Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:maven/mysql/mysql-connector-java@8.0.22

Type maven

Namespace mysql

Name mysql-connector-java

Version 8.0.22

Qualifiers

Subpath

Is_vulnerable true

Next_non_vulnerable_version null

Latest_non_vulnerable_version null

Affected_by_vulnerabilities

url VCID-mm5k-xf1m-fbda

vulnerability_id VCID-mm5k-xf1m-fbda

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2471.json

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2471.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-2471

reference_id

reference_type

scores

value	0.63823
scoring_system	epss
scoring_elements	0.98453
published_at	2026-06-14T12:55:00Z

value	0.63823
scoring_system	epss
scoring_elements	0.98447
published_at	2026-06-11T12:55:00Z

value	0.63823
scoring_system	epss
scoring_elements	0.98452
published_at	2026-06-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-2471

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2020583
reference_id	2020583
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2020583

reference_url

https://www.oracle.com/security-alerts/cpuapr2022.html

reference_id

cpuapr2022.html

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:H

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:15:14Z/

url

https://www.oracle.com/security-alerts/cpuapr2022.html

reference_url

https://www.oracle.com/security-alerts/cpuoct2021.html

reference_id

cpuoct2021.html

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:H

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:15:14Z/

url

https://www.oracle.com/security-alerts/cpuoct2021.html

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2021-2471

reference_id

CVE-2021-2471

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:H

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2021-2471

reference_url

https://github.com/advisories/GHSA-w6f2-8wx4-47r5

reference_id

GHSA-w6f2-8wx4-47r5

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-w6f2-8wx4-47r5

reference_url	https://access.redhat.com/errata/RHSA-2022:0589
reference_id	RHSA-2022:0589
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0589

reference_url	https://access.redhat.com/errata/RHSA-2022:1013
reference_id	RHSA-2022:1013
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:1013

reference_url	https://access.redhat.com/errata/RHSA-2022:5532
reference_id	RHSA-2022:5532
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:5532

reference_url	https://access.redhat.com/errata/RHSA-2022:5903
reference_id	RHSA-2022:5903
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:5903

reference_url	https://access.redhat.com/errata/RHSA-2022:6407
reference_id	RHSA-2022:6407
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:6407

fixed_packages

url pkg:maven/mysql/mysql-connector-java@8.0.27

purl pkg:maven/mysql/mysql-connector-java@8.0.27

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-u8c1-449f-7qfx

vulnerability	VCID-x22p-qd85-hbar

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/mysql/mysql-connector-java@8.0.27

aliases CVE-2021-2471, GHSA-w6f2-8wx4-47r5

risk_score 3.4

exploitability 0.5

weighted_severity 6.7

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-mm5k-xf1m-fbda

url

VCID-u8c1-449f-7qfx

vulnerability_id

VCID-u8c1-449f-7qfx

summary

Vulnerability in the MySQL Connectors product of Oracle MySQL (component: Connector/J). Supported versions that are affected are 8.1.0 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Connectors. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in MySQL Connectors, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of MySQL Connectors. CVSS 3.1 Base Score 8.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H).

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-22102.json

reference_id

reference_type

scores

value	8.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-22102.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-22102

reference_id

reference_type

scores

value	0.03493
scoring_system	epss
scoring_elements	0.87915
published_at	2026-06-14T12:55:00Z

value	0.03493
scoring_system	epss
scoring_elements	0.87917
published_at	2026-06-13T12:55:00Z

value	0.03493
scoring_system	epss
scoring_elements	0.8791
published_at	2026-06-12T12:55:00Z

value	0.03493
scoring_system	epss
scoring_elements	0.87869
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-22102

reference_url

https://github.com/mysql/mysql-connector-j

reference_id

reference_type

scores

value	8.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H

value	8.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:A/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/mysql/mysql-connector-j

reference_url

https://github.com/mysql/mysql-connector-j/compare/8.1.0...8.2.0

reference_id

reference_type

scores

value	8.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H

value	8.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:A/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/mysql/mysql-connector-j/compare/8.1.0...8.2.0

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2023-22102

reference_id

reference_type

scores

value	8.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H

value	8.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:A/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2023-22102

reference_url

https://security.netapp.com/advisory/ntap-20231027-0007

reference_id

reference_type

scores

value	8.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H

value	8.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:A/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://security.netapp.com/advisory/ntap-20231027-0007

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2256474
reference_id	2256474
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2256474

reference_url

https://www.oracle.com/security-alerts/cpuoct2023.html

reference_id

cpuoct2023.html

reference_type

scores

value	8.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H

value	8.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:A/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-03-06T15:27:01Z/

url

https://www.oracle.com/security-alerts/cpuoct2023.html

reference_url

https://github.com/advisories/GHSA-m6vm-37g8-gqvh

reference_id

GHSA-m6vm-37g8-gqvh

reference_type

scores

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-m6vm-37g8-gqvh

reference_url

https://security.netapp.com/advisory/ntap-20231027-0007/

reference_id

ntap-20231027-0007

reference_type

scores

value	8.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-03-06T15:27:01Z/

url

https://security.netapp.com/advisory/ntap-20231027-0007/

fixed_packages

aliases

CVE-2023-22102, GHSA-m6vm-37g8-gqvh

risk_score

4.0

exploitability

0.5

weighted_severity

8.0

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-u8c1-449f-7qfx

url VCID-x22p-qd85-hbar

vulnerability_id VCID-x22p-qd85-hbar

summary Vulnerability in the MySQL Connectors product of Oracle MySQL (component: Connector/J). Supported versions that are affected are 8.0.27 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Connectors. Successful attacks of this vulnerability can result in takeover of MySQL Connectors. CVSS 3.1 Base Score 6.6 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H).

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21363.json

reference_id

reference_type

scores

value	6.6
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21363.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-21363

reference_id

reference_type

scores

value	0.00754
scoring_system	epss
scoring_elements	0.73766
published_at	2026-06-14T12:55:00Z

value	0.00754
scoring_system	epss
scoring_elements	0.73676
published_at	2026-06-11T12:55:00Z

value	0.00754
scoring_system	epss
scoring_elements	0.73751
published_at	2026-06-12T12:55:00Z

value	0.00754
scoring_system	epss
scoring_elements	0.73767
published_at	2026-06-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-21363

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2047343
reference_id	2047343
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2047343

reference_url

https://www.oracle.com/security-alerts/cpujan2022.html

reference_id

cpujan2022.html

reference_type

scores

value	6.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-24T17:38:01Z/

url

https://www.oracle.com/security-alerts/cpujan2022.html

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2022-21363

reference_id

CVE-2022-21363

reference_type

scores

value	6.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2022-21363

reference_url

https://github.com/advisories/GHSA-g76j-4cxx-23h9

reference_id

GHSA-g76j-4cxx-23h9

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-g76j-4cxx-23h9

reference_url	https://access.redhat.com/errata/RHSA-2022:4623
reference_id	RHSA-2022:4623
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:4623

reference_url	https://access.redhat.com/errata/RHSA-2022:4918
reference_id	RHSA-2022:4918
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:4918

reference_url	https://access.redhat.com/errata/RHSA-2022:4919
reference_id	RHSA-2022:4919
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:4919

reference_url	https://access.redhat.com/errata/RHSA-2022:4922
reference_id	RHSA-2022:4922
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:4922

reference_url	https://access.redhat.com/errata/RHSA-2022:5532
reference_id	RHSA-2022:5532
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:5532

reference_url	https://access.redhat.com/errata/RHSA-2022:6813
reference_id	RHSA-2022:6813
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:6813

fixed_packages

url pkg:maven/mysql/mysql-connector-java@8.0.28

purl pkg:maven/mysql/mysql-connector-java@8.0.28

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-u8c1-449f-7qfx

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/mysql/mysql-connector-java@8.0.28

aliases CVE-2022-21363, GHSA-g76j-4cxx-23h9

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-x22p-qd85-hbar

Fixing_vulnerabilities

Risk_score 4.0

Resource_url http://public2.vulnerablecode.io/packages/pkg:maven/mysql/mysql-connector-java@8.0.22

Package Instance