{"url":"http://public2.vulnerablecode.io/api/packages/1552?format=json","purl":"pkg:alpm/archlinux/gitlab@13.9.4-1","type":"alpm","namespace":"archlinux","name":"gitlab","version":"13.9.4-1","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"13.10.1-1","latest_non_vulnerable_version":"15.2.1-1","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3855?format=json","vulnerability_id":"VCID-34ny-3991-t3gt","summary":"multiple issues","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-22203","reference_id":"","reference_type":"","scores":[{"value":"0.00241","scoring_system":"epss","scoring_elements":"0.47554","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00241","scoring_system":"epss","scoring_elements":"0.47487","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00241","scoring_system":"epss","scoring_elements":"0.47551","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00241","scoring_system":"epss","scoring_elements":"0.4752","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00241","scoring_system":"epss","scoring_elements":"0.47537","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00241","scoring_system":"epss","scoring_elements":"0.47507","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-22203"},{"reference_url":"https://security.archlinux.org/AVG-1770","reference_id":"AVG-1770","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1770"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1553?format=json","purl":"pkg:alpm/archlinux/gitlab@13.10.1-1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/gitlab@13.10.1-1"}],"aliases":["CVE-2021-22203"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-34ny-3991-t3gt"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3862?format=json","vulnerability_id":"VCID-8e3q-cqzw-ubhv","summary":"multiple issues","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-22196","reference_id":"","reference_type":"","scores":[{"value":"0.00191","scoring_system":"epss","scoring_elements":"0.40896","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00191","scoring_system":"epss","scoring_elements":"0.40814","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00191","scoring_system":"epss","scoring_elements":"0.40891","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00191","scoring_system":"epss","scoring_elements":"0.40845","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00191","scoring_system":"epss","scoring_elements":"0.40864","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00191","scoring_system":"epss","scoring_elements":"0.40833","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-22196"},{"reference_url":"https://security.archlinux.org/AVG-1770","reference_id":"AVG-1770","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1770"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1553?format=json","purl":"pkg:alpm/archlinux/gitlab@13.10.1-1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/gitlab@13.10.1-1"}],"aliases":["CVE-2021-22196"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8e3q-cqzw-ubhv"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3859?format=json","vulnerability_id":"VCID-c2wp-yjc2-p3fx","summary":"multiple issues","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-22199","reference_id":"","reference_type":"","scores":[{"value":"0.00114","scoring_system":"epss","scoring_elements":"0.2954","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00114","scoring_system":"epss","scoring_elements":"0.29559","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00114","scoring_system":"epss","scoring_elements":"0.29526","published_at":"2026-06-08T12:55:00Z"},{"value":"0.0017","scoring_system":"epss","scoring_elements":"0.38014","published_at":"2026-06-06T12:55:00Z"},{"value":"0.0017","scoring_system":"epss","scoring_elements":"0.3792","published_at":"2026-06-04T12:55:00Z"},{"value":"0.0017","scoring_system":"epss","scoring_elements":"0.38012","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-22199"},{"reference_url":"https://security.archlinux.org/AVG-1770","reference_id":"AVG-1770","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1770"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1553?format=json","purl":"pkg:alpm/archlinux/gitlab@13.10.1-1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/gitlab@13.10.1-1"}],"aliases":["CVE-2021-22199"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-c2wp-yjc2-p3fx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3860?format=json","vulnerability_id":"VCID-cjra-uagk-jfd3","summary":"multiple issues","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-22198","reference_id":"","reference_type":"","scores":[{"value":"0.003","scoring_system":"epss","scoring_elements":"0.53608","published_at":"2026-06-04T12:55:00Z"},{"value":"0.003","scoring_system":"epss","scoring_elements":"0.53666","published_at":"2026-06-05T12:55:00Z"},{"value":"0.003","scoring_system":"epss","scoring_elements":"0.53675","published_at":"2026-06-06T12:55:00Z"},{"value":"0.003","scoring_system":"epss","scoring_elements":"0.53662","published_at":"2026-06-09T12:55:00Z"},{"value":"0.003","scoring_system":"epss","scoring_elements":"0.53638","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-22198"},{"reference_url":"https://security.archlinux.org/AVG-1770","reference_id":"AVG-1770","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1770"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1553?format=json","purl":"pkg:alpm/archlinux/gitlab@13.10.1-1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/gitlab@13.10.1-1"}],"aliases":["CVE-2021-22198"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-cjra-uagk-jfd3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3858?format=json","vulnerability_id":"VCID-g7hz-zmhv-kyd1","summary":"multiple issues","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-22200","reference_id":"","reference_type":"","scores":[{"value":"0.00174","scoring_system":"epss","scoring_elements":"0.38604","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00174","scoring_system":"epss","scoring_elements":"0.38513","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00174","scoring_system":"epss","scoring_elements":"0.38601","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00174","scoring_system":"epss","scoring_elements":"0.38558","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00174","scoring_system":"epss","scoring_elements":"0.38576","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00174","scoring_system":"epss","scoring_elements":"0.38548","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-22200"},{"reference_url":"https://security.archlinux.org/AVG-1770","reference_id":"AVG-1770","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1770"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1553?format=json","purl":"pkg:alpm/archlinux/gitlab@13.10.1-1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/gitlab@13.10.1-1"}],"aliases":["CVE-2021-22200"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-g7hz-zmhv-kyd1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3857?format=json","vulnerability_id":"VCID-qw1m-95ys-gyh7","summary":"multiple issues","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-22201","reference_id":"","reference_type":"","scores":[{"value":"0.0899","scoring_system":"epss","scoring_elements":"0.9277","published_at":"2026-06-06T12:55:00Z"},{"value":"0.0899","scoring_system":"epss","scoring_elements":"0.92762","published_at":"2026-06-04T12:55:00Z"},{"value":"0.0899","scoring_system":"epss","scoring_elements":"0.92775","published_at":"2026-06-05T12:55:00Z"},{"value":"0.0899","scoring_system":"epss","scoring_elements":"0.92778","published_at":"2026-06-09T12:55:00Z"},{"value":"0.0899","scoring_system":"epss","scoring_elements":"0.92766","published_at":"2026-06-07T12:55:00Z"},{"value":"0.0899","scoring_system":"epss","scoring_elements":"0.92763","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-22201"},{"reference_url":"https://security.archlinux.org/AVG-1770","reference_id":"AVG-1770","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1770"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1553?format=json","purl":"pkg:alpm/archlinux/gitlab@13.10.1-1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/gitlab@13.10.1-1"}],"aliases":["CVE-2021-22201"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qw1m-95ys-gyh7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3861?format=json","vulnerability_id":"VCID-unxg-ren1-7qd8","summary":"multiple issues","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-22197","reference_id":"","reference_type":"","scores":[{"value":"0.00353","scoring_system":"epss","scoring_elements":"0.57966","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00353","scoring_system":"epss","scoring_elements":"0.57905","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00353","scoring_system":"epss","scoring_elements":"0.57958","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00353","scoring_system":"epss","scoring_elements":"0.57956","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00353","scoring_system":"epss","scoring_elements":"0.57955","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00353","scoring_system":"epss","scoring_elements":"0.57941","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-22197"},{"reference_url":"https://security.archlinux.org/AVG-1770","reference_id":"AVG-1770","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1770"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1553?format=json","purl":"pkg:alpm/archlinux/gitlab@13.10.1-1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/gitlab@13.10.1-1"}],"aliases":["CVE-2021-22197"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-unxg-ren1-7qd8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3856?format=json","vulnerability_id":"VCID-zx9k-47zj-zkc7","summary":"multiple issues","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-22202","reference_id":"","reference_type":"","scores":[{"value":"0.00156","scoring_system":"epss","scoring_elements":"0.36103","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00156","scoring_system":"epss","scoring_elements":"0.35999","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00156","scoring_system":"epss","scoring_elements":"0.36093","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00156","scoring_system":"epss","scoring_elements":"0.36035","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00156","scoring_system":"epss","scoring_elements":"0.36063","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00156","scoring_system":"epss","scoring_elements":"0.36021","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-22202"},{"reference_url":"https://security.archlinux.org/AVG-1770","reference_id":"AVG-1770","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1770"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1553?format=json","purl":"pkg:alpm/archlinux/gitlab@13.10.1-1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/gitlab@13.10.1-1"}],"aliases":["CVE-2021-22202"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zx9k-47zj-zkc7"}],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3864?format=json","vulnerability_id":"VCID-f4um-1g9q-uug7","summary":"arbitrary code execution","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-22192","reference_id":"","reference_type":"","scores":[{"value":"0.81162","scoring_system":"epss","scoring_elements":"0.99182","published_at":"2026-06-04T12:55:00Z"},{"value":"0.81162","scoring_system":"epss","scoring_elements":"0.99184","published_at":"2026-06-07T12:55:00Z"},{"value":"0.81162","scoring_system":"epss","scoring_elements":"0.99185","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-22192"},{"reference_url":"https://security.archlinux.org/ASA-202103-13","reference_id":"ASA-202103-13","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202103-13"},{"reference_url":"https://security.archlinux.org/AVG-1710","reference_id":"AVG-1710","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1710"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1552?format=json","purl":"pkg:alpm/archlinux/gitlab@13.9.4-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-34ny-3991-t3gt"},{"vulnerability":"VCID-8e3q-cqzw-ubhv"},{"vulnerability":"VCID-c2wp-yjc2-p3fx"},{"vulnerability":"VCID-cjra-uagk-jfd3"},{"vulnerability":"VCID-g7hz-zmhv-kyd1"},{"vulnerability":"VCID-qw1m-95ys-gyh7"},{"vulnerability":"VCID-unxg-ren1-7qd8"},{"vulnerability":"VCID-zx9k-47zj-zkc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/gitlab@13.9.4-1"}],"aliases":["CVE-2021-22192"],"risk_score":10.0,"exploitability":"2.0","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-f4um-1g9q-uug7"}],"risk_score":"4.5","resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/gitlab@13.9.4-1"}