Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:apk/alpine/incus@6.0.6-r0?arch=riscv64&distroversion=v3.23&reponame=community

Type apk

Namespace alpine

Name incus

Version 6.0.6-r0

Qualifiers

arch	riscv64
distroversion	v3.23
reponame	community

Subpath

Is_vulnerable false

Next_non_vulnerable_version null

Latest_non_vulnerable_version null

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-1jbp-ed9k-57a6

vulnerability_id VCID-1jbp-ed9k-57a6

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-54291

reference_id

reference_type

scores

value	0.00109
scoring_system	epss
scoring_elements	0.28906
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-54291

reference_url

https://github.com/canonical/lxd

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/canonical/lxd

reference_url

https://github.com/canonical/lxd/security/advisories/GHSA-xch9-h8qw-85c7

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-02T17:29:40Z/

url

https://github.com/canonical/lxd/security/advisories/GHSA-xch9-h8qw-85c7

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2025-54291

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2025-54291

reference_url

https://pkg.go.dev/vuln/GO-2025-4005

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://pkg.go.dev/vuln/GO-2025-4005

fixed_packages

url	pkg:apk/alpine/incus@6.0.6-r0?arch=riscv64&distroversion=v3.23&reponame=community
purl	pkg:apk/alpine/incus@6.0.6-r0?arch=riscv64&distroversion=v3.23&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/incus@6.0.6-r0%3Farch=riscv64&distroversion=v3.23&reponame=community

aliases CVE-2025-54291, GHSA-xch9-h8qw-85c7

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1jbp-ed9k-57a6

url VCID-gc2y-3gxt-27cb

vulnerability_id VCID-gc2y-3gxt-27cb

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-54289

reference_id

reference_type

scores

value	0.00043
scoring_system	epss
scoring_elements	0.13561
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-54289

reference_url

https://github.com/canonical/lxd

reference_id

reference_type

scores

value	6.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N

value	7.4
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:P/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/canonical/lxd

reference_url

https://github.com/canonical/lxd/security/advisories/GHSA-3g72-chj4-2228

reference_id

reference_type

scores

value	6.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N

value	7.4
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:P/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-03T03:55:37Z/

url

https://github.com/canonical/lxd/security/advisories/GHSA-3g72-chj4-2228

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2025-54289

reference_id

reference_type

scores

value	6.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N

value	7.4
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:P/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2025-54289

reference_url

https://pkg.go.dev/vuln/GO-2025-3999

reference_id

reference_type

scores

value	6.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N

value	7.4
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:P/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://pkg.go.dev/vuln/GO-2025-3999

fixed_packages

url	pkg:apk/alpine/incus@6.0.6-r0?arch=riscv64&distroversion=v3.23&reponame=community
purl	pkg:apk/alpine/incus@6.0.6-r0?arch=riscv64&distroversion=v3.23&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/incus@6.0.6-r0%3Farch=riscv64&distroversion=v3.23&reponame=community

aliases CVE-2025-54289, GHSA-3g72-chj4-2228

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-gc2y-3gxt-27cb

url VCID-qgvm-7jsx-aqf3

vulnerability_id VCID-qgvm-7jsx-aqf3

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-28384

reference_id

reference_type

scores

value	0.00253
scoring_system	epss
scoring_elements	0.48802
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-28384

reference_url

https://github.com/canonical/lxd/commit/043696a13171ace7dd4c2b32d34ce039ab629052

reference_id

043696a13171ace7dd4c2b32d34ce039ab629052

reference_type

scores

value	9.4
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-03-13T16:30:00Z/

url

https://github.com/canonical/lxd/commit/043696a13171ace7dd4c2b32d34ce039ab629052

reference_url

https://github.com/canonical/lxd/commit/7046979645c2ce1b63b2f9e60ddf6cbc4c4b78f9

reference_id

7046979645c2ce1b63b2f9e60ddf6cbc4c4b78f9

reference_type

scores

value	9.4
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-03-13T16:30:00Z/

url

https://github.com/canonical/lxd/commit/7046979645c2ce1b63b2f9e60ddf6cbc4c4b78f9

reference_url

https://discourse.ubuntu.com/t/lxd-authenticated-remote-code-execution-fixes-available/78365

reference_id

78365

reference_type

scores

value	9.4
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-03-13T16:30:00Z/

url

https://discourse.ubuntu.com/t/lxd-authenticated-remote-code-execution-fixes-available/78365

reference_url

https://github.com/canonical/lxd/commit/b7b411caf5c4971bfe2386c72128f44d7e2aaf4f

reference_id

b7b411caf5c4971bfe2386c72128f44d7e2aaf4f

reference_type

scores

value	9.4
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-03-13T16:30:00Z/

url

https://github.com/canonical/lxd/commit/b7b411caf5c4971bfe2386c72128f44d7e2aaf4f

reference_url

https://github.com/canonical/lxd/security/advisories/GHSA-4rmf-rcp8-2r9g

reference_id

GHSA-4rmf-rcp8-2r9g

reference_type

scores

value	9.4
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-03-13T16:30:00Z/

url

https://github.com/canonical/lxd/security/advisories/GHSA-4rmf-rcp8-2r9g

fixed_packages

url	pkg:apk/alpine/incus@6.0.6-r0?arch=riscv64&distroversion=v3.23&reponame=community
purl	pkg:apk/alpine/incus@6.0.6-r0?arch=riscv64&distroversion=v3.23&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/incus@6.0.6-r0%3Farch=riscv64&distroversion=v3.23&reponame=community

aliases CVE-2026-28384

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-qgvm-7jsx-aqf3

url VCID-qp3d-v13t-6qe4

vulnerability_id VCID-qp3d-v13t-6qe4

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-54290

reference_id

reference_type

scores

value	0.00119
scoring_system	epss
scoring_elements	0.30535
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-54290

reference_url

https://github.com/canonical/lxd

reference_id

reference_type

scores

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/canonical/lxd

reference_url

https://github.com/canonical/lxd/security/advisories/GHSA-p3x5-mvmp-5f35

reference_id

reference_type

scores

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-10-02T17:30:50Z/

url

https://github.com/canonical/lxd/security/advisories/GHSA-p3x5-mvmp-5f35

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2025-54290

reference_id

reference_type

scores

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2025-54290

reference_url

https://pkg.go.dev/vuln/GO-2025-4002

reference_id

reference_type

scores

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://pkg.go.dev/vuln/GO-2025-4002

fixed_packages

url	pkg:apk/alpine/incus@6.0.6-r0?arch=riscv64&distroversion=v3.23&reponame=community
purl	pkg:apk/alpine/incus@6.0.6-r0?arch=riscv64&distroversion=v3.23&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/incus@6.0.6-r0%3Farch=riscv64&distroversion=v3.23&reponame=community

aliases CVE-2025-54290, GHSA-p3x5-mvmp-5f35

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-qp3d-v13t-6qe4

url VCID-ufq2-3mhu-23bw

vulnerability_id VCID-ufq2-3mhu-23bw

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-64507.json

reference_id

reference_type

scores

value	8.4
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-64507.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-64507

reference_id

reference_type

scores

value	0.00027
scoring_system	epss
scoring_elements	0.08134
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-64507

reference_url

https://github.com/lxc/incus

reference_id

reference_type

scores

value	8.6
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/lxc/incus

reference_url

https://github.com/lxc/incus/issues/2641

reference_id

reference_type

scores

value	8.6
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-11-12T17:35:12Z/

url

https://github.com/lxc/incus/issues/2641

reference_url

https://github.com/lxc/incus/pull/2642

reference_id

reference_type

scores

value	8.6
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-11-12T17:35:12Z/

url

https://github.com/lxc/incus/pull/2642

reference_url

https://github.com/lxc/incus/security/advisories/GHSA-56mx-8g9f-5crf

reference_id

reference_type

scores

value	8.6
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-11-12T17:35:12Z/

url

https://github.com/lxc/incus/security/advisories/GHSA-56mx-8g9f-5crf

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2025-64507

reference_id

reference_type

scores

value	8.6
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2025-64507

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2413919
reference_id	2413919
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2413919

fixed_packages

url	pkg:apk/alpine/incus@6.0.6-r0?arch=riscv64&distroversion=v3.23&reponame=community
purl	pkg:apk/alpine/incus@6.0.6-r0?arch=riscv64&distroversion=v3.23&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/incus@6.0.6-r0%3Farch=riscv64&distroversion=v3.23&reponame=community

aliases CVE-2025-64507, GHSA-56mx-8g9f-5crf

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ufq2-3mhu-23bw

url VCID-wtbq-tnbz-2bew

vulnerability_id VCID-wtbq-tnbz-2bew

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-54287

reference_id

reference_type

scores

value	0.00067
scoring_system	epss
scoring_elements	0.20875
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-54287

reference_url

https://github.com/canonical/lxd

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

value	7.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/canonical/lxd

reference_url

https://github.com/canonical/lxd/security/advisories/GHSA-w2hg-2v4p-vmh6

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

value	7.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-10-02T13:27:39Z/

url

https://github.com/canonical/lxd/security/advisories/GHSA-w2hg-2v4p-vmh6

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2025-54287

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

value	7.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2025-54287

reference_url

https://pkg.go.dev/vuln/GO-2025-4004

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

value	7.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://pkg.go.dev/vuln/GO-2025-4004

fixed_packages

url	pkg:apk/alpine/incus@6.0.6-r0?arch=riscv64&distroversion=v3.23&reponame=community
purl	pkg:apk/alpine/incus@6.0.6-r0?arch=riscv64&distroversion=v3.23&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/incus@6.0.6-r0%3Farch=riscv64&distroversion=v3.23&reponame=community

aliases CVE-2025-54287, GHSA-w2hg-2v4p-vmh6

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wtbq-tnbz-2bew

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/incus@6.0.6-r0%3Farch=riscv64&distroversion=v3.23&reponame=community

Package Instance