Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:apk/alpine/xen@4.16.1-r0?arch=x86_64&distroversion=v3.16&reponame=main

Type apk

Namespace alpine

Name xen

Version 4.16.1-r0

Qualifiers

arch	x86_64
distroversion	v3.16
reponame	main

Subpath

Is_vulnerable false

Next_non_vulnerable_version 4.16.1-r1

Latest_non_vulnerable_version 4.16.6-r0

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-49uz-fmr3-zqaw

vulnerability_id VCID-49uz-fmr3-zqaw

summary

references

reference_url	https://xenbits.xen.org/xsa/advisory-398.html
reference_id	XSA-398
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-398.html

fixed_packages

url	pkg:apk/alpine/xen@4.16.1-r0?arch=x86_64&distroversion=v3.16&reponame=main
purl	pkg:apk/alpine/xen@4.16.1-r0?arch=x86_64&distroversion=v3.16&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.16.1-r0%3Farch=x86_64&distroversion=v3.16&reponame=main

aliases CVE-2022-26401, XSA-398

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-49uz-fmr3-zqaw

url VCID-9zqd-3x84-43gc

vulnerability_id VCID-9zqd-3x84-43gc

summary arm: guest_physmap_remove_page not removing the p2m mappings

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-23033.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-23033.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-23033

reference_id

reference_type

scores

value	0.00092
scoring_system	epss
scoring_elements	0.26003
published_at	2026-04-02T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.26045
published_at	2026-04-04T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.25817
published_at	2026-04-07T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.25887
published_at	2026-04-08T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.25938
published_at	2026-04-09T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.25948
published_at	2026-04-11T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.25906
published_at	2026-04-12T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.25852
published_at	2026-04-13T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.25856
published_at	2026-04-16T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.25838
published_at	2026-04-18T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.25808
published_at	2026-04-21T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.25751
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-23033

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23033
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23033

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23034
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23034

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23035
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23035

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26356
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26356

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26357
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26357

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26358
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26358

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26359
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26359

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26360
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26360

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26361
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26361

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2045043
reference_id	2045043
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2045043

reference_url	https://security.gentoo.org/glsa/202208-23
reference_id	GLSA-202208-23
reference_type
scores
url	https://security.gentoo.org/glsa/202208-23

reference_url	https://xenbits.xen.org/xsa/advisory-393.html
reference_id	XSA-393
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-393.html

fixed_packages

url	pkg:apk/alpine/xen@4.16.1-r0?arch=x86_64&distroversion=v3.16&reponame=main
purl	pkg:apk/alpine/xen@4.16.1-r0?arch=x86_64&distroversion=v3.16&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.16.1-r0%3Farch=x86_64&distroversion=v3.16&reponame=main

aliases CVE-2022-23033, XSA-393

risk_score 3.5

exploitability 0.5

weighted_severity 7.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9zqd-3x84-43gc

url VCID-dj1v-h79p-9ydz

vulnerability_id VCID-dj1v-h79p-9ydz

summary Racy interactions between dirty vram tracking and paging log dirty hypercalls

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-26356

reference_id

reference_type

scores

value	0.00049
scoring_system	epss
scoring_elements	0.14982
published_at	2026-04-24T12:55:00Z

value	0.00049
scoring_system	epss
scoring_elements	0.15105
published_at	2026-04-02T12:55:00Z

value	0.00049
scoring_system	epss
scoring_elements	0.15172
published_at	2026-04-04T12:55:00Z

value	0.00049
scoring_system	epss
scoring_elements	0.14976
published_at	2026-04-07T12:55:00Z

value	0.00049
scoring_system	epss
scoring_elements	0.15065
published_at	2026-04-08T12:55:00Z

value	0.00049
scoring_system	epss
scoring_elements	0.15116
published_at	2026-04-09T12:55:00Z

value	0.00049
scoring_system	epss
scoring_elements	0.15084
published_at	2026-04-11T12:55:00Z

value	0.00049
scoring_system	epss
scoring_elements	0.15045
published_at	2026-04-12T12:55:00Z

value	0.00049
scoring_system	epss
scoring_elements	0.14985
published_at	2026-04-13T12:55:00Z

value	0.00049
scoring_system	epss
scoring_elements	0.14882
published_at	2026-04-16T12:55:00Z

value	0.00049
scoring_system	epss
scoring_elements	0.14889
published_at	2026-04-18T12:55:00Z

value	0.00049
scoring_system	epss
scoring_elements	0.14943
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-26356

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23033
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23033

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23034
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23034

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23035
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23035

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26356
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26356

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26357
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26357

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26358
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26358

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26359
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26359

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26360
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26360

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26361
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26361

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://security.gentoo.org/glsa/202402-07
reference_id	GLSA-202402-07
reference_type
scores
url	https://security.gentoo.org/glsa/202402-07

reference_url	https://xenbits.xen.org/xsa/advisory-397.html
reference_id	XSA-397
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-397.html

fixed_packages

url	pkg:apk/alpine/xen@4.16.1-r0?arch=x86_64&distroversion=v3.16&reponame=main
purl	pkg:apk/alpine/xen@4.16.1-r0?arch=x86_64&distroversion=v3.16&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.16.1-r0%3Farch=x86_64&distroversion=v3.16&reponame=main

aliases CVE-2022-26356, XSA-397

risk_score 1.7

exploitability 0.5

weighted_severity 3.4

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dj1v-h79p-9ydz

url VCID-jwdv-qe4x-yfgw

vulnerability_id VCID-jwdv-qe4x-yfgw

summary race in VT-d domain ID cleanup

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-26357

reference_id

reference_type

scores

value	0.00019
scoring_system	epss
scoring_elements	0.0517
published_at	2026-04-24T12:55:00Z

value	0.00019
scoring_system	epss
scoring_elements	0.05011
published_at	2026-04-02T12:55:00Z

value	0.00019
scoring_system	epss
scoring_elements	0.05039
published_at	2026-04-04T12:55:00Z

value	0.00019
scoring_system	epss
scoring_elements	0.05061
published_at	2026-04-07T12:55:00Z

value	0.00019
scoring_system	epss
scoring_elements	0.05094
published_at	2026-04-08T12:55:00Z

value	0.00019
scoring_system	epss
scoring_elements	0.05109
published_at	2026-04-09T12:55:00Z

value	0.00019
scoring_system	epss
scoring_elements	0.05083
published_at	2026-04-11T12:55:00Z

value	0.00019
scoring_system	epss
scoring_elements	0.05066
published_at	2026-04-12T12:55:00Z

value	0.00019
scoring_system	epss
scoring_elements	0.05049
published_at	2026-04-13T12:55:00Z

value	0.00019
scoring_system	epss
scoring_elements	0.04991
published_at	2026-04-16T12:55:00Z

value	0.00019
scoring_system	epss
scoring_elements	0.04997
published_at	2026-04-18T12:55:00Z

value	0.00019
scoring_system	epss
scoring_elements	0.05143
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-26357

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23033
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23033

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23034
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23034

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23035
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23035

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26356
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26356

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26357
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26357

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26358
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26358

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26359
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26359

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26360
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26360

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26361
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26361

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://security.gentoo.org/glsa/202402-07
reference_id	GLSA-202402-07
reference_type
scores
url	https://security.gentoo.org/glsa/202402-07

reference_url	https://xenbits.xen.org/xsa/advisory-399.html
reference_id	XSA-399
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-399.html

fixed_packages

url	pkg:apk/alpine/xen@4.16.1-r0?arch=x86_64&distroversion=v3.16&reponame=main
purl	pkg:apk/alpine/xen@4.16.1-r0?arch=x86_64&distroversion=v3.16&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.16.1-r0%3Farch=x86_64&distroversion=v3.16&reponame=main

aliases CVE-2022-26357, XSA-399

risk_score 1.4

exploitability 0.5

weighted_severity 2.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jwdv-qe4x-yfgw

url VCID-vs9k-akwv-h3ak

vulnerability_id VCID-vs9k-akwv-h3ak

summary A PV guest could DoS Xen while unmapping a grant

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-23034.json

reference_id

reference_type

scores

value	6.2
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-23034.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-23034

reference_id

reference_type

scores

value	0.00105
scoring_system	epss
scoring_elements	0.28729
published_at	2026-04-02T12:55:00Z

value	0.00105
scoring_system	epss
scoring_elements	0.28776
published_at	2026-04-04T12:55:00Z

value	0.00105
scoring_system	epss
scoring_elements	0.28584
published_at	2026-04-07T12:55:00Z

value	0.00105
scoring_system	epss
scoring_elements	0.28649
published_at	2026-04-08T12:55:00Z

value	0.00105
scoring_system	epss
scoring_elements	0.28689
published_at	2026-04-09T12:55:00Z

value	0.00105
scoring_system	epss
scoring_elements	0.28691
published_at	2026-04-11T12:55:00Z

value	0.00105
scoring_system	epss
scoring_elements	0.28647
published_at	2026-04-12T12:55:00Z

value	0.00105
scoring_system	epss
scoring_elements	0.286
published_at	2026-04-13T12:55:00Z

value	0.00105
scoring_system	epss
scoring_elements	0.28619
published_at	2026-04-16T12:55:00Z

value	0.00105
scoring_system	epss
scoring_elements	0.28594
published_at	2026-04-18T12:55:00Z

value	0.00105
scoring_system	epss
scoring_elements	0.28545
published_at	2026-04-21T12:55:00Z

value	0.00105
scoring_system	epss
scoring_elements	0.28429
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-23034

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23033
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23033

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23034
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23034

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23035
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23035

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26356
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26356

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26357
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26357

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26358
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26358

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26359
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26359

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26360
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26360

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26361
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26361

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2045041
reference_id	2045041
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2045041

reference_url	https://security.gentoo.org/glsa/202208-23
reference_id	GLSA-202208-23
reference_type
scores
url	https://security.gentoo.org/glsa/202208-23

reference_url	https://xenbits.xen.org/xsa/advisory-394.html
reference_id	XSA-394
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-394.html

fixed_packages

url	pkg:apk/alpine/xen@4.16.1-r0?arch=x86_64&distroversion=v3.16&reponame=main
purl	pkg:apk/alpine/xen@4.16.1-r0?arch=x86_64&distroversion=v3.16&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.16.1-r0%3Farch=x86_64&distroversion=v3.16&reponame=main

aliases CVE-2022-23034, XSA-394

risk_score 2.8

exploitability 0.5

weighted_severity 5.6

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vs9k-akwv-h3ak

url VCID-w2ch-guy5-6ye9

vulnerability_id VCID-w2ch-guy5-6ye9

summary Insufficient cleanup of passed-through device IRQs

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-23035.json

reference_id

reference_type

scores

value	4.6
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-23035.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-23035

reference_id

reference_type

scores

value	0.00115
scoring_system	epss
scoring_elements	0.30255
published_at	2026-04-02T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.30304
published_at	2026-04-04T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.3012
published_at	2026-04-07T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.3018
published_at	2026-04-08T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.30215
published_at	2026-04-09T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.30218
published_at	2026-04-11T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.30175
published_at	2026-04-12T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.30128
published_at	2026-04-13T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.30143
published_at	2026-04-16T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.30125
published_at	2026-04-18T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.30079
published_at	2026-04-21T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.30009
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-23035

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23033
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23033

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23034
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23034

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23035
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23035

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26356
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26356

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26357
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26357

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26358
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26358

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26359
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26359

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26360
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26360

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26361
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26361

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2045039
reference_id	2045039
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2045039

reference_url	https://security.gentoo.org/glsa/202208-23
reference_id	GLSA-202208-23
reference_type
scores
url	https://security.gentoo.org/glsa/202208-23

reference_url	https://xenbits.xen.org/xsa/advisory-395.html
reference_id	XSA-395
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-395.html

fixed_packages

url	pkg:apk/alpine/xen@4.16.1-r0?arch=x86_64&distroversion=v3.16&reponame=main
purl	pkg:apk/alpine/xen@4.16.1-r0?arch=x86_64&distroversion=v3.16&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.16.1-r0%3Farch=x86_64&distroversion=v3.16&reponame=main

aliases CVE-2022-23035, XSA-395

risk_score 2.0

exploitability 0.5

weighted_severity 4.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-w2ch-guy5-6ye9

url VCID-z8zf-cqkb-guge

vulnerability_id VCID-z8zf-cqkb-guge

summary IOMMU: RMRR (VT-d) and unity map (AMD-Vi) handling issues

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-26360

reference_id

reference_type

scores

value	0.00123
scoring_system	epss
scoring_elements	0.31257
published_at	2026-04-24T12:55:00Z

value	0.00123
scoring_system	epss
scoring_elements	0.31574
published_at	2026-04-02T12:55:00Z

value	0.00123
scoring_system	epss
scoring_elements	0.31618
published_at	2026-04-04T12:55:00Z

value	0.00123
scoring_system	epss
scoring_elements	0.31437
published_at	2026-04-07T12:55:00Z

value	0.00123
scoring_system	epss
scoring_elements	0.3149
published_at	2026-04-08T12:55:00Z

value	0.00123
scoring_system	epss
scoring_elements	0.31519
published_at	2026-04-09T12:55:00Z

value	0.00123
scoring_system	epss
scoring_elements	0.31523
published_at	2026-04-11T12:55:00Z

value	0.00123
scoring_system	epss
scoring_elements	0.31481
published_at	2026-04-12T12:55:00Z

value	0.00123
scoring_system	epss
scoring_elements	0.31444
published_at	2026-04-13T12:55:00Z

value	0.00123
scoring_system	epss
scoring_elements	0.31479
published_at	2026-04-16T12:55:00Z

value	0.00123
scoring_system	epss
scoring_elements	0.31457
published_at	2026-04-18T12:55:00Z

value	0.00123
scoring_system	epss
scoring_elements	0.31426
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-26360

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23033
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23033

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23034
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23034

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23035
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23035

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26356
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26356

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26357
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26357

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26358
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26358

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26359
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26359

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26360
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26360

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26361
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26361

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://security.gentoo.org/glsa/202402-07
reference_id	GLSA-202402-07
reference_type
scores
url	https://security.gentoo.org/glsa/202402-07

reference_url	https://xenbits.xen.org/xsa/advisory-400.html
reference_id	XSA-400
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-400.html

fixed_packages

url	pkg:apk/alpine/xen@4.16.1-r0?arch=x86_64&distroversion=v3.16&reponame=main
purl	pkg:apk/alpine/xen@4.16.1-r0?arch=x86_64&distroversion=v3.16&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.16.1-r0%3Farch=x86_64&distroversion=v3.16&reponame=main

aliases CVE-2022-26360, XSA-400

risk_score 1.4

exploitability 0.5

weighted_severity 2.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-z8zf-cqkb-guge

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.16.1-r0%3Farch=x86_64&distroversion=v3.16&reponame=main

Package Instance