Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/60103?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/60103?format=api", "purl": "pkg:maven/com.synopsys.jenkinsci/ownership@0.13.0", "type": "maven", "namespace": "com.synopsys.jenkinsci", "name": "ownership", "version": "0.13.0", "qualifiers": {}, "subpath": "", "is_vulnerable": true, "next_non_vulnerable_version": "0.12", "latest_non_vulnerable_version": "0.12", "affected_by_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3071?format=api", "vulnerability_id": "VCID-6app-jnzv-5kd1", "summary": "multiple issues", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-28149", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00205", "scoring_system": "epss", "scoring_elements": "0.42633", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-28149" }, { "reference_url": "https://www.jenkins.io/security/advisory/2022-03-29/#SECURITY-2285", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.jenkins.io/security/advisory/2022-03-29/#SECURITY-2285" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2022/03/29/1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2022/03/29/1" }, { "reference_url": "https://security.archlinux.org/AVG-2678", "reference_id": "AVG-2678", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2678" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-28149", "reference_id": "CVE-2022-28149", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-28149" }, { "reference_url": "https://github.com/advisories/GHSA-x63v-prhc-xx6f", "reference_id": "GHSA-x63v-prhc-xx6f", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-x63v-prhc-xx6f" } ], "fixed_packages": [], "aliases": [ "CVE-2022-28149", "GHSA-x63v-prhc-xx6f" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6app-jnzv-5kd1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3068?format=api", "vulnerability_id": "VCID-9akr-u385-a7dq", "summary": "multiple issues", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-28152", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00145", "scoring_system": "epss", "scoring_elements": "0.34594", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-28152" }, { "reference_url": "https://www.jenkins.io/security/advisory/2022-03-29/#SECURITY-2062%20(2)", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.jenkins.io/security/advisory/2022-03-29/#SECURITY-2062%20(2)" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2022/03/29/1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2022/03/29/1" }, { "reference_url": "https://security.archlinux.org/AVG-2678", "reference_id": "AVG-2678", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2678" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-28152", "reference_id": "CVE-2022-28152", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-28152" }, { "reference_url": "https://github.com/advisories/GHSA-9hcj-449v-9234", "reference_id": "GHSA-9hcj-449v-9234", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-9hcj-449v-9234" } ], "fixed_packages": [], "aliases": [ "CVE-2022-28152", "GHSA-9hcj-449v-9234" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9akr-u385-a7dq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3069?format=api", "vulnerability_id": "VCID-cqyx-phpy-7bh7", "summary": "multiple issues", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-28151", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.06137", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-28151" }, { "reference_url": "https://www.jenkins.io/security/advisory/2022-03-29/#SECURITY-2062%20(1)", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.jenkins.io/security/advisory/2022-03-29/#SECURITY-2062%20(1)" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2022/03/29/1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2022/03/29/1" }, { "reference_url": "https://security.archlinux.org/AVG-2678", "reference_id": "AVG-2678", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2678" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-28151", "reference_id": "CVE-2022-28151", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-28151" }, { "reference_url": "https://github.com/advisories/GHSA-25f2-wgxj-ph29", "reference_id": "GHSA-25f2-wgxj-ph29", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-25f2-wgxj-ph29" } ], "fixed_packages": [], "aliases": [ "CVE-2022-28151", "GHSA-25f2-wgxj-ph29" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-cqyx-phpy-7bh7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3070?format=api", "vulnerability_id": "VCID-fzpb-1apg-9qeg", "summary": "multiple issues", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-28150", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00049", "scoring_system": "epss", "scoring_elements": "0.15767", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-28150" }, { "reference_url": "https://www.jenkins.io/security/advisory/2022-03-29/#SECURITY-2062%20(1)", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.jenkins.io/security/advisory/2022-03-29/#SECURITY-2062%20(1)" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2022/03/29/1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2022/03/29/1" }, { "reference_url": "https://security.archlinux.org/AVG-2678", "reference_id": "AVG-2678", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2678" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-28150", "reference_id": "CVE-2022-28150", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-28150" }, { "reference_url": "https://github.com/advisories/GHSA-85f9-w9cx-h363", "reference_id": "GHSA-85f9-w9cx-h363", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-85f9-w9cx-h363" } ], "fixed_packages": [], "aliases": [ "CVE-2022-28150", "GHSA-85f9-w9cx-h363" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fzpb-1apg-9qeg" } ], "fixing_vulnerabilities": [], "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.synopsys.jenkinsci/ownership@0.13.0" }