Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/100383?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/100383?format=api", "purl": "pkg:rpm/redhat/redhat-virtualization-host@4.4.6-20210615.0?arch=el8_4", "type": "rpm", "namespace": "redhat", "name": "redhat-virtualization-host", "version": "4.4.6-20210615.0", "qualifiers": { "arch": "el8_4" }, "subpath": "", "is_vulnerable": true, "next_non_vulnerable_version": null, "latest_non_vulnerable_version": null, "affected_by_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/46200?format=api", "vulnerability_id": "VCID-ca52-wfc7-2ubd", "summary": "Multiple vulnerabilities have been found in GLib, the worst of\n which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-27219.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-27219.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-27219", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01367", "scoring_system": "epss", "scoring_elements": "0.80233", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01367", "scoring_system": "epss", "scoring_elements": "0.80204", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01367", "scoring_system": "epss", "scoring_elements": "0.80199", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01367", "scoring_system": "epss", "scoring_elements": "0.80228", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.01367", "scoring_system": "epss", "scoring_elements": "0.80229", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.02131", "scoring_system": "epss", "scoring_elements": "0.84139", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.02131", "scoring_system": "epss", "scoring_elements": "0.84162", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.02131", "scoring_system": "epss", "scoring_elements": "0.84168", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.02131", "scoring_system": "epss", "scoring_elements": "0.84186", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.02131", "scoring_system": "epss", "scoring_elements": "0.84107", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.02131", "scoring_system": "epss", "scoring_elements": "0.84121", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.02131", "scoring_system": "epss", "scoring_elements": "0.8414", "published_at": "2026-04-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-27219" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27219", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27219" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.gnome.org/GNOME/glib/-/issues/2319", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.gnome.org/GNOME/glib/-/issues/2319" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1929858", "reference_id": "1929858", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1929858" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=982778", "reference_id": "982778", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=982778" }, { "reference_url": "https://security.archlinux.org/AVG-1574", "reference_id": "AVG-1574", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1574" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2021-27219", "reference_id": "CVE-2021-27219", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-27219" }, { "reference_url": "https://security.gentoo.org/glsa/202107-13", "reference_id": "GLSA-202107-13", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202107-13" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2147", "reference_id": "RHSA-2021:2147", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2147" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2170", "reference_id": "RHSA-2021:2170", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2170" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2171", "reference_id": "RHSA-2021:2171", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2171" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2172", "reference_id": "RHSA-2021:2172", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2172" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2173", "reference_id": "RHSA-2021:2173", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2173" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2174", "reference_id": "RHSA-2021:2174", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2174" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2175", "reference_id": "RHSA-2021:2175", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2175" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2203", "reference_id": "RHSA-2021:2203", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2203" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2204", "reference_id": "RHSA-2021:2204", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2204" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2467", "reference_id": "RHSA-2021:2467", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2467" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2519", "reference_id": "RHSA-2021:2519", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2519" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2522", "reference_id": "RHSA-2021:2522", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2522" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4526", "reference_id": "RHSA-2021:4526", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4526" }, { "reference_url": "https://usn.ubuntu.com/4759-1/", "reference_id": "USN-4759-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4759-1/" } ], "fixed_packages": [], "aliases": [ "CVE-2021-27219" ], "risk_score": 4.4, "exploitability": "0.5", "weighted_severity": "8.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ca52-wfc7-2ubd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80228?format=api", "vulnerability_id": "VCID-k9bk-q1ds-6ke5", "summary": "hw: vt-d related privilege escalation", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-24489.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-24489.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-24489", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00068", "scoring_system": "epss", "scoring_elements": "0.21075", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00068", "scoring_system": "epss", "scoring_elements": "0.21071", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00068", "scoring_system": "epss", "scoring_elements": "0.21082", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00068", "scoring_system": "epss", "scoring_elements": "0.21093", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00068", "scoring_system": "epss", "scoring_elements": "0.21228", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00068", "scoring_system": "epss", "scoring_elements": "0.21281", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00068", "scoring_system": "epss", "scoring_elements": "0.21032", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00068", "scoring_system": "epss", "scoring_elements": "0.21114", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00068", "scoring_system": "epss", "scoring_elements": "0.21175", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00068", "scoring_system": "epss", "scoring_elements": "0.21185", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00068", "scoring_system": "epss", "scoring_elements": "0.21142", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00068", "scoring_system": "epss", "scoring_elements": "0.21091", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-24489" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24489", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24489" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24511", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24511" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24512", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24512" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24513", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24513" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1962650", "reference_id": "1962650", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1962650" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989615", "reference_id": "989615", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989615" }, { "reference_url": "https://security.archlinux.org/ASA-202106-34", "reference_id": "ASA-202106-34", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202106-34" }, { "reference_url": "https://security.archlinux.org/AVG-2051", "reference_id": "AVG-2051", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2051" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2299", "reference_id": "RHSA-2021:2299", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2299" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2300", "reference_id": "RHSA-2021:2300", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2300" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2301", "reference_id": "RHSA-2021:2301", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2301" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2302", "reference_id": "RHSA-2021:2302", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2302" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2303", "reference_id": "RHSA-2021:2303", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2303" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2304", "reference_id": "RHSA-2021:2304", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2304" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2305", "reference_id": "RHSA-2021:2305", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2305" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2306", "reference_id": "RHSA-2021:2306", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2306" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2307", "reference_id": "RHSA-2021:2307", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2307" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2308", "reference_id": "RHSA-2021:2308", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2308" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2519", "reference_id": "RHSA-2021:2519", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2519" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2522", "reference_id": "RHSA-2021:2522", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2522" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3027", "reference_id": "RHSA-2021:3027", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3027" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3028", "reference_id": "RHSA-2021:3028", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3028" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3029", "reference_id": "RHSA-2021:3029", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3029" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3176", "reference_id": "RHSA-2021:3176", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3176" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3255", "reference_id": "RHSA-2021:3255", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3255" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3317", "reference_id": "RHSA-2021:3317", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3317" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3322", "reference_id": "RHSA-2021:3322", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3322" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3323", "reference_id": "RHSA-2021:3323", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3323" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3364", "reference_id": "RHSA-2021:3364", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3364" }, { "reference_url": "https://usn.ubuntu.com/4985-1/", "reference_id": "USN-4985-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4985-1/" } ], "fixed_packages": [], "aliases": [ "CVE-2020-24489" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-k9bk-q1ds-6ke5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/40022?format=api", "vulnerability_id": "VCID-mmjs-fy7f-fkbt", "summary": "A vulnerability in polkit could lead to local root privilege\n escalation.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3560.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3560.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3560", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.07266", "scoring_system": "epss", "scoring_elements": "0.91656", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.10912", "scoring_system": "epss", "scoring_elements": "0.93378", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.10912", "scoring_system": "epss", "scoring_elements": "0.93386", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.10912", "scoring_system": "epss", "scoring_elements": "0.9339", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.10912", "scoring_system": "epss", "scoring_elements": "0.93395", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.10912", "scoring_system": "epss", "scoring_elements": "0.93394", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.10912", "scoring_system": "epss", "scoring_elements": "0.93413", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.10912", "scoring_system": "epss", "scoring_elements": "0.93418", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.10912", "scoring_system": "epss", "scoring_elements": "0.9337", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.10912", "scoring_system": "epss", "scoring_elements": "0.93362", "published_at": "2026-04-01T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3560" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3560", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3560" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1961710", "reference_id": "1961710", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-01-29T21:24:12Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1961710" }, { "reference_url": "https://github.blog/2021-06-10-privilege-escalation-polkit-root-on-linux-with-bug/", "reference_id": "2021-06-10-privilege-escalation-polkit-root-on-linux-with-bug", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-01-29T21:24:12Z/" } ], "url": "https://github.blog/2021-06-10-privilege-escalation-polkit-root-on-linux-with-bug/" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989429", "reference_id": "989429", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989429" }, { "reference_url": "https://security.archlinux.org/ASA-202106-24", "reference_id": "ASA-202106-24", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202106-24" }, { "reference_url": "https://security.archlinux.org/AVG-2028", "reference_id": "AVG-2028", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2028" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/50011.sh", "reference_id": "CVE-2021-3560", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/50011.sh" }, { "reference_url": "http://packetstormsecurity.com/files/172846/Facebook-Fizz-Denial-Of-Service.html", "reference_id": "Facebook-Fizz-Denial-Of-Service.html", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-01-29T21:24:12Z/" } ], "url": "http://packetstormsecurity.com/files/172846/Facebook-Fizz-Denial-Of-Service.html" }, { "reference_url": "https://security.gentoo.org/glsa/202107-31", "reference_id": "GLSA-202107-31", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202107-31" }, { "reference_url": "http://packetstormsecurity.com/files/172836/polkit-Authentication-Bypass.html", "reference_id": "polkit-Authentication-Bypass.html", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-01-29T21:24:12Z/" } ], "url": "http://packetstormsecurity.com/files/172836/polkit-Authentication-Bypass.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2236", "reference_id": "RHSA-2021:2236", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2236" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2237", "reference_id": "RHSA-2021:2237", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2237" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2238", "reference_id": "RHSA-2021:2238", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2238" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2522", "reference_id": "RHSA-2021:2522", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2522" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2555", "reference_id": "RHSA-2021:2555", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2555" }, { "reference_url": "https://usn.ubuntu.com/4980-1/", "reference_id": "USN-4980-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4980-1/" } ], "fixed_packages": [], "aliases": [ "CVE-2021-3560" ], "risk_score": 10.0, "exploitability": "2.0", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mmjs-fy7f-fkbt" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80453?format=api", "vulnerability_id": "VCID-wjtw-v83z-ruax", "summary": "kernel: userspace applications can misuse the KVM API to cause a write of 16 bytes at an offset up to 32 GB from vcpu->run", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3501.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3501.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3501", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00042", "scoring_system": "epss", "scoring_elements": "0.12963", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00042", "scoring_system": "epss", "scoring_elements": "0.1292", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00042", "scoring_system": "epss", "scoring_elements": "0.13002", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00042", "scoring_system": "epss", "scoring_elements": "0.12964", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00042", "scoring_system": "epss", "scoring_elements": "0.12918", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00042", "scoring_system": "epss", "scoring_elements": "0.12818", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00042", "scoring_system": "epss", "scoring_elements": "0.12821", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00042", "scoring_system": "epss", "scoring_elements": "0.13054", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00042", "scoring_system": "epss", "scoring_elements": "0.13107", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00042", "scoring_system": "epss", "scoring_elements": "0.1291", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00042", "scoring_system": "epss", "scoring_elements": "0.12989", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00042", "scoring_system": "epss", "scoring_elements": "0.13041", "published_at": "2026-04-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3501" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3501", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3501" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1950136", "reference_id": "1950136", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1950136" }, { "reference_url": "https://security.archlinux.org/AVG-1851", "reference_id": "AVG-1851", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1851" }, { "reference_url": "https://security.archlinux.org/AVG-1852", "reference_id": "AVG-1852", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1852" }, { "reference_url": "https://security.archlinux.org/AVG-1853", "reference_id": "AVG-1853", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1853" }, { "reference_url": "https://security.archlinux.org/AVG-1854", "reference_id": "AVG-1854", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1854" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2165", "reference_id": "RHSA-2021:2165", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2165" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2168", "reference_id": "RHSA-2021:2168", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2168" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2169", "reference_id": "RHSA-2021:2169", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2169" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2522", "reference_id": "RHSA-2021:2522", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2522" }, { "reference_url": "https://usn.ubuntu.com/4977-1/", "reference_id": "USN-4977-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4977-1/" }, { "reference_url": "https://usn.ubuntu.com/4983-1/", "reference_id": "USN-4983-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4983-1/" } ], "fixed_packages": [], "aliases": [ "CVE-2021-3501" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wjtw-v83z-ruax" } ], "fixing_vulnerabilities": [], "risk_score": "10.0", "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/redhat-virtualization-host@4.4.6-20210615.0%3Farch=el8_4" }