Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/5478?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/5478?format=api", "purl": "pkg:deb/debian/policykit-1@0.105-25%2Bdeb10u1", "type": "deb", "namespace": "debian", "name": "policykit-1", "version": "0.105-25+deb10u1", "qualifiers": {}, "subpath": "", "is_vulnerable": false, "next_non_vulnerable_version": null, "latest_non_vulnerable_version": null, "affected_by_vulnerabilities": [], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6197?format=api", "vulnerability_id": "VCID-2bgq-q1rc-5fhz", "summary": "privilege escalation", "references": [ { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19788", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19788" }, { "reference_url": "https://security.archlinux.org/ASA-201901-2", "reference_id": "ASA-201901-2", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201901-2" }, { "reference_url": "https://security.archlinux.org/AVG-828", "reference_id": "AVG-828", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-828" }, { "reference_url": "https://security.archlinux.org/AVG-829", "reference_id": "AVG-829", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-829" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4967?format=api", "purl": "pkg:deb/debian/policykit-1@0.105-18%2Bdeb9u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2bgq-q1rc-5fhz" }, { "vulnerability": "VCID-ebf7-z13j-7ugw" }, { "vulnerability": "VCID-we8f-j5cz-kka8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/policykit-1@0.105-18%252Bdeb9u1" }, { "url": "http://public2.vulnerablecode.io/api/packages/5478?format=api", "purl": "pkg:deb/debian/policykit-1@0.105-25%2Bdeb10u1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/policykit-1@0.105-25%252Bdeb10u1" } ], "aliases": [ "CVE-2018-19788" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2bgq-q1rc-5fhz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6144?format=api", "vulnerability_id": "VCID-ebf7-z13j-7ugw", "summary": "authentication bypass", "references": [ { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6133", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6133" }, { "reference_url": "https://security.archlinux.org/AVG-897", "reference_id": "AVG-897", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-897" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5478?format=api", "purl": "pkg:deb/debian/policykit-1@0.105-25%2Bdeb10u1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/policykit-1@0.105-25%252Bdeb10u1" } ], "aliases": [ "CVE-2019-6133" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ebf7-z13j-7ugw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5007?format=api", "vulnerability_id": "VCID-we8f-j5cz-kka8", "summary": "multiple issues", "references": [ { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4034", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4034" }, { "reference_url": "https://security.archlinux.org/ASA-202204-2", "reference_id": "ASA-202204-2", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202204-2" }, { "reference_url": "https://security.archlinux.org/AVG-2654", "reference_id": "AVG-2654", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2654" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5478?format=api", "purl": "pkg:deb/debian/policykit-1@0.105-25%2Bdeb10u1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/policykit-1@0.105-25%252Bdeb10u1" } ], "aliases": [ "CVE-2021-4034" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-we8f-j5cz-kka8" } ], "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/policykit-1@0.105-25%252Bdeb10u1" }