Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:apk/alpine/xen@4.15.0-r1?arch=x86_64&distroversion=v3.14&reponame=main

Type apk

Namespace alpine

Name xen

Version 4.15.0-r1

Qualifiers

arch	x86_64
distroversion	v3.14
reponame	main

Subpath

Is_vulnerable false

Next_non_vulnerable_version 4.15.0-r2

Latest_non_vulnerable_version 4.15.4-r0

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-32w3-vmcb-wfd9

vulnerability_id VCID-32w3-vmcb-wfd9

summary xen/arm: Boot modules are not scrubbed

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-28693

reference_id

reference_type

scores

value	0.0006
scoring_system	epss
scoring_elements	0.18606
published_at	2026-04-24T12:55:00Z

value	0.0006
scoring_system	epss
scoring_elements	0.18781
published_at	2026-04-01T12:55:00Z

value	0.0006
scoring_system	epss
scoring_elements	0.18919
published_at	2026-04-02T12:55:00Z

value	0.0006
scoring_system	epss
scoring_elements	0.18972
published_at	2026-04-04T12:55:00Z

value	0.0006
scoring_system	epss
scoring_elements	0.18698
published_at	2026-04-07T12:55:00Z

value	0.0006
scoring_system	epss
scoring_elements	0.18778
published_at	2026-04-08T12:55:00Z

value	0.0006
scoring_system	epss
scoring_elements	0.18832
published_at	2026-04-09T12:55:00Z

value	0.0006
scoring_system	epss
scoring_elements	0.18837
published_at	2026-04-11T12:55:00Z

value	0.0006
scoring_system	epss
scoring_elements	0.18791
published_at	2026-04-12T12:55:00Z

value	0.0006
scoring_system	epss
scoring_elements	0.18738
published_at	2026-04-13T12:55:00Z

value	0.0006
scoring_system	epss
scoring_elements	0.18688
published_at	2026-04-16T12:55:00Z

value	0.0006
scoring_system	epss
scoring_elements	0.187
published_at	2026-04-18T12:55:00Z

value	0.0006
scoring_system	epss
scoring_elements	0.18719
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-28693

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28693
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28693

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://security.gentoo.org/glsa/202107-30
reference_id	GLSA-202107-30
reference_type
scores
url	https://security.gentoo.org/glsa/202107-30

reference_url	https://xenbits.xen.org/xsa/advisory-372.html
reference_id	XSA-372
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-372.html

fixed_packages

url	pkg:apk/alpine/xen@4.15.0-r1?arch=x86_64&distroversion=v3.14&reponame=main
purl	pkg:apk/alpine/xen@4.15.0-r1?arch=x86_64&distroversion=v3.14&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.15.0-r1%3Farch=x86_64&distroversion=v3.14&reponame=main

aliases CVE-2021-28693, XSA-372

risk_score 1.2

exploitability 0.5

weighted_severity 2.5

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-32w3-vmcb-wfd9

url VCID-hyup-47wa-pfac

vulnerability_id VCID-hyup-47wa-pfac

summary x86: TSX Async Abort protections not restored after S3

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-28690

reference_id

reference_type

scores

value	0.00357
scoring_system	epss
scoring_elements	0.57968
published_at	2026-04-24T12:55:00Z

value	0.00357
scoring_system	epss
scoring_elements	0.57887
published_at	2026-04-01T12:55:00Z

value	0.00357
scoring_system	epss
scoring_elements	0.57971
published_at	2026-04-02T12:55:00Z

value	0.00357
scoring_system	epss
scoring_elements	0.5799
published_at	2026-04-04T12:55:00Z

value	0.00357
scoring_system	epss
scoring_elements	0.57966
published_at	2026-04-07T12:55:00Z

value	0.00357
scoring_system	epss
scoring_elements	0.58022
published_at	2026-04-08T12:55:00Z

value	0.00357
scoring_system	epss
scoring_elements	0.58024
published_at	2026-04-09T12:55:00Z

value	0.00357
scoring_system	epss
scoring_elements	0.58041
published_at	2026-04-11T12:55:00Z

value	0.00357
scoring_system	epss
scoring_elements	0.58019
published_at	2026-04-12T12:55:00Z

value	0.00357
scoring_system	epss
scoring_elements	0.57999
published_at	2026-04-13T12:55:00Z

value	0.00357
scoring_system	epss
scoring_elements	0.58029
published_at	2026-04-16T12:55:00Z

value	0.00357
scoring_system	epss
scoring_elements	0.58028
published_at	2026-04-18T12:55:00Z

value	0.00357
scoring_system	epss
scoring_elements	0.58005
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-28690

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-0089
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-0089

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26313
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26313

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28690
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28690

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28692
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28692

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://security.gentoo.org/glsa/202107-30
reference_id	GLSA-202107-30
reference_type
scores
url	https://security.gentoo.org/glsa/202107-30

reference_url	https://xenbits.xen.org/xsa/advisory-377.html
reference_id	XSA-377
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-377.html

fixed_packages

url	pkg:apk/alpine/xen@4.15.0-r1?arch=x86_64&distroversion=v3.14&reponame=main
purl	pkg:apk/alpine/xen@4.15.0-r1?arch=x86_64&distroversion=v3.14&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.15.0-r1%3Farch=x86_64&distroversion=v3.14&reponame=main

aliases CVE-2021-28690, XSA-377

risk_score 1.4

exploitability 0.5

weighted_severity 2.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-hyup-47wa-pfac

url VCID-knqd-zktw-cydm

vulnerability_id VCID-knqd-zktw-cydm

summary Speculative Code Store Bypass

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-0089

reference_id

reference_type

scores

value	0.00057
scoring_system	epss
scoring_elements	0.17717
published_at	2026-04-24T12:55:00Z

value	0.00057
scoring_system	epss
scoring_elements	0.1783
published_at	2026-04-01T12:55:00Z

value	0.00057
scoring_system	epss
scoring_elements	0.17992
published_at	2026-04-02T12:55:00Z

value	0.00057
scoring_system	epss
scoring_elements	0.18046
published_at	2026-04-04T12:55:00Z

value	0.00057
scoring_system	epss
scoring_elements	0.17746
published_at	2026-04-07T12:55:00Z

value	0.00057
scoring_system	epss
scoring_elements	0.17834
published_at	2026-04-08T12:55:00Z

value	0.00057
scoring_system	epss
scoring_elements	0.17896
published_at	2026-04-09T12:55:00Z

value	0.00057
scoring_system	epss
scoring_elements	0.17912
published_at	2026-04-11T12:55:00Z

value	0.00057
scoring_system	epss
scoring_elements	0.17867
published_at	2026-04-12T12:55:00Z

value	0.00057
scoring_system	epss
scoring_elements	0.17818
published_at	2026-04-13T12:55:00Z

value	0.00057
scoring_system	epss
scoring_elements	0.1776
published_at	2026-04-16T12:55:00Z

value	0.00057
scoring_system	epss
scoring_elements	0.1777
published_at	2026-04-18T12:55:00Z

value	0.00057
scoring_system	epss
scoring_elements	0.17808
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-0089

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-0089
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-0089

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26313
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26313

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28690
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28690

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28692
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28692

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://security.gentoo.org/glsa/202107-30
reference_id	GLSA-202107-30
reference_type
scores
url	https://security.gentoo.org/glsa/202107-30

reference_url	https://xenbits.xen.org/xsa/advisory-375.html
reference_id	XSA-375
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-375.html

fixed_packages

url	pkg:apk/alpine/xen@4.15.0-r1?arch=x86_64&distroversion=v3.14&reponame=main
purl	pkg:apk/alpine/xen@4.15.0-r1?arch=x86_64&distroversion=v3.14&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.15.0-r1%3Farch=x86_64&distroversion=v3.14&reponame=main

aliases CVE-2021-0089, XSA-375

risk_score 1.6

exploitability 0.5

weighted_severity 3.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-knqd-zktw-cydm

url VCID-n7pg-b7kc-wkew

vulnerability_id VCID-n7pg-b7kc-wkew

summary inappropriate x86 IOMMU timeout detection / handling

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-28692

reference_id

reference_type

scores

value	0.00036
scoring_system	epss
scoring_elements	0.10576
published_at	2026-04-24T12:55:00Z

value	0.00036
scoring_system	epss
scoring_elements	0.10461
published_at	2026-04-01T12:55:00Z

value	0.00036
scoring_system	epss
scoring_elements	0.10604
published_at	2026-04-02T12:55:00Z

value	0.00036
scoring_system	epss
scoring_elements	0.10666
published_at	2026-04-04T12:55:00Z

value	0.00036
scoring_system	epss
scoring_elements	0.1053
published_at	2026-04-07T12:55:00Z

value	0.00036
scoring_system	epss
scoring_elements	0.10603
published_at	2026-04-08T12:55:00Z

value	0.00036
scoring_system	epss
scoring_elements	0.10662
published_at	2026-04-09T12:55:00Z

value	0.00036
scoring_system	epss
scoring_elements	0.10675
published_at	2026-04-11T12:55:00Z

value	0.00036
scoring_system	epss
scoring_elements	0.10643
published_at	2026-04-12T12:55:00Z

value	0.00036
scoring_system	epss
scoring_elements	0.10619
published_at	2026-04-13T12:55:00Z

value	0.00036
scoring_system	epss
scoring_elements	0.10484
published_at	2026-04-16T12:55:00Z

value	0.00036
scoring_system	epss
scoring_elements	0.10502
published_at	2026-04-18T12:55:00Z

value	0.00036
scoring_system	epss
scoring_elements	0.10627
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-28692

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-0089
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-0089

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26313
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26313

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28690
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28690

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28692
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28692

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://security.gentoo.org/glsa/202107-30
reference_id	GLSA-202107-30
reference_type
scores
url	https://security.gentoo.org/glsa/202107-30

reference_url	https://xenbits.xen.org/xsa/advisory-373.html
reference_id	XSA-373
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-373.html

fixed_packages

url	pkg:apk/alpine/xen@4.15.0-r1?arch=x86_64&distroversion=v3.14&reponame=main
purl	pkg:apk/alpine/xen@4.15.0-r1?arch=x86_64&distroversion=v3.14&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.15.0-r1%3Farch=x86_64&distroversion=v3.14&reponame=main

aliases CVE-2021-28692, XSA-373

risk_score 1.1

exploitability 0.5

weighted_severity 2.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-n7pg-b7kc-wkew

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.15.0-r1%3Farch=x86_64&distroversion=v3.14&reponame=main

Package Instance