Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/335672?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/335672?format=api", "purl": "pkg:apk/alpine/openjdk21@21.0.11_p10-r0?arch=x86&distroversion=edge&reponame=community", "type": "apk", "namespace": "alpine", "name": "openjdk21", "version": "21.0.11_p10-r0", "qualifiers": { "arch": "x86", "distroversion": "edge", "reponame": "community" }, "subpath": "", "is_vulnerable": false, "next_non_vulnerable_version": null, "latest_non_vulnerable_version": null, "affected_by_vulnerabilities": [], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/62459?format=api", "vulnerability_id": "VCID-247q-sfdz-kqf4", "summary": "openjdk: Improve Kerberos credentialing (Oracle CPU 2026-04)", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-22013.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-22013.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-22013", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20865", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-22013" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-22013", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-22013" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1134894", "reference_id": "1134894", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1134894" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460040", "reference_id": "2460040", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460040" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2026.html", "reference_id": "cpuapr2026.html", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-22T14:09:34Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2026.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:11403", "reference_id": "RHSA-2026:11403", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:11403" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:11655", "reference_id": "RHSA-2026:11655", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:11655" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:11822", "reference_id": "RHSA-2026:11822", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:11822" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:11829", "reference_id": "RHSA-2026:11829", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:11829" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:11902", "reference_id": "RHSA-2026:11902", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:11902" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:22139", "reference_id": "RHSA-2026:22139", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:22139" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:22328", "reference_id": "RHSA-2026:22328", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:22328" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9254", "reference_id": "RHSA-2026:9254", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9254" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9255", "reference_id": "RHSA-2026:9255", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9255" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9256", "reference_id": "RHSA-2026:9256", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9256" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9682", "reference_id": "RHSA-2026:9682", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9682" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9683", "reference_id": "RHSA-2026:9683", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9683" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9684", "reference_id": "RHSA-2026:9684", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9684" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9685", "reference_id": "RHSA-2026:9685", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9685" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9686", "reference_id": "RHSA-2026:9686", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9686" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9687", "reference_id": "RHSA-2026:9687", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9687" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9688", "reference_id": "RHSA-2026:9688", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9688" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9689", "reference_id": "RHSA-2026:9689", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9689" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9690", "reference_id": "RHSA-2026:9690", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9690" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9691", "reference_id": "RHSA-2026:9691", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9691" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9693", "reference_id": "RHSA-2026:9693", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9693" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9694", "reference_id": "RHSA-2026:9694", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9694" }, { "reference_url": "https://usn.ubuntu.com/8327-1/", "reference_id": "USN-8327-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8327-1/" }, { "reference_url": "https://usn.ubuntu.com/8328-1/", "reference_id": "USN-8328-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8328-1/" }, { "reference_url": "https://usn.ubuntu.com/8330-1/", "reference_id": "USN-8330-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8330-1/" }, { "reference_url": "https://usn.ubuntu.com/8331-1/", "reference_id": "USN-8331-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8331-1/" }, { "reference_url": "https://usn.ubuntu.com/8332-1/", "reference_id": "USN-8332-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8332-1/" }, { "reference_url": "https://usn.ubuntu.com/8333-1/", "reference_id": "USN-8333-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8333-1/" }, { "reference_url": "https://usn.ubuntu.com/8334-1/", "reference_id": "USN-8334-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8334-1/" }, { "reference_url": "https://usn.ubuntu.com/8339-1/", "reference_id": "USN-8339-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8339-1/" }, { "reference_url": "https://usn.ubuntu.com/8341-1/", "reference_id": "USN-8341-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8341-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/335672?format=api", "purl": "pkg:apk/alpine/openjdk21@21.0.11_p10-r0?arch=x86&distroversion=edge&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk21@21.0.11_p10-r0%3Farch=x86&distroversion=edge&reponame=community" } ], "aliases": [ "CVE-2026-22013" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-247q-sfdz-kqf4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/62488?format=api", "vulnerability_id": "VCID-2whp-5xup-gkd4", "summary": "openjdk: Enhance certificate chain validation (Oracle CPU 2026-04)", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-22021.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-22021.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-22021", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20675", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-22021" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-22021", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-22021" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1134894", "reference_id": "1134894", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1134894" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460042", "reference_id": "2460042", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460042" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2026.html", "reference_id": "cpuapr2026.html", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-22T13:58:16Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2026.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:11403", "reference_id": "RHSA-2026:11403", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:11403" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:11655", "reference_id": "RHSA-2026:11655", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:11655" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:11822", "reference_id": "RHSA-2026:11822", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:11822" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:11829", "reference_id": "RHSA-2026:11829", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:11829" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:11902", "reference_id": "RHSA-2026:11902", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:11902" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:22139", "reference_id": "RHSA-2026:22139", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:22139" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:22328", "reference_id": "RHSA-2026:22328", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:22328" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9254", "reference_id": "RHSA-2026:9254", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9254" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9255", "reference_id": "RHSA-2026:9255", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9255" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9256", "reference_id": "RHSA-2026:9256", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9256" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9682", "reference_id": "RHSA-2026:9682", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9682" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9683", "reference_id": "RHSA-2026:9683", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9683" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9684", "reference_id": "RHSA-2026:9684", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9684" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9685", "reference_id": "RHSA-2026:9685", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9685" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9686", "reference_id": "RHSA-2026:9686", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9686" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9687", "reference_id": "RHSA-2026:9687", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9687" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9688", "reference_id": "RHSA-2026:9688", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9688" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9689", "reference_id": "RHSA-2026:9689", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9689" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9690", "reference_id": "RHSA-2026:9690", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9690" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9691", "reference_id": "RHSA-2026:9691", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9691" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9693", "reference_id": "RHSA-2026:9693", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9693" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9694", "reference_id": "RHSA-2026:9694", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9694" }, { "reference_url": "https://usn.ubuntu.com/8327-1/", "reference_id": "USN-8327-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8327-1/" }, { "reference_url": "https://usn.ubuntu.com/8328-1/", "reference_id": "USN-8328-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8328-1/" }, { "reference_url": "https://usn.ubuntu.com/8330-1/", "reference_id": "USN-8330-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8330-1/" }, { "reference_url": "https://usn.ubuntu.com/8331-1/", "reference_id": "USN-8331-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8331-1/" }, { "reference_url": "https://usn.ubuntu.com/8332-1/", "reference_id": "USN-8332-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8332-1/" }, { "reference_url": "https://usn.ubuntu.com/8333-1/", "reference_id": "USN-8333-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8333-1/" }, { "reference_url": "https://usn.ubuntu.com/8334-1/", "reference_id": "USN-8334-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8334-1/" }, { "reference_url": "https://usn.ubuntu.com/8339-1/", "reference_id": "USN-8339-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8339-1/" }, { "reference_url": "https://usn.ubuntu.com/8341-1/", "reference_id": "USN-8341-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8341-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/335672?format=api", "purl": "pkg:apk/alpine/openjdk21@21.0.11_p10-r0?arch=x86&distroversion=edge&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk21@21.0.11_p10-r0%3Farch=x86&distroversion=edge&reponame=community" } ], "aliases": [ "CVE-2026-22021" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2whp-5xup-gkd4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/62439?format=api", "vulnerability_id": "VCID-54tg-29eb-bkds", "summary": "openjdk: Enhance crypto algorithm support (Oracle CPU 2026-04)", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-22007.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-22007.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-22007", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.06386", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-22007" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-22007", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-22007" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1134894", "reference_id": "1134894", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1134894" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460038", "reference_id": "2460038", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460038" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2026.html", "reference_id": "cpuapr2026.html", "reference_type": "", "scores": [ { "value": "2.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-22T14:05:16Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2026.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:11403", "reference_id": "RHSA-2026:11403", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:11403" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:11655", "reference_id": "RHSA-2026:11655", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:11655" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:11822", "reference_id": "RHSA-2026:11822", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:11822" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:11829", "reference_id": "RHSA-2026:11829", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:11829" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:11902", "reference_id": "RHSA-2026:11902", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:11902" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:22139", "reference_id": "RHSA-2026:22139", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:22139" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:22328", "reference_id": "RHSA-2026:22328", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:22328" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9254", "reference_id": "RHSA-2026:9254", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9254" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9255", "reference_id": "RHSA-2026:9255", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9255" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9256", "reference_id": "RHSA-2026:9256", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9256" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9682", "reference_id": "RHSA-2026:9682", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9682" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9683", "reference_id": "RHSA-2026:9683", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9683" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9684", "reference_id": "RHSA-2026:9684", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9684" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9685", "reference_id": "RHSA-2026:9685", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9685" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9686", "reference_id": "RHSA-2026:9686", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9686" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9687", "reference_id": "RHSA-2026:9687", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9687" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9688", "reference_id": "RHSA-2026:9688", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9688" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9689", "reference_id": "RHSA-2026:9689", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9689" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9690", "reference_id": "RHSA-2026:9690", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9690" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9691", "reference_id": "RHSA-2026:9691", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9691" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9693", "reference_id": "RHSA-2026:9693", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9693" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9694", "reference_id": "RHSA-2026:9694", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9694" }, { "reference_url": "https://usn.ubuntu.com/8327-1/", "reference_id": "USN-8327-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8327-1/" }, { "reference_url": "https://usn.ubuntu.com/8328-1/", "reference_id": "USN-8328-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8328-1/" }, { "reference_url": "https://usn.ubuntu.com/8330-1/", "reference_id": "USN-8330-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8330-1/" }, { "reference_url": "https://usn.ubuntu.com/8331-1/", "reference_id": "USN-8331-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8331-1/" }, { "reference_url": "https://usn.ubuntu.com/8332-1/", "reference_id": "USN-8332-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8332-1/" }, { "reference_url": "https://usn.ubuntu.com/8333-1/", "reference_id": "USN-8333-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8333-1/" }, { "reference_url": "https://usn.ubuntu.com/8334-1/", "reference_id": "USN-8334-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8334-1/" }, { "reference_url": "https://usn.ubuntu.com/8339-1/", "reference_id": "USN-8339-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8339-1/" }, { "reference_url": "https://usn.ubuntu.com/8341-1/", "reference_id": "USN-8341-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8341-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/335672?format=api", "purl": "pkg:apk/alpine/openjdk21@21.0.11_p10-r0?arch=x86&distroversion=edge&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk21@21.0.11_p10-r0%3Farch=x86&distroversion=edge&reponame=community" } ], "aliases": [ "CVE-2026-22007" ], "risk_score": 1.3, "exploitability": "0.5", "weighted_severity": "2.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-54tg-29eb-bkds" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/65838?format=api", "vulnerability_id": "VCID-vcs8-ae2h-abgs", "summary": "freetype: Information disclosure or denial of service via specially crafted font files", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-23865.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-23865.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-23865", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00017", "scoring_system": "epss", "scoring_elements": "0.04651", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-23865" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1129606", "reference_id": "1129606", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1129606" }, { "reference_url": "https://sourceforge.net/projects/freetype/files/freetype2/2.14.2/", "reference_id": "2.14.2", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L/E:U/RL:O/RC:C" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-02T16:25:34Z/" } ], "url": "https://sourceforge.net/projects/freetype/files/freetype2/2.14.2/" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2443891", "reference_id": "2443891", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2443891" }, { "reference_url": "https://www.facebook.com/security/advisories/cve-2026-23865", "reference_id": "cve-2026-23865", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L/E:U/RL:O/RC:C" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-02T16:25:34Z/" } ], "url": "https://www.facebook.com/security/advisories/cve-2026-23865" }, { "reference_url": "https://gitlab.com/freetype/freetype/-/commit/fc85a255849229c024c8e65f536fe1875d84841c", "reference_id": "fc85a255849229c024c8e65f536fe1875d84841c", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L/E:U/RL:O/RC:C" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-02T16:25:34Z/" } ], "url": "https://gitlab.com/freetype/freetype/-/commit/fc85a255849229c024c8e65f536fe1875d84841c" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:11822", "reference_id": "RHSA-2026:11822", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:11822" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:22328", "reference_id": "RHSA-2026:22328", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:22328" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:7933", "reference_id": "RHSA-2026:7933", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:7933" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9254", "reference_id": "RHSA-2026:9254", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9254" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9255", "reference_id": "RHSA-2026:9255", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9255" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9256", "reference_id": "RHSA-2026:9256", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9256" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9682", "reference_id": "RHSA-2026:9682", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9682" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9683", "reference_id": "RHSA-2026:9683", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9683" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9684", "reference_id": "RHSA-2026:9684", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9684" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9685", "reference_id": "RHSA-2026:9685", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9685" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9686", "reference_id": "RHSA-2026:9686", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9686" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9687", "reference_id": "RHSA-2026:9687", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9687" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9688", "reference_id": "RHSA-2026:9688", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9688" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9689", "reference_id": "RHSA-2026:9689", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9689" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9690", "reference_id": "RHSA-2026:9690", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9690" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9691", "reference_id": "RHSA-2026:9691", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9691" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9693", "reference_id": "RHSA-2026:9693", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9693" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9694", "reference_id": "RHSA-2026:9694", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9694" }, { "reference_url": "https://usn.ubuntu.com/8086-1/", "reference_id": "USN-8086-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8086-1/" }, { "reference_url": "https://usn.ubuntu.com/8327-1/", "reference_id": "USN-8327-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8327-1/" }, { "reference_url": "https://usn.ubuntu.com/8328-1/", "reference_id": "USN-8328-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8328-1/" }, { "reference_url": "https://usn.ubuntu.com/8330-1/", "reference_id": "USN-8330-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8330-1/" }, { "reference_url": "https://usn.ubuntu.com/8331-1/", "reference_id": "USN-8331-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8331-1/" }, { "reference_url": "https://usn.ubuntu.com/8332-1/", "reference_id": "USN-8332-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8332-1/" }, { "reference_url": "https://usn.ubuntu.com/8333-1/", "reference_id": "USN-8333-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8333-1/" }, { "reference_url": "https://usn.ubuntu.com/8334-1/", "reference_id": "USN-8334-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8334-1/" }, { "reference_url": "https://usn.ubuntu.com/8339-1/", "reference_id": "USN-8339-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8339-1/" }, { "reference_url": "https://usn.ubuntu.com/8341-1/", "reference_id": "USN-8341-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8341-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/335672?format=api", "purl": "pkg:apk/alpine/openjdk21@21.0.11_p10-r0?arch=x86&distroversion=edge&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk21@21.0.11_p10-r0%3Farch=x86&distroversion=edge&reponame=community" } ], "aliases": [ "CVE-2026-23865" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vcs8-ae2h-abgs" } ], "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk21@21.0.11_p10-r0%3Farch=x86&distroversion=edge&reponame=community" }