Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/354938?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/354938?format=api", "purl": "pkg:rpm/redhat/ntp@4.2.6p5-25.el7_3?arch=1", "type": "rpm", "namespace": "redhat", "name": "ntp", "version": "4.2.6p5-25.el7_3", "qualifiers": { "arch": "1" }, "subpath": "", "is_vulnerable": true, "next_non_vulnerable_version": null, "latest_non_vulnerable_version": null, "affected_by_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/1808?format=api", "vulnerability_id": "VCID-ctj7-m6y5-tubt", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-7426.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-7426.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-7426", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.11683", "scoring_system": "epss", "scoring_elements": "0.93838", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.11683", "scoring_system": "epss", "scoring_elements": "0.93859", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-7426" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7426", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7426" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:H/Au:S/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397345", "reference_id": "1397345", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397345" }, { "reference_url": "https://security.archlinux.org/ASA-201611-28", "reference_id": "ASA-201611-28", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-28" }, { "reference_url": "https://security.archlinux.org/AVG-79", "reference_id": "AVG-79", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-79" }, { "reference_url": "https://security.archlinux.org/AVG-80", "reference_id": "AVG-80", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-80" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0252", "reference_id": "RHSA-2017:0252", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0252" }, { "reference_url": "https://usn.ubuntu.com/3349-1/", "reference_id": "USN-3349-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3349-1/" }, { "reference_url": "https://usn.ubuntu.com/3707-2/", "reference_id": "USN-3707-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3707-2/" } ], "fixed_packages": [], "aliases": [ "CVE-2016-7426" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ctj7-m6y5-tubt" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/197504?format=api", "vulnerability_id": "VCID-gtn1-b39r-jqb8", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9310.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9310.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9310", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.03956", "scoring_system": "epss", "scoring_elements": "0.88627", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.03956", "scoring_system": "epss", "scoring_elements": "0.88666", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9310" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397319", "reference_id": "1397319", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397319" }, { "reference_url": "https://security.archlinux.org/ASA-201611-28", "reference_id": "ASA-201611-28", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-28" }, { "reference_url": "https://security.archlinux.org/AVG-79", "reference_id": "AVG-79", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-79" }, { "reference_url": "https://security.archlinux.org/AVG-80", "reference_id": "AVG-80", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-80" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0252", "reference_id": "RHSA-2017:0252", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0252" }, { "reference_url": "https://usn.ubuntu.com/3349-1/", "reference_id": "USN-3349-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3349-1/" }, { "reference_url": "https://usn.ubuntu.com/3707-2/", "reference_id": "USN-3707-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3707-2/" } ], "fixed_packages": [], "aliases": [ "CVE-2016-9310" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gtn1-b39r-jqb8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/1813?format=api", "vulnerability_id": "VCID-jvft-uqwz-vfdu", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-7433.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-7433.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-7433", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.06848", "scoring_system": "epss", "scoring_elements": "0.9156", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.06848", "scoring_system": "epss", "scoring_elements": "0.91589", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-7433" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7433", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7433" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "1.2", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:H/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397347", "reference_id": "1397347", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397347" }, { "reference_url": "https://security.archlinux.org/ASA-201611-28", "reference_id": "ASA-201611-28", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-28" }, { "reference_url": "https://security.archlinux.org/AVG-79", "reference_id": "AVG-79", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-79" }, { "reference_url": "https://security.archlinux.org/AVG-80", "reference_id": "AVG-80", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-80" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0252", "reference_id": "RHSA-2017:0252", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0252" }, { "reference_url": "https://usn.ubuntu.com/3349-1/", "reference_id": "USN-3349-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3349-1/" } ], "fixed_packages": [], "aliases": [ "CVE-2016-7433" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jvft-uqwz-vfdu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/1811?format=api", "vulnerability_id": "VCID-vfte-9m6c-v7bc", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-7429.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-7429.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-7429", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.05213", "scoring_system": "epss", "scoring_elements": "0.90156", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.05213", "scoring_system": "epss", "scoring_elements": "0.90187", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-7429" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7429", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7429" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:H/Au:S/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397341", "reference_id": "1397341", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397341" }, { "reference_url": "https://security.archlinux.org/ASA-201611-28", "reference_id": "ASA-201611-28", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-28" }, { "reference_url": "https://security.archlinux.org/AVG-79", "reference_id": "AVG-79", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-79" }, { "reference_url": "https://security.archlinux.org/AVG-80", "reference_id": "AVG-80", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-80" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0252", "reference_id": "RHSA-2017:0252", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0252" }, { "reference_url": "https://usn.ubuntu.com/3349-1/", "reference_id": "USN-3349-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3349-1/" } ], "fixed_packages": [], "aliases": [ "CVE-2016-7429" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vfte-9m6c-v7bc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/2076?format=api", "vulnerability_id": "VCID-yry2-vrup-a7fg", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9311.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9311.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9311", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.04785", "scoring_system": "epss", "scoring_elements": "0.89709", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.04785", "scoring_system": "epss", "scoring_elements": "0.89744", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9311" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9311", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9311" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:N/A:C" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1398350", "reference_id": "1398350", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1398350" }, { "reference_url": "https://security.archlinux.org/ASA-201611-28", "reference_id": "ASA-201611-28", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-28" }, { "reference_url": "https://security.archlinux.org/AVG-79", "reference_id": "AVG-79", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-79" }, { "reference_url": "https://security.archlinux.org/AVG-80", "reference_id": "AVG-80", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-80" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0252", "reference_id": "RHSA-2017:0252", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0252" }, { "reference_url": "https://usn.ubuntu.com/3349-1/", "reference_id": "USN-3349-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3349-1/" }, { "reference_url": "https://usn.ubuntu.com/3707-2/", "reference_id": "USN-3707-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3707-2/" } ], "fixed_packages": [], "aliases": [ "CVE-2016-9311" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-yry2-vrup-a7fg" } ], "fixing_vulnerabilities": [], "risk_score": "4.0", "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ntp@4.2.6p5-25.el7_3%3Farch=1" }