{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/57933?format=json","vulnerability_id":"VCID-vax8-auaw-e3ad","summary":"cipher-base is missing type checks, leading to hash rewind and passing on crafted data\nThis affects e.g. `create-hash` (and `crypto-browserify`), so I'll describe the issue against that package\nAlso affects `create-hmac` and other packages\n\nNode.js `createHash` works only on strings or instances of Buffer, TypedArray, or DataView.\n\nMissing input type checks (in npm `create-hash` polyfill of Node.js `createHash`) can allow types other than a well-formed `Buffer` or `string`, resulting in invalid values, hanging and rewinding the hash state (including turning a tagged hash into an untagged hash), or other generally undefined behaviour.","aliases":[{"alias":"CVE-2025-9287"},{"alias":"GHSA-cpq7-6gpm-g9rc"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/118519?format=json","purl":"pkg:deb/debian/node-cipher-base@1.0.4-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/node-cipher-base@1.0.4-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/118520?format=json","purl":"pkg:deb/debian/node-cipher-base@1.0.4-4%2Bdeb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/node-cipher-base@1.0.4-4%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/721378?format=json","purl":"pkg:deb/debian/node-cipher-base@1.0.4-6%2Bdeb12u1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/node-cipher-base@1.0.4-6%252Bdeb12u1"},{"url":"http://public2.vulnerablecode.io/api/packages/118518?format=json","purl":"pkg:deb/debian/node-cipher-base@1.0.4-6%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/node-cipher-base@1.0.4-6%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/118523?format=json","purl":"pkg:deb/debian/node-cipher-base@1.0.4-6%2Bdeb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/node-cipher-base@1.0.4-6%252Bdeb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/118522?format=json","purl":"pkg:deb/debian/node-cipher-base@1.0.6-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/node-cipher-base@1.0.6-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/118521?format=json","purl":"pkg:deb/debian/node-cipher-base@1.0.7%2B~1.0.3-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/node-cipher-base@1.0.7%252B~1.0.3-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/86181?format=json","purl":"pkg:npm/cipher-base@1.0.5","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:npm/cipher-base@1.0.5"}],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/721376?format=json","purl":"pkg:deb/debian/node-cipher-base@1.0.4-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/node-cipher-base@1.0.4-3"},{"url":"http://public2.vulnerablecode.io/api/packages/721377?format=json","purl":"pkg:deb/debian/node-cipher-base@1.0.4-4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/node-cipher-base@1.0.4-4"},{"url":"http://public2.vulnerablecode.io/api/packages/847622?format=json","purl":"pkg:npm/cipher-base@1.0.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:npm/cipher-base@1.0.0"},{"url":"http://public2.vulnerablecode.io/api/packages/847623?format=json","purl":"pkg:npm/cipher-base@1.0.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:npm/cipher-base@1.0.1"},{"url":"http://public2.vulnerablecode.io/api/packages/847624?format=json","purl":"pkg:npm/cipher-base@1.0.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:npm/cipher-base@1.0.2"},{"url":"http://public2.vulnerablecode.io/api/packages/847625?format=json","purl":"pkg:npm/cipher-base@1.0.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:npm/cipher-base@1.0.3"},{"url":"http://public2.vulnerablecode.io/api/packages/847626?format=json","purl":"pkg:npm/cipher-base@1.0.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:npm/cipher-base@1.0.4"},{"url":"http://public2.vulnerablecode.io/api/packages/103218?format=json","purl":"pkg:rpm/redhat/acm-cli@container-v2.12?arch=5-4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/acm-cli@container-v2.12%3Farch=5-4"},{"url":"http://public2.vulnerablecode.io/api/packages/103188?format=json","purl":"pkg:rpm/redhat/acm-cluster-permission@container-v2.12?arch=5-4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/acm-cluster-permission@container-v2.12%3Farch=5-4"},{"url":"http://public2.vulnerablecode.io/api/packages/103229?format=json","purl":"pkg:rpm/redhat/acm-governance-policy-addon-controller@container-v2.12?arch=5-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/acm-governance-policy-addon-controller@container-v2.12%3Farch=5-3"},{"url":"http://public2.vulnerablecode.io/api/packages/103263?format=json","purl":"pkg:rpm/redhat/acm-governance-policy-framework-addon@container-v2.12?arch=5-4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/acm-governance-policy-framework-addon@container-v2.12%3Farch=5-4"},{"url":"http://public2.vulnerablecode.io/api/packages/103195?format=json","purl":"pkg:rpm/redhat/acm-grafana@container-v2.12?arch=5-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/acm-grafana@container-v2.12%3Farch=5-3"},{"url":"http://public2.vulnerablecode.io/api/packages/103238?format=json","purl":"pkg:rpm/redhat/acm-multicluster-observability-addon@container-v2.12?arch=5-4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/acm-multicluster-observability-addon@container-v2.12%3Farch=5-4"},{"url":"http://public2.vulnerablecode.io/api/packages/103222?format=json","purl":"pkg:rpm/redhat/acm-must-gather@container-v2.12?arch=5-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/acm-must-gather@container-v2.12%3Farch=5-3"},{"url":"http://public2.vulnerablecode.io/api/packages/103236?format=json","purl":"pkg:rpm/redhat/acm-operator-bundle@container-v2.12?arch=5-9","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/acm-operator-bundle@container-v2.12%3Farch=5-9"},{"url":"http://public2.vulnerablecode.io/api/packages/103209?format=json","purl":"pkg:rpm/redhat/acm-prometheus-config-reloader@container-v2.12?arch=5-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/acm-prometheus-config-reloader@container-v2.12%3Farch=5-3"},{"url":"http://public2.vulnerablecode.io/api/packages/103210?format=json","purl":"pkg:rpm/redhat/acm-prometheus-operator@container-v2.12?arch=5-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/acm-prometheus-operator@container-v2.12%3Farch=5-3"},{"url":"http://public2.vulnerablecode.io/api/packages/103267?format=json","purl":"pkg:rpm/redhat/acm-search-indexer@container-v2.12?arch=5-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/acm-search-indexer@container-v2.12%3Farch=5-3"},{"url":"http://public2.vulnerablecode.io/api/packages/103264?format=json","purl":"pkg:rpm/redhat/acm-search-v2-api@container-v2.12?arch=5-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/acm-search-v2-api@container-v2.12%3Farch=5-3"},{"url":"http://public2.vulnerablecode.io/api/packages/103230?format=json","purl":"pkg:rpm/redhat/acm-search-v2-operator@container-v2.12?arch=5-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/acm-search-v2-operator@container-v2.12%3Farch=5-3"},{"url":"http://public2.vulnerablecode.io/api/packages/103262?format=json","purl":"pkg:rpm/redhat/acm-siteconfig@container-v2.12?arch=5-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/acm-siteconfig@container-v2.12%3Farch=5-3"},{"url":"http://public2.vulnerablecode.io/api/packages/103171?format=json","purl":"pkg:rpm/redhat/acm-volsync-addon-controller@container-v2.12?arch=5-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/acm-volsync-addon-controller@container-v2.12%3Farch=5-3"},{"url":"http://public2.vulnerablecode.io/api/packages/103206?format=json","purl":"pkg:rpm/redhat/cert-policy-controller@container-v2.12?arch=5-4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/cert-policy-controller@container-v2.12%3Farch=5-4"},{"url":"http://public2.vulnerablecode.io/api/packages/103269?format=json","purl":"pkg:rpm/redhat/cluster-backup-operator@container-v2.12?arch=5-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/cluster-backup-operator@container-v2.12%3Farch=5-3"},{"url":"http://public2.vulnerablecode.io/api/packages/103277?format=json","purl":"pkg:rpm/redhat/config-policy-controller@container-v2.12?arch=5-4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/config-policy-controller@container-v2.12%3Farch=5-4"},{"url":"http://public2.vulnerablecode.io/api/packages/103258?format=json","purl":"pkg:rpm/redhat/console@container-v2.12?arch=5-5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/console@container-v2.12%3Farch=5-5"},{"url":"http://public2.vulnerablecode.io/api/packages/103255?format=json","purl":"pkg:rpm/redhat/endpoint-monitoring-operator@container-v2.12?arch=5-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/endpoint-monitoring-operator@container-v2.12%3Farch=5-3"},{"url":"http://public2.vulnerablecode.io/api/packages/103177?format=json","purl":"pkg:rpm/redhat/governance-policy-propagator@container-v2.12?arch=5-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/governance-policy-propagator@container-v2.12%3Farch=5-3"},{"url":"http://public2.vulnerablecode.io/api/packages/103219?format=json","purl":"pkg:rpm/redhat/grafana-dashboard-loader@container-v2.12?arch=5-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/grafana-dashboard-loader@container-v2.12%3Farch=5-3"},{"url":"http://public2.vulnerablecode.io/api/packages/103181?format=json","purl":"pkg:rpm/redhat/insights-client@container-v2.12?arch=5-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/insights-client@container-v2.12%3Farch=5-3"},{"url":"http://public2.vulnerablecode.io/api/packages/103215?format=json","purl":"pkg:rpm/redhat/insights-metrics@container-v2.12?arch=5-4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/insights-metrics@container-v2.12%3Farch=5-4"},{"url":"http://public2.vulnerablecode.io/api/packages/103225?format=json","purl":"pkg:rpm/redhat/klusterlet-addon-controller@container-v2.12?arch=5-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/klusterlet-addon-controller@container-v2.12%3Farch=5-3"},{"url":"http://public2.vulnerablecode.io/api/packages/103248?format=json","purl":"pkg:rpm/redhat/kube-rbac-proxy@container-v2.12?arch=5-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/kube-rbac-proxy@container-v2.12%3Farch=5-3"},{"url":"http://public2.vulnerablecode.io/api/packages/103179?format=json","purl":"pkg:rpm/redhat/kube-state-metrics@container-v2.12?arch=5-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/kube-state-metrics@container-v2.12%3Farch=5-3"},{"url":"http://public2.vulnerablecode.io/api/packages/103227?format=json","purl":"pkg:rpm/redhat/memcached-exporter@container-v2.12?arch=5-4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/memcached-exporter@container-v2.12%3Farch=5-4"},{"url":"http://public2.vulnerablecode.io/api/packages/103250?format=json","purl":"pkg:rpm/redhat/metrics-collector@container-v2.12?arch=5-4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/metrics-collector@container-v2.12%3Farch=5-4"},{"url":"http://public2.vulnerablecode.io/api/packages/103278?format=json","purl":"pkg:rpm/redhat/multicloud-integrations@container-v2.12?arch=5-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/multicloud-integrations@container-v2.12%3Farch=5-3"},{"url":"http://public2.vulnerablecode.io/api/packages/103224?format=json","purl":"pkg:rpm/redhat/multicluster-engine-addon-manager@container-v2.7?arch=6-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/multicluster-engine-addon-manager@container-v2.7%3Farch=6-3"},{"url":"http://public2.vulnerablecode.io/api/packages/103270?format=json","purl":"pkg:rpm/redhat/multicluster-engine-assisted-image-service@container-v2.7?arch=6-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/multicluster-engine-assisted-image-service@container-v2.7%3Farch=6-3"},{"url":"http://public2.vulnerablecode.io/api/packages/103239?format=json","purl":"pkg:rpm/redhat/multicluster-engine-assisted-installer@container-v2.7?arch=6-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/multicluster-engine-assisted-installer@container-v2.7%3Farch=6-3"},{"url":"http://public2.vulnerablecode.io/api/packages/103265?format=json","purl":"pkg:rpm/redhat/multicluster-engine-assisted-installer-agent@container-v2.7?arch=6-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/multicluster-engine-assisted-installer-agent@container-v2.7%3Farch=6-3"},{"url":"http://public2.vulnerablecode.io/api/packages/103243?format=json","purl":"pkg:rpm/redhat/multicluster-engine-assisted-installer-controller@container-v2.7?arch=6-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/multicluster-engine-assisted-installer-controller@container-v2.7%3Farch=6-3"},{"url":"http://public2.vulnerablecode.io/api/packages/103232?format=json","purl":"pkg:rpm/redhat/multicluster-engine-assisted-service-8@container-v2.7?arch=6-2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/multicluster-engine-assisted-service-8@container-v2.7%3Farch=6-2"},{"url":"http://public2.vulnerablecode.io/api/packages/103254?format=json","purl":"pkg:rpm/redhat/multicluster-engine-assisted-service-9@container-v2.7?arch=6-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/multicluster-engine-assisted-service-9@container-v2.7%3Farch=6-3"},{"url":"http://public2.vulnerablecode.io/api/packages/103271?format=json","purl":"pkg:rpm/redhat/multicluster-engine-cluster-api-provider-agent@container-v2.7?arch=6-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/multicluster-engine-cluster-api-provider-agent@container-v2.7%3Farch=6-3"},{"url":"http://public2.vulnerablecode.io/api/packages/103274?format=json","purl":"pkg:rpm/redhat/multicluster-engine-cluster-api-provider-kubevirt@container-v2.7?arch=6-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/multicluster-engine-cluster-api-provider-kubevirt@container-v2.7%3Farch=6-3"},{"url":"http://public2.vulnerablecode.io/api/packages/103226?format=json","purl":"pkg:rpm/redhat/multicluster-engine-clusterclaims-controller@container-v2.7?arch=6-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/multicluster-engine-clusterclaims-controller@container-v2.7%3Farch=6-3"},{"url":"http://public2.vulnerablecode.io/api/packages/103220?format=json","purl":"pkg:rpm/redhat/multicluster-engine-cluster-curator-controller@container-v2.7?arch=6-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/multicluster-engine-cluster-curator-controller@container-v2.7%3Farch=6-3"},{"url":"http://public2.vulnerablecode.io/api/packages/103173?format=json","purl":"pkg:rpm/redhat/multicluster-engine-cluster-image-set-controller@container-v2.7?arch=6-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/multicluster-engine-cluster-image-set-controller@container-v2.7%3Farch=6-3"},{"url":"http://public2.vulnerablecode.io/api/packages/103190?format=json","purl":"pkg:rpm/redhat/multicluster-engine-clusterlifecycle-state-metrics@container-v2.7?arch=6-4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/multicluster-engine-clusterlifecycle-state-metrics@container-v2.7%3Farch=6-4"},{"url":"http://public2.vulnerablecode.io/api/packages/103192?format=json","purl":"pkg:rpm/redhat/multicluster-engine-cluster-proxy@container-v2.7?arch=6-4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/multicluster-engine-cluster-proxy@container-v2.7%3Farch=6-4"},{"url":"http://public2.vulnerablecode.io/api/packages/103233?format=json","purl":"pkg:rpm/redhat/multicluster-engine-cluster-proxy-addon@container-v2.7?arch=6-4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/multicluster-engine-cluster-proxy-addon@container-v2.7%3Farch=6-4"},{"url":"http://public2.vulnerablecode.io/api/packages/103266?format=json","purl":"pkg:rpm/redhat/multicluster-engine-console-mce@container-v2.7?arch=6-4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/multicluster-engine-console-mce@container-v2.7%3Farch=6-4"},{"url":"http://public2.vulnerablecode.io/api/packages/103276?format=json","purl":"pkg:rpm/redhat/multicluster-engine-discovery-operator@container-v2.7?arch=6-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/multicluster-engine-discovery-operator@container-v2.7%3Farch=6-3"},{"url":"http://public2.vulnerablecode.io/api/packages/103199?format=json","purl":"pkg:rpm/redhat/multicluster-engine-hive@container-v2.7?arch=6-4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/multicluster-engine-hive@container-v2.7%3Farch=6-4"},{"url":"http://public2.vulnerablecode.io/api/packages/103245?format=json","purl":"pkg:rpm/redhat/multicluster-engine-hypershift-addon-operator@container-v2.7?arch=6-4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/multicluster-engine-hypershift-addon-operator@container-v2.7%3Farch=6-4"},{"url":"http://public2.vulnerablecode.io/api/packages/103240?format=json","purl":"pkg:rpm/redhat/multicluster-engine-hypershift-cli@container-v2.7?arch=6-4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/multicluster-engine-hypershift-cli@container-v2.7%3Farch=6-4"},{"url":"http://public2.vulnerablecode.io/api/packages/103237?format=json","purl":"pkg:rpm/redhat/multicluster-engine-hypershift-operator@container-v2.7?arch=6-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/multicluster-engine-hypershift-operator@container-v2.7%3Farch=6-3"},{"url":"http://public2.vulnerablecode.io/api/packages/103214?format=json","purl":"pkg:rpm/redhat/multicluster-engine-image-based-install@container-v2.7?arch=6-11","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/multicluster-engine-image-based-install@container-v2.7%3Farch=6-11"},{"url":"http://public2.vulnerablecode.io/api/packages/103244?format=json","purl":"pkg:rpm/redhat/multicluster-engine-kube-rbac-proxy-mce@container-v2.7?arch=6-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/multicluster-engine-kube-rbac-proxy-mce@container-v2.7%3Farch=6-3"},{"url":"http://public2.vulnerablecode.io/api/packages/103231?format=json","purl":"pkg:rpm/redhat/multicluster-engine-managedcluster-import-controller@container-v2.7?arch=6-4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/multicluster-engine-managedcluster-import-controller@container-v2.7%3Farch=6-4"},{"url":"http://public2.vulnerablecode.io/api/packages/103221?format=json","purl":"pkg:rpm/redhat/multicluster-engine-managed-serviceaccount@container-v2.7?arch=6-4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/multicluster-engine-managed-serviceaccount@container-v2.7%3Farch=6-4"},{"url":"http://public2.vulnerablecode.io/api/packages/103257?format=json","purl":"pkg:rpm/redhat/multicluster-engine-multicloud-manager@container-v2.7?arch=6-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/multicluster-engine-multicloud-manager@container-v2.7%3Farch=6-3"},{"url":"http://public2.vulnerablecode.io/api/packages/103242?format=json","purl":"pkg:rpm/redhat/multicluster-engine-must-gather@container-v2.7?arch=6-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/multicluster-engine-must-gather@container-v2.7%3Farch=6-3"},{"url":"http://public2.vulnerablecode.io/api/packages/103234?format=json","purl":"pkg:rpm/redhat/multicluster-engine-operator@container-v2.7?arch=6-5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/multicluster-engine-operator@container-v2.7%3Farch=6-5"},{"url":"http://public2.vulnerablecode.io/api/packages/103252?format=json","purl":"pkg:rpm/redhat/multicluster-engine-operator-bundle@container-v2.7?arch=6-9","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/multicluster-engine-operator-bundle@container-v2.7%3Farch=6-9"},{"url":"http://public2.vulnerablecode.io/api/packages/103186?format=json","purl":"pkg:rpm/redhat/multicluster-engine-placement@container-v2.7?arch=6-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/multicluster-engine-placement@container-v2.7%3Farch=6-3"},{"url":"http://public2.vulnerablecode.io/api/packages/103261?format=json","purl":"pkg:rpm/redhat/multicluster-engine-provider-credential-controller@container-v2.7?arch=6-4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/multicluster-engine-provider-credential-controller@container-v2.7%3Farch=6-4"},{"url":"http://public2.vulnerablecode.io/api/packages/103246?format=json","purl":"pkg:rpm/redhat/multicluster-engine-registration@container-v2.7?arch=6-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/multicluster-engine-registration@container-v2.7%3Farch=6-3"},{"url":"http://public2.vulnerablecode.io/api/packages/103201?format=json","purl":"pkg:rpm/redhat/multicluster-engine-registration-operator@container-v2.7?arch=6-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/multicluster-engine-registration-operator@container-v2.7%3Farch=6-3"},{"url":"http://public2.vulnerablecode.io/api/packages/103178?format=json","purl":"pkg:rpm/redhat/multicluster-engine-work@container-v2.7?arch=6-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/multicluster-engine-work@container-v2.7%3Farch=6-3"},{"url":"http://public2.vulnerablecode.io/api/packages/103235?format=json","purl":"pkg:rpm/redhat/multiclusterhub-operator@container-v2.12?arch=5-5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/multiclusterhub-operator@container-v2.12%3Farch=5-5"},{"url":"http://public2.vulnerablecode.io/api/packages/103212?format=json","purl":"pkg:rpm/redhat/multicluster-observability-operator@container-v2.12?arch=5-4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/multicluster-observability-operator@container-v2.12%3Farch=5-4"},{"url":"http://public2.vulnerablecode.io/api/packages/103272?format=json","purl":"pkg:rpm/redhat/multicluster-operators-application@container-v2.12?arch=5-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/multicluster-operators-application@container-v2.12%3Farch=5-3"},{"url":"http://public2.vulnerablecode.io/api/packages/103223?format=json","purl":"pkg:rpm/redhat/multicluster-operators-channel@container-v2.12?arch=5-4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/multicluster-operators-channel@container-v2.12%3Farch=5-4"},{"url":"http://public2.vulnerablecode.io/api/packages/103217?format=json","purl":"pkg:rpm/redhat/multicluster-operators-subscription-operator@container-v2.12?arch=5-5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/multicluster-operators-subscription-operator@container-v2.12%3Farch=5-5"},{"url":"http://public2.vulnerablecode.io/api/packages/103260?format=json","purl":"pkg:rpm/redhat/node-exporter@container-v2.12?arch=5-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/node-exporter@container-v2.12%3Farch=5-3"},{"url":"http://public2.vulnerablecode.io/api/packages/103275?format=json","purl":"pkg:rpm/redhat/observatorium@container-v2.12?arch=5-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/observatorium@container-v2.12%3Farch=5-3"},{"url":"http://public2.vulnerablecode.io/api/packages/103197?format=json","purl":"pkg:rpm/redhat/observatorium-operator@container-v2.12?arch=5-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/observatorium-operator@container-v2.12%3Farch=5-3"},{"url":"http://public2.vulnerablecode.io/api/packages/103200?format=json","purl":"pkg:rpm/redhat/prometheus@container-v2.12?arch=5-4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/prometheus@container-v2.12%3Farch=5-4"},{"url":"http://public2.vulnerablecode.io/api/packages/103184?format=json","purl":"pkg:rpm/redhat/prometheus-alertmanager@container-v2.12?arch=5-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/prometheus-alertmanager@container-v2.12%3Farch=5-3"},{"url":"http://public2.vulnerablecode.io/api/packages/103256?format=json","purl":"pkg:rpm/redhat/rbac-query-proxy@container-v2.12?arch=5-4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rbac-query-proxy@container-v2.12%3Farch=5-4"},{"url":"http://public2.vulnerablecode.io/api/packages/103249?format=json","purl":"pkg:rpm/redhat/search-collector@container-v2.12?arch=5-5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/search-collector@container-v2.12%3Farch=5-5"},{"url":"http://public2.vulnerablecode.io/api/packages/103228?format=json","purl":"pkg:rpm/redhat/submariner-addon@container-v2.12?arch=5-4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/submariner-addon@container-v2.12%3Farch=5-4"},{"url":"http://public2.vulnerablecode.io/api/packages/103251?format=json","purl":"pkg:rpm/redhat/thanos@container-v2.12?arch=5-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/thanos@container-v2.12%3Farch=5-3"},{"url":"http://public2.vulnerablecode.io/api/packages/103259?format=json","purl":"pkg:rpm/redhat/thanos-receive-controller@container-v2.12?arch=5-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a423-mjeb-ufbe"},{"vulnerability":"VCID-j7jb-8573-zbc5"},{"vulnerability":"VCID-mfmp-65wf-mfdw"},{"vulnerability":"VCID-vax8-auaw-e3ad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/thanos-receive-controller@container-v2.12%3Farch=5-3"}],"references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-9287.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-9287.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-9287","reference_id":"","reference_type":"","scores":[{"value":"0.00152","scoring_system":"epss","scoring_elements":"0.35581","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-9287"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-9287","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-9287"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/browserify/cipher-base","reference_id":"","reference_type":"","scores":[{"value":"9.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H"},{"value":"9.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:H/VA:H/SC:H/SI:H/SA:N"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/browserify/cipher-base"},{"reference_url":"https://github.com/browserify/cipher-base/commit/8fd136432ca298a664f5637629cf2b42a6c7f294","reference_id":"","reference_type":"","scores":[{"value":"9.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H"},{"value":"9.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:H/VA:H/SC:H/SI:H/SA:N"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/browserify/cipher-base/commit/8fd136432ca298a664f5637629cf2b42a6c7f294"},{"reference_url":"https://github.com/browserify/cipher-base/pull/23","reference_id":"","reference_type":"","scores":[{"value":"9.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H"},{"value":"9.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:H/VA:H/SC:H/SI:H/SA:N"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-08-21T13:25:49Z/"}],"url":"https://github.com/browserify/cipher-base/pull/23"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2025/09/msg00005.html","reference_id":"","reference_type":"","scores":[{"value":"9.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H"},{"value":"9.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:H/VA:H/SC:H/SI:H/SA:N"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.debian.org/debian-lts-announce/2025/09/msg00005.html"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1111772","reference_id":"1111772","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1111772"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2389932","reference_id":"2389932","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2389932"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2025-9287","reference_id":"CVE-2025-9287","reference_type":"","scores":[{"value":"9.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H"},{"value":"9.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:H/VA:H/SC:H/SI:H/SA:N"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2025-9287"},{"reference_url":"https://github.com/advisories/GHSA-cpq7-6gpm-g9rc","reference_id":"GHSA-cpq7-6gpm-g9rc","reference_type":"","scores":[],"url":"https://github.com/advisories/GHSA-cpq7-6gpm-g9rc"},{"reference_url":"https://github.com/browserify/cipher-base/security/advisories/GHSA-cpq7-6gpm-g9rc","reference_id":"GHSA-cpq7-6gpm-g9rc","reference_type":"","scores":[{"value":"9.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H"},{"value":"9.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:H/VA:H/SC:H/SI:H/SA:N"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-08-21T13:25:49Z/"}],"url":"https://github.com/browserify/cipher-base/security/advisories/GHSA-cpq7-6gpm-g9rc"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:14767","reference_id":"RHSA-2025:14767","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:14767"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:15847","reference_id":"RHSA-2025:15847","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:15847"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:16020","reference_id":"RHSA-2025:16020","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:16020"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:18278","reference_id":"RHSA-2025:18278","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:18278"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:18744","reference_id":"RHSA-2025:18744","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:18744"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:19332","reference_id":"RHSA-2025:19332","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:19332"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:19335","reference_id":"RHSA-2025:19335","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:19335"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22905","reference_id":"RHSA-2025:22905","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:22905"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:23528","reference_id":"RHSA-2025:23528","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:23528"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:23529","reference_id":"RHSA-2025:23529","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:23529"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:0627","reference_id":"RHSA-2026:0627","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:0627"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:0722","reference_id":"RHSA-2026:0722","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:0722"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:3710","reference_id":"RHSA-2026:3710","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:3710"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:3712","reference_id":"RHSA-2026:3712","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:3712"},{"reference_url":"https://usn.ubuntu.com/7746-1/","reference_id":"USN-7746-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7746-1/"}],"weaknesses":[{"cwe_id":20,"name":"Improper Input Validation","description":"The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly."},{"cwe_id":937,"name":"OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities","description":"Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013."},{"cwe_id":1035,"name":"OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities","description":"Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017."}],"exploits":[],"severity_range_score":"7.5 - 10.0","exploitability":"0.5","weighted_severity":"9.0","risk_score":4.5,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vax8-auaw-e3ad"}