VulnerableCode.io REST API

Lookup for vulnerabilities affecting packages.

GET /api/vulnerabilities/31479?format=api

HTTP 200 OK
Allow: GET, HEAD, OPTIONS
Content-Type: application/json
Vary: Accept

{
    "url": "http://public2.vulnerablecode.io/api/vulnerabilities/31479?format=api",
    "vulnerability_id": "VCID-j9kg-rd4y-y7by",
    "summary": "Multiple vulnerabilities have been discovered in Rust, the worst of which could result in denial of service.",
    "aliases": [
        {
            "alias": "CVE-2022-21658"
        }
    ],
    "fixed_packages": [
        {
            "url": "http://public2.vulnerablecode.io/api/packages/938937?format=api",
            "purl": "pkg:deb/debian/rustc@1.57.0%2Bdfsg1-1?distro=trixie",
            "is_vulnerable": false,
            "affected_by_vulnerabilities": [],
            "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/rustc@1.57.0%252Bdfsg1-1%3Fdistro=trixie"
        },
        {
            "url": "http://public2.vulnerablecode.io/api/packages/938925?format=api",
            "purl": "pkg:deb/debian/rustc@1.63.0%2Bdfsg1-2?distro=trixie",
            "is_vulnerable": true,
            "affected_by_vulnerabilities": [
                {
                    "vulnerability": "VCID-ehdy-7aak-r3bt"
                },
                {
                    "vulnerability": "VCID-qj1y-b8m1-hyfm"
                }
            ],
            "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/rustc@1.63.0%252Bdfsg1-2%3Fdistro=trixie"
        },
        {
            "url": "http://public2.vulnerablecode.io/api/packages/994783?format=api",
            "purl": "pkg:deb/debian/rustc@1.63.0%2Bdfsg1-2",
            "is_vulnerable": true,
            "affected_by_vulnerabilities": [
                {
                    "vulnerability": "VCID-ehdy-7aak-r3bt"
                },
                {
                    "vulnerability": "VCID-qj1y-b8m1-hyfm"
                }
            ],
            "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/rustc@1.63.0%252Bdfsg1-2"
        },
        {
            "url": "http://public2.vulnerablecode.io/api/packages/938929?format=api",
            "purl": "pkg:deb/debian/rustc@1.85.0%2Bdfsg3-1?distro=trixie",
            "is_vulnerable": true,
            "affected_by_vulnerabilities": [
                {
                    "vulnerability": "VCID-ehdy-7aak-r3bt"
                },
                {
                    "vulnerability": "VCID-qj1y-b8m1-hyfm"
                }
            ],
            "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/rustc@1.85.0%252Bdfsg3-1%3Fdistro=trixie"
        },
        {
            "url": "http://public2.vulnerablecode.io/api/packages/938928?format=api",
            "purl": "pkg:deb/debian/rustc@1.92.0%2Bdfsg1-2?distro=trixie",
            "is_vulnerable": false,
            "affected_by_vulnerabilities": [],
            "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/rustc@1.92.0%252Bdfsg1-2%3Fdistro=trixie"
        },
        {
            "url": "http://public2.vulnerablecode.io/api/packages/1059655?format=api",
            "purl": "pkg:deb/debian/rustc@1.93.1%2Bdfsg1-2?distro=trixie",
            "is_vulnerable": false,
            "affected_by_vulnerabilities": [],
            "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/rustc@1.93.1%252Bdfsg1-2%3Fdistro=trixie"
        },
        {
            "url": "http://public2.vulnerablecode.io/api/packages/1067629?format=api",
            "purl": "pkg:deb/debian/rustc@1.94.1%2Bdfsg1-1?distro=trixie",
            "is_vulnerable": false,
            "affected_by_vulnerabilities": [],
            "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/rustc@1.94.1%252Bdfsg1-1%3Fdistro=trixie"
        },
        {
            "url": "http://public2.vulnerablecode.io/api/packages/71877?format=api",
            "purl": "pkg:ebuild/dev-lang/rust@1.63.0-r1",
            "is_vulnerable": false,
            "affected_by_vulnerabilities": [],
            "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/rust@1.63.0-r1"
        },
        {
            "url": "http://public2.vulnerablecode.io/api/packages/71878?format=api",
            "purl": "pkg:ebuild/dev-lang/rust-bin@1.63.0-r1",
            "is_vulnerable": false,
            "affected_by_vulnerabilities": [],
            "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/rust-bin@1.63.0-r1"
        },
        {
            "url": "http://public2.vulnerablecode.io/api/packages/71879?format=api",
            "purl": "pkg:ebuild/dev-lang/rust-bin@1.64.0",
            "is_vulnerable": false,
            "affected_by_vulnerabilities": [],
            "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/rust-bin@1.64.0"
        }
    ],
    "affected_packages": [
        {
            "url": "http://public2.vulnerablecode.io/api/packages/938927?format=api",
            "purl": "pkg:deb/debian/rustc@1.48.0%2Bdfsg1-2?distro=trixie",
            "is_vulnerable": true,
            "affected_by_vulnerabilities": [
                {
                    "vulnerability": "VCID-4khp-kevq-xff5"
                },
                {
                    "vulnerability": "VCID-69zd-gcvx-fuhr"
                },
                {
                    "vulnerability": "VCID-7ap9-xghv-dbdy"
                },
                {
                    "vulnerability": "VCID-d8yv-ngej-1kf7"
                },
                {
                    "vulnerability": "VCID-ehdy-7aak-r3bt"
                },
                {
                    "vulnerability": "VCID-f4bw-5erp-4uc6"
                },
                {
                    "vulnerability": "VCID-fu46-5dhv-ckdt"
                },
                {
                    "vulnerability": "VCID-j9kg-rd4y-y7by"
                },
                {
                    "vulnerability": "VCID-pbjz-th4w-tqgb"
                },
                {
                    "vulnerability": "VCID-pvm9-wtbx-1ubx"
                },
                {
                    "vulnerability": "VCID-qj1y-b8m1-hyfm"
                },
                {
                    "vulnerability": "VCID-wdu6-3vph-aqb7"
                },
                {
                    "vulnerability": "VCID-wpe1-jr23-duhh"
                },
                {
                    "vulnerability": "VCID-y25s-c64z-57a6"
                }
            ],
            "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/rustc@1.48.0%252Bdfsg1-2%3Fdistro=trixie"
        },
        {
            "url": "http://public2.vulnerablecode.io/api/packages/994782?format=api",
            "purl": "pkg:deb/debian/rustc@1.48.0%2Bdfsg1-2",
            "is_vulnerable": true,
            "affected_by_vulnerabilities": [
                {
                    "vulnerability": "VCID-4khp-kevq-xff5"
                },
                {
                    "vulnerability": "VCID-69zd-gcvx-fuhr"
                },
                {
                    "vulnerability": "VCID-7ap9-xghv-dbdy"
                },
                {
                    "vulnerability": "VCID-d8yv-ngej-1kf7"
                },
                {
                    "vulnerability": "VCID-ehdy-7aak-r3bt"
                },
                {
                    "vulnerability": "VCID-f4bw-5erp-4uc6"
                },
                {
                    "vulnerability": "VCID-fu46-5dhv-ckdt"
                },
                {
                    "vulnerability": "VCID-j9kg-rd4y-y7by"
                },
                {
                    "vulnerability": "VCID-pbjz-th4w-tqgb"
                },
                {
                    "vulnerability": "VCID-pvm9-wtbx-1ubx"
                },
                {
                    "vulnerability": "VCID-qj1y-b8m1-hyfm"
                },
                {
                    "vulnerability": "VCID-wdu6-3vph-aqb7"
                },
                {
                    "vulnerability": "VCID-wpe1-jr23-duhh"
                },
                {
                    "vulnerability": "VCID-y25s-c64z-57a6"
                }
            ],
            "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/rustc@1.48.0%252Bdfsg1-2"
        }
    ],
    "references": [
        {
            "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21658.json",
            "reference_id": "",
            "reference_type": "",
            "scores": [
                {
                    "value": "5.3",
                    "scoring_system": "cvssv3",
                    "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N"
                }
            ],
            "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21658.json"
        },
        {
            "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-21658",
            "reference_id": "",
            "reference_type": "",
            "scores": [
                {
                    "value": "0.00893",
                    "scoring_system": "epss",
                    "scoring_elements": "0.7552",
                    "published_at": "2026-04-02T12:55:00Z"
                },
                {
                    "value": "0.00893",
                    "scoring_system": "epss",
                    "scoring_elements": "0.7555",
                    "published_at": "2026-04-04T12:55:00Z"
                },
                {
                    "value": "0.00893",
                    "scoring_system": "epss",
                    "scoring_elements": "0.75582",
                    "published_at": "2026-04-13T12:55:00Z"
                },
                {
                    "value": "0.00893",
                    "scoring_system": "epss",
                    "scoring_elements": "0.75589",
                    "published_at": "2026-04-12T12:55:00Z"
                },
                {
                    "value": "0.00893",
                    "scoring_system": "epss",
                    "scoring_elements": "0.75608",
                    "published_at": "2026-04-11T12:55:00Z"
                },
                {
                    "value": "0.00893",
                    "scoring_system": "epss",
                    "scoring_elements": "0.75583",
                    "published_at": "2026-04-09T12:55:00Z"
                },
                {
                    "value": "0.00893",
                    "scoring_system": "epss",
                    "scoring_elements": "0.75572",
                    "published_at": "2026-04-08T12:55:00Z"
                },
                {
                    "value": "0.00893",
                    "scoring_system": "epss",
                    "scoring_elements": "0.7553",
                    "published_at": "2026-04-07T12:55:00Z"
                },
                {
                    "value": "0.00906",
                    "scoring_system": "epss",
                    "scoring_elements": "0.75834",
                    "published_at": "2026-04-29T12:55:00Z"
                },
                {
                    "value": "0.00906",
                    "scoring_system": "epss",
                    "scoring_elements": "0.75817",
                    "published_at": "2026-04-24T12:55:00Z"
                },
                {
                    "value": "0.00906",
                    "scoring_system": "epss",
                    "scoring_elements": "0.75778",
                    "published_at": "2026-04-21T12:55:00Z"
                },
                {
                    "value": "0.00906",
                    "scoring_system": "epss",
                    "scoring_elements": "0.75793",
                    "published_at": "2026-04-18T12:55:00Z"
                },
                {
                    "value": "0.00906",
                    "scoring_system": "epss",
                    "scoring_elements": "0.75895",
                    "published_at": "2026-05-09T12:55:00Z"
                },
                {
                    "value": "0.00906",
                    "scoring_system": "epss",
                    "scoring_elements": "0.75871",
                    "published_at": "2026-05-07T12:55:00Z"
                },
                {
                    "value": "0.00906",
                    "scoring_system": "epss",
                    "scoring_elements": "0.75842",
                    "published_at": "2026-05-05T12:55:00Z"
                },
                {
                    "value": "0.00906",
                    "scoring_system": "epss",
                    "scoring_elements": "0.75823",
                    "published_at": "2026-04-26T12:55:00Z"
                },
                {
                    "value": "0.00906",
                    "scoring_system": "epss",
                    "scoring_elements": "0.75789",
                    "published_at": "2026-04-16T12:55:00Z"
                }
            ],
            "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-21658"
        },
        {
            "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21658",
            "reference_id": "",
            "reference_type": "",
            "scores": [],
            "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21658"
        },
        {
            "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml",
            "reference_id": "",
            "reference_type": "",
            "scores": [
                {
                    "value": "6.2",
                    "scoring_system": "cvssv3.1",
                    "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"
                }
            ],
            "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"
        },
        {
            "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2041504",
            "reference_id": "2041504",
            "reference_type": "",
            "scores": [],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2041504"
        },
        {
            "reference_url": "https://github.com/rust-lang/rust/pull/93110/commits/32ed6e599bb4722efefd78bbc9cd7ec4613cb946",
            "reference_id": "32ed6e599bb4722efefd78bbc9cd7ec4613cb946",
            "reference_type": "",
            "scores": [
                {
                    "value": "7.3",
                    "scoring_system": "cvssv3.1",
                    "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:H"
                },
                {
                    "value": "Track",
                    "scoring_system": "ssvc",
                    "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-22T15:52:12Z/"
                }
            ],
            "url": "https://github.com/rust-lang/rust/pull/93110/commits/32ed6e599bb4722efefd78bbc9cd7ec4613cb946"
        },
        {
            "reference_url": "https://github.com/rust-lang/rust/pull/93110/commits/406cc071d6cfdfdb678bf3d83d766851de95abaf",
            "reference_id": "406cc071d6cfdfdb678bf3d83d766851de95abaf",
            "reference_type": "",
            "scores": [
                {
                    "value": "7.3",
                    "scoring_system": "cvssv3.1",
                    "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:H"
                },
                {
                    "value": "Track",
                    "scoring_system": "ssvc",
                    "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-22T15:52:12Z/"
                }
            ],
            "url": "https://github.com/rust-lang/rust/pull/93110/commits/406cc071d6cfdfdb678bf3d83d766851de95abaf"
        },
        {
            "reference_url": "https://github.com/rust-lang/rust/pull/93110/commits/4f0ad1c92ca08da6e8dc17838070975762f59714",
            "reference_id": "4f0ad1c92ca08da6e8dc17838070975762f59714",
            "reference_type": "",
            "scores": [
                {
                    "value": "7.3",
                    "scoring_system": "cvssv3.1",
                    "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:H"
                },
                {
                    "value": "Track",
                    "scoring_system": "ssvc",
                    "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-22T15:52:12Z/"
                }
            ],
            "url": "https://github.com/rust-lang/rust/pull/93110/commits/4f0ad1c92ca08da6e8dc17838070975762f59714"
        },
        {
            "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7JKZDTBMGAWIFJSNWKBMPO5EAKRR4BEW/",
            "reference_id": "7JKZDTBMGAWIFJSNWKBMPO5EAKRR4BEW",
            "reference_type": "",
            "scores": [
                {
                    "value": "7.3",
                    "scoring_system": "cvssv3.1",
                    "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:H"
                },
                {
                    "value": "Track",
                    "scoring_system": "ssvc",
                    "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-22T15:52:12Z/"
                }
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7JKZDTBMGAWIFJSNWKBMPO5EAKRR4BEW/"
        },
        {
            "reference_url": "https://github.com/rust-lang/rust/pull/93110",
            "reference_id": "93110",
            "reference_type": "",
            "scores": [
                {
                    "value": "7.3",
                    "scoring_system": "cvssv3.1",
                    "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:H"
                },
                {
                    "value": "Track",
                    "scoring_system": "ssvc",
                    "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-22T15:52:12Z/"
                }
            ],
            "url": "https://github.com/rust-lang/rust/pull/93110"
        },
        {
            "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BK32QZLHDC2OVLPKTUHNT2G3VHWHD4LX/",
            "reference_id": "BK32QZLHDC2OVLPKTUHNT2G3VHWHD4LX",
            "reference_type": "",
            "scores": [
                {
                    "value": "7.3",
                    "scoring_system": "cvssv3.1",
                    "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:H"
                },
                {
                    "value": "Track",
                    "scoring_system": "ssvc",
                    "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-22T15:52:12Z/"
                }
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BK32QZLHDC2OVLPKTUHNT2G3VHWHD4LX/"
        },
        {
            "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/C63NH72Q7UHJM5V3IVYRI7LVBGGFQMSQ/",
            "reference_id": "C63NH72Q7UHJM5V3IVYRI7LVBGGFQMSQ",
            "reference_type": "",
            "scores": [
                {
                    "value": "7.3",
                    "scoring_system": "cvssv3.1",
                    "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:H"
                },
                {
                    "value": "Track",
                    "scoring_system": "ssvc",
                    "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-22T15:52:12Z/"
                }
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/C63NH72Q7UHJM5V3IVYRI7LVBGGFQMSQ/"
        },
        {
            "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CKGTACKMKAPRDPWPTU26GYWBELIRFF5N/",
            "reference_id": "CKGTACKMKAPRDPWPTU26GYWBELIRFF5N",
            "reference_type": "",
            "scores": [
                {
                    "value": "7.3",
                    "scoring_system": "cvssv3.1",
                    "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:H"
                },
                {
                    "value": "Track",
                    "scoring_system": "ssvc",
                    "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-22T15:52:12Z/"
                }
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CKGTACKMKAPRDPWPTU26GYWBELIRFF5N/"
        },
        {
            "reference_url": "https://blog.rust-lang.org/2022/01/20/cve-2022-21658.html",
            "reference_id": "cve-2022-21658.html",
            "reference_type": "",
            "scores": [
                {
                    "value": "7.3",
                    "scoring_system": "cvssv3.1",
                    "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:H"
                },
                {
                    "value": "Track",
                    "scoring_system": "ssvc",
                    "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-22T15:52:12Z/"
                }
            ],
            "url": "https://blog.rust-lang.org/2022/01/20/cve-2022-21658.html"
        },
        {
            "reference_url": "https://github.com/rust-lang/rust/security/advisories/GHSA-r9cc-f5pr-p3j2",
            "reference_id": "GHSA-r9cc-f5pr-p3j2",
            "reference_type": "",
            "scores": [
                {
                    "value": "7.3",
                    "scoring_system": "cvssv3.1",
                    "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:H"
                },
                {
                    "value": "Track",
                    "scoring_system": "ssvc",
                    "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-22T15:52:12Z/"
                }
            ],
            "url": "https://github.com/rust-lang/rust/security/advisories/GHSA-r9cc-f5pr-p3j2"
        },
        {
            "reference_url": "https://security.gentoo.org/glsa/202210-09",
            "reference_id": "GLSA-202210-09",
            "reference_type": "",
            "scores": [
                {
                    "value": "7.3",
                    "scoring_system": "cvssv3.1",
                    "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:H"
                },
                {
                    "value": "Track",
                    "scoring_system": "ssvc",
                    "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-22T15:52:12Z/"
                }
            ],
            "url": "https://security.gentoo.org/glsa/202210-09"
        },
        {
            "reference_url": "https://support.apple.com/kb/HT213182",
            "reference_id": "HT213182",
            "reference_type": "",
            "scores": [
                {
                    "value": "7.3",
                    "scoring_system": "cvssv3.1",
                    "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:H"
                },
                {
                    "value": "Track",
                    "scoring_system": "ssvc",
                    "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-22T15:52:12Z/"
                }
            ],
            "url": "https://support.apple.com/kb/HT213182"
        },
        {
            "reference_url": "https://support.apple.com/kb/HT213183",
            "reference_id": "HT213183",
            "reference_type": "",
            "scores": [
                {
                    "value": "7.3",
                    "scoring_system": "cvssv3.1",
                    "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:H"
                },
                {
                    "value": "Track",
                    "scoring_system": "ssvc",
                    "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-22T15:52:12Z/"
                }
            ],
            "url": "https://support.apple.com/kb/HT213183"
        },
        {
            "reference_url": "https://support.apple.com/kb/HT213186",
            "reference_id": "HT213186",
            "reference_type": "",
            "scores": [
                {
                    "value": "7.3",
                    "scoring_system": "cvssv3.1",
                    "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:H"
                },
                {
                    "value": "Track",
                    "scoring_system": "ssvc",
                    "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-22T15:52:12Z/"
                }
            ],
            "url": "https://support.apple.com/kb/HT213186"
        },
        {
            "reference_url": "https://support.apple.com/kb/HT213193",
            "reference_id": "HT213193",
            "reference_type": "",
            "scores": [
                {
                    "value": "7.3",
                    "scoring_system": "cvssv3.1",
                    "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:H"
                },
                {
                    "value": "Track",
                    "scoring_system": "ssvc",
                    "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-22T15:52:12Z/"
                }
            ],
            "url": "https://support.apple.com/kb/HT213193"
        },
        {
            "reference_url": "https://access.redhat.com/errata/RHSA-2022:1894",
            "reference_id": "RHSA-2022:1894",
            "reference_type": "",
            "scores": [],
            "url": "https://access.redhat.com/errata/RHSA-2022:1894"
        }
    ],
    "weaknesses": [
        {
            "cwe_id": 367,
            "name": "Time-of-check Time-of-use (TOCTOU) Race Condition",
            "description": "The product checks the state of a resource before using that resource, but the resource's state can change between the check and the use in a way that invalidates the results of the check. This can cause the product to perform invalid actions when the resource is in an unexpected state."
        },
        {
            "cwe_id": 363,
            "name": "Race Condition Enabling Link Following",
            "description": "The product checks the status of a file or directory before accessing it, which produces a race condition in which the file can be replaced with a link before the access is performed, causing the product to access the wrong file."
        }
    ],
    "exploits": [],
    "severity_range_score": "5.3 - 7.3",
    "exploitability": "0.5",
    "weighted_severity": "6.6",
    "risk_score": 3.3,
    "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-j9kg-rd4y-y7by"
}

Vulnerability Instance