{"url":"http://public2.vulnerablecode.io/api/packages/515648?format=json","purl":"pkg:deb/debian/trafficserver@6.2.0-1~bpo8%2B1","type":"deb","namespace":"debian","name":"trafficserver","version":"6.2.0-1~bpo8+1","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"9.2.5+ds-0+deb12u4","latest_non_vulnerable_version":"9.2.5+ds-0+deb12u4","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103176?format=json","vulnerability_id":"VCID-22mh-dhgq-1qbq","summary":"Invalid Accept-Encoding header can cause Apache Traffic Server to fail cache lookup and force forwarding requests.  This issue affects Apache Traffic Server: from 8.0.0 through 8.1.10, from 9.0.0 through 9.2.4.  Users are recommended to upgrade to version 8.1.11 or 9.2.5, which fixes the issue.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-35296","reference_id":"","reference_type":"","scores":[{"value":"0.00121","scoring_system":"epss","scoring_elements":"0.30709","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00121","scoring_system":"epss","scoring_elements":"0.30645","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00121","scoring_system":"epss","scoring_elements":"0.30662","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00121","scoring_system":"epss","scoring_elements":"0.30743","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00121","scoring_system":"epss","scoring_elements":"0.30677","published_at":"2026-06-07T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-35296"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-35296","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-35296"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1077141","reference_id":"1077141","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1077141"},{"reference_url":"https://lists.apache.org/thread/c4mcmpblgl8kkmyt56t23543gp8v56m0","reference_id":"c4mcmpblgl8kkmyt56t23543gp8v56m0","reference_type":"","scores":[{"value":"8.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-26T14:01:18Z/"}],"url":"https://lists.apache.org/thread/c4mcmpblgl8kkmyt56t23543gp8v56m0"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/195983?format=json","purl":"pkg:deb/debian/trafficserver@9.2.5%2Bds-0%2Bdeb12u4","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@9.2.5%252Bds-0%252Bdeb12u4"}],"aliases":["CVE-2024-35296"],"risk_score":3.7,"exploitability":"0.5","weighted_severity":"7.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-22mh-dhgq-1qbq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103157?format=json","vulnerability_id":"VCID-2kvz-wm9u-53bd","summary":"Improper Input Validation vulnerability in HTTP/2 request validation of Apache Traffic Server allows an attacker to create smuggle or cache poison attacks. This issue affects Apache Traffic Server 8.0.0 to 9.1.2.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-25763","reference_id":"","reference_type":"","scores":[{"value":"0.01089","scoring_system":"epss","scoring_elements":"0.78265","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01089","scoring_system":"epss","scoring_elements":"0.7829","published_at":"2026-06-05T12:55:00Z"},{"value":"0.01089","scoring_system":"epss","scoring_elements":"0.78298","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01089","scoring_system":"epss","scoring_elements":"0.78288","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01089","scoring_system":"epss","scoring_elements":"0.78276","published_at":"2026-06-08T12:55:00Z"},{"value":"0.01089","scoring_system":"epss","scoring_elements":"0.78294","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-25763"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37150","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37150"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-25763","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-25763"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28129","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28129"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31778","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31778"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31779","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31779"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31780","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31780"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CJ67IWD5PRJUOIYIDJRUG3UMS2UF4X4J/","reference_id":"CJ67IWD5PRJUOIYIDJRUG3UMS2UF4X4J","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-20T17:58:52Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CJ67IWD5PRJUOIYIDJRUG3UMS2UF4X4J/"},{"reference_url":"https://www.debian.org/security/2022/dsa-5206","reference_id":"dsa-5206","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-20T17:58:52Z/"}],"url":"https://www.debian.org/security/2022/dsa-5206"},{"reference_url":"https://lists.apache.org/thread/rc64lwbdgrkv674koc3zl1sljr9vwg21","reference_id":"rc64lwbdgrkv674koc3zl1sljr9vwg21","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-20T17:58:52Z/"}],"url":"https://lists.apache.org/thread/rc64lwbdgrkv674koc3zl1sljr9vwg21"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZCSBQBYPOZSWS5LCOAQ6LJLRLXFIAW5A/","reference_id":"ZCSBQBYPOZSWS5LCOAQ6LJLRLXFIAW5A","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-20T17:58:52Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZCSBQBYPOZSWS5LCOAQ6LJLRLXFIAW5A/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/195982?format=json","purl":"pkg:deb/debian/trafficserver@8.1.10%2Bds-1~deb11u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7cx9-r4vs-jycb"},{"vulnerability":"VCID-9and-qdyn-ryh8"},{"vulnerability":"VCID-g4ca-xg28-j7a3"},{"vulnerability":"VCID-pamq-mbf9-5yd5"},{"vulnerability":"VCID-pswv-yvhe-9ubs"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qjzn-d1sw-13gk"},{"vulnerability":"VCID-rtzu-8w8v-wbhj"},{"vulnerability":"VCID-sq5z-yfbm-cffs"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-w96r-ryuy-bbca"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.1.10%252Bds-1~deb11u1"}],"aliases":["CVE-2022-25763"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"6.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-2kvz-wm9u-53bd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103146?format=json","vulnerability_id":"VCID-31ru-728d-7qhd","summary":"Improper input validation vulnerability in header parsing of Apache Traffic Server allows an attacker to smuggle requests. This issue affects Apache Traffic Server 8.0.0 to 8.1.2 and 9.0.0 to 9.1.0.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-37147","reference_id":"","reference_type":"","scores":[{"value":"0.0089","scoring_system":"epss","scoring_elements":"0.75905","published_at":"2026-06-04T12:55:00Z"},{"value":"0.0089","scoring_system":"epss","scoring_elements":"0.75932","published_at":"2026-06-05T12:55:00Z"},{"value":"0.0089","scoring_system":"epss","scoring_elements":"0.75931","published_at":"2026-06-06T12:55:00Z"},{"value":"0.0089","scoring_system":"epss","scoring_elements":"0.75923","published_at":"2026-06-07T12:55:00Z"},{"value":"0.0089","scoring_system":"epss","scoring_elements":"0.75909","published_at":"2026-06-08T12:55:00Z"},{"value":"0.0089","scoring_system":"epss","scoring_elements":"0.75934","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-37147"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37147","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37147"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37148","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37148"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37149","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37149"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-38161","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-38161"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44040","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44040"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44759","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44759"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515650?format=json","purl":"pkg:deb/debian/trafficserver@8.0.2%2Bds-1%2Bdeb10u6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-2kvz-wm9u-53bd"},{"vulnerability":"VCID-31ru-728d-7qhd"},{"vulnerability":"VCID-3kze-pbbq-63gp"},{"vulnerability":"VCID-4798-eshg-87d3"},{"vulnerability":"VCID-4juv-ezjh-xqb1"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7jmj-2mx5-pkea"},{"vulnerability":"VCID-7qfd-bk4h-j3aa"},{"vulnerability":"VCID-7wgn-m25j-w7h2"},{"vulnerability":"VCID-8c9g-167m-j3a3"},{"vulnerability":"VCID-8zcx-gcse-ukhp"},{"vulnerability":"VCID-abq3-a6yx-e7bq"},{"vulnerability":"VCID-ahw3-7k2k-9ka4"},{"vulnerability":"VCID-akpu-abr9-hqbz"},{"vulnerability":"VCID-anzk-2p8a-qkdx"},{"vulnerability":"VCID-b9rr-1n16-6bdd"},{"vulnerability":"VCID-brew-av11-bydd"},{"vulnerability":"VCID-d9vg-ugpq-bkde"},{"vulnerability":"VCID-ehgb-691x-8yf8"},{"vulnerability":"VCID-f8tu-csm2-9ka4"},{"vulnerability":"VCID-gm5j-mkze-8qgn"},{"vulnerability":"VCID-hzuw-nvff-fuav"},{"vulnerability":"VCID-j1zx-9f8z-cugc"},{"vulnerability":"VCID-kkpu-zyz5-z7b8"},{"vulnerability":"VCID-n279-7wxk-nydv"},{"vulnerability":"VCID-n8h3-vshe-fybw"},{"vulnerability":"VCID-n9ge-6p95-qyg6"},{"vulnerability":"VCID-ne7c-7vzh-qkhk"},{"vulnerability":"VCID-puv1-q4kq-sucs"},{"vulnerability":"VCID-pvgd-s1fu-mkc4"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qsg5-eqde-eyee"},{"vulnerability":"VCID-ry1q-c5e8-tba4"},{"vulnerability":"VCID-s9jy-8vcq-83ch"},{"vulnerability":"VCID-shyq-gyyp-ebav"},{"vulnerability":"VCID-t1qc-t43k-8ug4"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-wk1w-jhc1-6qe6"},{"vulnerability":"VCID-x4cj-g8hm-gfd9"},{"vulnerability":"VCID-xdek-jm8r-ryfh"},{"vulnerability":"VCID-xtkv-k4js-yfdm"},{"vulnerability":"VCID-y4a2-mamb-yqg6"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.0.2%252Bds-1%252Bdeb10u6"},{"url":"http://public2.vulnerablecode.io/api/packages/195982?format=json","purl":"pkg:deb/debian/trafficserver@8.1.10%2Bds-1~deb11u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7cx9-r4vs-jycb"},{"vulnerability":"VCID-9and-qdyn-ryh8"},{"vulnerability":"VCID-g4ca-xg28-j7a3"},{"vulnerability":"VCID-pamq-mbf9-5yd5"},{"vulnerability":"VCID-pswv-yvhe-9ubs"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qjzn-d1sw-13gk"},{"vulnerability":"VCID-rtzu-8w8v-wbhj"},{"vulnerability":"VCID-sq5z-yfbm-cffs"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-w96r-ryuy-bbca"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.1.10%252Bds-1~deb11u1"}],"aliases":["CVE-2021-37147"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-31ru-728d-7qhd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103139?format=json","vulnerability_id":"VCID-3kze-pbbq-63gp","summary":"Apache Traffic Server 6.0.0 to 6.2.3, 7.0.0 to 7.1.10, and 8.0.0 to 8.0.7 is vulnerable to certain types of HTTP/2 HEADERS frames that can cause the server to allocate a large amount of memory and spin the thread.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-9494","reference_id":"","reference_type":"","scores":[{"value":"0.03178","scoring_system":"epss","scoring_elements":"0.87195","published_at":"2026-06-04T12:55:00Z"},{"value":"0.03178","scoring_system":"epss","scoring_elements":"0.87218","published_at":"2026-06-05T12:55:00Z"},{"value":"0.03178","scoring_system":"epss","scoring_elements":"0.87215","published_at":"2026-06-06T12:55:00Z"},{"value":"0.03178","scoring_system":"epss","scoring_elements":"0.87212","published_at":"2026-06-07T12:55:00Z"},{"value":"0.03178","scoring_system":"epss","scoring_elements":"0.87208","published_at":"2026-06-08T12:55:00Z"},{"value":"0.03178","scoring_system":"epss","scoring_elements":"0.8722","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-9494"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9494","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9494"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=963629","reference_id":"963629","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=963629"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515650?format=json","purl":"pkg:deb/debian/trafficserver@8.0.2%2Bds-1%2Bdeb10u6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-2kvz-wm9u-53bd"},{"vulnerability":"VCID-31ru-728d-7qhd"},{"vulnerability":"VCID-3kze-pbbq-63gp"},{"vulnerability":"VCID-4798-eshg-87d3"},{"vulnerability":"VCID-4juv-ezjh-xqb1"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7jmj-2mx5-pkea"},{"vulnerability":"VCID-7qfd-bk4h-j3aa"},{"vulnerability":"VCID-7wgn-m25j-w7h2"},{"vulnerability":"VCID-8c9g-167m-j3a3"},{"vulnerability":"VCID-8zcx-gcse-ukhp"},{"vulnerability":"VCID-abq3-a6yx-e7bq"},{"vulnerability":"VCID-ahw3-7k2k-9ka4"},{"vulnerability":"VCID-akpu-abr9-hqbz"},{"vulnerability":"VCID-anzk-2p8a-qkdx"},{"vulnerability":"VCID-b9rr-1n16-6bdd"},{"vulnerability":"VCID-brew-av11-bydd"},{"vulnerability":"VCID-d9vg-ugpq-bkde"},{"vulnerability":"VCID-ehgb-691x-8yf8"},{"vulnerability":"VCID-f8tu-csm2-9ka4"},{"vulnerability":"VCID-gm5j-mkze-8qgn"},{"vulnerability":"VCID-hzuw-nvff-fuav"},{"vulnerability":"VCID-j1zx-9f8z-cugc"},{"vulnerability":"VCID-kkpu-zyz5-z7b8"},{"vulnerability":"VCID-n279-7wxk-nydv"},{"vulnerability":"VCID-n8h3-vshe-fybw"},{"vulnerability":"VCID-n9ge-6p95-qyg6"},{"vulnerability":"VCID-ne7c-7vzh-qkhk"},{"vulnerability":"VCID-puv1-q4kq-sucs"},{"vulnerability":"VCID-pvgd-s1fu-mkc4"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qsg5-eqde-eyee"},{"vulnerability":"VCID-ry1q-c5e8-tba4"},{"vulnerability":"VCID-s9jy-8vcq-83ch"},{"vulnerability":"VCID-shyq-gyyp-ebav"},{"vulnerability":"VCID-t1qc-t43k-8ug4"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-wk1w-jhc1-6qe6"},{"vulnerability":"VCID-x4cj-g8hm-gfd9"},{"vulnerability":"VCID-xdek-jm8r-ryfh"},{"vulnerability":"VCID-xtkv-k4js-yfdm"},{"vulnerability":"VCID-y4a2-mamb-yqg6"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.0.2%252Bds-1%252Bdeb10u6"},{"url":"http://public2.vulnerablecode.io/api/packages/195982?format=json","purl":"pkg:deb/debian/trafficserver@8.1.10%2Bds-1~deb11u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7cx9-r4vs-jycb"},{"vulnerability":"VCID-9and-qdyn-ryh8"},{"vulnerability":"VCID-g4ca-xg28-j7a3"},{"vulnerability":"VCID-pamq-mbf9-5yd5"},{"vulnerability":"VCID-pswv-yvhe-9ubs"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qjzn-d1sw-13gk"},{"vulnerability":"VCID-rtzu-8w8v-wbhj"},{"vulnerability":"VCID-sq5z-yfbm-cffs"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-w96r-ryuy-bbca"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.1.10%252Bds-1~deb11u1"}],"aliases":["CVE-2020-9494"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3kze-pbbq-63gp"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103163?format=json","vulnerability_id":"VCID-4798-eshg-87d3","summary":"Improper Check for Unusual or Exceptional Conditions vulnerability in handling the requests to Apache Traffic Server.  This issue affects Apache Traffic Server 8.0.0 to 9.1.2.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-37392","reference_id":"","reference_type":"","scores":[{"value":"0.02476","scoring_system":"epss","scoring_elements":"0.85555","published_at":"2026-06-04T12:55:00Z"},{"value":"0.02476","scoring_system":"epss","scoring_elements":"0.85564","published_at":"2026-06-08T12:55:00Z"},{"value":"0.02476","scoring_system":"epss","scoring_elements":"0.85579","published_at":"2026-06-09T12:55:00Z"},{"value":"0.03006","scoring_system":"epss","scoring_elements":"0.86855","published_at":"2026-06-05T12:55:00Z"},{"value":"0.03006","scoring_system":"epss","scoring_elements":"0.86853","published_at":"2026-06-06T12:55:00Z"},{"value":"0.03006","scoring_system":"epss","scoring_elements":"0.8685","published_at":"2026-06-07T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-37392"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32749","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32749"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37392","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37392"},{"reference_url":"https://lists.apache.org/thread/mrj2lg4s0hf027rk7gz8t7hbn9xpfg02","reference_id":"mrj2lg4s0hf027rk7gz8t7hbn9xpfg02","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-17T14:20:03Z/"}],"url":"https://lists.apache.org/thread/mrj2lg4s0hf027rk7gz8t7hbn9xpfg02"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/195982?format=json","purl":"pkg:deb/debian/trafficserver@8.1.10%2Bds-1~deb11u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7cx9-r4vs-jycb"},{"vulnerability":"VCID-9and-qdyn-ryh8"},{"vulnerability":"VCID-g4ca-xg28-j7a3"},{"vulnerability":"VCID-pamq-mbf9-5yd5"},{"vulnerability":"VCID-pswv-yvhe-9ubs"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qjzn-d1sw-13gk"},{"vulnerability":"VCID-rtzu-8w8v-wbhj"},{"vulnerability":"VCID-sq5z-yfbm-cffs"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-w96r-ryuy-bbca"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.1.10%252Bds-1~deb11u1"}],"aliases":["CVE-2022-37392"],"risk_score":2.4,"exploitability":"0.5","weighted_severity":"4.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4798-eshg-87d3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103172?format=json","vulnerability_id":"VCID-4juv-ezjh-xqb1","summary":"Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Traffic Server.This issue affects Apache Traffic Server: from 8.0.0 through 8.1.8, from 9.0.0 through 9.2.2.  Users are recommended to upgrade to version 8.1.9 or 9.2.3, which fixes the issue.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-41752","reference_id":"","reference_type":"","scores":[{"value":"0.00347","scoring_system":"epss","scoring_elements":"0.57585","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00347","scoring_system":"epss","scoring_elements":"0.57589","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00347","scoring_system":"epss","scoring_elements":"0.57571","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00347","scoring_system":"epss","scoring_elements":"0.57583","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00347","scoring_system":"epss","scoring_elements":"0.57593","published_at":"2026-06-06T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-41752"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-47185","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-47185"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-33934","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-33934"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-41752","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-41752"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1054427","reference_id":"1054427","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1054427"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VHUHTSXLXGXS7JYKBXTA3VINUPHTNGVU/","reference_id":"VHUHTSXLXGXS7JYKBXTA3VINUPHTNGVU","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-13T19:48:24Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VHUHTSXLXGXS7JYKBXTA3VINUPHTNGVU/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/195982?format=json","purl":"pkg:deb/debian/trafficserver@8.1.10%2Bds-1~deb11u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7cx9-r4vs-jycb"},{"vulnerability":"VCID-9and-qdyn-ryh8"},{"vulnerability":"VCID-g4ca-xg28-j7a3"},{"vulnerability":"VCID-pamq-mbf9-5yd5"},{"vulnerability":"VCID-pswv-yvhe-9ubs"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qjzn-d1sw-13gk"},{"vulnerability":"VCID-rtzu-8w8v-wbhj"},{"vulnerability":"VCID-sq5z-yfbm-cffs"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-w96r-ryuy-bbca"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.1.10%252Bds-1~deb11u1"}],"aliases":["CVE-2023-41752"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4juv-ezjh-xqb1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103115?format=json","vulnerability_id":"VCID-4vhy-r29x-bqhu","summary":"Apache Traffic Server 6.0.0 to 6.2.0 are affected by an HPACK Bomb Attack.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-5396","reference_id":"","reference_type":"","scores":[{"value":"0.01806","scoring_system":"epss","scoring_elements":"0.83158","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01806","scoring_system":"epss","scoring_elements":"0.83183","published_at":"2026-06-05T12:55:00Z"},{"value":"0.01806","scoring_system":"epss","scoring_elements":"0.83184","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01806","scoring_system":"epss","scoring_elements":"0.83179","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01806","scoring_system":"epss","scoring_elements":"0.83173","published_at":"2026-06-08T12:55:00Z"},{"value":"0.01806","scoring_system":"epss","scoring_elements":"0.83185","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-5396"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5396","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5396"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515649?format=json","purl":"pkg:deb/debian/trafficserver@7.0.0-4~bpo8%2B1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-2kvz-wm9u-53bd"},{"vulnerability":"VCID-31ru-728d-7qhd"},{"vulnerability":"VCID-3kze-pbbq-63gp"},{"vulnerability":"VCID-4798-eshg-87d3"},{"vulnerability":"VCID-4juv-ezjh-xqb1"},{"vulnerability":"VCID-4z9e-2ugc-vqav"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-6u62-a3sj-efcw"},{"vulnerability":"VCID-7jmj-2mx5-pkea"},{"vulnerability":"VCID-7qfd-bk4h-j3aa"},{"vulnerability":"VCID-7wgn-m25j-w7h2"},{"vulnerability":"VCID-8c9g-167m-j3a3"},{"vulnerability":"VCID-8zcx-gcse-ukhp"},{"vulnerability":"VCID-abq3-a6yx-e7bq"},{"vulnerability":"VCID-ahw3-7k2k-9ka4"},{"vulnerability":"VCID-akpu-abr9-hqbz"},{"vulnerability":"VCID-anzk-2p8a-qkdx"},{"vulnerability":"VCID-b9rr-1n16-6bdd"},{"vulnerability":"VCID-brew-av11-bydd"},{"vulnerability":"VCID-d9vg-ugpq-bkde"},{"vulnerability":"VCID-ehgb-691x-8yf8"},{"vulnerability":"VCID-f8tu-csm2-9ka4"},{"vulnerability":"VCID-gm5j-mkze-8qgn"},{"vulnerability":"VCID-gq8w-7xep-77gz"},{"vulnerability":"VCID-h7f1-f91u-mqf2"},{"vulnerability":"VCID-hzuw-nvff-fuav"},{"vulnerability":"VCID-j1zx-9f8z-cugc"},{"vulnerability":"VCID-kkpu-zyz5-z7b8"},{"vulnerability":"VCID-n279-7wxk-nydv"},{"vulnerability":"VCID-n8h3-vshe-fybw"},{"vulnerability":"VCID-n9ge-6p95-qyg6"},{"vulnerability":"VCID-ne7c-7vzh-qkhk"},{"vulnerability":"VCID-puv1-q4kq-sucs"},{"vulnerability":"VCID-pvgd-s1fu-mkc4"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qsg5-eqde-eyee"},{"vulnerability":"VCID-rsvc-b3bb-dudb"},{"vulnerability":"VCID-ry1q-c5e8-tba4"},{"vulnerability":"VCID-rzba-hj3c-w7d2"},{"vulnerability":"VCID-s9jy-8vcq-83ch"},{"vulnerability":"VCID-shyq-gyyp-ebav"},{"vulnerability":"VCID-t1qc-t43k-8ug4"},{"vulnerability":"VCID-u2dm-zzmm-yugj"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-wk1w-jhc1-6qe6"},{"vulnerability":"VCID-x4cj-g8hm-gfd9"},{"vulnerability":"VCID-xdek-jm8r-ryfh"},{"vulnerability":"VCID-xtkv-k4js-yfdm"},{"vulnerability":"VCID-y4a2-mamb-yqg6"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@7.0.0-4~bpo8%252B1"}],"aliases":["CVE-2016-5396"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4vhy-r29x-bqhu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103119?format=json","vulnerability_id":"VCID-4z9e-2ugc-vqav","summary":"sslheaders plugin extracts information from the client certificate and sets headers in the request based on the configuration of the plugin. The plugin doesn't strip the headers from the request in some scenarios. This problem was discovered in versions 6.0.0 to 6.0.3, 7.0.0 to 7.1.5, and 8.0.0 to 8.0.1.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-11783","reference_id":"","reference_type":"","scores":[{"value":"0.01124","scoring_system":"epss","scoring_elements":"0.78612","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01124","scoring_system":"epss","scoring_elements":"0.78639","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01124","scoring_system":"epss","scoring_elements":"0.78647","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01124","scoring_system":"epss","scoring_elements":"0.78626","published_at":"2026-06-08T12:55:00Z"},{"value":"0.01124","scoring_system":"epss","scoring_elements":"0.78644","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-11783"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11783","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11783"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515650?format=json","purl":"pkg:deb/debian/trafficserver@8.0.2%2Bds-1%2Bdeb10u6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-2kvz-wm9u-53bd"},{"vulnerability":"VCID-31ru-728d-7qhd"},{"vulnerability":"VCID-3kze-pbbq-63gp"},{"vulnerability":"VCID-4798-eshg-87d3"},{"vulnerability":"VCID-4juv-ezjh-xqb1"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7jmj-2mx5-pkea"},{"vulnerability":"VCID-7qfd-bk4h-j3aa"},{"vulnerability":"VCID-7wgn-m25j-w7h2"},{"vulnerability":"VCID-8c9g-167m-j3a3"},{"vulnerability":"VCID-8zcx-gcse-ukhp"},{"vulnerability":"VCID-abq3-a6yx-e7bq"},{"vulnerability":"VCID-ahw3-7k2k-9ka4"},{"vulnerability":"VCID-akpu-abr9-hqbz"},{"vulnerability":"VCID-anzk-2p8a-qkdx"},{"vulnerability":"VCID-b9rr-1n16-6bdd"},{"vulnerability":"VCID-brew-av11-bydd"},{"vulnerability":"VCID-d9vg-ugpq-bkde"},{"vulnerability":"VCID-ehgb-691x-8yf8"},{"vulnerability":"VCID-f8tu-csm2-9ka4"},{"vulnerability":"VCID-gm5j-mkze-8qgn"},{"vulnerability":"VCID-hzuw-nvff-fuav"},{"vulnerability":"VCID-j1zx-9f8z-cugc"},{"vulnerability":"VCID-kkpu-zyz5-z7b8"},{"vulnerability":"VCID-n279-7wxk-nydv"},{"vulnerability":"VCID-n8h3-vshe-fybw"},{"vulnerability":"VCID-n9ge-6p95-qyg6"},{"vulnerability":"VCID-ne7c-7vzh-qkhk"},{"vulnerability":"VCID-puv1-q4kq-sucs"},{"vulnerability":"VCID-pvgd-s1fu-mkc4"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qsg5-eqde-eyee"},{"vulnerability":"VCID-ry1q-c5e8-tba4"},{"vulnerability":"VCID-s9jy-8vcq-83ch"},{"vulnerability":"VCID-shyq-gyyp-ebav"},{"vulnerability":"VCID-t1qc-t43k-8ug4"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-wk1w-jhc1-6qe6"},{"vulnerability":"VCID-x4cj-g8hm-gfd9"},{"vulnerability":"VCID-xdek-jm8r-ryfh"},{"vulnerability":"VCID-xtkv-k4js-yfdm"},{"vulnerability":"VCID-y4a2-mamb-yqg6"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.0.2%252Bds-1%252Bdeb10u6"}],"aliases":["CVE-2018-11783"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4z9e-2ugc-vqav"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103178?format=json","vulnerability_id":"VCID-6tcz-mrt1-ufh2","summary":"Improper Input Validation vulnerability in Apache Traffic Server.  This issue affects Apache Traffic Server: from 8.0.0 through 8.1.11, from 9.0.0 through 9.2.5.  Users are recommended to upgrade to version 9.2.6, which fixes the issue, or 10.0.2, which does not have the issue.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-38479","reference_id":"","reference_type":"","scores":[{"value":"0.00574","scoring_system":"epss","scoring_elements":"0.69166","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00574","scoring_system":"epss","scoring_elements":"0.69156","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00688","scoring_system":"epss","scoring_elements":"0.72183","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00688","scoring_system":"epss","scoring_elements":"0.72171","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00688","scoring_system":"epss","scoring_elements":"0.72157","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-38479"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-38479","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-38479"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1087531","reference_id":"1087531","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1087531"},{"reference_url":"https://lists.apache.org/thread/y15fh6c7kyqvzm0f9odw7c5jh4r4np0y","reference_id":"y15fh6c7kyqvzm0f9odw7c5jh4r4np0y","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-14T18:51:08Z/"}],"url":"https://lists.apache.org/thread/y15fh6c7kyqvzm0f9odw7c5jh4r4np0y"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/195983?format=json","purl":"pkg:deb/debian/trafficserver@9.2.5%2Bds-0%2Bdeb12u4","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@9.2.5%252Bds-0%252Bdeb12u4"}],"aliases":["CVE-2024-38479"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6tcz-mrt1-ufh2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103117?format=json","vulnerability_id":"VCID-6u62-a3sj-efcw","summary":"There is a vulnerability in Apache Traffic Server (ATS) 6.2.0 and prior and 7.0.0 and prior with the Host header and line folding. This can have issues when interacting with upstream proxies and the wrong host being used.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-5660","reference_id":"","reference_type":"","scores":[{"value":"0.02584","scoring_system":"epss","scoring_elements":"0.85856","published_at":"2026-06-04T12:55:00Z"},{"value":"0.02584","scoring_system":"epss","scoring_elements":"0.85878","published_at":"2026-06-05T12:55:00Z"},{"value":"0.02584","scoring_system":"epss","scoring_elements":"0.85879","published_at":"2026-06-06T12:55:00Z"},{"value":"0.02584","scoring_system":"epss","scoring_elements":"0.85876","published_at":"2026-06-07T12:55:00Z"},{"value":"0.02584","scoring_system":"epss","scoring_elements":"0.8586","published_at":"2026-06-08T12:55:00Z"},{"value":"0.02584","scoring_system":"epss","scoring_elements":"0.85875","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-5660"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5660","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5660"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7671","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7671"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515650?format=json","purl":"pkg:deb/debian/trafficserver@8.0.2%2Bds-1%2Bdeb10u6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-2kvz-wm9u-53bd"},{"vulnerability":"VCID-31ru-728d-7qhd"},{"vulnerability":"VCID-3kze-pbbq-63gp"},{"vulnerability":"VCID-4798-eshg-87d3"},{"vulnerability":"VCID-4juv-ezjh-xqb1"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7jmj-2mx5-pkea"},{"vulnerability":"VCID-7qfd-bk4h-j3aa"},{"vulnerability":"VCID-7wgn-m25j-w7h2"},{"vulnerability":"VCID-8c9g-167m-j3a3"},{"vulnerability":"VCID-8zcx-gcse-ukhp"},{"vulnerability":"VCID-abq3-a6yx-e7bq"},{"vulnerability":"VCID-ahw3-7k2k-9ka4"},{"vulnerability":"VCID-akpu-abr9-hqbz"},{"vulnerability":"VCID-anzk-2p8a-qkdx"},{"vulnerability":"VCID-b9rr-1n16-6bdd"},{"vulnerability":"VCID-brew-av11-bydd"},{"vulnerability":"VCID-d9vg-ugpq-bkde"},{"vulnerability":"VCID-ehgb-691x-8yf8"},{"vulnerability":"VCID-f8tu-csm2-9ka4"},{"vulnerability":"VCID-gm5j-mkze-8qgn"},{"vulnerability":"VCID-hzuw-nvff-fuav"},{"vulnerability":"VCID-j1zx-9f8z-cugc"},{"vulnerability":"VCID-kkpu-zyz5-z7b8"},{"vulnerability":"VCID-n279-7wxk-nydv"},{"vulnerability":"VCID-n8h3-vshe-fybw"},{"vulnerability":"VCID-n9ge-6p95-qyg6"},{"vulnerability":"VCID-ne7c-7vzh-qkhk"},{"vulnerability":"VCID-puv1-q4kq-sucs"},{"vulnerability":"VCID-pvgd-s1fu-mkc4"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qsg5-eqde-eyee"},{"vulnerability":"VCID-ry1q-c5e8-tba4"},{"vulnerability":"VCID-s9jy-8vcq-83ch"},{"vulnerability":"VCID-shyq-gyyp-ebav"},{"vulnerability":"VCID-t1qc-t43k-8ug4"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-wk1w-jhc1-6qe6"},{"vulnerability":"VCID-x4cj-g8hm-gfd9"},{"vulnerability":"VCID-xdek-jm8r-ryfh"},{"vulnerability":"VCID-xtkv-k4js-yfdm"},{"vulnerability":"VCID-y4a2-mamb-yqg6"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.0.2%252Bds-1%252Bdeb10u6"}],"aliases":["CVE-2017-5660"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6u62-a3sj-efcw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103143?format=json","vulnerability_id":"VCID-7jmj-2mx5-pkea","summary":"Improper Input Validation vulnerability in HTTP/2 of Apache Traffic Server allows an attacker to DOS the server. This issue affects Apache Traffic Server 7.0.0 to 7.1.12, 8.0.0 to 8.1.1, 9.0.0 to 9.0.1.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-32566","reference_id":"","reference_type":"","scores":[{"value":"0.07927","scoring_system":"epss","scoring_elements":"0.92191","published_at":"2026-06-04T12:55:00Z"},{"value":"0.07927","scoring_system":"epss","scoring_elements":"0.92204","published_at":"2026-06-05T12:55:00Z"},{"value":"0.07927","scoring_system":"epss","scoring_elements":"0.92201","published_at":"2026-06-08T12:55:00Z"},{"value":"0.07927","scoring_system":"epss","scoring_elements":"0.922","published_at":"2026-06-07T12:55:00Z"},{"value":"0.07927","scoring_system":"epss","scoring_elements":"0.92215","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-32566"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27577","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27577"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32565","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32565"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32566","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32566"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32567","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32567"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35474","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35474"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=990303","reference_id":"990303","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=990303"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515650?format=json","purl":"pkg:deb/debian/trafficserver@8.0.2%2Bds-1%2Bdeb10u6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-2kvz-wm9u-53bd"},{"vulnerability":"VCID-31ru-728d-7qhd"},{"vulnerability":"VCID-3kze-pbbq-63gp"},{"vulnerability":"VCID-4798-eshg-87d3"},{"vulnerability":"VCID-4juv-ezjh-xqb1"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7jmj-2mx5-pkea"},{"vulnerability":"VCID-7qfd-bk4h-j3aa"},{"vulnerability":"VCID-7wgn-m25j-w7h2"},{"vulnerability":"VCID-8c9g-167m-j3a3"},{"vulnerability":"VCID-8zcx-gcse-ukhp"},{"vulnerability":"VCID-abq3-a6yx-e7bq"},{"vulnerability":"VCID-ahw3-7k2k-9ka4"},{"vulnerability":"VCID-akpu-abr9-hqbz"},{"vulnerability":"VCID-anzk-2p8a-qkdx"},{"vulnerability":"VCID-b9rr-1n16-6bdd"},{"vulnerability":"VCID-brew-av11-bydd"},{"vulnerability":"VCID-d9vg-ugpq-bkde"},{"vulnerability":"VCID-ehgb-691x-8yf8"},{"vulnerability":"VCID-f8tu-csm2-9ka4"},{"vulnerability":"VCID-gm5j-mkze-8qgn"},{"vulnerability":"VCID-hzuw-nvff-fuav"},{"vulnerability":"VCID-j1zx-9f8z-cugc"},{"vulnerability":"VCID-kkpu-zyz5-z7b8"},{"vulnerability":"VCID-n279-7wxk-nydv"},{"vulnerability":"VCID-n8h3-vshe-fybw"},{"vulnerability":"VCID-n9ge-6p95-qyg6"},{"vulnerability":"VCID-ne7c-7vzh-qkhk"},{"vulnerability":"VCID-puv1-q4kq-sucs"},{"vulnerability":"VCID-pvgd-s1fu-mkc4"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qsg5-eqde-eyee"},{"vulnerability":"VCID-ry1q-c5e8-tba4"},{"vulnerability":"VCID-s9jy-8vcq-83ch"},{"vulnerability":"VCID-shyq-gyyp-ebav"},{"vulnerability":"VCID-t1qc-t43k-8ug4"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-wk1w-jhc1-6qe6"},{"vulnerability":"VCID-x4cj-g8hm-gfd9"},{"vulnerability":"VCID-xdek-jm8r-ryfh"},{"vulnerability":"VCID-xtkv-k4js-yfdm"},{"vulnerability":"VCID-y4a2-mamb-yqg6"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.0.2%252Bds-1%252Bdeb10u6"},{"url":"http://public2.vulnerablecode.io/api/packages/195982?format=json","purl":"pkg:deb/debian/trafficserver@8.1.10%2Bds-1~deb11u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7cx9-r4vs-jycb"},{"vulnerability":"VCID-9and-qdyn-ryh8"},{"vulnerability":"VCID-g4ca-xg28-j7a3"},{"vulnerability":"VCID-pamq-mbf9-5yd5"},{"vulnerability":"VCID-pswv-yvhe-9ubs"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qjzn-d1sw-13gk"},{"vulnerability":"VCID-rtzu-8w8v-wbhj"},{"vulnerability":"VCID-sq5z-yfbm-cffs"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-w96r-ryuy-bbca"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.1.10%252Bds-1~deb11u1"}],"aliases":["CVE-2021-32566"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7jmj-2mx5-pkea"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103137?format=json","vulnerability_id":"VCID-7qfd-bk4h-j3aa","summary":"There is a vulnerability in Apache Traffic Server 6.0.0 to 6.2.3, 7.0.0 to 7.1.8, and 8.0.0 to 8.0.5 with a smuggling attack and Transfer-Encoding and Content length headers. Upgrade to versions 7.1.9 and 8.0.6 or later versions.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-1944","reference_id":"","reference_type":"","scores":[{"value":"0.01208","scoring_system":"epss","scoring_elements":"0.79302","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01208","scoring_system":"epss","scoring_elements":"0.79328","published_at":"2026-06-05T12:55:00Z"},{"value":"0.01208","scoring_system":"epss","scoring_elements":"0.79333","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01208","scoring_system":"epss","scoring_elements":"0.79326","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01208","scoring_system":"epss","scoring_elements":"0.79315","published_at":"2026-06-08T12:55:00Z"},{"value":"0.01208","scoring_system":"epss","scoring_elements":"0.79334","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-1944"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17559","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17559"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17565","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17565"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1944","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1944"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9481","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9481"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515650?format=json","purl":"pkg:deb/debian/trafficserver@8.0.2%2Bds-1%2Bdeb10u6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-2kvz-wm9u-53bd"},{"vulnerability":"VCID-31ru-728d-7qhd"},{"vulnerability":"VCID-3kze-pbbq-63gp"},{"vulnerability":"VCID-4798-eshg-87d3"},{"vulnerability":"VCID-4juv-ezjh-xqb1"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7jmj-2mx5-pkea"},{"vulnerability":"VCID-7qfd-bk4h-j3aa"},{"vulnerability":"VCID-7wgn-m25j-w7h2"},{"vulnerability":"VCID-8c9g-167m-j3a3"},{"vulnerability":"VCID-8zcx-gcse-ukhp"},{"vulnerability":"VCID-abq3-a6yx-e7bq"},{"vulnerability":"VCID-ahw3-7k2k-9ka4"},{"vulnerability":"VCID-akpu-abr9-hqbz"},{"vulnerability":"VCID-anzk-2p8a-qkdx"},{"vulnerability":"VCID-b9rr-1n16-6bdd"},{"vulnerability":"VCID-brew-av11-bydd"},{"vulnerability":"VCID-d9vg-ugpq-bkde"},{"vulnerability":"VCID-ehgb-691x-8yf8"},{"vulnerability":"VCID-f8tu-csm2-9ka4"},{"vulnerability":"VCID-gm5j-mkze-8qgn"},{"vulnerability":"VCID-hzuw-nvff-fuav"},{"vulnerability":"VCID-j1zx-9f8z-cugc"},{"vulnerability":"VCID-kkpu-zyz5-z7b8"},{"vulnerability":"VCID-n279-7wxk-nydv"},{"vulnerability":"VCID-n8h3-vshe-fybw"},{"vulnerability":"VCID-n9ge-6p95-qyg6"},{"vulnerability":"VCID-ne7c-7vzh-qkhk"},{"vulnerability":"VCID-puv1-q4kq-sucs"},{"vulnerability":"VCID-pvgd-s1fu-mkc4"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qsg5-eqde-eyee"},{"vulnerability":"VCID-ry1q-c5e8-tba4"},{"vulnerability":"VCID-s9jy-8vcq-83ch"},{"vulnerability":"VCID-shyq-gyyp-ebav"},{"vulnerability":"VCID-t1qc-t43k-8ug4"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-wk1w-jhc1-6qe6"},{"vulnerability":"VCID-x4cj-g8hm-gfd9"},{"vulnerability":"VCID-xdek-jm8r-ryfh"},{"vulnerability":"VCID-xtkv-k4js-yfdm"},{"vulnerability":"VCID-y4a2-mamb-yqg6"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.0.2%252Bds-1%252Bdeb10u6"},{"url":"http://public2.vulnerablecode.io/api/packages/195982?format=json","purl":"pkg:deb/debian/trafficserver@8.1.10%2Bds-1~deb11u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7cx9-r4vs-jycb"},{"vulnerability":"VCID-9and-qdyn-ryh8"},{"vulnerability":"VCID-g4ca-xg28-j7a3"},{"vulnerability":"VCID-pamq-mbf9-5yd5"},{"vulnerability":"VCID-pswv-yvhe-9ubs"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qjzn-d1sw-13gk"},{"vulnerability":"VCID-rtzu-8w8v-wbhj"},{"vulnerability":"VCID-sq5z-yfbm-cffs"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-w96r-ryuy-bbca"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.1.10%252Bds-1~deb11u1"}],"aliases":["CVE-2020-1944"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7qfd-bk4h-j3aa"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/90716?format=json","vulnerability_id":"VCID-7wgn-m25j-w7h2","summary":"trafficserver: CONTINUATION frames DoS","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31309.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31309.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-31309","reference_id":"","reference_type":"","scores":[{"value":"0.10847","scoring_system":"epss","scoring_elements":"0.93521","published_at":"2026-06-09T12:55:00Z"},{"value":"0.10847","scoring_system":"epss","scoring_elements":"0.93517","published_at":"2026-06-06T12:55:00Z"},{"value":"0.10847","scoring_system":"epss","scoring_elements":"0.93515","published_at":"2026-06-07T12:55:00Z"},{"value":"0.10847","scoring_system":"epss","scoring_elements":"0.93514","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-31309"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31309","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31309"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1068417","reference_id":"1068417","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1068417"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2269627","reference_id":"2269627","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2269627"},{"reference_url":"http://www.openwall.com/lists/oss-security/2024/04/10/7","reference_id":"7","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-12T18:21:30Z/"}],"url":"http://www.openwall.com/lists/oss-security/2024/04/10/7"},{"reference_url":"https://lists.apache.org/thread/f9qh3g3jvy153wh82pz4onrfj1wh13kc","reference_id":"f9qh3g3jvy153wh82pz4onrfj1wh13kc","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-12T18:21:30Z/"}],"url":"https://lists.apache.org/thread/f9qh3g3jvy153wh82pz4onrfj1wh13kc"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2024/04/msg00021.html","reference_id":"msg00021.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-12T18:21:30Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2024/04/msg00021.html"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PBKLPQ6ECG4PGEPRCYI3Y3OITNDEFCCV/","reference_id":"PBKLPQ6ECG4PGEPRCYI3Y3OITNDEFCCV","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-12T18:21:30Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PBKLPQ6ECG4PGEPRCYI3Y3OITNDEFCCV/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QV77HYM7ARSTL3B6U3IFG7PHDU65WL4I/","reference_id":"QV77HYM7ARSTL3B6U3IFG7PHDU65WL4I","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-12T18:21:30Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QV77HYM7ARSTL3B6U3IFG7PHDU65WL4I/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T3XON6RM5ZKCZ6K6NB7BOTAWMJQKXJDO/","reference_id":"T3XON6RM5ZKCZ6K6NB7BOTAWMJQKXJDO","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-12T18:21:30Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T3XON6RM5ZKCZ6K6NB7BOTAWMJQKXJDO/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/195982?format=json","purl":"pkg:deb/debian/trafficserver@8.1.10%2Bds-1~deb11u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7cx9-r4vs-jycb"},{"vulnerability":"VCID-9and-qdyn-ryh8"},{"vulnerability":"VCID-g4ca-xg28-j7a3"},{"vulnerability":"VCID-pamq-mbf9-5yd5"},{"vulnerability":"VCID-pswv-yvhe-9ubs"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qjzn-d1sw-13gk"},{"vulnerability":"VCID-rtzu-8w8v-wbhj"},{"vulnerability":"VCID-sq5z-yfbm-cffs"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-w96r-ryuy-bbca"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.1.10%252Bds-1~deb11u1"}],"aliases":["CVE-2024-31309"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7wgn-m25j-w7h2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103158?format=json","vulnerability_id":"VCID-8c9g-167m-j3a3","summary":"Improper Input Validation vulnerability in HTTP/1.1 header parsing of Apache Traffic Server allows an attacker to send invalid headers. This issue affects Apache Traffic Server 8.0.0 to 9.1.2.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-28129","reference_id":"","reference_type":"","scores":[{"value":"0.03194","scoring_system":"epss","scoring_elements":"0.87223","published_at":"2026-06-04T12:55:00Z"},{"value":"0.03194","scoring_system":"epss","scoring_elements":"0.87246","published_at":"2026-06-05T12:55:00Z"},{"value":"0.03194","scoring_system":"epss","scoring_elements":"0.87243","published_at":"2026-06-06T12:55:00Z"},{"value":"0.03194","scoring_system":"epss","scoring_elements":"0.87241","published_at":"2026-06-07T12:55:00Z"},{"value":"0.03194","scoring_system":"epss","scoring_elements":"0.87237","published_at":"2026-06-08T12:55:00Z"},{"value":"0.03194","scoring_system":"epss","scoring_elements":"0.87249","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-28129"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37150","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37150"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-25763","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-25763"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28129","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28129"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31778","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31778"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31779","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31779"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31780","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31780"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/195982?format=json","purl":"pkg:deb/debian/trafficserver@8.1.10%2Bds-1~deb11u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7cx9-r4vs-jycb"},{"vulnerability":"VCID-9and-qdyn-ryh8"},{"vulnerability":"VCID-g4ca-xg28-j7a3"},{"vulnerability":"VCID-pamq-mbf9-5yd5"},{"vulnerability":"VCID-pswv-yvhe-9ubs"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qjzn-d1sw-13gk"},{"vulnerability":"VCID-rtzu-8w8v-wbhj"},{"vulnerability":"VCID-sq5z-yfbm-cffs"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-w96r-ryuy-bbca"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.1.10%252Bds-1~deb11u1"}],"aliases":["CVE-2022-28129"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8c9g-167m-j3a3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/72147?format=json","vulnerability_id":"VCID-8zcx-gcse-ukhp","summary":"Some HTTP/2 implementations are vulnerable to a settings flood, potentially leading to a denial of service. The attacker sends a stream of SETTINGS frames to the peer. Since the RFC requires that the peer reply with one acknowledgement per SETTINGS frame, an empty SETTINGS frame is almost equivalent in behavior to a ping. Depending on how efficiently this data is queued, this can consume excess CPU, memory, or both.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-9515.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-9515.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-9515","reference_id":"","reference_type":"","scores":[{"value":"0.08892","scoring_system":"epss","scoring_elements":"0.9271","published_at":"2026-06-04T12:55:00Z"},{"value":"0.08892","scoring_system":"epss","scoring_elements":"0.92722","published_at":"2026-06-05T12:55:00Z"},{"value":"0.08892","scoring_system":"epss","scoring_elements":"0.92718","published_at":"2026-06-06T12:55:00Z"},{"value":"0.08892","scoring_system":"epss","scoring_elements":"0.92713","published_at":"2026-06-07T12:55:00Z"},{"value":"0.08892","scoring_system":"epss","scoring_elements":"0.92711","published_at":"2026-06-08T12:55:00Z"},{"value":"0.08892","scoring_system":"epss","scoring_elements":"0.92728","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-9515"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10079","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10079"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9512","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9512"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9514","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9514"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9515","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9515"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9518","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9518"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1735745","reference_id":"1735745","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1735745"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=934886","reference_id":"934886","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=934886"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=934887","reference_id":"934887","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=934887"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2766","reference_id":"RHSA-2019:2766","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:2766"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2796","reference_id":"RHSA-2019:2796","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:2796"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2861","reference_id":"RHSA-2019:2861","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:2861"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2925","reference_id":"RHSA-2019:2925","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:2925"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2939","reference_id":"RHSA-2019:2939","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:2939"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2955","reference_id":"RHSA-2019:2955","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:2955"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4018","reference_id":"RHSA-2019:4018","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:4018"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4019","reference_id":"RHSA-2019:4019","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:4019"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4020","reference_id":"RHSA-2019:4020","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:4020"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4021","reference_id":"RHSA-2019:4021","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:4021"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4040","reference_id":"RHSA-2019:4040","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:4040"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4041","reference_id":"RHSA-2019:4041","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:4041"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4042","reference_id":"RHSA-2019:4042","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:4042"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4045","reference_id":"RHSA-2019:4045","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:4045"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0922","reference_id":"RHSA-2020:0922","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0922"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0983","reference_id":"RHSA-2020:0983","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0983"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:1445","reference_id":"RHSA-2020:1445","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:1445"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2067","reference_id":"RHSA-2020:2067","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2067"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2565","reference_id":"RHSA-2020:2565","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2565"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3196","reference_id":"RHSA-2020:3196","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3196"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3197","reference_id":"RHSA-2020:3197","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3197"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:5856","reference_id":"RHSA-2024:5856","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:5856"},{"reference_url":"https://usn.ubuntu.com/USN-4866-1/","reference_id":"USN-USN-4866-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/USN-4866-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515650?format=json","purl":"pkg:deb/debian/trafficserver@8.0.2%2Bds-1%2Bdeb10u6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-2kvz-wm9u-53bd"},{"vulnerability":"VCID-31ru-728d-7qhd"},{"vulnerability":"VCID-3kze-pbbq-63gp"},{"vulnerability":"VCID-4798-eshg-87d3"},{"vulnerability":"VCID-4juv-ezjh-xqb1"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7jmj-2mx5-pkea"},{"vulnerability":"VCID-7qfd-bk4h-j3aa"},{"vulnerability":"VCID-7wgn-m25j-w7h2"},{"vulnerability":"VCID-8c9g-167m-j3a3"},{"vulnerability":"VCID-8zcx-gcse-ukhp"},{"vulnerability":"VCID-abq3-a6yx-e7bq"},{"vulnerability":"VCID-ahw3-7k2k-9ka4"},{"vulnerability":"VCID-akpu-abr9-hqbz"},{"vulnerability":"VCID-anzk-2p8a-qkdx"},{"vulnerability":"VCID-b9rr-1n16-6bdd"},{"vulnerability":"VCID-brew-av11-bydd"},{"vulnerability":"VCID-d9vg-ugpq-bkde"},{"vulnerability":"VCID-ehgb-691x-8yf8"},{"vulnerability":"VCID-f8tu-csm2-9ka4"},{"vulnerability":"VCID-gm5j-mkze-8qgn"},{"vulnerability":"VCID-hzuw-nvff-fuav"},{"vulnerability":"VCID-j1zx-9f8z-cugc"},{"vulnerability":"VCID-kkpu-zyz5-z7b8"},{"vulnerability":"VCID-n279-7wxk-nydv"},{"vulnerability":"VCID-n8h3-vshe-fybw"},{"vulnerability":"VCID-n9ge-6p95-qyg6"},{"vulnerability":"VCID-ne7c-7vzh-qkhk"},{"vulnerability":"VCID-puv1-q4kq-sucs"},{"vulnerability":"VCID-pvgd-s1fu-mkc4"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qsg5-eqde-eyee"},{"vulnerability":"VCID-ry1q-c5e8-tba4"},{"vulnerability":"VCID-s9jy-8vcq-83ch"},{"vulnerability":"VCID-shyq-gyyp-ebav"},{"vulnerability":"VCID-t1qc-t43k-8ug4"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-wk1w-jhc1-6qe6"},{"vulnerability":"VCID-x4cj-g8hm-gfd9"},{"vulnerability":"VCID-xdek-jm8r-ryfh"},{"vulnerability":"VCID-xtkv-k4js-yfdm"},{"vulnerability":"VCID-y4a2-mamb-yqg6"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.0.2%252Bds-1%252Bdeb10u6"},{"url":"http://public2.vulnerablecode.io/api/packages/195982?format=json","purl":"pkg:deb/debian/trafficserver@8.1.10%2Bds-1~deb11u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7cx9-r4vs-jycb"},{"vulnerability":"VCID-9and-qdyn-ryh8"},{"vulnerability":"VCID-g4ca-xg28-j7a3"},{"vulnerability":"VCID-pamq-mbf9-5yd5"},{"vulnerability":"VCID-pswv-yvhe-9ubs"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qjzn-d1sw-13gk"},{"vulnerability":"VCID-rtzu-8w8v-wbhj"},{"vulnerability":"VCID-sq5z-yfbm-cffs"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-w96r-ryuy-bbca"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.1.10%252Bds-1~deb11u1"}],"aliases":["CVE-2019-9515"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8zcx-gcse-ukhp"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103165?format=json","vulnerability_id":"VCID-abq3-a6yx-e7bq","summary":"Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Software Foundation Apache Traffic Server.This issue affects Apache Traffic Server: 8.0.0 to 9.2.0.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-47184","reference_id":"","reference_type":"","scores":[{"value":"0.00235","scoring_system":"epss","scoring_elements":"0.46591","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00235","scoring_system":"epss","scoring_elements":"0.46657","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00235","scoring_system":"epss","scoring_elements":"0.46661","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00235","scoring_system":"epss","scoring_elements":"0.4664","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00235","scoring_system":"epss","scoring_elements":"0.46612","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00235","scoring_system":"epss","scoring_elements":"0.46622","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-47184"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-47184","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-47184"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-30631","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-30631"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-33933","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-33933"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1038248","reference_id":"1038248","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1038248"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6GDCBNFDDW6ULW7CACJCPENI7BVDHM5O/","reference_id":"6GDCBNFDDW6ULW7CACJCPENI7BVDHM5O","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-09T13:43:40Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6GDCBNFDDW6ULW7CACJCPENI7BVDHM5O/"},{"reference_url":"https://www.debian.org/security/2023/dsa-5435","reference_id":"dsa-5435","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-09T13:43:40Z/"}],"url":"https://www.debian.org/security/2023/dsa-5435"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FGWXNAEEVRUZ5JG4EJAIIFC3CI7LFETV/","reference_id":"FGWXNAEEVRUZ5JG4EJAIIFC3CI7LFETV","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-09T13:43:40Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FGWXNAEEVRUZ5JG4EJAIIFC3CI7LFETV/"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/06/msg00037.html","reference_id":"msg00037.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-09T13:43:40Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/06/msg00037.html"},{"reference_url":"https://lists.apache.org/thread/tns2b4khyyncgs5v5p9y35pobg9z2bvs","reference_id":"tns2b4khyyncgs5v5p9y35pobg9z2bvs","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-09T13:43:40Z/"}],"url":"https://lists.apache.org/thread/tns2b4khyyncgs5v5p9y35pobg9z2bvs"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/195982?format=json","purl":"pkg:deb/debian/trafficserver@8.1.10%2Bds-1~deb11u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7cx9-r4vs-jycb"},{"vulnerability":"VCID-9and-qdyn-ryh8"},{"vulnerability":"VCID-g4ca-xg28-j7a3"},{"vulnerability":"VCID-pamq-mbf9-5yd5"},{"vulnerability":"VCID-pswv-yvhe-9ubs"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qjzn-d1sw-13gk"},{"vulnerability":"VCID-rtzu-8w8v-wbhj"},{"vulnerability":"VCID-sq5z-yfbm-cffs"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-w96r-ryuy-bbca"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.1.10%252Bds-1~deb11u1"}],"aliases":["CVE-2022-47184"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-abq3-a6yx-e7bq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/72146?format=json","vulnerability_id":"VCID-ahw3-7k2k-9ka4","summary":"Some HTTP/2 implementations are vulnerable to a reset flood, potentially leading to a denial of service. The attacker opens a number of streams and sends an invalid request over each stream that should solicit a stream of RST_STREAM frames from the peer. Depending on how the peer queues the RST_STREAM frames, this can consume excess memory, CPU, or both.","references":[{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00076.html","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00076.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00002.html","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00002.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00011.html","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00011.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00021.html","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00021.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00031.html","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00031.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00032.html","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00032.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00038.html","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00038.html"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3892","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:3892"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4352","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:4352"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0727","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2020:0727"},{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-9514.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-9514.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-9514","reference_id":"","reference_type":"","scores":[{"value":"0.09322","scoring_system":"epss","scoring_elements":"0.92913","published_at":"2026-06-07T12:55:00Z"},{"value":"0.09322","scoring_system":"epss","scoring_elements":"0.92911","published_at":"2026-06-08T12:55:00Z"},{"value":"0.09322","scoring_system":"epss","scoring_elements":"0.92922","published_at":"2026-06-09T12:55:00Z"},{"value":"0.09322","scoring_system":"epss","scoring_elements":"0.92918","published_at":"2026-06-06T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-9514"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10079","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10079"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14809","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14809"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15604","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15604"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15605","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15605"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15606","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15606"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9511","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9511"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9512","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9512"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9513","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9513"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9514","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9514"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9515","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9515"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9518","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9518"},{"reference_url":"http://seclists.org/fulldisclosure/2019/Aug/16","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://seclists.org/fulldisclosure/2019/Aug/16"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md"},{"reference_url":"https://go.dev/cl/190137","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://go.dev/cl/190137"},{"reference_url":"https://go.dev/issue/33606","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://go.dev/issue/33606"},{"reference_url":"https://go.googlesource.com/go/+/145e193131eb486077b66009beb051aba07c52a5","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://go.googlesource.com/go/+/145e193131eb486077b66009beb051aba07c52a5"},{"reference_url":"https://groups.google.com/g/golang-announce/c/65QixT3tcmg/m/DrFiG6vvCwAJ","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://groups.google.com/g/golang-announce/c/65QixT3tcmg/m/DrFiG6vvCwAJ"},{"reference_url":"https://kb.cert.org/vuls/id/605641","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://kb.cert.org/vuls/id/605641"},{"reference_url":"https://kc.mcafee.com/corporate/index?page=content&id=SB10296","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://kc.mcafee.com/corporate/index?page=content&id=SB10296"},{"reference_url":"https://lists.apache.org/thread.html/392108390cef48af647a2e47b7fd5380e050e35ae8d1aa2030254c04@%3Cusers.trafficserver.apache.org%3E","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.apache.org/thread.html/392108390cef48af647a2e47b7fd5380e050e35ae8d1aa2030254c04@%3Cusers.trafficserver.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/ad3d01e767199c1aed8033bb6b3f5bf98c011c7c536f07a5d34b3c19@%3Cannounce.trafficserver.apache.org%3E","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.apache.org/thread.html/ad3d01e767199c1aed8033bb6b3f5bf98c011c7c536f07a5d34b3c19@%3Cannounce.trafficserver.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/bde52309316ae798186d783a5e29f4ad1527f61c9219a289d0eee0a7@%3Cdev.trafficserver.apache.org%3E","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.apache.org/thread.html/bde52309316ae798186d783a5e29f4ad1527f61c9219a289d0eee0a7@%3Cdev.trafficserver.apache.org%3E"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2020/12/msg00011.html","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.debian.org/debian-lts-announce/2020/12/msg00011.html"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4BBP27PZGSY6OP6D26E5FW4GZKBFHNU7","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4BBP27PZGSY6OP6D26E5FW4GZKBFHNU7"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4ZQGHE3WTYLYAYJEIDJVF2FIGQTAYPMC","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4ZQGHE3WTYLYAYJEIDJVF2FIGQTAYPMC"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CMNFX5MNYRWWIMO4BTKYQCGUDMHO3AXP","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CMNFX5MNYRWWIMO4BTKYQCGUDMHO3AXP"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LYO6E3H34C346D2E443GLXK7OK6KIYIQ","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LYO6E3H34C346D2E443GLXK7OK6KIYIQ"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2019-9514","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2019-9514"},{"reference_url":"https://pkg.go.dev/vuln/GO-2022-0536","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://pkg.go.dev/vuln/GO-2022-0536"},{"reference_url":"https://seclists.org/bugtraq/2019/Aug/24","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://seclists.org/bugtraq/2019/Aug/24"},{"reference_url":"https://seclists.org/bugtraq/2019/Aug/31","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://seclists.org/bugtraq/2019/Aug/31"},{"reference_url":"https://seclists.org/bugtraq/2019/Aug/43","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://seclists.org/bugtraq/2019/Aug/43"},{"reference_url":"https://seclists.org/bugtraq/2019/Sep/18","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://seclists.org/bugtraq/2019/Sep/18"},{"reference_url":"https://security.netapp.com/advisory/ntap-20190823-0001","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://security.netapp.com/advisory/ntap-20190823-0001"},{"reference_url":"https://security.netapp.com/advisory/ntap-20190823-0004","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://security.netapp.com/advisory/ntap-20190823-0004"},{"reference_url":"https://security.netapp.com/advisory/ntap-20190823-0005","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://security.netapp.com/advisory/ntap-20190823-0005"},{"reference_url":"https://support.f5.com/csp/article/K01988340","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://support.f5.com/csp/article/K01988340"},{"reference_url":"https://support.f5.com/csp/article/K01988340?utm_source=f5support&utm_medium=RSS","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://support.f5.com/csp/article/K01988340?utm_source=f5support&utm_medium=RSS"},{"reference_url":"https://usn.ubuntu.com/4308-1","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://usn.ubuntu.com/4308-1"},{"reference_url":"https://www.debian.org/security/2019/dsa-4503","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.debian.org/security/2019/dsa-4503"},{"reference_url":"https://www.debian.org/security/2019/dsa-4508","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.debian.org/security/2019/dsa-4508"},{"reference_url":"https://www.debian.org/security/2019/dsa-4520","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.debian.org/security/2019/dsa-4520"},{"reference_url":"https://www.debian.org/security/2020/dsa-4669","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.debian.org/security/2020/dsa-4669"},{"reference_url":"https://www.synology.com/security/advisory/Synology_SA_19_33","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.synology.com/security/advisory/Synology_SA_19_33"},{"reference_url":"http://www.openwall.com/lists/oss-security/2019/08/20/1","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://www.openwall.com/lists/oss-security/2019/08/20/1"},{"reference_url":"http://www.openwall.com/lists/oss-security/2023/10/18/8","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://www.openwall.com/lists/oss-security/2023/10/18/8"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1062667","reference_id":"1062667","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1062667"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1735744","reference_id":"1735744","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1735744"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=934885","reference_id":"934885","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=934885"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=934886","reference_id":"934886","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=934886"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=934887","reference_id":"934887","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=934887"},{"reference_url":"https://security.archlinux.org/ASA-201908-15","reference_id":"ASA-201908-15","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201908-15"},{"reference_url":"https://security.archlinux.org/AVG-1021","reference_id":"AVG-1021","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1021"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2594","reference_id":"RHSA-2019:2594","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:2594"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2661","reference_id":"RHSA-2019:2661","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:2661"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2682","reference_id":"RHSA-2019:2682","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:2682"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2690","reference_id":"RHSA-2019:2690","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:2690"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2726","reference_id":"RHSA-2019:2726","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:2726"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2766","reference_id":"RHSA-2019:2766","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:2766"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2769","reference_id":"RHSA-2019:2769","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:2769"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2796","reference_id":"RHSA-2019:2796","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:2796"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2817","reference_id":"RHSA-2019:2817","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:2817"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2861","reference_id":"RHSA-2019:2861","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:2861"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2925","reference_id":"RHSA-2019:2925","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:2925"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2939","reference_id":"RHSA-2019:2939","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:2939"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2955","reference_id":"RHSA-2019:2955","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:2955"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2966","reference_id":"RHSA-2019:2966","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:2966"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3131","reference_id":"RHSA-2019:3131","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:3131"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3245","reference_id":"RHSA-2019:3245","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:3245"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3265","reference_id":"RHSA-2019:3265","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:3265"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3906","reference_id":"RHSA-2019:3906","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:3906"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4018","reference_id":"RHSA-2019:4018","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:4018"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4019","reference_id":"RHSA-2019:4019","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:4019"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4020","reference_id":"RHSA-2019:4020","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:4020"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4021","reference_id":"RHSA-2019:4021","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:4021"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4040","reference_id":"RHSA-2019:4040","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:4040"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4041","reference_id":"RHSA-2019:4041","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:4041"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4042","reference_id":"RHSA-2019:4042","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:4042"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4045","reference_id":"RHSA-2019:4045","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:4045"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4269","reference_id":"RHSA-2019:4269","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:4269"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4273","reference_id":"RHSA-2019:4273","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:4273"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0406","reference_id":"RHSA-2020:0406","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2020:0406"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0922","reference_id":"RHSA-2020:0922","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0922"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0983","reference_id":"RHSA-2020:0983","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0983"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:1445","reference_id":"RHSA-2020:1445","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:1445"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2067","reference_id":"RHSA-2020:2067","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2067"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2565","reference_id":"RHSA-2020:2565","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2565"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3196","reference_id":"RHSA-2020:3196","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3196"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3197","reference_id":"RHSA-2020:3197","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3197"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:5856","reference_id":"RHSA-2024:5856","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:5856"},{"reference_url":"https://usn.ubuntu.com/USN-4866-1/","reference_id":"USN-USN-4866-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/USN-4866-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515650?format=json","purl":"pkg:deb/debian/trafficserver@8.0.2%2Bds-1%2Bdeb10u6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-2kvz-wm9u-53bd"},{"vulnerability":"VCID-31ru-728d-7qhd"},{"vulnerability":"VCID-3kze-pbbq-63gp"},{"vulnerability":"VCID-4798-eshg-87d3"},{"vulnerability":"VCID-4juv-ezjh-xqb1"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7jmj-2mx5-pkea"},{"vulnerability":"VCID-7qfd-bk4h-j3aa"},{"vulnerability":"VCID-7wgn-m25j-w7h2"},{"vulnerability":"VCID-8c9g-167m-j3a3"},{"vulnerability":"VCID-8zcx-gcse-ukhp"},{"vulnerability":"VCID-abq3-a6yx-e7bq"},{"vulnerability":"VCID-ahw3-7k2k-9ka4"},{"vulnerability":"VCID-akpu-abr9-hqbz"},{"vulnerability":"VCID-anzk-2p8a-qkdx"},{"vulnerability":"VCID-b9rr-1n16-6bdd"},{"vulnerability":"VCID-brew-av11-bydd"},{"vulnerability":"VCID-d9vg-ugpq-bkde"},{"vulnerability":"VCID-ehgb-691x-8yf8"},{"vulnerability":"VCID-f8tu-csm2-9ka4"},{"vulnerability":"VCID-gm5j-mkze-8qgn"},{"vulnerability":"VCID-hzuw-nvff-fuav"},{"vulnerability":"VCID-j1zx-9f8z-cugc"},{"vulnerability":"VCID-kkpu-zyz5-z7b8"},{"vulnerability":"VCID-n279-7wxk-nydv"},{"vulnerability":"VCID-n8h3-vshe-fybw"},{"vulnerability":"VCID-n9ge-6p95-qyg6"},{"vulnerability":"VCID-ne7c-7vzh-qkhk"},{"vulnerability":"VCID-puv1-q4kq-sucs"},{"vulnerability":"VCID-pvgd-s1fu-mkc4"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qsg5-eqde-eyee"},{"vulnerability":"VCID-ry1q-c5e8-tba4"},{"vulnerability":"VCID-s9jy-8vcq-83ch"},{"vulnerability":"VCID-shyq-gyyp-ebav"},{"vulnerability":"VCID-t1qc-t43k-8ug4"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-wk1w-jhc1-6qe6"},{"vulnerability":"VCID-x4cj-g8hm-gfd9"},{"vulnerability":"VCID-xdek-jm8r-ryfh"},{"vulnerability":"VCID-xtkv-k4js-yfdm"},{"vulnerability":"VCID-y4a2-mamb-yqg6"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.0.2%252Bds-1%252Bdeb10u6"},{"url":"http://public2.vulnerablecode.io/api/packages/195982?format=json","purl":"pkg:deb/debian/trafficserver@8.1.10%2Bds-1~deb11u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7cx9-r4vs-jycb"},{"vulnerability":"VCID-9and-qdyn-ryh8"},{"vulnerability":"VCID-g4ca-xg28-j7a3"},{"vulnerability":"VCID-pamq-mbf9-5yd5"},{"vulnerability":"VCID-pswv-yvhe-9ubs"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qjzn-d1sw-13gk"},{"vulnerability":"VCID-rtzu-8w8v-wbhj"},{"vulnerability":"VCID-sq5z-yfbm-cffs"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-w96r-ryuy-bbca"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.1.10%252Bds-1~deb11u1"}],"aliases":["CVE-2019-9514","GHSA-39qc-96h7-956f"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ahw3-7k2k-9ka4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103159?format=json","vulnerability_id":"VCID-akpu-abr9-hqbz","summary":"Improper Input Validation vulnerability in handling the Transfer-Encoding header of Apache Traffic Server allows an attacker to poison the cache. This issue affects Apache Traffic Server 8.0.0 to 9.0.2.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-31778","reference_id":"","reference_type":"","scores":[{"value":"0.02239","scoring_system":"epss","scoring_elements":"0.8486","published_at":"2026-06-04T12:55:00Z"},{"value":"0.02239","scoring_system":"epss","scoring_elements":"0.84883","published_at":"2026-06-05T12:55:00Z"},{"value":"0.02239","scoring_system":"epss","scoring_elements":"0.84888","published_at":"2026-06-06T12:55:00Z"},{"value":"0.02239","scoring_system":"epss","scoring_elements":"0.84882","published_at":"2026-06-07T12:55:00Z"},{"value":"0.02239","scoring_system":"epss","scoring_elements":"0.84872","published_at":"2026-06-08T12:55:00Z"},{"value":"0.02239","scoring_system":"epss","scoring_elements":"0.84886","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-31778"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37150","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37150"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-25763","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-25763"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28129","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28129"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31778","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31778"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31779","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31779"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31780","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31780"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/195982?format=json","purl":"pkg:deb/debian/trafficserver@8.1.10%2Bds-1~deb11u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7cx9-r4vs-jycb"},{"vulnerability":"VCID-9and-qdyn-ryh8"},{"vulnerability":"VCID-g4ca-xg28-j7a3"},{"vulnerability":"VCID-pamq-mbf9-5yd5"},{"vulnerability":"VCID-pswv-yvhe-9ubs"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qjzn-d1sw-13gk"},{"vulnerability":"VCID-rtzu-8w8v-wbhj"},{"vulnerability":"VCID-sq5z-yfbm-cffs"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-w96r-ryuy-bbca"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.1.10%252Bds-1~deb11u1"}],"aliases":["CVE-2022-31778"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-akpu-abr9-hqbz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103131?format=json","vulnerability_id":"VCID-anzk-2p8a-qkdx","summary":"There is a vulnerability in Apache Traffic Server 6.0.0 to 6.2.3, 7.0.0 to 7.1.8, and 8.0.0 to 8.0.5 with a smuggling attack and chunked encoding. Upgrade to versions 7.1.9 and 8.0.6 or later versions.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-17565","reference_id":"","reference_type":"","scores":[{"value":"0.01208","scoring_system":"epss","scoring_elements":"0.79302","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01208","scoring_system":"epss","scoring_elements":"0.79328","published_at":"2026-06-05T12:55:00Z"},{"value":"0.01208","scoring_system":"epss","scoring_elements":"0.79333","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01208","scoring_system":"epss","scoring_elements":"0.79326","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01208","scoring_system":"epss","scoring_elements":"0.79315","published_at":"2026-06-08T12:55:00Z"},{"value":"0.01208","scoring_system":"epss","scoring_elements":"0.79334","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-17565"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17559","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17559"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17565","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17565"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1944","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1944"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9481","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9481"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515650?format=json","purl":"pkg:deb/debian/trafficserver@8.0.2%2Bds-1%2Bdeb10u6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-2kvz-wm9u-53bd"},{"vulnerability":"VCID-31ru-728d-7qhd"},{"vulnerability":"VCID-3kze-pbbq-63gp"},{"vulnerability":"VCID-4798-eshg-87d3"},{"vulnerability":"VCID-4juv-ezjh-xqb1"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7jmj-2mx5-pkea"},{"vulnerability":"VCID-7qfd-bk4h-j3aa"},{"vulnerability":"VCID-7wgn-m25j-w7h2"},{"vulnerability":"VCID-8c9g-167m-j3a3"},{"vulnerability":"VCID-8zcx-gcse-ukhp"},{"vulnerability":"VCID-abq3-a6yx-e7bq"},{"vulnerability":"VCID-ahw3-7k2k-9ka4"},{"vulnerability":"VCID-akpu-abr9-hqbz"},{"vulnerability":"VCID-anzk-2p8a-qkdx"},{"vulnerability":"VCID-b9rr-1n16-6bdd"},{"vulnerability":"VCID-brew-av11-bydd"},{"vulnerability":"VCID-d9vg-ugpq-bkde"},{"vulnerability":"VCID-ehgb-691x-8yf8"},{"vulnerability":"VCID-f8tu-csm2-9ka4"},{"vulnerability":"VCID-gm5j-mkze-8qgn"},{"vulnerability":"VCID-hzuw-nvff-fuav"},{"vulnerability":"VCID-j1zx-9f8z-cugc"},{"vulnerability":"VCID-kkpu-zyz5-z7b8"},{"vulnerability":"VCID-n279-7wxk-nydv"},{"vulnerability":"VCID-n8h3-vshe-fybw"},{"vulnerability":"VCID-n9ge-6p95-qyg6"},{"vulnerability":"VCID-ne7c-7vzh-qkhk"},{"vulnerability":"VCID-puv1-q4kq-sucs"},{"vulnerability":"VCID-pvgd-s1fu-mkc4"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qsg5-eqde-eyee"},{"vulnerability":"VCID-ry1q-c5e8-tba4"},{"vulnerability":"VCID-s9jy-8vcq-83ch"},{"vulnerability":"VCID-shyq-gyyp-ebav"},{"vulnerability":"VCID-t1qc-t43k-8ug4"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-wk1w-jhc1-6qe6"},{"vulnerability":"VCID-x4cj-g8hm-gfd9"},{"vulnerability":"VCID-xdek-jm8r-ryfh"},{"vulnerability":"VCID-xtkv-k4js-yfdm"},{"vulnerability":"VCID-y4a2-mamb-yqg6"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.0.2%252Bds-1%252Bdeb10u6"},{"url":"http://public2.vulnerablecode.io/api/packages/195982?format=json","purl":"pkg:deb/debian/trafficserver@8.1.10%2Bds-1~deb11u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7cx9-r4vs-jycb"},{"vulnerability":"VCID-9and-qdyn-ryh8"},{"vulnerability":"VCID-g4ca-xg28-j7a3"},{"vulnerability":"VCID-pamq-mbf9-5yd5"},{"vulnerability":"VCID-pswv-yvhe-9ubs"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qjzn-d1sw-13gk"},{"vulnerability":"VCID-rtzu-8w8v-wbhj"},{"vulnerability":"VCID-sq5z-yfbm-cffs"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-w96r-ryuy-bbca"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.1.10%252Bds-1~deb11u1"}],"aliases":["CVE-2019-17565"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-anzk-2p8a-qkdx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103150?format=json","vulnerability_id":"VCID-b9rr-1n16-6bdd","summary":"Improper Authentication vulnerability in TLS origin verification of Apache Traffic Server allows for man in the middle attacks. This issue affects Apache Traffic Server 8.0.0 to 8.0.8.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-38161","reference_id":"","reference_type":"","scores":[{"value":"0.01167","scoring_system":"epss","scoring_elements":"0.78979","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01167","scoring_system":"epss","scoring_elements":"0.79006","published_at":"2026-06-05T12:55:00Z"},{"value":"0.01167","scoring_system":"epss","scoring_elements":"0.79012","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01167","scoring_system":"epss","scoring_elements":"0.79003","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01167","scoring_system":"epss","scoring_elements":"0.78991","published_at":"2026-06-08T12:55:00Z"},{"value":"0.01167","scoring_system":"epss","scoring_elements":"0.79009","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-38161"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37147","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37147"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37148","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37148"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37149","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37149"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-38161","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-38161"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44040","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44040"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44759","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44759"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515650?format=json","purl":"pkg:deb/debian/trafficserver@8.0.2%2Bds-1%2Bdeb10u6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-2kvz-wm9u-53bd"},{"vulnerability":"VCID-31ru-728d-7qhd"},{"vulnerability":"VCID-3kze-pbbq-63gp"},{"vulnerability":"VCID-4798-eshg-87d3"},{"vulnerability":"VCID-4juv-ezjh-xqb1"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7jmj-2mx5-pkea"},{"vulnerability":"VCID-7qfd-bk4h-j3aa"},{"vulnerability":"VCID-7wgn-m25j-w7h2"},{"vulnerability":"VCID-8c9g-167m-j3a3"},{"vulnerability":"VCID-8zcx-gcse-ukhp"},{"vulnerability":"VCID-abq3-a6yx-e7bq"},{"vulnerability":"VCID-ahw3-7k2k-9ka4"},{"vulnerability":"VCID-akpu-abr9-hqbz"},{"vulnerability":"VCID-anzk-2p8a-qkdx"},{"vulnerability":"VCID-b9rr-1n16-6bdd"},{"vulnerability":"VCID-brew-av11-bydd"},{"vulnerability":"VCID-d9vg-ugpq-bkde"},{"vulnerability":"VCID-ehgb-691x-8yf8"},{"vulnerability":"VCID-f8tu-csm2-9ka4"},{"vulnerability":"VCID-gm5j-mkze-8qgn"},{"vulnerability":"VCID-hzuw-nvff-fuav"},{"vulnerability":"VCID-j1zx-9f8z-cugc"},{"vulnerability":"VCID-kkpu-zyz5-z7b8"},{"vulnerability":"VCID-n279-7wxk-nydv"},{"vulnerability":"VCID-n8h3-vshe-fybw"},{"vulnerability":"VCID-n9ge-6p95-qyg6"},{"vulnerability":"VCID-ne7c-7vzh-qkhk"},{"vulnerability":"VCID-puv1-q4kq-sucs"},{"vulnerability":"VCID-pvgd-s1fu-mkc4"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qsg5-eqde-eyee"},{"vulnerability":"VCID-ry1q-c5e8-tba4"},{"vulnerability":"VCID-s9jy-8vcq-83ch"},{"vulnerability":"VCID-shyq-gyyp-ebav"},{"vulnerability":"VCID-t1qc-t43k-8ug4"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-wk1w-jhc1-6qe6"},{"vulnerability":"VCID-x4cj-g8hm-gfd9"},{"vulnerability":"VCID-xdek-jm8r-ryfh"},{"vulnerability":"VCID-xtkv-k4js-yfdm"},{"vulnerability":"VCID-y4a2-mamb-yqg6"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.0.2%252Bds-1%252Bdeb10u6"},{"url":"http://public2.vulnerablecode.io/api/packages/195982?format=json","purl":"pkg:deb/debian/trafficserver@8.1.10%2Bds-1~deb11u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7cx9-r4vs-jycb"},{"vulnerability":"VCID-9and-qdyn-ryh8"},{"vulnerability":"VCID-g4ca-xg28-j7a3"},{"vulnerability":"VCID-pamq-mbf9-5yd5"},{"vulnerability":"VCID-pswv-yvhe-9ubs"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qjzn-d1sw-13gk"},{"vulnerability":"VCID-rtzu-8w8v-wbhj"},{"vulnerability":"VCID-sq5z-yfbm-cffs"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-w96r-ryuy-bbca"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.1.10%252Bds-1~deb11u1"}],"aliases":["CVE-2021-38161"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-b9rr-1n16-6bdd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/72145?format=json","vulnerability_id":"VCID-brew-av11-bydd","summary":"Some HTTP/2 implementations are vulnerable to ping floods, potentially leading to a denial of service. The attacker sends continual pings to an HTTP/2 peer, causing the peer to build an internal queue of responses. Depending on how efficiently this data is queued, this can consume excess CPU, memory, or both.","references":[{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00076.html","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00076.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00002.html","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00002.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00011.html","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00011.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00021.html","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00021.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00031.html","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00031.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00032.html","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00032.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00038.html","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00038.html"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3892","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:3892"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4352","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:4352"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0727","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2020:0727"},{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-9512.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-9512.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-9512","reference_id":"","reference_type":"","scores":[{"value":"0.50822","scoring_system":"epss","scoring_elements":"0.97914","published_at":"2026-06-05T12:55:00Z"},{"value":"0.50822","scoring_system":"epss","scoring_elements":"0.97916","published_at":"2026-06-08T12:55:00Z"},{"value":"0.50822","scoring_system":"epss","scoring_elements":"0.9791","published_at":"2026-06-04T12:55:00Z"},{"value":"0.50822","scoring_system":"epss","scoring_elements":"0.97915","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-9512"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10079","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10079"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14809","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14809"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9512","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9512"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9514","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9514"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9515","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9515"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9518","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9518"},{"reference_url":"http://seclists.org/fulldisclosure/2019/Aug/16","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://seclists.org/fulldisclosure/2019/Aug/16"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md"},{"reference_url":"https://go.dev/cl/190137","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://go.dev/cl/190137"},{"reference_url":"https://go.dev/issue/33606","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://go.dev/issue/33606"},{"reference_url":"https://go.googlesource.com/go/+/145e193131eb486077b66009beb051aba07c52a5","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://go.googlesource.com/go/+/145e193131eb486077b66009beb051aba07c52a5"},{"reference_url":"https://groups.google.com/g/golang-announce/c/65QixT3tcmg/m/DrFiG6vvCwAJ","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://groups.google.com/g/golang-announce/c/65QixT3tcmg/m/DrFiG6vvCwAJ"},{"reference_url":"https://kb.cert.org/vuls/id/605641","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://kb.cert.org/vuls/id/605641"},{"reference_url":"https://kc.mcafee.com/corporate/index?page=content&id=SB10296","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://kc.mcafee.com/corporate/index?page=content&id=SB10296"},{"reference_url":"https://lists.apache.org/thread.html/392108390cef48af647a2e47b7fd5380e050e35ae8d1aa2030254c04@%3Cusers.trafficserver.apache.org%3E","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.apache.org/thread.html/392108390cef48af647a2e47b7fd5380e050e35ae8d1aa2030254c04@%3Cusers.trafficserver.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/ad3d01e767199c1aed8033bb6b3f5bf98c011c7c536f07a5d34b3c19@%3Cannounce.trafficserver.apache.org%3E","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.apache.org/thread.html/ad3d01e767199c1aed8033bb6b3f5bf98c011c7c536f07a5d34b3c19@%3Cannounce.trafficserver.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/bde52309316ae798186d783a5e29f4ad1527f61c9219a289d0eee0a7@%3Cdev.trafficserver.apache.org%3E","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.apache.org/thread.html/bde52309316ae798186d783a5e29f4ad1527f61c9219a289d0eee0a7@%3Cdev.trafficserver.apache.org%3E"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2020/12/msg00011.html","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.debian.org/debian-lts-announce/2020/12/msg00011.html"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4BBP27PZGSY6OP6D26E5FW4GZKBFHNU7","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4BBP27PZGSY6OP6D26E5FW4GZKBFHNU7"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4ZQGHE3WTYLYAYJEIDJVF2FIGQTAYPMC","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4ZQGHE3WTYLYAYJEIDJVF2FIGQTAYPMC"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CMNFX5MNYRWWIMO4BTKYQCGUDMHO3AXP","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CMNFX5MNYRWWIMO4BTKYQCGUDMHO3AXP"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LYO6E3H34C346D2E443GLXK7OK6KIYIQ","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LYO6E3H34C346D2E443GLXK7OK6KIYIQ"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2019-9512","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2019-9512"},{"reference_url":"https://pkg.go.dev/vuln/GO-2022-0536","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://pkg.go.dev/vuln/GO-2022-0536"},{"reference_url":"https://seclists.org/bugtraq/2019/Aug/24","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://seclists.org/bugtraq/2019/Aug/24"},{"reference_url":"https://seclists.org/bugtraq/2019/Aug/31","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://seclists.org/bugtraq/2019/Aug/31"},{"reference_url":"https://seclists.org/bugtraq/2019/Aug/43","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://seclists.org/bugtraq/2019/Aug/43"},{"reference_url":"https://seclists.org/bugtraq/2019/Sep/18","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://seclists.org/bugtraq/2019/Sep/18"},{"reference_url":"https://security.netapp.com/advisory/ntap-20190823-0001","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://security.netapp.com/advisory/ntap-20190823-0001"},{"reference_url":"https://security.netapp.com/advisory/ntap-20190823-0004","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://security.netapp.com/advisory/ntap-20190823-0004"},{"reference_url":"https://security.netapp.com/advisory/ntap-20190823-0005","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://security.netapp.com/advisory/ntap-20190823-0005"},{"reference_url":"https://support.f5.com/csp/article/K98053339","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://support.f5.com/csp/article/K98053339"},{"reference_url":"https://support.f5.com/csp/article/K98053339?utm_source=f5support&utm_medium=RSS","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://support.f5.com/csp/article/K98053339?utm_source=f5support&utm_medium=RSS"},{"reference_url":"https://usn.ubuntu.com/4308-1","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://usn.ubuntu.com/4308-1"},{"reference_url":"https://www.debian.org/security/2019/dsa-4503","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.debian.org/security/2019/dsa-4503"},{"reference_url":"https://www.debian.org/security/2019/dsa-4508","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.debian.org/security/2019/dsa-4508"},{"reference_url":"https://www.debian.org/security/2019/dsa-4520","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.debian.org/security/2019/dsa-4520"},{"reference_url":"https://www.synology.com/security/advisory/Synology_SA_19_33","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.synology.com/security/advisory/Synology_SA_19_33"},{"reference_url":"http://www.openwall.com/lists/oss-security/2019/08/20/1","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://www.openwall.com/lists/oss-security/2019/08/20/1"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1735645","reference_id":"1735645","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1735645"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=934886","reference_id":"934886","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=934886"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=934887","reference_id":"934887","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=934887"},{"reference_url":"https://security.archlinux.org/ASA-201908-15","reference_id":"ASA-201908-15","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201908-15"},{"reference_url":"https://security.archlinux.org/AVG-1021","reference_id":"AVG-1021","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1021"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2594","reference_id":"RHSA-2019:2594","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:2594"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2661","reference_id":"RHSA-2019:2661","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:2661"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2682","reference_id":"RHSA-2019:2682","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:2682"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2690","reference_id":"RHSA-2019:2690","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:2690"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2726","reference_id":"RHSA-2019:2726","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:2726"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2766","reference_id":"RHSA-2019:2766","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:2766"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2769","reference_id":"RHSA-2019:2769","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:2769"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2796","reference_id":"RHSA-2019:2796","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:2796"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2817","reference_id":"RHSA-2019:2817","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:2817"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2861","reference_id":"RHSA-2019:2861","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:2861"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2925","reference_id":"RHSA-2019:2925","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:2925"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2939","reference_id":"RHSA-2019:2939","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:2939"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2955","reference_id":"RHSA-2019:2955","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:2955"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2966","reference_id":"RHSA-2019:2966","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:2966"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3131","reference_id":"RHSA-2019:3131","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:3131"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3245","reference_id":"RHSA-2019:3245","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:3245"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3265","reference_id":"RHSA-2019:3265","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:3265"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3906","reference_id":"RHSA-2019:3906","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:3906"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4018","reference_id":"RHSA-2019:4018","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:4018"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4019","reference_id":"RHSA-2019:4019","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:4019"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4020","reference_id":"RHSA-2019:4020","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:4020"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4021","reference_id":"RHSA-2019:4021","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:4021"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4040","reference_id":"RHSA-2019:4040","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:4040"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4041","reference_id":"RHSA-2019:4041","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:4041"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4042","reference_id":"RHSA-2019:4042","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:4042"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4045","reference_id":"RHSA-2019:4045","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:4045"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4269","reference_id":"RHSA-2019:4269","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:4269"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4273","reference_id":"RHSA-2019:4273","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:4273"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0406","reference_id":"RHSA-2020:0406","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2020:0406"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0922","reference_id":"RHSA-2020:0922","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0922"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0983","reference_id":"RHSA-2020:0983","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0983"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:1445","reference_id":"RHSA-2020:1445","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:1445"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2067","reference_id":"RHSA-2020:2067","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2067"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2565","reference_id":"RHSA-2020:2565","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2565"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3196","reference_id":"RHSA-2020:3196","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3196"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3197","reference_id":"RHSA-2020:3197","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3197"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:5856","reference_id":"RHSA-2024:5856","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:5856"},{"reference_url":"https://usn.ubuntu.com/USN-4866-1/","reference_id":"USN-USN-4866-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/USN-4866-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515650?format=json","purl":"pkg:deb/debian/trafficserver@8.0.2%2Bds-1%2Bdeb10u6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-2kvz-wm9u-53bd"},{"vulnerability":"VCID-31ru-728d-7qhd"},{"vulnerability":"VCID-3kze-pbbq-63gp"},{"vulnerability":"VCID-4798-eshg-87d3"},{"vulnerability":"VCID-4juv-ezjh-xqb1"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7jmj-2mx5-pkea"},{"vulnerability":"VCID-7qfd-bk4h-j3aa"},{"vulnerability":"VCID-7wgn-m25j-w7h2"},{"vulnerability":"VCID-8c9g-167m-j3a3"},{"vulnerability":"VCID-8zcx-gcse-ukhp"},{"vulnerability":"VCID-abq3-a6yx-e7bq"},{"vulnerability":"VCID-ahw3-7k2k-9ka4"},{"vulnerability":"VCID-akpu-abr9-hqbz"},{"vulnerability":"VCID-anzk-2p8a-qkdx"},{"vulnerability":"VCID-b9rr-1n16-6bdd"},{"vulnerability":"VCID-brew-av11-bydd"},{"vulnerability":"VCID-d9vg-ugpq-bkde"},{"vulnerability":"VCID-ehgb-691x-8yf8"},{"vulnerability":"VCID-f8tu-csm2-9ka4"},{"vulnerability":"VCID-gm5j-mkze-8qgn"},{"vulnerability":"VCID-hzuw-nvff-fuav"},{"vulnerability":"VCID-j1zx-9f8z-cugc"},{"vulnerability":"VCID-kkpu-zyz5-z7b8"},{"vulnerability":"VCID-n279-7wxk-nydv"},{"vulnerability":"VCID-n8h3-vshe-fybw"},{"vulnerability":"VCID-n9ge-6p95-qyg6"},{"vulnerability":"VCID-ne7c-7vzh-qkhk"},{"vulnerability":"VCID-puv1-q4kq-sucs"},{"vulnerability":"VCID-pvgd-s1fu-mkc4"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qsg5-eqde-eyee"},{"vulnerability":"VCID-ry1q-c5e8-tba4"},{"vulnerability":"VCID-s9jy-8vcq-83ch"},{"vulnerability":"VCID-shyq-gyyp-ebav"},{"vulnerability":"VCID-t1qc-t43k-8ug4"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-wk1w-jhc1-6qe6"},{"vulnerability":"VCID-x4cj-g8hm-gfd9"},{"vulnerability":"VCID-xdek-jm8r-ryfh"},{"vulnerability":"VCID-xtkv-k4js-yfdm"},{"vulnerability":"VCID-y4a2-mamb-yqg6"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.0.2%252Bds-1%252Bdeb10u6"},{"url":"http://public2.vulnerablecode.io/api/packages/195982?format=json","purl":"pkg:deb/debian/trafficserver@8.1.10%2Bds-1~deb11u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7cx9-r4vs-jycb"},{"vulnerability":"VCID-9and-qdyn-ryh8"},{"vulnerability":"VCID-g4ca-xg28-j7a3"},{"vulnerability":"VCID-pamq-mbf9-5yd5"},{"vulnerability":"VCID-pswv-yvhe-9ubs"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qjzn-d1sw-13gk"},{"vulnerability":"VCID-rtzu-8w8v-wbhj"},{"vulnerability":"VCID-sq5z-yfbm-cffs"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-w96r-ryuy-bbca"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.1.10%252Bds-1~deb11u1"}],"aliases":["CVE-2019-9512","GHSA-hgr8-6h9x-f7q9"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-brew-av11-bydd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103161?format=json","vulnerability_id":"VCID-d9vg-ugpq-bkde","summary":"Improper Input Validation vulnerability in HTTP/2 frame handling of Apache Traffic Server allows an attacker to smuggle requests. This issue affects Apache Traffic Server 8.0.0 to 9.1.2.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-31780","reference_id":"","reference_type":"","scores":[{"value":"0.04835","scoring_system":"epss","scoring_elements":"0.89702","published_at":"2026-06-04T12:55:00Z"},{"value":"0.04835","scoring_system":"epss","scoring_elements":"0.89719","published_at":"2026-06-05T12:55:00Z"},{"value":"0.04835","scoring_system":"epss","scoring_elements":"0.89722","published_at":"2026-06-06T12:55:00Z"},{"value":"0.04835","scoring_system":"epss","scoring_elements":"0.8972","published_at":"2026-06-07T12:55:00Z"},{"value":"0.04835","scoring_system":"epss","scoring_elements":"0.89721","published_at":"2026-06-08T12:55:00Z"},{"value":"0.04835","scoring_system":"epss","scoring_elements":"0.89736","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-31780"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37150","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37150"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-25763","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-25763"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28129","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28129"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31778","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31778"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31779","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31779"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31780","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31780"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/195982?format=json","purl":"pkg:deb/debian/trafficserver@8.1.10%2Bds-1~deb11u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7cx9-r4vs-jycb"},{"vulnerability":"VCID-9and-qdyn-ryh8"},{"vulnerability":"VCID-g4ca-xg28-j7a3"},{"vulnerability":"VCID-pamq-mbf9-5yd5"},{"vulnerability":"VCID-pswv-yvhe-9ubs"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qjzn-d1sw-13gk"},{"vulnerability":"VCID-rtzu-8w8v-wbhj"},{"vulnerability":"VCID-sq5z-yfbm-cffs"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-w96r-ryuy-bbca"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.1.10%252Bds-1~deb11u1"}],"aliases":["CVE-2022-31780"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-d9vg-ugpq-bkde"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103169?format=json","vulnerability_id":"VCID-ehgb-691x-8yf8","summary":"Improper Input Validation vulnerability in Apache Software Foundation Apache Traffic Server.This issue affects Apache Traffic Server: through 9.2.1.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-33934","reference_id":"","reference_type":"","scores":[{"value":"0.00487","scoring_system":"epss","scoring_elements":"0.65827","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00487","scoring_system":"epss","scoring_elements":"0.65834","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00487","scoring_system":"epss","scoring_elements":"0.65815","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00487","scoring_system":"epss","scoring_elements":"0.65825","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00487","scoring_system":"epss","scoring_elements":"0.65839","published_at":"2026-06-06T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-33934"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-47185","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-47185"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-33934","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-33934"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-41752","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-41752"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1043430","reference_id":"1043430","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1043430"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BOTOM2MFKOLK46Q3BQHO662HTPZFRQUC/","reference_id":"BOTOM2MFKOLK46Q3BQHO662HTPZFRQUC","reference_type":"","scores":[{"value":"9.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-10-01T18:29:05Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BOTOM2MFKOLK46Q3BQHO662HTPZFRQUC/"},{"reference_url":"https://lists.apache.org/thread/jsl6dfdgs1mjjo1mbtyflyjr7xftswhc","reference_id":"jsl6dfdgs1mjjo1mbtyflyjr7xftswhc","reference_type":"","scores":[{"value":"9.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-10-01T18:29:05Z/"}],"url":"https://lists.apache.org/thread/jsl6dfdgs1mjjo1mbtyflyjr7xftswhc"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/09/msg00042.html","reference_id":"msg00042.html","reference_type":"","scores":[{"value":"9.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-10-01T18:29:05Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/09/msg00042.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/195982?format=json","purl":"pkg:deb/debian/trafficserver@8.1.10%2Bds-1~deb11u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7cx9-r4vs-jycb"},{"vulnerability":"VCID-9and-qdyn-ryh8"},{"vulnerability":"VCID-g4ca-xg28-j7a3"},{"vulnerability":"VCID-pamq-mbf9-5yd5"},{"vulnerability":"VCID-pswv-yvhe-9ubs"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qjzn-d1sw-13gk"},{"vulnerability":"VCID-rtzu-8w8v-wbhj"},{"vulnerability":"VCID-sq5z-yfbm-cffs"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-w96r-ryuy-bbca"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.1.10%252Bds-1~deb11u1"}],"aliases":["CVE-2023-33934"],"risk_score":4.1,"exploitability":"0.5","weighted_severity":"8.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ehgb-691x-8yf8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103124?format=json","vulnerability_id":"VCID-eujd-mjmg-kua3","summary":"A carefully crafted invalid TLS handshake can cause Apache Traffic Server (ATS) to segfault. This affects version 6.2.2. To resolve this issue users running 6.2.2 should upgrade to 6.2.3 or later versions.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-8022","reference_id":"","reference_type":"","scores":[{"value":"0.06136","scoring_system":"epss","scoring_elements":"0.90963","published_at":"2026-06-04T12:55:00Z"},{"value":"0.06136","scoring_system":"epss","scoring_elements":"0.90977","published_at":"2026-06-05T12:55:00Z"},{"value":"0.06136","scoring_system":"epss","scoring_elements":"0.90975","published_at":"2026-06-06T12:55:00Z"},{"value":"0.06136","scoring_system":"epss","scoring_elements":"0.90972","published_at":"2026-06-07T12:55:00Z"},{"value":"0.06136","scoring_system":"epss","scoring_elements":"0.9097","published_at":"2026-06-08T12:55:00Z"},{"value":"0.06136","scoring_system":"epss","scoring_elements":"0.90987","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-8022"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8022","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8022"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515649?format=json","purl":"pkg:deb/debian/trafficserver@7.0.0-4~bpo8%2B1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-2kvz-wm9u-53bd"},{"vulnerability":"VCID-31ru-728d-7qhd"},{"vulnerability":"VCID-3kze-pbbq-63gp"},{"vulnerability":"VCID-4798-eshg-87d3"},{"vulnerability":"VCID-4juv-ezjh-xqb1"},{"vulnerability":"VCID-4z9e-2ugc-vqav"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-6u62-a3sj-efcw"},{"vulnerability":"VCID-7jmj-2mx5-pkea"},{"vulnerability":"VCID-7qfd-bk4h-j3aa"},{"vulnerability":"VCID-7wgn-m25j-w7h2"},{"vulnerability":"VCID-8c9g-167m-j3a3"},{"vulnerability":"VCID-8zcx-gcse-ukhp"},{"vulnerability":"VCID-abq3-a6yx-e7bq"},{"vulnerability":"VCID-ahw3-7k2k-9ka4"},{"vulnerability":"VCID-akpu-abr9-hqbz"},{"vulnerability":"VCID-anzk-2p8a-qkdx"},{"vulnerability":"VCID-b9rr-1n16-6bdd"},{"vulnerability":"VCID-brew-av11-bydd"},{"vulnerability":"VCID-d9vg-ugpq-bkde"},{"vulnerability":"VCID-ehgb-691x-8yf8"},{"vulnerability":"VCID-f8tu-csm2-9ka4"},{"vulnerability":"VCID-gm5j-mkze-8qgn"},{"vulnerability":"VCID-gq8w-7xep-77gz"},{"vulnerability":"VCID-h7f1-f91u-mqf2"},{"vulnerability":"VCID-hzuw-nvff-fuav"},{"vulnerability":"VCID-j1zx-9f8z-cugc"},{"vulnerability":"VCID-kkpu-zyz5-z7b8"},{"vulnerability":"VCID-n279-7wxk-nydv"},{"vulnerability":"VCID-n8h3-vshe-fybw"},{"vulnerability":"VCID-n9ge-6p95-qyg6"},{"vulnerability":"VCID-ne7c-7vzh-qkhk"},{"vulnerability":"VCID-puv1-q4kq-sucs"},{"vulnerability":"VCID-pvgd-s1fu-mkc4"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qsg5-eqde-eyee"},{"vulnerability":"VCID-rsvc-b3bb-dudb"},{"vulnerability":"VCID-ry1q-c5e8-tba4"},{"vulnerability":"VCID-rzba-hj3c-w7d2"},{"vulnerability":"VCID-s9jy-8vcq-83ch"},{"vulnerability":"VCID-shyq-gyyp-ebav"},{"vulnerability":"VCID-t1qc-t43k-8ug4"},{"vulnerability":"VCID-u2dm-zzmm-yugj"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-wk1w-jhc1-6qe6"},{"vulnerability":"VCID-x4cj-g8hm-gfd9"},{"vulnerability":"VCID-xdek-jm8r-ryfh"},{"vulnerability":"VCID-xtkv-k4js-yfdm"},{"vulnerability":"VCID-y4a2-mamb-yqg6"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@7.0.0-4~bpo8%252B1"}],"aliases":["CVE-2018-8022"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-eujd-mjmg-kua3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103168?format=json","vulnerability_id":"VCID-f8tu-csm2-9ka4","summary":"Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Software Foundation Apache Traffic Server.This issue affects Apache Traffic Server: from 8.0.0 through 9.2.0.  8.x users should upgrade to 8.1.7 or later versions 9.x users should upgrade to 9.2.1 or later versions","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-33933","reference_id":"","reference_type":"","scores":[{"value":"0.00146","scoring_system":"epss","scoring_elements":"0.34787","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00146","scoring_system":"epss","scoring_elements":"0.34754","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00146","scoring_system":"epss","scoring_elements":"0.34732","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00146","scoring_system":"epss","scoring_elements":"0.34767","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00146","scoring_system":"epss","scoring_elements":"0.34802","published_at":"2026-06-06T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-33933"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-47184","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-47184"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-30631","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-30631"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-33933","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-33933"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1038248","reference_id":"1038248","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1038248"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6GDCBNFDDW6ULW7CACJCPENI7BVDHM5O/","reference_id":"6GDCBNFDDW6ULW7CACJCPENI7BVDHM5O","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-09T13:54:57Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6GDCBNFDDW6ULW7CACJCPENI7BVDHM5O/"},{"reference_url":"https://www.debian.org/security/2023/dsa-5435","reference_id":"dsa-5435","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-09T13:54:57Z/"}],"url":"https://www.debian.org/security/2023/dsa-5435"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FGWXNAEEVRUZ5JG4EJAIIFC3CI7LFETV/","reference_id":"FGWXNAEEVRUZ5JG4EJAIIFC3CI7LFETV","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-09T13:54:57Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FGWXNAEEVRUZ5JG4EJAIIFC3CI7LFETV/"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/06/msg00037.html","reference_id":"msg00037.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-09T13:54:57Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/06/msg00037.html"},{"reference_url":"https://lists.apache.org/thread/tns2b4khyyncgs5v5p9y35pobg9z2bvs","reference_id":"tns2b4khyyncgs5v5p9y35pobg9z2bvs","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-09T13:54:57Z/"}],"url":"https://lists.apache.org/thread/tns2b4khyyncgs5v5p9y35pobg9z2bvs"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/195982?format=json","purl":"pkg:deb/debian/trafficserver@8.1.10%2Bds-1~deb11u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7cx9-r4vs-jycb"},{"vulnerability":"VCID-9and-qdyn-ryh8"},{"vulnerability":"VCID-g4ca-xg28-j7a3"},{"vulnerability":"VCID-pamq-mbf9-5yd5"},{"vulnerability":"VCID-pswv-yvhe-9ubs"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qjzn-d1sw-13gk"},{"vulnerability":"VCID-rtzu-8w8v-wbhj"},{"vulnerability":"VCID-sq5z-yfbm-cffs"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-w96r-ryuy-bbca"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.1.10%252Bds-1~deb11u1"}],"aliases":["CVE-2023-33933"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-f8tu-csm2-9ka4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103160?format=json","vulnerability_id":"VCID-gm5j-mkze-8qgn","summary":"Improper Input Validation vulnerability in HTTP/2 header parsing of Apache Traffic Server allows an attacker to smuggle requests. This issue affects Apache Traffic Server 8.0.0 to 9.1.2.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-31779","reference_id":"","reference_type":"","scores":[{"value":"0.02849","scoring_system":"epss","scoring_elements":"0.86496","published_at":"2026-06-04T12:55:00Z"},{"value":"0.02849","scoring_system":"epss","scoring_elements":"0.86519","published_at":"2026-06-06T12:55:00Z"},{"value":"0.02849","scoring_system":"epss","scoring_elements":"0.86514","published_at":"2026-06-07T12:55:00Z"},{"value":"0.02849","scoring_system":"epss","scoring_elements":"0.86503","published_at":"2026-06-08T12:55:00Z"},{"value":"0.02849","scoring_system":"epss","scoring_elements":"0.86516","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-31779"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37150","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37150"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-25763","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-25763"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28129","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28129"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31778","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31778"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31779","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31779"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31780","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31780"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/195982?format=json","purl":"pkg:deb/debian/trafficserver@8.1.10%2Bds-1~deb11u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7cx9-r4vs-jycb"},{"vulnerability":"VCID-9and-qdyn-ryh8"},{"vulnerability":"VCID-g4ca-xg28-j7a3"},{"vulnerability":"VCID-pamq-mbf9-5yd5"},{"vulnerability":"VCID-pswv-yvhe-9ubs"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qjzn-d1sw-13gk"},{"vulnerability":"VCID-rtzu-8w8v-wbhj"},{"vulnerability":"VCID-sq5z-yfbm-cffs"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-w96r-ryuy-bbca"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.1.10%252Bds-1~deb11u1"}],"aliases":["CVE-2022-31779"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-gm5j-mkze-8qgn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103120?format=json","vulnerability_id":"VCID-gq8w-7xep-77gz","summary":"Adding method ACLs in remap.config can cause a segfault when the user makes a carefully crafted request. This affects versions Apache Traffic Server (ATS) 6.0.0 to 6.2.2 and 7.0.0 to 7.1.3. To resolve this issue users running 6.x should upgrade to 6.2.3 or later versions and 7.x users should upgrade to 7.1.4 or later versions.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-1318","reference_id":"","reference_type":"","scores":[{"value":"0.14594","scoring_system":"epss","scoring_elements":"0.94596","published_at":"2026-06-04T12:55:00Z"},{"value":"0.14594","scoring_system":"epss","scoring_elements":"0.94604","published_at":"2026-06-05T12:55:00Z"},{"value":"0.14594","scoring_system":"epss","scoring_elements":"0.94605","published_at":"2026-06-06T12:55:00Z"},{"value":"0.14594","scoring_system":"epss","scoring_elements":"0.94607","published_at":"2026-06-07T12:55:00Z"},{"value":"0.14594","scoring_system":"epss","scoring_elements":"0.94608","published_at":"2026-06-08T12:55:00Z"},{"value":"0.14594","scoring_system":"epss","scoring_elements":"0.94614","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-1318"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1318","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1318"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8004","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8004"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8005","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8005"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8040","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8040"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515650?format=json","purl":"pkg:deb/debian/trafficserver@8.0.2%2Bds-1%2Bdeb10u6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-2kvz-wm9u-53bd"},{"vulnerability":"VCID-31ru-728d-7qhd"},{"vulnerability":"VCID-3kze-pbbq-63gp"},{"vulnerability":"VCID-4798-eshg-87d3"},{"vulnerability":"VCID-4juv-ezjh-xqb1"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7jmj-2mx5-pkea"},{"vulnerability":"VCID-7qfd-bk4h-j3aa"},{"vulnerability":"VCID-7wgn-m25j-w7h2"},{"vulnerability":"VCID-8c9g-167m-j3a3"},{"vulnerability":"VCID-8zcx-gcse-ukhp"},{"vulnerability":"VCID-abq3-a6yx-e7bq"},{"vulnerability":"VCID-ahw3-7k2k-9ka4"},{"vulnerability":"VCID-akpu-abr9-hqbz"},{"vulnerability":"VCID-anzk-2p8a-qkdx"},{"vulnerability":"VCID-b9rr-1n16-6bdd"},{"vulnerability":"VCID-brew-av11-bydd"},{"vulnerability":"VCID-d9vg-ugpq-bkde"},{"vulnerability":"VCID-ehgb-691x-8yf8"},{"vulnerability":"VCID-f8tu-csm2-9ka4"},{"vulnerability":"VCID-gm5j-mkze-8qgn"},{"vulnerability":"VCID-hzuw-nvff-fuav"},{"vulnerability":"VCID-j1zx-9f8z-cugc"},{"vulnerability":"VCID-kkpu-zyz5-z7b8"},{"vulnerability":"VCID-n279-7wxk-nydv"},{"vulnerability":"VCID-n8h3-vshe-fybw"},{"vulnerability":"VCID-n9ge-6p95-qyg6"},{"vulnerability":"VCID-ne7c-7vzh-qkhk"},{"vulnerability":"VCID-puv1-q4kq-sucs"},{"vulnerability":"VCID-pvgd-s1fu-mkc4"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qsg5-eqde-eyee"},{"vulnerability":"VCID-ry1q-c5e8-tba4"},{"vulnerability":"VCID-s9jy-8vcq-83ch"},{"vulnerability":"VCID-shyq-gyyp-ebav"},{"vulnerability":"VCID-t1qc-t43k-8ug4"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-wk1w-jhc1-6qe6"},{"vulnerability":"VCID-x4cj-g8hm-gfd9"},{"vulnerability":"VCID-xdek-jm8r-ryfh"},{"vulnerability":"VCID-xtkv-k4js-yfdm"},{"vulnerability":"VCID-y4a2-mamb-yqg6"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.0.2%252Bds-1%252Bdeb10u6"}],"aliases":["CVE-2018-1318"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-gq8w-7xep-77gz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103125?format=json","vulnerability_id":"VCID-h7f1-f91u-mqf2","summary":"Pages that are rendered using the ESI plugin can have access to the cookie header when the plugin is configured not to allow access. This affects Apache Traffic Server (ATS) versions 6.0.0 to 6.2.2 and 7.0.0 to 7.1.3. To resolve this issue users running 6.x should upgrade to 6.2.3 or later versions and 7.x users should upgrade to 7.1.4 or later versions.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-8040","reference_id":"","reference_type":"","scores":[{"value":"0.07825","scoring_system":"epss","scoring_elements":"0.92128","published_at":"2026-06-04T12:55:00Z"},{"value":"0.07825","scoring_system":"epss","scoring_elements":"0.9214","published_at":"2026-06-05T12:55:00Z"},{"value":"0.07825","scoring_system":"epss","scoring_elements":"0.92138","published_at":"2026-06-06T12:55:00Z"},{"value":"0.07825","scoring_system":"epss","scoring_elements":"0.92137","published_at":"2026-06-08T12:55:00Z"},{"value":"0.07825","scoring_system":"epss","scoring_elements":"0.92151","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-8040"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1318","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1318"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8004","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8004"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8005","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8005"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8040","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8040"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515650?format=json","purl":"pkg:deb/debian/trafficserver@8.0.2%2Bds-1%2Bdeb10u6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-2kvz-wm9u-53bd"},{"vulnerability":"VCID-31ru-728d-7qhd"},{"vulnerability":"VCID-3kze-pbbq-63gp"},{"vulnerability":"VCID-4798-eshg-87d3"},{"vulnerability":"VCID-4juv-ezjh-xqb1"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7jmj-2mx5-pkea"},{"vulnerability":"VCID-7qfd-bk4h-j3aa"},{"vulnerability":"VCID-7wgn-m25j-w7h2"},{"vulnerability":"VCID-8c9g-167m-j3a3"},{"vulnerability":"VCID-8zcx-gcse-ukhp"},{"vulnerability":"VCID-abq3-a6yx-e7bq"},{"vulnerability":"VCID-ahw3-7k2k-9ka4"},{"vulnerability":"VCID-akpu-abr9-hqbz"},{"vulnerability":"VCID-anzk-2p8a-qkdx"},{"vulnerability":"VCID-b9rr-1n16-6bdd"},{"vulnerability":"VCID-brew-av11-bydd"},{"vulnerability":"VCID-d9vg-ugpq-bkde"},{"vulnerability":"VCID-ehgb-691x-8yf8"},{"vulnerability":"VCID-f8tu-csm2-9ka4"},{"vulnerability":"VCID-gm5j-mkze-8qgn"},{"vulnerability":"VCID-hzuw-nvff-fuav"},{"vulnerability":"VCID-j1zx-9f8z-cugc"},{"vulnerability":"VCID-kkpu-zyz5-z7b8"},{"vulnerability":"VCID-n279-7wxk-nydv"},{"vulnerability":"VCID-n8h3-vshe-fybw"},{"vulnerability":"VCID-n9ge-6p95-qyg6"},{"vulnerability":"VCID-ne7c-7vzh-qkhk"},{"vulnerability":"VCID-puv1-q4kq-sucs"},{"vulnerability":"VCID-pvgd-s1fu-mkc4"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qsg5-eqde-eyee"},{"vulnerability":"VCID-ry1q-c5e8-tba4"},{"vulnerability":"VCID-s9jy-8vcq-83ch"},{"vulnerability":"VCID-shyq-gyyp-ebav"},{"vulnerability":"VCID-t1qc-t43k-8ug4"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-wk1w-jhc1-6qe6"},{"vulnerability":"VCID-x4cj-g8hm-gfd9"},{"vulnerability":"VCID-xdek-jm8r-ryfh"},{"vulnerability":"VCID-xtkv-k4js-yfdm"},{"vulnerability":"VCID-y4a2-mamb-yqg6"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.0.2%252Bds-1%252Bdeb10u6"}],"aliases":["CVE-2018-8040"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-h7f1-f91u-mqf2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103162?format=json","vulnerability_id":"VCID-hzuw-nvff-fuav","summary":"Improper Check for Unusual or Exceptional Conditions vulnerability handling requests in Apache Traffic Server allows an attacker to crash the server under certain conditions.  This issue affects Apache Traffic Server: from 8.0.0 through 9.1.3.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-32749","reference_id":"","reference_type":"","scores":[{"value":"0.06543","scoring_system":"epss","scoring_elements":"0.91298","published_at":"2026-06-04T12:55:00Z"},{"value":"0.06543","scoring_system":"epss","scoring_elements":"0.91318","published_at":"2026-06-09T12:55:00Z"},{"value":"0.06543","scoring_system":"epss","scoring_elements":"0.91303","published_at":"2026-06-08T12:55:00Z"},{"value":"0.06551","scoring_system":"epss","scoring_elements":"0.91315","published_at":"2026-06-06T12:55:00Z"},{"value":"0.06551","scoring_system":"epss","scoring_elements":"0.91312","published_at":"2026-06-07T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-32749"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32749","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32749"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37392","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37392"},{"reference_url":"https://lists.apache.org/thread/mrj2lg4s0hf027rk7gz8t7hbn9xpfg02","reference_id":"mrj2lg4s0hf027rk7gz8t7hbn9xpfg02","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-17T14:20:46Z/"}],"url":"https://lists.apache.org/thread/mrj2lg4s0hf027rk7gz8t7hbn9xpfg02"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/195982?format=json","purl":"pkg:deb/debian/trafficserver@8.1.10%2Bds-1~deb11u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7cx9-r4vs-jycb"},{"vulnerability":"VCID-9and-qdyn-ryh8"},{"vulnerability":"VCID-g4ca-xg28-j7a3"},{"vulnerability":"VCID-pamq-mbf9-5yd5"},{"vulnerability":"VCID-pswv-yvhe-9ubs"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qjzn-d1sw-13gk"},{"vulnerability":"VCID-rtzu-8w8v-wbhj"},{"vulnerability":"VCID-sq5z-yfbm-cffs"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-w96r-ryuy-bbca"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.1.10%252Bds-1~deb11u1"}],"aliases":["CVE-2022-32749"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-hzuw-nvff-fuav"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103126?format=json","vulnerability_id":"VCID-j1zx-9f8z-cugc","summary":"Apache Traffic Server is vulnerable to HTTP/2 setting flood attacks. Earlier versions of Apache Traffic Server didn't limit the number of setting frames sent from the client using the HTTP/2 protocol. Users should upgrade to Apache Traffic Server 7.1.7, 8.0.4, or later versions.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-10079","reference_id":"","reference_type":"","scores":[{"value":"0.05102","scoring_system":"epss","scoring_elements":"0.89997","published_at":"2026-06-04T12:55:00Z"},{"value":"0.05102","scoring_system":"epss","scoring_elements":"0.90012","published_at":"2026-06-06T12:55:00Z"},{"value":"0.05102","scoring_system":"epss","scoring_elements":"0.90009","published_at":"2026-06-07T12:55:00Z"},{"value":"0.05102","scoring_system":"epss","scoring_elements":"0.90008","published_at":"2026-06-08T12:55:00Z"},{"value":"0.05102","scoring_system":"epss","scoring_elements":"0.90023","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-10079"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10079","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10079"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9512","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9512"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9514","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9514"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9515","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9515"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9518","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9518"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515650?format=json","purl":"pkg:deb/debian/trafficserver@8.0.2%2Bds-1%2Bdeb10u6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-2kvz-wm9u-53bd"},{"vulnerability":"VCID-31ru-728d-7qhd"},{"vulnerability":"VCID-3kze-pbbq-63gp"},{"vulnerability":"VCID-4798-eshg-87d3"},{"vulnerability":"VCID-4juv-ezjh-xqb1"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7jmj-2mx5-pkea"},{"vulnerability":"VCID-7qfd-bk4h-j3aa"},{"vulnerability":"VCID-7wgn-m25j-w7h2"},{"vulnerability":"VCID-8c9g-167m-j3a3"},{"vulnerability":"VCID-8zcx-gcse-ukhp"},{"vulnerability":"VCID-abq3-a6yx-e7bq"},{"vulnerability":"VCID-ahw3-7k2k-9ka4"},{"vulnerability":"VCID-akpu-abr9-hqbz"},{"vulnerability":"VCID-anzk-2p8a-qkdx"},{"vulnerability":"VCID-b9rr-1n16-6bdd"},{"vulnerability":"VCID-brew-av11-bydd"},{"vulnerability":"VCID-d9vg-ugpq-bkde"},{"vulnerability":"VCID-ehgb-691x-8yf8"},{"vulnerability":"VCID-f8tu-csm2-9ka4"},{"vulnerability":"VCID-gm5j-mkze-8qgn"},{"vulnerability":"VCID-hzuw-nvff-fuav"},{"vulnerability":"VCID-j1zx-9f8z-cugc"},{"vulnerability":"VCID-kkpu-zyz5-z7b8"},{"vulnerability":"VCID-n279-7wxk-nydv"},{"vulnerability":"VCID-n8h3-vshe-fybw"},{"vulnerability":"VCID-n9ge-6p95-qyg6"},{"vulnerability":"VCID-ne7c-7vzh-qkhk"},{"vulnerability":"VCID-puv1-q4kq-sucs"},{"vulnerability":"VCID-pvgd-s1fu-mkc4"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qsg5-eqde-eyee"},{"vulnerability":"VCID-ry1q-c5e8-tba4"},{"vulnerability":"VCID-s9jy-8vcq-83ch"},{"vulnerability":"VCID-shyq-gyyp-ebav"},{"vulnerability":"VCID-t1qc-t43k-8ug4"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-wk1w-jhc1-6qe6"},{"vulnerability":"VCID-x4cj-g8hm-gfd9"},{"vulnerability":"VCID-xdek-jm8r-ryfh"},{"vulnerability":"VCID-xtkv-k4js-yfdm"},{"vulnerability":"VCID-y4a2-mamb-yqg6"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.0.2%252Bds-1%252Bdeb10u6"},{"url":"http://public2.vulnerablecode.io/api/packages/195982?format=json","purl":"pkg:deb/debian/trafficserver@8.1.10%2Bds-1~deb11u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7cx9-r4vs-jycb"},{"vulnerability":"VCID-9and-qdyn-ryh8"},{"vulnerability":"VCID-g4ca-xg28-j7a3"},{"vulnerability":"VCID-pamq-mbf9-5yd5"},{"vulnerability":"VCID-pswv-yvhe-9ubs"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qjzn-d1sw-13gk"},{"vulnerability":"VCID-rtzu-8w8v-wbhj"},{"vulnerability":"VCID-sq5z-yfbm-cffs"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-w96r-ryuy-bbca"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.1.10%252Bds-1~deb11u1"}],"aliases":["CVE-2019-10079"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-j1zx-9f8z-cugc"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103154?format=json","vulnerability_id":"VCID-kkpu-zyz5-z7b8","summary":"Improper Input Validation vulnerability in request line parsing of Apache Traffic Server allows an attacker to send invalid requests. This issue affects Apache Traffic Server 8.0.0 to 8.1.3 and 9.0.0 to 9.1.1.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-44040","reference_id":"","reference_type":"","scores":[{"value":"0.02606","scoring_system":"epss","scoring_elements":"0.85909","published_at":"2026-06-04T12:55:00Z"},{"value":"0.02606","scoring_system":"epss","scoring_elements":"0.85931","published_at":"2026-06-07T12:55:00Z"},{"value":"0.02606","scoring_system":"epss","scoring_elements":"0.85934","published_at":"2026-06-06T12:55:00Z"},{"value":"0.02606","scoring_system":"epss","scoring_elements":"0.85919","published_at":"2026-06-08T12:55:00Z"},{"value":"0.02606","scoring_system":"epss","scoring_elements":"0.85933","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-44040"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37147","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37147"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37148","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37148"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37149","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37149"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-38161","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-38161"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44040","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44040"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44759","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44759"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515650?format=json","purl":"pkg:deb/debian/trafficserver@8.0.2%2Bds-1%2Bdeb10u6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-2kvz-wm9u-53bd"},{"vulnerability":"VCID-31ru-728d-7qhd"},{"vulnerability":"VCID-3kze-pbbq-63gp"},{"vulnerability":"VCID-4798-eshg-87d3"},{"vulnerability":"VCID-4juv-ezjh-xqb1"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7jmj-2mx5-pkea"},{"vulnerability":"VCID-7qfd-bk4h-j3aa"},{"vulnerability":"VCID-7wgn-m25j-w7h2"},{"vulnerability":"VCID-8c9g-167m-j3a3"},{"vulnerability":"VCID-8zcx-gcse-ukhp"},{"vulnerability":"VCID-abq3-a6yx-e7bq"},{"vulnerability":"VCID-ahw3-7k2k-9ka4"},{"vulnerability":"VCID-akpu-abr9-hqbz"},{"vulnerability":"VCID-anzk-2p8a-qkdx"},{"vulnerability":"VCID-b9rr-1n16-6bdd"},{"vulnerability":"VCID-brew-av11-bydd"},{"vulnerability":"VCID-d9vg-ugpq-bkde"},{"vulnerability":"VCID-ehgb-691x-8yf8"},{"vulnerability":"VCID-f8tu-csm2-9ka4"},{"vulnerability":"VCID-gm5j-mkze-8qgn"},{"vulnerability":"VCID-hzuw-nvff-fuav"},{"vulnerability":"VCID-j1zx-9f8z-cugc"},{"vulnerability":"VCID-kkpu-zyz5-z7b8"},{"vulnerability":"VCID-n279-7wxk-nydv"},{"vulnerability":"VCID-n8h3-vshe-fybw"},{"vulnerability":"VCID-n9ge-6p95-qyg6"},{"vulnerability":"VCID-ne7c-7vzh-qkhk"},{"vulnerability":"VCID-puv1-q4kq-sucs"},{"vulnerability":"VCID-pvgd-s1fu-mkc4"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qsg5-eqde-eyee"},{"vulnerability":"VCID-ry1q-c5e8-tba4"},{"vulnerability":"VCID-s9jy-8vcq-83ch"},{"vulnerability":"VCID-shyq-gyyp-ebav"},{"vulnerability":"VCID-t1qc-t43k-8ug4"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-wk1w-jhc1-6qe6"},{"vulnerability":"VCID-x4cj-g8hm-gfd9"},{"vulnerability":"VCID-xdek-jm8r-ryfh"},{"vulnerability":"VCID-xtkv-k4js-yfdm"},{"vulnerability":"VCID-y4a2-mamb-yqg6"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.0.2%252Bds-1%252Bdeb10u6"},{"url":"http://public2.vulnerablecode.io/api/packages/195982?format=json","purl":"pkg:deb/debian/trafficserver@8.1.10%2Bds-1~deb11u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7cx9-r4vs-jycb"},{"vulnerability":"VCID-9and-qdyn-ryh8"},{"vulnerability":"VCID-g4ca-xg28-j7a3"},{"vulnerability":"VCID-pamq-mbf9-5yd5"},{"vulnerability":"VCID-pswv-yvhe-9ubs"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qjzn-d1sw-13gk"},{"vulnerability":"VCID-rtzu-8w8v-wbhj"},{"vulnerability":"VCID-sq5z-yfbm-cffs"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-w96r-ryuy-bbca"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.1.10%252Bds-1~deb11u1"}],"aliases":["CVE-2021-44040"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kkpu-zyz5-z7b8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103155?format=json","vulnerability_id":"VCID-n279-7wxk-nydv","summary":"Improper Authentication vulnerability in TLS origin validation of Apache Traffic Server allows an attacker to create a man in the middle attack. This issue affects Apache Traffic Server 8.0.0 to 8.1.0.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-44759","reference_id":"","reference_type":"","scores":[{"value":"0.02005","scoring_system":"epss","scoring_elements":"0.84001","published_at":"2026-06-04T12:55:00Z"},{"value":"0.02005","scoring_system":"epss","scoring_elements":"0.84024","published_at":"2026-06-05T12:55:00Z"},{"value":"0.02005","scoring_system":"epss","scoring_elements":"0.84027","published_at":"2026-06-09T12:55:00Z"},{"value":"0.02005","scoring_system":"epss","scoring_elements":"0.84023","published_at":"2026-06-07T12:55:00Z"},{"value":"0.02005","scoring_system":"epss","scoring_elements":"0.84013","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-44759"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37147","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37147"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37148","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37148"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37149","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37149"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-38161","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-38161"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44040","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44040"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44759","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44759"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515650?format=json","purl":"pkg:deb/debian/trafficserver@8.0.2%2Bds-1%2Bdeb10u6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-2kvz-wm9u-53bd"},{"vulnerability":"VCID-31ru-728d-7qhd"},{"vulnerability":"VCID-3kze-pbbq-63gp"},{"vulnerability":"VCID-4798-eshg-87d3"},{"vulnerability":"VCID-4juv-ezjh-xqb1"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7jmj-2mx5-pkea"},{"vulnerability":"VCID-7qfd-bk4h-j3aa"},{"vulnerability":"VCID-7wgn-m25j-w7h2"},{"vulnerability":"VCID-8c9g-167m-j3a3"},{"vulnerability":"VCID-8zcx-gcse-ukhp"},{"vulnerability":"VCID-abq3-a6yx-e7bq"},{"vulnerability":"VCID-ahw3-7k2k-9ka4"},{"vulnerability":"VCID-akpu-abr9-hqbz"},{"vulnerability":"VCID-anzk-2p8a-qkdx"},{"vulnerability":"VCID-b9rr-1n16-6bdd"},{"vulnerability":"VCID-brew-av11-bydd"},{"vulnerability":"VCID-d9vg-ugpq-bkde"},{"vulnerability":"VCID-ehgb-691x-8yf8"},{"vulnerability":"VCID-f8tu-csm2-9ka4"},{"vulnerability":"VCID-gm5j-mkze-8qgn"},{"vulnerability":"VCID-hzuw-nvff-fuav"},{"vulnerability":"VCID-j1zx-9f8z-cugc"},{"vulnerability":"VCID-kkpu-zyz5-z7b8"},{"vulnerability":"VCID-n279-7wxk-nydv"},{"vulnerability":"VCID-n8h3-vshe-fybw"},{"vulnerability":"VCID-n9ge-6p95-qyg6"},{"vulnerability":"VCID-ne7c-7vzh-qkhk"},{"vulnerability":"VCID-puv1-q4kq-sucs"},{"vulnerability":"VCID-pvgd-s1fu-mkc4"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qsg5-eqde-eyee"},{"vulnerability":"VCID-ry1q-c5e8-tba4"},{"vulnerability":"VCID-s9jy-8vcq-83ch"},{"vulnerability":"VCID-shyq-gyyp-ebav"},{"vulnerability":"VCID-t1qc-t43k-8ug4"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-wk1w-jhc1-6qe6"},{"vulnerability":"VCID-x4cj-g8hm-gfd9"},{"vulnerability":"VCID-xdek-jm8r-ryfh"},{"vulnerability":"VCID-xtkv-k4js-yfdm"},{"vulnerability":"VCID-y4a2-mamb-yqg6"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.0.2%252Bds-1%252Bdeb10u6"},{"url":"http://public2.vulnerablecode.io/api/packages/195982?format=json","purl":"pkg:deb/debian/trafficserver@8.1.10%2Bds-1~deb11u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7cx9-r4vs-jycb"},{"vulnerability":"VCID-9and-qdyn-ryh8"},{"vulnerability":"VCID-g4ca-xg28-j7a3"},{"vulnerability":"VCID-pamq-mbf9-5yd5"},{"vulnerability":"VCID-pswv-yvhe-9ubs"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qjzn-d1sw-13gk"},{"vulnerability":"VCID-rtzu-8w8v-wbhj"},{"vulnerability":"VCID-sq5z-yfbm-cffs"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-w96r-ryuy-bbca"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.1.10%252Bds-1~deb11u1"}],"aliases":["CVE-2021-44759"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-n279-7wxk-nydv"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103166?format=json","vulnerability_id":"VCID-n8h3-vshe-fybw","summary":"Improper input validation vulnerability on the range header in Apache Software Foundation Apache Traffic Server.This issue affects Apache Traffic Server: through 9.2.1.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-47185","reference_id":"","reference_type":"","scores":[{"value":"0.00524","scoring_system":"epss","scoring_elements":"0.67319","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00559","scoring_system":"epss","scoring_elements":"0.68665","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00559","scoring_system":"epss","scoring_elements":"0.68661","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00559","scoring_system":"epss","scoring_elements":"0.68669","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00559","scoring_system":"epss","scoring_elements":"0.68647","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-47185"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-47185","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-47185"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-33934","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-33934"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-41752","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-41752"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1043430","reference_id":"1043430","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1043430"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BOTOM2MFKOLK46Q3BQHO662HTPZFRQUC/","reference_id":"BOTOM2MFKOLK46Q3BQHO662HTPZFRQUC","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-01T18:22:26Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BOTOM2MFKOLK46Q3BQHO662HTPZFRQUC/"},{"reference_url":"https://lists.apache.org/thread/jsl6dfdgs1mjjo1mbtyflyjr7xftswhc","reference_id":"jsl6dfdgs1mjjo1mbtyflyjr7xftswhc","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-01T18:22:26Z/"}],"url":"https://lists.apache.org/thread/jsl6dfdgs1mjjo1mbtyflyjr7xftswhc"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/09/msg00042.html","reference_id":"msg00042.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-01T18:22:26Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/09/msg00042.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/195982?format=json","purl":"pkg:deb/debian/trafficserver@8.1.10%2Bds-1~deb11u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7cx9-r4vs-jycb"},{"vulnerability":"VCID-9and-qdyn-ryh8"},{"vulnerability":"VCID-g4ca-xg28-j7a3"},{"vulnerability":"VCID-pamq-mbf9-5yd5"},{"vulnerability":"VCID-pswv-yvhe-9ubs"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qjzn-d1sw-13gk"},{"vulnerability":"VCID-rtzu-8w8v-wbhj"},{"vulnerability":"VCID-sq5z-yfbm-cffs"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-w96r-ryuy-bbca"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.1.10%252Bds-1~deb11u1"}],"aliases":["CVE-2022-47185"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-n8h3-vshe-fybw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103140?format=json","vulnerability_id":"VCID-n9ge-6p95-qyg6","summary":"Incorrect handling of url fragment vulnerability of Apache Traffic Server allows an attacker to poison the cache. This issue affects Apache Traffic Server 7.0.0 to 7.1.12, 8.0.0 to 8.1.1, 9.0.0 to 9.0.1.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-27577","reference_id":"","reference_type":"","scores":[{"value":"0.01205","scoring_system":"epss","scoring_elements":"0.79278","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01205","scoring_system":"epss","scoring_elements":"0.79304","published_at":"2026-06-05T12:55:00Z"},{"value":"0.01205","scoring_system":"epss","scoring_elements":"0.79309","published_at":"2026-06-09T12:55:00Z"},{"value":"0.01205","scoring_system":"epss","scoring_elements":"0.79302","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01205","scoring_system":"epss","scoring_elements":"0.79291","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-27577"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27577","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27577"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32565","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32565"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32566","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32566"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32567","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32567"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35474","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35474"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=990303","reference_id":"990303","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=990303"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515650?format=json","purl":"pkg:deb/debian/trafficserver@8.0.2%2Bds-1%2Bdeb10u6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-2kvz-wm9u-53bd"},{"vulnerability":"VCID-31ru-728d-7qhd"},{"vulnerability":"VCID-3kze-pbbq-63gp"},{"vulnerability":"VCID-4798-eshg-87d3"},{"vulnerability":"VCID-4juv-ezjh-xqb1"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7jmj-2mx5-pkea"},{"vulnerability":"VCID-7qfd-bk4h-j3aa"},{"vulnerability":"VCID-7wgn-m25j-w7h2"},{"vulnerability":"VCID-8c9g-167m-j3a3"},{"vulnerability":"VCID-8zcx-gcse-ukhp"},{"vulnerability":"VCID-abq3-a6yx-e7bq"},{"vulnerability":"VCID-ahw3-7k2k-9ka4"},{"vulnerability":"VCID-akpu-abr9-hqbz"},{"vulnerability":"VCID-anzk-2p8a-qkdx"},{"vulnerability":"VCID-b9rr-1n16-6bdd"},{"vulnerability":"VCID-brew-av11-bydd"},{"vulnerability":"VCID-d9vg-ugpq-bkde"},{"vulnerability":"VCID-ehgb-691x-8yf8"},{"vulnerability":"VCID-f8tu-csm2-9ka4"},{"vulnerability":"VCID-gm5j-mkze-8qgn"},{"vulnerability":"VCID-hzuw-nvff-fuav"},{"vulnerability":"VCID-j1zx-9f8z-cugc"},{"vulnerability":"VCID-kkpu-zyz5-z7b8"},{"vulnerability":"VCID-n279-7wxk-nydv"},{"vulnerability":"VCID-n8h3-vshe-fybw"},{"vulnerability":"VCID-n9ge-6p95-qyg6"},{"vulnerability":"VCID-ne7c-7vzh-qkhk"},{"vulnerability":"VCID-puv1-q4kq-sucs"},{"vulnerability":"VCID-pvgd-s1fu-mkc4"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qsg5-eqde-eyee"},{"vulnerability":"VCID-ry1q-c5e8-tba4"},{"vulnerability":"VCID-s9jy-8vcq-83ch"},{"vulnerability":"VCID-shyq-gyyp-ebav"},{"vulnerability":"VCID-t1qc-t43k-8ug4"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-wk1w-jhc1-6qe6"},{"vulnerability":"VCID-x4cj-g8hm-gfd9"},{"vulnerability":"VCID-xdek-jm8r-ryfh"},{"vulnerability":"VCID-xtkv-k4js-yfdm"},{"vulnerability":"VCID-y4a2-mamb-yqg6"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.0.2%252Bds-1%252Bdeb10u6"},{"url":"http://public2.vulnerablecode.io/api/packages/195982?format=json","purl":"pkg:deb/debian/trafficserver@8.1.10%2Bds-1~deb11u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7cx9-r4vs-jycb"},{"vulnerability":"VCID-9and-qdyn-ryh8"},{"vulnerability":"VCID-g4ca-xg28-j7a3"},{"vulnerability":"VCID-pamq-mbf9-5yd5"},{"vulnerability":"VCID-pswv-yvhe-9ubs"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qjzn-d1sw-13gk"},{"vulnerability":"VCID-rtzu-8w8v-wbhj"},{"vulnerability":"VCID-sq5z-yfbm-cffs"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-w96r-ryuy-bbca"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.1.10%252Bds-1~deb11u1"}],"aliases":["CVE-2021-27577"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-n9ge-6p95-qyg6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103149?format=json","vulnerability_id":"VCID-ne7c-7vzh-qkhk","summary":"Improper Input Validation vulnerability in header parsing of Apache Traffic Server allows an attacker to request secure resources. This issue affects Apache Traffic Server 8.0.0 to 9.1.2.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-37150","reference_id":"","reference_type":"","scores":[{"value":"0.01159","scoring_system":"epss","scoring_elements":"0.78921","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01159","scoring_system":"epss","scoring_elements":"0.78947","published_at":"2026-06-05T12:55:00Z"},{"value":"0.01159","scoring_system":"epss","scoring_elements":"0.78954","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01159","scoring_system":"epss","scoring_elements":"0.78944","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01159","scoring_system":"epss","scoring_elements":"0.78933","published_at":"2026-06-08T12:55:00Z"},{"value":"0.01159","scoring_system":"epss","scoring_elements":"0.78951","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-37150"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37150","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37150"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-25763","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-25763"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28129","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28129"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31778","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31778"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31779","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31779"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31780","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31780"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CJ67IWD5PRJUOIYIDJRUG3UMS2UF4X4J/","reference_id":"CJ67IWD5PRJUOIYIDJRUG3UMS2UF4X4J","reference_type":"","scores":[{"value":"4.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-09-08T18:45:09Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CJ67IWD5PRJUOIYIDJRUG3UMS2UF4X4J/"},{"reference_url":"https://www.debian.org/security/2022/dsa-5206","reference_id":"dsa-5206","reference_type":"","scores":[{"value":"4.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-09-08T18:45:09Z/"}],"url":"https://www.debian.org/security/2022/dsa-5206"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/01/msg00019.html","reference_id":"msg00019.html","reference_type":"","scores":[{"value":"4.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-09-08T18:45:09Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/01/msg00019.html"},{"reference_url":"https://lists.apache.org/thread/rc64lwbdgrkv674koc3zl1sljr9vwg21","reference_id":"rc64lwbdgrkv674koc3zl1sljr9vwg21","reference_type":"","scores":[{"value":"4.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-09-08T18:45:09Z/"}],"url":"https://lists.apache.org/thread/rc64lwbdgrkv674koc3zl1sljr9vwg21"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZCSBQBYPOZSWS5LCOAQ6LJLRLXFIAW5A/","reference_id":"ZCSBQBYPOZSWS5LCOAQ6LJLRLXFIAW5A","reference_type":"","scores":[{"value":"4.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-09-08T18:45:09Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZCSBQBYPOZSWS5LCOAQ6LJLRLXFIAW5A/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/195982?format=json","purl":"pkg:deb/debian/trafficserver@8.1.10%2Bds-1~deb11u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7cx9-r4vs-jycb"},{"vulnerability":"VCID-9and-qdyn-ryh8"},{"vulnerability":"VCID-g4ca-xg28-j7a3"},{"vulnerability":"VCID-pamq-mbf9-5yd5"},{"vulnerability":"VCID-pswv-yvhe-9ubs"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qjzn-d1sw-13gk"},{"vulnerability":"VCID-rtzu-8w8v-wbhj"},{"vulnerability":"VCID-sq5z-yfbm-cffs"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-w96r-ryuy-bbca"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.1.10%252Bds-1~deb11u1"}],"aliases":["CVE-2021-37150"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ne7c-7vzh-qkhk"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103142?format=json","vulnerability_id":"VCID-puv1-q4kq-sucs","summary":"Invalid values in the Content-Length header sent to Apache Traffic Server allows an attacker to smuggle requests. This issue affects Apache Traffic Server 7.0.0 to 7.1.12, 8.0.0 to 8.1.1, 9.0.0 to 9.0.1.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-32565","reference_id":"","reference_type":"","scores":[{"value":"0.05675","scoring_system":"epss","scoring_elements":"0.90549","published_at":"2026-06-04T12:55:00Z"},{"value":"0.05675","scoring_system":"epss","scoring_elements":"0.90563","published_at":"2026-06-05T12:55:00Z"},{"value":"0.05675","scoring_system":"epss","scoring_elements":"0.90564","published_at":"2026-06-06T12:55:00Z"},{"value":"0.05675","scoring_system":"epss","scoring_elements":"0.90561","published_at":"2026-06-07T12:55:00Z"},{"value":"0.05675","scoring_system":"epss","scoring_elements":"0.9056","published_at":"2026-06-08T12:55:00Z"},{"value":"0.05675","scoring_system":"epss","scoring_elements":"0.90577","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-32565"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27577","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27577"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32565","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32565"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32566","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32566"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32567","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32567"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35474","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35474"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=990303","reference_id":"990303","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=990303"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515650?format=json","purl":"pkg:deb/debian/trafficserver@8.0.2%2Bds-1%2Bdeb10u6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-2kvz-wm9u-53bd"},{"vulnerability":"VCID-31ru-728d-7qhd"},{"vulnerability":"VCID-3kze-pbbq-63gp"},{"vulnerability":"VCID-4798-eshg-87d3"},{"vulnerability":"VCID-4juv-ezjh-xqb1"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7jmj-2mx5-pkea"},{"vulnerability":"VCID-7qfd-bk4h-j3aa"},{"vulnerability":"VCID-7wgn-m25j-w7h2"},{"vulnerability":"VCID-8c9g-167m-j3a3"},{"vulnerability":"VCID-8zcx-gcse-ukhp"},{"vulnerability":"VCID-abq3-a6yx-e7bq"},{"vulnerability":"VCID-ahw3-7k2k-9ka4"},{"vulnerability":"VCID-akpu-abr9-hqbz"},{"vulnerability":"VCID-anzk-2p8a-qkdx"},{"vulnerability":"VCID-b9rr-1n16-6bdd"},{"vulnerability":"VCID-brew-av11-bydd"},{"vulnerability":"VCID-d9vg-ugpq-bkde"},{"vulnerability":"VCID-ehgb-691x-8yf8"},{"vulnerability":"VCID-f8tu-csm2-9ka4"},{"vulnerability":"VCID-gm5j-mkze-8qgn"},{"vulnerability":"VCID-hzuw-nvff-fuav"},{"vulnerability":"VCID-j1zx-9f8z-cugc"},{"vulnerability":"VCID-kkpu-zyz5-z7b8"},{"vulnerability":"VCID-n279-7wxk-nydv"},{"vulnerability":"VCID-n8h3-vshe-fybw"},{"vulnerability":"VCID-n9ge-6p95-qyg6"},{"vulnerability":"VCID-ne7c-7vzh-qkhk"},{"vulnerability":"VCID-puv1-q4kq-sucs"},{"vulnerability":"VCID-pvgd-s1fu-mkc4"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qsg5-eqde-eyee"},{"vulnerability":"VCID-ry1q-c5e8-tba4"},{"vulnerability":"VCID-s9jy-8vcq-83ch"},{"vulnerability":"VCID-shyq-gyyp-ebav"},{"vulnerability":"VCID-t1qc-t43k-8ug4"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-wk1w-jhc1-6qe6"},{"vulnerability":"VCID-x4cj-g8hm-gfd9"},{"vulnerability":"VCID-xdek-jm8r-ryfh"},{"vulnerability":"VCID-xtkv-k4js-yfdm"},{"vulnerability":"VCID-y4a2-mamb-yqg6"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.0.2%252Bds-1%252Bdeb10u6"},{"url":"http://public2.vulnerablecode.io/api/packages/195982?format=json","purl":"pkg:deb/debian/trafficserver@8.1.10%2Bds-1~deb11u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7cx9-r4vs-jycb"},{"vulnerability":"VCID-9and-qdyn-ryh8"},{"vulnerability":"VCID-g4ca-xg28-j7a3"},{"vulnerability":"VCID-pamq-mbf9-5yd5"},{"vulnerability":"VCID-pswv-yvhe-9ubs"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qjzn-d1sw-13gk"},{"vulnerability":"VCID-rtzu-8w8v-wbhj"},{"vulnerability":"VCID-sq5z-yfbm-cffs"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-w96r-ryuy-bbca"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.1.10%252Bds-1~deb11u1"}],"aliases":["CVE-2021-32565"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-puv1-q4kq-sucs"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103145?format=json","vulnerability_id":"VCID-pvgd-s1fu-mkc4","summary":"Stack-based Buffer Overflow vulnerability in cachekey plugin of Apache Traffic Server. This issue affects Apache Traffic Server 7.0.0 to 7.1.12, 8.0.0 to 8.1.1, 9.0.0 to 9.0.1.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-35474","reference_id":"","reference_type":"","scores":[{"value":"0.09211","scoring_system":"epss","scoring_elements":"0.92858","published_at":"2026-06-04T12:55:00Z"},{"value":"0.09211","scoring_system":"epss","scoring_elements":"0.9287","published_at":"2026-06-05T12:55:00Z"},{"value":"0.09211","scoring_system":"epss","scoring_elements":"0.92866","published_at":"2026-06-06T12:55:00Z"},{"value":"0.09211","scoring_system":"epss","scoring_elements":"0.92861","published_at":"2026-06-07T12:55:00Z"},{"value":"0.09211","scoring_system":"epss","scoring_elements":"0.92859","published_at":"2026-06-08T12:55:00Z"},{"value":"0.09211","scoring_system":"epss","scoring_elements":"0.92874","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-35474"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27577","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27577"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32565","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32565"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32566","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32566"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32567","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32567"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35474","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35474"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=990303","reference_id":"990303","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=990303"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515650?format=json","purl":"pkg:deb/debian/trafficserver@8.0.2%2Bds-1%2Bdeb10u6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-2kvz-wm9u-53bd"},{"vulnerability":"VCID-31ru-728d-7qhd"},{"vulnerability":"VCID-3kze-pbbq-63gp"},{"vulnerability":"VCID-4798-eshg-87d3"},{"vulnerability":"VCID-4juv-ezjh-xqb1"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7jmj-2mx5-pkea"},{"vulnerability":"VCID-7qfd-bk4h-j3aa"},{"vulnerability":"VCID-7wgn-m25j-w7h2"},{"vulnerability":"VCID-8c9g-167m-j3a3"},{"vulnerability":"VCID-8zcx-gcse-ukhp"},{"vulnerability":"VCID-abq3-a6yx-e7bq"},{"vulnerability":"VCID-ahw3-7k2k-9ka4"},{"vulnerability":"VCID-akpu-abr9-hqbz"},{"vulnerability":"VCID-anzk-2p8a-qkdx"},{"vulnerability":"VCID-b9rr-1n16-6bdd"},{"vulnerability":"VCID-brew-av11-bydd"},{"vulnerability":"VCID-d9vg-ugpq-bkde"},{"vulnerability":"VCID-ehgb-691x-8yf8"},{"vulnerability":"VCID-f8tu-csm2-9ka4"},{"vulnerability":"VCID-gm5j-mkze-8qgn"},{"vulnerability":"VCID-hzuw-nvff-fuav"},{"vulnerability":"VCID-j1zx-9f8z-cugc"},{"vulnerability":"VCID-kkpu-zyz5-z7b8"},{"vulnerability":"VCID-n279-7wxk-nydv"},{"vulnerability":"VCID-n8h3-vshe-fybw"},{"vulnerability":"VCID-n9ge-6p95-qyg6"},{"vulnerability":"VCID-ne7c-7vzh-qkhk"},{"vulnerability":"VCID-puv1-q4kq-sucs"},{"vulnerability":"VCID-pvgd-s1fu-mkc4"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qsg5-eqde-eyee"},{"vulnerability":"VCID-ry1q-c5e8-tba4"},{"vulnerability":"VCID-s9jy-8vcq-83ch"},{"vulnerability":"VCID-shyq-gyyp-ebav"},{"vulnerability":"VCID-t1qc-t43k-8ug4"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-wk1w-jhc1-6qe6"},{"vulnerability":"VCID-x4cj-g8hm-gfd9"},{"vulnerability":"VCID-xdek-jm8r-ryfh"},{"vulnerability":"VCID-xtkv-k4js-yfdm"},{"vulnerability":"VCID-y4a2-mamb-yqg6"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.0.2%252Bds-1%252Bdeb10u6"},{"url":"http://public2.vulnerablecode.io/api/packages/195982?format=json","purl":"pkg:deb/debian/trafficserver@8.1.10%2Bds-1~deb11u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7cx9-r4vs-jycb"},{"vulnerability":"VCID-9and-qdyn-ryh8"},{"vulnerability":"VCID-g4ca-xg28-j7a3"},{"vulnerability":"VCID-pamq-mbf9-5yd5"},{"vulnerability":"VCID-pswv-yvhe-9ubs"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qjzn-d1sw-13gk"},{"vulnerability":"VCID-rtzu-8w8v-wbhj"},{"vulnerability":"VCID-sq5z-yfbm-cffs"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-w96r-ryuy-bbca"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.1.10%252Bds-1~deb11u1"}],"aliases":["CVE-2021-35474"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-pvgd-s1fu-mkc4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103180?format=json","vulnerability_id":"VCID-qh8b-vbxg-7uht","summary":"Unchecked return value can allow Apache Traffic Server to retain privileges on startup.  This issue affects Apache Traffic Server: from 9.2.0 through 9.2.5, from 10.0.0 through 10.0.1.  Users are recommended to upgrade to version 9.2.6 or 10.0.2, which fixes the issue.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-50306","reference_id":"","reference_type":"","scores":[{"value":"0.0082","scoring_system":"epss","scoring_elements":"0.74782","published_at":"2026-06-06T12:55:00Z"},{"value":"0.0082","scoring_system":"epss","scoring_elements":"0.74757","published_at":"2026-06-08T12:55:00Z"},{"value":"0.0082","scoring_system":"epss","scoring_elements":"0.74783","published_at":"2026-06-09T12:55:00Z"},{"value":"0.0082","scoring_system":"epss","scoring_elements":"0.74776","published_at":"2026-06-05T12:55:00Z"},{"value":"0.0082","scoring_system":"epss","scoring_elements":"0.74773","published_at":"2026-06-07T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-50306"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-50306","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-50306"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1087531","reference_id":"1087531","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1087531"},{"reference_url":"https://lists.apache.org/thread/y15fh6c7kyqvzm0f9odw7c5jh4r4np0y","reference_id":"y15fh6c7kyqvzm0f9odw7c5jh4r4np0y","reference_type":"","scores":[{"value":"9.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-14T18:07:42Z/"}],"url":"https://lists.apache.org/thread/y15fh6c7kyqvzm0f9odw7c5jh4r4np0y"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/195983?format=json","purl":"pkg:deb/debian/trafficserver@9.2.5%2Bds-0%2Bdeb12u4","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@9.2.5%252Bds-0%252Bdeb12u4"}],"aliases":["CVE-2024-50306"],"risk_score":4.1,"exploitability":"0.5","weighted_severity":"8.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qh8b-vbxg-7uht"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103132?format=json","vulnerability_id":"VCID-qsg5-eqde-eyee","summary":"Some HTTP/2 implementations are vulnerable to a flood of empty frames, potentially leading to a denial of service. The attacker sends a stream of frames with an empty payload and without the end-of-stream flag. These frames can be DATA, HEADERS, CONTINUATION and/or PUSH_PROMISE. The peer spends time processing each frame disproportionate to attack bandwidth. This can consume excess CPU.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-9518.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-9518.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-9518","reference_id":"","reference_type":"","scores":[{"value":"0.03578","scoring_system":"epss","scoring_elements":"0.87948","published_at":"2026-06-04T12:55:00Z"},{"value":"0.03578","scoring_system":"epss","scoring_elements":"0.87969","published_at":"2026-06-05T12:55:00Z"},{"value":"0.03578","scoring_system":"epss","scoring_elements":"0.87986","published_at":"2026-06-09T12:55:00Z"},{"value":"0.03578","scoring_system":"epss","scoring_elements":"0.87972","published_at":"2026-06-07T12:55:00Z"},{"value":"0.03578","scoring_system":"epss","scoring_elements":"0.87973","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-9518"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10079","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10079"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9512","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9512"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9514","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9514"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9515","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9515"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9518","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9518"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1735749","reference_id":"1735749","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1735749"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=935314","reference_id":"935314","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=935314"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2925","reference_id":"RHSA-2019:2925","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:2925"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2939","reference_id":"RHSA-2019:2939","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:2939"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2955","reference_id":"RHSA-2019:2955","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:2955"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0922","reference_id":"RHSA-2020:0922","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0922"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0983","reference_id":"RHSA-2020:0983","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0983"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:1445","reference_id":"RHSA-2020:1445","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:1445"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3196","reference_id":"RHSA-2020:3196","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3196"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3197","reference_id":"RHSA-2020:3197","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3197"},{"reference_url":"https://usn.ubuntu.com/USN-4866-1/","reference_id":"USN-USN-4866-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/USN-4866-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515650?format=json","purl":"pkg:deb/debian/trafficserver@8.0.2%2Bds-1%2Bdeb10u6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-2kvz-wm9u-53bd"},{"vulnerability":"VCID-31ru-728d-7qhd"},{"vulnerability":"VCID-3kze-pbbq-63gp"},{"vulnerability":"VCID-4798-eshg-87d3"},{"vulnerability":"VCID-4juv-ezjh-xqb1"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7jmj-2mx5-pkea"},{"vulnerability":"VCID-7qfd-bk4h-j3aa"},{"vulnerability":"VCID-7wgn-m25j-w7h2"},{"vulnerability":"VCID-8c9g-167m-j3a3"},{"vulnerability":"VCID-8zcx-gcse-ukhp"},{"vulnerability":"VCID-abq3-a6yx-e7bq"},{"vulnerability":"VCID-ahw3-7k2k-9ka4"},{"vulnerability":"VCID-akpu-abr9-hqbz"},{"vulnerability":"VCID-anzk-2p8a-qkdx"},{"vulnerability":"VCID-b9rr-1n16-6bdd"},{"vulnerability":"VCID-brew-av11-bydd"},{"vulnerability":"VCID-d9vg-ugpq-bkde"},{"vulnerability":"VCID-ehgb-691x-8yf8"},{"vulnerability":"VCID-f8tu-csm2-9ka4"},{"vulnerability":"VCID-gm5j-mkze-8qgn"},{"vulnerability":"VCID-hzuw-nvff-fuav"},{"vulnerability":"VCID-j1zx-9f8z-cugc"},{"vulnerability":"VCID-kkpu-zyz5-z7b8"},{"vulnerability":"VCID-n279-7wxk-nydv"},{"vulnerability":"VCID-n8h3-vshe-fybw"},{"vulnerability":"VCID-n9ge-6p95-qyg6"},{"vulnerability":"VCID-ne7c-7vzh-qkhk"},{"vulnerability":"VCID-puv1-q4kq-sucs"},{"vulnerability":"VCID-pvgd-s1fu-mkc4"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qsg5-eqde-eyee"},{"vulnerability":"VCID-ry1q-c5e8-tba4"},{"vulnerability":"VCID-s9jy-8vcq-83ch"},{"vulnerability":"VCID-shyq-gyyp-ebav"},{"vulnerability":"VCID-t1qc-t43k-8ug4"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-wk1w-jhc1-6qe6"},{"vulnerability":"VCID-x4cj-g8hm-gfd9"},{"vulnerability":"VCID-xdek-jm8r-ryfh"},{"vulnerability":"VCID-xtkv-k4js-yfdm"},{"vulnerability":"VCID-y4a2-mamb-yqg6"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.0.2%252Bds-1%252Bdeb10u6"},{"url":"http://public2.vulnerablecode.io/api/packages/195982?format=json","purl":"pkg:deb/debian/trafficserver@8.1.10%2Bds-1~deb11u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7cx9-r4vs-jycb"},{"vulnerability":"VCID-9and-qdyn-ryh8"},{"vulnerability":"VCID-g4ca-xg28-j7a3"},{"vulnerability":"VCID-pamq-mbf9-5yd5"},{"vulnerability":"VCID-pswv-yvhe-9ubs"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qjzn-d1sw-13gk"},{"vulnerability":"VCID-rtzu-8w8v-wbhj"},{"vulnerability":"VCID-sq5z-yfbm-cffs"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-w96r-ryuy-bbca"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.1.10%252Bds-1~deb11u1"}],"aliases":["CVE-2019-9518"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qsg5-eqde-eyee"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103118?format=json","vulnerability_id":"VCID-rsvc-b3bb-dudb","summary":"There is a DOS attack vulnerability in Apache Traffic Server (ATS) 5.2.0 to 5.3.2, 6.0.0 to 6.2.0, and 7.0.0 with the TLS handshake. This issue can cause the server to coredump.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-7671","reference_id":"","reference_type":"","scores":[{"value":"0.0427","scoring_system":"epss","scoring_elements":"0.8902","published_at":"2026-06-04T12:55:00Z"},{"value":"0.0427","scoring_system":"epss","scoring_elements":"0.89037","published_at":"2026-06-08T12:55:00Z"},{"value":"0.0427","scoring_system":"epss","scoring_elements":"0.89038","published_at":"2026-06-06T12:55:00Z"},{"value":"0.0427","scoring_system":"epss","scoring_elements":"0.89054","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-7671"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5660","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5660"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7671","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7671"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515650?format=json","purl":"pkg:deb/debian/trafficserver@8.0.2%2Bds-1%2Bdeb10u6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-2kvz-wm9u-53bd"},{"vulnerability":"VCID-31ru-728d-7qhd"},{"vulnerability":"VCID-3kze-pbbq-63gp"},{"vulnerability":"VCID-4798-eshg-87d3"},{"vulnerability":"VCID-4juv-ezjh-xqb1"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7jmj-2mx5-pkea"},{"vulnerability":"VCID-7qfd-bk4h-j3aa"},{"vulnerability":"VCID-7wgn-m25j-w7h2"},{"vulnerability":"VCID-8c9g-167m-j3a3"},{"vulnerability":"VCID-8zcx-gcse-ukhp"},{"vulnerability":"VCID-abq3-a6yx-e7bq"},{"vulnerability":"VCID-ahw3-7k2k-9ka4"},{"vulnerability":"VCID-akpu-abr9-hqbz"},{"vulnerability":"VCID-anzk-2p8a-qkdx"},{"vulnerability":"VCID-b9rr-1n16-6bdd"},{"vulnerability":"VCID-brew-av11-bydd"},{"vulnerability":"VCID-d9vg-ugpq-bkde"},{"vulnerability":"VCID-ehgb-691x-8yf8"},{"vulnerability":"VCID-f8tu-csm2-9ka4"},{"vulnerability":"VCID-gm5j-mkze-8qgn"},{"vulnerability":"VCID-hzuw-nvff-fuav"},{"vulnerability":"VCID-j1zx-9f8z-cugc"},{"vulnerability":"VCID-kkpu-zyz5-z7b8"},{"vulnerability":"VCID-n279-7wxk-nydv"},{"vulnerability":"VCID-n8h3-vshe-fybw"},{"vulnerability":"VCID-n9ge-6p95-qyg6"},{"vulnerability":"VCID-ne7c-7vzh-qkhk"},{"vulnerability":"VCID-puv1-q4kq-sucs"},{"vulnerability":"VCID-pvgd-s1fu-mkc4"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qsg5-eqde-eyee"},{"vulnerability":"VCID-ry1q-c5e8-tba4"},{"vulnerability":"VCID-s9jy-8vcq-83ch"},{"vulnerability":"VCID-shyq-gyyp-ebav"},{"vulnerability":"VCID-t1qc-t43k-8ug4"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-wk1w-jhc1-6qe6"},{"vulnerability":"VCID-x4cj-g8hm-gfd9"},{"vulnerability":"VCID-xdek-jm8r-ryfh"},{"vulnerability":"VCID-xtkv-k4js-yfdm"},{"vulnerability":"VCID-y4a2-mamb-yqg6"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.0.2%252Bds-1%252Bdeb10u6"}],"aliases":["CVE-2017-7671"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rsvc-b3bb-dudb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103128?format=json","vulnerability_id":"VCID-ry1q-c5e8-tba4","summary":"There is a vulnerability in Apache Traffic Server 6.0.0 to 6.2.3, 7.0.0 to 7.1.8, and 8.0.0 to 8.0.5 with a smuggling attack and scheme parsing. Upgrade to versions 7.1.9 and 8.0.6 or later versions.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-17559","reference_id":"","reference_type":"","scores":[{"value":"0.01409","scoring_system":"epss","scoring_elements":"0.80827","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01409","scoring_system":"epss","scoring_elements":"0.80854","published_at":"2026-06-05T12:55:00Z"},{"value":"0.01409","scoring_system":"epss","scoring_elements":"0.80855","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01409","scoring_system":"epss","scoring_elements":"0.80853","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01409","scoring_system":"epss","scoring_elements":"0.80849","published_at":"2026-06-08T12:55:00Z"},{"value":"0.01409","scoring_system":"epss","scoring_elements":"0.80868","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-17559"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17559","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17559"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17565","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17565"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1944","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1944"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9481","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9481"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515650?format=json","purl":"pkg:deb/debian/trafficserver@8.0.2%2Bds-1%2Bdeb10u6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-2kvz-wm9u-53bd"},{"vulnerability":"VCID-31ru-728d-7qhd"},{"vulnerability":"VCID-3kze-pbbq-63gp"},{"vulnerability":"VCID-4798-eshg-87d3"},{"vulnerability":"VCID-4juv-ezjh-xqb1"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7jmj-2mx5-pkea"},{"vulnerability":"VCID-7qfd-bk4h-j3aa"},{"vulnerability":"VCID-7wgn-m25j-w7h2"},{"vulnerability":"VCID-8c9g-167m-j3a3"},{"vulnerability":"VCID-8zcx-gcse-ukhp"},{"vulnerability":"VCID-abq3-a6yx-e7bq"},{"vulnerability":"VCID-ahw3-7k2k-9ka4"},{"vulnerability":"VCID-akpu-abr9-hqbz"},{"vulnerability":"VCID-anzk-2p8a-qkdx"},{"vulnerability":"VCID-b9rr-1n16-6bdd"},{"vulnerability":"VCID-brew-av11-bydd"},{"vulnerability":"VCID-d9vg-ugpq-bkde"},{"vulnerability":"VCID-ehgb-691x-8yf8"},{"vulnerability":"VCID-f8tu-csm2-9ka4"},{"vulnerability":"VCID-gm5j-mkze-8qgn"},{"vulnerability":"VCID-hzuw-nvff-fuav"},{"vulnerability":"VCID-j1zx-9f8z-cugc"},{"vulnerability":"VCID-kkpu-zyz5-z7b8"},{"vulnerability":"VCID-n279-7wxk-nydv"},{"vulnerability":"VCID-n8h3-vshe-fybw"},{"vulnerability":"VCID-n9ge-6p95-qyg6"},{"vulnerability":"VCID-ne7c-7vzh-qkhk"},{"vulnerability":"VCID-puv1-q4kq-sucs"},{"vulnerability":"VCID-pvgd-s1fu-mkc4"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qsg5-eqde-eyee"},{"vulnerability":"VCID-ry1q-c5e8-tba4"},{"vulnerability":"VCID-s9jy-8vcq-83ch"},{"vulnerability":"VCID-shyq-gyyp-ebav"},{"vulnerability":"VCID-t1qc-t43k-8ug4"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-wk1w-jhc1-6qe6"},{"vulnerability":"VCID-x4cj-g8hm-gfd9"},{"vulnerability":"VCID-xdek-jm8r-ryfh"},{"vulnerability":"VCID-xtkv-k4js-yfdm"},{"vulnerability":"VCID-y4a2-mamb-yqg6"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.0.2%252Bds-1%252Bdeb10u6"},{"url":"http://public2.vulnerablecode.io/api/packages/195982?format=json","purl":"pkg:deb/debian/trafficserver@8.1.10%2Bds-1~deb11u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7cx9-r4vs-jycb"},{"vulnerability":"VCID-9and-qdyn-ryh8"},{"vulnerability":"VCID-g4ca-xg28-j7a3"},{"vulnerability":"VCID-pamq-mbf9-5yd5"},{"vulnerability":"VCID-pswv-yvhe-9ubs"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qjzn-d1sw-13gk"},{"vulnerability":"VCID-rtzu-8w8v-wbhj"},{"vulnerability":"VCID-sq5z-yfbm-cffs"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-w96r-ryuy-bbca"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.1.10%252Bds-1~deb11u1"}],"aliases":["CVE-2019-17559"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ry1q-c5e8-tba4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103122?format=json","vulnerability_id":"VCID-rzba-hj3c-w7d2","summary":"There are multiple HTTP smuggling and cache poisoning issues when clients making malicious requests interact with Apache Traffic Server (ATS). This affects versions 6.0.0 to 6.2.2 and 7.0.0 to 7.1.3. To resolve this issue users running 6.x should upgrade to 6.2.3 or later versions and 7.x users should upgrade to 7.1.4 or later versions.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-8004","reference_id":"","reference_type":"","scores":[{"value":"0.02594","scoring_system":"epss","scoring_elements":"0.85878","published_at":"2026-06-04T12:55:00Z"},{"value":"0.02594","scoring_system":"epss","scoring_elements":"0.859","published_at":"2026-06-05T12:55:00Z"},{"value":"0.02594","scoring_system":"epss","scoring_elements":"0.85903","published_at":"2026-06-06T12:55:00Z"},{"value":"0.02594","scoring_system":"epss","scoring_elements":"0.85899","published_at":"2026-06-09T12:55:00Z"},{"value":"0.02594","scoring_system":"epss","scoring_elements":"0.85884","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-8004"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1318","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1318"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8004","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8004"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8005","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8005"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8040","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8040"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515650?format=json","purl":"pkg:deb/debian/trafficserver@8.0.2%2Bds-1%2Bdeb10u6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-2kvz-wm9u-53bd"},{"vulnerability":"VCID-31ru-728d-7qhd"},{"vulnerability":"VCID-3kze-pbbq-63gp"},{"vulnerability":"VCID-4798-eshg-87d3"},{"vulnerability":"VCID-4juv-ezjh-xqb1"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7jmj-2mx5-pkea"},{"vulnerability":"VCID-7qfd-bk4h-j3aa"},{"vulnerability":"VCID-7wgn-m25j-w7h2"},{"vulnerability":"VCID-8c9g-167m-j3a3"},{"vulnerability":"VCID-8zcx-gcse-ukhp"},{"vulnerability":"VCID-abq3-a6yx-e7bq"},{"vulnerability":"VCID-ahw3-7k2k-9ka4"},{"vulnerability":"VCID-akpu-abr9-hqbz"},{"vulnerability":"VCID-anzk-2p8a-qkdx"},{"vulnerability":"VCID-b9rr-1n16-6bdd"},{"vulnerability":"VCID-brew-av11-bydd"},{"vulnerability":"VCID-d9vg-ugpq-bkde"},{"vulnerability":"VCID-ehgb-691x-8yf8"},{"vulnerability":"VCID-f8tu-csm2-9ka4"},{"vulnerability":"VCID-gm5j-mkze-8qgn"},{"vulnerability":"VCID-hzuw-nvff-fuav"},{"vulnerability":"VCID-j1zx-9f8z-cugc"},{"vulnerability":"VCID-kkpu-zyz5-z7b8"},{"vulnerability":"VCID-n279-7wxk-nydv"},{"vulnerability":"VCID-n8h3-vshe-fybw"},{"vulnerability":"VCID-n9ge-6p95-qyg6"},{"vulnerability":"VCID-ne7c-7vzh-qkhk"},{"vulnerability":"VCID-puv1-q4kq-sucs"},{"vulnerability":"VCID-pvgd-s1fu-mkc4"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qsg5-eqde-eyee"},{"vulnerability":"VCID-ry1q-c5e8-tba4"},{"vulnerability":"VCID-s9jy-8vcq-83ch"},{"vulnerability":"VCID-shyq-gyyp-ebav"},{"vulnerability":"VCID-t1qc-t43k-8ug4"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-wk1w-jhc1-6qe6"},{"vulnerability":"VCID-x4cj-g8hm-gfd9"},{"vulnerability":"VCID-xdek-jm8r-ryfh"},{"vulnerability":"VCID-xtkv-k4js-yfdm"},{"vulnerability":"VCID-y4a2-mamb-yqg6"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.0.2%252Bds-1%252Bdeb10u6"}],"aliases":["CVE-2018-8004"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rzba-hj3c-w7d2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103167?format=json","vulnerability_id":"VCID-s9jy-8vcq-83ch","summary":"Improper Input Validation vulnerability in Apache Software Foundation Apache Traffic Server.  The configuration option proxy.config.http.push_method_enabled didn't function.  However, by default the PUSH method is blocked in the ip_allow configuration file.This issue affects Apache Traffic Server: from 8.0.0 through 9.2.0.  8.x users should upgrade to 8.1.7 or later versions 9.x users should upgrade to 9.2.1 or later versions","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-30631","reference_id":"","reference_type":"","scores":[{"value":"0.00662","scoring_system":"epss","scoring_elements":"0.71586","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00662","scoring_system":"epss","scoring_elements":"0.71592","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00662","scoring_system":"epss","scoring_elements":"0.71568","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00662","scoring_system":"epss","scoring_elements":"0.71553","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00662","scoring_system":"epss","scoring_elements":"0.71575","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-30631"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-47184","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-47184"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-30631","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-30631"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-33933","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-33933"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1038248","reference_id":"1038248","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1038248"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/195982?format=json","purl":"pkg:deb/debian/trafficserver@8.1.10%2Bds-1~deb11u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7cx9-r4vs-jycb"},{"vulnerability":"VCID-9and-qdyn-ryh8"},{"vulnerability":"VCID-g4ca-xg28-j7a3"},{"vulnerability":"VCID-pamq-mbf9-5yd5"},{"vulnerability":"VCID-pswv-yvhe-9ubs"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qjzn-d1sw-13gk"},{"vulnerability":"VCID-rtzu-8w8v-wbhj"},{"vulnerability":"VCID-sq5z-yfbm-cffs"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-w96r-ryuy-bbca"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.1.10%252Bds-1~deb11u1"}],"aliases":["CVE-2023-30631"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-s9jy-8vcq-83ch"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103148?format=json","vulnerability_id":"VCID-shyq-gyyp-ebav","summary":"Improper Input Validation vulnerability in header parsing of Apache Traffic Server allows an attacker to smuggle requests. This issue affects Apache Traffic Server 8.0.0 to 8.1.2 and 9.0.0 to 9.1.0.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-37149","reference_id":"","reference_type":"","scores":[{"value":"0.01363","scoring_system":"epss","scoring_elements":"0.80512","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01363","scoring_system":"epss","scoring_elements":"0.80538","published_at":"2026-06-05T12:55:00Z"},{"value":"0.01363","scoring_system":"epss","scoring_elements":"0.8054","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01363","scoring_system":"epss","scoring_elements":"0.80537","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01363","scoring_system":"epss","scoring_elements":"0.80533","published_at":"2026-06-08T12:55:00Z"},{"value":"0.01363","scoring_system":"epss","scoring_elements":"0.80554","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-37149"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37147","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37147"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37148","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37148"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37149","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37149"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-38161","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-38161"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44040","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44040"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44759","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44759"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515650?format=json","purl":"pkg:deb/debian/trafficserver@8.0.2%2Bds-1%2Bdeb10u6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-2kvz-wm9u-53bd"},{"vulnerability":"VCID-31ru-728d-7qhd"},{"vulnerability":"VCID-3kze-pbbq-63gp"},{"vulnerability":"VCID-4798-eshg-87d3"},{"vulnerability":"VCID-4juv-ezjh-xqb1"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7jmj-2mx5-pkea"},{"vulnerability":"VCID-7qfd-bk4h-j3aa"},{"vulnerability":"VCID-7wgn-m25j-w7h2"},{"vulnerability":"VCID-8c9g-167m-j3a3"},{"vulnerability":"VCID-8zcx-gcse-ukhp"},{"vulnerability":"VCID-abq3-a6yx-e7bq"},{"vulnerability":"VCID-ahw3-7k2k-9ka4"},{"vulnerability":"VCID-akpu-abr9-hqbz"},{"vulnerability":"VCID-anzk-2p8a-qkdx"},{"vulnerability":"VCID-b9rr-1n16-6bdd"},{"vulnerability":"VCID-brew-av11-bydd"},{"vulnerability":"VCID-d9vg-ugpq-bkde"},{"vulnerability":"VCID-ehgb-691x-8yf8"},{"vulnerability":"VCID-f8tu-csm2-9ka4"},{"vulnerability":"VCID-gm5j-mkze-8qgn"},{"vulnerability":"VCID-hzuw-nvff-fuav"},{"vulnerability":"VCID-j1zx-9f8z-cugc"},{"vulnerability":"VCID-kkpu-zyz5-z7b8"},{"vulnerability":"VCID-n279-7wxk-nydv"},{"vulnerability":"VCID-n8h3-vshe-fybw"},{"vulnerability":"VCID-n9ge-6p95-qyg6"},{"vulnerability":"VCID-ne7c-7vzh-qkhk"},{"vulnerability":"VCID-puv1-q4kq-sucs"},{"vulnerability":"VCID-pvgd-s1fu-mkc4"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qsg5-eqde-eyee"},{"vulnerability":"VCID-ry1q-c5e8-tba4"},{"vulnerability":"VCID-s9jy-8vcq-83ch"},{"vulnerability":"VCID-shyq-gyyp-ebav"},{"vulnerability":"VCID-t1qc-t43k-8ug4"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-wk1w-jhc1-6qe6"},{"vulnerability":"VCID-x4cj-g8hm-gfd9"},{"vulnerability":"VCID-xdek-jm8r-ryfh"},{"vulnerability":"VCID-xtkv-k4js-yfdm"},{"vulnerability":"VCID-y4a2-mamb-yqg6"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.0.2%252Bds-1%252Bdeb10u6"},{"url":"http://public2.vulnerablecode.io/api/packages/195982?format=json","purl":"pkg:deb/debian/trafficserver@8.1.10%2Bds-1~deb11u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7cx9-r4vs-jycb"},{"vulnerability":"VCID-9and-qdyn-ryh8"},{"vulnerability":"VCID-g4ca-xg28-j7a3"},{"vulnerability":"VCID-pamq-mbf9-5yd5"},{"vulnerability":"VCID-pswv-yvhe-9ubs"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qjzn-d1sw-13gk"},{"vulnerability":"VCID-rtzu-8w8v-wbhj"},{"vulnerability":"VCID-sq5z-yfbm-cffs"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-w96r-ryuy-bbca"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.1.10%252Bds-1~deb11u1"}],"aliases":["CVE-2021-37149"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-shyq-gyyp-ebav"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103133?format=json","vulnerability_id":"VCID-t1qc-t43k-8ug4","summary":"The ATS ESI plugin has a memory disclosure vulnerability. If you are running the plugin please upgrade. Apache Traffic Server versions 7.0.0 to 7.1.11 and 8.0.0 to 8.1.0 are affected.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-17508","reference_id":"","reference_type":"","scores":[{"value":"0.02656","scoring_system":"epss","scoring_elements":"0.86057","published_at":"2026-06-04T12:55:00Z"},{"value":"0.02656","scoring_system":"epss","scoring_elements":"0.86078","published_at":"2026-06-07T12:55:00Z"},{"value":"0.02656","scoring_system":"epss","scoring_elements":"0.86082","published_at":"2026-06-06T12:55:00Z"},{"value":"0.02656","scoring_system":"epss","scoring_elements":"0.86066","published_at":"2026-06-08T12:55:00Z"},{"value":"0.02656","scoring_system":"epss","scoring_elements":"0.8608","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-17508"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17508","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17508"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17509","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17509"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515650?format=json","purl":"pkg:deb/debian/trafficserver@8.0.2%2Bds-1%2Bdeb10u6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-2kvz-wm9u-53bd"},{"vulnerability":"VCID-31ru-728d-7qhd"},{"vulnerability":"VCID-3kze-pbbq-63gp"},{"vulnerability":"VCID-4798-eshg-87d3"},{"vulnerability":"VCID-4juv-ezjh-xqb1"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7jmj-2mx5-pkea"},{"vulnerability":"VCID-7qfd-bk4h-j3aa"},{"vulnerability":"VCID-7wgn-m25j-w7h2"},{"vulnerability":"VCID-8c9g-167m-j3a3"},{"vulnerability":"VCID-8zcx-gcse-ukhp"},{"vulnerability":"VCID-abq3-a6yx-e7bq"},{"vulnerability":"VCID-ahw3-7k2k-9ka4"},{"vulnerability":"VCID-akpu-abr9-hqbz"},{"vulnerability":"VCID-anzk-2p8a-qkdx"},{"vulnerability":"VCID-b9rr-1n16-6bdd"},{"vulnerability":"VCID-brew-av11-bydd"},{"vulnerability":"VCID-d9vg-ugpq-bkde"},{"vulnerability":"VCID-ehgb-691x-8yf8"},{"vulnerability":"VCID-f8tu-csm2-9ka4"},{"vulnerability":"VCID-gm5j-mkze-8qgn"},{"vulnerability":"VCID-hzuw-nvff-fuav"},{"vulnerability":"VCID-j1zx-9f8z-cugc"},{"vulnerability":"VCID-kkpu-zyz5-z7b8"},{"vulnerability":"VCID-n279-7wxk-nydv"},{"vulnerability":"VCID-n8h3-vshe-fybw"},{"vulnerability":"VCID-n9ge-6p95-qyg6"},{"vulnerability":"VCID-ne7c-7vzh-qkhk"},{"vulnerability":"VCID-puv1-q4kq-sucs"},{"vulnerability":"VCID-pvgd-s1fu-mkc4"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qsg5-eqde-eyee"},{"vulnerability":"VCID-ry1q-c5e8-tba4"},{"vulnerability":"VCID-s9jy-8vcq-83ch"},{"vulnerability":"VCID-shyq-gyyp-ebav"},{"vulnerability":"VCID-t1qc-t43k-8ug4"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-wk1w-jhc1-6qe6"},{"vulnerability":"VCID-x4cj-g8hm-gfd9"},{"vulnerability":"VCID-xdek-jm8r-ryfh"},{"vulnerability":"VCID-xtkv-k4js-yfdm"},{"vulnerability":"VCID-y4a2-mamb-yqg6"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.0.2%252Bds-1%252Bdeb10u6"},{"url":"http://public2.vulnerablecode.io/api/packages/195982?format=json","purl":"pkg:deb/debian/trafficserver@8.1.10%2Bds-1~deb11u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7cx9-r4vs-jycb"},{"vulnerability":"VCID-9and-qdyn-ryh8"},{"vulnerability":"VCID-g4ca-xg28-j7a3"},{"vulnerability":"VCID-pamq-mbf9-5yd5"},{"vulnerability":"VCID-pswv-yvhe-9ubs"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qjzn-d1sw-13gk"},{"vulnerability":"VCID-rtzu-8w8v-wbhj"},{"vulnerability":"VCID-sq5z-yfbm-cffs"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-w96r-ryuy-bbca"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.1.10%252Bds-1~deb11u1"}],"aliases":["CVE-2020-17508"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-t1qc-t43k-8ug4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103123?format=json","vulnerability_id":"VCID-u2dm-zzmm-yugj","summary":"When there are multiple ranges in a range request, Apache Traffic Server (ATS) will read the entire object from cache. This can cause performance problems with large objects in cache. This affects versions 6.0.0 to 6.2.2 and 7.0.0 to 7.1.3. To resolve this issue users running 6.x users should upgrade to 6.2.3 or later versions and 7.x users should upgrade to 7.1.4 or later versions.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-8005","reference_id":"","reference_type":"","scores":[{"value":"0.06689","scoring_system":"epss","scoring_elements":"0.91405","published_at":"2026-06-04T12:55:00Z"},{"value":"0.06689","scoring_system":"epss","scoring_elements":"0.91419","published_at":"2026-06-05T12:55:00Z"},{"value":"0.06689","scoring_system":"epss","scoring_elements":"0.91421","published_at":"2026-06-06T12:55:00Z"},{"value":"0.06689","scoring_system":"epss","scoring_elements":"0.91418","published_at":"2026-06-07T12:55:00Z"},{"value":"0.06689","scoring_system":"epss","scoring_elements":"0.91414","published_at":"2026-06-08T12:55:00Z"},{"value":"0.06689","scoring_system":"epss","scoring_elements":"0.91428","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-8005"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1318","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1318"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8004","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8004"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8005","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8005"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8040","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8040"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515650?format=json","purl":"pkg:deb/debian/trafficserver@8.0.2%2Bds-1%2Bdeb10u6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-2kvz-wm9u-53bd"},{"vulnerability":"VCID-31ru-728d-7qhd"},{"vulnerability":"VCID-3kze-pbbq-63gp"},{"vulnerability":"VCID-4798-eshg-87d3"},{"vulnerability":"VCID-4juv-ezjh-xqb1"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7jmj-2mx5-pkea"},{"vulnerability":"VCID-7qfd-bk4h-j3aa"},{"vulnerability":"VCID-7wgn-m25j-w7h2"},{"vulnerability":"VCID-8c9g-167m-j3a3"},{"vulnerability":"VCID-8zcx-gcse-ukhp"},{"vulnerability":"VCID-abq3-a6yx-e7bq"},{"vulnerability":"VCID-ahw3-7k2k-9ka4"},{"vulnerability":"VCID-akpu-abr9-hqbz"},{"vulnerability":"VCID-anzk-2p8a-qkdx"},{"vulnerability":"VCID-b9rr-1n16-6bdd"},{"vulnerability":"VCID-brew-av11-bydd"},{"vulnerability":"VCID-d9vg-ugpq-bkde"},{"vulnerability":"VCID-ehgb-691x-8yf8"},{"vulnerability":"VCID-f8tu-csm2-9ka4"},{"vulnerability":"VCID-gm5j-mkze-8qgn"},{"vulnerability":"VCID-hzuw-nvff-fuav"},{"vulnerability":"VCID-j1zx-9f8z-cugc"},{"vulnerability":"VCID-kkpu-zyz5-z7b8"},{"vulnerability":"VCID-n279-7wxk-nydv"},{"vulnerability":"VCID-n8h3-vshe-fybw"},{"vulnerability":"VCID-n9ge-6p95-qyg6"},{"vulnerability":"VCID-ne7c-7vzh-qkhk"},{"vulnerability":"VCID-puv1-q4kq-sucs"},{"vulnerability":"VCID-pvgd-s1fu-mkc4"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qsg5-eqde-eyee"},{"vulnerability":"VCID-ry1q-c5e8-tba4"},{"vulnerability":"VCID-s9jy-8vcq-83ch"},{"vulnerability":"VCID-shyq-gyyp-ebav"},{"vulnerability":"VCID-t1qc-t43k-8ug4"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-wk1w-jhc1-6qe6"},{"vulnerability":"VCID-x4cj-g8hm-gfd9"},{"vulnerability":"VCID-xdek-jm8r-ryfh"},{"vulnerability":"VCID-xtkv-k4js-yfdm"},{"vulnerability":"VCID-y4a2-mamb-yqg6"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.0.2%252Bds-1%252Bdeb10u6"}],"aliases":["CVE-2018-8005"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-u2dm-zzmm-yugj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103116?format=json","vulnerability_id":"VCID-utfa-6f4f-pfct","summary":"Apache Traffic Server before 6.2.1 generates a coredump when there is a mismatch between content length and chunked encoding.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-5659","reference_id":"","reference_type":"","scores":[{"value":"0.01972","scoring_system":"epss","scoring_elements":"0.83869","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01972","scoring_system":"epss","scoring_elements":"0.83892","published_at":"2026-06-05T12:55:00Z"},{"value":"0.01972","scoring_system":"epss","scoring_elements":"0.83895","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01972","scoring_system":"epss","scoring_elements":"0.83891","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01972","scoring_system":"epss","scoring_elements":"0.83881","published_at":"2026-06-08T12:55:00Z"},{"value":"0.01972","scoring_system":"epss","scoring_elements":"0.83896","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-5659"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5659","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5659"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515649?format=json","purl":"pkg:deb/debian/trafficserver@7.0.0-4~bpo8%2B1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-2kvz-wm9u-53bd"},{"vulnerability":"VCID-31ru-728d-7qhd"},{"vulnerability":"VCID-3kze-pbbq-63gp"},{"vulnerability":"VCID-4798-eshg-87d3"},{"vulnerability":"VCID-4juv-ezjh-xqb1"},{"vulnerability":"VCID-4z9e-2ugc-vqav"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-6u62-a3sj-efcw"},{"vulnerability":"VCID-7jmj-2mx5-pkea"},{"vulnerability":"VCID-7qfd-bk4h-j3aa"},{"vulnerability":"VCID-7wgn-m25j-w7h2"},{"vulnerability":"VCID-8c9g-167m-j3a3"},{"vulnerability":"VCID-8zcx-gcse-ukhp"},{"vulnerability":"VCID-abq3-a6yx-e7bq"},{"vulnerability":"VCID-ahw3-7k2k-9ka4"},{"vulnerability":"VCID-akpu-abr9-hqbz"},{"vulnerability":"VCID-anzk-2p8a-qkdx"},{"vulnerability":"VCID-b9rr-1n16-6bdd"},{"vulnerability":"VCID-brew-av11-bydd"},{"vulnerability":"VCID-d9vg-ugpq-bkde"},{"vulnerability":"VCID-ehgb-691x-8yf8"},{"vulnerability":"VCID-f8tu-csm2-9ka4"},{"vulnerability":"VCID-gm5j-mkze-8qgn"},{"vulnerability":"VCID-gq8w-7xep-77gz"},{"vulnerability":"VCID-h7f1-f91u-mqf2"},{"vulnerability":"VCID-hzuw-nvff-fuav"},{"vulnerability":"VCID-j1zx-9f8z-cugc"},{"vulnerability":"VCID-kkpu-zyz5-z7b8"},{"vulnerability":"VCID-n279-7wxk-nydv"},{"vulnerability":"VCID-n8h3-vshe-fybw"},{"vulnerability":"VCID-n9ge-6p95-qyg6"},{"vulnerability":"VCID-ne7c-7vzh-qkhk"},{"vulnerability":"VCID-puv1-q4kq-sucs"},{"vulnerability":"VCID-pvgd-s1fu-mkc4"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qsg5-eqde-eyee"},{"vulnerability":"VCID-rsvc-b3bb-dudb"},{"vulnerability":"VCID-ry1q-c5e8-tba4"},{"vulnerability":"VCID-rzba-hj3c-w7d2"},{"vulnerability":"VCID-s9jy-8vcq-83ch"},{"vulnerability":"VCID-shyq-gyyp-ebav"},{"vulnerability":"VCID-t1qc-t43k-8ug4"},{"vulnerability":"VCID-u2dm-zzmm-yugj"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-wk1w-jhc1-6qe6"},{"vulnerability":"VCID-x4cj-g8hm-gfd9"},{"vulnerability":"VCID-xdek-jm8r-ryfh"},{"vulnerability":"VCID-xtkv-k4js-yfdm"},{"vulnerability":"VCID-y4a2-mamb-yqg6"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@7.0.0-4~bpo8%252B1"}],"aliases":["CVE-2017-5659"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-utfa-6f4f-pfct"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103170?format=json","vulnerability_id":"VCID-v6p7-5vx3-eff3","summary":"Apache Traffic Server accepts characters that are not allowed for HTTP field names and forwards malformed requests to origin servers. This can be utilized for request smuggling and may also lead cache poisoning if the origin servers are vulnerable.  This issue affects Apache Traffic Server: from 8.0.0 through 8.1.10, from 9.0.0 through 9.2.4.  Users are recommended to upgrade to version 8.1.11 or 9.2.5, which fixes the issue.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-38522","reference_id":"","reference_type":"","scores":[{"value":"0.00488","scoring_system":"epss","scoring_elements":"0.65876","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00488","scoring_system":"epss","scoring_elements":"0.65851","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00488","scoring_system":"epss","scoring_elements":"0.6587","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00488","scoring_system":"epss","scoring_elements":"0.65865","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00488","scoring_system":"epss","scoring_elements":"0.65862","published_at":"2026-06-07T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-38522"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-38522","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-38522"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1077141","reference_id":"1077141","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1077141"},{"reference_url":"https://lists.apache.org/thread/c4mcmpblgl8kkmyt56t23543gp8v56m0","reference_id":"c4mcmpblgl8kkmyt56t23543gp8v56m0","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-07-26T13:37:29Z/"}],"url":"https://lists.apache.org/thread/c4mcmpblgl8kkmyt56t23543gp8v56m0"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/195983?format=json","purl":"pkg:deb/debian/trafficserver@9.2.5%2Bds-0%2Bdeb12u4","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@9.2.5%252Bds-0%252Bdeb12u4"}],"aliases":["CVE-2023-38522"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-v6p7-5vx3-eff3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103147?format=json","vulnerability_id":"VCID-wk1w-jhc1-6qe6","summary":"Improper input validation vulnerability in header parsing of Apache Traffic Server allows an attacker to smuggle requests. This issue affects Apache Traffic Server 8.0.0 to 8.1.2 and 9.0.0 to 9.0.1.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-37148","reference_id":"","reference_type":"","scores":[{"value":"0.01363","scoring_system":"epss","scoring_elements":"0.80512","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01363","scoring_system":"epss","scoring_elements":"0.80538","published_at":"2026-06-05T12:55:00Z"},{"value":"0.01363","scoring_system":"epss","scoring_elements":"0.8054","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01363","scoring_system":"epss","scoring_elements":"0.80537","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01363","scoring_system":"epss","scoring_elements":"0.80533","published_at":"2026-06-08T12:55:00Z"},{"value":"0.01363","scoring_system":"epss","scoring_elements":"0.80554","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-37148"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37147","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37147"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37148","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37148"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37149","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37149"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-38161","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-38161"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44040","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44040"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44759","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44759"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515650?format=json","purl":"pkg:deb/debian/trafficserver@8.0.2%2Bds-1%2Bdeb10u6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-2kvz-wm9u-53bd"},{"vulnerability":"VCID-31ru-728d-7qhd"},{"vulnerability":"VCID-3kze-pbbq-63gp"},{"vulnerability":"VCID-4798-eshg-87d3"},{"vulnerability":"VCID-4juv-ezjh-xqb1"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7jmj-2mx5-pkea"},{"vulnerability":"VCID-7qfd-bk4h-j3aa"},{"vulnerability":"VCID-7wgn-m25j-w7h2"},{"vulnerability":"VCID-8c9g-167m-j3a3"},{"vulnerability":"VCID-8zcx-gcse-ukhp"},{"vulnerability":"VCID-abq3-a6yx-e7bq"},{"vulnerability":"VCID-ahw3-7k2k-9ka4"},{"vulnerability":"VCID-akpu-abr9-hqbz"},{"vulnerability":"VCID-anzk-2p8a-qkdx"},{"vulnerability":"VCID-b9rr-1n16-6bdd"},{"vulnerability":"VCID-brew-av11-bydd"},{"vulnerability":"VCID-d9vg-ugpq-bkde"},{"vulnerability":"VCID-ehgb-691x-8yf8"},{"vulnerability":"VCID-f8tu-csm2-9ka4"},{"vulnerability":"VCID-gm5j-mkze-8qgn"},{"vulnerability":"VCID-hzuw-nvff-fuav"},{"vulnerability":"VCID-j1zx-9f8z-cugc"},{"vulnerability":"VCID-kkpu-zyz5-z7b8"},{"vulnerability":"VCID-n279-7wxk-nydv"},{"vulnerability":"VCID-n8h3-vshe-fybw"},{"vulnerability":"VCID-n9ge-6p95-qyg6"},{"vulnerability":"VCID-ne7c-7vzh-qkhk"},{"vulnerability":"VCID-puv1-q4kq-sucs"},{"vulnerability":"VCID-pvgd-s1fu-mkc4"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qsg5-eqde-eyee"},{"vulnerability":"VCID-ry1q-c5e8-tba4"},{"vulnerability":"VCID-s9jy-8vcq-83ch"},{"vulnerability":"VCID-shyq-gyyp-ebav"},{"vulnerability":"VCID-t1qc-t43k-8ug4"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-wk1w-jhc1-6qe6"},{"vulnerability":"VCID-x4cj-g8hm-gfd9"},{"vulnerability":"VCID-xdek-jm8r-ryfh"},{"vulnerability":"VCID-xtkv-k4js-yfdm"},{"vulnerability":"VCID-y4a2-mamb-yqg6"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.0.2%252Bds-1%252Bdeb10u6"},{"url":"http://public2.vulnerablecode.io/api/packages/195982?format=json","purl":"pkg:deb/debian/trafficserver@8.1.10%2Bds-1~deb11u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7cx9-r4vs-jycb"},{"vulnerability":"VCID-9and-qdyn-ryh8"},{"vulnerability":"VCID-g4ca-xg28-j7a3"},{"vulnerability":"VCID-pamq-mbf9-5yd5"},{"vulnerability":"VCID-pswv-yvhe-9ubs"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qjzn-d1sw-13gk"},{"vulnerability":"VCID-rtzu-8w8v-wbhj"},{"vulnerability":"VCID-sq5z-yfbm-cffs"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-w96r-ryuy-bbca"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.1.10%252Bds-1~deb11u1"}],"aliases":["CVE-2021-37148"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wk1w-jhc1-6qe6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103138?format=json","vulnerability_id":"VCID-x4cj-g8hm-gfd9","summary":"Apache ATS 6.0.0 to 6.2.3, 7.0.0 to 7.1.9, and 8.0.0 to 8.0.6 is vulnerable to a HTTP/2 slow read attack.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-9481","reference_id":"","reference_type":"","scores":[{"value":"0.05231","scoring_system":"epss","scoring_elements":"0.90125","published_at":"2026-06-04T12:55:00Z"},{"value":"0.05231","scoring_system":"epss","scoring_elements":"0.90142","published_at":"2026-06-05T12:55:00Z"},{"value":"0.05231","scoring_system":"epss","scoring_elements":"0.9014","published_at":"2026-06-06T12:55:00Z"},{"value":"0.05231","scoring_system":"epss","scoring_elements":"0.90139","published_at":"2026-06-07T12:55:00Z"},{"value":"0.05231","scoring_system":"epss","scoring_elements":"0.90137","published_at":"2026-06-08T12:55:00Z"},{"value":"0.05231","scoring_system":"epss","scoring_elements":"0.90153","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-9481"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17559","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17559"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17565","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17565"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1944","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1944"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9481","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9481"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515650?format=json","purl":"pkg:deb/debian/trafficserver@8.0.2%2Bds-1%2Bdeb10u6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-2kvz-wm9u-53bd"},{"vulnerability":"VCID-31ru-728d-7qhd"},{"vulnerability":"VCID-3kze-pbbq-63gp"},{"vulnerability":"VCID-4798-eshg-87d3"},{"vulnerability":"VCID-4juv-ezjh-xqb1"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7jmj-2mx5-pkea"},{"vulnerability":"VCID-7qfd-bk4h-j3aa"},{"vulnerability":"VCID-7wgn-m25j-w7h2"},{"vulnerability":"VCID-8c9g-167m-j3a3"},{"vulnerability":"VCID-8zcx-gcse-ukhp"},{"vulnerability":"VCID-abq3-a6yx-e7bq"},{"vulnerability":"VCID-ahw3-7k2k-9ka4"},{"vulnerability":"VCID-akpu-abr9-hqbz"},{"vulnerability":"VCID-anzk-2p8a-qkdx"},{"vulnerability":"VCID-b9rr-1n16-6bdd"},{"vulnerability":"VCID-brew-av11-bydd"},{"vulnerability":"VCID-d9vg-ugpq-bkde"},{"vulnerability":"VCID-ehgb-691x-8yf8"},{"vulnerability":"VCID-f8tu-csm2-9ka4"},{"vulnerability":"VCID-gm5j-mkze-8qgn"},{"vulnerability":"VCID-hzuw-nvff-fuav"},{"vulnerability":"VCID-j1zx-9f8z-cugc"},{"vulnerability":"VCID-kkpu-zyz5-z7b8"},{"vulnerability":"VCID-n279-7wxk-nydv"},{"vulnerability":"VCID-n8h3-vshe-fybw"},{"vulnerability":"VCID-n9ge-6p95-qyg6"},{"vulnerability":"VCID-ne7c-7vzh-qkhk"},{"vulnerability":"VCID-puv1-q4kq-sucs"},{"vulnerability":"VCID-pvgd-s1fu-mkc4"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qsg5-eqde-eyee"},{"vulnerability":"VCID-ry1q-c5e8-tba4"},{"vulnerability":"VCID-s9jy-8vcq-83ch"},{"vulnerability":"VCID-shyq-gyyp-ebav"},{"vulnerability":"VCID-t1qc-t43k-8ug4"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-wk1w-jhc1-6qe6"},{"vulnerability":"VCID-x4cj-g8hm-gfd9"},{"vulnerability":"VCID-xdek-jm8r-ryfh"},{"vulnerability":"VCID-xtkv-k4js-yfdm"},{"vulnerability":"VCID-y4a2-mamb-yqg6"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.0.2%252Bds-1%252Bdeb10u6"},{"url":"http://public2.vulnerablecode.io/api/packages/195982?format=json","purl":"pkg:deb/debian/trafficserver@8.1.10%2Bds-1~deb11u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7cx9-r4vs-jycb"},{"vulnerability":"VCID-9and-qdyn-ryh8"},{"vulnerability":"VCID-g4ca-xg28-j7a3"},{"vulnerability":"VCID-pamq-mbf9-5yd5"},{"vulnerability":"VCID-pswv-yvhe-9ubs"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qjzn-d1sw-13gk"},{"vulnerability":"VCID-rtzu-8w8v-wbhj"},{"vulnerability":"VCID-sq5z-yfbm-cffs"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-w96r-ryuy-bbca"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.1.10%252Bds-1~deb11u1"}],"aliases":["CVE-2020-9481"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-x4cj-g8hm-gfd9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103144?format=json","vulnerability_id":"VCID-xdek-jm8r-ryfh","summary":"Improper Input Validation vulnerability in HTTP/2 of Apache Traffic Server allows an attacker to DOS the server. This issue affects Apache Traffic Server 7.0.0 to 7.1.12, 8.0.0 to 8.1.1, 9.0.0 to 9.0.1.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-32567","reference_id":"","reference_type":"","scores":[{"value":"0.07927","scoring_system":"epss","scoring_elements":"0.92191","published_at":"2026-06-04T12:55:00Z"},{"value":"0.07927","scoring_system":"epss","scoring_elements":"0.92204","published_at":"2026-06-05T12:55:00Z"},{"value":"0.07927","scoring_system":"epss","scoring_elements":"0.92201","published_at":"2026-06-08T12:55:00Z"},{"value":"0.07927","scoring_system":"epss","scoring_elements":"0.922","published_at":"2026-06-07T12:55:00Z"},{"value":"0.07927","scoring_system":"epss","scoring_elements":"0.92215","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-32567"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27577","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27577"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32565","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32565"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32566","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32566"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32567","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32567"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35474","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35474"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=990303","reference_id":"990303","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=990303"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515650?format=json","purl":"pkg:deb/debian/trafficserver@8.0.2%2Bds-1%2Bdeb10u6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-2kvz-wm9u-53bd"},{"vulnerability":"VCID-31ru-728d-7qhd"},{"vulnerability":"VCID-3kze-pbbq-63gp"},{"vulnerability":"VCID-4798-eshg-87d3"},{"vulnerability":"VCID-4juv-ezjh-xqb1"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7jmj-2mx5-pkea"},{"vulnerability":"VCID-7qfd-bk4h-j3aa"},{"vulnerability":"VCID-7wgn-m25j-w7h2"},{"vulnerability":"VCID-8c9g-167m-j3a3"},{"vulnerability":"VCID-8zcx-gcse-ukhp"},{"vulnerability":"VCID-abq3-a6yx-e7bq"},{"vulnerability":"VCID-ahw3-7k2k-9ka4"},{"vulnerability":"VCID-akpu-abr9-hqbz"},{"vulnerability":"VCID-anzk-2p8a-qkdx"},{"vulnerability":"VCID-b9rr-1n16-6bdd"},{"vulnerability":"VCID-brew-av11-bydd"},{"vulnerability":"VCID-d9vg-ugpq-bkde"},{"vulnerability":"VCID-ehgb-691x-8yf8"},{"vulnerability":"VCID-f8tu-csm2-9ka4"},{"vulnerability":"VCID-gm5j-mkze-8qgn"},{"vulnerability":"VCID-hzuw-nvff-fuav"},{"vulnerability":"VCID-j1zx-9f8z-cugc"},{"vulnerability":"VCID-kkpu-zyz5-z7b8"},{"vulnerability":"VCID-n279-7wxk-nydv"},{"vulnerability":"VCID-n8h3-vshe-fybw"},{"vulnerability":"VCID-n9ge-6p95-qyg6"},{"vulnerability":"VCID-ne7c-7vzh-qkhk"},{"vulnerability":"VCID-puv1-q4kq-sucs"},{"vulnerability":"VCID-pvgd-s1fu-mkc4"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qsg5-eqde-eyee"},{"vulnerability":"VCID-ry1q-c5e8-tba4"},{"vulnerability":"VCID-s9jy-8vcq-83ch"},{"vulnerability":"VCID-shyq-gyyp-ebav"},{"vulnerability":"VCID-t1qc-t43k-8ug4"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-wk1w-jhc1-6qe6"},{"vulnerability":"VCID-x4cj-g8hm-gfd9"},{"vulnerability":"VCID-xdek-jm8r-ryfh"},{"vulnerability":"VCID-xtkv-k4js-yfdm"},{"vulnerability":"VCID-y4a2-mamb-yqg6"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.0.2%252Bds-1%252Bdeb10u6"},{"url":"http://public2.vulnerablecode.io/api/packages/195982?format=json","purl":"pkg:deb/debian/trafficserver@8.1.10%2Bds-1~deb11u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7cx9-r4vs-jycb"},{"vulnerability":"VCID-9and-qdyn-ryh8"},{"vulnerability":"VCID-g4ca-xg28-j7a3"},{"vulnerability":"VCID-pamq-mbf9-5yd5"},{"vulnerability":"VCID-pswv-yvhe-9ubs"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qjzn-d1sw-13gk"},{"vulnerability":"VCID-rtzu-8w8v-wbhj"},{"vulnerability":"VCID-sq5z-yfbm-cffs"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-w96r-ryuy-bbca"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.1.10%252Bds-1~deb11u1"}],"aliases":["CVE-2021-32567"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xdek-jm8r-ryfh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103135?format=json","vulnerability_id":"VCID-xtkv-k4js-yfdm","summary":"ATS negative cache option is vulnerable to a cache poisoning attack. If you have this option enabled, please upgrade or disable this feature. Apache Traffic Server versions 7.0.0 to 7.1.11 and 8.0.0 to 8.1.0 are affected.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-17509","reference_id":"","reference_type":"","scores":[{"value":"0.03046","scoring_system":"epss","scoring_elements":"0.86935","published_at":"2026-06-04T12:55:00Z"},{"value":"0.03046","scoring_system":"epss","scoring_elements":"0.86958","published_at":"2026-06-05T12:55:00Z"},{"value":"0.03046","scoring_system":"epss","scoring_elements":"0.86955","published_at":"2026-06-06T12:55:00Z"},{"value":"0.03046","scoring_system":"epss","scoring_elements":"0.8695","published_at":"2026-06-07T12:55:00Z"},{"value":"0.03046","scoring_system":"epss","scoring_elements":"0.86941","published_at":"2026-06-08T12:55:00Z"},{"value":"0.03046","scoring_system":"epss","scoring_elements":"0.86952","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-17509"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17508","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17508"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17509","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17509"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515650?format=json","purl":"pkg:deb/debian/trafficserver@8.0.2%2Bds-1%2Bdeb10u6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-2kvz-wm9u-53bd"},{"vulnerability":"VCID-31ru-728d-7qhd"},{"vulnerability":"VCID-3kze-pbbq-63gp"},{"vulnerability":"VCID-4798-eshg-87d3"},{"vulnerability":"VCID-4juv-ezjh-xqb1"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7jmj-2mx5-pkea"},{"vulnerability":"VCID-7qfd-bk4h-j3aa"},{"vulnerability":"VCID-7wgn-m25j-w7h2"},{"vulnerability":"VCID-8c9g-167m-j3a3"},{"vulnerability":"VCID-8zcx-gcse-ukhp"},{"vulnerability":"VCID-abq3-a6yx-e7bq"},{"vulnerability":"VCID-ahw3-7k2k-9ka4"},{"vulnerability":"VCID-akpu-abr9-hqbz"},{"vulnerability":"VCID-anzk-2p8a-qkdx"},{"vulnerability":"VCID-b9rr-1n16-6bdd"},{"vulnerability":"VCID-brew-av11-bydd"},{"vulnerability":"VCID-d9vg-ugpq-bkde"},{"vulnerability":"VCID-ehgb-691x-8yf8"},{"vulnerability":"VCID-f8tu-csm2-9ka4"},{"vulnerability":"VCID-gm5j-mkze-8qgn"},{"vulnerability":"VCID-hzuw-nvff-fuav"},{"vulnerability":"VCID-j1zx-9f8z-cugc"},{"vulnerability":"VCID-kkpu-zyz5-z7b8"},{"vulnerability":"VCID-n279-7wxk-nydv"},{"vulnerability":"VCID-n8h3-vshe-fybw"},{"vulnerability":"VCID-n9ge-6p95-qyg6"},{"vulnerability":"VCID-ne7c-7vzh-qkhk"},{"vulnerability":"VCID-puv1-q4kq-sucs"},{"vulnerability":"VCID-pvgd-s1fu-mkc4"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qsg5-eqde-eyee"},{"vulnerability":"VCID-ry1q-c5e8-tba4"},{"vulnerability":"VCID-s9jy-8vcq-83ch"},{"vulnerability":"VCID-shyq-gyyp-ebav"},{"vulnerability":"VCID-t1qc-t43k-8ug4"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-wk1w-jhc1-6qe6"},{"vulnerability":"VCID-x4cj-g8hm-gfd9"},{"vulnerability":"VCID-xdek-jm8r-ryfh"},{"vulnerability":"VCID-xtkv-k4js-yfdm"},{"vulnerability":"VCID-y4a2-mamb-yqg6"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.0.2%252Bds-1%252Bdeb10u6"},{"url":"http://public2.vulnerablecode.io/api/packages/195982?format=json","purl":"pkg:deb/debian/trafficserver@8.1.10%2Bds-1~deb11u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7cx9-r4vs-jycb"},{"vulnerability":"VCID-9and-qdyn-ryh8"},{"vulnerability":"VCID-g4ca-xg28-j7a3"},{"vulnerability":"VCID-pamq-mbf9-5yd5"},{"vulnerability":"VCID-pswv-yvhe-9ubs"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qjzn-d1sw-13gk"},{"vulnerability":"VCID-rtzu-8w8v-wbhj"},{"vulnerability":"VCID-sq5z-yfbm-cffs"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-w96r-ryuy-bbca"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.1.10%252Bds-1~deb11u1"}],"aliases":["CVE-2020-17509"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xtkv-k4js-yfdm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/46172?format=json","vulnerability_id":"VCID-y4a2-mamb-yqg6","summary":"False Positive\nThe HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-44487.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-44487.json"},{"reference_url":"https://akka.io/security/akka-http-cve-2023-44487.html","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://akka.io/security/akka-http-cve-2023-44487.html"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-44487","reference_id":"","reference_type":"","scores":[{"value":"0.94395","scoring_system":"epss","scoring_elements":"0.99975","published_at":"2026-06-07T12:55:00Z"},{"value":"0.94395","scoring_system":"epss","scoring_elements":"0.99976","published_at":"2026-06-05T12:55:00Z"},{"value":"0.944","scoring_system":"epss","scoring_elements":"0.99976","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-44487"},{"reference_url":"https://arstechnica.com/security/2023/10/how-ddosers-used-the-http-2-protocol-to-deliver-attacks-of-unprecedented-size","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://arstechnica.com/security/2023/10/how-ddosers-used-the-http-2-protocol-to-deliver-attacks-of-unprecedented-size"},{"reference_url":"https://arstechnica.com/security/2023/10/how-ddosers-used-the-http-2-protocol-to-deliver-attacks-of-unprecedented-size/","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://arstechnica.com/security/2023/10/how-ddosers-used-the-http-2-protocol-to-deliver-attacks-of-unprecedented-size/"},{"reference_url":"https://aws.amazon.com/security/security-bulletins/AWS-2023-011","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://aws.amazon.com/security/security-bulletins/AWS-2023-011"},{"reference_url":"https://aws.amazon.com/security/security-bulletins/AWS-2023-011/","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://aws.amazon.com/security/security-bulletins/AWS-2023-011/"},{"reference_url":"https://blog.cloudflare.com/technical-breakdown-http2-rapid-reset-ddos-attack","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://blog.cloudflare.com/technical-breakdown-http2-rapid-reset-ddos-attack"},{"reference_url":"https://blog.cloudflare.com/technical-breakdown-http2-rapid-reset-ddos-attack/","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://blog.cloudflare.com/technical-breakdown-http2-rapid-reset-ddos-attack/"},{"reference_url":"https://blog.cloudflare.com/zero-day-rapid-reset-http2-record-breaking-ddos-attack","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://blog.cloudflare.com/zero-day-rapid-reset-http2-record-breaking-ddos-attack"},{"reference_url":"https://blog.cloudflare.com/zero-day-rapid-reset-http2-record-breaking-ddos-attack/","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://blog.cloudflare.com/zero-day-rapid-reset-http2-record-breaking-ddos-attack/"},{"reference_url":"https://blog.litespeedtech.com/2023/10/11/rapid-reset-http-2-vulnerablilty","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://blog.litespeedtech.com/2023/10/11/rapid-reset-http-2-vulnerablilty"},{"reference_url":"https://blog.litespeedtech.com/2023/10/11/rapid-reset-http-2-vulnerablilty/","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://blog.litespeedtech.com/2023/10/11/rapid-reset-http-2-vulnerablilty/"},{"reference_url":"https://bugzilla.proxmox.com/show_bug.cgi?id=4988","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://bugzilla.proxmox.com/show_bug.cgi?id=4988"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2242803","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2242803"},{"reference_url":"https://bugzilla.suse.com/show_bug.cgi?id=1216123","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://bugzilla.suse.com/show_bug.cgi?id=1216123"},{"reference_url":"https://cert-portal.siemens.com/productcert/html/ssa-082556.html","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://cert-portal.siemens.com/productcert/html/ssa-082556.html"},{"reference_url":"https://cert-portal.siemens.com/productcert/html/ssa-341067.html","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://cert-portal.siemens.com/productcert/html/ssa-341067.html"},{"reference_url":"https://cert-portal.siemens.com/productcert/html/ssa-784301.html","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://cert-portal.siemens.com/productcert/html/ssa-784301.html"},{"reference_url":"https://cert-portal.siemens.com/productcert/html/ssa-832273.html","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://cert-portal.siemens.com/productcert/html/ssa-832273.html"},{"reference_url":"https://cert-portal.siemens.com/productcert/html/ssa-915275.html","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://cert-portal.siemens.com/productcert/html/ssa-915275.html"},{"reference_url":"https://cgit.freebsd.org/ports/commit/?id=c64c329c2c1752f46b73e3e6ce9f4329be6629f9","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://cgit.freebsd.org/ports/commit/?id=c64c329c2c1752f46b73e3e6ce9f4329be6629f9"},{"reference_url":"https://chaos.social/@icing/111210915918780532","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://chaos.social/@icing/111210915918780532"},{"reference_url":"https://cloud.google.com/blog/products/identity-security/google-cloud-mitigated-largest-ddos-attack-peaking-above-398-million-rps","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://cloud.google.com/blog/products/identity-security/google-cloud-mitigated-largest-ddos-attack-peaking-above-398-million-rps"},{"reference_url":"https://cloud.google.com/blog/products/identity-security/google-cloud-mitigated-largest-ddos-attack-peaking-above-398-million-rps/","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://cloud.google.com/blog/products/identity-security/google-cloud-mitigated-largest-ddos-attack-peaking-above-398-million-rps/"},{"reference_url":"https://cloud.google.com/blog/products/identity-security/how-it-works-the-novel-http2-rapid-reset-ddos-attack","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://cloud.google.com/blog/products/identity-security/how-it-works-the-novel-http2-rapid-reset-ddos-attack"},{"reference_url":"https://community.traefik.io/t/is-traefik-vulnerable-to-cve-2023-44487/20125","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://community.traefik.io/t/is-traefik-vulnerable-to-cve-2023-44487/20125"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-47185","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-47185"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-33934","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-33934"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-34462","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-34462"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-36478","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-36478"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-41752","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-41752"},{"reference_url":"https://discuss.hashicorp.com/t/hcsec-2023-32-vault-consul-and-boundary-affected-by-http-2-rapid-reset-denial-of-service-vulnerability-cve-2023-44487/59715","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://discuss.hashicorp.com/t/hcsec-2023-32-vault-consul-and-boundary-affected-by-http-2-rapid-reset-denial-of-service-vulnerability-cve-2023-44487/59715"},{"reference_url":"https://edg.io/lp/blog/resets-leaks-ddos-and-the-tale-of-a-hidden-cve","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://edg.io/lp/blog/resets-leaks-ddos-and-the-tale-of-a-hidden-cve"},{"reference_url":"https://forums.swift.org/t/swift-nio-http2-security-update-cve-2023-44487-http-2-dos/67764","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://forums.swift.org/t/swift-nio-http2-security-update-cve-2023-44487-http-2-dos/67764"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://gist.github.com/adulau/7c2bfb8e9cdbe4b35a5e131c66a0c088","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://gist.github.com/adulau/7c2bfb8e9cdbe4b35a5e131c66a0c088"},{"reference_url":"https://github.com/akka/akka-http/issues/4323","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://github.com/akka/akka-http/issues/4323"},{"reference_url":"https://github.com/akka/akka-http/pull/4324","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/akka/akka-http/pull/4324"},{"reference_url":"https://github.com/akka/akka-http/pull/4325","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/akka/akka-http/pull/4325"},{"reference_url":"https://github.com/alibaba/tengine/issues/1872","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://github.com/alibaba/tengine/issues/1872"},{"reference_url":"https://github.com/apache/apisix/issues/10320","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://github.com/apache/apisix/issues/10320"},{"reference_url":"https://github.com/apache/httpd/blob/afcdbeebbff4b0c50ea26cdd16e178c0d1f24152/modules/http2/h2_mplx.c#L1101-L1113","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://github.com/apache/httpd/blob/afcdbeebbff4b0c50ea26cdd16e178c0d1f24152/modules/http2/h2_mplx.c#L1101-L1113"},{"reference_url":"https://github.com/apache/httpd-site/pull/10","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://github.com/apache/httpd-site/pull/10"},{"reference_url":"https://github.com/apache/tomcat/commit/6d1a9fd6642387969e4410b9989c85856b74917a","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/apache/tomcat/commit/6d1a9fd6642387969e4410b9989c85856b74917a"},{"reference_url":"https://github.com/apache/tomcat/commit/76bb4bfbfeae827dce896f650655bbf6e251ed49","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/apache/tomcat/commit/76bb4bfbfeae827dce896f650655bbf6e251ed49"},{"reference_url":"https://github.com/apache/tomcat/commit/944332bb15bd2f3bf76ec2caeb1ff0a58a3bc628","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/tomcat/commit/944332bb15bd2f3bf76ec2caeb1ff0a58a3bc628"},{"reference_url":"https://github.com/apache/tomcat/commit/9cdfe25bad707f34b3e5da2994f3f1952a163c3e","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/apache/tomcat/commit/9cdfe25bad707f34b3e5da2994f3f1952a163c3e"},{"reference_url":"https://github.com/apache/tomcat/tree/main/java/org/apache/coyote/http2","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://github.com/apache/tomcat/tree/main/java/org/apache/coyote/http2"},{"reference_url":"https://github.com/apache/trafficserver/pull/10564","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://github.com/apache/trafficserver/pull/10564"},{"reference_url":"https://github.com/apple/swift-nio-http2","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apple/swift-nio-http2"},{"reference_url":"https://github.com/Azure/AKS/issues/3947","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://github.com/Azure/AKS/issues/3947"},{"reference_url":"https://github.com/caddyserver/caddy/issues/5877","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://github.com/caddyserver/caddy/issues/5877"},{"reference_url":"https://github.com/caddyserver/caddy/releases/tag/v2.7.5","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://github.com/caddyserver/caddy/releases/tag/v2.7.5"},{"reference_url":"https://github.com/dotnet/announcements/issues/277","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://github.com/dotnet/announcements/issues/277"},{"reference_url":"https://github.com/dotnet/core/blob/e4613450ea0da7fd2fc6b61dfb2c1c1dec1ce9ec/release-notes/6.0/6.0.23/6.0.23.md?plain=1#L73","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://github.com/dotnet/core/blob/e4613450ea0da7fd2fc6b61dfb2c1c1dec1ce9ec/release-notes/6.0/6.0.23/6.0.23.md?plain=1#L73"},{"reference_url":"https://github.com/eclipse/jetty.project/issues/10679","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://github.com/eclipse/jetty.project/issues/10679"},{"reference_url":"https://github.com/envoyproxy/envoy/pull/30055","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://github.com/envoyproxy/envoy/pull/30055"},{"reference_url":"https://github.com/etcd-io/etcd/issues/16740","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://github.com/etcd-io/etcd/issues/16740"},{"reference_url":"https://github.com/facebook/proxygen/pull/466","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://github.com/facebook/proxygen/pull/466"},{"reference_url":"https://github.com/golang/go/issues/63417","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://github.com/golang/go/issues/63417"},{"reference_url":"https://github.com/grpc/grpc-go/pull/6703","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://github.com/grpc/grpc-go/pull/6703"},{"reference_url":"https://github.com/grpc/grpc-go/releases","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/grpc/grpc-go/releases"},{"reference_url":"https://github.com/grpc/grpc/releases/tag/v1.59.2","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://github.com/grpc/grpc/releases/tag/v1.59.2"},{"reference_url":"https://github.com/h2o/h2o/pull/3291","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://github.com/h2o/h2o/pull/3291"},{"reference_url":"https://github.com/haproxy/haproxy/issues/2312","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://github.com/haproxy/haproxy/issues/2312"},{"reference_url":"https://github.com/hyperium/hyper/issues/3337","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/hyperium/hyper/issues/3337"},{"reference_url":"https://github.com/icing/mod_h2/blob/0a864782af0a942aa2ad4ed960a6b32cd35bcf0a/mod_http2/README.md?plain=1#L239-L244","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://github.com/icing/mod_h2/blob/0a864782af0a942aa2ad4ed960a6b32cd35bcf0a/mod_http2/README.md?plain=1#L239-L244"},{"reference_url":"https://github.com/junkurihara/rust-rpxy/issues/97","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://github.com/junkurihara/rust-rpxy/issues/97"},{"reference_url":"https://github.com/kazu-yamamoto/http2/commit/f61d41a502bd0f60eb24e1ce14edc7b6df6722a1","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://github.com/kazu-yamamoto/http2/commit/f61d41a502bd0f60eb24e1ce14edc7b6df6722a1"},{"reference_url":"https://github.com/kazu-yamamoto/http2/issues/93","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://github.com/kazu-yamamoto/http2/issues/93"},{"reference_url":"https://github.com/Kong/kong/discussions/11741","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://github.com/Kong/kong/discussions/11741"},{"reference_url":"https://github.com/kubernetes/kubernetes/pull/121120","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://github.com/kubernetes/kubernetes/pull/121120"},{"reference_url":"https://github.com/line/armeria/pull/5232","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://github.com/line/armeria/pull/5232"},{"reference_url":"https://github.com/linkerd/website/pull/1695/commits/4b9c6836471bc8270ab48aae6fd2181bc73fd632","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://github.com/linkerd/website/pull/1695/commits/4b9c6836471bc8270ab48aae6fd2181bc73fd632"},{"reference_url":"https://github.com/micrictor/http2-rst-stream","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://github.com/micrictor/http2-rst-stream"},{"reference_url":"https://github.com/microsoft/CBL-Mariner/pull/6381","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://github.com/microsoft/CBL-Mariner/pull/6381"},{"reference_url":"https://github.com/netty/netty","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/netty/netty"},{"reference_url":"https://github.com/netty/netty/commit/58f75f665aa81a8cbcf6ffa74820042a285c5e61","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://github.com/netty/netty/commit/58f75f665aa81a8cbcf6ffa74820042a285c5e61"},{"reference_url":"https://github.com/nghttp2/nghttp2","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/nghttp2/nghttp2"},{"reference_url":"https://github.com/nghttp2/nghttp2/commit/72b4af6143681f528f1d237b21a9a7aee1738832","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/nghttp2/nghttp2/commit/72b4af6143681f528f1d237b21a9a7aee1738832"},{"reference_url":"https://github.com/nghttp2/nghttp2/pull/1961","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://github.com/nghttp2/nghttp2/pull/1961"},{"reference_url":"https://github.com/nghttp2/nghttp2/releases/tag/v1.57.0","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://github.com/nghttp2/nghttp2/releases/tag/v1.57.0"},{"reference_url":"https://github.com/nghttp2/nghttp2/security/advisories/GHSA-vx74-f528-fxqg","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/nghttp2/nghttp2/security/advisories/GHSA-vx74-f528-fxqg"},{"reference_url":"https://github.com/ninenines/cowboy/issues/1615","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://github.com/ninenines/cowboy/issues/1615"},{"reference_url":"https://github.com/nodejs/node/pull/50121","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://github.com/nodejs/node/pull/50121"},{"reference_url":"https://github.com/openresty/openresty/issues/930","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://github.com/openresty/openresty/issues/930"},{"reference_url":"https://github.com/opensearch-project/data-prepper/issues/3474","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://github.com/opensearch-project/data-prepper/issues/3474"},{"reference_url":"https://github.com/oqtane/oqtane.framework/discussions/3367","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://github.com/oqtane/oqtane.framework/discussions/3367"},{"reference_url":"https://github.com/projectcontour/contour/pull/5826","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://github.com/projectcontour/contour/pull/5826"},{"reference_url":"https://github.com/tempesta-tech/tempesta/issues/1986","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://github.com/tempesta-tech/tempesta/issues/1986"},{"reference_url":"https://github.com/varnishcache/varnish-cache/issues/3996","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://github.com/varnishcache/varnish-cache/issues/3996"},{"reference_url":"https://go.dev/cl/534215","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://go.dev/cl/534215"},{"reference_url":"https://go.dev/cl/534235","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://go.dev/cl/534235"},{"reference_url":"https://go.dev/issue/63417","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://go.dev/issue/63417"},{"reference_url":"https://groups.google.com/g/golang-announce/c/iNNxDTCjZvo","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://groups.google.com/g/golang-announce/c/iNNxDTCjZvo"},{"reference_url":"https://groups.google.com/g/golang-announce/c/iNNxDTCjZvo/m/UDd7VKQuAAAJ","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://groups.google.com/g/golang-announce/c/iNNxDTCjZvo/m/UDd7VKQuAAAJ"},{"reference_url":"https://istio.io/latest/news/security/istio-security-2023-004","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://istio.io/latest/news/security/istio-security-2023-004"},{"reference_url":"https://istio.io/latest/news/security/istio-security-2023-004/","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://istio.io/latest/news/security/istio-security-2023-004/"},{"reference_url":"https://linkerd.io/2023/10/12/linkerd-cve-2023-44487","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://linkerd.io/2023/10/12/linkerd-cve-2023-44487"},{"reference_url":"https://linkerd.io/2023/10/12/linkerd-cve-2023-44487/","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://linkerd.io/2023/10/12/linkerd-cve-2023-44487/"},{"reference_url":"https://lists.apache.org/thread/5py8h42mxfsn8l1wy6o41xwhsjlsd87q","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://lists.apache.org/thread/5py8h42mxfsn8l1wy6o41xwhsjlsd87q"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/10/msg00020.html","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/10/msg00020.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/10/msg00023.html","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/10/msg00023.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/10/msg00024.html","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/10/msg00024.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/10/msg00045.html","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/10/msg00045.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/10/msg00047.html","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/10/msg00047.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/11/msg00001.html","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/11/msg00001.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/11/msg00012.html","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/11/msg00012.html"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2MBEPPC36UBVOZZNAXFHKLFGSLCMN5LI","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2MBEPPC36UBVOZZNAXFHKLFGSLCMN5LI"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2MBEPPC36UBVOZZNAXFHKLFGSLCMN5LI/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2MBEPPC36UBVOZZNAXFHKLFGSLCMN5LI/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3N4NJ7FR4X4FPZUGNTQAPSTVB2HB2Y4A","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3N4NJ7FR4X4FPZUGNTQAPSTVB2HB2Y4A"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3N4NJ7FR4X4FPZUGNTQAPSTVB2HB2Y4A/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3N4NJ7FR4X4FPZUGNTQAPSTVB2HB2Y4A/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BFQD3KUEMFBHPAPBGLWQC34L4OWL5HAZ","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BFQD3KUEMFBHPAPBGLWQC34L4OWL5HAZ"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BFQD3KUEMFBHPAPBGLWQC34L4OWL5HAZ/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BFQD3KUEMFBHPAPBGLWQC34L4OWL5HAZ/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CLB4TW7KALB3EEQWNWCN7OUIWWVWWCG2","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CLB4TW7KALB3EEQWNWCN7OUIWWVWWCG2"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CLB4TW7KALB3EEQWNWCN7OUIWWVWWCG2/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CLB4TW7KALB3EEQWNWCN7OUIWWVWWCG2/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/E72T67UPDRXHIDLO3OROR25YAMN4GGW5","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/E72T67UPDRXHIDLO3OROR25YAMN4GGW5"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/E72T67UPDRXHIDLO3OROR25YAMN4GGW5/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/E72T67UPDRXHIDLO3OROR25YAMN4GGW5/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FNA62Q767CFAFHBCDKYNPBMZWB7TWYVU","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FNA62Q767CFAFHBCDKYNPBMZWB7TWYVU"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FNA62Q767CFAFHBCDKYNPBMZWB7TWYVU/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FNA62Q767CFAFHBCDKYNPBMZWB7TWYVU/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HT7T2R4MQKLIF4ODV4BDLPARWFPCJ5CZ","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HT7T2R4MQKLIF4ODV4BDLPARWFPCJ5CZ"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HT7T2R4MQKLIF4ODV4BDLPARWFPCJ5CZ/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HT7T2R4MQKLIF4ODV4BDLPARWFPCJ5CZ/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JIZSEFC3YKCGABA2BZW6ZJRMDZJMB7PJ","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JIZSEFC3YKCGABA2BZW6ZJRMDZJMB7PJ"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JIZSEFC3YKCGABA2BZW6ZJRMDZJMB7PJ/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JIZSEFC3YKCGABA2BZW6ZJRMDZJMB7PJ/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JMEXY22BFG5Q64HQCM5CK2Q7KDKVV4TY","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JMEXY22BFG5Q64HQCM5CK2Q7KDKVV4TY"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JMEXY22BFG5Q64HQCM5CK2Q7KDKVV4TY/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JMEXY22BFG5Q64HQCM5CK2Q7KDKVV4TY/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KSEGD2IWKNUO3DWY4KQGUQM5BISRWHQE","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KSEGD2IWKNUO3DWY4KQGUQM5BISRWHQE"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KSEGD2IWKNUO3DWY4KQGUQM5BISRWHQE/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KSEGD2IWKNUO3DWY4KQGUQM5BISRWHQE/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LKYHSZQFDNR7RSA7LHVLLIAQMVYCUGBG","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LKYHSZQFDNR7RSA7LHVLLIAQMVYCUGBG"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LKYHSZQFDNR7RSA7LHVLLIAQMVYCUGBG/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LKYHSZQFDNR7RSA7LHVLLIAQMVYCUGBG/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LNMZJCDHGLJJLXO4OXWJMTVQRNWOC7UL","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LNMZJCDHGLJJLXO4OXWJMTVQRNWOC7UL"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LNMZJCDHGLJJLXO4OXWJMTVQRNWOC7UL/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LNMZJCDHGLJJLXO4OXWJMTVQRNWOC7UL/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VHUHTSXLXGXS7JYKBXTA3VINUPHTNGVU","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VHUHTSXLXGXS7JYKBXTA3VINUPHTNGVU"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VHUHTSXLXGXS7JYKBXTA3VINUPHTNGVU/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VHUHTSXLXGXS7JYKBXTA3VINUPHTNGVU/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VSRDIV77HNKUSM7SJC5BKE5JSHLHU2NK","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VSRDIV77HNKUSM7SJC5BKE5JSHLHU2NK"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VSRDIV77HNKUSM7SJC5BKE5JSHLHU2NK/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VSRDIV77HNKUSM7SJC5BKE5JSHLHU2NK/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WE2I52RHNNU42PX6NZ2RBUHSFFJ2LVZX","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WE2I52RHNNU42PX6NZ2RBUHSFFJ2LVZX"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WE2I52RHNNU42PX6NZ2RBUHSFFJ2LVZX/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WE2I52RHNNU42PX6NZ2RBUHSFFJ2LVZX/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WLPRQ5TWUQQXYWBJM7ECYDAIL2YVKIUH","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WLPRQ5TWUQQXYWBJM7ECYDAIL2YVKIUH"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WLPRQ5TWUQQXYWBJM7ECYDAIL2YVKIUH/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WLPRQ5TWUQQXYWBJM7ECYDAIL2YVKIUH/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X6QXN4ORIVF6XBW4WWFE7VNPVC74S45Y","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X6QXN4ORIVF6XBW4WWFE7VNPVC74S45Y"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X6QXN4ORIVF6XBW4WWFE7VNPVC74S45Y/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X6QXN4ORIVF6XBW4WWFE7VNPVC74S45Y/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XFOIBB4YFICHDM7IBOP7PWXW3FX4HLL2","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XFOIBB4YFICHDM7IBOP7PWXW3FX4HLL2"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XFOIBB4YFICHDM7IBOP7PWXW3FX4HLL2/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XFOIBB4YFICHDM7IBOP7PWXW3FX4HLL2/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZB43REMKRQR62NJEI7I5NQ4FSXNLBKRT","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZB43REMKRQR62NJEI7I5NQ4FSXNLBKRT"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZB43REMKRQR62NJEI7I5NQ4FSXNLBKRT/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZB43REMKRQR62NJEI7I5NQ4FSXNLBKRT/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZKQSIKIAT5TJ3WSLU3RDBQ35YX4GY4V3","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZKQSIKIAT5TJ3WSLU3RDBQ35YX4GY4V3"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZKQSIKIAT5TJ3WSLU3RDBQ35YX4GY4V3/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZKQSIKIAT5TJ3WSLU3RDBQ35YX4GY4V3/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZLU6U2R2IC2K64NDPNMV55AUAO65MAF4","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZLU6U2R2IC2K64NDPNMV55AUAO65MAF4"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZLU6U2R2IC2K64NDPNMV55AUAO65MAF4/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZLU6U2R2IC2K64NDPNMV55AUAO65MAF4/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2MBEPPC36UBVOZZNAXFHKLFGSLCMN5LI","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2MBEPPC36UBVOZZNAXFHKLFGSLCMN5LI"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3N4NJ7FR4X4FPZUGNTQAPSTVB2HB2Y4A","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3N4NJ7FR4X4FPZUGNTQAPSTVB2HB2Y4A"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BFQD3KUEMFBHPAPBGLWQC34L4OWL5HAZ","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BFQD3KUEMFBHPAPBGLWQC34L4OWL5HAZ"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CLB4TW7KALB3EEQWNWCN7OUIWWVWWCG2","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CLB4TW7KALB3EEQWNWCN7OUIWWVWWCG2"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/E72T67UPDRXHIDLO3OROR25YAMN4GGW5","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/E72T67UPDRXHIDLO3OROR25YAMN4GGW5"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FNA62Q767CFAFHBCDKYNPBMZWB7TWYVU","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FNA62Q767CFAFHBCDKYNPBMZWB7TWYVU"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HT7T2R4MQKLIF4ODV4BDLPARWFPCJ5CZ","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HT7T2R4MQKLIF4ODV4BDLPARWFPCJ5CZ"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JIZSEFC3YKCGABA2BZW6ZJRMDZJMB7PJ","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JIZSEFC3YKCGABA2BZW6ZJRMDZJMB7PJ"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JIZSEFC3YKCGABA2BZW6ZJRMDZJMB7PJ/","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JIZSEFC3YKCGABA2BZW6ZJRMDZJMB7PJ/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JMEXY22BFG5Q64HQCM5CK2Q7KDKVV4TY","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JMEXY22BFG5Q64HQCM5CK2Q7KDKVV4TY"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JMEXY22BFG5Q64HQCM5CK2Q7KDKVV4TY/","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JMEXY22BFG5Q64HQCM5CK2Q7KDKVV4TY/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KSEGD2IWKNUO3DWY4KQGUQM5BISRWHQE","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KSEGD2IWKNUO3DWY4KQGUQM5BISRWHQE"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LKYHSZQFDNR7RSA7LHVLLIAQMVYCUGBG","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LKYHSZQFDNR7RSA7LHVLLIAQMVYCUGBG"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LNMZJCDHGLJJLXO4OXWJMTVQRNWOC7UL","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LNMZJCDHGLJJLXO4OXWJMTVQRNWOC7UL"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VHUHTSXLXGXS7JYKBXTA3VINUPHTNGVU","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VHUHTSXLXGXS7JYKBXTA3VINUPHTNGVU"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VSRDIV77HNKUSM7SJC5BKE5JSHLHU2NK","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VSRDIV77HNKUSM7SJC5BKE5JSHLHU2NK"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WE2I52RHNNU42PX6NZ2RBUHSFFJ2LVZX","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WE2I52RHNNU42PX6NZ2RBUHSFFJ2LVZX"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WLPRQ5TWUQQXYWBJM7ECYDAIL2YVKIUH","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WLPRQ5TWUQQXYWBJM7ECYDAIL2YVKIUH"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/X6QXN4ORIVF6XBW4WWFE7VNPVC74S45Y","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/X6QXN4ORIVF6XBW4WWFE7VNPVC74S45Y"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XFOIBB4YFICHDM7IBOP7PWXW3FX4HLL2","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XFOIBB4YFICHDM7IBOP7PWXW3FX4HLL2"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZB43REMKRQR62NJEI7I5NQ4FSXNLBKRT","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZB43REMKRQR62NJEI7I5NQ4FSXNLBKRT"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZKQSIKIAT5TJ3WSLU3RDBQ35YX4GY4V3","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZKQSIKIAT5TJ3WSLU3RDBQ35YX4GY4V3"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZKQSIKIAT5TJ3WSLU3RDBQ35YX4GY4V3/","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZKQSIKIAT5TJ3WSLU3RDBQ35YX4GY4V3/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZLU6U2R2IC2K64NDPNMV55AUAO65MAF4","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZLU6U2R2IC2K64NDPNMV55AUAO65MAF4"},{"reference_url":"https://lists.w3.org/Archives/Public/ietf-http-wg/2023OctDec/0025.html","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://lists.w3.org/Archives/Public/ietf-http-wg/2023OctDec/0025.html"},{"reference_url":"https://mailman.nginx.org/pipermail/nginx-devel/2023-October/S36Q5HBXR7CAIMPLLPRSSSYR4PCMWILK.html","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://mailman.nginx.org/pipermail/nginx-devel/2023-October/S36Q5HBXR7CAIMPLLPRSSSYR4PCMWILK.html"},{"reference_url":"https://martinthomson.github.io/h2-stream-limits/draft-thomson-httpbis-h2-stream-limits.html","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://martinthomson.github.io/h2-stream-limits/draft-thomson-httpbis-h2-stream-limits.html"},{"reference_url":"https://msrc.microsoft.com/blog/2023/10/microsoft-response-to-distributed-denial-of-service-ddos-attacks-against-http/2","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://msrc.microsoft.com/blog/2023/10/microsoft-response-to-distributed-denial-of-service-ddos-attacks-against-http/2"},{"reference_url":"https://msrc.microsoft.com/blog/2023/10/microsoft-response-to-distributed-denial-of-service-ddos-attacks-against-http/2/","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://msrc.microsoft.com/blog/2023/10/microsoft-response-to-distributed-denial-of-service-ddos-attacks-against-http/2/"},{"reference_url":"https://my.f5.com/manage/s/article/K000137106","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://my.f5.com/manage/s/article/K000137106"},{"reference_url":"https://netty.io/news/2023/10/10/4-1-100-Final.html","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://netty.io/news/2023/10/10/4-1-100-Final.html"},{"reference_url":"https://news.ycombinator.com/item?id=37830987","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://news.ycombinator.com/item?id=37830987"},{"reference_url":"https://news.ycombinator.com/item?id=37830998","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://news.ycombinator.com/item?id=37830998"},{"reference_url":"https://news.ycombinator.com/item?id=37831062","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://news.ycombinator.com/item?id=37831062"},{"reference_url":"https://news.ycombinator.com/item?id=37837043","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://news.ycombinator.com/item?id=37837043"},{"reference_url":"https://openssf.org/blog/2023/10/10/http-2-rapid-reset-vulnerability-highlights-need-for-rapid-response","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://openssf.org/blog/2023/10/10/http-2-rapid-reset-vulnerability-highlights-need-for-rapid-response"},{"reference_url":"https://openssf.org/blog/2023/10/10/http-2-rapid-reset-vulnerability-highlights-need-for-rapid-response/","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://openssf.org/blog/2023/10/10/http-2-rapid-reset-vulnerability-highlights-need-for-rapid-response/"},{"reference_url":"https://seanmonstar.com/post/730794151136935936/hyper-http2-rapid-reset-unaffected","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://seanmonstar.com/post/730794151136935936/hyper-http2-rapid-reset-unaffected"},{"reference_url":"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-http2-reset-d8Kf32vZ","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-http2-reset-d8Kf32vZ"},{"reference_url":"https://security.gentoo.org/glsa/202311-09","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://security.gentoo.org/glsa/202311-09"},{"reference_url":"https://security.netapp.com/advisory/ntap-20231016-0001","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://security.netapp.com/advisory/ntap-20231016-0001"},{"reference_url":"https://security.netapp.com/advisory/ntap-20231016-0001/","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://security.netapp.com/advisory/ntap-20231016-0001/"},{"reference_url":"https://security.netapp.com/advisory/ntap-20240426-0007","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://security.netapp.com/advisory/ntap-20240426-0007"},{"reference_url":"https://security.netapp.com/advisory/ntap-20240621-0006","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://security.netapp.com/advisory/ntap-20240621-0006"},{"reference_url":"https://security.netapp.com/advisory/ntap-20240621-0007","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://security.netapp.com/advisory/ntap-20240621-0007"},{"reference_url":"https://tomcat.apache.org/security-10.html#Fixed_in_Apache_Tomcat_10.1.14","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://tomcat.apache.org/security-10.html#Fixed_in_Apache_Tomcat_10.1.14"},{"reference_url":"https://tomcat.apache.org/security-11.html#Fixed_in_Apache_Tomcat_11.0.0-M12","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://tomcat.apache.org/security-11.html#Fixed_in_Apache_Tomcat_11.0.0-M12"},{"reference_url":"https://tomcat.apache.org/security-8.html#Fixed_in_Apache_Tomcat_8.5.94","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://tomcat.apache.org/security-8.html#Fixed_in_Apache_Tomcat_8.5.94"},{"reference_url":"https://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.81","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.81"},{"reference_url":"https://www.bleepingcomputer.com/news/security/new-http-2-rapid-reset-zero-day-attack-breaks-ddos-records","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.bleepingcomputer.com/news/security/new-http-2-rapid-reset-zero-day-attack-breaks-ddos-records"},{"reference_url":"https://www.bleepingcomputer.com/news/security/new-http-2-rapid-reset-zero-day-attack-breaks-ddos-records/","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://www.bleepingcomputer.com/news/security/new-http-2-rapid-reset-zero-day-attack-breaks-ddos-records/"},{"reference_url":"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-44487","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-44487"},{"reference_url":"https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"},{"reference_url":"https://www.cve.org/CVERecord?id=CVE-2023-44487","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.cve.org/CVERecord?id=CVE-2023-44487"},{"reference_url":"https://www.darkreading.com/cloud/internet-wide-zero-day-bug-fuels-largest-ever-ddos-event","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://www.darkreading.com/cloud/internet-wide-zero-day-bug-fuels-largest-ever-ddos-event"},{"reference_url":"https://www.debian.org/security/2023/dsa-5521","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://www.debian.org/security/2023/dsa-5521"},{"reference_url":"https://www.debian.org/security/2023/dsa-5522","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://www.debian.org/security/2023/dsa-5522"},{"reference_url":"https://www.debian.org/security/2023/dsa-5540","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://www.debian.org/security/2023/dsa-5540"},{"reference_url":"https://www.debian.org/security/2023/dsa-5549","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://www.debian.org/security/2023/dsa-5549"},{"reference_url":"https://www.debian.org/security/2023/dsa-5558","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://www.debian.org/security/2023/dsa-5558"},{"reference_url":"https://www.debian.org/security/2023/dsa-5570","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://www.debian.org/security/2023/dsa-5570"},{"reference_url":"https://www.eclipse.org/lists/jetty-announce/msg00181.html","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.eclipse.org/lists/jetty-announce/msg00181.html"},{"reference_url":"https://www.haproxy.com/blog/haproxy-is-not-affected-by-the-http-2-rapid-reset-attack-cve-2023-44487","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://www.haproxy.com/blog/haproxy-is-not-affected-by-the-http-2-rapid-reset-attack-cve-2023-44487"},{"reference_url":"https://www.netlify.com/blog/netlify-successfully-mitigates-cve-2023-44487","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.netlify.com/blog/netlify-successfully-mitigates-cve-2023-44487"},{"reference_url":"https://www.netlify.com/blog/netlify-successfully-mitigates-cve-2023-44487/","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://www.netlify.com/blog/netlify-successfully-mitigates-cve-2023-44487/"},{"reference_url":"https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products"},{"reference_url":"https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/"},{"reference_url":"https://www.openwall.com/lists/oss-security/2023/10/10/6","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://www.openwall.com/lists/oss-security/2023/10/10/6"},{"reference_url":"https://www.phoronix.com/news/HTTP2-Rapid-Reset-Attack","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://www.phoronix.com/news/HTTP2-Rapid-Reset-Attack"},{"reference_url":"https://www.theregister.com/2023/10/10/http2_rapid_reset_zeroday","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.theregister.com/2023/10/10/http2_rapid_reset_zeroday"},{"reference_url":"https://www.theregister.com/2023/10/10/http2_rapid_reset_zeroday/","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://www.theregister.com/2023/10/10/http2_rapid_reset_zeroday/"},{"reference_url":"https://www.vicarius.io/vsociety/posts/rapid-reset-cve-2023-44487-dos-in-http2-understanding-the-root-cause","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.vicarius.io/vsociety/posts/rapid-reset-cve-2023-44487-dos-in-http2-understanding-the-root-cause"},{"reference_url":"http://www.openwall.com/lists/oss-security/2023/10/10/6","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"http://www.openwall.com/lists/oss-security/2023/10/10/6"},{"reference_url":"http://www.openwall.com/lists/oss-security/2023/10/10/7","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"http://www.openwall.com/lists/oss-security/2023/10/10/7"},{"reference_url":"http://www.openwall.com/lists/oss-security/2023/10/13/4","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"http://www.openwall.com/lists/oss-security/2023/10/13/4"},{"reference_url":"http://www.openwall.com/lists/oss-security/2023/10/13/9","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"http://www.openwall.com/lists/oss-security/2023/10/13/9"},{"reference_url":"http://www.openwall.com/lists/oss-security/2023/10/18/4","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"http://www.openwall.com/lists/oss-security/2023/10/18/4"},{"reference_url":"http://www.openwall.com/lists/oss-security/2023/10/18/8","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"http://www.openwall.com/lists/oss-security/2023/10/18/8"},{"reference_url":"http://www.openwall.com/lists/oss-security/2023/10/19/6","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"http://www.openwall.com/lists/oss-security/2023/10/19/6"},{"reference_url":"http://www.openwall.com/lists/oss-security/2023/10/20/8","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"http://www.openwall.com/lists/oss-security/2023/10/20/8"},{"reference_url":"http://www.openwall.com/lists/oss-security/2025/08/13/6","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://www.openwall.com/lists/oss-security/2025/08/13/6"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1053769","reference_id":"1053769","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1053769"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1053770","reference_id":"1053770","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1053770"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1053801","reference_id":"1053801","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1053801"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1054232","reference_id":"1054232","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1054232"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1054234","reference_id":"1054234","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1054234"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1056156","reference_id":"1056156","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1056156"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1074421","reference_id":"1074421","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1074421"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2MBEPPC36UBVOZZNAXFHKLFGSLCMN5LI/","reference_id":"2MBEPPC36UBVOZZNAXFHKLFGSLCMN5LI","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2MBEPPC36UBVOZZNAXFHKLFGSLCMN5LI/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3N4NJ7FR4X4FPZUGNTQAPSTVB2HB2Y4A/","reference_id":"3N4NJ7FR4X4FPZUGNTQAPSTVB2HB2Y4A","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3N4NJ7FR4X4FPZUGNTQAPSTVB2HB2Y4A/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BFQD3KUEMFBHPAPBGLWQC34L4OWL5HAZ/","reference_id":"BFQD3KUEMFBHPAPBGLWQC34L4OWL5HAZ","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BFQD3KUEMFBHPAPBGLWQC34L4OWL5HAZ/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CLB4TW7KALB3EEQWNWCN7OUIWWVWWCG2/","reference_id":"CLB4TW7KALB3EEQWNWCN7OUIWWVWWCG2","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CLB4TW7KALB3EEQWNWCN7OUIWWVWWCG2/"},{"reference_url":"https://access.redhat.com/security/cve/cve-2023-44487","reference_id":"CVE-2023-44487","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://access.redhat.com/security/cve/cve-2023-44487"},{"reference_url":"https://blog.vespa.ai/cve-2023-44487","reference_id":"CVE-2023-44487","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://blog.vespa.ai/cve-2023-44487"},{"reference_url":"https://blog.vespa.ai/cve-2023-44487/","reference_id":"CVE-2023-44487","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://blog.vespa.ai/cve-2023-44487/"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44487","reference_id":"CVE-2023-44487","reference_type":"","scores":[{"value":"Important","scoring_system":"apache_tomcat","scoring_elements":""}],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44487"},{"reference_url":"https://github.com/arkrwn/PoC/tree/main/CVE-2023-44487","reference_id":"CVE-2023-44487","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://github.com/arkrwn/PoC/tree/main/CVE-2023-44487"},{"reference_url":"https://github.com/bcdannyboy/CVE-2023-44487","reference_id":"CVE-2023-44487","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://github.com/bcdannyboy/CVE-2023-44487"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/52426.py","reference_id":"CVE-2023-44487","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/52426.py"},{"reference_url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-44487","reference_id":"CVE-2023-44487","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-44487"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2023-44487","reference_id":"CVE-2023-44487","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2023-44487"},{"reference_url":"https://security.paloaltonetworks.com/CVE-2023-44487","reference_id":"CVE-2023-44487","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://security.paloaltonetworks.com/CVE-2023-44487"},{"reference_url":"https://ubuntu.com/security/CVE-2023-44487","reference_id":"CVE-2023-44487","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://ubuntu.com/security/CVE-2023-44487"},{"reference_url":"https://blog.qualys.com/vulnerabilities-threat-research/2023/10/10/cve-2023-44487-http-2-rapid-reset-attack","reference_id":"CVE-2023-44487-HTTP-2-RAPID-RESET-ATTACK","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://blog.qualys.com/vulnerabilities-threat-research/2023/10/10/cve-2023-44487-http-2-rapid-reset-attack"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/E72T67UPDRXHIDLO3OROR25YAMN4GGW5/","reference_id":"E72T67UPDRXHIDLO3OROR25YAMN4GGW5","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/E72T67UPDRXHIDLO3OROR25YAMN4GGW5/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FNA62Q767CFAFHBCDKYNPBMZWB7TWYVU/","reference_id":"FNA62Q767CFAFHBCDKYNPBMZWB7TWYVU","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FNA62Q767CFAFHBCDKYNPBMZWB7TWYVU/"},{"reference_url":"https://github.com/h2o/h2o/security/advisories/GHSA-2m7v-gc89-fjqf","reference_id":"GHSA-2m7v-gc89-fjqf","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://github.com/h2o/h2o/security/advisories/GHSA-2m7v-gc89-fjqf"},{"reference_url":"https://github.com/advisories/GHSA-qppj-fm5r-hxr3","reference_id":"GHSA-qppj-fm5r-hxr3","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://github.com/advisories/GHSA-qppj-fm5r-hxr3"},{"reference_url":"https://github.com/apple/swift-nio-http2/security/advisories/GHSA-qppj-fm5r-hxr3","reference_id":"GHSA-qppj-fm5r-hxr3","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apple/swift-nio-http2/security/advisories/GHSA-qppj-fm5r-hxr3"},{"reference_url":"https://github.com/advisories/GHSA-vx74-f528-fxqg","reference_id":"GHSA-vx74-f528-fxqg","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://github.com/advisories/GHSA-vx74-f528-fxqg"},{"reference_url":"https://github.com/advisories/GHSA-xpw8-rcwv-8f8p","reference_id":"GHSA-xpw8-rcwv-8f8p","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://github.com/advisories/GHSA-xpw8-rcwv-8f8p"},{"reference_url":"https://github.com/netty/netty/security/advisories/GHSA-xpw8-rcwv-8f8p","reference_id":"GHSA-xpw8-rcwv-8f8p","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/netty/netty/security/advisories/GHSA-xpw8-rcwv-8f8p"},{"reference_url":"https://security.gentoo.org/glsa/202408-10","reference_id":"GLSA-202408-10","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202408-10"},{"reference_url":"https://security.gentoo.org/glsa/202412-14","reference_id":"GLSA-202412-14","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202412-14"},{"reference_url":"https://security.gentoo.org/glsa/202505-11","reference_id":"GLSA-202505-11","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202505-11"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HT7T2R4MQKLIF4ODV4BDLPARWFPCJ5CZ/","reference_id":"HT7T2R4MQKLIF4ODV4BDLPARWFPCJ5CZ","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HT7T2R4MQKLIF4ODV4BDLPARWFPCJ5CZ/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KSEGD2IWKNUO3DWY4KQGUQM5BISRWHQE/","reference_id":"KSEGD2IWKNUO3DWY4KQGUQM5BISRWHQE","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KSEGD2IWKNUO3DWY4KQGUQM5BISRWHQE/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LKYHSZQFDNR7RSA7LHVLLIAQMVYCUGBG/","reference_id":"LKYHSZQFDNR7RSA7LHVLLIAQMVYCUGBG","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LKYHSZQFDNR7RSA7LHVLLIAQMVYCUGBG/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LNMZJCDHGLJJLXO4OXWJMTVQRNWOC7UL/","reference_id":"LNMZJCDHGLJJLXO4OXWJMTVQRNWOC7UL","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LNMZJCDHGLJJLXO4OXWJMTVQRNWOC7UL/"},{"reference_url":"https://security.netapp.com/advisory/ntap-20240426-0007/","reference_id":"ntap-20240426-0007","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://security.netapp.com/advisory/ntap-20240426-0007/"},{"reference_url":"https://security.netapp.com/advisory/ntap-20240621-0006/","reference_id":"ntap-20240621-0006","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://security.netapp.com/advisory/ntap-20240621-0006/"},{"reference_url":"https://security.netapp.com/advisory/ntap-20240621-0007/","reference_id":"ntap-20240621-0007","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://security.netapp.com/advisory/ntap-20240621-0007/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5006","reference_id":"RHSA-2023:5006","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5006"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5009","reference_id":"RHSA-2023:5009","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5009"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5530","reference_id":"RHSA-2023:5530","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5530"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5541","reference_id":"RHSA-2023:5541","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5541"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5542","reference_id":"RHSA-2023:5542","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5542"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5679","reference_id":"RHSA-2023:5679","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5679"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5705","reference_id":"RHSA-2023:5705","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5705"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5706","reference_id":"RHSA-2023:5706","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5706"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5707","reference_id":"RHSA-2023:5707","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5707"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5708","reference_id":"RHSA-2023:5708","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5708"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5709","reference_id":"RHSA-2023:5709","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5709"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5710","reference_id":"RHSA-2023:5710","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5710"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5711","reference_id":"RHSA-2023:5711","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5711"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5712","reference_id":"RHSA-2023:5712","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5712"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5713","reference_id":"RHSA-2023:5713","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5713"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5714","reference_id":"RHSA-2023:5714","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5714"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5715","reference_id":"RHSA-2023:5715","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5715"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5716","reference_id":"RHSA-2023:5716","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5716"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5717","reference_id":"RHSA-2023:5717","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5717"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5719","reference_id":"RHSA-2023:5719","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5719"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5720","reference_id":"RHSA-2023:5720","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5720"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5721","reference_id":"RHSA-2023:5721","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5721"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5724","reference_id":"RHSA-2023:5724","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5724"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5738","reference_id":"RHSA-2023:5738","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5738"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5749","reference_id":"RHSA-2023:5749","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5749"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5764","reference_id":"RHSA-2023:5764","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5764"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5765","reference_id":"RHSA-2023:5765","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5765"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5766","reference_id":"RHSA-2023:5766","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5766"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5767","reference_id":"RHSA-2023:5767","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5767"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5768","reference_id":"RHSA-2023:5768","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5768"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5769","reference_id":"RHSA-2023:5769","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5769"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5770","reference_id":"RHSA-2023:5770","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5770"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5780","reference_id":"RHSA-2023:5780","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5780"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5783","reference_id":"RHSA-2023:5783","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5783"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5784","reference_id":"RHSA-2023:5784","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5784"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5801","reference_id":"RHSA-2023:5801","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5801"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5802","reference_id":"RHSA-2023:5802","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5802"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5803","reference_id":"RHSA-2023:5803","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5803"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5805","reference_id":"RHSA-2023:5805","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5805"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5835","reference_id":"RHSA-2023:5835","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5835"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5837","reference_id":"RHSA-2023:5837","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5837"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5838","reference_id":"RHSA-2023:5838","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5838"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5840","reference_id":"RHSA-2023:5840","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5840"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5841","reference_id":"RHSA-2023:5841","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5841"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5849","reference_id":"RHSA-2023:5849","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5849"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5850","reference_id":"RHSA-2023:5850","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5850"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5851","reference_id":"RHSA-2023:5851","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5851"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5863","reference_id":"RHSA-2023:5863","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5863"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5864","reference_id":"RHSA-2023:5864","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5864"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5865","reference_id":"RHSA-2023:5865","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5865"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5866","reference_id":"RHSA-2023:5866","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5866"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5867","reference_id":"RHSA-2023:5867","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5867"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5869","reference_id":"RHSA-2023:5869","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5869"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5896","reference_id":"RHSA-2023:5896","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5896"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5902","reference_id":"RHSA-2023:5902","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5902"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5920","reference_id":"RHSA-2023:5920","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5920"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5922","reference_id":"RHSA-2023:5922","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5922"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5924","reference_id":"RHSA-2023:5924","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5924"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5928","reference_id":"RHSA-2023:5928","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5928"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5929","reference_id":"RHSA-2023:5929","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5929"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5930","reference_id":"RHSA-2023:5930","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5930"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5931","reference_id":"RHSA-2023:5931","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5931"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5933","reference_id":"RHSA-2023:5933","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5933"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5935","reference_id":"RHSA-2023:5935","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5935"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5945","reference_id":"RHSA-2023:5945","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5945"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5946","reference_id":"RHSA-2023:5946","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5946"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5947","reference_id":"RHSA-2023:5947","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5947"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5956","reference_id":"RHSA-2023:5956","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5956"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5964","reference_id":"RHSA-2023:5964","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5964"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5965","reference_id":"RHSA-2023:5965","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5965"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5967","reference_id":"RHSA-2023:5967","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5967"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5969","reference_id":"RHSA-2023:5969","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5969"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5970","reference_id":"RHSA-2023:5970","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5970"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5971","reference_id":"RHSA-2023:5971","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5971"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5973","reference_id":"RHSA-2023:5973","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5973"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5974","reference_id":"RHSA-2023:5974","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5974"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5976","reference_id":"RHSA-2023:5976","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5976"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5978","reference_id":"RHSA-2023:5978","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5978"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5979","reference_id":"RHSA-2023:5979","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5979"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5980","reference_id":"RHSA-2023:5980","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5980"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5982","reference_id":"RHSA-2023:5982","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5982"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5989","reference_id":"RHSA-2023:5989","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5989"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6020","reference_id":"RHSA-2023:6020","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6020"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6021","reference_id":"RHSA-2023:6021","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6021"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6022","reference_id":"RHSA-2023:6022","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6022"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6023","reference_id":"RHSA-2023:6023","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6023"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6030","reference_id":"RHSA-2023:6030","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6030"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6031","reference_id":"RHSA-2023:6031","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6031"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6039","reference_id":"RHSA-2023:6039","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6039"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6040","reference_id":"RHSA-2023:6040","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6040"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6041","reference_id":"RHSA-2023:6041","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6041"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6042","reference_id":"RHSA-2023:6042","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6042"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6048","reference_id":"RHSA-2023:6048","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6048"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6057","reference_id":"RHSA-2023:6057","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6057"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6059","reference_id":"RHSA-2023:6059","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6059"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6061","reference_id":"RHSA-2023:6061","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6061"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6077","reference_id":"RHSA-2023:6077","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6077"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6079","reference_id":"RHSA-2023:6079","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6079"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6080","reference_id":"RHSA-2023:6080","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6080"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6084","reference_id":"RHSA-2023:6084","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6084"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6105","reference_id":"RHSA-2023:6105","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6105"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6106","reference_id":"RHSA-2023:6106","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6106"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6114","reference_id":"RHSA-2023:6114","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6114"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6115","reference_id":"RHSA-2023:6115","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6115"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6117","reference_id":"RHSA-2023:6117","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6117"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6118","reference_id":"RHSA-2023:6118","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6118"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6120","reference_id":"RHSA-2023:6120","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6120"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6129","reference_id":"RHSA-2023:6129","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6129"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6137","reference_id":"RHSA-2023:6137","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6137"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6144","reference_id":"RHSA-2023:6144","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6144"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6154","reference_id":"RHSA-2023:6154","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6154"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6161","reference_id":"RHSA-2023:6161","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6161"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6165","reference_id":"RHSA-2023:6165","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6165"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6179","reference_id":"RHSA-2023:6179","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6179"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6217","reference_id":"RHSA-2023:6217","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6217"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6233","reference_id":"RHSA-2023:6233","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6233"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6235","reference_id":"RHSA-2023:6235","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6235"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6239","reference_id":"RHSA-2023:6239","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6239"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6248","reference_id":"RHSA-2023:6248","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6248"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6251","reference_id":"RHSA-2023:6251","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6251"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6269","reference_id":"RHSA-2023:6269","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6269"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6272","reference_id":"RHSA-2023:6272","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6272"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6280","reference_id":"RHSA-2023:6280","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6280"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6286","reference_id":"RHSA-2023:6286","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6286"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6296","reference_id":"RHSA-2023:6296","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6296"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6298","reference_id":"RHSA-2023:6298","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6298"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6305","reference_id":"RHSA-2023:6305","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6305"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6746","reference_id":"RHSA-2023:6746","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6746"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6779","reference_id":"RHSA-2023:6779","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6779"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6781","reference_id":"RHSA-2023:6781","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6781"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6782","reference_id":"RHSA-2023:6782","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6782"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6783","reference_id":"RHSA-2023:6783","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6783"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6784","reference_id":"RHSA-2023:6784","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6784"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6785","reference_id":"RHSA-2023:6785","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6785"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6786","reference_id":"RHSA-2023:6786","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6786"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6787","reference_id":"RHSA-2023:6787","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6787"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6788","reference_id":"RHSA-2023:6788","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6788"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6817","reference_id":"RHSA-2023:6817","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6817"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6818","reference_id":"RHSA-2023:6818","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6818"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6832","reference_id":"RHSA-2023:6832","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6832"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6836","reference_id":"RHSA-2023:6836","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6836"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6837","reference_id":"RHSA-2023:6837","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6837"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6839","reference_id":"RHSA-2023:6839","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6839"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6840","reference_id":"RHSA-2023:6840","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6840"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:7198","reference_id":"RHSA-2023:7198","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:7198"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:7205","reference_id":"RHSA-2023:7205","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:7205"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:7215","reference_id":"RHSA-2023:7215","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:7215"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:7218","reference_id":"RHSA-2023:7218","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:7218"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:7247","reference_id":"RHSA-2023:7247","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:7247"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:7288","reference_id":"RHSA-2023:7288","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:7288"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:7315","reference_id":"RHSA-2023:7315","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:7315"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:7325","reference_id":"RHSA-2023:7325","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:7325"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:7334","reference_id":"RHSA-2023:7334","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:7334"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:7335","reference_id":"RHSA-2023:7335","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:7335"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:7344","reference_id":"RHSA-2023:7344","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:7344"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:7345","reference_id":"RHSA-2023:7345","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:7345"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:7481","reference_id":"RHSA-2023:7481","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:7481"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:7482","reference_id":"RHSA-2023:7482","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:7482"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:7483","reference_id":"RHSA-2023:7483","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:7483"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:7484","reference_id":"RHSA-2023:7484","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:7484"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:7486","reference_id":"RHSA-2023:7486","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:7486"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:7488","reference_id":"RHSA-2023:7488","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:7488"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:7521","reference_id":"RHSA-2023:7521","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:7521"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:7522","reference_id":"RHSA-2023:7522","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:7522"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:7555","reference_id":"RHSA-2023:7555","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:7555"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:7587","reference_id":"RHSA-2023:7587","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:7587"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:7610","reference_id":"RHSA-2023:7610","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:7610"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:7653","reference_id":"RHSA-2023:7653","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:7653"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:7682","reference_id":"RHSA-2023:7682","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:7682"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:7687","reference_id":"RHSA-2023:7687","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:7687"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:7699","reference_id":"RHSA-2023:7699","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:7699"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:7703","reference_id":"RHSA-2023:7703","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:7703"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:7704","reference_id":"RHSA-2023:7704","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:7704"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:7741","reference_id":"RHSA-2023:7741","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:7741"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0269","reference_id":"RHSA-2024:0269","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0269"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0302","reference_id":"RHSA-2024:0302","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0302"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0777","reference_id":"RHSA-2024:0777","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0777"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:1444","reference_id":"RHSA-2024:1444","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:1444"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:1770","reference_id":"RHSA-2024:1770","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:1770"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2633","reference_id":"RHSA-2024:2633","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:2633"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4631","reference_id":"RHSA-2024:4631","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4631"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:16668","reference_id":"RHSA-2025:16668","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:16668"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:23528","reference_id":"RHSA-2025:23528","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:23528"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:23529","reference_id":"RHSA-2025:23529","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:23529"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:0722","reference_id":"RHSA-2026:0722","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:0722"},{"reference_url":"https://usn.ubuntu.com/6427-1/","reference_id":"USN-6427-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6427-1/"},{"reference_url":"https://usn.ubuntu.com/6427-2/","reference_id":"USN-6427-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6427-2/"},{"reference_url":"https://usn.ubuntu.com/6438-1/","reference_id":"USN-6438-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6438-1/"},{"reference_url":"https://usn.ubuntu.com/6505-1/","reference_id":"USN-6505-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6505-1/"},{"reference_url":"https://usn.ubuntu.com/6574-1/","reference_id":"USN-6574-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6574-1/"},{"reference_url":"https://usn.ubuntu.com/6754-1/","reference_id":"USN-6754-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6754-1/"},{"reference_url":"https://usn.ubuntu.com/6994-1/","reference_id":"USN-6994-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6994-1/"},{"reference_url":"https://usn.ubuntu.com/7067-1/","reference_id":"USN-7067-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7067-1/"},{"reference_url":"https://usn.ubuntu.com/7410-1/","reference_id":"USN-7410-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7410-1/"},{"reference_url":"https://usn.ubuntu.com/7469-1/","reference_id":"USN-7469-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7469-1/"},{"reference_url":"https://usn.ubuntu.com/7469-2/","reference_id":"USN-7469-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7469-2/"},{"reference_url":"https://usn.ubuntu.com/7469-3/","reference_id":"USN-7469-3","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7469-3/"},{"reference_url":"https://usn.ubuntu.com/7469-4/","reference_id":"USN-7469-4","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7469-4/"},{"reference_url":"https://usn.ubuntu.com/7892-1/","reference_id":"USN-7892-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7892-1/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VHUHTSXLXGXS7JYKBXTA3VINUPHTNGVU/","reference_id":"VHUHTSXLXGXS7JYKBXTA3VINUPHTNGVU","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VHUHTSXLXGXS7JYKBXTA3VINUPHTNGVU/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VSRDIV77HNKUSM7SJC5BKE5JSHLHU2NK/","reference_id":"VSRDIV77HNKUSM7SJC5BKE5JSHLHU2NK","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VSRDIV77HNKUSM7SJC5BKE5JSHLHU2NK/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WE2I52RHNNU42PX6NZ2RBUHSFFJ2LVZX/","reference_id":"WE2I52RHNNU42PX6NZ2RBUHSFFJ2LVZX","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WE2I52RHNNU42PX6NZ2RBUHSFFJ2LVZX/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WLPRQ5TWUQQXYWBJM7ECYDAIL2YVKIUH/","reference_id":"WLPRQ5TWUQQXYWBJM7ECYDAIL2YVKIUH","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WLPRQ5TWUQQXYWBJM7ECYDAIL2YVKIUH/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/X6QXN4ORIVF6XBW4WWFE7VNPVC74S45Y/","reference_id":"X6QXN4ORIVF6XBW4WWFE7VNPVC74S45Y","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/X6QXN4ORIVF6XBW4WWFE7VNPVC74S45Y/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XFOIBB4YFICHDM7IBOP7PWXW3FX4HLL2/","reference_id":"XFOIBB4YFICHDM7IBOP7PWXW3FX4HLL2","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XFOIBB4YFICHDM7IBOP7PWXW3FX4HLL2/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZB43REMKRQR62NJEI7I5NQ4FSXNLBKRT/","reference_id":"ZB43REMKRQR62NJEI7I5NQ4FSXNLBKRT","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZB43REMKRQR62NJEI7I5NQ4FSXNLBKRT/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZLU6U2R2IC2K64NDPNMV55AUAO65MAF4/","reference_id":"ZLU6U2R2IC2K64NDPNMV55AUAO65MAF4","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-23T20:34:21Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZLU6U2R2IC2K64NDPNMV55AUAO65MAF4/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/195982?format=json","purl":"pkg:deb/debian/trafficserver@8.1.10%2Bds-1~deb11u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-7cx9-r4vs-jycb"},{"vulnerability":"VCID-9and-qdyn-ryh8"},{"vulnerability":"VCID-g4ca-xg28-j7a3"},{"vulnerability":"VCID-pamq-mbf9-5yd5"},{"vulnerability":"VCID-pswv-yvhe-9ubs"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qjzn-d1sw-13gk"},{"vulnerability":"VCID-rtzu-8w8v-wbhj"},{"vulnerability":"VCID-sq5z-yfbm-cffs"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-w96r-ryuy-bbca"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.1.10%252Bds-1~deb11u1"}],"aliases":["CVE-2023-44487","GHSA-2m7v-gc89-fjqf","GHSA-qppj-fm5r-hxr3","GHSA-vx74-f528-fxqg","GHSA-xpw8-rcwv-8f8p","GMS-2023-3377","VSV00013"],"risk_score":10.0,"exploitability":"2.0","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-y4a2-mamb-yqg6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103174?format=json","vulnerability_id":"VCID-y7sh-qr3t-ebf5","summary":"Apache Traffic Server forwards malformed HTTP chunked trailer section to origin servers. This can be utilized for request smuggling and may also lead cache poisoning if the origin servers are vulnerable.  This issue affects Apache Traffic Server: from 8.0.0 through 8.1.10, from 9.0.0 through 9.2.4.  Users can set a new setting (proxy.config.http.drop_chunked_trailers) not to forward chunked trailer section. Users are recommended to upgrade to version 8.1.11 or 9.2.5, which fixes the issue.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-35161","reference_id":"","reference_type":"","scores":[{"value":"0.00453","scoring_system":"epss","scoring_elements":"0.64139","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00453","scoring_system":"epss","scoring_elements":"0.64117","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00453","scoring_system":"epss","scoring_elements":"0.64137","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00453","scoring_system":"epss","scoring_elements":"0.6413","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00453","scoring_system":"epss","scoring_elements":"0.64128","published_at":"2026-06-07T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-35161"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-35161","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-35161"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1077141","reference_id":"1077141","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1077141"},{"reference_url":"https://lists.apache.org/thread/c4mcmpblgl8kkmyt56t23543gp8v56m0","reference_id":"c4mcmpblgl8kkmyt56t23543gp8v56m0","reference_type":"","scores":[{"value":"9.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-07-31T17:38:35Z/"}],"url":"https://lists.apache.org/thread/c4mcmpblgl8kkmyt56t23543gp8v56m0"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/195983?format=json","purl":"pkg:deb/debian/trafficserver@9.2.5%2Bds-0%2Bdeb12u4","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@9.2.5%252Bds-0%252Bdeb12u4"}],"aliases":["CVE-2024-35161"],"risk_score":4.1,"exploitability":"0.5","weighted_severity":"8.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-y7sh-qr3t-ebf5"}],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103113?format=json","vulnerability_id":"VCID-57s3-62jv-hygu","summary":"Unspecified vulnerability in the HTTP/2 experimental feature in Apache Traffic Server 5.3.x before 5.3.2 has unknown impact and attack vectors, a different vulnerability than CVE-2015-5206.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2015-5168","reference_id":"","reference_type":"","scores":[{"value":"0.01885","scoring_system":"epss","scoring_elements":"0.83513","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01885","scoring_system":"epss","scoring_elements":"0.83537","published_at":"2026-06-05T12:55:00Z"},{"value":"0.01885","scoring_system":"epss","scoring_elements":"0.83539","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01885","scoring_system":"epss","scoring_elements":"0.83535","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01885","scoring_system":"epss","scoring_elements":"0.83527","published_at":"2026-06-08T12:55:00Z"},{"value":"0.01885","scoring_system":"epss","scoring_elements":"0.83541","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2015-5168"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5168","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5168"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515648?format=json","purl":"pkg:deb/debian/trafficserver@6.2.0-1~bpo8%2B1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-2kvz-wm9u-53bd"},{"vulnerability":"VCID-31ru-728d-7qhd"},{"vulnerability":"VCID-3kze-pbbq-63gp"},{"vulnerability":"VCID-4798-eshg-87d3"},{"vulnerability":"VCID-4juv-ezjh-xqb1"},{"vulnerability":"VCID-4vhy-r29x-bqhu"},{"vulnerability":"VCID-4z9e-2ugc-vqav"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-6u62-a3sj-efcw"},{"vulnerability":"VCID-7jmj-2mx5-pkea"},{"vulnerability":"VCID-7qfd-bk4h-j3aa"},{"vulnerability":"VCID-7wgn-m25j-w7h2"},{"vulnerability":"VCID-8c9g-167m-j3a3"},{"vulnerability":"VCID-8zcx-gcse-ukhp"},{"vulnerability":"VCID-abq3-a6yx-e7bq"},{"vulnerability":"VCID-ahw3-7k2k-9ka4"},{"vulnerability":"VCID-akpu-abr9-hqbz"},{"vulnerability":"VCID-anzk-2p8a-qkdx"},{"vulnerability":"VCID-b9rr-1n16-6bdd"},{"vulnerability":"VCID-brew-av11-bydd"},{"vulnerability":"VCID-d9vg-ugpq-bkde"},{"vulnerability":"VCID-ehgb-691x-8yf8"},{"vulnerability":"VCID-eujd-mjmg-kua3"},{"vulnerability":"VCID-f8tu-csm2-9ka4"},{"vulnerability":"VCID-gm5j-mkze-8qgn"},{"vulnerability":"VCID-gq8w-7xep-77gz"},{"vulnerability":"VCID-h7f1-f91u-mqf2"},{"vulnerability":"VCID-hzuw-nvff-fuav"},{"vulnerability":"VCID-j1zx-9f8z-cugc"},{"vulnerability":"VCID-kkpu-zyz5-z7b8"},{"vulnerability":"VCID-n279-7wxk-nydv"},{"vulnerability":"VCID-n8h3-vshe-fybw"},{"vulnerability":"VCID-n9ge-6p95-qyg6"},{"vulnerability":"VCID-ne7c-7vzh-qkhk"},{"vulnerability":"VCID-puv1-q4kq-sucs"},{"vulnerability":"VCID-pvgd-s1fu-mkc4"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qsg5-eqde-eyee"},{"vulnerability":"VCID-rsvc-b3bb-dudb"},{"vulnerability":"VCID-ry1q-c5e8-tba4"},{"vulnerability":"VCID-rzba-hj3c-w7d2"},{"vulnerability":"VCID-s9jy-8vcq-83ch"},{"vulnerability":"VCID-shyq-gyyp-ebav"},{"vulnerability":"VCID-t1qc-t43k-8ug4"},{"vulnerability":"VCID-u2dm-zzmm-yugj"},{"vulnerability":"VCID-utfa-6f4f-pfct"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-wk1w-jhc1-6qe6"},{"vulnerability":"VCID-x4cj-g8hm-gfd9"},{"vulnerability":"VCID-xdek-jm8r-ryfh"},{"vulnerability":"VCID-xtkv-k4js-yfdm"},{"vulnerability":"VCID-y4a2-mamb-yqg6"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@6.2.0-1~bpo8%252B1"}],"aliases":["CVE-2015-5168"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-57s3-62jv-hygu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103114?format=json","vulnerability_id":"VCID-67ms-71pe-t3cn","summary":"Unspecified vulnerability in the HTTP/2 experimental feature in Apache Traffic Server before 5.3.x before 5.3.2 has unknown impact and attack vectors, a different vulnerability than CVE-2015-5168.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2015-5206","reference_id":"","reference_type":"","scores":[{"value":"0.01903","scoring_system":"epss","scoring_elements":"0.83586","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01903","scoring_system":"epss","scoring_elements":"0.83611","published_at":"2026-06-05T12:55:00Z"},{"value":"0.01903","scoring_system":"epss","scoring_elements":"0.83612","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01903","scoring_system":"epss","scoring_elements":"0.83608","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01903","scoring_system":"epss","scoring_elements":"0.836","published_at":"2026-06-08T12:55:00Z"},{"value":"0.01903","scoring_system":"epss","scoring_elements":"0.83614","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2015-5206"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5206","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5206"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515648?format=json","purl":"pkg:deb/debian/trafficserver@6.2.0-1~bpo8%2B1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-2kvz-wm9u-53bd"},{"vulnerability":"VCID-31ru-728d-7qhd"},{"vulnerability":"VCID-3kze-pbbq-63gp"},{"vulnerability":"VCID-4798-eshg-87d3"},{"vulnerability":"VCID-4juv-ezjh-xqb1"},{"vulnerability":"VCID-4vhy-r29x-bqhu"},{"vulnerability":"VCID-4z9e-2ugc-vqav"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-6u62-a3sj-efcw"},{"vulnerability":"VCID-7jmj-2mx5-pkea"},{"vulnerability":"VCID-7qfd-bk4h-j3aa"},{"vulnerability":"VCID-7wgn-m25j-w7h2"},{"vulnerability":"VCID-8c9g-167m-j3a3"},{"vulnerability":"VCID-8zcx-gcse-ukhp"},{"vulnerability":"VCID-abq3-a6yx-e7bq"},{"vulnerability":"VCID-ahw3-7k2k-9ka4"},{"vulnerability":"VCID-akpu-abr9-hqbz"},{"vulnerability":"VCID-anzk-2p8a-qkdx"},{"vulnerability":"VCID-b9rr-1n16-6bdd"},{"vulnerability":"VCID-brew-av11-bydd"},{"vulnerability":"VCID-d9vg-ugpq-bkde"},{"vulnerability":"VCID-ehgb-691x-8yf8"},{"vulnerability":"VCID-eujd-mjmg-kua3"},{"vulnerability":"VCID-f8tu-csm2-9ka4"},{"vulnerability":"VCID-gm5j-mkze-8qgn"},{"vulnerability":"VCID-gq8w-7xep-77gz"},{"vulnerability":"VCID-h7f1-f91u-mqf2"},{"vulnerability":"VCID-hzuw-nvff-fuav"},{"vulnerability":"VCID-j1zx-9f8z-cugc"},{"vulnerability":"VCID-kkpu-zyz5-z7b8"},{"vulnerability":"VCID-n279-7wxk-nydv"},{"vulnerability":"VCID-n8h3-vshe-fybw"},{"vulnerability":"VCID-n9ge-6p95-qyg6"},{"vulnerability":"VCID-ne7c-7vzh-qkhk"},{"vulnerability":"VCID-puv1-q4kq-sucs"},{"vulnerability":"VCID-pvgd-s1fu-mkc4"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qsg5-eqde-eyee"},{"vulnerability":"VCID-rsvc-b3bb-dudb"},{"vulnerability":"VCID-ry1q-c5e8-tba4"},{"vulnerability":"VCID-rzba-hj3c-w7d2"},{"vulnerability":"VCID-s9jy-8vcq-83ch"},{"vulnerability":"VCID-shyq-gyyp-ebav"},{"vulnerability":"VCID-t1qc-t43k-8ug4"},{"vulnerability":"VCID-u2dm-zzmm-yugj"},{"vulnerability":"VCID-utfa-6f4f-pfct"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-wk1w-jhc1-6qe6"},{"vulnerability":"VCID-x4cj-g8hm-gfd9"},{"vulnerability":"VCID-xdek-jm8r-ryfh"},{"vulnerability":"VCID-xtkv-k4js-yfdm"},{"vulnerability":"VCID-y4a2-mamb-yqg6"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@6.2.0-1~bpo8%252B1"}],"aliases":["CVE-2015-5206"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-67ms-71pe-t3cn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103108?format=json","vulnerability_id":"VCID-7ufx-nrgf-tufd","summary":"Unspecified vulnerability in Apache Traffic Server 3.x through 3.2.5, 4.x before 4.2.1.1, and 5.x before 5.0.1 has unknown impact and attack vectors, possibly related to health checks.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-3525","reference_id":"","reference_type":"","scores":[{"value":"0.0127","scoring_system":"epss","scoring_elements":"0.79828","published_at":"2026-06-04T12:55:00Z"},{"value":"0.0127","scoring_system":"epss","scoring_elements":"0.79853","published_at":"2026-06-05T12:55:00Z"},{"value":"0.0127","scoring_system":"epss","scoring_elements":"0.79858","published_at":"2026-06-06T12:55:00Z"},{"value":"0.0127","scoring_system":"epss","scoring_elements":"0.79854","published_at":"2026-06-07T12:55:00Z"},{"value":"0.0127","scoring_system":"epss","scoring_elements":"0.79843","published_at":"2026-06-08T12:55:00Z"},{"value":"0.0127","scoring_system":"epss","scoring_elements":"0.79862","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-3525"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3525","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3525"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515648?format=json","purl":"pkg:deb/debian/trafficserver@6.2.0-1~bpo8%2B1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-2kvz-wm9u-53bd"},{"vulnerability":"VCID-31ru-728d-7qhd"},{"vulnerability":"VCID-3kze-pbbq-63gp"},{"vulnerability":"VCID-4798-eshg-87d3"},{"vulnerability":"VCID-4juv-ezjh-xqb1"},{"vulnerability":"VCID-4vhy-r29x-bqhu"},{"vulnerability":"VCID-4z9e-2ugc-vqav"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-6u62-a3sj-efcw"},{"vulnerability":"VCID-7jmj-2mx5-pkea"},{"vulnerability":"VCID-7qfd-bk4h-j3aa"},{"vulnerability":"VCID-7wgn-m25j-w7h2"},{"vulnerability":"VCID-8c9g-167m-j3a3"},{"vulnerability":"VCID-8zcx-gcse-ukhp"},{"vulnerability":"VCID-abq3-a6yx-e7bq"},{"vulnerability":"VCID-ahw3-7k2k-9ka4"},{"vulnerability":"VCID-akpu-abr9-hqbz"},{"vulnerability":"VCID-anzk-2p8a-qkdx"},{"vulnerability":"VCID-b9rr-1n16-6bdd"},{"vulnerability":"VCID-brew-av11-bydd"},{"vulnerability":"VCID-d9vg-ugpq-bkde"},{"vulnerability":"VCID-ehgb-691x-8yf8"},{"vulnerability":"VCID-eujd-mjmg-kua3"},{"vulnerability":"VCID-f8tu-csm2-9ka4"},{"vulnerability":"VCID-gm5j-mkze-8qgn"},{"vulnerability":"VCID-gq8w-7xep-77gz"},{"vulnerability":"VCID-h7f1-f91u-mqf2"},{"vulnerability":"VCID-hzuw-nvff-fuav"},{"vulnerability":"VCID-j1zx-9f8z-cugc"},{"vulnerability":"VCID-kkpu-zyz5-z7b8"},{"vulnerability":"VCID-n279-7wxk-nydv"},{"vulnerability":"VCID-n8h3-vshe-fybw"},{"vulnerability":"VCID-n9ge-6p95-qyg6"},{"vulnerability":"VCID-ne7c-7vzh-qkhk"},{"vulnerability":"VCID-puv1-q4kq-sucs"},{"vulnerability":"VCID-pvgd-s1fu-mkc4"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qsg5-eqde-eyee"},{"vulnerability":"VCID-rsvc-b3bb-dudb"},{"vulnerability":"VCID-ry1q-c5e8-tba4"},{"vulnerability":"VCID-rzba-hj3c-w7d2"},{"vulnerability":"VCID-s9jy-8vcq-83ch"},{"vulnerability":"VCID-shyq-gyyp-ebav"},{"vulnerability":"VCID-t1qc-t43k-8ug4"},{"vulnerability":"VCID-u2dm-zzmm-yugj"},{"vulnerability":"VCID-utfa-6f4f-pfct"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-wk1w-jhc1-6qe6"},{"vulnerability":"VCID-x4cj-g8hm-gfd9"},{"vulnerability":"VCID-xdek-jm8r-ryfh"},{"vulnerability":"VCID-xtkv-k4js-yfdm"},{"vulnerability":"VCID-y4a2-mamb-yqg6"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@6.2.0-1~bpo8%252B1"}],"aliases":["CVE-2014-3525"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7ufx-nrgf-tufd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103111?format=json","vulnerability_id":"VCID-htz1-fube-6qcs","summary":"The HTTP/2 experimental feature in Apache Traffic Server 5.3.x before 5.3.1 allows remote attackers to cause a denial of service (out-of-bounds access and daemon crash) or possibly execute arbitrary code via vectors related to the (1) frame_handlers array or (2) set_dynamic_table_size function.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2015-3249","reference_id":"","reference_type":"","scores":[{"value":"0.04233","scoring_system":"epss","scoring_elements":"0.88961","published_at":"2026-06-04T12:55:00Z"},{"value":"0.04233","scoring_system":"epss","scoring_elements":"0.88978","published_at":"2026-06-08T12:55:00Z"},{"value":"0.04233","scoring_system":"epss","scoring_elements":"0.88979","published_at":"2026-06-06T12:55:00Z"},{"value":"0.04233","scoring_system":"epss","scoring_elements":"0.88994","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2015-3249"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3249","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3249"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515648?format=json","purl":"pkg:deb/debian/trafficserver@6.2.0-1~bpo8%2B1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-2kvz-wm9u-53bd"},{"vulnerability":"VCID-31ru-728d-7qhd"},{"vulnerability":"VCID-3kze-pbbq-63gp"},{"vulnerability":"VCID-4798-eshg-87d3"},{"vulnerability":"VCID-4juv-ezjh-xqb1"},{"vulnerability":"VCID-4vhy-r29x-bqhu"},{"vulnerability":"VCID-4z9e-2ugc-vqav"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-6u62-a3sj-efcw"},{"vulnerability":"VCID-7jmj-2mx5-pkea"},{"vulnerability":"VCID-7qfd-bk4h-j3aa"},{"vulnerability":"VCID-7wgn-m25j-w7h2"},{"vulnerability":"VCID-8c9g-167m-j3a3"},{"vulnerability":"VCID-8zcx-gcse-ukhp"},{"vulnerability":"VCID-abq3-a6yx-e7bq"},{"vulnerability":"VCID-ahw3-7k2k-9ka4"},{"vulnerability":"VCID-akpu-abr9-hqbz"},{"vulnerability":"VCID-anzk-2p8a-qkdx"},{"vulnerability":"VCID-b9rr-1n16-6bdd"},{"vulnerability":"VCID-brew-av11-bydd"},{"vulnerability":"VCID-d9vg-ugpq-bkde"},{"vulnerability":"VCID-ehgb-691x-8yf8"},{"vulnerability":"VCID-eujd-mjmg-kua3"},{"vulnerability":"VCID-f8tu-csm2-9ka4"},{"vulnerability":"VCID-gm5j-mkze-8qgn"},{"vulnerability":"VCID-gq8w-7xep-77gz"},{"vulnerability":"VCID-h7f1-f91u-mqf2"},{"vulnerability":"VCID-hzuw-nvff-fuav"},{"vulnerability":"VCID-j1zx-9f8z-cugc"},{"vulnerability":"VCID-kkpu-zyz5-z7b8"},{"vulnerability":"VCID-n279-7wxk-nydv"},{"vulnerability":"VCID-n8h3-vshe-fybw"},{"vulnerability":"VCID-n9ge-6p95-qyg6"},{"vulnerability":"VCID-ne7c-7vzh-qkhk"},{"vulnerability":"VCID-puv1-q4kq-sucs"},{"vulnerability":"VCID-pvgd-s1fu-mkc4"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qsg5-eqde-eyee"},{"vulnerability":"VCID-rsvc-b3bb-dudb"},{"vulnerability":"VCID-ry1q-c5e8-tba4"},{"vulnerability":"VCID-rzba-hj3c-w7d2"},{"vulnerability":"VCID-s9jy-8vcq-83ch"},{"vulnerability":"VCID-shyq-gyyp-ebav"},{"vulnerability":"VCID-t1qc-t43k-8ug4"},{"vulnerability":"VCID-u2dm-zzmm-yugj"},{"vulnerability":"VCID-utfa-6f4f-pfct"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-wk1w-jhc1-6qe6"},{"vulnerability":"VCID-x4cj-g8hm-gfd9"},{"vulnerability":"VCID-xdek-jm8r-ryfh"},{"vulnerability":"VCID-xtkv-k4js-yfdm"},{"vulnerability":"VCID-y4a2-mamb-yqg6"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@6.2.0-1~bpo8%252B1"}],"aliases":["CVE-2015-3249"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-htz1-fube-6qcs"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103106?format=json","vulnerability_id":"VCID-pp8v-fjet-uyeh","summary":"Apache Traffic Server before 5.1.2 allows remote attackers to cause a denial of service via unspecified vectors, related to internal buffer sizing.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-10022","reference_id":"","reference_type":"","scores":[{"value":"0.02709","scoring_system":"epss","scoring_elements":"0.86181","published_at":"2026-06-04T12:55:00Z"},{"value":"0.02709","scoring_system":"epss","scoring_elements":"0.86202","published_at":"2026-06-09T12:55:00Z"},{"value":"0.02709","scoring_system":"epss","scoring_elements":"0.86205","published_at":"2026-06-06T12:55:00Z"},{"value":"0.02709","scoring_system":"epss","scoring_elements":"0.862","published_at":"2026-06-07T12:55:00Z"},{"value":"0.02709","scoring_system":"epss","scoring_elements":"0.86188","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-10022"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-10022","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-10022"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=778895","reference_id":"778895","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=778895"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515648?format=json","purl":"pkg:deb/debian/trafficserver@6.2.0-1~bpo8%2B1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-2kvz-wm9u-53bd"},{"vulnerability":"VCID-31ru-728d-7qhd"},{"vulnerability":"VCID-3kze-pbbq-63gp"},{"vulnerability":"VCID-4798-eshg-87d3"},{"vulnerability":"VCID-4juv-ezjh-xqb1"},{"vulnerability":"VCID-4vhy-r29x-bqhu"},{"vulnerability":"VCID-4z9e-2ugc-vqav"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-6u62-a3sj-efcw"},{"vulnerability":"VCID-7jmj-2mx5-pkea"},{"vulnerability":"VCID-7qfd-bk4h-j3aa"},{"vulnerability":"VCID-7wgn-m25j-w7h2"},{"vulnerability":"VCID-8c9g-167m-j3a3"},{"vulnerability":"VCID-8zcx-gcse-ukhp"},{"vulnerability":"VCID-abq3-a6yx-e7bq"},{"vulnerability":"VCID-ahw3-7k2k-9ka4"},{"vulnerability":"VCID-akpu-abr9-hqbz"},{"vulnerability":"VCID-anzk-2p8a-qkdx"},{"vulnerability":"VCID-b9rr-1n16-6bdd"},{"vulnerability":"VCID-brew-av11-bydd"},{"vulnerability":"VCID-d9vg-ugpq-bkde"},{"vulnerability":"VCID-ehgb-691x-8yf8"},{"vulnerability":"VCID-eujd-mjmg-kua3"},{"vulnerability":"VCID-f8tu-csm2-9ka4"},{"vulnerability":"VCID-gm5j-mkze-8qgn"},{"vulnerability":"VCID-gq8w-7xep-77gz"},{"vulnerability":"VCID-h7f1-f91u-mqf2"},{"vulnerability":"VCID-hzuw-nvff-fuav"},{"vulnerability":"VCID-j1zx-9f8z-cugc"},{"vulnerability":"VCID-kkpu-zyz5-z7b8"},{"vulnerability":"VCID-n279-7wxk-nydv"},{"vulnerability":"VCID-n8h3-vshe-fybw"},{"vulnerability":"VCID-n9ge-6p95-qyg6"},{"vulnerability":"VCID-ne7c-7vzh-qkhk"},{"vulnerability":"VCID-puv1-q4kq-sucs"},{"vulnerability":"VCID-pvgd-s1fu-mkc4"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qsg5-eqde-eyee"},{"vulnerability":"VCID-rsvc-b3bb-dudb"},{"vulnerability":"VCID-ry1q-c5e8-tba4"},{"vulnerability":"VCID-rzba-hj3c-w7d2"},{"vulnerability":"VCID-s9jy-8vcq-83ch"},{"vulnerability":"VCID-shyq-gyyp-ebav"},{"vulnerability":"VCID-t1qc-t43k-8ug4"},{"vulnerability":"VCID-u2dm-zzmm-yugj"},{"vulnerability":"VCID-utfa-6f4f-pfct"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-wk1w-jhc1-6qe6"},{"vulnerability":"VCID-x4cj-g8hm-gfd9"},{"vulnerability":"VCID-xdek-jm8r-ryfh"},{"vulnerability":"VCID-xtkv-k4js-yfdm"},{"vulnerability":"VCID-y4a2-mamb-yqg6"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@6.2.0-1~bpo8%252B1"}],"aliases":["CVE-2014-10022"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-pp8v-fjet-uyeh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103110?format=json","vulnerability_id":"VCID-q7hc-586u-9yhs","summary":"Apache Traffic Server 5.1.x before 5.1.1 allows remote attackers to bypass access restrictions by leveraging failure to properly tunnel remap requests using CONNECT.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-3624","reference_id":"","reference_type":"","scores":[{"value":"0.00387","scoring_system":"epss","scoring_elements":"0.60173","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00387","scoring_system":"epss","scoring_elements":"0.60221","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00387","scoring_system":"epss","scoring_elements":"0.60223","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00387","scoring_system":"epss","scoring_elements":"0.6021","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00387","scoring_system":"epss","scoring_elements":"0.60193","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00387","scoring_system":"epss","scoring_elements":"0.60212","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-3624"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3624","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3624"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515648?format=json","purl":"pkg:deb/debian/trafficserver@6.2.0-1~bpo8%2B1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22mh-dhgq-1qbq"},{"vulnerability":"VCID-2kvz-wm9u-53bd"},{"vulnerability":"VCID-31ru-728d-7qhd"},{"vulnerability":"VCID-3kze-pbbq-63gp"},{"vulnerability":"VCID-4798-eshg-87d3"},{"vulnerability":"VCID-4juv-ezjh-xqb1"},{"vulnerability":"VCID-4vhy-r29x-bqhu"},{"vulnerability":"VCID-4z9e-2ugc-vqav"},{"vulnerability":"VCID-6tcz-mrt1-ufh2"},{"vulnerability":"VCID-6u62-a3sj-efcw"},{"vulnerability":"VCID-7jmj-2mx5-pkea"},{"vulnerability":"VCID-7qfd-bk4h-j3aa"},{"vulnerability":"VCID-7wgn-m25j-w7h2"},{"vulnerability":"VCID-8c9g-167m-j3a3"},{"vulnerability":"VCID-8zcx-gcse-ukhp"},{"vulnerability":"VCID-abq3-a6yx-e7bq"},{"vulnerability":"VCID-ahw3-7k2k-9ka4"},{"vulnerability":"VCID-akpu-abr9-hqbz"},{"vulnerability":"VCID-anzk-2p8a-qkdx"},{"vulnerability":"VCID-b9rr-1n16-6bdd"},{"vulnerability":"VCID-brew-av11-bydd"},{"vulnerability":"VCID-d9vg-ugpq-bkde"},{"vulnerability":"VCID-ehgb-691x-8yf8"},{"vulnerability":"VCID-eujd-mjmg-kua3"},{"vulnerability":"VCID-f8tu-csm2-9ka4"},{"vulnerability":"VCID-gm5j-mkze-8qgn"},{"vulnerability":"VCID-gq8w-7xep-77gz"},{"vulnerability":"VCID-h7f1-f91u-mqf2"},{"vulnerability":"VCID-hzuw-nvff-fuav"},{"vulnerability":"VCID-j1zx-9f8z-cugc"},{"vulnerability":"VCID-kkpu-zyz5-z7b8"},{"vulnerability":"VCID-n279-7wxk-nydv"},{"vulnerability":"VCID-n8h3-vshe-fybw"},{"vulnerability":"VCID-n9ge-6p95-qyg6"},{"vulnerability":"VCID-ne7c-7vzh-qkhk"},{"vulnerability":"VCID-puv1-q4kq-sucs"},{"vulnerability":"VCID-pvgd-s1fu-mkc4"},{"vulnerability":"VCID-qh8b-vbxg-7uht"},{"vulnerability":"VCID-qsg5-eqde-eyee"},{"vulnerability":"VCID-rsvc-b3bb-dudb"},{"vulnerability":"VCID-ry1q-c5e8-tba4"},{"vulnerability":"VCID-rzba-hj3c-w7d2"},{"vulnerability":"VCID-s9jy-8vcq-83ch"},{"vulnerability":"VCID-shyq-gyyp-ebav"},{"vulnerability":"VCID-t1qc-t43k-8ug4"},{"vulnerability":"VCID-u2dm-zzmm-yugj"},{"vulnerability":"VCID-utfa-6f4f-pfct"},{"vulnerability":"VCID-v6p7-5vx3-eff3"},{"vulnerability":"VCID-wk1w-jhc1-6qe6"},{"vulnerability":"VCID-x4cj-g8hm-gfd9"},{"vulnerability":"VCID-xdek-jm8r-ryfh"},{"vulnerability":"VCID-xtkv-k4js-yfdm"},{"vulnerability":"VCID-y4a2-mamb-yqg6"},{"vulnerability":"VCID-y7sh-qr3t-ebf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@6.2.0-1~bpo8%252B1"}],"aliases":["CVE-2014-3624"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-q7hc-586u-9yhs"}],"risk_score":"10.0","resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@6.2.0-1~bpo8%252B1"}