{"url":"http://public2.vulnerablecode.io/api/packages/150878?format=json","purl":"pkg:apk/alpine/py3-pillow@8.1.2-r0?arch=x86&distroversion=v3.14&reponame=main","type":"apk","namespace":"alpine","name":"py3-pillow","version":"8.1.2-r0","qualifiers":{"arch":"x86","distroversion":"v3.14","reponame":"main"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":"8.2.0-r0","latest_non_vulnerable_version":"8.2.0-r1","affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/9268?format=json","vulnerability_id":"VCID-9422-kttr-vqdz","summary":"","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-27922","reference_id":"","reference_type":"","scores":[{"value":"0.00309","scoring_system":"epss","scoring_elements":"0.5451","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-27922"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27922","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27922"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/advisories/GHSA-3wvg-mj6g-m9cv","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/advisories/GHSA-3wvg-mj6g-m9cv"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/S7G44Z33J4BNI2DPDROHWGVG2U7ZH5JU/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/S7G44Z33J4BNI2DPDROHWGVG2U7ZH5JU/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TQQY6472RX4J2SUJENWDZAWKTJJGP2ML/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TQQY6472RX4J2SUJENWDZAWKTJJGP2ML/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZTSY25UJU7NJUFHH3HWT575LT4TDFWBZ/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZTSY25UJU7NJUFHH3HWT575LT4TDFWBZ/"},{"reference_url":"https://pillow.readthedocs.io/en/stable/releasenotes/8.1.1.html","reference_id":"","reference_type":"","scores":[],"url":"https://pillow.readthedocs.io/en/stable/releasenotes/8.1.1.html"},{"reference_url":"https://security.archlinux.org/AVG-1635","reference_id":"AVG-1635","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1635"},{"reference_url":"https://security.gentoo.org/glsa/202107-33","reference_id":"GLSA-202107-33","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202107-33"},{"reference_url":"https://usn.ubuntu.com/4763-1/","reference_id":"USN-4763-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4763-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/150878?format=json","purl":"pkg:apk/alpine/py3-pillow@8.1.2-r0?arch=x86&distroversion=v3.14&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/py3-pillow@8.1.2-r0%3Farch=x86&distroversion=v3.14&reponame=main"}],"aliases":["BIT-pillow-2021-27922","CVE-2021-27922","GHSA-3wvg-mj6g-m9cv","PYSEC-2021-41"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9422-kttr-vqdz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/9269?format=json","vulnerability_id":"VCID-94pt-152z-jucr","summary":"","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-27923","reference_id":"","reference_type":"","scores":[{"value":"0.00418","scoring_system":"epss","scoring_elements":"0.62236","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-27923"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27923","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27923"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/advisories/GHSA-95q3-8gr9-gm8w","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/advisories/GHSA-95q3-8gr9-gm8w"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/S7G44Z33J4BNI2DPDROHWGVG2U7ZH5JU/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/S7G44Z33J4BNI2DPDROHWGVG2U7ZH5JU/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TQQY6472RX4J2SUJENWDZAWKTJJGP2ML/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TQQY6472RX4J2SUJENWDZAWKTJJGP2ML/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZTSY25UJU7NJUFHH3HWT575LT4TDFWBZ/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZTSY25UJU7NJUFHH3HWT575LT4TDFWBZ/"},{"reference_url":"https://pillow.readthedocs.io/en/stable/releasenotes/8.1.1.html","reference_id":"","reference_type":"","scores":[],"url":"https://pillow.readthedocs.io/en/stable/releasenotes/8.1.1.html"},{"reference_url":"https://security.archlinux.org/AVG-1635","reference_id":"AVG-1635","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1635"},{"reference_url":"https://security.gentoo.org/glsa/202107-33","reference_id":"GLSA-202107-33","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202107-33"},{"reference_url":"https://usn.ubuntu.com/4763-1/","reference_id":"USN-4763-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4763-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/150878?format=json","purl":"pkg:apk/alpine/py3-pillow@8.1.2-r0?arch=x86&distroversion=v3.14&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/py3-pillow@8.1.2-r0%3Farch=x86&distroversion=v3.14&reponame=main"}],"aliases":["BIT-pillow-2021-27923","CVE-2021-27923","GHSA-95q3-8gr9-gm8w","PYSEC-2021-42"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-94pt-152z-jucr"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/9267?format=json","vulnerability_id":"VCID-dpb6-a1n4-hyf5","summary":"","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-27921","reference_id":"","reference_type":"","scores":[{"value":"0.00418","scoring_system":"epss","scoring_elements":"0.62236","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-27921"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27921","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27921"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/advisories/GHSA-f4w8-cv6p-x6r5","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/advisories/GHSA-f4w8-cv6p-x6r5"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/S7G44Z33J4BNI2DPDROHWGVG2U7ZH5JU/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/S7G44Z33J4BNI2DPDROHWGVG2U7ZH5JU/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TQQY6472RX4J2SUJENWDZAWKTJJGP2ML/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TQQY6472RX4J2SUJENWDZAWKTJJGP2ML/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZTSY25UJU7NJUFHH3HWT575LT4TDFWBZ/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZTSY25UJU7NJUFHH3HWT575LT4TDFWBZ/"},{"reference_url":"https://pillow.readthedocs.io/en/stable/releasenotes/8.1.1.html","reference_id":"","reference_type":"","scores":[],"url":"https://pillow.readthedocs.io/en/stable/releasenotes/8.1.1.html"},{"reference_url":"https://security.archlinux.org/AVG-1635","reference_id":"AVG-1635","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1635"},{"reference_url":"https://security.gentoo.org/glsa/202107-33","reference_id":"GLSA-202107-33","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202107-33"},{"reference_url":"https://usn.ubuntu.com/4763-1/","reference_id":"USN-4763-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4763-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/150878?format=json","purl":"pkg:apk/alpine/py3-pillow@8.1.2-r0?arch=x86&distroversion=v3.14&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/py3-pillow@8.1.2-r0%3Farch=x86&distroversion=v3.14&reponame=main"}],"aliases":["BIT-pillow-2021-27921","CVE-2021-27921","GHSA-f4w8-cv6p-x6r5","PYSEC-2021-40"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-dpb6-a1n4-hyf5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/9189?format=json","vulnerability_id":"VCID-pnq5-zmre-ruay","summary":"","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-25291","reference_id":"","reference_type":"","scores":[{"value":"0.00459","scoring_system":"epss","scoring_elements":"0.64469","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-25291"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25291","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25291"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/advisories/GHSA-mvg9-xffr-p774","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/advisories/GHSA-mvg9-xffr-p774"},{"reference_url":"https://pillow.readthedocs.io/en/stable/releasenotes/8.1.1.html","reference_id":"","reference_type":"","scores":[],"url":"https://pillow.readthedocs.io/en/stable/releasenotes/8.1.1.html"},{"reference_url":"https://security.archlinux.org/AVG-1635","reference_id":"AVG-1635","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1635"},{"reference_url":"https://security.gentoo.org/glsa/202107-33","reference_id":"GLSA-202107-33","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202107-33"},{"reference_url":"https://usn.ubuntu.com/4763-1/","reference_id":"USN-4763-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4763-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/150878?format=json","purl":"pkg:apk/alpine/py3-pillow@8.1.2-r0?arch=x86&distroversion=v3.14&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/py3-pillow@8.1.2-r0%3Farch=x86&distroversion=v3.14&reponame=main"}],"aliases":["BIT-pillow-2021-25291","CVE-2021-25291","GHSA-mvg9-xffr-p774","PYSEC-2021-37"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-pnq5-zmre-ruay"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/9187?format=json","vulnerability_id":"VCID-qmrc-rhsy-jqa3","summary":"","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-25289","reference_id":"","reference_type":"","scores":[{"value":"0.00762","scoring_system":"epss","scoring_elements":"0.73816","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-25289"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25289","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25289"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/advisories/GHSA-57h3-9rgr-c24m","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/advisories/GHSA-57h3-9rgr-c24m"},{"reference_url":"https://pillow.readthedocs.io/en/stable/releasenotes/8.1.1.html","reference_id":"","reference_type":"","scores":[],"url":"https://pillow.readthedocs.io/en/stable/releasenotes/8.1.1.html"},{"reference_url":"https://security.archlinux.org/AVG-1635","reference_id":"AVG-1635","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1635"},{"reference_url":"https://security.gentoo.org/glsa/202107-33","reference_id":"GLSA-202107-33","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202107-33"},{"reference_url":"https://usn.ubuntu.com/4763-1/","reference_id":"USN-4763-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4763-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/150878?format=json","purl":"pkg:apk/alpine/py3-pillow@8.1.2-r0?arch=x86&distroversion=v3.14&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/py3-pillow@8.1.2-r0%3Farch=x86&distroversion=v3.14&reponame=main"}],"aliases":["BIT-pillow-2021-25289","CVE-2021-25289","GHSA-57h3-9rgr-c24m","PYSEC-2021-35"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qmrc-rhsy-jqa3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/9190?format=json","vulnerability_id":"VCID-yu13-8gkk-7ucu","summary":"","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-25292","reference_id":"","reference_type":"","scores":[{"value":"0.00182","scoring_system":"epss","scoring_elements":"0.39701","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-25292"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25292","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25292"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/advisories/GHSA-9hx2-hgq2-2g4f","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/advisories/GHSA-9hx2-hgq2-2g4f"},{"reference_url":"https://pillow.readthedocs.io/en/stable/releasenotes/8.1.1.html","reference_id":"","reference_type":"","scores":[],"url":"https://pillow.readthedocs.io/en/stable/releasenotes/8.1.1.html"},{"reference_url":"https://security.archlinux.org/AVG-1635","reference_id":"AVG-1635","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1635"},{"reference_url":"https://security.gentoo.org/glsa/202107-33","reference_id":"GLSA-202107-33","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202107-33"},{"reference_url":"https://usn.ubuntu.com/4763-1/","reference_id":"USN-4763-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4763-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/150878?format=json","purl":"pkg:apk/alpine/py3-pillow@8.1.2-r0?arch=x86&distroversion=v3.14&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/py3-pillow@8.1.2-r0%3Farch=x86&distroversion=v3.14&reponame=main"}],"aliases":["BIT-pillow-2021-25292","CVE-2021-25292","GHSA-9hx2-hgq2-2g4f","PYSEC-2021-38"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-yu13-8gkk-7ucu"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/py3-pillow@8.1.2-r0%3Farch=x86&distroversion=v3.14&reponame=main"}