VulnerableCode Vulnerability Details

Staging Environment: Content and features may be unstable or change without notice.

Search for vulnerabilities

Vulnerability details: VCID-w1zf-uvrh-7uc7

Essentials
Severities (41)
References (33)
Severity details (40)
Exploits (0)
EPSS
History (1)

Vulnerability ID	VCID-w1zf-uvrh-7uc7
Aliases	CVE-2022-24999 GHSA-hrpp-h998-j3pp
Summary	express: "qs" prototype poisoning causes the hang of the node process
Status	Published
Exploitability	None
Weighted Severity	None
Risk	None
Affected and Fixed Packages	Package Details

Weaknesses (3)

CWE-1321	Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')
CWE-1035	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
CWE-937	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities

System	Score	Found at
cvssv3	7.5	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-24999.json
epss	0.01543	https://api.first.org/data/v1/epss?cve=CVE-2022-24999
cvssv3.1_qr	HIGH	https://github.com/advisories/GHSA-hrpp-h998-j3pp
cvssv3.1	7.5	https://github.com/expressjs/express/releases/tag/4.17.3
generic_textual	HIGH	https://github.com/expressjs/express/releases/tag/4.17.3
ssvc	Track	https://github.com/expressjs/express/releases/tag/4.17.3
cvssv3.1	7.5	https://github.com/ljharb/qs
generic_textual	HIGH	https://github.com/ljharb/qs
cvssv3.1	7.5	https://github.com/ljharb/qs/commit/4310742efbd8c03f6495f07906b45213da0a32ec
generic_textual	HIGH	https://github.com/ljharb/qs/commit/4310742efbd8c03f6495f07906b45213da0a32ec
cvssv3.1	7.5	https://github.com/ljharb/qs/commit/727ef5d34605108acb3513f72d5435972ed15b68
generic_textual	HIGH	https://github.com/ljharb/qs/commit/727ef5d34605108acb3513f72d5435972ed15b68
cvssv3.1	7.5	https://github.com/ljharb/qs/commit/73205259936317b40f447c5cdb71c5b341848e1b
generic_textual	HIGH	https://github.com/ljharb/qs/commit/73205259936317b40f447c5cdb71c5b341848e1b
cvssv3.1	7.5	https://github.com/ljharb/qs/commit/8b4cc14cda94a5c89341b77e5fe435ec6c41be2d
generic_textual	HIGH	https://github.com/ljharb/qs/commit/8b4cc14cda94a5c89341b77e5fe435ec6c41be2d
cvssv3.1	7.5	https://github.com/ljharb/qs/commit/ba24e74dd17931f825adb52f5633e48293b584e1
generic_textual	HIGH	https://github.com/ljharb/qs/commit/ba24e74dd17931f825adb52f5633e48293b584e1
cvssv3.1	7.5	https://github.com/ljharb/qs/commit/e799ba57e573a30c14b67c1889c7c04d508b9105
generic_textual	HIGH	https://github.com/ljharb/qs/commit/e799ba57e573a30c14b67c1889c7c04d508b9105
cvssv3.1	7.5	https://github.com/ljharb/qs/commit/ed0f5dcbef4b168a8ae299d78b1e4a2e9b1baf1f
generic_textual	HIGH	https://github.com/ljharb/qs/commit/ed0f5dcbef4b168a8ae299d78b1e4a2e9b1baf1f
cvssv3.1	7.5	https://github.com/ljharb/qs/commit/f945393cfe442fe8c6e62b4156fd35452c0686ee
generic_textual	HIGH	https://github.com/ljharb/qs/commit/f945393cfe442fe8c6e62b4156fd35452c0686ee
cvssv3.1	7.5	https://github.com/ljharb/qs/commit/fc3682776670524a42e19709ec4a8138d0d7afda
generic_textual	HIGH	https://github.com/ljharb/qs/commit/fc3682776670524a42e19709ec4a8138d0d7afda
cvssv3.1	7.5	https://github.com/ljharb/qs/pull/428
generic_textual	HIGH	https://github.com/ljharb/qs/pull/428
ssvc	Track	https://github.com/ljharb/qs/pull/428
cvssv3.1	7.5	https://github.com/n8tz/CVE-2022-24999
generic_textual	HIGH	https://github.com/n8tz/CVE-2022-24999
ssvc	Track	https://github.com/n8tz/CVE-2022-24999
cvssv3.1	7.5	https://lists.debian.org/debian-lts-announce/2023/01/msg00039.html
generic_textual	HIGH	https://lists.debian.org/debian-lts-announce/2023/01/msg00039.html
ssvc	Track	https://lists.debian.org/debian-lts-announce/2023/01/msg00039.html
cvssv3.1	7.5	https://nvd.nist.gov/vuln/detail/CVE-2022-24999
generic_textual	HIGH	https://nvd.nist.gov/vuln/detail/CVE-2022-24999
cvssv3.1	7.5	https://security.netapp.com/advisory/ntap-20230908-0005
generic_textual	HIGH	https://security.netapp.com/advisory/ntap-20230908-0005
cvssv3.1	7.5	https://security.netapp.com/advisory/ntap-20230908-0005/
ssvc	Track	https://security.netapp.com/advisory/ntap-20230908-0005/

Reference id	Reference type	URL
		https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-24999.json
		https://api.first.org/data/v1/epss?cve=CVE-2022-24999
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24999
		https://github.com/expressjs/express/releases/tag/4.17.3
		https://github.com/ljharb/qs
		https://github.com/ljharb/qs/commit/4310742efbd8c03f6495f07906b45213da0a32ec
		https://github.com/ljharb/qs/commit/727ef5d34605108acb3513f72d5435972ed15b68
		https://github.com/ljharb/qs/commit/73205259936317b40f447c5cdb71c5b341848e1b
		https://github.com/ljharb/qs/commit/8b4cc14cda94a5c89341b77e5fe435ec6c41be2d
		https://github.com/ljharb/qs/commit/ba24e74dd17931f825adb52f5633e48293b584e1
		https://github.com/ljharb/qs/commit/e799ba57e573a30c14b67c1889c7c04d508b9105
		https://github.com/ljharb/qs/commit/ed0f5dcbef4b168a8ae299d78b1e4a2e9b1baf1f
		https://github.com/ljharb/qs/commit/f945393cfe442fe8c6e62b4156fd35452c0686ee
		https://github.com/ljharb/qs/commit/fc3682776670524a42e19709ec4a8138d0d7afda
		https://github.com/ljharb/qs/pull/428
		https://github.com/n8tz/CVE-2022-24999
		https://lists.debian.org/debian-lts-announce/2023/01/msg00039.html
		https://nvd.nist.gov/vuln/detail/CVE-2022-24999
		https://security.netapp.com/advisory/ntap-20230908-0005
2150323		https://bugzilla.redhat.com/show_bug.cgi?id=2150323
GHSA-hrpp-h998-j3pp		https://github.com/advisories/GHSA-hrpp-h998-j3pp
ntap-20230908-0005		https://security.netapp.com/advisory/ntap-20230908-0005/
RHSA-2023:0050		https://access.redhat.com/errata/RHSA-2023:0050
RHSA-2023:0612		https://access.redhat.com/errata/RHSA-2023:0612
RHSA-2023:0930		https://access.redhat.com/errata/RHSA-2023:0930
RHSA-2023:0932		https://access.redhat.com/errata/RHSA-2023:0932
RHSA-2023:0934		https://access.redhat.com/errata/RHSA-2023:0934
RHSA-2023:1428		https://access.redhat.com/errata/RHSA-2023:1428
RHSA-2023:1533		https://access.redhat.com/errata/RHSA-2023:1533
RHSA-2023:1742		https://access.redhat.com/errata/RHSA-2023:1742
RHSA-2023:3265		https://access.redhat.com/errata/RHSA-2023:3265
RHSA-2023:3645		https://access.redhat.com/errata/RHSA-2023:3645
USN-7693-1		https://usn.ubuntu.com/7693-1/

No exploits are available.

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-24999.json

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://github.com/expressjs/express/releases/tag/4.17.3

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-29T13:56:22Z/ Found at https://github.com/expressjs/express/releases/tag/4.17.3

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://github.com/ljharb/qs

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://github.com/ljharb/qs/commit/4310742efbd8c03f6495f07906b45213da0a32ec

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://github.com/ljharb/qs/commit/727ef5d34605108acb3513f72d5435972ed15b68

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://github.com/ljharb/qs/commit/73205259936317b40f447c5cdb71c5b341848e1b

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://github.com/ljharb/qs/commit/8b4cc14cda94a5c89341b77e5fe435ec6c41be2d

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://github.com/ljharb/qs/commit/ba24e74dd17931f825adb52f5633e48293b584e1

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://github.com/ljharb/qs/commit/e799ba57e573a30c14b67c1889c7c04d508b9105

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://github.com/ljharb/qs/commit/ed0f5dcbef4b168a8ae299d78b1e4a2e9b1baf1f

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://github.com/ljharb/qs/commit/f945393cfe442fe8c6e62b4156fd35452c0686ee

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://github.com/ljharb/qs/commit/fc3682776670524a42e19709ec4a8138d0d7afda

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://github.com/ljharb/qs/pull/428

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-29T13:56:22Z/ Found at https://github.com/ljharb/qs/pull/428

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://github.com/n8tz/CVE-2022-24999

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-29T13:56:22Z/ Found at https://github.com/n8tz/CVE-2022-24999

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://lists.debian.org/debian-lts-announce/2023/01/msg00039.html

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-29T13:56:22Z/ Found at https://lists.debian.org/debian-lts-announce/2023/01/msg00039.html

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://nvd.nist.gov/vuln/detail/CVE-2022-24999

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://security.netapp.com/advisory/ntap-20230908-0005

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://security.netapp.com/advisory/ntap-20230908-0005/

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-29T13:56:22Z/ Found at https://security.netapp.com/advisory/ntap-20230908-0005/

Exploit Prediction Scoring System (EPSS)

Percentile	0.81679
EPSS Score	0.01543
Published At	May 29, 2026, 12:55 p.m.

Date	Actor	Action	Source	VulnerableCode Version
2026-05-29T09:10:41.722323+00:00	RedHat Importer	Import	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-24999.json	38.6.0