", "purl": "pkg:deb/debian/node-y18n@3.2.1-2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-eun3-dgw9-ruaj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/node-y18n@3.2.1-2" }, { "url": "http://public2.vulnerablecode.io/api/packages/609443?format=api", "purl": "pkg:deb/debian/node-y18n@3.2.1-2%2Bdeb10u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-eun3-dgw9-ruaj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/node-y18n@3.2.1-2%252Bdeb10u1" }, { "url": "http://public2.vulnerablecode.io/api/packages/280175?format=api", "purl": "pkg:npm/y18n@1.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-eun3-dgw9-ruaj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/y18n@1.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/280176?format=api", "purl": "pkg:npm/y18n@1.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-eun3-dgw9-ruaj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/y18n@1.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/280177?format=api", "purl": "pkg:npm/y18n@2.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-eun3-dgw9-ruaj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/y18n@2.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/280178?format=api", "purl": "pkg:npm/y18n@3.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-eun3-dgw9-ruaj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/y18n@3.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/280179?format=api", "purl": "pkg:npm/y18n@3.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-eun3-dgw9-ruaj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/y18n@3.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/280180?format=api", "purl": "pkg:npm/y18n@3.2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-eun3-dgw9-ruaj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/y18n@3.2.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/280181?format=api", "purl": "pkg:npm/y18n@3.2.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-eun3-dgw9-ruaj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/y18n@3.2.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/79150?format=api", "purl": "pkg:npm/y18n@4.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-eun3-dgw9-ruaj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/y18n@4.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/79151?format=api", "purl": "pkg:npm/y18n@5.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-eun3-dgw9-ruaj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/y18n@5.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/280182?format=api", "purl": "pkg:npm/y18n@5.0.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-eun3-dgw9-ruaj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/y18n@5.0.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/280183?format=api", "purl": "pkg:npm/y18n@5.0.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-eun3-dgw9-ruaj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/y18n@5.0.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/280184?format=api", "purl": "pkg:npm/y18n@5.0.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-eun3-dgw9-ruaj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/y18n@5.0.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/280185?format=api", "purl": "pkg:npm/y18n@5.0.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-eun3-dgw9-ruaj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/y18n@5.0.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/138739?format=api", "purl": "pkg:rpm/redhat/rh-nodejs10-nodejs@10.23.1-2?arch=el7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1pej-f5gn-5feh" }, { "vulnerability": "VCID-363b-t6mk-w3ct" }, { "vulnerability": "VCID-4qmh-4brg-kygx" }, { "vulnerability": "VCID-aj4s-p3uf-jffy" }, { "vulnerability": "VCID-azjs-kjpm-z3h2" }, { "vulnerability": "VCID-c12a-v9ey-qfap" }, { "vulnerability": "VCID-dvgd-qdhh-wffm" }, { "vulnerability": "VCID-eun3-dgw9-ruaj" }, { "vulnerability": "VCID-f3mc-s6sz-hkep" }, { "vulnerability": "VCID-w6r9-qf7d-xfam" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-nodejs10-nodejs@10.23.1-2%3Farch=el7" }, { "url": "http://public2.vulnerablecode.io/api/packages/138941?format=api", "purl": "pkg:rpm/redhat/rh-nodejs12-nodejs@12.19.1-2?arch=el7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-363b-t6mk-w3ct" }, { "vulnerability": "VCID-eun3-dgw9-ruaj" }, { "vulnerability": "VCID-w6r9-qf7d-xfam" }, { "vulnerability": "VCID-w6y4-5tef-mbek" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-nodejs12-nodejs@12.19.1-2%3Farch=el7" }, { "url": "http://public2.vulnerablecode.io/api/packages/138741?format=api", "purl": "pkg:rpm/redhat/rh-nodejs14-nodejs@14.15.4-2?arch=el7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1pej-f5gn-5feh" }, { "vulnerability": "VCID-363b-t6mk-w3ct" }, { "vulnerability": "VCID-azjs-kjpm-z3h2" }, { "vulnerability": "VCID-c12a-v9ey-qfap" }, { "vulnerability": "VCID-eun3-dgw9-ruaj" }, { "vulnerability": "VCID-f3mc-s6sz-hkep" }, { "vulnerability": "VCID-w6y4-5tef-mbek" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-nodejs14-nodejs@14.15.4-2%3Farch=el7" } ], "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-7774.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-7774.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-7774", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00469", "scoring_system": "epss", "scoring_elements": "0.64936", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00469", "scoring_system": "epss", "scoring_elements": "0.64893", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-7774" }, { "reference_url": "https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7774", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7774" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://github.com/yargs/y18n", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/yargs/y18n" }, { "reference_url": "https://github.com/yargs/y18n/commit/90401eea9062ad498f4f792e3fff8008c4c193a3", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/yargs/y18n/commit/90401eea9062ad498f4f792e3fff8008c4c193a3" }, { "reference_url": "https://github.com/yargs/y18n/commit/a9ac604abf756dec9687be3843e2c93bfe581f25", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/yargs/y18n/commit/a9ac604abf756dec9687be3843e2c93bfe581f25" }, { "reference_url": "https://github.com/yargs/y18n/issues/96", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/yargs/y18n/issues/96" }, { "reference_url": "https://github.com/yargs/y18n/pull/108", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/yargs/y18n/pull/108" }, { "reference_url": "https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1038306", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1038306" }, { "reference_url": "https://snyk.io/vuln/SNYK-JS-Y18N-1021887", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://snyk.io/vuln/SNYK-JS-Y18N-1021887" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuApr2021.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.oracle.com/security-alerts/cpuApr2021.html" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1898680", "reference_id": "1898680", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1898680" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=976390", "reference_id": "976390", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=976390" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2020-7774", "reference_id": "CVE-2020-7774", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-7774" }, { "reference_url": "https://github.com/advisories/GHSA-c4w7-xm78-47vh", "reference_id": "GHSA-c4w7-xm78-47vh", "reference_type": "", "scores": [], "url": "https://github.com/advisories/GHSA-c4w7-xm78-47vh" }, { "reference_url": "https://security.gentoo.org/glsa/202405-29", "reference_id": "GLSA-202405-29", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202405-29" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5305", "reference_id": "RHSA-2020:5305", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5305" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5499", "reference_id": "RHSA-2020:5499", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5499" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5633", "reference_id": "RHSA-2020:5633", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5633" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0421", "reference_id": "RHSA-2021:0421", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0421" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0521", "reference_id": "RHSA-2021:0521", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0521" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0548", "reference_id": "RHSA-2021:0548", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0548" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0551", "reference_id": "RHSA-2021:0551", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0551" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2041", "reference_id": "RHSA-2021:2041", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2438", "reference_id": "RHSA-2021:2438", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2438" } ], "weaknesses": [ { "cwe_id": 1321, "name": "Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')", "description": "The product receives input from an upstream component that specifies attributes that are to be initialized or updated in an object, but it does not properly control modifications of attributes of the object prototype." }, { "cwe_id": 20, "name": "Improper Input Validation", "description": "The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly." }, { "cwe_id": 915, "name": "Improperly Controlled Modification of Dynamically-Determined Object Attributes", "description": "The product receives input from an upstream component that specifies multiple attributes, properties, or fields that are to be initialized or updated in an object, but it does not properly control which attributes can be modified." } ], "exploits": [], "severity_range_score": "7.0 - 8.9", "exploitability": "0.5", "weighted_severity": "8.0", "risk_score": 4.0, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-eun3-dgw9-ruaj" }