Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-kvcg-87qf-eqgh

Summary multiple issues

Aliases

alias	CVE-2022-0891

Fixed_packages

url	pkg:alpm/archlinux/lib32-libtiff@4.3.0-2
purl	pkg:alpm/archlinux/lib32-libtiff@4.3.0-2
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/lib32-libtiff@4.3.0-2

url pkg:alpm/archlinux/libtiff@4.3.0-2

purl pkg:alpm/archlinux/libtiff@4.3.0-2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r86q-4y35-c7ef

vulnerability	VCID-wvx6-pp15-4fcu

resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/libtiff@4.3.0-2

url	pkg:apk/alpine/tiff@4.3.0-r1?arch=aarch64&distroversion=edge&reponame=main
purl	pkg:apk/alpine/tiff@4.3.0-r1?arch=aarch64&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/tiff@4.3.0-r1%3Farch=aarch64&distroversion=edge&reponame=main

url	pkg:apk/alpine/tiff@4.3.0-r1?arch=aarch64&distroversion=v3.21&reponame=main
purl	pkg:apk/alpine/tiff@4.3.0-r1?arch=aarch64&distroversion=v3.21&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/tiff@4.3.0-r1%3Farch=aarch64&distroversion=v3.21&reponame=main

url	pkg:apk/alpine/tiff@4.3.0-r1?arch=aarch64&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/tiff@4.3.0-r1?arch=aarch64&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/tiff@4.3.0-r1%3Farch=aarch64&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/tiff@4.3.0-r1?arch=armhf&distroversion=edge&reponame=main
purl	pkg:apk/alpine/tiff@4.3.0-r1?arch=armhf&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/tiff@4.3.0-r1%3Farch=armhf&distroversion=edge&reponame=main

url	pkg:apk/alpine/tiff@4.3.0-r1?arch=armhf&distroversion=v3.21&reponame=main
purl	pkg:apk/alpine/tiff@4.3.0-r1?arch=armhf&distroversion=v3.21&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/tiff@4.3.0-r1%3Farch=armhf&distroversion=v3.21&reponame=main

url	pkg:apk/alpine/tiff@4.3.0-r1?arch=armhf&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/tiff@4.3.0-r1?arch=armhf&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/tiff@4.3.0-r1%3Farch=armhf&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/tiff@4.3.0-r1?arch=armv7&distroversion=edge&reponame=main
purl	pkg:apk/alpine/tiff@4.3.0-r1?arch=armv7&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/tiff@4.3.0-r1%3Farch=armv7&distroversion=edge&reponame=main

url	pkg:apk/alpine/tiff@4.3.0-r1?arch=armv7&distroversion=v3.21&reponame=main
purl	pkg:apk/alpine/tiff@4.3.0-r1?arch=armv7&distroversion=v3.21&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/tiff@4.3.0-r1%3Farch=armv7&distroversion=v3.21&reponame=main

url	pkg:apk/alpine/tiff@4.3.0-r1?arch=armv7&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/tiff@4.3.0-r1?arch=armv7&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/tiff@4.3.0-r1%3Farch=armv7&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/tiff@4.3.0-r1?arch=loongarch64&distroversion=edge&reponame=main
purl	pkg:apk/alpine/tiff@4.3.0-r1?arch=loongarch64&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/tiff@4.3.0-r1%3Farch=loongarch64&distroversion=edge&reponame=main

url	pkg:apk/alpine/tiff@4.3.0-r1?arch=loongarch64&distroversion=v3.21&reponame=main
purl	pkg:apk/alpine/tiff@4.3.0-r1?arch=loongarch64&distroversion=v3.21&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/tiff@4.3.0-r1%3Farch=loongarch64&distroversion=v3.21&reponame=main

url	pkg:apk/alpine/tiff@4.3.0-r1?arch=loongarch64&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/tiff@4.3.0-r1?arch=loongarch64&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/tiff@4.3.0-r1%3Farch=loongarch64&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/tiff@4.3.0-r1?arch=ppc64le&distroversion=edge&reponame=main
purl	pkg:apk/alpine/tiff@4.3.0-r1?arch=ppc64le&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/tiff@4.3.0-r1%3Farch=ppc64le&distroversion=edge&reponame=main

url	pkg:apk/alpine/tiff@4.3.0-r1?arch=ppc64le&distroversion=v3.21&reponame=main
purl	pkg:apk/alpine/tiff@4.3.0-r1?arch=ppc64le&distroversion=v3.21&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/tiff@4.3.0-r1%3Farch=ppc64le&distroversion=v3.21&reponame=main

url	pkg:apk/alpine/tiff@4.3.0-r1?arch=ppc64le&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/tiff@4.3.0-r1?arch=ppc64le&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/tiff@4.3.0-r1%3Farch=ppc64le&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/tiff@4.3.0-r1?arch=riscv64&distroversion=edge&reponame=main
purl	pkg:apk/alpine/tiff@4.3.0-r1?arch=riscv64&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/tiff@4.3.0-r1%3Farch=riscv64&distroversion=edge&reponame=main

url	pkg:apk/alpine/tiff@4.3.0-r1?arch=riscv64&distroversion=v3.21&reponame=main
purl	pkg:apk/alpine/tiff@4.3.0-r1?arch=riscv64&distroversion=v3.21&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/tiff@4.3.0-r1%3Farch=riscv64&distroversion=v3.21&reponame=main

url	pkg:apk/alpine/tiff@4.3.0-r1?arch=riscv64&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/tiff@4.3.0-r1?arch=riscv64&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/tiff@4.3.0-r1%3Farch=riscv64&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/tiff@4.3.0-r1?arch=s390x&distroversion=edge&reponame=main
purl	pkg:apk/alpine/tiff@4.3.0-r1?arch=s390x&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/tiff@4.3.0-r1%3Farch=s390x&distroversion=edge&reponame=main

url	pkg:apk/alpine/tiff@4.3.0-r1?arch=s390x&distroversion=v3.21&reponame=main
purl	pkg:apk/alpine/tiff@4.3.0-r1?arch=s390x&distroversion=v3.21&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/tiff@4.3.0-r1%3Farch=s390x&distroversion=v3.21&reponame=main

url	pkg:apk/alpine/tiff@4.3.0-r1?arch=s390x&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/tiff@4.3.0-r1?arch=s390x&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/tiff@4.3.0-r1%3Farch=s390x&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/tiff@4.3.0-r1?arch=x86_64&distroversion=edge&reponame=main
purl	pkg:apk/alpine/tiff@4.3.0-r1?arch=x86_64&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/tiff@4.3.0-r1%3Farch=x86_64&distroversion=edge&reponame=main

url	pkg:apk/alpine/tiff@4.3.0-r1?arch=x86_64&distroversion=v3.21&reponame=main
purl	pkg:apk/alpine/tiff@4.3.0-r1?arch=x86_64&distroversion=v3.21&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/tiff@4.3.0-r1%3Farch=x86_64&distroversion=v3.21&reponame=main

url	pkg:apk/alpine/tiff@4.3.0-r1?arch=x86_64&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/tiff@4.3.0-r1?arch=x86_64&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/tiff@4.3.0-r1%3Farch=x86_64&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/tiff@4.3.0-r1?arch=x86&distroversion=edge&reponame=main
purl	pkg:apk/alpine/tiff@4.3.0-r1?arch=x86&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/tiff@4.3.0-r1%3Farch=x86&distroversion=edge&reponame=main

url	pkg:apk/alpine/tiff@4.3.0-r1?arch=x86&distroversion=v3.21&reponame=main
purl	pkg:apk/alpine/tiff@4.3.0-r1?arch=x86&distroversion=v3.21&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/tiff@4.3.0-r1%3Farch=x86&distroversion=v3.21&reponame=main

url	pkg:apk/alpine/tiff@4.3.0-r1?arch=x86&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/tiff@4.3.0-r1?arch=x86&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/tiff@4.3.0-r1%3Farch=x86&distroversion=v3.22&reponame=main

url	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u1?distro=trixie
purl	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u1%3Fdistro=trixie

url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-67bq-3nun-13h5

vulnerability	VCID-8tzv-mjup-uuc5

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-ja4n-emaj-dqe7

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.3.0-6?distro=trixie
purl	pkg:deb/debian/tiff@4.3.0-6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.3.0-6%3Fdistro=trixie

url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-aa9u-26t2-rfgq

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u4%3Fdistro=trixie

url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-yr8u-at1r-z3c6

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u2%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie

url	pkg:ebuild/media-libs/tiff@4.4.0
purl	pkg:ebuild/media-libs/tiff@4.4.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/tiff@4.4.0

Affected_packages

url pkg:alpm/archlinux/lib32-libtiff@4.3.0-1

purl pkg:alpm/archlinux/lib32-libtiff@4.3.0-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-68py-gp96-hkb3

vulnerability	VCID-77w4-fchn-9yh2

vulnerability	VCID-f5gk-mbwh-kfg7

vulnerability	VCID-fd5e-62s6-9fet

vulnerability	VCID-gk8v-ttve-guab

vulnerability	VCID-kvcg-87qf-eqgh

vulnerability	VCID-sruy-6mpr-j3cw

vulnerability	VCID-x6zf-yhh2-rubv

vulnerability	VCID-zgjh-bb29-nkhc

resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/lib32-libtiff@4.3.0-1

url pkg:alpm/archlinux/libtiff@4.3.0-1

purl pkg:alpm/archlinux/libtiff@4.3.0-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-68py-gp96-hkb3

vulnerability	VCID-77w4-fchn-9yh2

vulnerability	VCID-f5gk-mbwh-kfg7

vulnerability	VCID-fd5e-62s6-9fet

vulnerability	VCID-gk8v-ttve-guab

vulnerability	VCID-kvcg-87qf-eqgh

vulnerability	VCID-sruy-6mpr-j3cw

vulnerability	VCID-x6zf-yhh2-rubv

vulnerability	VCID-zgjh-bb29-nkhc

resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/libtiff@4.3.0-1

url pkg:conan/libtiff@3.9.0

purl pkg:conan/libtiff@3.9.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6wfa-5chm-2ubp

vulnerability	VCID-fd5e-62s6-9fet

vulnerability	VCID-kvcg-87qf-eqgh

resource_url http://public2.vulnerablecode.io/packages/pkg:conan/libtiff@3.9.0

url pkg:conan/libtiff@4.3.0

purl pkg:conan/libtiff@4.3.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2dg7-jt13-syby

vulnerability	VCID-68py-gp96-hkb3

vulnerability	VCID-77w4-fchn-9yh2

vulnerability	VCID-8tzv-mjup-uuc5

vulnerability	VCID-f5gk-mbwh-kfg7

vulnerability	VCID-fd5e-62s6-9fet

vulnerability	VCID-gk8v-ttve-guab

vulnerability	VCID-kvcg-87qf-eqgh

vulnerability	VCID-s5u9-91un-pygc

vulnerability	VCID-sruy-6mpr-j3cw

vulnerability	VCID-x6zf-yhh2-rubv

vulnerability	VCID-zgjh-bb29-nkhc

vulnerability	VCID-zxdt-fbem-6qd2

resource_url http://public2.vulnerablecode.io/packages/pkg:conan/libtiff@4.3.0

url pkg:rpm/redhat/libtiff@4.0.9-23?arch=el8

purl pkg:rpm/redhat/libtiff@4.0.9-23?arch=el8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-68py-gp96-hkb3

vulnerability	VCID-77w4-fchn-9yh2

vulnerability	VCID-f5gk-mbwh-kfg7

vulnerability	VCID-fd5e-62s6-9fet

vulnerability	VCID-gk8v-ttve-guab

vulnerability	VCID-kvcg-87qf-eqgh

vulnerability	VCID-sruy-6mpr-j3cw

vulnerability	VCID-wvx6-pp15-4fcu

vulnerability	VCID-x6zf-yhh2-rubv

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libtiff@4.0.9-23%3Farch=el8

url pkg:rpm/redhat/libtiff@4.4.0-2?arch=el9

purl pkg:rpm/redhat/libtiff@4.4.0-2?arch=el9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-68py-gp96-hkb3

vulnerability	VCID-77w4-fchn-9yh2

vulnerability	VCID-f5gk-mbwh-kfg7

vulnerability	VCID-fd5e-62s6-9fet

vulnerability	VCID-gk8v-ttve-guab

vulnerability	VCID-kvcg-87qf-eqgh

vulnerability	VCID-r86q-4y35-c7ef

vulnerability	VCID-sruy-6mpr-j3cw

vulnerability	VCID-wvx6-pp15-4fcu

vulnerability	VCID-x6zf-yhh2-rubv

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libtiff@4.4.0-2%3Farch=el9

References

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0891.json

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0891.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-0891

reference_id

reference_type

scores

value	0.00029
scoring_system	epss
scoring_elements	0.08707
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-0891

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://gitlab.com/freedesktop-sdk/mirrors/gitlab/libtiff/libtiff/-/commit/232282fd8f9c21eefe8d2d2b96cdbbb172fe7b7c
reference_id
reference_type
scores
url	https://gitlab.com/freedesktop-sdk/mirrors/gitlab/libtiff/libtiff/-/commit/232282fd8f9c21eefe8d2d2b96cdbbb172fe7b7c

reference_url	https://gitlab.com/libtiff/libtiff/-/issues/380
reference_id
reference_type
scores
url	https://gitlab.com/libtiff/libtiff/-/issues/380

reference_url	https://gitlab.com/libtiff/libtiff/-/issues/382
reference_id
reference_type
scores
url	https://gitlab.com/libtiff/libtiff/-/issues/382

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2064411
reference_id	2064411
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2064411

reference_url	https://security.archlinux.org/ASA-202204-6
reference_id	ASA-202204-6
reference_type
scores
url	https://security.archlinux.org/ASA-202204-6

reference_url

https://security.archlinux.org/AVG-2658

reference_id

AVG-2658

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2658

reference_url

https://security.archlinux.org/AVG-2659

reference_id

AVG-2659

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2659

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2022-0891
reference_id	CVE-2022-0891
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2022-0891

reference_url	https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0891.json
reference_id	CVE-2022-0891.JSON
reference_type
scores
url	https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0891.json

reference_url	https://security.gentoo.org/glsa/202210-10
reference_id	GLSA-202210-10
reference_type
scores
url	https://security.gentoo.org/glsa/202210-10

reference_url	https://access.redhat.com/errata/RHSA-2022:7585
reference_id	RHSA-2022:7585
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:7585

reference_url	https://access.redhat.com/errata/RHSA-2022:8194
reference_id	RHSA-2022:8194
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:8194

reference_url	https://usn.ubuntu.com/5421-1/
reference_id	USN-5421-1
reference_type
scores
url	https://usn.ubuntu.com/5421-1/

Weaknesses

cwe_id	1035
name	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.

cwe_id	787
name	Out-of-bounds Write
description	The product writes data past the end, or before the beginning, of the intended buffer.

cwe_id	937
name	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.

cwe_id	120
name	Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
description	The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

Exploits

Severity_range_score 6.1 - 8.9

Exploitability 0.5

Weighted_severity 8.0

Risk_score 4.0

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-kvcg-87qf-eqgh

Vulnerability Instance