Search for vulnerabilities
Vulnerability details: VCID-n77h-bkdw-zucr
Vulnerability ID VCID-n77h-bkdw-zucr
Aliases CVE-2022-21540
Summary
Status Published
Exploitability 0.5
Weighted Severity 4.8
Risk 2.4
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-402 Transmission of Private Resources into a New Sphere ('Resource Leak')
System Score Found at
cvssv3 5.3 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21540.json
epss 0.00163 https://api.first.org/data/v1/epss?cve=CVE-2022-21540
epss 0.00163 https://api.first.org/data/v1/epss?cve=CVE-2022-21540
epss 0.00163 https://api.first.org/data/v1/epss?cve=CVE-2022-21540
epss 0.00379 https://api.first.org/data/v1/epss?cve=CVE-2022-21540
epss 0.00379 https://api.first.org/data/v1/epss?cve=CVE-2022-21540
epss 0.00379 https://api.first.org/data/v1/epss?cve=CVE-2022-21540
epss 0.00379 https://api.first.org/data/v1/epss?cve=CVE-2022-21540
epss 0.00441 https://api.first.org/data/v1/epss?cve=CVE-2022-21540
epss 0.00441 https://api.first.org/data/v1/epss?cve=CVE-2022-21540
epss 0.00441 https://api.first.org/data/v1/epss?cve=CVE-2022-21540
epss 0.00441 https://api.first.org/data/v1/epss?cve=CVE-2022-21540
epss 0.00441 https://api.first.org/data/v1/epss?cve=CVE-2022-21540
epss 0.00441 https://api.first.org/data/v1/epss?cve=CVE-2022-21540
epss 0.00441 https://api.first.org/data/v1/epss?cve=CVE-2022-21540
epss 0.00441 https://api.first.org/data/v1/epss?cve=CVE-2022-21540
epss 0.00441 https://api.first.org/data/v1/epss?cve=CVE-2022-21540
epss 0.00441 https://api.first.org/data/v1/epss?cve=CVE-2022-21540
epss 0.00453 https://api.first.org/data/v1/epss?cve=CVE-2022-21540
epss 0.00453 https://api.first.org/data/v1/epss?cve=CVE-2022-21540
cvssv3.1 5.3 https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21540.json
https://api.first.org/data/v1/epss?cve=CVE-2022-21540
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21540
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21541
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21549
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34169
https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
2108540 https://bugzilla.redhat.com/show_bug.cgi?id=2108540
RHSA-2022:5681 https://access.redhat.com/errata/RHSA-2022:5681
RHSA-2022:5683 https://access.redhat.com/errata/RHSA-2022:5683
RHSA-2022:5684 https://access.redhat.com/errata/RHSA-2022:5684
RHSA-2022:5685 https://access.redhat.com/errata/RHSA-2022:5685
RHSA-2022:5687 https://access.redhat.com/errata/RHSA-2022:5687
RHSA-2022:5695 https://access.redhat.com/errata/RHSA-2022:5695
RHSA-2022:5696 https://access.redhat.com/errata/RHSA-2022:5696
RHSA-2022:5697 https://access.redhat.com/errata/RHSA-2022:5697
RHSA-2022:5698 https://access.redhat.com/errata/RHSA-2022:5698
RHSA-2022:5700 https://access.redhat.com/errata/RHSA-2022:5700
RHSA-2022:5701 https://access.redhat.com/errata/RHSA-2022:5701
RHSA-2022:5709 https://access.redhat.com/errata/RHSA-2022:5709
RHSA-2022:5726 https://access.redhat.com/errata/RHSA-2022:5726
RHSA-2022:5736 https://access.redhat.com/errata/RHSA-2022:5736
RHSA-2022:5753 https://access.redhat.com/errata/RHSA-2022:5753
RHSA-2022:5754 https://access.redhat.com/errata/RHSA-2022:5754
RHSA-2022:5755 https://access.redhat.com/errata/RHSA-2022:5755
RHSA-2022:5756 https://access.redhat.com/errata/RHSA-2022:5756
RHSA-2022:5757 https://access.redhat.com/errata/RHSA-2022:5757
RHSA-2022:5758 https://access.redhat.com/errata/RHSA-2022:5758
USN-5546-1 https://usn.ubuntu.com/5546-1/
USN-5546-2 https://usn.ubuntu.com/5546-2/
No exploits are available.
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N Found at https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21540.json
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N Found at https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Exploit Prediction Scoring System (EPSS)
Percentile 0.38069
EPSS Score 0.00163
Published At Aug. 1, 2025, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2025-07-31T08:32:36.876808+00:00 Alpine Linux Importer Import https://secdb.alpinelinux.org/v3.17/community.json 37.0.0