Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/240197?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/240197?format=api", "purl": "pkg:apk/alpine/libde265@1.0.11-r0?arch=armv7&distroversion=v3.17&reponame=main", "type": "apk", "namespace": "alpine", "name": "libde265", "version": "1.0.11-r0", "qualifiers": { "arch": "armv7", "distroversion": "v3.17", "reponame": "main" }, "subpath": "", "is_vulnerable": false, "next_non_vulnerable_version": "1.0.15-r0", "latest_non_vulnerable_version": "1.0.15-r0", "affected_by_vulnerabilities": [], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5033?format=api", "vulnerability_id": "VCID-14db-749q-3qga", "summary": "multiple issues", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-21603", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00132", "scoring_system": "epss", "scoring_elements": "0.32439", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-21603" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014999", "reference_id": "1014999", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014999" }, { "reference_url": "https://security.archlinux.org/AVG-2396", "reference_id": "AVG-2396", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2396" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://usn.ubuntu.com/6617-1/", "reference_id": "USN-6617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6617-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/240197?format=api", "purl": "pkg:apk/alpine/libde265@1.0.11-r0?arch=armv7&distroversion=v3.17&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libde265@1.0.11-r0%3Farch=armv7&distroversion=v3.17&reponame=main" } ], "aliases": [ "CVE-2020-21603" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-14db-749q-3qga" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5039?format=api", "vulnerability_id": "VCID-1d34-z26z-kug2", "summary": "multiple issues", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-21597", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00269", "scoring_system": "epss", "scoring_elements": "0.50521", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-21597" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014999", "reference_id": "1014999", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014999" }, { "reference_url": "https://security.archlinux.org/AVG-2396", "reference_id": "AVG-2396", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2396" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://usn.ubuntu.com/6617-1/", "reference_id": "USN-6617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6617-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/240197?format=api", "purl": "pkg:apk/alpine/libde265@1.0.11-r0?arch=armv7&distroversion=v3.17&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libde265@1.0.11-r0%3Farch=armv7&distroversion=v3.17&reponame=main" } ], "aliases": [ "CVE-2020-21597" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1d34-z26z-kug2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5038?format=api", "vulnerability_id": "VCID-1qcy-k1bb-w3e3", "summary": "multiple issues", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-21598", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00281", "scoring_system": "epss", "scoring_elements": "0.51729", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-21598" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1004963", "reference_id": "1004963", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1004963" }, { "reference_url": "https://security.archlinux.org/AVG-2396", "reference_id": "AVG-2396", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2396" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://usn.ubuntu.com/6617-1/", "reference_id": "USN-6617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6617-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/240197?format=api", "purl": "pkg:apk/alpine/libde265@1.0.11-r0?arch=armv7&distroversion=v3.17&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libde265@1.0.11-r0%3Farch=armv7&distroversion=v3.17&reponame=main" } ], "aliases": [ "CVE-2020-21598" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1qcy-k1bb-w3e3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5036?format=api", "vulnerability_id": "VCID-23u3-c8kn-ffee", "summary": "multiple issues", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-21600", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00175", "scoring_system": "epss", "scoring_elements": "0.38741", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-21600" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1004963", "reference_id": "1004963", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1004963" }, { "reference_url": "https://security.archlinux.org/AVG-2396", "reference_id": "AVG-2396", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2396" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://usn.ubuntu.com/6617-1/", "reference_id": "USN-6617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6617-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/240197?format=api", "purl": "pkg:apk/alpine/libde265@1.0.11-r0?arch=armv7&distroversion=v3.17&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libde265@1.0.11-r0%3Farch=armv7&distroversion=v3.17&reponame=main" } ], "aliases": [ "CVE-2020-21600" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-23u3-c8kn-ffee" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/206319?format=api", "vulnerability_id": "VCID-4ftq-jkq5-x7ej", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43237", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00335", "scoring_system": "epss", "scoring_elements": "0.56548", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43237" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1027179", "reference_id": "1027179", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1027179" }, { "reference_url": "https://github.com/strukturag/libde265/issues/344", "reference_id": "344", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-02T20:44:50Z/" } ], "url": "https://github.com/strukturag/libde265/issues/344" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5346", "reference_id": "dsa-5346", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-02T20:44:50Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5346" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html", "reference_id": "msg00020.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-02T20:44:50Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html" }, { "reference_url": "https://usn.ubuntu.com/6627-1/", "reference_id": "USN-6627-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6627-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/240197?format=api", "purl": "pkg:apk/alpine/libde265@1.0.11-r0?arch=armv7&distroversion=v3.17&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libde265@1.0.11-r0%3Farch=armv7&distroversion=v3.17&reponame=main" } ], "aliases": [ "CVE-2022-43237" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4ftq-jkq5-x7ej" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/208809?format=api", "vulnerability_id": "VCID-brx5-g9dz-hygf", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-47655", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11837", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-47655" }, { "reference_url": "https://github.com/strukturag/libde265/issues/367", "reference_id": "367", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-04-10T14:27:53Z/" } ], "url": "https://github.com/strukturag/libde265/issues/367" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5346", "reference_id": "dsa-5346", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-04-10T14:27:53Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5346" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html", "reference_id": "msg00020.html", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-04-10T14:27:53Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/240197?format=api", "purl": "pkg:apk/alpine/libde265@1.0.11-r0?arch=armv7&distroversion=v3.17&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libde265@1.0.11-r0%3Farch=armv7&distroversion=v3.17&reponame=main" } ], "aliases": [ "CVE-2022-47655" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-brx5-g9dz-hygf" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5031?format=api", "vulnerability_id": "VCID-dng6-2ycu-rbcb", "summary": "multiple issues", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-21605", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00127", "scoring_system": "epss", "scoring_elements": "0.31629", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-21605" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014999", "reference_id": "1014999", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014999" }, { "reference_url": "https://security.archlinux.org/AVG-2396", "reference_id": "AVG-2396", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2396" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://usn.ubuntu.com/6617-1/", "reference_id": "USN-6617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6617-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/240197?format=api", "purl": "pkg:apk/alpine/libde265@1.0.11-r0?arch=armv7&distroversion=v3.17&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libde265@1.0.11-r0%3Farch=armv7&distroversion=v3.17&reponame=main" } ], "aliases": [ "CVE-2020-21605" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dng6-2ycu-rbcb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/206330?format=api", "vulnerability_id": "VCID-fnnc-axrn-8khe", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43250", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00299", "scoring_system": "epss", "scoring_elements": "0.53533", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43250" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1027179", "reference_id": "1027179", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1027179" }, { "reference_url": "https://github.com/strukturag/libde265/issues/346", "reference_id": "346", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-02T20:36:19Z/" } ], "url": "https://github.com/strukturag/libde265/issues/346" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5346", "reference_id": "dsa-5346", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-02T20:36:19Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5346" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html", "reference_id": "msg00020.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-02T20:36:19Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html" }, { "reference_url": "https://usn.ubuntu.com/6659-1/", "reference_id": "USN-6659-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6659-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/240197?format=api", "purl": "pkg:apk/alpine/libde265@1.0.11-r0?arch=armv7&distroversion=v3.17&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libde265@1.0.11-r0%3Farch=armv7&distroversion=v3.17&reponame=main" } ], "aliases": [ "CVE-2022-43250" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fnnc-axrn-8khe" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/206322?format=api", "vulnerability_id": "VCID-gt51-cug5-bqhz", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43240", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00256", "scoring_system": "epss", "scoring_elements": "0.49166", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43240" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1027179", "reference_id": "1027179", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1027179" }, { "reference_url": "https://github.com/strukturag/libde265/issues/335", "reference_id": "335", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T14:49:13Z/" } ], "url": "https://github.com/strukturag/libde265/issues/335" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5346", "reference_id": "dsa-5346", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T14:49:13Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5346" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html", "reference_id": "msg00020.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T14:49:13Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html" }, { "reference_url": "https://usn.ubuntu.com/6627-1/", "reference_id": "USN-6627-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6627-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/240197?format=api", "purl": "pkg:apk/alpine/libde265@1.0.11-r0?arch=armv7&distroversion=v3.17&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libde265@1.0.11-r0%3Farch=armv7&distroversion=v3.17&reponame=main" } ], "aliases": [ "CVE-2022-43240" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gt51-cug5-bqhz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/206329?format=api", "vulnerability_id": "VCID-jes6-9hds-wka3", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43249", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00391", "scoring_system": "epss", "scoring_elements": "0.60427", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43249" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1027179", "reference_id": "1027179", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1027179" }, { "reference_url": "https://github.com/strukturag/libde265/issues/345", "reference_id": "345", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-02T20:37:15Z/" } ], "url": "https://github.com/strukturag/libde265/issues/345" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5346", "reference_id": "dsa-5346", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-02T20:37:15Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5346" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html", "reference_id": "msg00020.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-02T20:37:15Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html" }, { "reference_url": "https://usn.ubuntu.com/6659-1/", "reference_id": "USN-6659-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6659-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/240197?format=api", "purl": "pkg:apk/alpine/libde265@1.0.11-r0?arch=armv7&distroversion=v3.17&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libde265@1.0.11-r0%3Farch=armv7&distroversion=v3.17&reponame=main" } ], "aliases": [ "CVE-2022-43249" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jes6-9hds-wka3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5042?format=api", "vulnerability_id": "VCID-mrq7-mtce-2qe9", "summary": "multiple issues", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-21594", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00142", "scoring_system": "epss", "scoring_elements": "0.34095", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-21594" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1029396", "reference_id": "1029396", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1029396" }, { "reference_url": "https://security.archlinux.org/AVG-2396", "reference_id": "AVG-2396", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2396" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://usn.ubuntu.com/6617-1/", "reference_id": "USN-6617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6617-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/240197?format=api", "purl": "pkg:apk/alpine/libde265@1.0.11-r0?arch=armv7&distroversion=v3.17&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libde265@1.0.11-r0%3Farch=armv7&distroversion=v3.17&reponame=main" } ], "aliases": [ "CVE-2020-21594" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mrq7-mtce-2qe9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5035?format=api", "vulnerability_id": "VCID-pave-cya5-zbf5", "summary": "multiple issues", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-21601", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00132", "scoring_system": "epss", "scoring_elements": "0.32439", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-21601" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014999", "reference_id": "1014999", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014999" }, { "reference_url": "https://security.archlinux.org/AVG-2396", "reference_id": "AVG-2396", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2396" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://usn.ubuntu.com/6617-1/", "reference_id": "USN-6617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6617-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/240197?format=api", "purl": "pkg:apk/alpine/libde265@1.0.11-r0?arch=armv7&distroversion=v3.17&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libde265@1.0.11-r0%3Farch=armv7&distroversion=v3.17&reponame=main" } ], "aliases": [ "CVE-2020-21601" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-pave-cya5-zbf5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/206321?format=api", "vulnerability_id": "VCID-s3dz-e3c2-uqad", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43239", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00335", "scoring_system": "epss", "scoring_elements": "0.56548", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43239" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1027179", "reference_id": "1027179", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1027179" }, { "reference_url": "https://github.com/strukturag/libde265/issues/341", "reference_id": "341", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T13:57:25Z/" } ], "url": "https://github.com/strukturag/libde265/issues/341" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5346", "reference_id": "dsa-5346", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T13:57:25Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5346" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html", "reference_id": "msg00020.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T13:57:25Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html" }, { "reference_url": "https://usn.ubuntu.com/6627-1/", "reference_id": "USN-6627-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6627-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/240197?format=api", "purl": "pkg:apk/alpine/libde265@1.0.11-r0?arch=armv7&distroversion=v3.17&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libde265@1.0.11-r0%3Farch=armv7&distroversion=v3.17&reponame=main" } ], "aliases": [ "CVE-2022-43239" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-s3dz-e3c2-uqad" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/206324?format=api", "vulnerability_id": "VCID-xx18-u8wg-xub9", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43242", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00391", "scoring_system": "epss", "scoring_elements": "0.60427", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43242" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1027179", "reference_id": "1027179", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1027179" }, { "reference_url": "https://github.com/strukturag/libde265/issues/340", "reference_id": "340", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T13:52:54Z/" } ], "url": "https://github.com/strukturag/libde265/issues/340" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5346", "reference_id": "dsa-5346", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T13:52:54Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5346" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html", "reference_id": "msg00020.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T13:52:54Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html" }, { "reference_url": "https://usn.ubuntu.com/6627-1/", "reference_id": "USN-6627-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6627-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/240197?format=api", "purl": "pkg:apk/alpine/libde265@1.0.11-r0?arch=armv7&distroversion=v3.17&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libde265@1.0.11-r0%3Farch=armv7&distroversion=v3.17&reponame=main" } ], "aliases": [ "CVE-2022-43242" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xx18-u8wg-xub9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/206320?format=api", "vulnerability_id": "VCID-z4d3-749f-ykg3", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43238", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00288", "scoring_system": "epss", "scoring_elements": "0.52494", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43238" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1027179", "reference_id": "1027179", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1027179" }, { "reference_url": "https://github.com/strukturag/libde265/issues/336", "reference_id": "336", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-02T20:43:14Z/" } ], "url": "https://github.com/strukturag/libde265/issues/336" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5346", "reference_id": "dsa-5346", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-02T20:43:14Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5346" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html", "reference_id": "msg00020.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-02T20:43:14Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html" }, { "reference_url": "https://usn.ubuntu.com/6627-1/", "reference_id": "USN-6627-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6627-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/240197?format=api", "purl": "pkg:apk/alpine/libde265@1.0.11-r0?arch=armv7&distroversion=v3.17&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libde265@1.0.11-r0%3Farch=armv7&distroversion=v3.17&reponame=main" } ], "aliases": [ "CVE-2022-43238" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-z4d3-749f-ykg3" } ], "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libde265@1.0.11-r0%3Farch=armv7&distroversion=v3.17&reponame=main" }