{"url":"http://public2.vulnerablecode.io/api/packages/427860?format=json","purl":"pkg:apk/alpine/openjdk15@15.0.7_p4-r0?arch=aarch64&distroversion=v3.15&reponame=community","type":"apk","namespace":"alpine","name":"openjdk15","version":"15.0.7_p4-r0","qualifiers":{"arch":"aarch64","distroversion":"v3.15","reponame":"community"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/79485?format=json","vulnerability_id":"VCID-1d6t-ndfc-m7hg","summary":"OpenJDK: Missing check for negative ObjectIdentifier (Libraries, 8275151)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21443.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21443.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21443","reference_id":"","reference_type":"","scores":[{"value":"0.00058","scoring_system":"epss","scoring_elements":"0.18078","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00058","scoring_system":"epss","scoring_elements":"0.18274","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00058","scoring_system":"epss","scoring_elements":"0.18326","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00058","scoring_system":"epss","scoring_elements":"0.18029","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00058","scoring_system":"epss","scoring_elements":"0.18111","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00058","scoring_system":"epss","scoring_elements":"0.18168","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00058","scoring_system":"epss","scoring_elements":"0.18174","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00058","scoring_system":"epss","scoring_elements":"0.18126","published_at":"2026-04-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21443"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21426","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21426"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21434","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21434"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21443","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21443"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21449","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21449"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21476","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21476"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21496","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21496"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2075793","reference_id":"2075793","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2075793"},{"reference_url":"https://security.archlinux.org/AVG-2686","reference_id":"AVG-2686","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2686"},{"reference_url":"https://security.archlinux.org/AVG-2687","reference_id":"AVG-2687","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2687"},{"reference_url":"https://security.archlinux.org/AVG-2688","reference_id":"AVG-2688","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2688"},{"reference_url":"https://security.archlinux.org/AVG-2689","reference_id":"AVG-2689","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2689"},{"reference_url":"https://www.debian.org/security/2022/dsa-5128","reference_id":"dsa-5128","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-24T15:31:25Z/"}],"url":"https://www.debian.org/security/2022/dsa-5128"},{"reference_url":"https://www.debian.org/security/2022/dsa-5131","reference_id":"dsa-5131","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-24T15:31:25Z/"}],"url":"https://www.debian.org/security/2022/dsa-5131"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2022/05/msg00017.html","reference_id":"msg00017.html","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-24T15:31:25Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2022/05/msg00017.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20220429-0006/","reference_id":"ntap-20220429-0006","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-24T15:31:25Z/"}],"url":"https://security.netapp.com/advisory/ntap-20220429-0006/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1435","reference_id":"RHSA-2022:1435","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1435"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1436","reference_id":"RHSA-2022:1436","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1436"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1437","reference_id":"RHSA-2022:1437","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1437"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1438","reference_id":"RHSA-2022:1438","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1438"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1439","reference_id":"RHSA-2022:1439","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1439"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1440","reference_id":"RHSA-2022:1440","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1440"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1441","reference_id":"RHSA-2022:1441","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1441"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1442","reference_id":"RHSA-2022:1442","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1442"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1443","reference_id":"RHSA-2022:1443","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1443"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1444","reference_id":"RHSA-2022:1444","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1444"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1445","reference_id":"RHSA-2022:1445","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1445"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1487","reference_id":"RHSA-2022:1487","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1487"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1488","reference_id":"RHSA-2022:1488","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1488"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1489","reference_id":"RHSA-2022:1489","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1489"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1490","reference_id":"RHSA-2022:1490","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1490"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1491","reference_id":"RHSA-2022:1491","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1491"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1492","reference_id":"RHSA-2022:1492","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1492"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1728","reference_id":"RHSA-2022:1728","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1728"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1729","reference_id":"RHSA-2022:1729","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1729"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:2137","reference_id":"RHSA-2022:2137","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:2137"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:4957","reference_id":"RHSA-2022:4957","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:4957"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:4959","reference_id":"RHSA-2022:4959","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:4959"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:5837","reference_id":"RHSA-2022:5837","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:5837"},{"reference_url":"https://usn.ubuntu.com/5388-1/","reference_id":"USN-5388-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5388-1/"},{"reference_url":"https://usn.ubuntu.com/5388-2/","reference_id":"USN-5388-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5388-2/"},{"reference_url":"https://usn.ubuntu.com/5546-1/","reference_id":"USN-5546-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5546-1/"},{"reference_url":"https://usn.ubuntu.com/5546-2/","reference_id":"USN-5546-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5546-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/427860?format=json","purl":"pkg:apk/alpine/openjdk15@15.0.7_p4-r0?arch=aarch64&distroversion=v3.15&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk15@15.0.7_p4-r0%3Farch=aarch64&distroversion=v3.15&reponame=community"}],"aliases":["CVE-2022-21443"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-1d6t-ndfc-m7hg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/34358?format=json","vulnerability_id":"VCID-3aae-859j-1bg9","summary":"Multiple vulnerabilities have been found in OpenJDK, the worst of which could result in denial of service.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21293.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21293.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21293","reference_id":"","reference_type":"","scores":[{"value":"0.00096","scoring_system":"epss","scoring_elements":"0.26644","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00096","scoring_system":"epss","scoring_elements":"0.26688","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00096","scoring_system":"epss","scoring_elements":"0.26473","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00096","scoring_system":"epss","scoring_elements":"0.26541","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00096","scoring_system":"epss","scoring_elements":"0.2659","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00096","scoring_system":"epss","scoring_elements":"0.26596","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00096","scoring_system":"epss","scoring_elements":"0.26551","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00096","scoring_system":"epss","scoring_elements":"0.26494","published_at":"2026-04-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21293"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21248","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21248"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21277","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21277"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21282","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21282"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21283","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21283"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21291","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21291"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21293","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21293"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21294","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21294"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21296","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21296"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21299","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21299"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21305","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21305"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21340","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21340"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21341","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21341"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21360","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21360"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21365","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21365"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21366","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21366"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2041417","reference_id":"2041417","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2041417"},{"reference_url":"https://security.gentoo.org/glsa/202209-05","reference_id":"GLSA-202209-05","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202209-05"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0161","reference_id":"RHSA-2022:0161","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0161"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0165","reference_id":"RHSA-2022:0165","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0165"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0166","reference_id":"RHSA-2022:0166","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0166"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0185","reference_id":"RHSA-2022:0185","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0185"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0204","reference_id":"RHSA-2022:0204","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0204"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0209","reference_id":"RHSA-2022:0209","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0209"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0211","reference_id":"RHSA-2022:0211","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0211"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0228","reference_id":"RHSA-2022:0228","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0228"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0229","reference_id":"RHSA-2022:0229","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0229"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0233","reference_id":"RHSA-2022:0233","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0233"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0304","reference_id":"RHSA-2022:0304","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0304"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0305","reference_id":"RHSA-2022:0305","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0305"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0306","reference_id":"RHSA-2022:0306","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0306"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0307","reference_id":"RHSA-2022:0307","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0307"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0312","reference_id":"RHSA-2022:0312","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0312"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0317","reference_id":"RHSA-2022:0317","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0317"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0321","reference_id":"RHSA-2022:0321","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0321"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0968","reference_id":"RHSA-2022:0968","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0968"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0969","reference_id":"RHSA-2022:0969","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0969"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0970","reference_id":"RHSA-2022:0970","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0970"},{"reference_url":"https://usn.ubuntu.com/5313-1/","reference_id":"USN-5313-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5313-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/427860?format=json","purl":"pkg:apk/alpine/openjdk15@15.0.7_p4-r0?arch=aarch64&distroversion=v3.15&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk15@15.0.7_p4-r0%3Farch=aarch64&distroversion=v3.15&reponame=community"}],"aliases":["CVE-2022-21293"],"risk_score":2.4,"exploitability":"0.5","weighted_severity":"4.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3aae-859j-1bg9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/34372?format=json","vulnerability_id":"VCID-3hj5-z3ck-tkha","summary":"Multiple vulnerabilities have been found in OpenJDK, the worst of which could result in denial of service.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21365.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21365.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21365","reference_id":"","reference_type":"","scores":[{"value":"0.00112","scoring_system":"epss","scoring_elements":"0.29709","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00112","scoring_system":"epss","scoring_elements":"0.29741","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00112","scoring_system":"epss","scoring_elements":"0.29614","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00112","scoring_system":"epss","scoring_elements":"0.29664","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00112","scoring_system":"epss","scoring_elements":"0.29788","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00112","scoring_system":"epss","scoring_elements":"0.29607","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00112","scoring_system":"epss","scoring_elements":"0.29669","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00112","scoring_system":"epss","scoring_elements":"0.29706","published_at":"2026-04-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21365"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21248","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21248"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21277","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21277"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21282","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21282"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21283","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21283"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21291","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21291"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21293","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21293"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21294","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21294"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21296","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21296"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21299","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21299"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21305","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21305"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21340","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21340"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21341","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21341"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21360","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21360"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21365","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21365"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21366","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21366"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2041785","reference_id":"2041785","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2041785"},{"reference_url":"https://www.debian.org/security/2022/dsa-5057","reference_id":"dsa-5057","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-30T20:59:23Z/"}],"url":"https://www.debian.org/security/2022/dsa-5057"},{"reference_url":"https://www.debian.org/security/2022/dsa-5058","reference_id":"dsa-5058","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-30T20:59:23Z/"}],"url":"https://www.debian.org/security/2022/dsa-5058"},{"reference_url":"https://security.gentoo.org/glsa/202209-05","reference_id":"GLSA-202209-05","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-30T20:59:23Z/"}],"url":"https://security.gentoo.org/glsa/202209-05"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2022/02/msg00011.html","reference_id":"msg00011.html","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-30T20:59:23Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2022/02/msg00011.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20220121-0007/","reference_id":"ntap-20220121-0007","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-30T20:59:23Z/"}],"url":"https://security.netapp.com/advisory/ntap-20220121-0007/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0161","reference_id":"RHSA-2022:0161","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0161"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0165","reference_id":"RHSA-2022:0165","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0165"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0166","reference_id":"RHSA-2022:0166","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0166"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0185","reference_id":"RHSA-2022:0185","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0185"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0204","reference_id":"RHSA-2022:0204","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0204"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0209","reference_id":"RHSA-2022:0209","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0209"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0211","reference_id":"RHSA-2022:0211","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0211"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0228","reference_id":"RHSA-2022:0228","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0228"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0229","reference_id":"RHSA-2022:0229","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0229"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0233","reference_id":"RHSA-2022:0233","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0233"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0304","reference_id":"RHSA-2022:0304","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0304"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0305","reference_id":"RHSA-2022:0305","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0305"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0306","reference_id":"RHSA-2022:0306","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0306"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0307","reference_id":"RHSA-2022:0307","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0307"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0312","reference_id":"RHSA-2022:0312","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0312"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0317","reference_id":"RHSA-2022:0317","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0317"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0321","reference_id":"RHSA-2022:0321","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0321"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0968","reference_id":"RHSA-2022:0968","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0968"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0969","reference_id":"RHSA-2022:0969","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0969"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0970","reference_id":"RHSA-2022:0970","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0970"},{"reference_url":"https://usn.ubuntu.com/5313-1/","reference_id":"USN-5313-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5313-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/427860?format=json","purl":"pkg:apk/alpine/openjdk15@15.0.7_p4-r0?arch=aarch64&distroversion=v3.15&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk15@15.0.7_p4-r0%3Farch=aarch64&distroversion=v3.15&reponame=community"}],"aliases":["CVE-2022-21365"],"risk_score":2.4,"exploitability":"0.5","weighted_severity":"4.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3hj5-z3ck-tkha"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/34370?format=json","vulnerability_id":"VCID-4thy-7844-xuc9","summary":"Multiple vulnerabilities have been found in OpenJDK, the worst of which could result in denial of service.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21360.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21360.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21360","reference_id":"","reference_type":"","scores":[{"value":"0.00112","scoring_system":"epss","scoring_elements":"0.29741","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00112","scoring_system":"epss","scoring_elements":"0.29788","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00112","scoring_system":"epss","scoring_elements":"0.29607","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00112","scoring_system":"epss","scoring_elements":"0.29669","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00112","scoring_system":"epss","scoring_elements":"0.29706","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00112","scoring_system":"epss","scoring_elements":"0.29709","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00112","scoring_system":"epss","scoring_elements":"0.29664","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00112","scoring_system":"epss","scoring_elements":"0.29614","published_at":"2026-04-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21360"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21248","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21248"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21277","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21277"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21282","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21282"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21283","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21283"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21291","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21291"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21293","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21293"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21294","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21294"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21296","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21296"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21299","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21299"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21305","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21305"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21340","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21340"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21341","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21341"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21360","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21360"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21365","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21365"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21366","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21366"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2041491","reference_id":"2041491","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2041491"},{"reference_url":"https://security.gentoo.org/glsa/202209-05","reference_id":"GLSA-202209-05","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202209-05"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0161","reference_id":"RHSA-2022:0161","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0161"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0165","reference_id":"RHSA-2022:0165","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0165"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0166","reference_id":"RHSA-2022:0166","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0166"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0185","reference_id":"RHSA-2022:0185","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0185"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0204","reference_id":"RHSA-2022:0204","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0204"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0209","reference_id":"RHSA-2022:0209","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0209"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0211","reference_id":"RHSA-2022:0211","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0211"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0228","reference_id":"RHSA-2022:0228","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0228"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0229","reference_id":"RHSA-2022:0229","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0229"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0233","reference_id":"RHSA-2022:0233","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0233"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0304","reference_id":"RHSA-2022:0304","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0304"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0305","reference_id":"RHSA-2022:0305","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0305"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0306","reference_id":"RHSA-2022:0306","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0306"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0307","reference_id":"RHSA-2022:0307","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0307"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0312","reference_id":"RHSA-2022:0312","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0312"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0317","reference_id":"RHSA-2022:0317","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0317"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0321","reference_id":"RHSA-2022:0321","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0321"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0968","reference_id":"RHSA-2022:0968","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0968"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0969","reference_id":"RHSA-2022:0969","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0969"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0970","reference_id":"RHSA-2022:0970","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0970"},{"reference_url":"https://usn.ubuntu.com/5313-1/","reference_id":"USN-5313-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5313-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/427860?format=json","purl":"pkg:apk/alpine/openjdk15@15.0.7_p4-r0?arch=aarch64&distroversion=v3.15&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk15@15.0.7_p4-r0%3Farch=aarch64&distroversion=v3.15&reponame=community"}],"aliases":["CVE-2022-21360"],"risk_score":2.4,"exploitability":"0.5","weighted_severity":"4.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4thy-7844-xuc9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/34360?format=json","vulnerability_id":"VCID-5xg6-kds9-g3hf","summary":"Multiple vulnerabilities have been found in OpenJDK, the worst of which could result in denial of service.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21294.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21294.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21294","reference_id":"","reference_type":"","scores":[{"value":"0.00112","scoring_system":"epss","scoring_elements":"0.29741","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00112","scoring_system":"epss","scoring_elements":"0.29788","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00112","scoring_system":"epss","scoring_elements":"0.29607","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00112","scoring_system":"epss","scoring_elements":"0.29669","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00112","scoring_system":"epss","scoring_elements":"0.29706","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00112","scoring_system":"epss","scoring_elements":"0.29709","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00112","scoring_system":"epss","scoring_elements":"0.29664","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00112","scoring_system":"epss","scoring_elements":"0.29614","published_at":"2026-04-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21294"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21248","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21248"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21277","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21277"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21282","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21282"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21283","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21283"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21291","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21291"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21293","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21293"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21294","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21294"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21296","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21296"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21299","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21299"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21305","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21305"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21340","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21340"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21341","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21341"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21360","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21360"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21365","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21365"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21366","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21366"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2041427","reference_id":"2041427","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2041427"},{"reference_url":"https://security.gentoo.org/glsa/202209-05","reference_id":"GLSA-202209-05","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202209-05"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0161","reference_id":"RHSA-2022:0161","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0161"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0165","reference_id":"RHSA-2022:0165","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0165"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0166","reference_id":"RHSA-2022:0166","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0166"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0185","reference_id":"RHSA-2022:0185","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0185"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0204","reference_id":"RHSA-2022:0204","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0204"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0209","reference_id":"RHSA-2022:0209","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0209"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0211","reference_id":"RHSA-2022:0211","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0211"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0228","reference_id":"RHSA-2022:0228","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0228"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0229","reference_id":"RHSA-2022:0229","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0229"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0233","reference_id":"RHSA-2022:0233","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0233"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0304","reference_id":"RHSA-2022:0304","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0304"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0305","reference_id":"RHSA-2022:0305","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0305"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0306","reference_id":"RHSA-2022:0306","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0306"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0307","reference_id":"RHSA-2022:0307","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0307"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0312","reference_id":"RHSA-2022:0312","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0312"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0317","reference_id":"RHSA-2022:0317","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0317"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0321","reference_id":"RHSA-2022:0321","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0321"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0968","reference_id":"RHSA-2022:0968","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0968"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0969","reference_id":"RHSA-2022:0969","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0969"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0970","reference_id":"RHSA-2022:0970","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0970"},{"reference_url":"https://usn.ubuntu.com/5313-1/","reference_id":"USN-5313-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5313-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/427860?format=json","purl":"pkg:apk/alpine/openjdk15@15.0.7_p4-r0?arch=aarch64&distroversion=v3.15&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk15@15.0.7_p4-r0%3Farch=aarch64&distroversion=v3.15&reponame=community"}],"aliases":["CVE-2022-21294"],"risk_score":2.4,"exploitability":"0.5","weighted_severity":"4.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-5xg6-kds9-g3hf"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/34368?format=json","vulnerability_id":"VCID-98bc-5jrc-5kas","summary":"Multiple vulnerabilities have been found in OpenJDK, the worst of which could result in denial of service.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21341.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21341.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21341","reference_id":"","reference_type":"","scores":[{"value":"0.00112","scoring_system":"epss","scoring_elements":"0.29741","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00112","scoring_system":"epss","scoring_elements":"0.29788","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00112","scoring_system":"epss","scoring_elements":"0.29607","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00112","scoring_system":"epss","scoring_elements":"0.29669","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00112","scoring_system":"epss","scoring_elements":"0.29706","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00112","scoring_system":"epss","scoring_elements":"0.29709","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00112","scoring_system":"epss","scoring_elements":"0.29664","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00112","scoring_system":"epss","scoring_elements":"0.29614","published_at":"2026-04-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21341"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21248","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21248"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21277","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21277"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21282","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21282"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21283","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21283"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21291","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21291"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21293","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21293"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21294","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21294"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21296","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21296"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21299","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21299"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21305","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21305"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21340","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21340"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21341","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21341"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21360","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21360"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21365","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21365"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21366","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21366"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2041897","reference_id":"2041897","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2041897"},{"reference_url":"https://security.gentoo.org/glsa/202209-05","reference_id":"GLSA-202209-05","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202209-05"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0161","reference_id":"RHSA-2022:0161","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0161"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0165","reference_id":"RHSA-2022:0165","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0165"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0166","reference_id":"RHSA-2022:0166","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0166"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0185","reference_id":"RHSA-2022:0185","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0185"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0204","reference_id":"RHSA-2022:0204","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0204"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0209","reference_id":"RHSA-2022:0209","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0209"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0211","reference_id":"RHSA-2022:0211","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0211"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0228","reference_id":"RHSA-2022:0228","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0228"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0229","reference_id":"RHSA-2022:0229","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0229"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0233","reference_id":"RHSA-2022:0233","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0233"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0304","reference_id":"RHSA-2022:0304","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0304"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0305","reference_id":"RHSA-2022:0305","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0305"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0306","reference_id":"RHSA-2022:0306","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0306"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0307","reference_id":"RHSA-2022:0307","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0307"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0312","reference_id":"RHSA-2022:0312","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0312"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0317","reference_id":"RHSA-2022:0317","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0317"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0321","reference_id":"RHSA-2022:0321","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0321"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0968","reference_id":"RHSA-2022:0968","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0968"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0969","reference_id":"RHSA-2022:0969","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0969"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0970","reference_id":"RHSA-2022:0970","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0970"},{"reference_url":"https://usn.ubuntu.com/5313-1/","reference_id":"USN-5313-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5313-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/427860?format=json","purl":"pkg:apk/alpine/openjdk15@15.0.7_p4-r0?arch=aarch64&distroversion=v3.15&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk15@15.0.7_p4-r0%3Farch=aarch64&distroversion=v3.15&reponame=community"}],"aliases":["CVE-2022-21341"],"risk_score":2.4,"exploitability":"0.5","weighted_severity":"4.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-98bc-5jrc-5kas"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/79488?format=json","vulnerability_id":"VCID-a95g-84vs-xbav","summary":"OpenJDK: Defective secure validation in Apache Santuario (Libraries, 8278008)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21476.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21476.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21476","reference_id":"","reference_type":"","scores":[{"value":"0.00184","scoring_system":"epss","scoring_elements":"0.40168","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00184","scoring_system":"epss","scoring_elements":"0.40224","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00184","scoring_system":"epss","scoring_elements":"0.40186","published_at":"2026-04-12T12:55:00Z"},{"value":"0.0019","scoring_system":"epss","scoring_elements":"0.40824","published_at":"2026-04-09T12:55:00Z"},{"value":"0.0019","scoring_system":"epss","scoring_elements":"0.40815","published_at":"2026-04-02T12:55:00Z"},{"value":"0.0019","scoring_system":"epss","scoring_elements":"0.40842","published_at":"2026-04-04T12:55:00Z"},{"value":"0.0019","scoring_system":"epss","scoring_elements":"0.40767","published_at":"2026-04-07T12:55:00Z"},{"value":"0.0019","scoring_system":"epss","scoring_elements":"0.40817","published_at":"2026-04-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21476"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21426","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21426"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21434","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21434"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21443","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21443"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21449","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21449"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21476","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21476"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21496","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21496"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1010597","reference_id":"1010597","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1010597"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2075842","reference_id":"2075842","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2075842"},{"reference_url":"https://security.archlinux.org/AVG-2687","reference_id":"AVG-2687","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2687"},{"reference_url":"https://security.archlinux.org/AVG-2688","reference_id":"AVG-2688","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2688"},{"reference_url":"https://security.archlinux.org/AVG-2689","reference_id":"AVG-2689","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2689"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1435","reference_id":"RHSA-2022:1435","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1435"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1436","reference_id":"RHSA-2022:1436","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1436"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1437","reference_id":"RHSA-2022:1437","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1437"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1438","reference_id":"RHSA-2022:1438","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1438"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1439","reference_id":"RHSA-2022:1439","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1439"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1440","reference_id":"RHSA-2022:1440","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1440"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1441","reference_id":"RHSA-2022:1441","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1441"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1442","reference_id":"RHSA-2022:1442","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1442"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1443","reference_id":"RHSA-2022:1443","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1443"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1444","reference_id":"RHSA-2022:1444","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1444"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1445","reference_id":"RHSA-2022:1445","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1445"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1487","reference_id":"RHSA-2022:1487","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1487"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1488","reference_id":"RHSA-2022:1488","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1488"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1489","reference_id":"RHSA-2022:1489","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1489"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1490","reference_id":"RHSA-2022:1490","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1490"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1491","reference_id":"RHSA-2022:1491","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1491"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1492","reference_id":"RHSA-2022:1492","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1492"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1728","reference_id":"RHSA-2022:1728","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1728"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1729","reference_id":"RHSA-2022:1729","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1729"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:2137","reference_id":"RHSA-2022:2137","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:2137"},{"reference_url":"https://usn.ubuntu.com/5388-1/","reference_id":"USN-5388-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5388-1/"},{"reference_url":"https://usn.ubuntu.com/5388-2/","reference_id":"USN-5388-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5388-2/"},{"reference_url":"https://usn.ubuntu.com/5546-1/","reference_id":"USN-5546-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5546-1/"},{"reference_url":"https://usn.ubuntu.com/5546-2/","reference_id":"USN-5546-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5546-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/427860?format=json","purl":"pkg:apk/alpine/openjdk15@15.0.7_p4-r0?arch=aarch64&distroversion=v3.15&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk15@15.0.7_p4-r0%3Farch=aarch64&distroversion=v3.15&reponame=community"}],"aliases":["CVE-2022-21476"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-a95g-84vs-xbav"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/34356?format=json","vulnerability_id":"VCID-g2fj-4mgh-23fs","summary":"Multiple vulnerabilities have been found in OpenJDK, the worst of which could result in denial of service.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21283.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21283.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21283","reference_id":"","reference_type":"","scores":[{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30894","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30847","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00133","scoring_system":"epss","scoring_elements":"0.32867","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00133","scoring_system":"epss","scoring_elements":"0.32868","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00133","scoring_system":"epss","scoring_elements":"0.32829","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00133","scoring_system":"epss","scoring_elements":"0.32803","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00133","scoring_system":"epss","scoring_elements":"0.3279","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00133","scoring_system":"epss","scoring_elements":"0.32838","published_at":"2026-04-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21283"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21248","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21248"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21277","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21277"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21282","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21282"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21283","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21283"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21291","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21291"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21293","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21293"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21294","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21294"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21296","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21296"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21299","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21299"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21305","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21305"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21340","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21340"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21341","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21341"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21360","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21360"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21365","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21365"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21366","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21366"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2041400","reference_id":"2041400","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2041400"},{"reference_url":"https://security.gentoo.org/glsa/202209-05","reference_id":"GLSA-202209-05","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202209-05"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0161","reference_id":"RHSA-2022:0161","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0161"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0165","reference_id":"RHSA-2022:0165","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0165"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0166","reference_id":"RHSA-2022:0166","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0166"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0185","reference_id":"RHSA-2022:0185","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0185"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0204","reference_id":"RHSA-2022:0204","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0204"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0209","reference_id":"RHSA-2022:0209","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0209"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0211","reference_id":"RHSA-2022:0211","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0211"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0228","reference_id":"RHSA-2022:0228","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0228"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0229","reference_id":"RHSA-2022:0229","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0229"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0233","reference_id":"RHSA-2022:0233","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0233"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0304","reference_id":"RHSA-2022:0304","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0304"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0305","reference_id":"RHSA-2022:0305","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0305"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0306","reference_id":"RHSA-2022:0306","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0306"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0307","reference_id":"RHSA-2022:0307","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0307"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0312","reference_id":"RHSA-2022:0312","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0312"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0317","reference_id":"RHSA-2022:0317","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0317"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0321","reference_id":"RHSA-2022:0321","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0321"},{"reference_url":"https://usn.ubuntu.com/5313-1/","reference_id":"USN-5313-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5313-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/427860?format=json","purl":"pkg:apk/alpine/openjdk15@15.0.7_p4-r0?arch=aarch64&distroversion=v3.15&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk15@15.0.7_p4-r0%3Farch=aarch64&distroversion=v3.15&reponame=community"}],"aliases":["CVE-2022-21283"],"risk_score":2.4,"exploitability":"0.5","weighted_severity":"4.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-g2fj-4mgh-23fs"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/79484?format=json","vulnerability_id":"VCID-hx4c-96gx-2fbq","summary":"OpenJDK: Unbounded memory allocation when compiling crafted XPath expressions (JAXP, 8270504)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21426.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21426.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21426","reference_id":"","reference_type":"","scores":[{"value":"0.00062","scoring_system":"epss","scoring_elements":"0.19319","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00062","scoring_system":"epss","scoring_elements":"0.19476","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00062","scoring_system":"epss","scoring_elements":"0.19268","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00062","scoring_system":"epss","scoring_elements":"0.19326","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00062","scoring_system":"epss","scoring_elements":"0.19374","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00062","scoring_system":"epss","scoring_elements":"0.19371","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00062","scoring_system":"epss","scoring_elements":"0.19524","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00062","scoring_system":"epss","scoring_elements":"0.1924","published_at":"2026-04-07T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21426"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21426","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21426"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21434","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21434"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21443","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21443"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21449","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21449"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21476","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21476"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21496","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21496"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2075788","reference_id":"2075788","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2075788"},{"reference_url":"https://security.archlinux.org/AVG-2686","reference_id":"AVG-2686","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2686"},{"reference_url":"https://security.archlinux.org/AVG-2687","reference_id":"AVG-2687","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2687"},{"reference_url":"https://security.archlinux.org/AVG-2688","reference_id":"AVG-2688","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2688"},{"reference_url":"https://security.archlinux.org/AVG-2689","reference_id":"AVG-2689","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2689"},{"reference_url":"https://www.debian.org/security/2022/dsa-5128","reference_id":"dsa-5128","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-24T17:35:39Z/"}],"url":"https://www.debian.org/security/2022/dsa-5128"},{"reference_url":"https://www.debian.org/security/2022/dsa-5131","reference_id":"dsa-5131","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-24T17:35:39Z/"}],"url":"https://www.debian.org/security/2022/dsa-5131"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2022/05/msg00017.html","reference_id":"msg00017.html","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-24T17:35:39Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2022/05/msg00017.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20220429-0006/","reference_id":"ntap-20220429-0006","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-24T17:35:39Z/"}],"url":"https://security.netapp.com/advisory/ntap-20220429-0006/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1435","reference_id":"RHSA-2022:1435","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1435"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1436","reference_id":"RHSA-2022:1436","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1436"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1437","reference_id":"RHSA-2022:1437","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1437"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1438","reference_id":"RHSA-2022:1438","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1438"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1439","reference_id":"RHSA-2022:1439","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1439"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1440","reference_id":"RHSA-2022:1440","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1440"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1441","reference_id":"RHSA-2022:1441","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1441"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1442","reference_id":"RHSA-2022:1442","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1442"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1443","reference_id":"RHSA-2022:1443","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1443"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1444","reference_id":"RHSA-2022:1444","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1444"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1445","reference_id":"RHSA-2022:1445","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1445"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1487","reference_id":"RHSA-2022:1487","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1487"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1488","reference_id":"RHSA-2022:1488","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1488"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1489","reference_id":"RHSA-2022:1489","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1489"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1490","reference_id":"RHSA-2022:1490","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1490"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1491","reference_id":"RHSA-2022:1491","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1491"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1492","reference_id":"RHSA-2022:1492","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1492"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1728","reference_id":"RHSA-2022:1728","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1728"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1729","reference_id":"RHSA-2022:1729","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1729"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:2137","reference_id":"RHSA-2022:2137","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:2137"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3136","reference_id":"RHSA-2023:3136","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3136"},{"reference_url":"https://usn.ubuntu.com/5388-1/","reference_id":"USN-5388-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5388-1/"},{"reference_url":"https://usn.ubuntu.com/5388-2/","reference_id":"USN-5388-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5388-2/"},{"reference_url":"https://usn.ubuntu.com/5546-1/","reference_id":"USN-5546-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5546-1/"},{"reference_url":"https://usn.ubuntu.com/5546-2/","reference_id":"USN-5546-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5546-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/427860?format=json","purl":"pkg:apk/alpine/openjdk15@15.0.7_p4-r0?arch=aarch64&distroversion=v3.15&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk15@15.0.7_p4-r0%3Farch=aarch64&distroversion=v3.15&reponame=community"}],"aliases":["CVE-2022-21426"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-hx4c-96gx-2fbq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/79486?format=json","vulnerability_id":"VCID-kngz-x6mk-fqer","summary":"OpenJDK: Improper ECDSA signature verification (Libraries, 8277233)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21449.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21449.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21449","reference_id":"","reference_type":"","scores":[{"value":"0.34335","scoring_system":"epss","scoring_elements":"0.96986","published_at":"2026-04-13T12:55:00Z"},{"value":"0.34335","scoring_system":"epss","scoring_elements":"0.96984","published_at":"2026-04-11T12:55:00Z"},{"value":"0.34898","scoring_system":"epss","scoring_elements":"0.97006","published_at":"2026-04-07T12:55:00Z"},{"value":"0.34898","scoring_system":"epss","scoring_elements":"0.97017","published_at":"2026-04-09T12:55:00Z"},{"value":"0.34898","scoring_system":"epss","scoring_elements":"0.97016","published_at":"2026-04-08T12:55:00Z"},{"value":"0.34898","scoring_system":"epss","scoring_elements":"0.97005","published_at":"2026-04-04T12:55:00Z"},{"value":"0.34898","scoring_system":"epss","scoring_elements":"0.97001","published_at":"2026-04-02T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21449"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21426","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21426"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21434","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21434"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21443","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21443"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21449","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21449"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21476","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21476"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21496","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21496"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"http://www.openwall.com/lists/oss-security/2022/04/29/1","reference_id":"1","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-24T13:53:54Z/"}],"url":"http://www.openwall.com/lists/oss-security/2022/04/29/1"},{"reference_url":"http://www.openwall.com/lists/oss-security/2022/04/30/1","reference_id":"1","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-24T13:53:54Z/"}],"url":"http://www.openwall.com/lists/oss-security/2022/04/30/1"},{"reference_url":"http://www.openwall.com/lists/oss-security/2022/05/01/1","reference_id":"1","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-24T13:53:54Z/"}],"url":"http://www.openwall.com/lists/oss-security/2022/05/01/1"},{"reference_url":"http://www.openwall.com/lists/oss-security/2022/05/02/1","reference_id":"1","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-24T13:53:54Z/"}],"url":"http://www.openwall.com/lists/oss-security/2022/05/02/1"},{"reference_url":"http://www.openwall.com/lists/oss-security/2022/04/28/2","reference_id":"2","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-24T13:53:54Z/"}],"url":"http://www.openwall.com/lists/oss-security/2022/04/28/2"},{"reference_url":"http://www.openwall.com/lists/oss-security/2022/04/30/2","reference_id":"2","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-24T13:53:54Z/"}],"url":"http://www.openwall.com/lists/oss-security/2022/04/30/2"},{"reference_url":"http://www.openwall.com/lists/oss-security/2022/05/01/2","reference_id":"2","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-24T13:53:54Z/"}],"url":"http://www.openwall.com/lists/oss-security/2022/05/01/2"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2075821","reference_id":"2075821","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2075821"},{"reference_url":"http://www.openwall.com/lists/oss-security/2022/04/28/3","reference_id":"3","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-24T13:53:54Z/"}],"url":"http://www.openwall.com/lists/oss-security/2022/04/28/3"},{"reference_url":"http://www.openwall.com/lists/oss-security/2022/04/30/3","reference_id":"3","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-24T13:53:54Z/"}],"url":"http://www.openwall.com/lists/oss-security/2022/04/30/3"},{"reference_url":"http://www.openwall.com/lists/oss-security/2022/04/28/4","reference_id":"4","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-24T13:53:54Z/"}],"url":"http://www.openwall.com/lists/oss-security/2022/04/28/4"},{"reference_url":"http://www.openwall.com/lists/oss-security/2022/04/30/4","reference_id":"4","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-24T13:53:54Z/"}],"url":"http://www.openwall.com/lists/oss-security/2022/04/30/4"},{"reference_url":"http://www.openwall.com/lists/oss-security/2022/04/28/5","reference_id":"5","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-24T13:53:54Z/"}],"url":"http://www.openwall.com/lists/oss-security/2022/04/28/5"},{"reference_url":"http://www.openwall.com/lists/oss-security/2022/04/28/6","reference_id":"6","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-24T13:53:54Z/"}],"url":"http://www.openwall.com/lists/oss-security/2022/04/28/6"},{"reference_url":"http://www.openwall.com/lists/oss-security/2022/04/28/7","reference_id":"7","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-24T13:53:54Z/"}],"url":"http://www.openwall.com/lists/oss-security/2022/04/28/7"},{"reference_url":"https://security.archlinux.org/AVG-2686","reference_id":"AVG-2686","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2686"},{"reference_url":"https://security.archlinux.org/AVG-2687","reference_id":"AVG-2687","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2687"},{"reference_url":"https://www.debian.org/security/2022/dsa-5128","reference_id":"dsa-5128","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-24T13:53:54Z/"}],"url":"https://www.debian.org/security/2022/dsa-5128"},{"reference_url":"https://www.debian.org/security/2022/dsa-5131","reference_id":"dsa-5131","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-24T13:53:54Z/"}],"url":"https://www.debian.org/security/2022/dsa-5131"},{"reference_url":"https://security.netapp.com/advisory/ntap-20220429-0006/","reference_id":"ntap-20220429-0006","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-24T13:53:54Z/"}],"url":"https://security.netapp.com/advisory/ntap-20220429-0006/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1436","reference_id":"RHSA-2022:1436","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1436"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1437","reference_id":"RHSA-2022:1437","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1437"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1445","reference_id":"RHSA-2022:1445","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1445"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1729","reference_id":"RHSA-2022:1729","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1729"},{"reference_url":"https://usn.ubuntu.com/5388-2/","reference_id":"USN-5388-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5388-2/"},{"reference_url":"https://usn.ubuntu.com/5546-1/","reference_id":"USN-5546-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5546-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/427860?format=json","purl":"pkg:apk/alpine/openjdk15@15.0.7_p4-r0?arch=aarch64&distroversion=v3.15&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk15@15.0.7_p4-r0%3Farch=aarch64&distroversion=v3.15&reponame=community"}],"aliases":["CVE-2022-21449"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kngz-x6mk-fqer"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/34373?format=json","vulnerability_id":"VCID-mumk-x95v-bfc8","summary":"Multiple vulnerabilities have been found in OpenJDK, the worst of which could result in denial of service.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21366.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21366.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21366","reference_id":"","reference_type":"","scores":[{"value":"0.00164","scoring_system":"epss","scoring_elements":"0.3747","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00164","scoring_system":"epss","scoring_elements":"0.37445","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00882","scoring_system":"epss","scoring_elements":"0.75391","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00882","scoring_system":"epss","scoring_elements":"0.75412","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00882","scoring_system":"epss","scoring_elements":"0.7539","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00882","scoring_system":"epss","scoring_elements":"0.75378","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00882","scoring_system":"epss","scoring_elements":"0.75338","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00882","scoring_system":"epss","scoring_elements":"0.75382","published_at":"2026-04-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21366"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21248","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21248"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21277","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21277"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21282","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21282"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21283","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21283"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21291","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21291"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21293","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21293"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21294","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21294"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21296","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21296"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21299","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21299"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21305","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21305"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21340","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21340"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21341","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21341"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21360","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21360"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21365","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21365"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21366","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21366"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2041789","reference_id":"2041789","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2041789"},{"reference_url":"https://security.gentoo.org/glsa/202209-05","reference_id":"GLSA-202209-05","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202209-05"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0161","reference_id":"RHSA-2022:0161","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0161"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0165","reference_id":"RHSA-2022:0165","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0165"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0166","reference_id":"RHSA-2022:0166","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0166"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0185","reference_id":"RHSA-2022:0185","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0185"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0204","reference_id":"RHSA-2022:0204","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0204"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0209","reference_id":"RHSA-2022:0209","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0209"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0211","reference_id":"RHSA-2022:0211","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0211"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0228","reference_id":"RHSA-2022:0228","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0228"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0229","reference_id":"RHSA-2022:0229","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0229"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0233","reference_id":"RHSA-2022:0233","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0233"},{"reference_url":"https://usn.ubuntu.com/5313-1/","reference_id":"USN-5313-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5313-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/427860?format=json","purl":"pkg:apk/alpine/openjdk15@15.0.7_p4-r0?arch=aarch64&distroversion=v3.15&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk15@15.0.7_p4-r0%3Farch=aarch64&distroversion=v3.15&reponame=community"}],"aliases":["CVE-2022-21366"],"risk_score":2.4,"exploitability":"0.5","weighted_severity":"4.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-mumk-x95v-bfc8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/34354?format=json","vulnerability_id":"VCID-ne6z-gg9f-qkcy","summary":"Multiple vulnerabilities have been found in OpenJDK, the worst of which could result in denial of service.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21282.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21282.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21282","reference_id":"","reference_type":"","scores":[{"value":"0.00133","scoring_system":"epss","scoring_elements":"0.33007","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00133","scoring_system":"epss","scoring_elements":"0.33041","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00133","scoring_system":"epss","scoring_elements":"0.32871","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00133","scoring_system":"epss","scoring_elements":"0.32918","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00133","scoring_system":"epss","scoring_elements":"0.32948","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00133","scoring_system":"epss","scoring_elements":"0.3295","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00133","scoring_system":"epss","scoring_elements":"0.32912","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00133","scoring_system":"epss","scoring_elements":"0.32887","published_at":"2026-04-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21282"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21248","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21248"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21277","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21277"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21282","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21282"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21283","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21283"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21291","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21291"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21293","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21293"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21294","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21294"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21296","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21296"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21299","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21299"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21305","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21305"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21340","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21340"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21341","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21341"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21360","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21360"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21365","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21365"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21366","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21366"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2041435","reference_id":"2041435","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2041435"},{"reference_url":"https://security.gentoo.org/glsa/202209-05","reference_id":"GLSA-202209-05","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202209-05"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0161","reference_id":"RHSA-2022:0161","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0161"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0165","reference_id":"RHSA-2022:0165","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0165"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0166","reference_id":"RHSA-2022:0166","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0166"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0185","reference_id":"RHSA-2022:0185","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0185"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0204","reference_id":"RHSA-2022:0204","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0204"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0209","reference_id":"RHSA-2022:0209","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0209"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0211","reference_id":"RHSA-2022:0211","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0211"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0228","reference_id":"RHSA-2022:0228","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0228"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0229","reference_id":"RHSA-2022:0229","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0229"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0233","reference_id":"RHSA-2022:0233","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0233"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0304","reference_id":"RHSA-2022:0304","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0304"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0305","reference_id":"RHSA-2022:0305","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0305"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0306","reference_id":"RHSA-2022:0306","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0306"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0307","reference_id":"RHSA-2022:0307","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0307"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0312","reference_id":"RHSA-2022:0312","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0312"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0317","reference_id":"RHSA-2022:0317","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0317"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0321","reference_id":"RHSA-2022:0321","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0321"},{"reference_url":"https://usn.ubuntu.com/5313-1/","reference_id":"USN-5313-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5313-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/427860?format=json","purl":"pkg:apk/alpine/openjdk15@15.0.7_p4-r0?arch=aarch64&distroversion=v3.15&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk15@15.0.7_p4-r0%3Farch=aarch64&distroversion=v3.15&reponame=community"}],"aliases":["CVE-2022-21282"],"risk_score":2.4,"exploitability":"0.5","weighted_severity":"4.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ne6z-gg9f-qkcy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/34362?format=json","vulnerability_id":"VCID-rgbz-akft-f7e6","summary":"Multiple vulnerabilities have been found in OpenJDK, the worst of which could result in denial of service.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21296.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21296.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21296","reference_id":"","reference_type":"","scores":[{"value":"0.00133","scoring_system":"epss","scoring_elements":"0.33007","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00133","scoring_system":"epss","scoring_elements":"0.33041","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00133","scoring_system":"epss","scoring_elements":"0.32871","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00133","scoring_system":"epss","scoring_elements":"0.32918","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00133","scoring_system":"epss","scoring_elements":"0.32948","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00133","scoring_system":"epss","scoring_elements":"0.3295","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00133","scoring_system":"epss","scoring_elements":"0.32912","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00133","scoring_system":"epss","scoring_elements":"0.32887","published_at":"2026-04-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21296"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21248","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21248"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21277","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21277"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21282","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21282"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21283","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21283"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21291","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21291"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21293","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21293"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21294","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21294"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21296","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21296"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21299","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21299"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21305","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21305"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21340","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21340"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21341","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21341"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21360","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21360"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21365","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21365"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21366","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21366"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2041439","reference_id":"2041439","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2041439"},{"reference_url":"https://security.gentoo.org/glsa/202209-05","reference_id":"GLSA-202209-05","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202209-05"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0161","reference_id":"RHSA-2022:0161","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0161"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0165","reference_id":"RHSA-2022:0165","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0165"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0166","reference_id":"RHSA-2022:0166","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0166"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0185","reference_id":"RHSA-2022:0185","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0185"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0204","reference_id":"RHSA-2022:0204","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0204"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0209","reference_id":"RHSA-2022:0209","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0209"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0211","reference_id":"RHSA-2022:0211","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0211"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0228","reference_id":"RHSA-2022:0228","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0228"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0229","reference_id":"RHSA-2022:0229","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0229"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0233","reference_id":"RHSA-2022:0233","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0233"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0304","reference_id":"RHSA-2022:0304","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0304"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0305","reference_id":"RHSA-2022:0305","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0305"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0306","reference_id":"RHSA-2022:0306","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0306"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0307","reference_id":"RHSA-2022:0307","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0307"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0312","reference_id":"RHSA-2022:0312","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0312"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0317","reference_id":"RHSA-2022:0317","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0317"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0321","reference_id":"RHSA-2022:0321","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0321"},{"reference_url":"https://usn.ubuntu.com/5313-1/","reference_id":"USN-5313-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5313-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/427860?format=json","purl":"pkg:apk/alpine/openjdk15@15.0.7_p4-r0?arch=aarch64&distroversion=v3.15&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk15@15.0.7_p4-r0%3Farch=aarch64&distroversion=v3.15&reponame=community"}],"aliases":["CVE-2022-21296"],"risk_score":2.4,"exploitability":"0.5","weighted_severity":"4.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rgbz-akft-f7e6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/34365?format=json","vulnerability_id":"VCID-shg1-t3nh-67hk","summary":"Multiple vulnerabilities have been found in OpenJDK, the worst of which could result in denial of service.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21305.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21305.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21305","reference_id":"","reference_type":"","scores":[{"value":"0.00231","scoring_system":"epss","scoring_elements":"0.45854","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00231","scoring_system":"epss","scoring_elements":"0.45875","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00231","scoring_system":"epss","scoring_elements":"0.45825","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00231","scoring_system":"epss","scoring_elements":"0.45881","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00231","scoring_system":"epss","scoring_elements":"0.45878","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00231","scoring_system":"epss","scoring_elements":"0.459","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00231","scoring_system":"epss","scoring_elements":"0.4587","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00231","scoring_system":"epss","scoring_elements":"0.45877","published_at":"2026-04-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21305"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21248","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21248"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21277","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21277"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21282","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21282"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21283","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21283"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21291","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21291"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21293","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21293"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21294","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21294"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21296","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21296"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21299","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21299"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21305","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21305"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21340","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21340"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21341","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21341"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21360","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21360"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21365","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21365"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21366","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21366"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2041878","reference_id":"2041878","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2041878"},{"reference_url":"https://security.gentoo.org/glsa/202209-05","reference_id":"GLSA-202209-05","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202209-05"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0161","reference_id":"RHSA-2022:0161","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0161"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0165","reference_id":"RHSA-2022:0165","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0165"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0166","reference_id":"RHSA-2022:0166","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0166"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0185","reference_id":"RHSA-2022:0185","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0185"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0204","reference_id":"RHSA-2022:0204","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0204"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0209","reference_id":"RHSA-2022:0209","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0209"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0211","reference_id":"RHSA-2022:0211","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0211"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0228","reference_id":"RHSA-2022:0228","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0228"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0229","reference_id":"RHSA-2022:0229","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0229"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0233","reference_id":"RHSA-2022:0233","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0233"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0304","reference_id":"RHSA-2022:0304","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0304"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0305","reference_id":"RHSA-2022:0305","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0305"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0306","reference_id":"RHSA-2022:0306","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0306"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0307","reference_id":"RHSA-2022:0307","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0307"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0312","reference_id":"RHSA-2022:0312","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0312"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0317","reference_id":"RHSA-2022:0317","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0317"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0321","reference_id":"RHSA-2022:0321","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0321"},{"reference_url":"https://usn.ubuntu.com/5313-1/","reference_id":"USN-5313-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5313-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/427860?format=json","purl":"pkg:apk/alpine/openjdk15@15.0.7_p4-r0?arch=aarch64&distroversion=v3.15&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk15@15.0.7_p4-r0%3Farch=aarch64&distroversion=v3.15&reponame=community"}],"aliases":["CVE-2022-21305"],"risk_score":2.4,"exploitability":"0.5","weighted_severity":"4.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-shg1-t3nh-67hk"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/34357?format=json","vulnerability_id":"VCID-tna8-m3b1-nkhn","summary":"Multiple vulnerabilities have been found in OpenJDK, the worst of which could result in denial of service.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21291.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21291.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21291","reference_id":"","reference_type":"","scores":[{"value":"0.00126","scoring_system":"epss","scoring_elements":"0.32057","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00126","scoring_system":"epss","scoring_elements":"0.32017","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00133","scoring_system":"epss","scoring_elements":"0.32861","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00133","scoring_system":"epss","scoring_elements":"0.32862","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00133","scoring_system":"epss","scoring_elements":"0.32824","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00133","scoring_system":"epss","scoring_elements":"0.32799","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00133","scoring_system":"epss","scoring_elements":"0.32785","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00133","scoring_system":"epss","scoring_elements":"0.32832","published_at":"2026-04-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21291"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21248","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21248"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21277","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21277"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21282","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21282"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21283","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21283"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21291","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21291"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21293","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21293"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21294","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21294"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21296","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21296"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21299","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21299"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21305","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21305"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21340","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21340"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21341","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21341"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21360","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21360"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21365","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21365"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21366","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21366"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2041831","reference_id":"2041831","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2041831"},{"reference_url":"https://security.gentoo.org/glsa/202209-05","reference_id":"GLSA-202209-05","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202209-05"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0161","reference_id":"RHSA-2022:0161","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0161"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0165","reference_id":"RHSA-2022:0165","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0165"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0166","reference_id":"RHSA-2022:0166","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0166"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0185","reference_id":"RHSA-2022:0185","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0185"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0204","reference_id":"RHSA-2022:0204","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0204"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0209","reference_id":"RHSA-2022:0209","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0209"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0211","reference_id":"RHSA-2022:0211","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0211"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0228","reference_id":"RHSA-2022:0228","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0228"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0229","reference_id":"RHSA-2022:0229","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0229"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0233","reference_id":"RHSA-2022:0233","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0233"},{"reference_url":"https://usn.ubuntu.com/5313-1/","reference_id":"USN-5313-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5313-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/427860?format=json","purl":"pkg:apk/alpine/openjdk15@15.0.7_p4-r0?arch=aarch64&distroversion=v3.15&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk15@15.0.7_p4-r0%3Farch=aarch64&distroversion=v3.15&reponame=community"}],"aliases":["CVE-2022-21291"],"risk_score":2.4,"exploitability":"0.5","weighted_severity":"4.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-tna8-m3b1-nkhn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/34367?format=json","vulnerability_id":"VCID-tr4r-wm4s-auej","summary":"Multiple vulnerabilities have been found in OpenJDK, the worst of which could result in denial of service.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21340.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21340.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21340","reference_id":"","reference_type":"","scores":[{"value":"0.06446","scoring_system":"epss","scoring_elements":"0.91022","published_at":"2026-04-02T12:55:00Z"},{"value":"0.06446","scoring_system":"epss","scoring_elements":"0.91031","published_at":"2026-04-04T12:55:00Z"},{"value":"0.06446","scoring_system":"epss","scoring_elements":"0.9104","published_at":"2026-04-07T12:55:00Z"},{"value":"0.06446","scoring_system":"epss","scoring_elements":"0.91052","published_at":"2026-04-08T12:55:00Z"},{"value":"0.06446","scoring_system":"epss","scoring_elements":"0.91059","published_at":"2026-04-09T12:55:00Z"},{"value":"0.06446","scoring_system":"epss","scoring_elements":"0.91067","published_at":"2026-04-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21340"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21248","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21248"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21277","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21277"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21282","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21282"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21283","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21283"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21291","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21291"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21293","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21293"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21294","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21294"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21296","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21296"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21299","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21299"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21305","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21305"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21340","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21340"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21341","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21341"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21360","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21360"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21365","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21365"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21366","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21366"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2041884","reference_id":"2041884","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2041884"},{"reference_url":"https://security.gentoo.org/glsa/202209-05","reference_id":"GLSA-202209-05","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202209-05"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0161","reference_id":"RHSA-2022:0161","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0161"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0165","reference_id":"RHSA-2022:0165","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0165"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0166","reference_id":"RHSA-2022:0166","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0166"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0185","reference_id":"RHSA-2022:0185","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0185"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0204","reference_id":"RHSA-2022:0204","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0204"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0209","reference_id":"RHSA-2022:0209","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0209"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0211","reference_id":"RHSA-2022:0211","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0211"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0228","reference_id":"RHSA-2022:0228","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0228"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0229","reference_id":"RHSA-2022:0229","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0229"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0233","reference_id":"RHSA-2022:0233","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0233"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0304","reference_id":"RHSA-2022:0304","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0304"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0305","reference_id":"RHSA-2022:0305","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0305"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0306","reference_id":"RHSA-2022:0306","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0306"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0307","reference_id":"RHSA-2022:0307","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0307"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0312","reference_id":"RHSA-2022:0312","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0312"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0317","reference_id":"RHSA-2022:0317","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0317"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0321","reference_id":"RHSA-2022:0321","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0321"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0968","reference_id":"RHSA-2022:0968","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0968"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0969","reference_id":"RHSA-2022:0969","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0969"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0970","reference_id":"RHSA-2022:0970","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0970"},{"reference_url":"https://usn.ubuntu.com/5313-1/","reference_id":"USN-5313-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5313-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/427860?format=json","purl":"pkg:apk/alpine/openjdk15@15.0.7_p4-r0?arch=aarch64&distroversion=v3.15&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk15@15.0.7_p4-r0%3Farch=aarch64&distroversion=v3.15&reponame=community"}],"aliases":["CVE-2022-21340"],"risk_score":2.4,"exploitability":"0.5","weighted_severity":"4.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-tr4r-wm4s-auej"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/34363?format=json","vulnerability_id":"VCID-ws4h-edpn-nudd","summary":"Multiple vulnerabilities have been found in OpenJDK, the worst of which could result in denial of service.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21299.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21299.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21299","reference_id":"","reference_type":"","scores":[{"value":"0.00097","scoring_system":"epss","scoring_elements":"0.26898","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00097","scoring_system":"epss","scoring_elements":"0.26933","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00097","scoring_system":"epss","scoring_elements":"0.2672","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00097","scoring_system":"epss","scoring_elements":"0.26789","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00097","scoring_system":"epss","scoring_elements":"0.26838","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00097","scoring_system":"epss","scoring_elements":"0.26841","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00097","scoring_system":"epss","scoring_elements":"0.26796","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00097","scoring_system":"epss","scoring_elements":"0.26739","published_at":"2026-04-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21299"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21248","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21248"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21277","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21277"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21282","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21282"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21283","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21283"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21291","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21291"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21293","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21293"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21294","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21294"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21296","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21296"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21299","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21299"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21305","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21305"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21340","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21340"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21341","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21341"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21360","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21360"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21365","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21365"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21366","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21366"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2041472","reference_id":"2041472","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2041472"},{"reference_url":"https://security.gentoo.org/glsa/202209-05","reference_id":"GLSA-202209-05","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202209-05"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0161","reference_id":"RHSA-2022:0161","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0161"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0165","reference_id":"RHSA-2022:0165","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0165"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0166","reference_id":"RHSA-2022:0166","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0166"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0185","reference_id":"RHSA-2022:0185","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0185"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0204","reference_id":"RHSA-2022:0204","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0204"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0209","reference_id":"RHSA-2022:0209","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0209"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0211","reference_id":"RHSA-2022:0211","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0211"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0228","reference_id":"RHSA-2022:0228","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0228"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0229","reference_id":"RHSA-2022:0229","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0229"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0233","reference_id":"RHSA-2022:0233","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0233"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0304","reference_id":"RHSA-2022:0304","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0304"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0305","reference_id":"RHSA-2022:0305","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0305"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0306","reference_id":"RHSA-2022:0306","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0306"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0307","reference_id":"RHSA-2022:0307","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0307"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0312","reference_id":"RHSA-2022:0312","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0312"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0317","reference_id":"RHSA-2022:0317","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0317"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0321","reference_id":"RHSA-2022:0321","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0321"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:4918","reference_id":"RHSA-2022:4918","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:4918"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:4919","reference_id":"RHSA-2022:4919","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:4919"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:4922","reference_id":"RHSA-2022:4922","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:4922"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:4957","reference_id":"RHSA-2022:4957","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:4957"},{"reference_url":"https://usn.ubuntu.com/5313-1/","reference_id":"USN-5313-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5313-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/427860?format=json","purl":"pkg:apk/alpine/openjdk15@15.0.7_p4-r0?arch=aarch64&distroversion=v3.15&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk15@15.0.7_p4-r0%3Farch=aarch64&distroversion=v3.15&reponame=community"}],"aliases":["CVE-2022-21299"],"risk_score":2.4,"exploitability":"0.5","weighted_severity":"4.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ws4h-edpn-nudd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/34351?format=json","vulnerability_id":"VCID-xfqx-d3jw-yuhn","summary":"Multiple vulnerabilities have been found in OpenJDK, the worst of which could result in denial of service.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21248.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21248.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21248","reference_id":"","reference_type":"","scores":[{"value":"0.00083","scoring_system":"epss","scoring_elements":"0.24337","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00083","scoring_system":"epss","scoring_elements":"0.2418","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00083","scoring_system":"epss","scoring_elements":"0.2437","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00083","scoring_system":"epss","scoring_elements":"0.24153","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00083","scoring_system":"epss","scoring_elements":"0.2422","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00083","scoring_system":"epss","scoring_elements":"0.24263","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00083","scoring_system":"epss","scoring_elements":"0.2428","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00083","scoring_system":"epss","scoring_elements":"0.24237","published_at":"2026-04-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21248"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21248","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21248"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21277","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21277"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21282","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21282"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21283","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21283"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21291","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21291"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21293","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21293"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21294","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21294"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21296","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21296"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21299","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21299"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21305","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21305"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21340","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21340"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21341","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21341"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21360","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21360"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21365","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21365"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21366","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21366"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2041801","reference_id":"2041801","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2041801"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2DIN3L6L3SVZK75CKW2GPSU4HIGZR7XG/","reference_id":"2DIN3L6L3SVZK75CKW2GPSU4HIGZR7XG","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-24T17:45:14Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2DIN3L6L3SVZK75CKW2GPSU4HIGZR7XG/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4J2N4FNXW6JKJBWUZH6SNI2UHCZXQXCY/","reference_id":"4J2N4FNXW6JKJBWUZH6SNI2UHCZXQXCY","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-24T17:45:14Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4J2N4FNXW6JKJBWUZH6SNI2UHCZXQXCY/"},{"reference_url":"https://www.debian.org/security/2022/dsa-5057","reference_id":"dsa-5057","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-24T17:45:14Z/"}],"url":"https://www.debian.org/security/2022/dsa-5057"},{"reference_url":"https://www.debian.org/security/2022/dsa-5058","reference_id":"dsa-5058","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-24T17:45:14Z/"}],"url":"https://www.debian.org/security/2022/dsa-5058"},{"reference_url":"https://security.gentoo.org/glsa/202209-05","reference_id":"GLSA-202209-05","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-24T17:45:14Z/"}],"url":"https://security.gentoo.org/glsa/202209-05"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KPIWQ6DL5IPOT54UBWTISG5T24FQJ7MN/","reference_id":"KPIWQ6DL5IPOT54UBWTISG5T24FQJ7MN","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-24T17:45:14Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KPIWQ6DL5IPOT54UBWTISG5T24FQJ7MN/"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2022/02/msg00011.html","reference_id":"msg00011.html","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-24T17:45:14Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2022/02/msg00011.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20220121-0007/","reference_id":"ntap-20220121-0007","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-24T17:45:14Z/"}],"url":"https://security.netapp.com/advisory/ntap-20220121-0007/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0161","reference_id":"RHSA-2022:0161","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0161"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0165","reference_id":"RHSA-2022:0165","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0165"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0166","reference_id":"RHSA-2022:0166","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0166"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0185","reference_id":"RHSA-2022:0185","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0185"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0204","reference_id":"RHSA-2022:0204","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0204"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0209","reference_id":"RHSA-2022:0209","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0209"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0211","reference_id":"RHSA-2022:0211","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0211"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0228","reference_id":"RHSA-2022:0228","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0228"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0229","reference_id":"RHSA-2022:0229","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0229"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0233","reference_id":"RHSA-2022:0233","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0233"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0304","reference_id":"RHSA-2022:0304","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0304"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0305","reference_id":"RHSA-2022:0305","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0305"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0306","reference_id":"RHSA-2022:0306","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0306"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0307","reference_id":"RHSA-2022:0307","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0307"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0312","reference_id":"RHSA-2022:0312","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0312"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0317","reference_id":"RHSA-2022:0317","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0317"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0321","reference_id":"RHSA-2022:0321","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0321"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0968","reference_id":"RHSA-2022:0968","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0968"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0969","reference_id":"RHSA-2022:0969","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0969"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0970","reference_id":"RHSA-2022:0970","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0970"},{"reference_url":"https://usn.ubuntu.com/5313-1/","reference_id":"USN-5313-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5313-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/427860?format=json","purl":"pkg:apk/alpine/openjdk15@15.0.7_p4-r0?arch=aarch64&distroversion=v3.15&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk15@15.0.7_p4-r0%3Farch=aarch64&distroversion=v3.15&reponame=community"}],"aliases":["CVE-2022-21248"],"risk_score":1.6,"exploitability":"0.5","weighted_severity":"3.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xfqx-d3jw-yuhn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/79489?format=json","vulnerability_id":"VCID-y5qu-j3wt-wuej","summary":"OpenJDK: URI parsing inconsistencies (JNDI, 8278972)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21496.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21496.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21496","reference_id":"","reference_type":"","scores":[{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.29229","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.29303","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.29176","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.29352","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.29164","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.29228","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.29269","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.29275","published_at":"2026-04-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21496"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21426","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21426"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21434","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21434"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21443","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21443"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21449","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21449"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21476","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21476"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21496","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21496"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2075849","reference_id":"2075849","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2075849"},{"reference_url":"https://security.archlinux.org/AVG-2686","reference_id":"AVG-2686","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2686"},{"reference_url":"https://security.archlinux.org/AVG-2687","reference_id":"AVG-2687","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2687"},{"reference_url":"https://security.archlinux.org/AVG-2688","reference_id":"AVG-2688","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2688"},{"reference_url":"https://security.archlinux.org/AVG-2689","reference_id":"AVG-2689","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2689"},{"reference_url":"https://www.debian.org/security/2022/dsa-5128","reference_id":"dsa-5128","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-24T13:53:50Z/"}],"url":"https://www.debian.org/security/2022/dsa-5128"},{"reference_url":"https://www.debian.org/security/2022/dsa-5131","reference_id":"dsa-5131","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-24T13:53:50Z/"}],"url":"https://www.debian.org/security/2022/dsa-5131"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2022/05/msg00017.html","reference_id":"msg00017.html","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-24T13:53:50Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2022/05/msg00017.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20220429-0006/","reference_id":"ntap-20220429-0006","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-24T13:53:50Z/"}],"url":"https://security.netapp.com/advisory/ntap-20220429-0006/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1435","reference_id":"RHSA-2022:1435","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1435"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1436","reference_id":"RHSA-2022:1436","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1436"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1437","reference_id":"RHSA-2022:1437","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1437"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1438","reference_id":"RHSA-2022:1438","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1438"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1439","reference_id":"RHSA-2022:1439","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1439"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1440","reference_id":"RHSA-2022:1440","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1440"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1441","reference_id":"RHSA-2022:1441","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1441"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1442","reference_id":"RHSA-2022:1442","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1442"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1443","reference_id":"RHSA-2022:1443","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1443"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1444","reference_id":"RHSA-2022:1444","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1444"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1445","reference_id":"RHSA-2022:1445","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1445"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1487","reference_id":"RHSA-2022:1487","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1487"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1488","reference_id":"RHSA-2022:1488","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1488"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1489","reference_id":"RHSA-2022:1489","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1489"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1490","reference_id":"RHSA-2022:1490","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1490"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1491","reference_id":"RHSA-2022:1491","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1491"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1492","reference_id":"RHSA-2022:1492","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1492"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1728","reference_id":"RHSA-2022:1728","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1728"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1729","reference_id":"RHSA-2022:1729","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1729"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:2137","reference_id":"RHSA-2022:2137","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:2137"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:4957","reference_id":"RHSA-2022:4957","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:4957"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:4959","reference_id":"RHSA-2022:4959","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:4959"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:5837","reference_id":"RHSA-2022:5837","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:5837"},{"reference_url":"https://usn.ubuntu.com/5388-1/","reference_id":"USN-5388-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5388-1/"},{"reference_url":"https://usn.ubuntu.com/5388-2/","reference_id":"USN-5388-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5388-2/"},{"reference_url":"https://usn.ubuntu.com/5546-1/","reference_id":"USN-5546-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5546-1/"},{"reference_url":"https://usn.ubuntu.com/5546-2/","reference_id":"USN-5546-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5546-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/427860?format=json","purl":"pkg:apk/alpine/openjdk15@15.0.7_p4-r0?arch=aarch64&distroversion=v3.15&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk15@15.0.7_p4-r0%3Farch=aarch64&distroversion=v3.15&reponame=community"}],"aliases":["CVE-2022-21496"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-y5qu-j3wt-wuej"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/79487?format=json","vulnerability_id":"VCID-zh9v-47ue-p7ep","summary":"OpenJDK: Improper object-to-string conversion in AnnotationInvocationHandler (Libraries, 8277672)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21434.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21434.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21434","reference_id":"","reference_type":"","scores":[{"value":"0.00108","scoring_system":"epss","scoring_elements":"0.29036","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00108","scoring_system":"epss","scoring_elements":"0.2911","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00108","scoring_system":"epss","scoring_elements":"0.2899","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00108","scoring_system":"epss","scoring_elements":"0.2904","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00108","scoring_system":"epss","scoring_elements":"0.29084","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00108","scoring_system":"epss","scoring_elements":"0.29078","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00108","scoring_system":"epss","scoring_elements":"0.29161","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00108","scoring_system":"epss","scoring_elements":"0.28972","published_at":"2026-04-07T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21434"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21426","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21426"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21434","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21434"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21443","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21443"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21449","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21449"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21476","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21476"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21496","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21496"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2075836","reference_id":"2075836","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2075836"},{"reference_url":"https://security.archlinux.org/AVG-2686","reference_id":"AVG-2686","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2686"},{"reference_url":"https://security.archlinux.org/AVG-2687","reference_id":"AVG-2687","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2687"},{"reference_url":"https://security.archlinux.org/AVG-2688","reference_id":"AVG-2688","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2688"},{"reference_url":"https://security.archlinux.org/AVG-2689","reference_id":"AVG-2689","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2689"},{"reference_url":"https://www.debian.org/security/2022/dsa-5128","reference_id":"dsa-5128","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-02T19:51:37Z/"}],"url":"https://www.debian.org/security/2022/dsa-5128"},{"reference_url":"https://www.debian.org/security/2022/dsa-5131","reference_id":"dsa-5131","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-02T19:51:37Z/"}],"url":"https://www.debian.org/security/2022/dsa-5131"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2022/05/msg00017.html","reference_id":"msg00017.html","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-02T19:51:37Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2022/05/msg00017.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20220429-0006/","reference_id":"ntap-20220429-0006","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-02T19:51:37Z/"}],"url":"https://security.netapp.com/advisory/ntap-20220429-0006/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1435","reference_id":"RHSA-2022:1435","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1435"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1436","reference_id":"RHSA-2022:1436","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1436"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1437","reference_id":"RHSA-2022:1437","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1437"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1438","reference_id":"RHSA-2022:1438","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1438"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1439","reference_id":"RHSA-2022:1439","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1439"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1440","reference_id":"RHSA-2022:1440","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1440"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1441","reference_id":"RHSA-2022:1441","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1441"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1442","reference_id":"RHSA-2022:1442","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1442"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1443","reference_id":"RHSA-2022:1443","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1443"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1444","reference_id":"RHSA-2022:1444","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1444"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1445","reference_id":"RHSA-2022:1445","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1445"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1487","reference_id":"RHSA-2022:1487","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1487"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1488","reference_id":"RHSA-2022:1488","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1488"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1489","reference_id":"RHSA-2022:1489","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1489"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1490","reference_id":"RHSA-2022:1490","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1490"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1491","reference_id":"RHSA-2022:1491","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1491"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1492","reference_id":"RHSA-2022:1492","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1492"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1728","reference_id":"RHSA-2022:1728","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1728"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1729","reference_id":"RHSA-2022:1729","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1729"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:2137","reference_id":"RHSA-2022:2137","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:2137"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:4957","reference_id":"RHSA-2022:4957","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:4957"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:4959","reference_id":"RHSA-2022:4959","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:4959"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:5837","reference_id":"RHSA-2022:5837","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:5837"},{"reference_url":"https://usn.ubuntu.com/5388-1/","reference_id":"USN-5388-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5388-1/"},{"reference_url":"https://usn.ubuntu.com/5388-2/","reference_id":"USN-5388-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5388-2/"},{"reference_url":"https://usn.ubuntu.com/5546-1/","reference_id":"USN-5546-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5546-1/"},{"reference_url":"https://usn.ubuntu.com/5546-2/","reference_id":"USN-5546-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5546-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/427860?format=json","purl":"pkg:apk/alpine/openjdk15@15.0.7_p4-r0?arch=aarch64&distroversion=v3.15&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk15@15.0.7_p4-r0%3Farch=aarch64&distroversion=v3.15&reponame=community"}],"aliases":["CVE-2022-21434"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zh9v-47ue-p7ep"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/34353?format=json","vulnerability_id":"VCID-ztx2-xh6v-nke1","summary":"Multiple vulnerabilities have been found in OpenJDK, the worst of which could result in denial of service.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21277.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21277.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21277","reference_id":"","reference_type":"","scores":[{"value":"0.00164","scoring_system":"epss","scoring_elements":"0.3747","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00164","scoring_system":"epss","scoring_elements":"0.37445","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00882","scoring_system":"epss","scoring_elements":"0.75391","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00882","scoring_system":"epss","scoring_elements":"0.75412","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00882","scoring_system":"epss","scoring_elements":"0.7539","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00882","scoring_system":"epss","scoring_elements":"0.75378","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00882","scoring_system":"epss","scoring_elements":"0.75338","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00882","scoring_system":"epss","scoring_elements":"0.75382","published_at":"2026-04-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21277"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21248","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21248"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21277","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21277"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21282","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21282"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21283","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21283"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21291","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21291"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21293","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21293"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21294","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21294"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21296","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21296"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21299","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21299"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21305","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21305"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21340","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21340"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21341","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21341"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21360","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21360"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21365","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21365"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21366","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21366"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2041479","reference_id":"2041479","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2041479"},{"reference_url":"https://security.gentoo.org/glsa/202209-05","reference_id":"GLSA-202209-05","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202209-05"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0161","reference_id":"RHSA-2022:0161","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0161"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0165","reference_id":"RHSA-2022:0165","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0165"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0166","reference_id":"RHSA-2022:0166","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0166"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0185","reference_id":"RHSA-2022:0185","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0185"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0204","reference_id":"RHSA-2022:0204","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0204"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0209","reference_id":"RHSA-2022:0209","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0209"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0211","reference_id":"RHSA-2022:0211","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0211"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0228","reference_id":"RHSA-2022:0228","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0228"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0229","reference_id":"RHSA-2022:0229","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0229"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0233","reference_id":"RHSA-2022:0233","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0233"},{"reference_url":"https://usn.ubuntu.com/5313-1/","reference_id":"USN-5313-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5313-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/427860?format=json","purl":"pkg:apk/alpine/openjdk15@15.0.7_p4-r0?arch=aarch64&distroversion=v3.15&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk15@15.0.7_p4-r0%3Farch=aarch64&distroversion=v3.15&reponame=community"}],"aliases":["CVE-2022-21277"],"risk_score":2.4,"exploitability":"0.5","weighted_severity":"4.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ztx2-xh6v-nke1"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk15@15.0.7_p4-r0%3Farch=aarch64&distroversion=v3.15&reponame=community"}