{"url":"http://public2.vulnerablecode.io/api/packages/94220?format=json","purl":"pkg:deb/debian/luajit@2.1.0~beta3%2Bgit20220320%2Bdfsg-4.1%2Bdeb12u1?distro=trixie","type":"deb","namespace":"debian","name":"luajit","version":"2.1.0~beta3+git20220320+dfsg-4.1+deb12u1","qualifiers":{"distro":"trixie"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":"2.1.0~beta3+dfsg-5.3","latest_non_vulnerable_version":"2.1.0+openresty20251030-1","affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/207882?format=json","vulnerability_id":"VCID-md9t-9wth-g3ar","summary":"LuaJIT through 2.1.0-beta3 has an out-of-bounds read in lj_err_run in lj_err.c.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-24372","reference_id":"","reference_type":"","scores":[{"value":"0.0032","scoring_system":"epss","scoring_elements":"0.55488","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-24372"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24372","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24372"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/94222?format=json","purl":"pkg:deb/debian/luajit@2.1.0~beta3%2Bdfsg-5.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/luajit@2.1.0~beta3%252Bdfsg-5.3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94223?format=json","purl":"pkg:deb/debian/luajit@2.1.0~beta3%2Bdfsg-5.3%2Bdeb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/luajit@2.1.0~beta3%252Bdfsg-5.3%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94221?format=json","purl":"pkg:deb/debian/luajit@2.1.0~beta3%2Bgit20210112%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/luajit@2.1.0~beta3%252Bgit20210112%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94220?format=json","purl":"pkg:deb/debian/luajit@2.1.0~beta3%2Bgit20220320%2Bdfsg-4.1%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/luajit@2.1.0~beta3%252Bgit20220320%252Bdfsg-4.1%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94225?format=json","purl":"pkg:deb/debian/luajit@2.1.0%2Bopenresty20250117-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/luajit@2.1.0%252Bopenresty20250117-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94224?format=json","purl":"pkg:deb/debian/luajit@2.1.0%2Bopenresty20251030-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/luajit@2.1.0%252Bopenresty20251030-1%3Fdistro=trixie"}],"aliases":["CVE-2020-24372"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-md9t-9wth-g3ar"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/7918?format=json","vulnerability_id":"VCID-mecu-yh1v-4ken","summary":"","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-15890","reference_id":"","reference_type":"","scores":[{"value":"0.00752","scoring_system":"epss","scoring_elements":"0.7363","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-15890"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15890","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15890"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=966148","reference_id":"966148","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=966148"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/94222?format=json","purl":"pkg:deb/debian/luajit@2.1.0~beta3%2Bdfsg-5.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/luajit@2.1.0~beta3%252Bdfsg-5.3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94223?format=json","purl":"pkg:deb/debian/luajit@2.1.0~beta3%2Bdfsg-5.3%2Bdeb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/luajit@2.1.0~beta3%252Bdfsg-5.3%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94221?format=json","purl":"pkg:deb/debian/luajit@2.1.0~beta3%2Bgit20210112%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/luajit@2.1.0~beta3%252Bgit20210112%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94220?format=json","purl":"pkg:deb/debian/luajit@2.1.0~beta3%2Bgit20220320%2Bdfsg-4.1%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/luajit@2.1.0~beta3%252Bgit20220320%252Bdfsg-4.1%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94225?format=json","purl":"pkg:deb/debian/luajit@2.1.0%2Bopenresty20250117-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/luajit@2.1.0%252Bopenresty20250117-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94224?format=json","purl":"pkg:deb/debian/luajit@2.1.0%2Bopenresty20251030-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/luajit@2.1.0%252Bopenresty20251030-1%3Fdistro=trixie"}],"aliases":["CVE-2020-15890"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-mecu-yh1v-4ken"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/18338?format=json","vulnerability_id":"VCID-ms4q-3hq8-eyc2","summary":"","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-25176","reference_id":"","reference_type":"","scores":[{"value":"0.00691","scoring_system":"epss","scoring_elements":"0.72299","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-25176"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-25176","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-25176"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/LuaJIT/LuaJIT/issues/1149","reference_id":"1149","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-07-08T15:40:56Z/"}],"url":"https://github.com/LuaJIT/LuaJIT/issues/1149"},{"reference_url":"https://github.com/LuaJIT/LuaJIT/commit/343ce0edaf3906a62022936175b2f5410024cbfc","reference_id":"343ce0edaf3906a62022936175b2f5410024cbfc","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-07-08T15:40:56Z/"}],"url":"https://github.com/LuaJIT/LuaJIT/commit/343ce0edaf3906a62022936175b2f5410024cbfc"},{"reference_url":"https://github.com/openresty/luajit2/commit/343ce0edaf3906a62022936175b2f5410024cbfc","reference_id":"343ce0edaf3906a62022936175b2f5410024cbfc","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-07-08T15:40:56Z/"}],"url":"https://github.com/openresty/luajit2/commit/343ce0edaf3906a62022936175b2f5410024cbfc"},{"reference_url":"https://gist.github.com/pwnhacker0x18/cd75d01fc7c9b6c85c183fbe5353d276","reference_id":"cd75d01fc7c9b6c85c183fbe5353d276","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-07-08T15:40:56Z/"}],"url":"https://gist.github.com/pwnhacker0x18/cd75d01fc7c9b6c85c183fbe5353d276"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/94222?format=json","purl":"pkg:deb/debian/luajit@2.1.0~beta3%2Bdfsg-5.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/luajit@2.1.0~beta3%252Bdfsg-5.3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94223?format=json","purl":"pkg:deb/debian/luajit@2.1.0~beta3%2Bdfsg-5.3%2Bdeb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/luajit@2.1.0~beta3%252Bdfsg-5.3%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94220?format=json","purl":"pkg:deb/debian/luajit@2.1.0~beta3%2Bgit20220320%2Bdfsg-4.1%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/luajit@2.1.0~beta3%252Bgit20220320%252Bdfsg-4.1%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94226?format=json","purl":"pkg:deb/debian/luajit@2.1.0%2Bopenresty20240314-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/luajit@2.1.0%252Bopenresty20240314-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94225?format=json","purl":"pkg:deb/debian/luajit@2.1.0%2Bopenresty20250117-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/luajit@2.1.0%252Bopenresty20250117-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94224?format=json","purl":"pkg:deb/debian/luajit@2.1.0%2Bopenresty20251030-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/luajit@2.1.0%252Bopenresty20251030-1%3Fdistro=trixie"}],"aliases":["CVE-2024-25176"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ms4q-3hq8-eyc2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/160823?format=json","vulnerability_id":"VCID-qa1s-mcr2-2ket","summary":"In LuaJIT through 2.0.5, as used in Moonjit before 2.1.2 and other products, debug.getinfo has a type confusion issue that leads to arbitrary memory write or read operations, because certain cases involving valid stack levels and > options are mishandled. NOTE: The LuaJIT project owner states that the debug libary is unsafe by definition and that this is not a vulnerability. When LuaJIT was originally developed, the expectation was that the entire debug library had no security guarantees and thus it made no sense to assign CVEs. However, not all users of later LuaJIT derivatives share this perspective","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-19391","reference_id":"","reference_type":"","scores":[{"value":"0.00209","scoring_system":"epss","scoring_elements":"0.43446","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-19391"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19391","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19391"},{"reference_url":"https://github.com/LuaJIT/LuaJIT/pull/526","reference_id":"526","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-11T20:37:18Z/"}],"url":"https://github.com/LuaJIT/LuaJIT/pull/526"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=946053","reference_id":"946053","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=946053"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/94222?format=json","purl":"pkg:deb/debian/luajit@2.1.0~beta3%2Bdfsg-5.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/luajit@2.1.0~beta3%252Bdfsg-5.3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94223?format=json","purl":"pkg:deb/debian/luajit@2.1.0~beta3%2Bdfsg-5.3%2Bdeb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/luajit@2.1.0~beta3%252Bdfsg-5.3%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94221?format=json","purl":"pkg:deb/debian/luajit@2.1.0~beta3%2Bgit20210112%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/luajit@2.1.0~beta3%252Bgit20210112%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94220?format=json","purl":"pkg:deb/debian/luajit@2.1.0~beta3%2Bgit20220320%2Bdfsg-4.1%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/luajit@2.1.0~beta3%252Bgit20220320%252Bdfsg-4.1%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94225?format=json","purl":"pkg:deb/debian/luajit@2.1.0%2Bopenresty20250117-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/luajit@2.1.0%252Bopenresty20250117-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94224?format=json","purl":"pkg:deb/debian/luajit@2.1.0%2Bopenresty20251030-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/luajit@2.1.0%252Bopenresty20251030-1%3Fdistro=trixie"}],"aliases":["CVE-2019-19391"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qa1s-mcr2-2ket"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/18339?format=json","vulnerability_id":"VCID-rwhe-94m2-4uff","summary":"","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-25177","reference_id":"","reference_type":"","scores":[{"value":"0.01141","scoring_system":"epss","scoring_elements":"0.78835","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-25177"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-25177","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-25177"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/LuaJIT/LuaJIT/issues/1147","reference_id":"1147","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-08T15:37:06Z/"}],"url":"https://github.com/LuaJIT/LuaJIT/issues/1147"},{"reference_url":"https://github.com/LuaJIT/LuaJIT/commit/85b4fed0b0353dd78c8c875c2f562d522a2b310f","reference_id":"85b4fed0b0353dd78c8c875c2f562d522a2b310f","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-08T15:37:06Z/"}],"url":"https://github.com/LuaJIT/LuaJIT/commit/85b4fed0b0353dd78c8c875c2f562d522a2b310f"},{"reference_url":"https://github.com/openresty/luajit2/commit/85b4fed0b0353dd78c8c875c2f562d522a2b310f","reference_id":"85b4fed0b0353dd78c8c875c2f562d522a2b310f","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-08T15:37:06Z/"}],"url":"https://github.com/openresty/luajit2/commit/85b4fed0b0353dd78c8c875c2f562d522a2b310f"},{"reference_url":"https://gist.github.com/pwnhacker0x18/a73f560d79f2c3d4011d6c5a2676f04a","reference_id":"a73f560d79f2c3d4011d6c5a2676f04a","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-08T15:37:06Z/"}],"url":"https://gist.github.com/pwnhacker0x18/a73f560d79f2c3d4011d6c5a2676f04a"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/94222?format=json","purl":"pkg:deb/debian/luajit@2.1.0~beta3%2Bdfsg-5.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/luajit@2.1.0~beta3%252Bdfsg-5.3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94223?format=json","purl":"pkg:deb/debian/luajit@2.1.0~beta3%2Bdfsg-5.3%2Bdeb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/luajit@2.1.0~beta3%252Bdfsg-5.3%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94220?format=json","purl":"pkg:deb/debian/luajit@2.1.0~beta3%2Bgit20220320%2Bdfsg-4.1%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/luajit@2.1.0~beta3%252Bgit20220320%252Bdfsg-4.1%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94226?format=json","purl":"pkg:deb/debian/luajit@2.1.0%2Bopenresty20240314-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/luajit@2.1.0%252Bopenresty20240314-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94225?format=json","purl":"pkg:deb/debian/luajit@2.1.0%2Bopenresty20250117-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/luajit@2.1.0%252Bopenresty20250117-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94224?format=json","purl":"pkg:deb/debian/luajit@2.1.0%2Bopenresty20251030-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/luajit@2.1.0%252Bopenresty20251030-1%3Fdistro=trixie"}],"aliases":["CVE-2024-25177"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rwhe-94m2-4uff"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/18340?format=json","vulnerability_id":"VCID-vz6y-1j9y-sfad","summary":"","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-25178","reference_id":"","reference_type":"","scores":[{"value":"0.00691","scoring_system":"epss","scoring_elements":"0.72299","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-25178"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-25178","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-25178"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/LuaJIT/LuaJIT/issues/1152","reference_id":"1152","reference_type":"","scores":[{"value":"9.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-08T15:35:53Z/"}],"url":"https://github.com/LuaJIT/LuaJIT/issues/1152"},{"reference_url":"https://gist.github.com/pwnhacker0x18/423b4292f301ab274b42d5ed6e0b87d8","reference_id":"423b4292f301ab274b42d5ed6e0b87d8","reference_type":"","scores":[{"value":"9.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-08T15:35:53Z/"}],"url":"https://gist.github.com/pwnhacker0x18/423b4292f301ab274b42d5ed6e0b87d8"},{"reference_url":"https://github.com/LuaJIT/LuaJIT/commit/defe61a56751a0db5f00ff3ab7b8f45436ba74c8","reference_id":"defe61a56751a0db5f00ff3ab7b8f45436ba74c8","reference_type":"","scores":[{"value":"9.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-08T15:35:53Z/"}],"url":"https://github.com/LuaJIT/LuaJIT/commit/defe61a56751a0db5f00ff3ab7b8f45436ba74c8"},{"reference_url":"https://github.com/openresty/luajit2/commit/defe61a56751a0db5f00ff3ab7b8f45436ba74c8","reference_id":"defe61a56751a0db5f00ff3ab7b8f45436ba74c8","reference_type":"","scores":[{"value":"9.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-08T15:35:53Z/"}],"url":"https://github.com/openresty/luajit2/commit/defe61a56751a0db5f00ff3ab7b8f45436ba74c8"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/94222?format=json","purl":"pkg:deb/debian/luajit@2.1.0~beta3%2Bdfsg-5.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/luajit@2.1.0~beta3%252Bdfsg-5.3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94223?format=json","purl":"pkg:deb/debian/luajit@2.1.0~beta3%2Bdfsg-5.3%2Bdeb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/luajit@2.1.0~beta3%252Bdfsg-5.3%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94220?format=json","purl":"pkg:deb/debian/luajit@2.1.0~beta3%2Bgit20220320%2Bdfsg-4.1%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/luajit@2.1.0~beta3%252Bgit20220320%252Bdfsg-4.1%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94226?format=json","purl":"pkg:deb/debian/luajit@2.1.0%2Bopenresty20240314-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/luajit@2.1.0%252Bopenresty20240314-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94225?format=json","purl":"pkg:deb/debian/luajit@2.1.0%2Bopenresty20250117-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/luajit@2.1.0%252Bopenresty20250117-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/94224?format=json","purl":"pkg:deb/debian/luajit@2.1.0%2Bopenresty20251030-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/luajit@2.1.0%252Bopenresty20251030-1%3Fdistro=trixie"}],"aliases":["CVE-2024-25178"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vz6y-1j9y-sfad"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/luajit@2.1.0~beta3%252Bgit20220320%252Bdfsg-4.1%252Bdeb12u1%3Fdistro=trixie"}