Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/74527?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/74527?format=api", "purl": "pkg:ebuild/dev-lang/go@1.18.5", "type": "ebuild", "namespace": "dev-lang", "name": "go", "version": "1.18.5", "qualifiers": {}, "subpath": "", "is_vulnerable": false, "next_non_vulnerable_version": "1.18.6", "latest_non_vulnerable_version": "1.22.3", "affected_by_vulnerabilities": [], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36633?format=api", "vulnerability_id": "VCID-2zj9-xmsh-xbcn", "summary": "Multiple vulnerabilities have been found in Go, the worst of which could result in remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-44717.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-44717.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-44717", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0022", "scoring_system": "epss", "scoring_elements": "0.44535", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0022", "scoring_system": "epss", "scoring_elements": "0.44613", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0022", "scoring_system": "epss", "scoring_elements": "0.44634", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0022", "scoring_system": "epss", "scoring_elements": "0.44572", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0022", "scoring_system": "epss", "scoring_elements": "0.44623", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0022", "scoring_system": "epss", "scoring_elements": "0.44626", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0022", "scoring_system": "epss", "scoring_elements": "0.44643", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0022", "scoring_system": "epss", "scoring_elements": "0.44614", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0022", "scoring_system": "epss", "scoring_elements": "0.44668", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0022", "scoring_system": "epss", "scoring_elements": "0.44661", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0022", "scoring_system": "epss", "scoring_elements": "0.44592", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.0022", "scoring_system": "epss", "scoring_elements": "0.44506", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.0022", "scoring_system": "epss", "scoring_elements": "0.4451", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.0022", "scoring_system": "epss", "scoring_elements": "0.44428", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.0022", "scoring_system": "epss", "scoring_elements": "0.44305", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.0022", "scoring_system": "epss", "scoring_elements": "0.44382", "published_at": "2026-05-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-44717" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44717", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44717" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2030806", "reference_id": "2030806", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2030806" }, { "reference_url": "https://security.archlinux.org/AVG-2617", "reference_id": "AVG-2617", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2617" }, { "reference_url": "https://security.gentoo.org/glsa/202208-02", "reference_id": "GLSA-202208-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:5160", "reference_id": "RHSA-2021:5160", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:5160" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:5176", "reference_id": "RHSA-2021:5176", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:5176" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0055", "reference_id": "RHSA-2022:0055", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0055" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0056", "reference_id": "RHSA-2022:0056", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0056" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0557", "reference_id": "RHSA-2022:0557", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0557" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0927", "reference_id": "RHSA-2022:0927", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0927" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1051", "reference_id": "RHSA-2022:1051", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1051" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1056", "reference_id": "RHSA-2022:1056", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1056" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1361", "reference_id": "RHSA-2022:1361", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1361" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1372", "reference_id": "RHSA-2022:1372", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1372" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1734", "reference_id": "RHSA-2022:1734", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1734" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0407", "reference_id": "RHSA-2023:0407", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0407" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0408", "reference_id": "RHSA-2023:0408", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0408" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74527?format=api", "purl": "pkg:ebuild/dev-lang/go@1.18.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/go@1.18.5" } ], "aliases": [ "CVE-2021-44717" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2zj9-xmsh-xbcn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36622?format=api", "vulnerability_id": "VCID-35du-rm88-k7bw", "summary": "Multiple vulnerabilities have been found in Go, the worst of which could result in remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-33195.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-33195.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-33195", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09083", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09193", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09117", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.0903", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09088", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09141", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09062", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09173", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09172", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09139", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09126", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.0902", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09159", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09202", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09147", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-33195" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-33195", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-33195" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:H/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1989564", "reference_id": "1989564", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1989564" }, { "reference_url": "https://security.archlinux.org/ASA-202106-42", "reference_id": "ASA-202106-42", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202106-42" }, { "reference_url": "https://security.archlinux.org/AVG-2006", "reference_id": "AVG-2006", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2006" }, { "reference_url": "https://security.gentoo.org/glsa/202208-02", "reference_id": "GLSA-202208-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2983", "reference_id": "RHSA-2021:2983", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2983" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2984", "reference_id": "RHSA-2021:2984", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2984" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3009", "reference_id": "RHSA-2021:3009", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3009" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3146", "reference_id": "RHSA-2021:3146", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3146" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3229", "reference_id": "RHSA-2021:3229", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3229" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3248", "reference_id": "RHSA-2021:3248", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3248" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3361", "reference_id": "RHSA-2021:3361", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3361" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3431", "reference_id": "RHSA-2021:3431", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3431" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3487", "reference_id": "RHSA-2021:3487", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3487" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3555", "reference_id": "RHSA-2021:3555", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3555" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3556", "reference_id": "RHSA-2021:3556", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3556" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3598", "reference_id": "RHSA-2021:3598", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3598" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3759", "reference_id": "RHSA-2021:3759", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3759" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3820", "reference_id": "RHSA-2021:3820", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3820" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4104", "reference_id": "RHSA-2021:4104", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4104" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4156", "reference_id": "RHSA-2021:4156", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4156" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4226", "reference_id": "RHSA-2021:4226", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4226" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:5072", "reference_id": "RHSA-2021:5072", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:5072" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:5085", "reference_id": "RHSA-2021:5085", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:5085" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:5086", "reference_id": "RHSA-2021:5086", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:5086" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0191", "reference_id": "RHSA-2022:0191", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0191" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0577", "reference_id": "RHSA-2022:0577", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0577" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1329", "reference_id": "RHSA-2022:1329", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1329" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1402", "reference_id": "RHSA-2022:1402", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1402" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74527?format=api", "purl": "pkg:ebuild/dev-lang/go@1.18.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/go@1.18.5" } ], "aliases": [ "CVE-2021-33195" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-35du-rm88-k7bw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36616?format=api", "vulnerability_id": "VCID-3vjm-2r63-afbr", "summary": "Multiple vulnerabilities have been found in Go, the worst of which could result in remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-27919.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-27919.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-27919", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00132", "scoring_system": "epss", "scoring_elements": "0.32741", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00132", "scoring_system": "epss", "scoring_elements": "0.32305", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.00132", "scoring_system": "epss", "scoring_elements": "0.32377", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00132", "scoring_system": "epss", "scoring_elements": "0.3224", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.00132", "scoring_system": "epss", "scoring_elements": "0.32872", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00132", "scoring_system": "epss", "scoring_elements": "0.32907", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00132", "scoring_system": "epss", "scoring_elements": "0.32727", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00132", "scoring_system": "epss", "scoring_elements": "0.32775", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00132", "scoring_system": "epss", "scoring_elements": "0.32802", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00132", "scoring_system": "epss", "scoring_elements": "0.32803", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00132", "scoring_system": "epss", "scoring_elements": "0.32765", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00132", "scoring_system": "epss", "scoring_elements": "0.32739", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00132", "scoring_system": "epss", "scoring_elements": "0.3278", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00132", "scoring_system": "epss", "scoring_elements": "0.32756", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00132", "scoring_system": "epss", "scoring_elements": "0.32576", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00132", "scoring_system": "epss", "scoring_elements": "0.32459", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-27919" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1937909", "reference_id": "1937909", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1937909" }, { "reference_url": "https://security.archlinux.org/AVG-1668", "reference_id": "AVG-1668", "reference_type": "", "scores": [ { "value": "Low", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1668" }, { "reference_url": "https://security.gentoo.org/glsa/202208-02", "reference_id": "GLSA-202208-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-02" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74527?format=api", "purl": "pkg:ebuild/dev-lang/go@1.18.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/go@1.18.5" } ], "aliases": [ "CVE-2021-27919" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-3vjm-2r63-afbr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36650?format=api", "vulnerability_id": "VCID-498g-zap2-vqag", "summary": "Multiple vulnerabilities have been found in Go, the worst of which could result in remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-30635.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-30635.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-30635", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00096", "scoring_system": "epss", "scoring_elements": "0.26617", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00096", "scoring_system": "epss", "scoring_elements": "0.26447", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00096", "scoring_system": "epss", "scoring_elements": "0.26662", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00096", "scoring_system": "epss", "scoring_elements": "0.26516", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00096", "scoring_system": "epss", "scoring_elements": "0.26565", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00096", "scoring_system": "epss", "scoring_elements": "0.26571", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00096", "scoring_system": "epss", "scoring_elements": "0.26526", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00096", "scoring_system": "epss", "scoring_elements": "0.26468", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00096", "scoring_system": "epss", "scoring_elements": "0.26475", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00096", "scoring_system": "epss", "scoring_elements": "0.26445", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00096", "scoring_system": "epss", "scoring_elements": "0.26407", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00114", "scoring_system": "epss", "scoring_elements": "0.29798", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00114", "scoring_system": "epss", "scoring_elements": "0.29685", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00114", "scoring_system": "epss", "scoring_elements": "0.29623", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00114", "scoring_system": "epss", "scoring_elements": "0.29484", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.00114", "scoring_system": "epss", "scoring_elements": "0.29546", "published_at": "2026-05-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-30635" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-30635", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-30635" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2107388", "reference_id": "2107388", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2107388" }, { "reference_url": "https://go.dev/cl/417064", "reference_id": "417064", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-06T17:44:14Z/" } ], "url": "https://go.dev/cl/417064" }, { "reference_url": "https://go.dev/issue/53615", "reference_id": "53615", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-06T17:44:14Z/" } ], "url": "https://go.dev/issue/53615" }, { "reference_url": "https://go.googlesource.com/go/+/6fa37e98ea4382bf881428ee0c150ce591500eb7", "reference_id": "6fa37e98ea4382bf881428ee0c150ce591500eb7", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-06T17:44:14Z/" } ], "url": "https://go.googlesource.com/go/+/6fa37e98ea4382bf881428ee0c150ce591500eb7" }, { "reference_url": "https://security.gentoo.org/glsa/202208-02", "reference_id": "GLSA-202208-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-02" }, { "reference_url": "https://pkg.go.dev/vuln/GO-2022-0526", "reference_id": "GO-2022-0526", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-06T17:44:14Z/" } ], "url": "https://pkg.go.dev/vuln/GO-2022-0526" }, { "reference_url": "https://groups.google.com/g/golang-announce/c/nqrv9fbR0zE", "reference_id": "nqrv9fbR0zE", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-06T17:44:14Z/" } ], "url": "https://groups.google.com/g/golang-announce/c/nqrv9fbR0zE" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5775", "reference_id": "RHSA-2022:5775", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5775" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5799", "reference_id": "RHSA-2022:5799", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5799" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5866", "reference_id": "RHSA-2022:5866", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5866" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6040", "reference_id": "RHSA-2022:6040", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6040" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6042", "reference_id": "RHSA-2022:6042", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6042" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6152", "reference_id": "RHSA-2022:6152", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6152" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6283", "reference_id": "RHSA-2022:6283", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6283" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7129", "reference_id": "RHSA-2022:7129", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7129" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7519", "reference_id": "RHSA-2022:7519", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7519" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7648", "reference_id": "RHSA-2022:7648", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7648" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8057", "reference_id": "RHSA-2022:8057", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8057" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8250", "reference_id": "RHSA-2022:8250", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8250" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8634", "reference_id": "RHSA-2022:8634", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8634" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:9047", "reference_id": "RHSA-2022:9047", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:9047" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0407", "reference_id": "RHSA-2023:0407", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0407" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0408", "reference_id": "RHSA-2023:0408", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0408" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1042", "reference_id": "RHSA-2023:1042", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1042" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1275", "reference_id": "RHSA-2023:1275", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1275" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2357", "reference_id": "RHSA-2023:2357", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2357" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2758", "reference_id": "RHSA-2023:2758", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2758" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2802", "reference_id": "RHSA-2023:2802", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2802" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3642", "reference_id": "RHSA-2023:3642", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3642" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3742", "reference_id": "RHSA-2023:3742", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3742" }, { "reference_url": "https://usn.ubuntu.com/6038-1/", "reference_id": "USN-6038-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6038-1/" }, { "reference_url": "https://usn.ubuntu.com/6038-2/", "reference_id": "USN-6038-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6038-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74527?format=api", "purl": "pkg:ebuild/dev-lang/go@1.18.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/go@1.18.5" } ], "aliases": [ "CVE-2022-30635" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-498g-zap2-vqag" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36638?format=api", "vulnerability_id": "VCID-4pue-fbre-zfcf", "summary": "Multiple vulnerabilities have been found in Go, the worst of which could result in remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-23806.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-23806.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-23806", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11536", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11401", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12203", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12048", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12129", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12181", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12189", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12152", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.1212", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.1199", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.11986", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12105", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12085", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12248", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13643", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13728", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-23806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23806" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2053429", "reference_id": "2053429", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2053429" }, { "reference_url": "https://security.gentoo.org/glsa/202208-02", "reference_id": "GLSA-202208-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1819", "reference_id": "RHSA-2022:1819", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1819" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:4860", "reference_id": "RHSA-2022:4860", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:4860" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:4863", "reference_id": "RHSA-2022:4863", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:4863" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:4956", "reference_id": "RHSA-2022:4956", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:4956" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5004", "reference_id": "RHSA-2022:5004", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5004" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5006", "reference_id": "RHSA-2022:5006", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5006" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5068", "reference_id": "RHSA-2022:5068", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5068" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5729", "reference_id": "RHSA-2022:5729", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5729" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5875", "reference_id": "RHSA-2022:5875", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5875" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6094", "reference_id": "RHSA-2022:6094", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6094" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6156", "reference_id": "RHSA-2022:6156", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6156" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0408", "reference_id": "RHSA-2023:0408", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0408" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1529", "reference_id": "RHSA-2023:1529", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1529" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74527?format=api", "purl": "pkg:ebuild/dev-lang/go@1.18.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/go@1.18.5" } ], "aliases": [ "CVE-2022-23806" ], "risk_score": 3.2, "exploitability": "0.5", "weighted_severity": "6.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4pue-fbre-zfcf" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36642?format=api", "vulnerability_id": "VCID-5c67-zpsw-cyb2", "summary": "Multiple vulnerabilities have been found in Go, the worst of which could result in remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-28131.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-28131.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-28131", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00015", "scoring_system": "epss", "scoring_elements": "0.03218", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00015", "scoring_system": "epss", "scoring_elements": "0.03227", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00015", "scoring_system": "epss", "scoring_elements": "0.03234", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00015", "scoring_system": "epss", "scoring_elements": "0.0324", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00015", "scoring_system": "epss", "scoring_elements": "0.03261", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00015", "scoring_system": "epss", "scoring_elements": "0.03191", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00015", "scoring_system": "epss", "scoring_elements": "0.0317", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00015", "scoring_system": "epss", "scoring_elements": "0.03143", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00015", "scoring_system": "epss", "scoring_elements": "0.03153", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00015", "scoring_system": "epss", "scoring_elements": "0.03273", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00015", "scoring_system": "epss", "scoring_elements": "0.03267", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00015", "scoring_system": "epss", "scoring_elements": "0.03265", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00015", "scoring_system": "epss", "scoring_elements": "0.03305", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00015", "scoring_system": "epss", "scoring_elements": "0.03255", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.00015", "scoring_system": "epss", "scoring_elements": "0.03278", "published_at": "2026-05-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-28131" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28131", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28131" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2107390", "reference_id": "2107390", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2107390" }, { "reference_url": "https://security.gentoo.org/glsa/202208-02", "reference_id": "GLSA-202208-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5775", "reference_id": "RHSA-2022:5775", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5775" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5799", "reference_id": "RHSA-2022:5799", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5799" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5866", "reference_id": "RHSA-2022:5866", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5866" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6040", "reference_id": "RHSA-2022:6040", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6040" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6042", "reference_id": "RHSA-2022:6042", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6042" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6113", "reference_id": "RHSA-2022:6113", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6113" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6152", "reference_id": "RHSA-2022:6152", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6152" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6188", "reference_id": "RHSA-2022:6188", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6188" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6283", "reference_id": "RHSA-2022:6283", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6283" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7519", "reference_id": "RHSA-2022:7519", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7519" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7529", "reference_id": "RHSA-2022:7529", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7529" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8057", "reference_id": "RHSA-2022:8057", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8057" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:9047", "reference_id": "RHSA-2022:9047", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:9047" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0407", "reference_id": "RHSA-2023:0407", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0407" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0408", "reference_id": "RHSA-2023:0408", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0408" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1042", "reference_id": "RHSA-2023:1042", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1042" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2758", "reference_id": "RHSA-2023:2758", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2758" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2802", "reference_id": "RHSA-2023:2802", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2802" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3642", "reference_id": "RHSA-2023:3642", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3642" }, { "reference_url": "https://usn.ubuntu.com/6038-1/", "reference_id": "USN-6038-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6038-1/" }, { "reference_url": "https://usn.ubuntu.com/6038-2/", "reference_id": "USN-6038-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6038-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74527?format=api", "purl": "pkg:ebuild/dev-lang/go@1.18.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/go@1.18.5" } ], "aliases": [ "CVE-2022-28131" ], "risk_score": 3.3, "exploitability": "0.5", "weighted_severity": "6.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5c67-zpsw-cyb2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36626?format=api", "vulnerability_id": "VCID-5wtx-278c-nycq", "summary": "Multiple vulnerabilities have been found in Go, the worst of which could result in remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-33198.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-33198.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-33198", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08775", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08906", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08836", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08756", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08801", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.0885", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08782", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.0886", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08886", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08885", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08853", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08839", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08727", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08702", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08872", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08824", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-33198" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-33198", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-33198" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1989575", "reference_id": "1989575", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1989575" }, { "reference_url": "https://security.archlinux.org/ASA-202106-42", "reference_id": "ASA-202106-42", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202106-42" }, { "reference_url": "https://security.archlinux.org/AVG-2006", "reference_id": "AVG-2006", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2006" }, { "reference_url": "https://security.gentoo.org/glsa/202208-02", "reference_id": "GLSA-202208-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2983", "reference_id": "RHSA-2021:2983", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2983" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2984", "reference_id": "RHSA-2021:2984", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2984" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3009", "reference_id": "RHSA-2021:3009", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3009" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3146", "reference_id": "RHSA-2021:3146", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3146" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3229", "reference_id": "RHSA-2021:3229", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3229" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3248", "reference_id": "RHSA-2021:3248", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3248" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3361", "reference_id": "RHSA-2021:3361", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3361" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3487", "reference_id": "RHSA-2021:3487", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3487" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3555", "reference_id": "RHSA-2021:3555", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3555" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3556", "reference_id": "RHSA-2021:3556", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3556" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3598", "reference_id": "RHSA-2021:3598", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3598" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3759", "reference_id": "RHSA-2021:3759", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3759" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3820", "reference_id": "RHSA-2021:3820", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3820" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4104", "reference_id": "RHSA-2021:4104", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4104" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4156", "reference_id": "RHSA-2021:4156", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4156" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:5072", "reference_id": "RHSA-2021:5072", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:5072" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:5085", "reference_id": "RHSA-2021:5085", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:5085" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:5086", "reference_id": "RHSA-2021:5086", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:5086" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0191", "reference_id": "RHSA-2022:0191", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0191" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0577", "reference_id": "RHSA-2022:0577", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0577" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1329", "reference_id": "RHSA-2022:1329", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1329" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1402", "reference_id": "RHSA-2022:1402", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1402" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7955", "reference_id": "RHSA-2022:7955", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7955" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:10289", "reference_id": "RHSA-2024:10289", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:10289" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2586", "reference_id": "RHSA-2024:2586", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2586" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2988", "reference_id": "RHSA-2024:2988", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2988" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74527?format=api", "purl": "pkg:ebuild/dev-lang/go@1.18.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/go@1.18.5" } ], "aliases": [ "CVE-2021-33198" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5wtx-278c-nycq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36646?format=api", "vulnerability_id": "VCID-6189-d1tw-bfcp", "summary": "Multiple vulnerabilities have been found in Go, the worst of which could result in remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-30630.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-30630.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-30630", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11554", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11371", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11609", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11398", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11482", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11541", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11551", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11517", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11486", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11347", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11471", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11307", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11237", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13886", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13913", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-30630" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2107371", "reference_id": "2107371", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2107371" }, { "reference_url": "https://go.dev/cl/417065", "reference_id": "417065", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-24T20:38:26Z/" } ], "url": "https://go.dev/cl/417065" }, { "reference_url": "https://go.dev/issue/53415", "reference_id": "53415", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-24T20:38:26Z/" } ], "url": "https://go.dev/issue/53415" }, { "reference_url": "https://go.googlesource.com/go/+/fa2d41d0ca736f3ad6b200b2a4e134364e9acc59", "reference_id": "fa2d41d0ca736f3ad6b200b2a4e134364e9acc59", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-24T20:38:26Z/" } ], "url": "https://go.googlesource.com/go/+/fa2d41d0ca736f3ad6b200b2a4e134364e9acc59" }, { "reference_url": "https://security.gentoo.org/glsa/202208-02", "reference_id": "GLSA-202208-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-02" }, { "reference_url": "https://pkg.go.dev/vuln/GO-2022-0527", "reference_id": "GO-2022-0527", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-24T20:38:26Z/" } ], "url": "https://pkg.go.dev/vuln/GO-2022-0527" }, { "reference_url": "https://groups.google.com/g/golang-announce/c/nqrv9fbR0zE", "reference_id": "nqrv9fbR0zE", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-24T20:38:26Z/" } ], "url": "https://groups.google.com/g/golang-announce/c/nqrv9fbR0zE" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5775", "reference_id": "RHSA-2022:5775", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5775" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5799", "reference_id": "RHSA-2022:5799", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5799" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5866", "reference_id": "RHSA-2022:5866", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5866" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6040", "reference_id": "RHSA-2022:6040", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6040" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6042", "reference_id": "RHSA-2022:6042", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6042" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6113", "reference_id": "RHSA-2022:6113", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6113" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6152", "reference_id": "RHSA-2022:6152", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6152" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6188", "reference_id": "RHSA-2022:6188", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6188" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6283", "reference_id": "RHSA-2022:6283", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6283" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6430", "reference_id": "RHSA-2022:6430", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6430" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7129", "reference_id": "RHSA-2022:7129", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7129" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7519", "reference_id": "RHSA-2022:7519", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7519" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7529", "reference_id": "RHSA-2022:7529", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7529" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7648", "reference_id": "RHSA-2022:7648", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7648" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8057", "reference_id": "RHSA-2022:8057", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8057" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8098", "reference_id": "RHSA-2022:8098", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8098" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8250", "reference_id": "RHSA-2022:8250", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8250" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:9047", "reference_id": "RHSA-2022:9047", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:9047" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0407", "reference_id": "RHSA-2023:0407", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0407" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0408", "reference_id": "RHSA-2023:0408", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0408" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1042", "reference_id": "RHSA-2023:1042", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1042" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1275", "reference_id": "RHSA-2023:1275", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1275" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1529", "reference_id": "RHSA-2023:1529", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1529" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2357", "reference_id": "RHSA-2023:2357", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2357" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2758", "reference_id": "RHSA-2023:2758", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2758" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2802", "reference_id": "RHSA-2023:2802", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2802" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3642", "reference_id": "RHSA-2023:3642", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3642" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2180", "reference_id": "RHSA-2024:2180", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2180" }, { "reference_url": "https://usn.ubuntu.com/6038-1/", "reference_id": "USN-6038-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6038-1/" }, { "reference_url": "https://usn.ubuntu.com/6038-2/", "reference_id": "USN-6038-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6038-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74527?format=api", "purl": "pkg:ebuild/dev-lang/go@1.18.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/go@1.18.5" } ], "aliases": [ "CVE-2022-30630" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6189-d1tw-bfcp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36617?format=api", "vulnerability_id": "VCID-63v8-dt23-9ue7", "summary": "Multiple vulnerabilities have been found in Go, the worst of which could result in remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-29923.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-29923.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-29923", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00254", "scoring_system": "epss", "scoring_elements": "0.48625", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00254", "scoring_system": "epss", "scoring_elements": "0.48619", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.00254", "scoring_system": "epss", "scoring_elements": "0.48641", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00254", "scoring_system": "epss", "scoring_elements": "0.48557", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.00254", "scoring_system": "epss", "scoring_elements": "0.48666", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00254", "scoring_system": "epss", "scoring_elements": "0.48687", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00254", "scoring_system": "epss", "scoring_elements": "0.4864", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00254", "scoring_system": "epss", "scoring_elements": "0.48694", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00254", "scoring_system": "epss", "scoring_elements": "0.4869", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00254", "scoring_system": "epss", "scoring_elements": "0.48708", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00254", "scoring_system": "epss", "scoring_elements": "0.48682", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00254", "scoring_system": "epss", "scoring_elements": "0.48743", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00254", "scoring_system": "epss", "scoring_elements": "0.48739", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00254", "scoring_system": "epss", "scoring_elements": "0.48696", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00254", "scoring_system": "epss", "scoring_elements": "0.48681", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00254", "scoring_system": "epss", "scoring_elements": "0.48691", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-29923" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29923", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29923" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1992006", "reference_id": "1992006", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1992006" }, { "reference_url": "https://security.archlinux.org/AVG-1357", "reference_id": "AVG-1357", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1357" }, { "reference_url": "https://security.gentoo.org/glsa/202208-02", "reference_id": "GLSA-202208-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3431", "reference_id": "RHSA-2021:3431", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3431" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3585", "reference_id": "RHSA-2021:3585", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3585" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4722", "reference_id": "RHSA-2021:4722", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4722" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4725", "reference_id": "RHSA-2021:4725", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4725" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4902", "reference_id": "RHSA-2021:4902", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4902" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4910", "reference_id": "RHSA-2021:4910", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4910" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0237", "reference_id": "RHSA-2022:0237", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0237" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0260", "reference_id": "RHSA-2022:0260", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0260" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0431", "reference_id": "RHSA-2022:0431", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0431" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0432", "reference_id": "RHSA-2022:0432", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0432" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0434", "reference_id": "RHSA-2022:0434", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0434" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0557", "reference_id": "RHSA-2022:0557", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0557" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0561", "reference_id": "RHSA-2022:0561", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0561" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0577", "reference_id": "RHSA-2022:0577", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0577" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0988", "reference_id": "RHSA-2022:0988", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0988" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0989", "reference_id": "RHSA-2022:0989", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0989" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0997", "reference_id": "RHSA-2022:0997", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0997" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0998", "reference_id": "RHSA-2022:0998", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0998" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1276", "reference_id": "RHSA-2022:1276", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1276" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1372", "reference_id": "RHSA-2022:1372", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1372" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74527?format=api", "purl": "pkg:ebuild/dev-lang/go@1.18.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/go@1.18.5" } ], "aliases": [ "CVE-2021-29923" ], "risk_score": 3.3, "exploitability": "0.5", "weighted_severity": "6.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-63v8-dt23-9ue7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36652?format=api", "vulnerability_id": "VCID-65mk-w8rx-zucs", "summary": "Multiple vulnerabilities have been found in Go, the worst of which could result in remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-32189.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-32189.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-32189", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00113", "scoring_system": "epss", "scoring_elements": "0.2997", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00113", "scoring_system": "epss", "scoring_elements": "0.30018", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00113", "scoring_system": "epss", "scoring_elements": "0.29831", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00113", "scoring_system": "epss", "scoring_elements": "0.29894", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00113", "scoring_system": "epss", "scoring_elements": "0.2993", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00113", "scoring_system": "epss", "scoring_elements": "0.29935", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00113", "scoring_system": "epss", "scoring_elements": "0.29889", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00113", "scoring_system": "epss", "scoring_elements": "0.2984", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00113", "scoring_system": "epss", "scoring_elements": "0.29857", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00113", "scoring_system": "epss", "scoring_elements": "0.29837", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00113", "scoring_system": "epss", "scoring_elements": "0.29791", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00113", "scoring_system": "epss", "scoring_elements": "0.29714", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00113", "scoring_system": "epss", "scoring_elements": "0.29601", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00113", "scoring_system": "epss", "scoring_elements": "0.29538", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00113", "scoring_system": "epss", "scoring_elements": "0.29393", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.00113", "scoring_system": "epss", "scoring_elements": "0.29456", "published_at": "2026-05-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-32189" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32189", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32189" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2113814", "reference_id": "2113814", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2113814" }, { "reference_url": "https://security.gentoo.org/glsa/202208-02", "reference_id": "GLSA-202208-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7129", "reference_id": "RHSA-2022:7129", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7129" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7398", "reference_id": "RHSA-2022:7398", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7398" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7548", "reference_id": "RHSA-2022:7548", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7548" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7950", "reference_id": "RHSA-2022:7950", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7950" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8534", "reference_id": "RHSA-2022:8534", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8534" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8535", "reference_id": "RHSA-2022:8535", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8535" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8626", "reference_id": "RHSA-2022:8626", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8626" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8781", "reference_id": "RHSA-2022:8781", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8781" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0328", "reference_id": "RHSA-2023:0328", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0328" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0446", "reference_id": "RHSA-2023:0446", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0446" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0584", "reference_id": "RHSA-2023:0584", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0584" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0693", "reference_id": "RHSA-2023:0693", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0693" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1275", "reference_id": "RHSA-2023:1275", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1275" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1529", "reference_id": "RHSA-2023:1529", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1529" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2193", "reference_id": "RHSA-2023:2193", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2193" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2236", "reference_id": "RHSA-2023:2236", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2236" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2357", "reference_id": "RHSA-2023:2357", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2357" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2758", "reference_id": "RHSA-2023:2758", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2758" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2802", "reference_id": "RHSA-2023:2802", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2802" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3204", "reference_id": "RHSA-2023:3204", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3204" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3205", "reference_id": "RHSA-2023:3205", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3205" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3642", "reference_id": "RHSA-2023:3642", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3642" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3742", "reference_id": "RHSA-2023:3742", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3742" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2944", "reference_id": "RHSA-2024:2944", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2944" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:4128", "reference_id": "RHSA-2026:4128", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:4128" }, { "reference_url": "https://usn.ubuntu.com/6038-1/", "reference_id": "USN-6038-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6038-1/" }, { "reference_url": "https://usn.ubuntu.com/6038-2/", "reference_id": "USN-6038-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6038-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74527?format=api", "purl": "pkg:ebuild/dev-lang/go@1.18.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/go@1.18.5" } ], "aliases": [ "CVE-2022-32189" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-65mk-w8rx-zucs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36618?format=api", "vulnerability_id": "VCID-7ahs-f1qh-g7an", "summary": "Multiple vulnerabilities have been found in Go, the worst of which could result in remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3114.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3114.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3114", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11299", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.114", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11439", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11498", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11286", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11368", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11426", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11432", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0012", "scoring_system": "epss", "scoring_elements": "0.30525", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.0012", "scoring_system": "epss", "scoring_elements": "0.30598", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.0012", "scoring_system": "epss", "scoring_elements": "0.30456", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.0012", "scoring_system": "epss", "scoring_elements": "0.30978", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0012", "scoring_system": "epss", "scoring_elements": "0.31008", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0012", "scoring_system": "epss", "scoring_elements": "0.30991", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0012", "scoring_system": "epss", "scoring_elements": "0.30957", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.0012", "scoring_system": "epss", "scoring_elements": "0.30798", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.0012", "scoring_system": "epss", "scoring_elements": "0.3068", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3114" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15586", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15586" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16845", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16845" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7919", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7919" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3114", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3114" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1918750", "reference_id": "1918750", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1918750" }, { "reference_url": "https://security.archlinux.org/ASA-202101-27", "reference_id": "ASA-202101-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202101-27" }, { "reference_url": "https://security.archlinux.org/AVG-1481", "reference_id": "AVG-1481", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1481" }, { "reference_url": "https://security.gentoo.org/glsa/202208-02", "reference_id": "GLSA-202208-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0957", "reference_id": "RHSA-2021:0957", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0957" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0958", "reference_id": "RHSA-2021:0958", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0958" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1006", "reference_id": "RHSA-2021:1006", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1006" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1338", "reference_id": "RHSA-2021:1338", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1338" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1339", "reference_id": "RHSA-2021:1339", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1339" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1366", "reference_id": "RHSA-2021:1366", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1366" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1551", "reference_id": "RHSA-2021:1551", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1551" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1746", "reference_id": "RHSA-2021:1746", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1746" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2021", "reference_id": "RHSA-2021:2021", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2021" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2041", "reference_id": "RHSA-2021:2041", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2093", "reference_id": "RHSA-2021:2093", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2093" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2095", "reference_id": "RHSA-2021:2095", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2095" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2437", "reference_id": "RHSA-2021:2437", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2437" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2438", "reference_id": "RHSA-2021:2438", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2438" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2532", "reference_id": "RHSA-2021:2532", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2532" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2543", "reference_id": "RHSA-2021:2543", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2543" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2920", "reference_id": "RHSA-2021:2920", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2920" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3119", "reference_id": "RHSA-2021:3119", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3119" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3748", "reference_id": "RHSA-2021:3748", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3748" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4103", "reference_id": "RHSA-2021:4103", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4103" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4226", "reference_id": "RHSA-2021:4226", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4226" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0308", "reference_id": "RHSA-2022:0308", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0308" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74527?format=api", "purl": "pkg:ebuild/dev-lang/go@1.18.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/go@1.18.5" } ], "aliases": [ "CVE-2021-3114" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7ahs-f1qh-g7an" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36641?format=api", "vulnerability_id": "VCID-7c2m-bsd1-syaw", "summary": "Multiple vulnerabilities have been found in Go, the worst of which could result in remote code execution.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-27536", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00457", "scoring_system": "epss", "scoring_elements": "0.63991", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.00457", "scoring_system": "epss", "scoring_elements": "0.63893", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00457", "scoring_system": "epss", "scoring_elements": "0.6392", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00457", "scoring_system": "epss", "scoring_elements": "0.63877", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00457", "scoring_system": "epss", "scoring_elements": "0.63928", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00457", "scoring_system": "epss", "scoring_elements": "0.63945", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00457", "scoring_system": "epss", "scoring_elements": "0.63958", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00457", "scoring_system": "epss", "scoring_elements": "0.63944", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00457", "scoring_system": "epss", "scoring_elements": "0.63911", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00457", "scoring_system": "epss", "scoring_elements": "0.63946", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00457", "scoring_system": "epss", "scoring_elements": "0.63956", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00457", "scoring_system": "epss", "scoring_elements": "0.63964", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00457", "scoring_system": "epss", "scoring_elements": "0.63976", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00457", "scoring_system": "epss", "scoring_elements": "0.63975", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00457", "scoring_system": "epss", "scoring_elements": "0.63947", "published_at": "2026-05-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-27536" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202208-02", "reference_id": "GLSA-202208-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-02" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74527?format=api", "purl": "pkg:ebuild/dev-lang/go@1.18.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/go@1.18.5" } ], "aliases": [ "CVE-2022-27536" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7c2m-bsd1-syaw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36640?format=api", "vulnerability_id": "VCID-7e1n-pvrt-g3fy", "summary": "Multiple vulnerabilities have been found in Go, the worst of which could result in remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-24921.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-24921.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-24921", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00018", "scoring_system": "epss", "scoring_elements": "0.04592", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00018", "scoring_system": "epss", "scoring_elements": "0.04614", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00018", "scoring_system": "epss", "scoring_elements": "0.04626", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00018", "scoring_system": "epss", "scoring_elements": "0.04661", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00018", "scoring_system": "epss", "scoring_elements": "0.04673", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00018", "scoring_system": "epss", "scoring_elements": "0.04667", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00018", "scoring_system": "epss", "scoring_elements": "0.04649", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00018", "scoring_system": "epss", "scoring_elements": "0.04632", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00018", "scoring_system": "epss", "scoring_elements": "0.046", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00018", "scoring_system": "epss", "scoring_elements": "0.0461", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00018", "scoring_system": "epss", "scoring_elements": "0.0475", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00018", "scoring_system": "epss", "scoring_elements": "0.04784", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00018", "scoring_system": "epss", "scoring_elements": "0.04822", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00018", "scoring_system": "epss", "scoring_elements": "0.04836", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00018", "scoring_system": "epss", "scoring_elements": "0.04833", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.00018", "scoring_system": "epss", "scoring_elements": "0.04879", "published_at": "2026-05-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-24921" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24921", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24921" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2064857", "reference_id": "2064857", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2064857" }, { "reference_url": "https://security.gentoo.org/glsa/202208-02", "reference_id": "GLSA-202208-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5068", "reference_id": "RHSA-2022:5068", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5068" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5337", "reference_id": "RHSA-2022:5337", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5337" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5415", "reference_id": "RHSA-2022:5415", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5415" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5729", "reference_id": "RHSA-2022:5729", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5729" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5730", "reference_id": "RHSA-2022:5730", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5730" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5799", "reference_id": "RHSA-2022:5799", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5799" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6040", "reference_id": "RHSA-2022:6040", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6040" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6042", "reference_id": "RHSA-2022:6042", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6042" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6156", "reference_id": "RHSA-2022:6156", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6156" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6277", "reference_id": "RHSA-2022:6277", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6277" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6714", "reference_id": "RHSA-2022:6714", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6714" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0407", "reference_id": "RHSA-2023:0407", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0407" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74527?format=api", "purl": "pkg:ebuild/dev-lang/go@1.18.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/go@1.18.5" } ], "aliases": [ "CVE-2022-24921" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7e1n-pvrt-g3fy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36651?format=api", "vulnerability_id": "VCID-81aw-mk9s-eydd", "summary": "Multiple vulnerabilities have been found in Go, the worst of which could result in remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-32148.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-32148.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-32148", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17672", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17267", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17589", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17605", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17558", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17505", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17449", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17458", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17496", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17406", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17382", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17314", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17177", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17718", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17438", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.1753", "published_at": "2026-04-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-32148" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32148", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32148" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2107383", "reference_id": "2107383", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2107383" }, { "reference_url": "https://go.dev/cl/412857", "reference_id": "412857", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-23T08:15:49Z/" } ], "url": "https://go.dev/cl/412857" }, { "reference_url": "https://go.dev/issue/53423", "reference_id": "53423", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-23T08:15:49Z/" } ], "url": "https://go.dev/issue/53423" }, { "reference_url": "https://go.googlesource.com/go/+/b2cc0fecc2ccd80e6d5d16542cc684f97b3a9c8a", "reference_id": "b2cc0fecc2ccd80e6d5d16542cc684f97b3a9c8a", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-23T08:15:49Z/" } ], "url": "https://go.googlesource.com/go/+/b2cc0fecc2ccd80e6d5d16542cc684f97b3a9c8a" }, { "reference_url": "https://security.gentoo.org/glsa/202208-02", "reference_id": "GLSA-202208-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-02" }, { "reference_url": "https://pkg.go.dev/vuln/GO-2022-0520", "reference_id": "GO-2022-0520", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-23T08:15:49Z/" } ], "url": "https://pkg.go.dev/vuln/GO-2022-0520" }, { "reference_url": "https://groups.google.com/g/golang-announce/c/nqrv9fbR0zE", "reference_id": "nqrv9fbR0zE", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-23T08:15:49Z/" } ], "url": "https://groups.google.com/g/golang-announce/c/nqrv9fbR0zE" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5775", "reference_id": "RHSA-2022:5775", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5775" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5799", "reference_id": "RHSA-2022:5799", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5799" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5866", "reference_id": "RHSA-2022:5866", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5866" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6040", "reference_id": "RHSA-2022:6040", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6040" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6042", "reference_id": "RHSA-2022:6042", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6042" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6113", "reference_id": "RHSA-2022:6113", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6113" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6152", "reference_id": "RHSA-2022:6152", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6152" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6183", "reference_id": "RHSA-2022:6183", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6183" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6188", "reference_id": "RHSA-2022:6188", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6188" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6283", "reference_id": "RHSA-2022:6283", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6283" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6344", "reference_id": "RHSA-2022:6344", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6344" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6430", "reference_id": "RHSA-2022:6430", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6430" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7129", "reference_id": "RHSA-2022:7129", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7129" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7398", "reference_id": "RHSA-2022:7398", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7398" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7399", "reference_id": "RHSA-2022:7399", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7399" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7519", "reference_id": "RHSA-2022:7519", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7519" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7529", "reference_id": "RHSA-2022:7529", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7529" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7648", "reference_id": "RHSA-2022:7648", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7648" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8057", "reference_id": "RHSA-2022:8057", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8057" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8250", "reference_id": "RHSA-2022:8250", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8250" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8626", "reference_id": "RHSA-2022:8626", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8626" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:9047", "reference_id": "RHSA-2022:9047", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:9047" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0407", "reference_id": "RHSA-2023:0407", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0407" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0408", "reference_id": "RHSA-2023:0408", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0408" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1042", "reference_id": "RHSA-2023:1042", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1042" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1275", "reference_id": "RHSA-2023:1275", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1275" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2357", "reference_id": "RHSA-2023:2357", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2357" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2758", "reference_id": "RHSA-2023:2758", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2758" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2802", "reference_id": "RHSA-2023:2802", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2802" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3642", "reference_id": "RHSA-2023:3642", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3642" }, { "reference_url": "https://usn.ubuntu.com/6038-1/", "reference_id": "USN-6038-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6038-1/" }, { "reference_url": "https://usn.ubuntu.com/6038-2/", "reference_id": "USN-6038-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6038-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74527?format=api", "purl": "pkg:ebuild/dev-lang/go@1.18.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/go@1.18.5" } ], "aliases": [ "CVE-2022-32148" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-81aw-mk9s-eydd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36636?format=api", "vulnerability_id": "VCID-835d-4cep-d3ff", "summary": "Multiple vulnerabilities have been found in Go, the worst of which could result in remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-23772.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-23772.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-23772", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09419", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10135", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.102", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10097", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10172", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10233", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10269", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10228", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10209", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10081", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10058", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.1019", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10171", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11157", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.1109", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11022", "published_at": "2026-05-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-23772" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23772", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23772" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2053532", "reference_id": "2053532", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2053532" }, { "reference_url": "https://security.gentoo.org/glsa/202208-02", "reference_id": "GLSA-202208-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1819", "reference_id": "RHSA-2022:1819", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1819" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:4860", "reference_id": "RHSA-2022:4860", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:4860" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:4863", "reference_id": "RHSA-2022:4863", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:4863" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5004", "reference_id": "RHSA-2022:5004", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5004" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5068", "reference_id": "RHSA-2022:5068", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5068" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5730", "reference_id": "RHSA-2022:5730", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5730" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6155", "reference_id": "RHSA-2022:6155", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6155" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6156", "reference_id": "RHSA-2022:6156", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6156" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6526", "reference_id": "RHSA-2022:6526", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6526" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0408", "reference_id": "RHSA-2023:0408", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0408" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1529", "reference_id": "RHSA-2023:1529", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1529" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3914", "reference_id": "RHSA-2023:3914", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3914" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:5754", "reference_id": "RHSA-2024:5754", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:5754" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:6412", "reference_id": "RHSA-2024:6412", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:6412" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74527?format=api", "purl": "pkg:ebuild/dev-lang/go@1.18.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/go@1.18.5" } ], "aliases": [ "CVE-2022-23772" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-835d-4cep-d3ff" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36649?format=api", "vulnerability_id": "VCID-86mk-kwg6-63h6", "summary": "Multiple vulnerabilities have been found in Go, the worst of which could result in remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-30633.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-30633.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-30633", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00096", "scoring_system": "epss", "scoring_elements": "0.26617", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00096", "scoring_system": "epss", "scoring_elements": "0.2622", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.00096", "scoring_system": "epss", "scoring_elements": "0.26565", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00096", "scoring_system": "epss", "scoring_elements": "0.26571", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00096", "scoring_system": "epss", "scoring_elements": "0.26526", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00096", "scoring_system": "epss", "scoring_elements": "0.26468", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00096", "scoring_system": "epss", "scoring_elements": "0.26475", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00096", "scoring_system": "epss", "scoring_elements": "0.26445", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00096", "scoring_system": "epss", "scoring_elements": "0.26407", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00096", "scoring_system": "epss", "scoring_elements": "0.26342", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00096", "scoring_system": "epss", "scoring_elements": "0.26335", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00096", "scoring_system": "epss", "scoring_elements": "0.26284", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00096", "scoring_system": "epss", "scoring_elements": "0.26154", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.00096", "scoring_system": "epss", "scoring_elements": "0.26662", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00096", "scoring_system": "epss", "scoring_elements": "0.26447", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00096", "scoring_system": "epss", "scoring_elements": "0.26516", "published_at": "2026-04-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-30633" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-30633", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-30633" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2107392", "reference_id": "2107392", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2107392" }, { "reference_url": "https://go.dev/cl/417061", "reference_id": "417061", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-09T16:53:05Z/" } ], "url": "https://go.dev/cl/417061" }, { "reference_url": "https://go.dev/issue/53611", "reference_id": "53611", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-09T16:53:05Z/" } ], "url": "https://go.dev/issue/53611" }, { "reference_url": "https://go.googlesource.com/go/+/c4c1993fd2a5b26fe45c09592af6d3388a3b2e08", "reference_id": "c4c1993fd2a5b26fe45c09592af6d3388a3b2e08", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-09T16:53:05Z/" } ], "url": "https://go.googlesource.com/go/+/c4c1993fd2a5b26fe45c09592af6d3388a3b2e08" }, { "reference_url": "https://security.gentoo.org/glsa/202208-02", "reference_id": "GLSA-202208-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-02" }, { "reference_url": "https://pkg.go.dev/vuln/GO-2022-0523", "reference_id": "GO-2022-0523", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-09T16:53:05Z/" } ], "url": "https://pkg.go.dev/vuln/GO-2022-0523" }, { "reference_url": "https://groups.google.com/g/golang-announce/c/nqrv9fbR0zE", "reference_id": "nqrv9fbR0zE", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-09T16:53:05Z/" } ], "url": "https://groups.google.com/g/golang-announce/c/nqrv9fbR0zE" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5775", "reference_id": "RHSA-2022:5775", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5775" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5799", "reference_id": "RHSA-2022:5799", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5799" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5866", "reference_id": "RHSA-2022:5866", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5866" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6040", "reference_id": "RHSA-2022:6040", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6040" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6042", "reference_id": "RHSA-2022:6042", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6042" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6113", "reference_id": "RHSA-2022:6113", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6113" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6152", "reference_id": "RHSA-2022:6152", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6152" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6188", "reference_id": "RHSA-2022:6188", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6188" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6283", "reference_id": "RHSA-2022:6283", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6283" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7519", "reference_id": "RHSA-2022:7519", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7519" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7529", "reference_id": "RHSA-2022:7529", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7529" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8057", "reference_id": "RHSA-2022:8057", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8057" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:9047", "reference_id": "RHSA-2022:9047", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:9047" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0407", "reference_id": "RHSA-2023:0407", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0407" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0408", "reference_id": "RHSA-2023:0408", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0408" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1042", "reference_id": "RHSA-2023:1042", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1042" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2758", "reference_id": "RHSA-2023:2758", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2758" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2802", "reference_id": "RHSA-2023:2802", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2802" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3642", "reference_id": "RHSA-2023:3642", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3642" }, { "reference_url": "https://usn.ubuntu.com/6038-1/", "reference_id": "USN-6038-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6038-1/" }, { "reference_url": "https://usn.ubuntu.com/6038-2/", "reference_id": "USN-6038-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6038-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74527?format=api", "purl": "pkg:ebuild/dev-lang/go@1.18.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/go@1.18.5" } ], "aliases": [ "CVE-2022-30633" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-86mk-kwg6-63h6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36619?format=api", "vulnerability_id": "VCID-8c9g-rytj-z3g7", "summary": "Multiple vulnerabilities have been found in Go, the worst of which could result in remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3115.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3115.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3115", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32476", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32029", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32104", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.31963", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.3262", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32656", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32477", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32525", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32552", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32555", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32518", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32491", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32503", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.3247", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32305", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32189", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3115" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3115", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3115" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1918761", "reference_id": "1918761", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1918761" }, { "reference_url": "https://security.archlinux.org/ASA-202101-27", "reference_id": "ASA-202101-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202101-27" }, { "reference_url": "https://security.archlinux.org/AVG-1481", "reference_id": "AVG-1481", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1481" }, { "reference_url": "https://security.gentoo.org/glsa/202208-02", "reference_id": "GLSA-202208-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1338", "reference_id": "RHSA-2021:1338", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1338" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1339", "reference_id": "RHSA-2021:1339", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1339" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1746", "reference_id": "RHSA-2021:1746", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1746" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2021", "reference_id": "RHSA-2021:2021", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2021" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2093", "reference_id": "RHSA-2021:2093", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2093" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2095", "reference_id": "RHSA-2021:2095", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2095" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74527?format=api", "purl": "pkg:ebuild/dev-lang/go@1.18.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/go@1.18.5" } ], "aliases": [ "CVE-2021-3115" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8c9g-rytj-z3g7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36627?format=api", "vulnerability_id": "VCID-ayxa-s9j4-k7hd", "summary": "Multiple vulnerabilities have been found in Go, the worst of which could result in remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-34558.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-34558.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-34558", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00917", "scoring_system": "epss", "scoring_elements": "0.76041", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.00917", "scoring_system": "epss", "scoring_elements": "0.7598", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00917", "scoring_system": "epss", "scoring_elements": "0.7599", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00917", "scoring_system": "epss", "scoring_elements": "0.76001", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00917", "scoring_system": "epss", "scoring_elements": "0.76011", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.00917", "scoring_system": "epss", "scoring_elements": "0.75899", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00917", "scoring_system": "epss", "scoring_elements": "0.75878", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00917", "scoring_system": "epss", "scoring_elements": "0.75911", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00917", "scoring_system": "epss", "scoring_elements": "0.75924", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00917", "scoring_system": "epss", "scoring_elements": "0.75947", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00917", "scoring_system": "epss", "scoring_elements": "0.75925", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00917", "scoring_system": "epss", "scoring_elements": "0.75918", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00917", "scoring_system": "epss", "scoring_elements": "0.75955", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00917", "scoring_system": "epss", "scoring_elements": "0.75957", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00917", "scoring_system": "epss", "scoring_elements": "0.75942", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01475", "scoring_system": "epss", "scoring_elements": "0.80907", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01475", "scoring_system": "epss", "scoring_elements": "0.80898", "published_at": "2026-04-01T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-34558" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-34558", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-34558" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1983596", "reference_id": "1983596", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1983596" }, { "reference_url": "https://security.archlinux.org/ASA-202107-42", "reference_id": "ASA-202107-42", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202107-42" }, { "reference_url": "https://security.archlinux.org/AVG-2147", "reference_id": "AVG-2147", "reference_type": "", "scores": [ { "value": "Low", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2147" }, { "reference_url": "https://security.gentoo.org/glsa/202208-02", "reference_id": "GLSA-202208-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2983", "reference_id": "RHSA-2021:2983", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2983" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2984", "reference_id": "RHSA-2021:2984", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2984" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3009", "reference_id": "RHSA-2021:3009", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3009" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3015", "reference_id": "RHSA-2021:3015", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3015" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3076", "reference_id": "RHSA-2021:3076", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3076" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3146", "reference_id": "RHSA-2021:3146", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3146" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3229", "reference_id": "RHSA-2021:3229", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3229" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3248", "reference_id": "RHSA-2021:3248", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3248" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3361", "reference_id": "RHSA-2021:3361", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3361" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3555", "reference_id": "RHSA-2021:3555", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3555" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3556", "reference_id": "RHSA-2021:3556", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3556" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3598", "reference_id": "RHSA-2021:3598", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3598" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3733", "reference_id": "RHSA-2021:3733", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3733" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3759", "reference_id": "RHSA-2021:3759", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3759" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3820", "reference_id": "RHSA-2021:3820", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3820" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4104", "reference_id": "RHSA-2021:4104", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4104" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4226", "reference_id": "RHSA-2021:4226", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4226" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4582", "reference_id": "RHSA-2021:4582", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4582" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4722", "reference_id": "RHSA-2021:4722", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4722" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:5085", "reference_id": "RHSA-2021:5085", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:5085" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:5086", "reference_id": "RHSA-2021:5086", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:5086" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0191", "reference_id": "RHSA-2022:0191", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0191" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0237", "reference_id": "RHSA-2022:0237", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0237" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0260", "reference_id": "RHSA-2022:0260", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0260" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0577", "reference_id": "RHSA-2022:0577", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0577" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0988", "reference_id": "RHSA-2022:0988", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0988" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0998", "reference_id": "RHSA-2022:0998", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0998" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1329", "reference_id": "RHSA-2022:1329", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1329" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1372", "reference_id": "RHSA-2022:1372", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1372" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7954", "reference_id": "RHSA-2022:7954", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7954" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2988", "reference_id": "RHSA-2024:2988", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2988" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74527?format=api", "purl": "pkg:ebuild/dev-lang/go@1.18.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/go@1.18.5" } ], "aliases": [ "CVE-2021-34558" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ayxa-s9j4-k7hd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36615?format=api", "vulnerability_id": "VCID-bhax-mgs9-t3ga", "summary": "Multiple vulnerabilities have been found in Go, the worst of which could result in remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-27918.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-27918.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-27918", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06549", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06613", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06657", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06638", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06687", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06721", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.0672", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06714", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06707", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06641", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06633", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06789", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06797", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06816", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06792", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06829", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06982", "published_at": "2026-05-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-27918" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27918", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27918" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1937901", "reference_id": "1937901", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1937901" }, { "reference_url": "https://security.archlinux.org/AVG-1668", "reference_id": "AVG-1668", "reference_type": "", "scores": [ { "value": "Low", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1668" }, { "reference_url": "https://security.gentoo.org/glsa/202208-02", "reference_id": "GLSA-202208-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2704", "reference_id": "RHSA-2021:2704", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2704" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2705", "reference_id": "RHSA-2021:2705", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2705" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3076", "reference_id": "RHSA-2021:3076", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3076" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3555", "reference_id": "RHSA-2021:3555", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3555" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3556", "reference_id": "RHSA-2021:3556", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3556" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74527?format=api", "purl": "pkg:ebuild/dev-lang/go@1.18.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/go@1.18.5" } ], "aliases": [ "CVE-2021-27918" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bhax-mgs9-t3ga" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36614?format=api", "vulnerability_id": "VCID-ce67-xmrt-yfd1", "summary": "Multiple vulnerabilities have been found in Go, the worst of which could result in remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-28367.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-28367.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-28367", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00272", "scoring_system": "epss", "scoring_elements": "0.50592", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00272", "scoring_system": "epss", "scoring_elements": "0.50597", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.00272", "scoring_system": "epss", "scoring_elements": "0.50619", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00272", "scoring_system": "epss", "scoring_elements": "0.50544", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.00272", "scoring_system": "epss", "scoring_elements": "0.50645", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00272", "scoring_system": "epss", "scoring_elements": "0.50671", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00272", "scoring_system": "epss", "scoring_elements": "0.50626", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00272", "scoring_system": "epss", "scoring_elements": "0.50682", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00272", "scoring_system": "epss", "scoring_elements": "0.50678", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00272", "scoring_system": "epss", "scoring_elements": "0.5072", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00272", "scoring_system": "epss", "scoring_elements": "0.50697", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00272", "scoring_system": "epss", "scoring_elements": "0.50723", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00272", "scoring_system": "epss", "scoring_elements": "0.50729", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00272", "scoring_system": "epss", "scoring_elements": "0.50709", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00272", "scoring_system": "epss", "scoring_elements": "0.50656", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00272", "scoring_system": "epss", "scoring_elements": "0.50664", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-28367" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28367", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28367" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1897646", "reference_id": "1897646", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1897646" }, { "reference_url": "https://security.archlinux.org/ASA-202011-16", "reference_id": "ASA-202011-16", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202011-16" }, { "reference_url": "https://security.archlinux.org/AVG-1278", "reference_id": "AVG-1278", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1278" }, { "reference_url": "https://security.gentoo.org/glsa/202208-02", "reference_id": "GLSA-202208-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5333", "reference_id": "RHSA-2020:5333", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5333" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5493", "reference_id": "RHSA-2020:5493", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5493" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0145", "reference_id": "RHSA-2021:0145", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0145" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0146", "reference_id": "RHSA-2021:0146", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0146" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74527?format=api", "purl": "pkg:ebuild/dev-lang/go@1.18.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/go@1.18.5" } ], "aliases": [ "CVE-2020-28367" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ce67-xmrt-yfd1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36621?format=api", "vulnerability_id": "VCID-cr7c-xuh8-guhy", "summary": "Multiple vulnerabilities have been found in Go, the worst of which could result in remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-31525.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-31525.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-31525", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.06096", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.05695", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.0573", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.0577", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.05766", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.05804", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.05829", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.05808", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.05799", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.05793", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.05758", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.05765", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.0591", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.05941", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.05976", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.05984", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.06001", "published_at": "2026-05-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-31525" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-31525", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-31525" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://github.com/golang/go", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/golang/go" }, { "reference_url": "https://github.com/golang/go/issues/45710", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/golang/go/issues/45710" }, { "reference_url": "https://go.dev/cl/313069", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://go.dev/cl/313069" }, { "reference_url": "https://go.dev/issue/45710", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://go.dev/issue/45710" }, { "reference_url": "https://go.googlesource.com/net/+/89ef3d95e781148a0951956029c92a211477f7f9", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://go.googlesource.com/net/+/89ef3d95e781148a0951956029c92a211477f7f9" }, { "reference_url": "https://groups.google.com/g/golang-announce/c/cu9SP4eSXMc", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://groups.google.com/g/golang-announce/c/cu9SP4eSXMc" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ISRZZ6NY5R2TBYE72KZFOCO25TEUQTBF", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ISRZZ6NY5R2TBYE72KZFOCO25TEUQTBF" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2021-31525", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-31525" }, { "reference_url": "https://pkg.go.dev/vuln/GO-2022-0236", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://pkg.go.dev/vuln/GO-2022-0236" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1958341", "reference_id": "1958341", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1958341" }, { "reference_url": "https://security.archlinux.org/AVG-1927", "reference_id": "AVG-1927", "reference_type": "", "scores": [ { "value": "Low", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1927" }, { "reference_url": "https://security.gentoo.org/glsa/202208-02", "reference_id": "GLSA-202208-02", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://security.gentoo.org/glsa/202208-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2543", "reference_id": "RHSA-2021:2543", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2543" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2704", "reference_id": "RHSA-2021:2704", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2704" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2705", "reference_id": "RHSA-2021:2705", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2705" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2983", "reference_id": "RHSA-2021:2983", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2983" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2984", "reference_id": "RHSA-2021:2984", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2984" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3076", "reference_id": "RHSA-2021:3076", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3076" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3248", "reference_id": "RHSA-2021:3248", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3248" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3487", "reference_id": "RHSA-2021:3487", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3487" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3555", "reference_id": "RHSA-2021:3555", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3555" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3556", "reference_id": "RHSA-2021:3556", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3556" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3733", "reference_id": "RHSA-2021:3733", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3733" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3748", "reference_id": "RHSA-2021:3748", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3748" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3759", "reference_id": "RHSA-2021:3759", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3759" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4103", "reference_id": "RHSA-2021:4103", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4103" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4104", "reference_id": "RHSA-2021:4104", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4104" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:5072", "reference_id": "RHSA-2021:5072", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:5072" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0191", "reference_id": "RHSA-2022:0191", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0191" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0308", "reference_id": "RHSA-2022:0308", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0308" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0577", "reference_id": "RHSA-2022:0577", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0577" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74527?format=api", "purl": "pkg:ebuild/dev-lang/go@1.18.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/go@1.18.5" } ], "aliases": [ "CVE-2021-31525", "GHSA-h86h-8ppg-mxmh" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-cr7c-xuh8-guhy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36639?format=api", "vulnerability_id": "VCID-dsm8-ck8e-wfdh", "summary": "Multiple vulnerabilities have been found in Go, the worst of which could result in remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-24675.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-24675.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-24675", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00134", "scoring_system": "epss", "scoring_elements": "0.32505", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.00179", "scoring_system": "epss", "scoring_elements": "0.39576", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00179", "scoring_system": "epss", "scoring_elements": "0.39599", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00179", "scoring_system": "epss", "scoring_elements": "0.39515", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00179", "scoring_system": "epss", "scoring_elements": "0.3957", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00179", "scoring_system": "epss", "scoring_elements": "0.39586", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00179", "scoring_system": "epss", "scoring_elements": "0.39596", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00179", "scoring_system": "epss", "scoring_elements": "0.39558", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00179", "scoring_system": "epss", "scoring_elements": "0.39542", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00179", "scoring_system": "epss", "scoring_elements": "0.39592", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00179", "scoring_system": "epss", "scoring_elements": "0.39562", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00179", "scoring_system": "epss", "scoring_elements": "0.39478", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00179", "scoring_system": "epss", "scoring_elements": "0.39283", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00179", "scoring_system": "epss", "scoring_elements": "0.39267", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00179", "scoring_system": "epss", "scoring_elements": "0.39186", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00179", "scoring_system": "epss", "scoring_elements": "0.39059", "published_at": "2026-05-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-24675" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2077688", "reference_id": "2077688", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2077688" }, { "reference_url": "https://security.gentoo.org/glsa/202208-02", "reference_id": "GLSA-202208-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5006", "reference_id": "RHSA-2022:5006", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5006" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5068", "reference_id": "RHSA-2022:5068", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5068" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5337", "reference_id": "RHSA-2022:5337", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5337" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5415", "reference_id": "RHSA-2022:5415", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5415" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5729", "reference_id": "RHSA-2022:5729", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5729" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5730", "reference_id": "RHSA-2022:5730", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5730" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5799", "reference_id": "RHSA-2022:5799", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5799" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5840", "reference_id": "RHSA-2022:5840", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5840" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6040", "reference_id": "RHSA-2022:6040", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6040" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6042", "reference_id": "RHSA-2022:6042", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6042" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6094", "reference_id": "RHSA-2022:6094", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6094" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6152", "reference_id": "RHSA-2022:6152", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6152" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6155", "reference_id": "RHSA-2022:6155", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6155" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6156", "reference_id": "RHSA-2022:6156", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6156" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6277", "reference_id": "RHSA-2022:6277", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6277" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6290", "reference_id": "RHSA-2022:6290", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6290" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6430", "reference_id": "RHSA-2022:6430", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6430" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6526", "reference_id": "RHSA-2022:6526", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6526" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6714", "reference_id": "RHSA-2022:6714", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6714" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7058", "reference_id": "RHSA-2022:7058", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7058" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8750", "reference_id": "RHSA-2022:8750", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8750" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1529", "reference_id": "RHSA-2023:1529", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1529" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3642", "reference_id": "RHSA-2023:3642", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3642" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3914", "reference_id": "RHSA-2023:3914", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3914" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74527?format=api", "purl": "pkg:ebuild/dev-lang/go@1.18.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/go@1.18.5" } ], "aliases": [ "CVE-2022-24675" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dsm8-ck8e-wfdh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36648?format=api", "vulnerability_id": "VCID-g8y7-jdy7-afdh", "summary": "Multiple vulnerabilities have been found in Go, the worst of which could result in remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-30632.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-30632.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-30632", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00096", "scoring_system": "epss", "scoring_elements": "0.26617", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00096", "scoring_system": "epss", "scoring_elements": "0.26662", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00096", "scoring_system": "epss", "scoring_elements": "0.26447", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00096", "scoring_system": "epss", "scoring_elements": "0.26516", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00096", "scoring_system": "epss", "scoring_elements": "0.26565", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00096", "scoring_system": "epss", "scoring_elements": "0.26571", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00096", "scoring_system": "epss", "scoring_elements": "0.26526", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00096", "scoring_system": "epss", "scoring_elements": "0.26468", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00096", "scoring_system": "epss", "scoring_elements": "0.26475", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00096", "scoring_system": "epss", "scoring_elements": "0.26445", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00096", "scoring_system": "epss", "scoring_elements": "0.26407", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00096", "scoring_system": "epss", "scoring_elements": "0.2622", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.00096", "scoring_system": "epss", "scoring_elements": "0.26284", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00096", "scoring_system": "epss", "scoring_elements": "0.26154", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.00114", "scoring_system": "epss", "scoring_elements": "0.29798", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00114", "scoring_system": "epss", "scoring_elements": "0.29685", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-30632" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-30632", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-30632" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2107386", "reference_id": "2107386", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2107386" }, { "reference_url": "https://security.gentoo.org/glsa/202208-02", "reference_id": "GLSA-202208-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5775", "reference_id": "RHSA-2022:5775", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5775" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5799", "reference_id": "RHSA-2022:5799", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5799" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5866", "reference_id": "RHSA-2022:5866", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5866" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6040", "reference_id": "RHSA-2022:6040", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6040" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6042", "reference_id": "RHSA-2022:6042", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6042" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6113", "reference_id": "RHSA-2022:6113", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6113" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6152", "reference_id": "RHSA-2022:6152", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6152" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6188", "reference_id": "RHSA-2022:6188", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6188" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6283", "reference_id": "RHSA-2022:6283", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6283" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7058", "reference_id": "RHSA-2022:7058", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7058" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7129", "reference_id": "RHSA-2022:7129", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7129" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7519", "reference_id": "RHSA-2022:7519", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7519" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7529", "reference_id": "RHSA-2022:7529", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7529" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7648", "reference_id": "RHSA-2022:7648", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7648" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8057", "reference_id": "RHSA-2022:8057", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8057" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8098", "reference_id": "RHSA-2022:8098", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8098" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8250", "reference_id": "RHSA-2022:8250", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8250" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8634", "reference_id": "RHSA-2022:8634", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8634" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:9047", "reference_id": "RHSA-2022:9047", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:9047" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0407", "reference_id": "RHSA-2023:0407", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0407" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0408", "reference_id": "RHSA-2023:0408", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0408" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1042", "reference_id": "RHSA-2023:1042", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1042" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1275", "reference_id": "RHSA-2023:1275", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1275" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1529", "reference_id": "RHSA-2023:1529", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1529" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2357", "reference_id": "RHSA-2023:2357", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2357" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2758", "reference_id": "RHSA-2023:2758", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2758" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2802", "reference_id": "RHSA-2023:2802", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2802" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3642", "reference_id": "RHSA-2023:3642", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3642" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2180", "reference_id": "RHSA-2024:2180", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2180" }, { "reference_url": "https://usn.ubuntu.com/6038-1/", "reference_id": "USN-6038-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6038-1/" }, { "reference_url": "https://usn.ubuntu.com/6038-2/", "reference_id": "USN-6038-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6038-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74527?format=api", "purl": "pkg:ebuild/dev-lang/go@1.18.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/go@1.18.5" } ], "aliases": [ "CVE-2022-30632" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-g8y7-jdy7-afdh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36645?format=api", "vulnerability_id": "VCID-k4dy-pv3f-4qas", "summary": "Multiple vulnerabilities have been found in Go, the worst of which could result in remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-30629.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-30629.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-30629", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20536", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20197", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20462", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20487", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20441", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20385", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20374", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20376", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20373", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20248", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20244", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.2021", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20122", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20595", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20324", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20405", "published_at": "2026-04-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-30629" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-30629", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-30629" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2092793", "reference_id": "2092793", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2092793" }, { "reference_url": "https://go.dev/cl/405994", "reference_id": "405994", "reference_type": "", "scores": [ { "value": "3.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-24T20:38:04Z/" } ], "url": "https://go.dev/cl/405994" }, { "reference_url": "https://go.dev/issue/52814", "reference_id": "52814", "reference_type": "", "scores": [ { "value": "3.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-24T20:38:04Z/" } ], "url": "https://go.dev/issue/52814" }, { "reference_url": "https://go.googlesource.com/go/+/fe4de36198794c447fbd9d7cc2d7199a506c76a5", "reference_id": "fe4de36198794c447fbd9d7cc2d7199a506c76a5", "reference_type": "", "scores": [ { "value": "3.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-24T20:38:04Z/" } ], "url": "https://go.googlesource.com/go/+/fe4de36198794c447fbd9d7cc2d7199a506c76a5" }, { "reference_url": "https://security.gentoo.org/glsa/202208-02", "reference_id": "GLSA-202208-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-02" }, { "reference_url": "https://pkg.go.dev/vuln/GO-2022-0531", "reference_id": "GO-2022-0531", "reference_type": "", "scores": [ { "value": "3.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-24T20:38:04Z/" } ], "url": "https://pkg.go.dev/vuln/GO-2022-0531" }, { "reference_url": "https://groups.google.com/g/golang-announce/c/TzIC9-t8Ytg/m/IWz5T6x7AAAJ", "reference_id": "IWz5T6x7AAAJ", "reference_type": "", "scores": [ { "value": "3.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-24T20:38:04Z/" } ], "url": "https://groups.google.com/g/golang-announce/c/TzIC9-t8Ytg/m/IWz5T6x7AAAJ" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5775", "reference_id": "RHSA-2022:5775", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5775" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5799", "reference_id": "RHSA-2022:5799", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5799" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5866", "reference_id": "RHSA-2022:5866", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5866" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6040", "reference_id": "RHSA-2022:6040", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6040" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6042", "reference_id": "RHSA-2022:6042", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6042" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6102", "reference_id": "RHSA-2022:6102", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6102" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6103", "reference_id": "RHSA-2022:6103", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6103" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6152", "reference_id": "RHSA-2022:6152", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6152" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6277", "reference_id": "RHSA-2022:6277", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6277" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6290", "reference_id": "RHSA-2022:6290", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6290" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6430", "reference_id": "RHSA-2022:6430", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6430" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6535", "reference_id": "RHSA-2022:6535", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6535" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:9047", "reference_id": "RHSA-2022:9047", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:9047" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0407", "reference_id": "RHSA-2023:0407", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0407" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0408", "reference_id": "RHSA-2023:0408", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0408" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1275", "reference_id": "RHSA-2023:1275", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1275" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1529", "reference_id": "RHSA-2023:1529", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1529" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2253", "reference_id": "RHSA-2023:2253", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2253" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2282", "reference_id": "RHSA-2023:2282", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2282" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2283", "reference_id": "RHSA-2023:2283", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2283" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2367", "reference_id": "RHSA-2023:2367", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2367" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2758", "reference_id": "RHSA-2023:2758", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2758" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3642", "reference_id": "RHSA-2023:3642", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3642" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3914", "reference_id": "RHSA-2023:3914", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3914" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:4488", "reference_id": "RHSA-2023:4488", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:4488" }, { "reference_url": "https://usn.ubuntu.com/6038-1/", "reference_id": "USN-6038-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6038-1/" }, { "reference_url": "https://usn.ubuntu.com/6038-2/", "reference_id": "USN-6038-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6038-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74527?format=api", "purl": "pkg:ebuild/dev-lang/go@1.18.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/go@1.18.5" } ], "aliases": [ "CVE-2022-30629" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-k4dy-pv3f-4qas" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36623?format=api", "vulnerability_id": "VCID-kd6v-aemf-3khm", "summary": "Multiple vulnerabilities have been found in Go, the worst of which could result in remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-33196.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-33196.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-33196", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.16726", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.16901", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.16802", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.16782", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.16738", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.16608", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17445", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17595", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17613", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17566", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17514", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17458", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17467", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17517", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17725", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17536", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.1768", "published_at": "2026-04-02T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-33196" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-33196", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-33196" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1965503", "reference_id": "1965503", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1965503" }, { "reference_url": "https://security.archlinux.org/ASA-202106-42", "reference_id": "ASA-202106-42", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202106-42" }, { "reference_url": "https://security.archlinux.org/AVG-2006", "reference_id": "AVG-2006", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2006" }, { "reference_url": "https://security.gentoo.org/glsa/202208-02", "reference_id": "GLSA-202208-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2634", "reference_id": "RHSA-2021:2634", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2634" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2704", "reference_id": "RHSA-2021:2704", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2704" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2705", "reference_id": "RHSA-2021:2705", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2705" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2983", "reference_id": "RHSA-2021:2983", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2983" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2984", "reference_id": "RHSA-2021:2984", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2984" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3076", "reference_id": "RHSA-2021:3076", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3076" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3229", "reference_id": "RHSA-2021:3229", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3229" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3361", "reference_id": "RHSA-2021:3361", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3361" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3555", "reference_id": "RHSA-2021:3555", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3555" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3556", "reference_id": "RHSA-2021:3556", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3556" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3758", "reference_id": "RHSA-2021:3758", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3758" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74527?format=api", "purl": "pkg:ebuild/dev-lang/go@1.18.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/go@1.18.5" } ], "aliases": [ "CVE-2021-33196" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-kd6v-aemf-3khm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36644?format=api", "vulnerability_id": "VCID-mnxk-x51q-wkfp", "summary": "Multiple vulnerabilities have been found in Go, the worst of which could result in remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-29526.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-29526.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-29526", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.39567", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.39718", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.39987", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.40016", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.39966", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.39985", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.40022", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.40011", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.39945", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.40024", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.39998", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.39502", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.39632", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.39732", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.39908", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-29526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-29526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-29526" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://github.com/golang/go", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/golang/go" }, { "reference_url": "https://github.com/golang/go/issues/52313", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/golang/go/issues/52313" }, { "reference_url": "https://go.dev/cl/399539", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://go.dev/cl/399539" }, { "reference_url": "https://go.dev/cl/400074", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://go.dev/cl/400074" }, { "reference_url": "https://go.dev/issue/52313", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://go.dev/issue/52313" }, { "reference_url": "https://groups.google.com/g/golang-announce", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://groups.google.com/g/golang-announce" }, { "reference_url": "https://groups.google.com/g/golang-announce/c/Y5qrqw_lWdU", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://groups.google.com/g/golang-announce/c/Y5qrqw_lWdU" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/Q6GE5EQGE4L2KRVGW4T75QVIYAXCLO5X", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/Q6GE5EQGE4L2KRVGW4T75QVIYAXCLO5X" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RQXU752ALW53OJAF5MG3WMR5CCZVLWW6", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RQXU752ALW53OJAF5MG3WMR5CCZVLWW6" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/Z55VUVGO7E5PJFXIOVAY373NZRHBNCI5", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/Z55VUVGO7E5PJFXIOVAY373NZRHBNCI5" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZY2SLWOQR4ZURQ7UBRZ7JIX6H6F5JHJR", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZY2SLWOQR4ZURQ7UBRZ7JIX6H6F5JHJR" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-29526", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-29526" }, { "reference_url": "https://pkg.go.dev/vuln/GO-2022-0493", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://pkg.go.dev/vuln/GO-2022-0493" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20220729-0001", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://security.netapp.com/advisory/ntap-20220729-0001" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2084085", "reference_id": "2084085", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2084085" }, { "reference_url": "https://security.gentoo.org/glsa/202208-02", "reference_id": "GLSA-202208-02", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://security.gentoo.org/glsa/202208-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5337", "reference_id": "RHSA-2022:5337", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5337" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5699", "reference_id": "RHSA-2022:5699", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5699" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5729", "reference_id": "RHSA-2022:5729", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5729" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5799", "reference_id": "RHSA-2022:5799", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5799" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5840", "reference_id": "RHSA-2022:5840", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5840" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6156", "reference_id": "RHSA-2022:6156", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6156" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6277", "reference_id": "RHSA-2022:6277", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6277" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6714", "reference_id": "RHSA-2022:6714", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6714" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0408", "reference_id": "RHSA-2023:0408", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0408" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1529", "reference_id": "RHSA-2023:1529", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1529" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3642", "reference_id": "RHSA-2023:3642", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3642" }, { "reference_url": "https://usn.ubuntu.com/6038-1/", "reference_id": "USN-6038-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6038-1/" }, { "reference_url": "https://usn.ubuntu.com/6038-2/", "reference_id": "USN-6038-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6038-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74527?format=api", "purl": "pkg:ebuild/dev-lang/go@1.18.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/go@1.18.5" } ], "aliases": [ "CVE-2022-29526", "GHSA-p782-xgp4-8hr8" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mnxk-x51q-wkfp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36635?format=api", "vulnerability_id": "VCID-ps89-8u5a-kfc8", "summary": "Multiple vulnerabilities have been found in Go, the worst of which could result in remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1705.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1705.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-1705", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.11944", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16637", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.1681", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16652", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16737", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16791", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16771", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16727", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.1667", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16606", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16615", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16653", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16555", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16544", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16509", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16374", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16867", "published_at": "2026-04-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-1705" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1705", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1705" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2107374", "reference_id": "2107374", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2107374" }, { "reference_url": "https://go.dev/cl/409874", "reference_id": "409874", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-24T20:38:47Z/" } ], "url": "https://go.dev/cl/409874" }, { "reference_url": "https://go.dev/cl/410714", "reference_id": "410714", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-24T20:38:47Z/" } ], "url": "https://go.dev/cl/410714" }, { "reference_url": "https://go.dev/issue/53188", "reference_id": "53188", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-24T20:38:47Z/" } ], "url": "https://go.dev/issue/53188" }, { "reference_url": "https://go.googlesource.com/go/+/e5017a93fcde94f09836200bca55324af037ee5f", "reference_id": "e5017a93fcde94f09836200bca55324af037ee5f", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-24T20:38:47Z/" } ], "url": "https://go.googlesource.com/go/+/e5017a93fcde94f09836200bca55324af037ee5f" }, { "reference_url": "https://security.gentoo.org/glsa/202208-02", "reference_id": "GLSA-202208-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-02" }, { "reference_url": "https://pkg.go.dev/vuln/GO-2022-0525", "reference_id": "GO-2022-0525", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-24T20:38:47Z/" } ], "url": "https://pkg.go.dev/vuln/GO-2022-0525" }, { "reference_url": "https://groups.google.com/g/golang-announce/c/nqrv9fbR0zE", "reference_id": "nqrv9fbR0zE", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-24T20:38:47Z/" } ], "url": "https://groups.google.com/g/golang-announce/c/nqrv9fbR0zE" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5068", "reference_id": "RHSA-2022:5068", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5068" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5775", "reference_id": "RHSA-2022:5775", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5775" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5799", "reference_id": "RHSA-2022:5799", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5799" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5866", "reference_id": "RHSA-2022:5866", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5866" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6040", "reference_id": "RHSA-2022:6040", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6040" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6042", "reference_id": "RHSA-2022:6042", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6042" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6113", "reference_id": "RHSA-2022:6113", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6113" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6152", "reference_id": "RHSA-2022:6152", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6152" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6183", "reference_id": "RHSA-2022:6183", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6183" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6187", "reference_id": "RHSA-2022:6187", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6187" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6188", "reference_id": "RHSA-2022:6188", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6188" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6283", "reference_id": "RHSA-2022:6283", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6283" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6344", "reference_id": "RHSA-2022:6344", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6344" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6430", "reference_id": "RHSA-2022:6430", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6430" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7129", "reference_id": "RHSA-2022:7129", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7129" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7398", "reference_id": "RHSA-2022:7398", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7398" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7399", "reference_id": "RHSA-2022:7399", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7399" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7519", "reference_id": "RHSA-2022:7519", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7519" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7529", "reference_id": "RHSA-2022:7529", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7529" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7648", "reference_id": "RHSA-2022:7648", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7648" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8057", "reference_id": "RHSA-2022:8057", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8057" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8098", "reference_id": "RHSA-2022:8098", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8098" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8250", "reference_id": "RHSA-2022:8250", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8250" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8626", "reference_id": "RHSA-2022:8626", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8626" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:9047", "reference_id": "RHSA-2022:9047", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:9047" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0407", "reference_id": "RHSA-2023:0407", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0407" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0408", "reference_id": "RHSA-2023:0408", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0408" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1042", "reference_id": "RHSA-2023:1042", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1042" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1275", "reference_id": "RHSA-2023:1275", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1275" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1529", "reference_id": "RHSA-2023:1529", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1529" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2357", "reference_id": "RHSA-2023:2357", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2357" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2758", "reference_id": "RHSA-2023:2758", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2758" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2802", "reference_id": "RHSA-2023:2802", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2802" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3642", "reference_id": "RHSA-2023:3642", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3642" }, { "reference_url": "https://usn.ubuntu.com/6038-1/", "reference_id": "USN-6038-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6038-1/" }, { "reference_url": "https://usn.ubuntu.com/6038-2/", "reference_id": "USN-6038-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6038-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74527?format=api", "purl": "pkg:ebuild/dev-lang/go@1.18.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/go@1.18.5" } ], "aliases": [ "CVE-2022-1705" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ps89-8u5a-kfc8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36628?format=api", "vulnerability_id": "VCID-qn4v-xah4-fya7", "summary": "Multiple vulnerabilities have been found in Go, the worst of which could result in remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-36221.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-36221.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-36221", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00231", "scoring_system": "epss", "scoring_elements": "0.45869", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00231", "scoring_system": "epss", "scoring_elements": "0.45916", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00231", "scoring_system": "epss", "scoring_elements": "0.45937", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00231", "scoring_system": "epss", "scoring_elements": "0.45885", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00231", "scoring_system": "epss", "scoring_elements": "0.45941", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00231", "scoring_system": "epss", "scoring_elements": "0.45938", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00231", "scoring_system": "epss", "scoring_elements": "0.45961", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00231", "scoring_system": "epss", "scoring_elements": "0.45932", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00231", "scoring_system": "epss", "scoring_elements": "0.45939", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00231", "scoring_system": "epss", "scoring_elements": "0.45991", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00231", "scoring_system": "epss", "scoring_elements": "0.45987", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00231", "scoring_system": "epss", "scoring_elements": "0.45882", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00231", "scoring_system": "epss", "scoring_elements": "0.45892", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00231", "scoring_system": "epss", "scoring_elements": "0.45835", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00231", "scoring_system": "epss", "scoring_elements": "0.45733", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.00231", "scoring_system": "epss", "scoring_elements": "0.45796", "published_at": "2026-05-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-36221" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-36221", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-36221" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1995656", "reference_id": "1995656", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1995656" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991961", "reference_id": "991961", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991961" }, { "reference_url": "https://security.archlinux.org/AVG-2259", "reference_id": "AVG-2259", "reference_type": "", "scores": [ { "value": "Low", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2259" }, { "reference_url": "https://security.gentoo.org/glsa/202208-02", "reference_id": "GLSA-202208-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4156", "reference_id": "RHSA-2021:4156", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4156" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4765", "reference_id": "RHSA-2021:4765", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4765" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4766", "reference_id": "RHSA-2021:4766", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4766" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0557", "reference_id": "RHSA-2022:0557", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0557" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0561", "reference_id": "RHSA-2022:0561", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0561" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0577", "reference_id": "RHSA-2022:0577", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0577" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0855", "reference_id": "RHSA-2022:0855", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0855" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1276", "reference_id": "RHSA-2022:1276", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1276" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1361", "reference_id": "RHSA-2022:1361", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1361" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1372", "reference_id": "RHSA-2022:1372", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1372" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1396", "reference_id": "RHSA-2022:1396", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1396" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7457", "reference_id": "RHSA-2022:7457", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7457" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74527?format=api", "purl": "pkg:ebuild/dev-lang/go@1.18.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/go@1.18.5" } ], "aliases": [ "CVE-2021-36221" ], "risk_score": 2.6, "exploitability": "0.5", "weighted_severity": "5.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qn4v-xah4-fya7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36629?format=api", "vulnerability_id": "VCID-rmev-jnbb-2yat", "summary": "Multiple vulnerabilities have been found in Go, the worst of which could result in remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-38297.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-38297.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-38297", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.10629", "scoring_system": "epss", "scoring_elements": "0.93344", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.10629", "scoring_system": "epss", "scoring_elements": "0.9332", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.10629", "scoring_system": "epss", "scoring_elements": "0.93327", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.10629", "scoring_system": "epss", "scoring_elements": "0.93331", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.10629", "scoring_system": "epss", "scoring_elements": "0.93323", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.13775", "scoring_system": "epss", "scoring_elements": "0.9426", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.13775", "scoring_system": "epss", "scoring_elements": "0.9427", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.13775", "scoring_system": "epss", "scoring_elements": "0.94274", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.13775", "scoring_system": "epss", "scoring_elements": "0.94278", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.13775", "scoring_system": "epss", "scoring_elements": "0.94279", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.13775", "scoring_system": "epss", "scoring_elements": "0.94294", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.13775", "scoring_system": "epss", "scoring_elements": "0.94239", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.13775", "scoring_system": "epss", "scoring_elements": "0.94248", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.13775", "scoring_system": "epss", "scoring_elements": "0.94261", "published_at": "2026-04-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-38297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-38297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-38297" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2012887", "reference_id": "2012887", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2012887" }, { "reference_url": "https://security.archlinux.org/AVG-2454", "reference_id": "AVG-2454", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2454" }, { "reference_url": "https://security.gentoo.org/glsa/202208-02", "reference_id": "GLSA-202208-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0432", "reference_id": "RHSA-2022:0432", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0432" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0434", "reference_id": "RHSA-2022:0434", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0434" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1819", "reference_id": "RHSA-2022:1819", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1819" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74527?format=api", "purl": "pkg:ebuild/dev-lang/go@1.18.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/go@1.18.5" } ], "aliases": [ "CVE-2021-38297" ], "risk_score": 4.4, "exploitability": "0.5", "weighted_severity": "8.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rmev-jnbb-2yat" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36630?format=api", "vulnerability_id": "VCID-thkn-q21m-kyfr", "summary": "Multiple vulnerabilities have been found in Go, the worst of which could result in remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-41771.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-41771.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-41771", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00868", "scoring_system": "epss", "scoring_elements": "0.75111", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00868", "scoring_system": "epss", "scoring_elements": "0.75272", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.00868", "scoring_system": "epss", "scoring_elements": "0.75234", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00868", "scoring_system": "epss", "scoring_elements": "0.75243", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.00868", "scoring_system": "epss", "scoring_elements": "0.75114", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00868", "scoring_system": "epss", "scoring_elements": "0.75144", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00868", "scoring_system": "epss", "scoring_elements": "0.75121", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00868", "scoring_system": "epss", "scoring_elements": "0.75155", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00868", "scoring_system": "epss", "scoring_elements": "0.75167", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00868", "scoring_system": "epss", "scoring_elements": "0.75189", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00868", "scoring_system": "epss", "scoring_elements": "0.75192", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00868", "scoring_system": "epss", "scoring_elements": "0.75199", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00868", "scoring_system": "epss", "scoring_elements": "0.75188", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00868", "scoring_system": "epss", "scoring_elements": "0.75226", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00868", "scoring_system": "epss", "scoring_elements": "0.7523", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-41771" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-41771", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-41771" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2020725", "reference_id": "2020725", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2020725" }, { "reference_url": "https://security.archlinux.org/AVG-2527", "reference_id": "AVG-2527", "reference_type": "", "scores": [ { "value": "Low", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2527" }, { "reference_url": "https://security.gentoo.org/glsa/202208-02", "reference_id": "GLSA-202208-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1734", "reference_id": "RHSA-2022:1734", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1734" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1745", "reference_id": "RHSA-2022:1745", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1745" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1747", "reference_id": "RHSA-2022:1747", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1747" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1819", "reference_id": "RHSA-2022:1819", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1819" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74527?format=api", "purl": "pkg:ebuild/dev-lang/go@1.18.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/go@1.18.5" } ], "aliases": [ "CVE-2021-41771" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-thkn-q21m-kyfr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36613?format=api", "vulnerability_id": "VCID-vw9d-f7d1-gkhh", "summary": "Multiple vulnerabilities have been found in Go, the worst of which could result in remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-28366.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-28366.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-28366", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00167", "scoring_system": "epss", "scoring_elements": "0.37702", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00167", "scoring_system": "epss", "scoring_elements": "0.37373", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.00167", "scoring_system": "epss", "scoring_elements": "0.37419", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00167", "scoring_system": "epss", "scoring_elements": "0.37304", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.00167", "scoring_system": "epss", "scoring_elements": "0.37883", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00167", "scoring_system": "epss", "scoring_elements": "0.37908", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00167", "scoring_system": "epss", "scoring_elements": "0.37787", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00167", "scoring_system": "epss", "scoring_elements": "0.37837", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00167", "scoring_system": "epss", "scoring_elements": "0.3785", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00167", "scoring_system": "epss", "scoring_elements": "0.37865", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00167", "scoring_system": "epss", "scoring_elements": "0.37828", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00167", "scoring_system": "epss", "scoring_elements": "0.37803", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00167", "scoring_system": "epss", "scoring_elements": "0.3783", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00167", "scoring_system": "epss", "scoring_elements": "0.37768", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00167", "scoring_system": "epss", "scoring_elements": "0.3753", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00167", "scoring_system": "epss", "scoring_elements": "0.37508", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-28366" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28366", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28366" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1897643", "reference_id": "1897643", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1897643" }, { "reference_url": "https://security.archlinux.org/ASA-202011-16", "reference_id": "ASA-202011-16", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202011-16" }, { "reference_url": "https://security.archlinux.org/AVG-1278", "reference_id": "AVG-1278", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1278" }, { "reference_url": "https://security.gentoo.org/glsa/202208-02", "reference_id": "GLSA-202208-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5333", "reference_id": "RHSA-2020:5333", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5333" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5493", "reference_id": "RHSA-2020:5493", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5493" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0145", "reference_id": "RHSA-2021:0145", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0145" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0146", "reference_id": "RHSA-2021:0146", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0146" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74527?format=api", "purl": "pkg:ebuild/dev-lang/go@1.18.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/go@1.18.5" } ], "aliases": [ "CVE-2020-28366" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vw9d-f7d1-gkhh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36647?format=api", "vulnerability_id": "VCID-vxks-1bkp-6bd5", "summary": "Multiple vulnerabilities have been found in Go, the worst of which could result in remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-30631.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-30631.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-30631", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.12478", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.12297", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.12408", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.12458", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.12464", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.12425", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.12385", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.12286", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.12389", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.1239", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.12357", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.12246", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.12161", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.12521", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.12328", "published_at": "2026-04-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-30631" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-30631", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-30631" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2107342", "reference_id": "2107342", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2107342" }, { "reference_url": "https://go.dev/cl/417067", "reference_id": "417067", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-20T17:51:07Z/" } ], "url": "https://go.dev/cl/417067" }, { "reference_url": "https://go.dev/issue/53168", "reference_id": "53168", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-20T17:51:07Z/" } ], "url": "https://go.dev/issue/53168" }, { "reference_url": "https://go.googlesource.com/go/+/b2b8872c876201eac2d0707276c6999ff3eb185e", "reference_id": "b2b8872c876201eac2d0707276c6999ff3eb185e", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-20T17:51:07Z/" } ], "url": "https://go.googlesource.com/go/+/b2b8872c876201eac2d0707276c6999ff3eb185e" }, { "reference_url": "https://security.gentoo.org/glsa/202208-02", "reference_id": "GLSA-202208-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-02" }, { "reference_url": "https://pkg.go.dev/vuln/GO-2022-0524", "reference_id": "GO-2022-0524", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-20T17:51:07Z/" } ], "url": "https://pkg.go.dev/vuln/GO-2022-0524" }, { "reference_url": "https://groups.google.com/g/golang-announce/c/nqrv9fbR0zE", "reference_id": "nqrv9fbR0zE", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-20T17:51:07Z/" } ], "url": "https://groups.google.com/g/golang-announce/c/nqrv9fbR0zE" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5775", "reference_id": "RHSA-2022:5775", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5775" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5799", "reference_id": "RHSA-2022:5799", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5799" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5866", "reference_id": "RHSA-2022:5866", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5866" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5875", "reference_id": "RHSA-2022:5875", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5875" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5879", "reference_id": "RHSA-2022:5879", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5879" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5923", "reference_id": "RHSA-2022:5923", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5923" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5924", "reference_id": "RHSA-2022:5924", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5924" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6040", "reference_id": "RHSA-2022:6040", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6040" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6042", "reference_id": "RHSA-2022:6042", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6042" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6051", "reference_id": "RHSA-2022:6051", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6051" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6053", "reference_id": "RHSA-2022:6053", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6053" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6061", "reference_id": "RHSA-2022:6061", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6061" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6062", "reference_id": "RHSA-2022:6062", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6062" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6065", "reference_id": "RHSA-2022:6065", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6065" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6066", "reference_id": "RHSA-2022:6066", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6066" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6103", "reference_id": "RHSA-2022:6103", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6103" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6113", "reference_id": "RHSA-2022:6113", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6113" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6152", "reference_id": "RHSA-2022:6152", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6152" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6182", "reference_id": "RHSA-2022:6182", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6182" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6183", "reference_id": "RHSA-2022:6183", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6183" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6184", "reference_id": "RHSA-2022:6184", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6184" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6187", "reference_id": "RHSA-2022:6187", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6187" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6188", "reference_id": "RHSA-2022:6188", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6188" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6262", "reference_id": "RHSA-2022:6262", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6262" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6290", "reference_id": "RHSA-2022:6290", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6290" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6308", "reference_id": "RHSA-2022:6308", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6308" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6344", "reference_id": "RHSA-2022:6344", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6344" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6429", "reference_id": "RHSA-2022:6429", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6429" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6430", "reference_id": "RHSA-2022:6430", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6430" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6517", "reference_id": "RHSA-2022:6517", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6517" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6560", "reference_id": "RHSA-2022:6560", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6560" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6714", "reference_id": "RHSA-2022:6714", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6714" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7398", "reference_id": "RHSA-2022:7398", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7398" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7519", "reference_id": "RHSA-2022:7519", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7519" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7529", "reference_id": "RHSA-2022:7529", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7529" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7648", "reference_id": "RHSA-2022:7648", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7648" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8057", "reference_id": "RHSA-2022:8057", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8057" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8098", "reference_id": "RHSA-2022:8098", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8098" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8250", "reference_id": "RHSA-2022:8250", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8250" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0407", "reference_id": "RHSA-2023:0407", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0407" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0408", "reference_id": "RHSA-2023:0408", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0408" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0727", "reference_id": "RHSA-2023:0727", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0727" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1042", "reference_id": "RHSA-2023:1042", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1042" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1529", "reference_id": "RHSA-2023:1529", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1529" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2758", "reference_id": "RHSA-2023:2758", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2758" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2802", "reference_id": "RHSA-2023:2802", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2802" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3642", "reference_id": "RHSA-2023:3642", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3642" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2180", "reference_id": "RHSA-2024:2180", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2180" }, { "reference_url": "https://usn.ubuntu.com/6038-1/", "reference_id": "USN-6038-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6038-1/" }, { "reference_url": "https://usn.ubuntu.com/6038-2/", "reference_id": "USN-6038-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6038-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74527?format=api", "purl": "pkg:ebuild/dev-lang/go@1.18.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/go@1.18.5" } ], "aliases": [ "CVE-2022-30631" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vxks-1bkp-6bd5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36632?format=api", "vulnerability_id": "VCID-w53f-uad6-gqdn", "summary": "Multiple vulnerabilities have been found in Go, the worst of which could result in remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-44716.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-44716.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-44716", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00088", "scoring_system": "epss", "scoring_elements": "0.24858", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.00088", "scoring_system": "epss", "scoring_elements": "0.25052", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00088", "scoring_system": "epss", "scoring_elements": "0.25024", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00088", "scoring_system": "epss", "scoring_elements": "0.24962", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00088", "scoring_system": "epss", "scoring_elements": "0.24952", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00088", "scoring_system": "epss", "scoring_elements": "0.24906", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00088", "scoring_system": "epss", "scoring_elements": "0.24786", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.00095", "scoring_system": "epss", "scoring_elements": "0.26547", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00095", "scoring_system": "epss", "scoring_elements": "0.26454", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00095", "scoring_system": "epss", "scoring_elements": "0.265", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00095", "scoring_system": "epss", "scoring_elements": "0.26444", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00095", "scoring_system": "epss", "scoring_elements": "0.26494", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00095", "scoring_system": "epss", "scoring_elements": "0.26375", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00095", "scoring_system": "epss", "scoring_elements": "0.26592", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00095", "scoring_system": "epss", "scoring_elements": "0.26404", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00095", "scoring_system": "epss", "scoring_elements": "0.26396", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-44716" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44716", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44716" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://go.dev/cl/369794", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://go.dev/cl/369794" }, { "reference_url": "https://go.dev/issue/50058", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://go.dev/issue/50058" }, { "reference_url": "https://groups.google.com/g/golang-announce/c/hcmEScgc00k", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://groups.google.com/g/golang-announce/c/hcmEScgc00k" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2022/01/msg00016.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.debian.org/debian-lts-announce/2022/01/msg00016.html" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2022/01/msg00017.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.debian.org/debian-lts-announce/2022/01/msg00017.html" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2021-44716", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-44716" }, { "reference_url": "https://pkg.go.dev/vuln/GO-2022-0288", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://pkg.go.dev/vuln/GO-2022-0288" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20220121-0002", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://security.netapp.com/advisory/ntap-20220121-0002" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2030801", "reference_id": "2030801", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2030801" }, { "reference_url": "https://security.archlinux.org/AVG-2617", "reference_id": "AVG-2617", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2617" }, { "reference_url": "https://security.gentoo.org/glsa/202208-02", "reference_id": "GLSA-202208-02", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://security.gentoo.org/glsa/202208-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:5160", "reference_id": "RHSA-2021:5160", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:5160" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:5176", "reference_id": "RHSA-2021:5176", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:5176" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0001", "reference_id": "RHSA-2022:0001", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0001" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0002", "reference_id": "RHSA-2022:0002", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0002" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0055", "reference_id": "RHSA-2022:0055", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0055" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0056", "reference_id": "RHSA-2022:0056", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0056" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0163", "reference_id": "RHSA-2022:0163", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0163" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0237", "reference_id": "RHSA-2022:0237", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0237" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0260", "reference_id": "RHSA-2022:0260", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0260" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0557", "reference_id": "RHSA-2022:0557", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0557" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0585", "reference_id": "RHSA-2022:0585", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0585" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0587", "reference_id": "RHSA-2022:0587", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0587" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0842", "reference_id": "RHSA-2022:0842", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0842" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0855", "reference_id": "RHSA-2022:0855", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0855" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0927", "reference_id": "RHSA-2022:0927", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0927" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1051", "reference_id": "RHSA-2022:1051", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1051" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1056", "reference_id": "RHSA-2022:1056", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1056" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1361", "reference_id": "RHSA-2022:1361", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1361" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1372", "reference_id": "RHSA-2022:1372", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1372" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1628", "reference_id": "RHSA-2022:1628", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1628" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1734", "reference_id": "RHSA-2022:1734", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1734" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0407", "reference_id": "RHSA-2023:0407", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0407" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0408", "reference_id": "RHSA-2023:0408", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0408" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74527?format=api", "purl": "pkg:ebuild/dev-lang/go@1.18.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/go@1.18.5" } ], "aliases": [ "CVE-2021-44716", "GHSA-vc3p-29h2-gpcp" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-w53f-uad6-gqdn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36631?format=api", "vulnerability_id": "VCID-wrkj-pngh-rybx", "summary": "Multiple vulnerabilities have been found in Go, the worst of which could result in remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-41772.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-41772.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-41772", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19421", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19153", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19178", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19072", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19555", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19602", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19322", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.194", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19451", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19456", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19409", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19351", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19313", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.1932", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19333", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19231", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19219", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-41772" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2020736", "reference_id": "2020736", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2020736" }, { "reference_url": "https://security.archlinux.org/AVG-2527", "reference_id": "AVG-2527", "reference_type": "", "scores": [ { "value": "Low", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2527" }, { "reference_url": "https://security.gentoo.org/glsa/202208-02", "reference_id": "GLSA-202208-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:5176", "reference_id": "RHSA-2021:5176", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:5176" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0055", "reference_id": "RHSA-2022:0055", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0055" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0056", "reference_id": "RHSA-2022:0056", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0056" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1734", "reference_id": "RHSA-2022:1734", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1734" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1745", "reference_id": "RHSA-2022:1745", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1745" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1747", "reference_id": "RHSA-2022:1747", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1747" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1819", "reference_id": "RHSA-2022:1819", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1819" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74527?format=api", "purl": "pkg:ebuild/dev-lang/go@1.18.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/go@1.18.5" } ], "aliases": [ "CVE-2021-41772" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wrkj-pngh-rybx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36643?format=api", "vulnerability_id": "VCID-yzsx-6acm-kkb6", "summary": "Multiple vulnerabilities have been found in Go, the worst of which could result in remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-28327.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-28327.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-28327", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00131", "scoring_system": "epss", "scoring_elements": "0.32065", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.00175", "scoring_system": "epss", "scoring_elements": "0.39076", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00175", "scoring_system": "epss", "scoring_elements": "0.39095", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00175", "scoring_system": "epss", "scoring_elements": "0.39014", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00175", "scoring_system": "epss", "scoring_elements": "0.39066", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00175", "scoring_system": "epss", "scoring_elements": "0.39082", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00175", "scoring_system": "epss", "scoring_elements": "0.39094", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00175", "scoring_system": "epss", "scoring_elements": "0.39057", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00175", "scoring_system": "epss", "scoring_elements": "0.39036", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00175", "scoring_system": "epss", "scoring_elements": "0.3909", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00175", "scoring_system": "epss", "scoring_elements": "0.39061", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00175", "scoring_system": "epss", "scoring_elements": "0.38977", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00175", "scoring_system": "epss", "scoring_elements": "0.38768", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00175", "scoring_system": "epss", "scoring_elements": "0.38745", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00175", "scoring_system": "epss", "scoring_elements": "0.38657", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00175", "scoring_system": "epss", "scoring_elements": "0.38534", "published_at": "2026-05-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-28327" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2077689", "reference_id": "2077689", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2077689" }, { "reference_url": "https://security.gentoo.org/glsa/202208-02", "reference_id": "GLSA-202208-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5006", "reference_id": "RHSA-2022:5006", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5006" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5068", "reference_id": "RHSA-2022:5068", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5068" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5337", "reference_id": "RHSA-2022:5337", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5337" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5415", "reference_id": "RHSA-2022:5415", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5415" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5729", "reference_id": "RHSA-2022:5729", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5729" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5799", "reference_id": "RHSA-2022:5799", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5799" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5840", "reference_id": "RHSA-2022:5840", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5840" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5875", "reference_id": "RHSA-2022:5875", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5875" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6040", "reference_id": "RHSA-2022:6040", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6040" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6042", "reference_id": "RHSA-2022:6042", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6042" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6094", "reference_id": "RHSA-2022:6094", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6094" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6152", "reference_id": "RHSA-2022:6152", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6152" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6155", "reference_id": "RHSA-2022:6155", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6155" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6156", "reference_id": "RHSA-2022:6156", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6156" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6187", "reference_id": "RHSA-2022:6187", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6187" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6277", "reference_id": "RHSA-2022:6277", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6277" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6290", "reference_id": "RHSA-2022:6290", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6290" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6526", "reference_id": "RHSA-2022:6526", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6526" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6714", "reference_id": "RHSA-2022:6714", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6714" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8750", "reference_id": "RHSA-2022:8750", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8750" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1042", "reference_id": "RHSA-2023:1042", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1042" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1529", "reference_id": "RHSA-2023:1529", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1529" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3642", "reference_id": "RHSA-2023:3642", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3642" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3914", "reference_id": "RHSA-2023:3914", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3914" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:4003", "reference_id": "RHSA-2023:4003", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:4003" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74527?format=api", "purl": "pkg:ebuild/dev-lang/go@1.18.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/go@1.18.5" } ], "aliases": [ "CVE-2022-28327" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-yzsx-6acm-kkb6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36625?format=api", "vulnerability_id": "VCID-z1ct-cecz-mqer", "summary": "Multiple vulnerabilities have been found in Go, the worst of which could result in remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-33197.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-33197.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-33197", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11881", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11815", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11761", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11681", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11994", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.12037", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11839", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11922", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11974", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11981", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11944", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11918", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11787", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11785", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11905", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11876", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11845", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-33197" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-33197", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-33197" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1989570", "reference_id": "1989570", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1989570" }, { "reference_url": "https://security.archlinux.org/ASA-202106-42", "reference_id": "ASA-202106-42", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202106-42" }, { "reference_url": "https://security.archlinux.org/AVG-2006", "reference_id": "AVG-2006", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2006" }, { "reference_url": "https://security.gentoo.org/glsa/202208-02", "reference_id": "GLSA-202208-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2983", "reference_id": "RHSA-2021:2983", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2983" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2984", "reference_id": "RHSA-2021:2984", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2984" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3009", "reference_id": "RHSA-2021:3009", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3009" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3146", "reference_id": "RHSA-2021:3146", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3146" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3229", "reference_id": "RHSA-2021:3229", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3229" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3248", "reference_id": "RHSA-2021:3248", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3248" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3361", "reference_id": "RHSA-2021:3361", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3361" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3431", "reference_id": "RHSA-2021:3431", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3431" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3487", "reference_id": "RHSA-2021:3487", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3487" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3555", "reference_id": "RHSA-2021:3555", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3555" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3556", "reference_id": "RHSA-2021:3556", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3556" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3598", "reference_id": "RHSA-2021:3598", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3598" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3759", "reference_id": "RHSA-2021:3759", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3759" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3820", "reference_id": "RHSA-2021:3820", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3820" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4104", "reference_id": "RHSA-2021:4104", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4104" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4156", "reference_id": "RHSA-2021:4156", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4156" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4226", "reference_id": "RHSA-2021:4226", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4226" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:5072", "reference_id": "RHSA-2021:5072", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:5072" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:5085", "reference_id": "RHSA-2021:5085", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:5085" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:5086", "reference_id": "RHSA-2021:5086", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:5086" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0191", "reference_id": "RHSA-2022:0191", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0191" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0577", "reference_id": "RHSA-2022:0577", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0577" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1329", "reference_id": "RHSA-2022:1329", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1329" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1402", "reference_id": "RHSA-2022:1402", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1402" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7954", "reference_id": "RHSA-2022:7954", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7954" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74527?format=api", "purl": "pkg:ebuild/dev-lang/go@1.18.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/go@1.18.5" } ], "aliases": [ "CVE-2021-33197" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-z1ct-cecz-mqer" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36637?format=api", "vulnerability_id": "VCID-z5x6-xqtc-q3at", "summary": "Multiple vulnerabilities have been found in Go, the worst of which could result in remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-23773.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-23773.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-23773", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00118", "scoring_system": "epss", "scoring_elements": "0.30823", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00118", "scoring_system": "epss", "scoring_elements": "0.3087", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00118", "scoring_system": "epss", "scoring_elements": "0.30689", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00118", "scoring_system": "epss", "scoring_elements": "0.30747", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00118", "scoring_system": "epss", "scoring_elements": "0.30779", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00118", "scoring_system": "epss", "scoring_elements": "0.30782", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00118", "scoring_system": "epss", "scoring_elements": "0.30738", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00118", "scoring_system": "epss", "scoring_elements": "0.30692", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00118", "scoring_system": "epss", "scoring_elements": "0.30716", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00118", "scoring_system": "epss", "scoring_elements": "0.30698", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00118", "scoring_system": "epss", "scoring_elements": "0.30664", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00118", "scoring_system": "epss", "scoring_elements": "0.30487", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00118", "scoring_system": "epss", "scoring_elements": "0.30374", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00118", "scoring_system": "epss", "scoring_elements": "0.30292", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00118", "scoring_system": "epss", "scoring_elements": "0.30152", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.00118", "scoring_system": "epss", "scoring_elements": "0.30223", "published_at": "2026-05-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-23773" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23773", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23773" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2053541", "reference_id": "2053541", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2053541" }, { "reference_url": "https://security.gentoo.org/glsa/202208-02", "reference_id": "GLSA-202208-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1819", "reference_id": "RHSA-2022:1819", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1819" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:4860", "reference_id": "RHSA-2022:4860", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:4860" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:4863", "reference_id": "RHSA-2022:4863", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:4863" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5004", "reference_id": "RHSA-2022:5004", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5004" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5068", "reference_id": "RHSA-2022:5068", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5068" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5729", "reference_id": "RHSA-2022:5729", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5729" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5875", "reference_id": "RHSA-2022:5875", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5875" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6094", "reference_id": "RHSA-2022:6094", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6094" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6156", "reference_id": "RHSA-2022:6156", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6156" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0408", "reference_id": "RHSA-2023:0408", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0408" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1529", "reference_id": "RHSA-2023:1529", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1529" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74527?format=api", "purl": "pkg:ebuild/dev-lang/go@1.18.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/go@1.18.5" } ], "aliases": [ "CVE-2022-23773" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-z5x6-xqtc-q3at" } ], "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/go@1.18.5" }