Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/88652?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/88652?format=api", "purl": "pkg:rpm/redhat/binutils@2.35.2-67.el9_7?arch=1", "type": "rpm", "namespace": "redhat", "name": "binutils", "version": "2.35.2-67.el9_7", "qualifiers": { "arch": "1" }, "subpath": "", "is_vulnerable": true, "next_non_vulnerable_version": null, "latest_non_vulnerable_version": null, "affected_by_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/67403?format=api", "vulnerability_id": "VCID-a6f4-kkt1-yugs", "summary": "binutils: GNU Binutils Linker heap-based overflow", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-11083.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-11083.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-11083", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00024", "scoring_system": "epss", "scoring_elements": "0.06365", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00024", "scoring_system": "epss", "scoring_elements": "0.06548", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00024", "scoring_system": "epss", "scoring_elements": "0.06399", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00024", "scoring_system": "epss", "scoring_elements": "0.06389", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00024", "scoring_system": "epss", "scoring_elements": "0.0645", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00024", "scoring_system": "epss", "scoring_elements": "0.06461", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00024", "scoring_system": "epss", "scoring_elements": "0.06468", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00024", "scoring_system": "epss", "scoring_elements": "0.06474", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00024", "scoring_system": "epss", "scoring_elements": "0.06431", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00024", "scoring_system": "epss", "scoring_elements": "0.06383", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00024", "scoring_system": "epss", "scoring_elements": "0.06394", "published_at": "2026-04-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-11083" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-11083", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-11083" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2399948", "reference_id": "2399948", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2399948" }, { "reference_url": "https://sourceware.org/bugzilla/attachment.cgi?id=16353", "reference_id": "attachment.cgi?id=16353", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:S/C:P/I:P/A:P/E:POC/RL:OF/RC:C" }, { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C" }, { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C" }, { "value": "4.8", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-09-29T14:55:22Z/" } ], "url": "https://sourceware.org/bugzilla/attachment.cgi?id=16353" }, { "reference_url": "https://vuldb.com/?ctiid.326124", "reference_id": "?ctiid.326124", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:S/C:P/I:P/A:P/E:POC/RL:OF/RC:C" }, { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C" }, { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C" }, { "value": "4.8", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-09-29T14:55:22Z/" } ], "url": "https://vuldb.com/?ctiid.326124" }, { "reference_url": "https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=9ca499644a21ceb3f946d1c179c38a83be084490", "reference_id": "gitweb.cgi?p=binutils-gdb.git;h=9ca499644a21ceb3f946d1c179c38a83be084490", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:S/C:P/I:P/A:P/E:POC/RL:OF/RC:C" }, { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C" }, { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C" }, { "value": "4.8", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-09-29T14:55:22Z/" } ], "url": "https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=9ca499644a21ceb3f946d1c179c38a83be084490" }, { "reference_url": "https://vuldb.com/?id.326124", "reference_id": "?id.326124", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:S/C:P/I:P/A:P/E:POC/RL:OF/RC:C" }, { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C" }, { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C" }, { "value": "4.8", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-09-29T14:55:22Z/" } ], "url": "https://vuldb.com/?id.326124" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:23232", "reference_id": "RHSA-2025:23232", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:23232" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:23233", "reference_id": "RHSA-2025:23233", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:23233" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:23306", "reference_id": "RHSA-2025:23306", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:23306" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:23336", "reference_id": "RHSA-2025:23336", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:23336" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:23343", "reference_id": "RHSA-2025:23343", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:23343" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:23359", "reference_id": "RHSA-2025:23359", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:23359" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:23382", "reference_id": "RHSA-2025:23382", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:23382" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:23400", "reference_id": "RHSA-2025:23400", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:23400" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:23405", "reference_id": "RHSA-2025:23405", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:23405" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0052", "reference_id": "RHSA-2026:0052", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0052" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0108", "reference_id": "RHSA-2026:0108", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0108" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0341", "reference_id": "RHSA-2026:0341", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0341" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0342", "reference_id": "RHSA-2026:0342", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0342" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0343", "reference_id": "RHSA-2026:0343", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0343" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0479", "reference_id": "RHSA-2026:0479", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0479" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0480", "reference_id": "RHSA-2026:0480", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0480" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0481", "reference_id": "RHSA-2026:0481", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0481" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0482", "reference_id": "RHSA-2026:0482", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0482" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0685", "reference_id": "RHSA-2026:0685", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0685" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0978", "reference_id": "RHSA-2026:0978", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0978" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:1359", "reference_id": "RHSA-2026:1359", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:1359" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:1539", "reference_id": "RHSA-2026:1539", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:1539" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:2627", "reference_id": "RHSA-2026:2627", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:2627" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:7098", "reference_id": "RHSA-2026:7098", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:7098" }, { "reference_url": "https://sourceware.org/bugzilla/show_bug.cgi?id=33457", "reference_id": "show_bug.cgi?id=33457", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:S/C:P/I:P/A:P/E:POC/RL:OF/RC:C" }, { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C" }, { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C" }, { "value": "4.8", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-09-29T14:55:22Z/" } ], "url": "https://sourceware.org/bugzilla/show_bug.cgi?id=33457" }, { "reference_url": "https://sourceware.org/bugzilla/show_bug.cgi?id=33457#c1", "reference_id": "show_bug.cgi?id=33457#c1", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:S/C:P/I:P/A:P/E:POC/RL:OF/RC:C" }, { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C" }, { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C" }, { "value": "4.8", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-09-29T14:55:22Z/" } ], "url": "https://sourceware.org/bugzilla/show_bug.cgi?id=33457#c1" }, { "reference_url": "https://vuldb.com/?submit.661277", "reference_id": "?submit.661277", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:S/C:P/I:P/A:P/E:POC/RL:OF/RC:C" }, { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C" }, { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C" }, { "value": "4.8", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-09-29T14:55:22Z/" } ], "url": "https://vuldb.com/?submit.661277" }, { "reference_url": "https://usn.ubuntu.com/7847-1/", "reference_id": "USN-7847-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7847-1/" }, { "reference_url": "https://usn.ubuntu.com/7919-1/", "reference_id": "USN-7919-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7919-1/" }, { "reference_url": "https://www.gnu.org/", "reference_id": "www.gnu.org", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:S/C:P/I:P/A:P/E:POC/RL:OF/RC:C" }, { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C" }, { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C" }, { "value": "4.8", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-09-29T14:55:22Z/" } ], "url": "https://www.gnu.org/" } ], "fixed_packages": [], "aliases": [ "CVE-2025-11083" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-a6f4-kkt1-yugs" } ], "fixing_vulnerabilities": [], "risk_score": "2.4", "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/binutils@2.35.2-67.el9_7%3Farch=1" }