{"url":"http://public2.vulnerablecode.io/api/packages/1272?format=json","purl":"pkg:alpm/archlinux/libtiff@4.4.0-1","type":"alpm","namespace":"archlinux","name":"libtiff","version":"4.4.0-1","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3174?format=json","vulnerability_id":"VCID-2z91-euur-mkg6","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1622.json","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1622.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-1622","reference_id":"","reference_type":"","scores":[{"value":"0.00104","scoring_system":"epss","scoring_elements":"0.27941","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-1622"},{"reference_url":"https://gitlab.com/libtiff/libtiff/-/commit/b4e79bfa0c7d2d08f6f1e7ec38143fc8cb11394a","reference_id":"","reference_type":"","scores":[],"url":"https://gitlab.com/libtiff/libtiff/-/commit/b4e79bfa0c7d2d08f6f1e7ec38143fc8cb11394a"},{"reference_url":"https://gitlab.com/libtiff/libtiff/-/issues/410","reference_id":"","reference_type":"","scores":[],"url":"https://gitlab.com/libtiff/libtiff/-/issues/410"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2084269","reference_id":"2084269","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2084269"},{"reference_url":"https://security.archlinux.org/AVG-2842","reference_id":"AVG-2842","reference_type":"","scores":[{"value":"Unknown","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2842"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-1622","reference_id":"CVE-2022-1622","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-1622"},{"reference_url":"https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-1622.json","reference_id":"CVE-2022-1622.JSON","reference_type":"","scores":[],"url":"https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-1622.json"},{"reference_url":"https://security.gentoo.org/glsa/202210-10","reference_id":"GLSA-202210-10","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202210-10"}],"fixed_packages":[],"aliases":["CVE-2022-1622"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"5.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-2z91-euur-mkg6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3165?format=json","vulnerability_id":"VCID-3xy1-2v4a-yqdk","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2868.json","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2868.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-2868","reference_id":"","reference_type":"","scores":[{"value":"0.00016","scoring_system":"epss","scoring_elements":"0.03598","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-2868"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2118863","reference_id":"2118863","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2118863"},{"reference_url":"https://security.archlinux.org/AVG-2842","reference_id":"AVG-2842","reference_type":"","scores":[{"value":"Unknown","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2842"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0095","reference_id":"RHSA-2023:0095","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0095"}],"fixed_packages":[],"aliases":["CVE-2022-2868"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"5.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3xy1-2v4a-yqdk"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3157?format=json","vulnerability_id":"VCID-4nzz-rnew-73e7","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3970.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3970.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-3970","reference_id":"","reference_type":"","scores":[{"value":"0.00116","scoring_system":"epss","scoring_elements":"0.29935","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-3970"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024737","reference_id":"1024737","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024737"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2148918","reference_id":"2148918","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2148918"},{"reference_url":"https://security.archlinux.org/AVG-2842","reference_id":"AVG-2842","reference_type":"","scores":[{"value":"Unknown","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2842"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2340","reference_id":"RHSA-2023:2340","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2340"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2883","reference_id":"RHSA-2023:2883","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2883"}],"fixed_packages":[],"aliases":["CVE-2022-3970"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4nzz-rnew-73e7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3168?format=json","vulnerability_id":"VCID-5652-c7tg-6uft","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2520.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2520.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-2520","reference_id":"","reference_type":"","scores":[{"value":"0.00058","scoring_system":"epss","scoring_elements":"0.1825","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-2520"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024670","reference_id":"1024670","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024670"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2122792","reference_id":"2122792","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2122792"},{"reference_url":"https://security.archlinux.org/AVG-2842","reference_id":"AVG-2842","reference_type":"","scores":[{"value":"Unknown","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2842"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0095","reference_id":"RHSA-2023:0095","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0095"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0302","reference_id":"RHSA-2023:0302","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0302"}],"fixed_packages":[],"aliases":["CVE-2022-2520"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-5652-c7tg-6uft"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3167?format=json","vulnerability_id":"VCID-72yn-u5c2-qkfd","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2521.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2521.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-2521","reference_id":"","reference_type":"","scores":[{"value":"0.00124","scoring_system":"epss","scoring_elements":"0.31165","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-2521"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024670","reference_id":"1024670","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024670"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2122799","reference_id":"2122799","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2122799"},{"reference_url":"https://security.archlinux.org/AVG-2842","reference_id":"AVG-2842","reference_type":"","scores":[{"value":"Unknown","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2842"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0095","reference_id":"RHSA-2023:0095","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0095"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0302","reference_id":"RHSA-2023:0302","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0302"}],"fixed_packages":[],"aliases":["CVE-2022-2521"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-72yn-u5c2-qkfd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3166?format=json","vulnerability_id":"VCID-8hrj-ge12-v3d9","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2867.json","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2867.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-2867","reference_id":"","reference_type":"","scores":[{"value":"0.00016","scoring_system":"epss","scoring_elements":"0.03708","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-2867"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2118847","reference_id":"2118847","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2118847"},{"reference_url":"https://security.archlinux.org/AVG-2842","reference_id":"AVG-2842","reference_type":"","scores":[{"value":"Unknown","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2842"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0095","reference_id":"RHSA-2023:0095","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0095"}],"fixed_packages":[],"aliases":["CVE-2022-2867"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"5.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8hrj-ge12-v3d9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3173?format=json","vulnerability_id":"VCID-9vzm-g4pv-dkga","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1623.json","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1623.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-1623","reference_id":"","reference_type":"","scores":[{"value":"0.00332","scoring_system":"epss","scoring_elements":"0.56347","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-1623"},{"reference_url":"https://gitlab.com/libtiff/libtiff/-/commit/b4e79bfa0c7d2d08f6f1e7ec38143fc8cb11394a","reference_id":"","reference_type":"","scores":[],"url":"https://gitlab.com/libtiff/libtiff/-/commit/b4e79bfa0c7d2d08f6f1e7ec38143fc8cb11394a"},{"reference_url":"https://gitlab.com/libtiff/libtiff/-/issues/410","reference_id":"","reference_type":"","scores":[],"url":"https://gitlab.com/libtiff/libtiff/-/issues/410"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2084260","reference_id":"2084260","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2084260"},{"reference_url":"https://security.archlinux.org/AVG-2842","reference_id":"AVG-2842","reference_type":"","scores":[{"value":"Unknown","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2842"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-1623","reference_id":"CVE-2022-1623","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-1623"},{"reference_url":"https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-1623.json","reference_id":"CVE-2022-1623.JSON","reference_type":"","scores":[],"url":"https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-1623.json"},{"reference_url":"https://security.gentoo.org/glsa/202210-10","reference_id":"GLSA-202210-10","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202210-10"}],"fixed_packages":[],"aliases":["CVE-2022-1623"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"5.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9vzm-g4pv-dkga"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3161?format=json","vulnerability_id":"VCID-am9k-887b-zbhh","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3570.json","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3570.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-3570","reference_id":"","reference_type":"","scores":[{"value":"7e-05","scoring_system":"epss","scoring_elements":"0.00661","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-3570"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555","reference_id":"1022555","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2142734","reference_id":"2142734","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2142734"},{"reference_url":"https://security.archlinux.org/AVG-2842","reference_id":"AVG-2842","reference_type":"","scores":[{"value":"Unknown","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2842"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2340","reference_id":"RHSA-2023:2340","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2340"}],"fixed_packages":[],"aliases":["CVE-2022-3570"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"5.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-am9k-887b-zbhh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3171?format=json","vulnerability_id":"VCID-fn4f-qgf7-rudy","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2057.json","reference_id":"","reference_type":"","scores":[{"value":"5.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2057.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-2057","reference_id":"","reference_type":"","scores":[{"value":"0.00092","scoring_system":"epss","scoring_elements":"0.25821","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-2057"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014494","reference_id":"1014494","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014494"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2103222","reference_id":"2103222","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2103222"},{"reference_url":"https://security.archlinux.org/AVG-2842","reference_id":"AVG-2842","reference_type":"","scores":[{"value":"Unknown","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2842"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0095","reference_id":"RHSA-2023:0095","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0095"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0302","reference_id":"RHSA-2023:0302","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0302"}],"fixed_packages":[],"aliases":["CVE-2022-2057"],"risk_score":2.3,"exploitability":"0.5","weighted_severity":"4.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fn4f-qgf7-rudy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3163?format=json","vulnerability_id":"VCID-fpbq-ppxw-f7c2","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2953.json","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2953.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-2953","reference_id":"","reference_type":"","scores":[{"value":"0.00018","scoring_system":"epss","scoring_elements":"0.04641","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-2953"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024670","reference_id":"1024670","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024670"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2134432","reference_id":"2134432","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2134432"},{"reference_url":"https://security.archlinux.org/AVG-2842","reference_id":"AVG-2842","reference_type":"","scores":[{"value":"Unknown","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2842"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0095","reference_id":"RHSA-2023:0095","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0095"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0302","reference_id":"RHSA-2023:0302","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0302"}],"fixed_packages":[],"aliases":["CVE-2022-2953"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"5.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fpbq-ppxw-f7c2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3170?format=json","vulnerability_id":"VCID-fqx5-v7z8-n7gz","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2058.json","reference_id":"","reference_type":"","scores":[{"value":"5.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2058.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-2058","reference_id":"","reference_type":"","scores":[{"value":"0.00092","scoring_system":"epss","scoring_elements":"0.25821","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-2058"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014494","reference_id":"1014494","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014494"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2103222","reference_id":"2103222","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2103222"},{"reference_url":"https://security.archlinux.org/AVG-2842","reference_id":"AVG-2842","reference_type":"","scores":[{"value":"Unknown","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2842"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0095","reference_id":"RHSA-2023:0095","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0095"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0302","reference_id":"RHSA-2023:0302","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0302"}],"fixed_packages":[],"aliases":["CVE-2022-2058"],"risk_score":2.3,"exploitability":"0.5","weighted_severity":"4.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fqx5-v7z8-n7gz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3164?format=json","vulnerability_id":"VCID-fr9e-d4k4-qbeu","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2869.json","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2869.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-2869","reference_id":"","reference_type":"","scores":[{"value":"0.00025","scoring_system":"epss","scoring_elements":"0.07336","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-2869"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2118869","reference_id":"2118869","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2118869"},{"reference_url":"https://security.archlinux.org/AVG-2842","reference_id":"AVG-2842","reference_type":"","scores":[{"value":"Unknown","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2842"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0095","reference_id":"RHSA-2023:0095","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0095"}],"fixed_packages":[],"aliases":["CVE-2022-2869"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"5.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fr9e-d4k4-qbeu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3156?format=json","vulnerability_id":"VCID-g46h-2sqe-xkbk","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-48281.json","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-48281.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-48281","reference_id":"","reference_type":"","scores":[{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.01343","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-48281"},{"reference_url":"https://gitlab.com/libtiff/libtiff/-/commit/d1b6b9c1b3cae2d9e37754506c1ad8f4f7b646b5","reference_id":"","reference_type":"","scores":[],"url":"https://gitlab.com/libtiff/libtiff/-/commit/d1b6b9c1b3cae2d9e37754506c1ad8f4f7b646b5"},{"reference_url":"https://gitlab.com/libtiff/libtiff/-/issues/488","reference_id":"","reference_type":"","scores":[],"url":"https://gitlab.com/libtiff/libtiff/-/issues/488"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/01/msg00037.html","reference_id":"","reference_type":"","scores":[],"url":"https://lists.debian.org/debian-lts-announce/2023/01/msg00037.html"},{"reference_url":"https://www.debian.org/security/2023/dsa-5333","reference_id":"","reference_type":"","scores":[],"url":"https://www.debian.org/security/2023/dsa-5333"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1029653","reference_id":"1029653","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1029653"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2163606","reference_id":"2163606","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2163606"},{"reference_url":"https://security.archlinux.org/AVG-2842","reference_id":"AVG-2842","reference_type":"","scores":[{"value":"Unknown","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2842"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-48281","reference_id":"CVE-2022-48281","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-48281"},{"reference_url":"https://security.gentoo.org/glsa/202305-31","reference_id":"GLSA-202305-31","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202305-31"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3711","reference_id":"RHSA-2023:3711","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3711"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3827","reference_id":"RHSA-2023:3827","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3827"}],"fixed_packages":[],"aliases":["CVE-2022-48281"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"5.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-g46h-2sqe-xkbk"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3172?format=json","vulnerability_id":"VCID-kgbx-td11-53cs","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2056.json","reference_id":"","reference_type":"","scores":[{"value":"5.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2056.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-2056","reference_id":"","reference_type":"","scores":[{"value":"0.00092","scoring_system":"epss","scoring_elements":"0.25821","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-2056"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014494","reference_id":"1014494","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014494"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2103222","reference_id":"2103222","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2103222"},{"reference_url":"https://security.archlinux.org/AVG-2842","reference_id":"AVG-2842","reference_type":"","scores":[{"value":"Unknown","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2842"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0095","reference_id":"RHSA-2023:0095","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0095"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0302","reference_id":"RHSA-2023:0302","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0302"}],"fixed_packages":[],"aliases":["CVE-2022-2056"],"risk_score":2.3,"exploitability":"0.5","weighted_severity":"4.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kgbx-td11-53cs"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3158?format=json","vulnerability_id":"VCID-kv51-zgyb-fffy","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3627.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3627.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-3627","reference_id":"","reference_type":"","scores":[{"value":"0.00028","scoring_system":"epss","scoring_elements":"0.08573","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-3627"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555","reference_id":"1022555","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2142742","reference_id":"2142742","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2142742"},{"reference_url":"https://security.archlinux.org/AVG-2842","reference_id":"AVG-2842","reference_type":"","scores":[{"value":"Unknown","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2842"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2340","reference_id":"RHSA-2023:2340","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2340"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2883","reference_id":"RHSA-2023:2883","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2883"}],"fixed_packages":[],"aliases":["CVE-2022-3627"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kv51-zgyb-fffy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3169?format=json","vulnerability_id":"VCID-q9xq-fn2h-uqf2","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2519.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2519.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-2519","reference_id":"","reference_type":"","scores":[{"value":"0.00124","scoring_system":"epss","scoring_elements":"0.31165","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-2519"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024670","reference_id":"1024670","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024670"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2122789","reference_id":"2122789","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2122789"},{"reference_url":"https://security.archlinux.org/AVG-2842","reference_id":"AVG-2842","reference_type":"","scores":[{"value":"Unknown","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2842"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0095","reference_id":"RHSA-2023:0095","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0095"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0302","reference_id":"RHSA-2023:0302","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0302"}],"fixed_packages":[],"aliases":["CVE-2022-2519"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-q9xq-fn2h-uqf2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3159?format=json","vulnerability_id":"VCID-ryah-d2mj-vkha","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3599.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3599.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-3599","reference_id":"","reference_type":"","scores":[{"value":"0.00039","scoring_system":"epss","scoring_elements":"0.11849","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-3599"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555","reference_id":"1022555","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2142740","reference_id":"2142740","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2142740"},{"reference_url":"https://security.archlinux.org/AVG-2842","reference_id":"AVG-2842","reference_type":"","scores":[{"value":"Unknown","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2842"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2340","reference_id":"RHSA-2023:2340","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2340"}],"fixed_packages":[],"aliases":["CVE-2022-3599"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ryah-d2mj-vkha"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3160?format=json","vulnerability_id":"VCID-vzty-mrqp-nbam","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3597.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3597.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-3597","reference_id":"","reference_type":"","scores":[{"value":"0.00028","scoring_system":"epss","scoring_elements":"0.08573","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-3597"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555","reference_id":"1022555","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2142736","reference_id":"2142736","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2142736"},{"reference_url":"https://security.archlinux.org/AVG-2842","reference_id":"AVG-2842","reference_type":"","scores":[{"value":"Unknown","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2842"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2340","reference_id":"RHSA-2023:2340","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2340"}],"fixed_packages":[],"aliases":["CVE-2022-3597"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vzty-mrqp-nbam"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3162?format=json","vulnerability_id":"VCID-yekv-pd53-nfgw","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-34526.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-34526.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-34526","reference_id":"","reference_type":"","scores":[{"value":"0.00171","scoring_system":"epss","scoring_elements":"0.38055","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-34526"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2112756","reference_id":"2112756","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2112756"},{"reference_url":"https://security.archlinux.org/AVG-2842","reference_id":"AVG-2842","reference_type":"","scores":[{"value":"Unknown","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2842"}],"fixed_packages":[],"aliases":["CVE-2022-34526"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-yekv-pd53-nfgw"}],"fixing_vulnerabilities":[],"risk_score":"4.0","resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/libtiff@4.4.0-1"}