{"url":"http://public2.vulnerablecode.io/api/packages/94211?format=json","purl":"pkg:deb/debian/lua5.4@5.4.2-2?distro=trixie","type":"deb","namespace":"debian","name":"lua5.4","version":"5.4.2-2","qualifiers":{"distro":"trixie"},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"5.4.4-1","latest_non_vulnerable_version":"5.4.8-1","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/10313?format=json","vulnerability_id":"VCID-27xw-fxqg-hyab","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-45985.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-45985.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-45985","reference_id":"","reference_type":"","scores":[{"value":"0.0033","scoring_system":"epss","scoring_elements":"0.56312","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-45985"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45985","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45985"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2185579","reference_id":"2185579","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2185579"},{"reference_url":"https://www.lua.org/bugs.html#5.4.3-11","reference_id":"bugs.html#5.4.3-11","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-02-12T16:01:31Z/"}],"url":"https://www.lua.org/bugs.html#5.4.3-11"},{"reference_url":"https://github.com/lua/lua/commit/cf613cdc6fa367257fc61c256f63d917350858b5","reference_id":"cf613cdc6fa367257fc61c256f63d917350858b5","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-02-12T16:01:31Z/"}],"url":"https://github.com/lua/lua/commit/cf613cdc6fa367257fc61c256f63d917350858b5"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-45985","reference_id":"CVE-2021-45985","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-45985"},{"reference_url":"http://lua-users.org/lists/lua-l/2021-12/msg00019.html","reference_id":"msg00019.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-02-12T16:01:31Z/"}],"url":"http://lua-users.org/lists/lua-l/2021-12/msg00019.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/94215?format=json","purl":"pkg:deb/debian/lua5.4@5.4.4-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.4-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94209?format=json","purl":"pkg:deb/debian/lua5.4@5.4.4-3%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.4-3%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94213?format=json","purl":"pkg:deb/debian/lua5.4@5.4.7-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.7-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94212?format=json","purl":"pkg:deb/debian/lua5.4@5.4.8-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.8-1%3Fdistro=trixie"}],"aliases":["CVE-2021-45985"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-27xw-fxqg-hyab"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/183210?format=json","vulnerability_id":"VCID-2yz5-5cgk-5bfu","summary":"Multiple vulnerabilities have been discovered in Lua, the worst of which could result in arbitrary code execution.","references":[{"reference_url":"http://lua-users.org/lists/lua-l/2021-11/msg00195.html","reference_id":"","reference_type":"","scores":[],"url":"http://lua-users.org/lists/lua-l/2021-11/msg00195.html"},{"reference_url":"http://lua-users.org/lists/lua-l/2021-11/msg00204.html","reference_id":"","reference_type":"","scores":[],"url":"http://lua-users.org/lists/lua-l/2021-11/msg00204.html"},{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-44647.json","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-44647.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-44647","reference_id":"","reference_type":"","scores":[{"value":"0.00134","scoring_system":"epss","scoring_elements":"0.32512","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-44647"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44647","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44647"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1004189","reference_id":"1004189","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1004189"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2044415","reference_id":"2044415","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2044415"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-44647","reference_id":"CVE-2021-44647","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-44647"},{"reference_url":"https://security.gentoo.org/glsa/202305-23","reference_id":"GLSA-202305-23","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202305-23"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/94215?format=json","purl":"pkg:deb/debian/lua5.4@5.4.4-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.4-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94209?format=json","purl":"pkg:deb/debian/lua5.4@5.4.4-3%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.4-3%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94213?format=json","purl":"pkg:deb/debian/lua5.4@5.4.7-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.7-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94212?format=json","purl":"pkg:deb/debian/lua5.4@5.4.8-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.8-1%3Fdistro=trixie"}],"aliases":["CVE-2021-44647"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-2yz5-5cgk-5bfu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/12095?format=json","vulnerability_id":"VCID-6pud-anjb-ykgf","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-33099.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-33099.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-33099","reference_id":"","reference_type":"","scores":[{"value":"0.003","scoring_system":"epss","scoring_elements":"0.53783","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-33099"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33099","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33099"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014935","reference_id":"1014935","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014935"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2104427","reference_id":"2104427","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2104427"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7329","reference_id":"RHSA-2022:7329","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7329"},{"reference_url":"https://usn.ubuntu.com/6916-1/","reference_id":"USN-6916-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6916-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/94217?format=json","purl":"pkg:deb/debian/lua5.4@5.4.4-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.4-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94209?format=json","purl":"pkg:deb/debian/lua5.4@5.4.4-3%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.4-3%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94213?format=json","purl":"pkg:deb/debian/lua5.4@5.4.7-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.7-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94212?format=json","purl":"pkg:deb/debian/lua5.4@5.4.8-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.8-1%3Fdistro=trixie"}],"aliases":["CVE-2022-33099"],"risk_score":1.4,"exploitability":"0.5","weighted_severity":"2.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6pud-anjb-ykgf"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/10193?format=json","vulnerability_id":"VCID-7vcv-ufwy-cud5","summary":"","references":[{"reference_url":"http://lua-users.org/lists/lua-l/2021-10/msg00123.html","reference_id":"","reference_type":"","scores":[],"url":"http://lua-users.org/lists/lua-l/2021-10/msg00123.html"},{"reference_url":"http://lua-users.org/lists/lua-l/2021-11/msg00015.html","reference_id":"","reference_type":"","scores":[],"url":"http://lua-users.org/lists/lua-l/2021-11/msg00015.html"},{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-43519.json","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-43519.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-43519","reference_id":"","reference_type":"","scores":[{"value":"0.00174","scoring_system":"epss","scoring_elements":"0.38602","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-43519"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43519","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43519"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1000228","reference_id":"1000228","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1000228"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2047672","reference_id":"2047672","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2047672"},{"reference_url":"https://security.archlinux.org/AVG-1302","reference_id":"AVG-1302","reference_type":"","scores":[{"value":"Low","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1302"},{"reference_url":"https://security.archlinux.org/AVG-2535","reference_id":"AVG-2535","reference_type":"","scores":[{"value":"Low","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2535"},{"reference_url":"https://security.archlinux.org/AVG-2536","reference_id":"AVG-2536","reference_type":"","scores":[{"value":"Low","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2536"},{"reference_url":"https://security.archlinux.org/AVG-2537","reference_id":"AVG-2537","reference_type":"","scores":[{"value":"Low","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2537"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-43519","reference_id":"CVE-2021-43519","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-43519"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0957","reference_id":"RHSA-2023:0957","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0957"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:1211","reference_id":"RHSA-2023:1211","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:1211"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/94215?format=json","purl":"pkg:deb/debian/lua5.4@5.4.4-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.4-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94209?format=json","purl":"pkg:deb/debian/lua5.4@5.4.4-3%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.4-3%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94213?format=json","purl":"pkg:deb/debian/lua5.4@5.4.7-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.7-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94212?format=json","purl":"pkg:deb/debian/lua5.4@5.4.8-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.8-1%3Fdistro=trixie"}],"aliases":["CVE-2021-43519"],"risk_score":1.4,"exploitability":"0.5","weighted_severity":"2.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7vcv-ufwy-cud5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/11832?format=json","vulnerability_id":"VCID-fjb9-236y-1bgg","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-28805.json","reference_id":"","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-28805.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-28805","reference_id":"","reference_type":"","scores":[{"value":"0.00171","scoring_system":"epss","scoring_elements":"0.38206","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-28805"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28805","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28805"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/lua/lua/commit/1f3c6f4534c6411313361697d98d1145a1f030fa","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/lua/lua/commit/1f3c6f4534c6411313361697d98d1145a1f030fa"},{"reference_url":"https://lua-users.org/lists/lua-l/2022-02/msg00001.html","reference_id":"","reference_type":"","scores":[],"url":"https://lua-users.org/lists/lua-l/2022-02/msg00001.html"},{"reference_url":"https://lua-users.org/lists/lua-l/2022-02/msg00070.html","reference_id":"","reference_type":"","scores":[],"url":"https://lua-users.org/lists/lua-l/2022-02/msg00070.html"},{"reference_url":"https://lua-users.org/lists/lua-l/2022-04/msg00009.html","reference_id":"","reference_type":"","scores":[],"url":"https://lua-users.org/lists/lua-l/2022-04/msg00009.html"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1010265","reference_id":"1010265","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1010265"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2073884","reference_id":"2073884","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2073884"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-28805","reference_id":"CVE-2022-28805","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-28805"},{"reference_url":"https://security.gentoo.org/glsa/202305-23","reference_id":"GLSA-202305-23","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202305-23"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2582","reference_id":"RHSA-2023:2582","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2582"},{"reference_url":"https://usn.ubuntu.com/6916-1/","reference_id":"USN-6916-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6916-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/94216?format=json","purl":"pkg:deb/debian/lua5.4@5.4.4-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.4-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94209?format=json","purl":"pkg:deb/debian/lua5.4@5.4.4-3%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.4-3%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94213?format=json","purl":"pkg:deb/debian/lua5.4@5.4.7-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.7-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94212?format=json","purl":"pkg:deb/debian/lua5.4@5.4.8-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.8-1%3Fdistro=trixie"}],"aliases":["CVE-2022-28805"],"risk_score":1.6,"exploitability":"0.5","weighted_severity":"3.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fjb9-236y-1bgg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/10267?format=json","vulnerability_id":"VCID-w5vb-humq-ekhw","summary":"","references":[{"reference_url":"http://lua-users.org/lists/lua-l/2021-11/msg00186.html","reference_id":"","reference_type":"","scores":[],"url":"http://lua-users.org/lists/lua-l/2021-11/msg00186.html"},{"reference_url":"http://lua-users.org/lists/lua-l/2021-12/msg00007.html","reference_id":"","reference_type":"","scores":[],"url":"http://lua-users.org/lists/lua-l/2021-12/msg00007.html"},{"reference_url":"http://lua-users.org/lists/lua-l/2021-12/msg00015.html","reference_id":"","reference_type":"","scores":[],"url":"http://lua-users.org/lists/lua-l/2021-12/msg00015.html"},{"reference_url":"http://lua-users.org/lists/lua-l/2021-12/msg00030.html","reference_id":"","reference_type":"","scores":[],"url":"http://lua-users.org/lists/lua-l/2021-12/msg00030.html"},{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-44964.json","reference_id":"","reference_type":"","scores":[{"value":"7.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-44964.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-44964","reference_id":"","reference_type":"","scores":[{"value":"0.00152","scoring_system":"epss","scoring_elements":"0.35606","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-44964"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44964","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44964"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/Lua-Project/lua-5.4.4-sandbox-escape-with-new-vulnerability","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/Lua-Project/lua-5.4.4-sandbox-escape-with-new-vulnerability"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2064772","reference_id":"2064772","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2064772"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-44964","reference_id":"CVE-2021-44964","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-44964"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0957","reference_id":"RHSA-2023:0957","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0957"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:1211","reference_id":"RHSA-2023:1211","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:1211"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/94215?format=json","purl":"pkg:deb/debian/lua5.4@5.4.4-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.4-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94209?format=json","purl":"pkg:deb/debian/lua5.4@5.4.4-3%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.4-3%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94213?format=json","purl":"pkg:deb/debian/lua5.4@5.4.7-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.7-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94212?format=json","purl":"pkg:deb/debian/lua5.4@5.4.8-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.8-1%3Fdistro=trixie"}],"aliases":["CVE-2021-44964"],"risk_score":2.1,"exploitability":"0.5","weighted_severity":"4.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-w5vb-humq-ekhw"}],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/8145?format=json","vulnerability_id":"VCID-fa8c-138y-hqem","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-24369.json","reference_id":"","reference_type":"","scores":[{"value":"7.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-24369.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-24369","reference_id":"","reference_type":"","scores":[{"value":"0.00573","scoring_system":"epss","scoring_elements":"0.69175","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-24369"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24369","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24369"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1870230","reference_id":"1870230","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1870230"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=971013","reference_id":"971013","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=971013"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/94210?format=json","purl":"pkg:deb/debian/lua5.4@5.4.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.1-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94211?format=json","purl":"pkg:deb/debian/lua5.4@5.4.2-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-27xw-fxqg-hyab"},{"vulnerability":"VCID-2yz5-5cgk-5bfu"},{"vulnerability":"VCID-6pud-anjb-ykgf"},{"vulnerability":"VCID-7vcv-ufwy-cud5"},{"vulnerability":"VCID-fjb9-236y-1bgg"},{"vulnerability":"VCID-w5vb-humq-ekhw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.2-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94209?format=json","purl":"pkg:deb/debian/lua5.4@5.4.4-3%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.4-3%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94213?format=json","purl":"pkg:deb/debian/lua5.4@5.4.7-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.7-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94212?format=json","purl":"pkg:deb/debian/lua5.4@5.4.8-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.8-1%3Fdistro=trixie"}],"aliases":["CVE-2020-24369"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fa8c-138y-hqem"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/207881?format=json","vulnerability_id":"VCID-gttt-rysy-3bcy","summary":"Lua through 5.4.0 allows a stack redzone cross in luaO_pushvfstring because a protection mechanism wrongly calls luaD_callnoyield twice in a row.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-24342.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-24342.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-24342","reference_id":"","reference_type":"","scores":[{"value":"0.00307","scoring_system":"epss","scoring_elements":"0.54327","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-24342"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24342","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24342"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1873084","reference_id":"1873084","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1873084"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=971012","reference_id":"971012","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=971012"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/94210?format=json","purl":"pkg:deb/debian/lua5.4@5.4.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.1-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94211?format=json","purl":"pkg:deb/debian/lua5.4@5.4.2-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-27xw-fxqg-hyab"},{"vulnerability":"VCID-2yz5-5cgk-5bfu"},{"vulnerability":"VCID-6pud-anjb-ykgf"},{"vulnerability":"VCID-7vcv-ufwy-cud5"},{"vulnerability":"VCID-fjb9-236y-1bgg"},{"vulnerability":"VCID-w5vb-humq-ekhw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.2-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94209?format=json","purl":"pkg:deb/debian/lua5.4@5.4.4-3%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.4-3%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94213?format=json","purl":"pkg:deb/debian/lua5.4@5.4.7-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.7-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94212?format=json","purl":"pkg:deb/debian/lua5.4@5.4.8-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.8-1%3Fdistro=trixie"}],"aliases":["CVE-2020-24342"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-gttt-rysy-3bcy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/8147?format=json","vulnerability_id":"VCID-j8uk-std4-6uh6","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-24371.json","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-24371.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-24371","reference_id":"","reference_type":"","scores":[{"value":"0.0046","scoring_system":"epss","scoring_elements":"0.64567","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-24371"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24371","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24371"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1870294","reference_id":"1870294","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1870294"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=971010","reference_id":"971010","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=971010"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/94210?format=json","purl":"pkg:deb/debian/lua5.4@5.4.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.1-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94211?format=json","purl":"pkg:deb/debian/lua5.4@5.4.2-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-27xw-fxqg-hyab"},{"vulnerability":"VCID-2yz5-5cgk-5bfu"},{"vulnerability":"VCID-6pud-anjb-ykgf"},{"vulnerability":"VCID-7vcv-ufwy-cud5"},{"vulnerability":"VCID-fjb9-236y-1bgg"},{"vulnerability":"VCID-w5vb-humq-ekhw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.2-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94209?format=json","purl":"pkg:deb/debian/lua5.4@5.4.4-3%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.4-3%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94213?format=json","purl":"pkg:deb/debian/lua5.4@5.4.7-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.7-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94212?format=json","purl":"pkg:deb/debian/lua5.4@5.4.8-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.8-1%3Fdistro=trixie"}],"aliases":["CVE-2020-24371"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-j8uk-std4-6uh6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/7917?format=json","vulnerability_id":"VCID-ntha-bxq7-gbhv","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-15888.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-15888.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-15888","reference_id":"","reference_type":"","scores":[{"value":"0.01248","scoring_system":"epss","scoring_elements":"0.79726","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-15888"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15888","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15888"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1860310","reference_id":"1860310","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1860310"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972101","reference_id":"972101","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972101"},{"reference_url":"https://security.archlinux.org/ASA-202010-5","reference_id":"ASA-202010-5","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202010-5"},{"reference_url":"https://security.archlinux.org/AVG-1207","reference_id":"AVG-1207","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1207"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/94210?format=json","purl":"pkg:deb/debian/lua5.4@5.4.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.1-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94211?format=json","purl":"pkg:deb/debian/lua5.4@5.4.2-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-27xw-fxqg-hyab"},{"vulnerability":"VCID-2yz5-5cgk-5bfu"},{"vulnerability":"VCID-6pud-anjb-ykgf"},{"vulnerability":"VCID-7vcv-ufwy-cud5"},{"vulnerability":"VCID-fjb9-236y-1bgg"},{"vulnerability":"VCID-w5vb-humq-ekhw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.2-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94209?format=json","purl":"pkg:deb/debian/lua5.4@5.4.4-3%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.4-3%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94213?format=json","purl":"pkg:deb/debian/lua5.4@5.4.7-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.7-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94212?format=json","purl":"pkg:deb/debian/lua5.4@5.4.8-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.8-1%3Fdistro=trixie"}],"aliases":["CVE-2020-15888"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ntha-bxq7-gbhv"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/197317?format=json","vulnerability_id":"VCID-qfgk-ye6j-8bee","summary":"arbitrary code execution","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-15889.json","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-15889.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-15889","reference_id":"","reference_type":"","scores":[{"value":"0.0051","scoring_system":"epss","scoring_elements":"0.66817","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-15889"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15889","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15889"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1860316","reference_id":"1860316","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1860316"},{"reference_url":"https://security.archlinux.org/ASA-202010-5","reference_id":"ASA-202010-5","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202010-5"},{"reference_url":"https://security.archlinux.org/AVG-1207","reference_id":"AVG-1207","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1207"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/94214?format=json","purl":"pkg:deb/debian/lua5.4@5.4.0-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.0-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94211?format=json","purl":"pkg:deb/debian/lua5.4@5.4.2-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-27xw-fxqg-hyab"},{"vulnerability":"VCID-2yz5-5cgk-5bfu"},{"vulnerability":"VCID-6pud-anjb-ykgf"},{"vulnerability":"VCID-7vcv-ufwy-cud5"},{"vulnerability":"VCID-fjb9-236y-1bgg"},{"vulnerability":"VCID-w5vb-humq-ekhw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.2-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94209?format=json","purl":"pkg:deb/debian/lua5.4@5.4.4-3%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.4-3%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94213?format=json","purl":"pkg:deb/debian/lua5.4@5.4.7-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.7-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94212?format=json","purl":"pkg:deb/debian/lua5.4@5.4.8-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.8-1%3Fdistro=trixie"}],"aliases":["CVE-2020-15889"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qfgk-ye6j-8bee"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/8146?format=json","vulnerability_id":"VCID-qfz8-7t9w-ekes","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-24370.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-24370.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-24370","reference_id":"","reference_type":"","scores":[{"value":"0.02019","scoring_system":"epss","scoring_elements":"0.84127","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-24370"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24370","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24370"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1870290","reference_id":"1870290","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1870290"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=971613","reference_id":"971613","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=971613"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=988734","reference_id":"988734","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=988734"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4510","reference_id":"RHSA-2021:4510","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4510"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/94210?format=json","purl":"pkg:deb/debian/lua5.4@5.4.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.1-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94211?format=json","purl":"pkg:deb/debian/lua5.4@5.4.2-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-27xw-fxqg-hyab"},{"vulnerability":"VCID-2yz5-5cgk-5bfu"},{"vulnerability":"VCID-6pud-anjb-ykgf"},{"vulnerability":"VCID-7vcv-ufwy-cud5"},{"vulnerability":"VCID-fjb9-236y-1bgg"},{"vulnerability":"VCID-w5vb-humq-ekhw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.2-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94209?format=json","purl":"pkg:deb/debian/lua5.4@5.4.4-3%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.4-3%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94213?format=json","purl":"pkg:deb/debian/lua5.4@5.4.7-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.7-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94212?format=json","purl":"pkg:deb/debian/lua5.4@5.4.8-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.8-1%3Fdistro=trixie"}],"aliases":["CVE-2020-24370"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qfz8-7t9w-ekes"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/7920?format=json","vulnerability_id":"VCID-xt65-qz52-vyeq","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-15945.json","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-15945.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-15945","reference_id":"","reference_type":"","scores":[{"value":"0.00158","scoring_system":"epss","scoring_elements":"0.36373","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-15945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15945"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"2.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1861999","reference_id":"1861999","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1861999"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/94210?format=json","purl":"pkg:deb/debian/lua5.4@5.4.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.1-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94211?format=json","purl":"pkg:deb/debian/lua5.4@5.4.2-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-27xw-fxqg-hyab"},{"vulnerability":"VCID-2yz5-5cgk-5bfu"},{"vulnerability":"VCID-6pud-anjb-ykgf"},{"vulnerability":"VCID-7vcv-ufwy-cud5"},{"vulnerability":"VCID-fjb9-236y-1bgg"},{"vulnerability":"VCID-w5vb-humq-ekhw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.2-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94209?format=json","purl":"pkg:deb/debian/lua5.4@5.4.4-3%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.4-3%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94213?format=json","purl":"pkg:deb/debian/lua5.4@5.4.7-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.7-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94212?format=json","purl":"pkg:deb/debian/lua5.4@5.4.8-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.8-1%3Fdistro=trixie"}],"aliases":["CVE-2020-15945"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xt65-qz52-vyeq"}],"risk_score":"3.4","resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.2-2%3Fdistro=trixie"}