Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/5334?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/5334?format=api", "purl": "pkg:deb/debian/openssl@1.1.0l-1~deb9u1", "type": "deb", "namespace": "debian", "name": "openssl", "version": "1.1.0l-1~deb9u1", "qualifiers": {}, "subpath": "", "is_vulnerable": true, "next_non_vulnerable_version": "1.1.1n-0+deb10u3", "latest_non_vulnerable_version": "1.1.1n-0+deb10u3", "affected_by_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5618?format=api", "vulnerability_id": "VCID-249a-9kqa-p7an", "summary": "multiple issues", "references": [ { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3449", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3449" }, { "reference_url": "https://security.archlinux.org/ASA-202103-10", "reference_id": "ASA-202103-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202103-10" }, { "reference_url": "https://security.archlinux.org/AVG-1736", "reference_id": "AVG-1736", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1736" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5335?format=api", "purl": "pkg:deb/debian/openssl@1.1.1n-0%2Bdeb10u3", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@1.1.1n-0%252Bdeb10u3" } ], "aliases": [ "CVE-2021-3449" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-249a-9kqa-p7an" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3322?format=api", "vulnerability_id": "VCID-3pke-7yer-87hz", "summary": "arbitrary command execution", "references": [ { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2068", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2068" }, { "reference_url": "https://security.archlinux.org/AVG-2765", "reference_id": "AVG-2765", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2765" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5335?format=api", "purl": "pkg:deb/debian/openssl@1.1.1n-0%2Bdeb10u3", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@1.1.1n-0%252Bdeb10u3" } ], "aliases": [ "CVE-2022-2068" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-3pke-7yer-87hz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5933?format=api", "vulnerability_id": "VCID-8fae-zjwu-47gz", "summary": "denial of service", "references": [ { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1967", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1967" }, { "reference_url": "https://security.archlinux.org/ASA-202004-18", "reference_id": "ASA-202004-18", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202004-18" }, { "reference_url": "https://security.archlinux.org/ASA-202004-19", "reference_id": "ASA-202004-19", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202004-19" }, { "reference_url": "https://security.archlinux.org/AVG-1139", "reference_id": "AVG-1139", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1139" }, { "reference_url": "https://security.archlinux.org/AVG-1142", "reference_id": "AVG-1142", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1142" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5335?format=api", "purl": "pkg:deb/debian/openssl@1.1.1n-0%2Bdeb10u3", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@1.1.1n-0%252Bdeb10u3" } ], "aliases": [ "CVE-2020-1967" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8fae-zjwu-47gz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6827?format=api", "vulnerability_id": "VCID-erdm-7pfg-e7hc", "summary": "", "references": [ { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1292", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1292" }, { "reference_url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=1ad73b4d27bd8c1b369a3cd453681d3a4f1bb9b2", "reference_id": "", "reference_type": "", "scores": [], "url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=1ad73b4d27bd8c1b369a3cd453681d3a4f1bb9b2" }, { "reference_url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=548d3f280a6e737673f5b61fce24bb100108dfeb", "reference_id": "", "reference_type": "", "scores": [], "url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=548d3f280a6e737673f5b61fce24bb100108dfeb" }, { "reference_url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=e5fd1728ef4c7a5bf7c7a7163ca60370460a6e23", "reference_id": "", "reference_type": "", "scores": [], "url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=e5fd1728ef4c7a5bf7c7a7163ca60370460a6e23" }, { "reference_url": "https://www.openssl.org/news/secadv/20220503.txt", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.openssl.org/news/secadv/20220503.txt" }, { "reference_url": "https://security.archlinux.org/AVG-2702", "reference_id": "AVG-2702", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2702" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-1292", "reference_id": "CVE-2022-1292", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-1292" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5335?format=api", "purl": "pkg:deb/debian/openssl@1.1.1n-0%2Bdeb10u3", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@1.1.1n-0%252Bdeb10u3" } ], "aliases": [ "CVE-2022-1292" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-erdm-7pfg-e7hc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5766?format=api", "vulnerability_id": "VCID-fb66-4fr3-xye7", "summary": "denial of service", "references": [ { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1971", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1971" }, { "reference_url": "https://security.archlinux.org/ASA-202012-24", "reference_id": "ASA-202012-24", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202012-24" }, { "reference_url": "https://security.archlinux.org/AVG-1335", "reference_id": "AVG-1335", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1335" }, { "reference_url": "https://security.archlinux.org/AVG-1404", "reference_id": "AVG-1404", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1404" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5335?format=api", "purl": "pkg:deb/debian/openssl@1.1.1n-0%2Bdeb10u3", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@1.1.1n-0%252Bdeb10u3" } ], "aliases": [ "CVE-2020-1971" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fb66-4fr3-xye7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5286?format=api", "vulnerability_id": "VCID-n1r2-zqmn-2ufh", "summary": "multiple issues", "references": [ { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3711", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3711" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3712", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3712" }, { "reference_url": "https://www.openssl.org/news/secadv/20210824.txt", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.openssl.org/news/secadv/20210824.txt" }, { "reference_url": "https://security.archlinux.org/AVG-2315", "reference_id": "AVG-2315", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2315" }, { "reference_url": "https://security.archlinux.org/AVG-2316", "reference_id": "AVG-2316", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2316" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3711", "reference_id": "CVE-2021-3711", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3711" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5335?format=api", "purl": "pkg:deb/debian/openssl@1.1.1n-0%2Bdeb10u3", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@1.1.1n-0%252Bdeb10u3" } ], "aliases": [ "CVE-2021-3711" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-n1r2-zqmn-2ufh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5285?format=api", "vulnerability_id": "VCID-uw52-vah8-uqda", "summary": "multiple issues", "references": [ { "reference_url": "https://cert-portal.siemens.com/productcert/pdf/ssa-244969.pdf", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-244969.pdf" }, { "reference_url": "https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3711", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3711" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3712", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3712" }, { "reference_url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=94d23fcff9b2a7a8368dfe52214d5c2569882c11", "reference_id": "", "reference_type": "", "scores": [], "url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=94d23fcff9b2a7a8368dfe52214d5c2569882c11" }, { "reference_url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=ccb0a11145ee72b042d10593a64eaf9e8a55ec12", "reference_id": "", "reference_type": "", "scores": [], "url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=ccb0a11145ee72b042d10593a64eaf9e8a55ec12" }, { "reference_url": "https://kc.mcafee.com/corporate/index?page=content&id=SB10366", "reference_id": "", "reference_type": "", "scores": [], "url": "https://kc.mcafee.com/corporate/index?page=content&id=SB10366" }, { "reference_url": "https://lists.apache.org/thread.html/r18995de860f0e63635f3008fd2a6aca82394249476d21691e7c59c9e@%3Cdev.tomcat.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r18995de860f0e63635f3008fd2a6aca82394249476d21691e7c59c9e@%3Cdev.tomcat.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rad5d9f83f0d11fb3f8bb148d179b8a9ad7c6a17f18d70e5805a713d1@%3Cdev.tomcat.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/rad5d9f83f0d11fb3f8bb148d179b8a9ad7c6a17f18d70e5805a713d1@%3Cdev.tomcat.apache.org%3E" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2021/09/msg00014.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2021/09/msg00014.html" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2021/09/msg00021.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2021/09/msg00021.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210827-0010/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://security.netapp.com/advisory/ntap-20210827-0010/" }, { "reference_url": "https://www.debian.org/security/2021/dsa-4963", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2021/dsa-4963" }, { "reference_url": "https://www.openssl.org/news/secadv/20210824.txt", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.openssl.org/news/secadv/20210824.txt" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2022.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.oracle.com/security-alerts/cpujan2022.html" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2021.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.oracle.com/security-alerts/cpuoct2021.html" }, { "reference_url": "https://www.tenable.com/security/tns-2021-16", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.tenable.com/security/tns-2021-16" }, { "reference_url": "https://www.tenable.com/security/tns-2022-02", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.tenable.com/security/tns-2022-02" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2021/08/26/2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2021/08/26/2" }, { "reference_url": "https://security.archlinux.org/AVG-2315", "reference_id": "AVG-2315", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2315" }, { "reference_url": "https://security.archlinux.org/AVG-2316", "reference_id": "AVG-2316", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2316" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3712", "reference_id": "CVE-2021-3712", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3712" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5335?format=api", "purl": "pkg:deb/debian/openssl@1.1.1n-0%2Bdeb10u3", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@1.1.1n-0%252Bdeb10u3" } ], "aliases": [ "CVE-2021-3712" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-uw52-vah8-uqda" } ], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6654?format=api", "vulnerability_id": "VCID-4pe4-89ss-57am", "summary": "denial of service", "references": [ { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7054", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7054" }, { "reference_url": "https://security.archlinux.org/AVG-143", "reference_id": "AVG-143", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-143" }, { "reference_url": "https://security.archlinux.org/AVG-144", "reference_id": "AVG-144", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-144" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5334?format=api", "purl": "pkg:deb/debian/openssl@1.1.0l-1~deb9u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-249a-9kqa-p7an" }, { "vulnerability": "VCID-3pke-7yer-87hz" }, { "vulnerability": "VCID-8fae-zjwu-47gz" }, { "vulnerability": "VCID-erdm-7pfg-e7hc" }, { "vulnerability": "VCID-fb66-4fr3-xye7" }, { "vulnerability": "VCID-n1r2-zqmn-2ufh" }, { "vulnerability": "VCID-uw52-vah8-uqda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@1.1.0l-1~deb9u1" } ], "aliases": [ "CVE-2016-7054" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4pe4-89ss-57am" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6655?format=api", "vulnerability_id": "VCID-e6jy-vxau-jfba", "summary": "denial of service", "references": [ { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7053", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7053" }, { "reference_url": "https://security.archlinux.org/AVG-143", "reference_id": "AVG-143", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-143" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5334?format=api", "purl": "pkg:deb/debian/openssl@1.1.0l-1~deb9u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-249a-9kqa-p7an" }, { "vulnerability": "VCID-3pke-7yer-87hz" }, { "vulnerability": "VCID-8fae-zjwu-47gz" }, { "vulnerability": "VCID-erdm-7pfg-e7hc" }, { "vulnerability": "VCID-fb66-4fr3-xye7" }, { "vulnerability": "VCID-n1r2-zqmn-2ufh" }, { "vulnerability": "VCID-uw52-vah8-uqda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@1.1.0l-1~deb9u1" } ], "aliases": [ "CVE-2016-7053" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-e6jy-vxau-jfba" } ], "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@1.1.0l-1~deb9u1" }