diff --git a/vulnerabilities/gcp-2021-022.yaml b/vulnerabilities/gcp-2021-022.yaml
new file mode 100644
index 0000000..dcf5fa9
--- /dev/null
+++ b/vulnerabilities/gcp-2021-022.yaml
@@ -0,0 +1,30 @@
+title: Predictible seed in Anthos Identity Service LDAP module
+slug: gcp-2021-022
+cves: null
+affectedPlatforms:
+- GCP
+affectedServices:
+- Anthos
+image: https://images.unsplash.com/photo-1458014854819-1a40aa70211c?auto=format&fit=crop&q=80&w=2070&ixlib=rb-4.0.3&ixid=M3wxMjA3fDB8MHxwaG90by1wYWdlfHx8fGVufDB8fHx8fA%3D%3D
+severity: Low
+discoveredBy:
+  name: null
+  org: null
+  domain: null
+  twitter: null
+disclosedAt: null
+publishedAt: 2021/09/22
+exploitabilityPeriod: Ongoing
+knownITWExploitation: null
+summary: |
+  A vulnerability was discovered in the Anthos Identity Service (AIS) LDAP module
+  of Anthos clusters on VMware versions 1.8 and 1.8.1 where a seed key used in generating
+  keys is predictable. With this vulnerability, an authenticated user could add arbitrary
+  claims and escalate privileges indefinitely.
+manualRemediation: |
+  Upgrade your clusters to version 1.8.2.
+detectionMethods: null
+contributor: https://github.com/ramimac
+references:
+- https://cloud.google.com/support/bulletins#gcp-2021-022
+- https://cloud.google.com/anthos/clusters/docs/security-bulletins#gcp-2021-022
diff --git a/vulnerabilities/gcp-anthos-predictable-seed.yaml b/vulnerabilities/gcp-anthos-predictable-seed.yaml
deleted file mode 100644
index 32d973d..0000000
--- a/vulnerabilities/gcp-anthos-predictable-seed.yaml
+++ /dev/null
@@ -1,29 +0,0 @@
-title: Predictable seed used to generate keys in Anthos Identity Service LDAP module
-slug: gcp-anthos-predictable-seed
-cves: null
-affectedPlatforms:
-- GCP
-affectedServices:
-- Anthos
-image: https://images.unsplash.com/photo-1607217237228-a8b69908bad6?ixlib=rb-4.0.3&ixid=M3wxMjA3fDB8MHxwaG90by1wYWdlfHx8fGVufDB8fHx8fA%3D%3D&auto=format&fit=crop&w=3270&q=80
-severity: Low
-discoveredBy:
-  name: null
-  org: null
-  domain: null
-  twitter: null
-disclosedAt: null
-publishedAt: 2021/09/29
-exploitabilityPeriod: null
-knownITWExploitation: null
-summary: |
-  There is a known issue where updating a BackendConfig resource
-  using the v1beta1 API removes an active Google Cloud Armor 
-  security policy from its service.
-manualRemediation: |
-  Dropped Cloud Armor security policies must be manually reattached. 
-detectionMethods: null
-contributor: https://github.com/ramimac
-references:
-- https://cloud.google.com/support/bulletins#gcp-2022-009
-- https://cloud.google.com/anthos/clusters/docs/security-bulletins#gcp-2022-009
\ No newline at end of file