Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:apk/alpine/xen@4.15.2-r0?arch=aarch64&distroversion=v3.15&reponame=main

Type apk

Namespace alpine

Name xen

Version 4.15.2-r0

Qualifiers

arch	aarch64
distroversion	v3.15
reponame	main

Subpath

Is_vulnerable false

Next_non_vulnerable_version 4.15.2-r1

Latest_non_vulnerable_version 4.15.5-r3

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-9s43-gewn-bycc

vulnerability_id VCID-9s43-gewn-bycc

summary grant table v2 status pages may remain accessible after de-allocation (take two)

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-28703

reference_id

reference_type

scores

value	0.0011
scoring_system	epss
scoring_elements	0.29143
published_at	2026-04-24T12:55:00Z

value	0.0011
scoring_system	epss
scoring_elements	0.29363
published_at	2026-04-01T12:55:00Z

value	0.0011
scoring_system	epss
scoring_elements	0.29433
published_at	2026-04-02T12:55:00Z

value	0.0011
scoring_system	epss
scoring_elements	0.2948
published_at	2026-04-04T12:55:00Z

value	0.0011
scoring_system	epss
scoring_elements	0.29292
published_at	2026-04-07T12:55:00Z

value	0.0011
scoring_system	epss
scoring_elements	0.29356
published_at	2026-04-08T12:55:00Z

value	0.0011
scoring_system	epss
scoring_elements	0.29398
published_at	2026-04-09T12:55:00Z

value	0.0011
scoring_system	epss
scoring_elements	0.29401
published_at	2026-04-11T12:55:00Z

value	0.0011
scoring_system	epss
scoring_elements	0.29357
published_at	2026-04-12T12:55:00Z

value	0.0011
scoring_system	epss
scoring_elements	0.29304
published_at	2026-04-18T12:55:00Z

value	0.0011
scoring_system	epss
scoring_elements	0.29329
published_at	2026-04-16T12:55:00Z

value	0.0011
scoring_system	epss
scoring_elements	0.29259
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-28703

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28703
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28703

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://security.gentoo.org/glsa/202402-07
reference_id	GLSA-202402-07
reference_type
scores
url	https://security.gentoo.org/glsa/202402-07

reference_url	https://xenbits.xen.org/xsa/advisory-387.html
reference_id	XSA-387
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-387.html

fixed_packages

url	pkg:apk/alpine/xen@4.15.2-r0?arch=aarch64&distroversion=v3.15&reponame=main
purl	pkg:apk/alpine/xen@4.15.2-r0?arch=aarch64&distroversion=v3.15&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.15.2-r0%3Farch=aarch64&distroversion=v3.15&reponame=main

aliases CVE-2021-28703, XSA-387

risk_score 1.6

exploitability 0.5

weighted_severity 3.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9s43-gewn-bycc

url VCID-9zqd-3x84-43gc

vulnerability_id VCID-9zqd-3x84-43gc

summary arm: guest_physmap_remove_page not removing the p2m mappings

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-23033.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-23033.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-23033

reference_id

reference_type

scores

value	0.00092
scoring_system	epss
scoring_elements	0.26003
published_at	2026-04-02T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.26045
published_at	2026-04-04T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.25817
published_at	2026-04-07T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.25887
published_at	2026-04-08T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.25938
published_at	2026-04-09T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.25948
published_at	2026-04-11T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.25906
published_at	2026-04-12T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.25852
published_at	2026-04-13T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.25856
published_at	2026-04-16T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.25838
published_at	2026-04-18T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.25808
published_at	2026-04-21T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.25751
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-23033

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23033
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23033

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23034
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23034

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23035
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23035

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26356
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26356

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26357
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26357

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26358
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26358

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26359
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26359

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26360
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26360

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26361
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26361

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2045043
reference_id	2045043
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2045043

reference_url	https://security.gentoo.org/glsa/202208-23
reference_id	GLSA-202208-23
reference_type
scores
url	https://security.gentoo.org/glsa/202208-23

reference_url	https://xenbits.xen.org/xsa/advisory-393.html
reference_id	XSA-393
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-393.html

fixed_packages

url	pkg:apk/alpine/xen@4.15.2-r0?arch=aarch64&distroversion=v3.15&reponame=main
purl	pkg:apk/alpine/xen@4.15.2-r0?arch=aarch64&distroversion=v3.15&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.15.2-r0%3Farch=aarch64&distroversion=v3.15&reponame=main

aliases CVE-2022-23033, XSA-393

risk_score 3.5

exploitability 0.5

weighted_severity 7.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9zqd-3x84-43gc

url VCID-vs9k-akwv-h3ak

vulnerability_id VCID-vs9k-akwv-h3ak

summary A PV guest could DoS Xen while unmapping a grant

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-23034.json

reference_id

reference_type

scores

value	6.2
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-23034.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-23034

reference_id

reference_type

scores

value	0.00105
scoring_system	epss
scoring_elements	0.28729
published_at	2026-04-02T12:55:00Z

value	0.00105
scoring_system	epss
scoring_elements	0.28776
published_at	2026-04-04T12:55:00Z

value	0.00105
scoring_system	epss
scoring_elements	0.28584
published_at	2026-04-07T12:55:00Z

value	0.00105
scoring_system	epss
scoring_elements	0.28649
published_at	2026-04-08T12:55:00Z

value	0.00105
scoring_system	epss
scoring_elements	0.28689
published_at	2026-04-09T12:55:00Z

value	0.00105
scoring_system	epss
scoring_elements	0.28691
published_at	2026-04-11T12:55:00Z

value	0.00105
scoring_system	epss
scoring_elements	0.28647
published_at	2026-04-12T12:55:00Z

value	0.00105
scoring_system	epss
scoring_elements	0.286
published_at	2026-04-13T12:55:00Z

value	0.00105
scoring_system	epss
scoring_elements	0.28619
published_at	2026-04-16T12:55:00Z

value	0.00105
scoring_system	epss
scoring_elements	0.28594
published_at	2026-04-18T12:55:00Z

value	0.00105
scoring_system	epss
scoring_elements	0.28545
published_at	2026-04-21T12:55:00Z

value	0.00105
scoring_system	epss
scoring_elements	0.28429
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-23034

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23033
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23033

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23034
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23034

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23035
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23035

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26356
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26356

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26357
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26357

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26358
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26358

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26359
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26359

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26360
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26360

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26361
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26361

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2045041
reference_id	2045041
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2045041

reference_url	https://security.gentoo.org/glsa/202208-23
reference_id	GLSA-202208-23
reference_type
scores
url	https://security.gentoo.org/glsa/202208-23

reference_url	https://xenbits.xen.org/xsa/advisory-394.html
reference_id	XSA-394
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-394.html

fixed_packages

url	pkg:apk/alpine/xen@4.15.2-r0?arch=aarch64&distroversion=v3.15&reponame=main
purl	pkg:apk/alpine/xen@4.15.2-r0?arch=aarch64&distroversion=v3.15&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.15.2-r0%3Farch=aarch64&distroversion=v3.15&reponame=main

aliases CVE-2022-23034, XSA-394

risk_score 2.8

exploitability 0.5

weighted_severity 5.6

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vs9k-akwv-h3ak

url VCID-w2ch-guy5-6ye9

vulnerability_id VCID-w2ch-guy5-6ye9

summary Insufficient cleanup of passed-through device IRQs

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-23035.json

reference_id

reference_type

scores

value	4.6
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-23035.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-23035

reference_id

reference_type

scores

value	0.00115
scoring_system	epss
scoring_elements	0.30255
published_at	2026-04-02T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.30304
published_at	2026-04-04T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.3012
published_at	2026-04-07T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.3018
published_at	2026-04-08T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.30215
published_at	2026-04-09T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.30218
published_at	2026-04-11T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.30175
published_at	2026-04-12T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.30128
published_at	2026-04-13T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.30143
published_at	2026-04-16T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.30125
published_at	2026-04-18T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.30079
published_at	2026-04-21T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.30009
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-23035

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23033
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23033

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23034
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23034

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23035
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23035

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26356
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26356

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26357
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26357

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26358
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26358

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26359
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26359

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26360
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26360

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26361
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26361

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2045039
reference_id	2045039
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2045039

reference_url	https://security.gentoo.org/glsa/202208-23
reference_id	GLSA-202208-23
reference_type
scores
url	https://security.gentoo.org/glsa/202208-23

reference_url	https://xenbits.xen.org/xsa/advisory-395.html
reference_id	XSA-395
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-395.html

fixed_packages

url	pkg:apk/alpine/xen@4.15.2-r0?arch=aarch64&distroversion=v3.15&reponame=main
purl	pkg:apk/alpine/xen@4.15.2-r0?arch=aarch64&distroversion=v3.15&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.15.2-r0%3Farch=aarch64&distroversion=v3.15&reponame=main

aliases CVE-2022-23035, XSA-395

risk_score 2.0

exploitability 0.5

weighted_severity 4.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-w2ch-guy5-6ye9

url VCID-z3qj-cnxq-pkgq

vulnerability_id VCID-z3qj-cnxq-pkgq

summary guests may exceed their designated memory limit

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-28706

reference_id

reference_type

scores

value	0.00155
scoring_system	epss
scoring_elements	0.35982
published_at	2026-04-24T12:55:00Z

value	0.00155
scoring_system	epss
scoring_elements	0.3616
published_at	2026-04-01T12:55:00Z

value	0.00155
scoring_system	epss
scoring_elements	0.36355
published_at	2026-04-02T12:55:00Z

value	0.00155
scoring_system	epss
scoring_elements	0.36388
published_at	2026-04-04T12:55:00Z

value	0.00155
scoring_system	epss
scoring_elements	0.36222
published_at	2026-04-07T12:55:00Z

value	0.00155
scoring_system	epss
scoring_elements	0.36271
published_at	2026-04-08T12:55:00Z

value	0.00155
scoring_system	epss
scoring_elements	0.36294
published_at	2026-04-09T12:55:00Z

value	0.00155
scoring_system	epss
scoring_elements	0.36299
published_at	2026-04-11T12:55:00Z

value	0.00155
scoring_system	epss
scoring_elements	0.36262
published_at	2026-04-12T12:55:00Z

value	0.00155
scoring_system	epss
scoring_elements	0.36238
published_at	2026-04-13T12:55:00Z

value	0.00155
scoring_system	epss
scoring_elements	0.36282
published_at	2026-04-16T12:55:00Z

value	0.00155
scoring_system	epss
scoring_elements	0.36266
published_at	2026-04-18T12:55:00Z

value	0.00155
scoring_system	epss
scoring_elements	0.36214
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-28706

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28702
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28702

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28704
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28704

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28705
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28705

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28706
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28706

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28707
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28707

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28708
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28708

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28709
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28709

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://security.gentoo.org/glsa/202402-07
reference_id	GLSA-202402-07
reference_type
scores
url	https://security.gentoo.org/glsa/202402-07

reference_url	https://xenbits.xen.org/xsa/advisory-385.html
reference_id	XSA-385
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-385.html

fixed_packages

url	pkg:apk/alpine/xen@4.15.2-r0?arch=aarch64&distroversion=v3.15&reponame=main
purl	pkg:apk/alpine/xen@4.15.2-r0?arch=aarch64&distroversion=v3.15&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.15.2-r0%3Farch=aarch64&distroversion=v3.15&reponame=main

aliases CVE-2021-28706, XSA-385

risk_score 1.4

exploitability 0.5

weighted_severity 2.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-z3qj-cnxq-pkgq

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.15.2-r0%3Farch=aarch64&distroversion=v3.15&reponame=main

Package Instance