Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/462345?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/462345?format=api", "purl": "pkg:apk/alpine/mariadb@10.2.29-r0?arch=armhf&distroversion=v3.8&reponame=main", "type": "apk", "namespace": "alpine", "name": "mariadb", "version": "10.2.29-r0", "qualifiers": { "arch": "armhf", "distroversion": "v3.8", "reponame": "main" }, "subpath": "", "is_vulnerable": false, "next_non_vulnerable_version": "10.2.31-r0", "latest_non_vulnerable_version": "10.2.32-r0", "affected_by_vulnerabilities": [], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/108522?format=api", "vulnerability_id": "VCID-k2fj-bwnb-6bf9", "summary": "mysql: InnoDB unspecified vulnerability (CPU Oct 2019)", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-2938.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-2938.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-2938", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.24936", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.24906", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.25002", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.2499", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-2938" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764680", "reference_id": "1764680", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764680" }, { "reference_url": "https://usn.ubuntu.com/4195-1/", "reference_id": "4195-1", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:59Z/" } ], "url": "https://usn.ubuntu.com/4195-1/" }, { "reference_url": "https://usn.ubuntu.com/4195-2/", "reference_id": "4195-2", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:59Z/" } ], "url": "https://usn.ubuntu.com/4195-2/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6DTUCXX5XXPNPFV2PHP6IESGTCFMZOFP/", "reference_id": "6DTUCXX5XXPNPFV2PHP6IESGTCFMZOFP", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:59Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6DTUCXX5XXPNPFV2PHP6IESGTCFMZOFP/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7X5D3O4TOQ57KL5FLQEXH2JB2UQYHCUZ/", "reference_id": "7X5D3O4TOQ57KL5FLQEXH2JB2UQYHCUZ", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:59Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7X5D3O4TOQ57KL5FLQEXH2JB2UQYHCUZ/" }, { "reference_url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html", "reference_id": "cpuoct2019-5072832.html", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:59Z/" } ], "url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "GLSA-202105-27", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:59Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://security.gentoo.org/glsa/202405-25", "reference_id": "GLSA-202405-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202405-25" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MKCJLNRK6RHFAHV7ZFD3XO7HNSBU3XOL/", "reference_id": "MKCJLNRK6RHFAHV7ZFD3XO7HNSBU3XOL", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:59Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MKCJLNRK6RHFAHV7ZFD3XO7HNSBU3XOL/" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00037.html", "reference_id": "msg00037.html", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:59Z/" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00037.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20191017-0002/", "reference_id": "ntap-20191017-0002", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:59Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20191017-0002/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4174", "reference_id": "RHSA-2020:4174", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4174" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5246", "reference_id": "RHSA-2020:5246", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5246" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5500", "reference_id": "RHSA-2020:5500", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5654", "reference_id": "RHSA-2020:5654", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5654" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5663", "reference_id": "RHSA-2020:5663", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5663" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5665", "reference_id": "RHSA-2020:5665", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5665" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/462345?format=api", "purl": "pkg:apk/alpine/mariadb@10.2.29-r0?arch=armhf&distroversion=v3.8&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/mariadb@10.2.29-r0%3Farch=armhf&distroversion=v3.8&reponame=main" } ], "aliases": [ "CVE-2019-2938" ], "risk_score": 2.0, "exploitability": "0.5", "weighted_severity": "4.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-k2fj-bwnb-6bf9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/108533?format=api", "vulnerability_id": "VCID-me73-cnva-ubhn", "summary": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2019)", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-2974.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-2974.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-2974", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43218", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43158", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43231", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43239", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-2974" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764691", "reference_id": "1764691", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764691" }, { "reference_url": "https://usn.ubuntu.com/4195-1/", "reference_id": "4195-1", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:06Z/" } ], "url": "https://usn.ubuntu.com/4195-1/" }, { "reference_url": "https://usn.ubuntu.com/4195-2/", "reference_id": "4195-2", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:06Z/" } ], "url": "https://usn.ubuntu.com/4195-2/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6DTUCXX5XXPNPFV2PHP6IESGTCFMZOFP/", "reference_id": "6DTUCXX5XXPNPFV2PHP6IESGTCFMZOFP", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:06Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6DTUCXX5XXPNPFV2PHP6IESGTCFMZOFP/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7X5D3O4TOQ57KL5FLQEXH2JB2UQYHCUZ/", "reference_id": "7X5D3O4TOQ57KL5FLQEXH2JB2UQYHCUZ", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:06Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7X5D3O4TOQ57KL5FLQEXH2JB2UQYHCUZ/" }, { "reference_url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html", "reference_id": "cpuoct2019-5072832.html", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:06Z/" } ], "url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "GLSA-202105-27", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:06Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://security.gentoo.org/glsa/202405-25", "reference_id": "GLSA-202405-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202405-25" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MKCJLNRK6RHFAHV7ZFD3XO7HNSBU3XOL/", "reference_id": "MKCJLNRK6RHFAHV7ZFD3XO7HNSBU3XOL", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:06Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MKCJLNRK6RHFAHV7ZFD3XO7HNSBU3XOL/" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00037.html", "reference_id": "msg00037.html", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:06Z/" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00037.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20191017-0002/", "reference_id": "ntap-20191017-0002", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:06Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20191017-0002/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4026", "reference_id": "RHSA-2020:4026", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4026" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4174", "reference_id": "RHSA-2020:4174", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4174" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5246", "reference_id": "RHSA-2020:5246", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5246" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5500", "reference_id": "RHSA-2020:5500", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5654", "reference_id": "RHSA-2020:5654", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5654" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5663", "reference_id": "RHSA-2020:5663", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5663" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5665", "reference_id": "RHSA-2020:5665", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5665" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/462345?format=api", "purl": "pkg:apk/alpine/mariadb@10.2.29-r0?arch=armhf&distroversion=v3.8&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/mariadb@10.2.29-r0%3Farch=armhf&distroversion=v3.8&reponame=main" } ], "aliases": [ "CVE-2019-2974" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-me73-cnva-ubhn" } ], "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/mariadb@10.2.29-r0%3Farch=armhf&distroversion=v3.8&reponame=main" }