Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:rpm/redhat/microcode_ctl@4:20250211-1?arch=el8_10

Type rpm

Namespace redhat

Name microcode_ctl

Version 4:20250211-1

Qualifiers

arch	el8_10

Subpath

Is_vulnerable true

Next_non_vulnerable_version null

Latest_non_vulnerable_version null

Affected_by_vulnerabilities

url

VCID-3y3x-qqep-43ec

vulnerability_id

VCID-3y3x-qqep-43ec

summary

microcode_ctl: Improper initialization in UEFI firmware OutOfBandXML module

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31157.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31157.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-31157

reference_id

reference_type

scores

value	0.00012
scoring_system	epss
scoring_elements	0.01591
published_at	2026-04-21T12:55:00Z

value	0.00012
scoring_system	epss
scoring_elements	0.01501
published_at	2026-04-13T12:55:00Z

value	0.00012
scoring_system	epss
scoring_elements	0.01487
published_at	2026-04-16T12:55:00Z

value	0.00012
scoring_system	epss
scoring_elements	0.01503
published_at	2026-04-18T12:55:00Z

value	0.00012
scoring_system	epss
scoring_elements	0.01499
published_at	2026-04-02T12:55:00Z

value	0.00012
scoring_system	epss
scoring_elements	0.01502
published_at	2026-04-04T12:55:00Z

value	0.00012
scoring_system	epss
scoring_elements	0.01509
published_at	2026-04-07T12:55:00Z

value	0.00012
scoring_system	epss
scoring_elements	0.01513
published_at	2026-04-08T12:55:00Z

value	0.00012
scoring_system	epss
scoring_elements	0.01516
published_at	2026-04-09T12:55:00Z

value	0.00012
scoring_system	epss
scoring_elements	0.01508
published_at	2026-04-11T12:55:00Z

value	0.00012
scoring_system	epss
scoring_elements	0.015
published_at	2026-04-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-31157

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31157
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31157

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1095805
reference_id	1095805
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1095805

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2345421
reference_id	2345421
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2345421

reference_url

https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01139.html

reference_id

intel-sa-01139.html

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N

value	6.8
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-13T15:13:26Z/

url

https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01139.html

reference_url	https://access.redhat.com/errata/RHSA-2025:7043
reference_id	RHSA-2025:7043
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:7043

fixed_packages

aliases

CVE-2024-31157

risk_score

2.4

exploitability

0.5

weighted_severity

4.8

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-3y3x-qqep-43ec

url

VCID-6thk-vf9t-gygs

vulnerability_id

VCID-6thk-vf9t-gygs

summary

microcode_ctl: Insufficient granularity of access control in UEFI firmware

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-39279.json

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-39279.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-39279

reference_id

reference_type

scores

value	0.00024
scoring_system	epss
scoring_elements	0.06624
published_at	2026-04-21T12:55:00Z

value	0.00024
scoring_system	epss
scoring_elements	0.06532
published_at	2026-04-13T12:55:00Z

value	0.00024
scoring_system	epss
scoring_elements	0.06467
published_at	2026-04-16T12:55:00Z

value	0.00024
scoring_system	epss
scoring_elements	0.06475
published_at	2026-04-18T12:55:00Z

value	0.00024
scoring_system	epss
scoring_elements	0.06438
published_at	2026-04-02T12:55:00Z

value	0.00024
scoring_system	epss
scoring_elements	0.06474
published_at	2026-04-04T12:55:00Z

value	0.00024
scoring_system	epss
scoring_elements	0.06462
published_at	2026-04-07T12:55:00Z

value	0.00024
scoring_system	epss
scoring_elements	0.06512
published_at	2026-04-08T12:55:00Z

value	0.00024
scoring_system	epss
scoring_elements	0.06553
published_at	2026-04-09T12:55:00Z

value	0.00024
scoring_system	epss
scoring_elements	0.06548
published_at	2026-04-11T12:55:00Z

value	0.00024
scoring_system	epss
scoring_elements	0.06541
published_at	2026-04-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-39279

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39279
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39279

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1095805
reference_id	1095805
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1095805

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2345381
reference_id	2345381
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2345381

reference_url

https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01139.html

reference_id

intel-sa-01139.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

value	6.8
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-13T15:14:06Z/

url

https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01139.html

reference_url	https://access.redhat.com/errata/RHSA-2025:7043
reference_id	RHSA-2025:7043
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:7043

reference_url	https://usn.ubuntu.com/7269-1/
reference_id	USN-7269-1
reference_type
scores
url	https://usn.ubuntu.com/7269-1/

reference_url	https://usn.ubuntu.com/7269-2/
reference_id	USN-7269-2
reference_type
scores
url	https://usn.ubuntu.com/7269-2/

fixed_packages

aliases

CVE-2024-39279

risk_score

3.0

exploitability

0.5

weighted_severity

5.9

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-6thk-vf9t-gygs

url

VCID-npgb-p786-d3fe

vulnerability_id

VCID-npgb-p786-d3fe

summary

microcode_ctl: Improper input validation in UEFI firmware

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-43758.json

reference_id

reference_type

scores

value	8.2
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-43758.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-43758

reference_id

reference_type

scores

value	0.00022
scoring_system	epss
scoring_elements	0.05807
published_at	2026-04-02T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05997
published_at	2026-04-21T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05874
published_at	2026-04-12T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05867
published_at	2026-04-13T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05832
published_at	2026-04-16T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05843
published_at	2026-04-18T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05838
published_at	2026-04-07T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05877
published_at	2026-04-08T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05903
published_at	2026-04-09T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05884
published_at	2026-04-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-43758

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43758
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43758

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1095805
reference_id	1095805
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1095805

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2345416
reference_id	2345416
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2345416

reference_url

https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01139.html

reference_id

intel-sa-01139.html

reference_type

scores

value	8.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-13T20:21:25Z/

url

https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01139.html

fixed_packages

aliases

CVE-2023-43758

risk_score

3.7

exploitability

0.5

weighted_severity

7.4

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-npgb-p786-d3fe

url

VCID-qtg5-1dxw-sfdc

vulnerability_id

VCID-qtg5-1dxw-sfdc

summary

microcode_ctl: Improper input validation in UEFI firmware CseVariableStorageSmm

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-29214.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-29214.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-29214

reference_id

reference_type

scores

value	0.00022
scoring_system	epss
scoring_elements	0.05997
published_at	2026-04-21T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05874
published_at	2026-04-12T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05867
published_at	2026-04-13T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05832
published_at	2026-04-16T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05807
published_at	2026-04-02T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05843
published_at	2026-04-18T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05838
published_at	2026-04-07T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05877
published_at	2026-04-08T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05903
published_at	2026-04-09T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05884
published_at	2026-04-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-29214

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-29214
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-29214

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1095805
reference_id	1095805
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1095805

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2345365
reference_id	2345365
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2345365

reference_url

https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01139.html

reference_id

intel-sa-01139.html

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-13T15:17:24Z/

url

https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01139.html

fixed_packages

aliases

CVE-2024-29214

risk_score

3.4

exploitability

0.5

weighted_severity

6.8

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-qtg5-1dxw-sfdc

url

VCID-qzcy-2xsr-vqeh

vulnerability_id

VCID-qzcy-2xsr-vqeh

summary

microcode_ctl: Improper input validation in UEFI firmware

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-28127.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-28127.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-28127

reference_id

reference_type

scores

value	0.00022
scoring_system	epss
scoring_elements	0.05997
published_at	2026-04-21T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05874
published_at	2026-04-12T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05867
published_at	2026-04-13T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05832
published_at	2026-04-16T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05807
published_at	2026-04-02T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05843
published_at	2026-04-18T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05838
published_at	2026-04-07T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05877
published_at	2026-04-08T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05903
published_at	2026-04-09T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05884
published_at	2026-04-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-28127

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-28127
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-28127

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1095805
reference_id	1095805
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1095805

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2345370
reference_id	2345370
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2345370

reference_url

https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01139.html

reference_id

intel-sa-01139.html

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-13T15:16:50Z/

url

https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01139.html

fixed_packages

aliases

CVE-2024-28127

risk_score

3.4

exploitability

0.5

weighted_severity

6.8

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-qzcy-2xsr-vqeh

url

VCID-t7rc-zadf-cybq

vulnerability_id

VCID-t7rc-zadf-cybq

summary

microcode_ctl: Improper input validation in UEFI firmware

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-28047.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-28047.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-28047

reference_id

reference_type

scores

value	0.00012
scoring_system	epss
scoring_elements	0.01591
published_at	2026-04-21T12:55:00Z

value	0.00012
scoring_system	epss
scoring_elements	0.01607
published_at	2026-04-13T12:55:00Z

value	0.00012
scoring_system	epss
scoring_elements	0.01596
published_at	2026-04-16T12:55:00Z

value	0.00012
scoring_system	epss
scoring_elements	0.0161
published_at	2026-04-18T12:55:00Z

value	0.00012
scoring_system	epss
scoring_elements	0.01499
published_at	2026-04-02T12:55:00Z

value	0.00012
scoring_system	epss
scoring_elements	0.01502
published_at	2026-04-04T12:55:00Z

value	0.00012
scoring_system	epss
scoring_elements	0.01624
published_at	2026-04-07T12:55:00Z

value	0.00012
scoring_system	epss
scoring_elements	0.01625
published_at	2026-04-08T12:55:00Z

value	0.00012
scoring_system	epss
scoring_elements	0.01632
published_at	2026-04-09T12:55:00Z

value	0.00012
scoring_system	epss
scoring_elements	0.01618
published_at	2026-04-11T12:55:00Z

value	0.00012
scoring_system	epss
scoring_elements	0.01609
published_at	2026-04-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-28047

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-28047
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-28047

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1095805
reference_id	1095805
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1095805

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2345363
reference_id	2345363
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2345363

reference_url

https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01139.html

reference_id

intel-sa-01139.html

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N

value	6.8
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-13T15:04:18Z/

url

https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01139.html

reference_url	https://access.redhat.com/errata/RHSA-2025:7043
reference_id	RHSA-2025:7043
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:7043

fixed_packages

aliases

CVE-2024-28047

risk_score

2.4

exploitability

0.5

weighted_severity

4.8

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-t7rc-zadf-cybq

url

VCID-t85u-116v-7uan

vulnerability_id

VCID-t85u-116v-7uan

summary

microcode_ctl: Improper input validation in XmlCli feature for UEFI firmware

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-24582.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-24582.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-24582

reference_id

reference_type

scores

value	0.00016
scoring_system	epss
scoring_elements	0.03496
published_at	2026-04-21T12:55:00Z

value	0.00016
scoring_system	epss
scoring_elements	0.03392
published_at	2026-04-13T12:55:00Z

value	0.00016
scoring_system	epss
scoring_elements	0.03369
published_at	2026-04-16T12:55:00Z

value	0.00016
scoring_system	epss
scoring_elements	0.0338
published_at	2026-04-18T12:55:00Z

value	0.00016
scoring_system	epss
scoring_elements	0.03435
published_at	2026-04-02T12:55:00Z

value	0.00016
scoring_system	epss
scoring_elements	0.03449
published_at	2026-04-04T12:55:00Z

value	0.00016
scoring_system	epss
scoring_elements	0.03462
published_at	2026-04-07T12:55:00Z

value	0.00016
scoring_system	epss
scoring_elements	0.03465
published_at	2026-04-08T12:55:00Z

value	0.00016
scoring_system	epss
scoring_elements	0.03488
published_at	2026-04-09T12:55:00Z

value	0.00016
scoring_system	epss
scoring_elements	0.03445
published_at	2026-04-11T12:55:00Z

value	0.00016
scoring_system	epss
scoring_elements	0.03416
published_at	2026-04-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-24582

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-24582
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-24582

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1095805
reference_id	1095805
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1095805

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2345376
reference_id	2345376
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2345376

reference_url

https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01139.html

reference_id

intel-sa-01139.html

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-13T19:49:18Z/

url

https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01139.html

fixed_packages

aliases

CVE-2024-24582

risk_score

3.4

exploitability

0.5

weighted_severity

6.8

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-t85u-116v-7uan

url

VCID-vsda-kq13-73g1

vulnerability_id

VCID-vsda-kq13-73g1

summary

microcode_ctl: Improper input validation in UEFI firmware

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-34440.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-34440.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-34440

reference_id

reference_type

scores

value	0.00022
scoring_system	epss
scoring_elements	0.05997
published_at	2026-04-21T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05874
published_at	2026-04-12T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05867
published_at	2026-04-13T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05832
published_at	2026-04-16T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05807
published_at	2026-04-02T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05843
published_at	2026-04-18T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05838
published_at	2026-04-07T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05877
published_at	2026-04-08T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05903
published_at	2026-04-09T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05884
published_at	2026-04-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-34440

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-34440
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-34440

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1095805
reference_id	1095805
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1095805

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2345401
reference_id	2345401
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2345401

reference_url

https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01139.html

reference_id

intel-sa-01139.html

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-13T20:21:01Z/

url

https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01139.html

fixed_packages

aliases

CVE-2023-34440

risk_score

3.4

exploitability

0.5

weighted_severity

6.8

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-vsda-kq13-73g1

url

VCID-wgce-vves-guek

vulnerability_id

VCID-wgce-vves-guek

summary

kernel: microcode_ctl: From CVEorg collector

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31068.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31068.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-31068

reference_id

reference_type

scores

value	0.00017
scoring_system	epss
scoring_elements	0.03962
published_at	2026-04-21T12:55:00Z

value	0.00017
scoring_system	epss
scoring_elements	0.0388
published_at	2026-04-12T12:55:00Z

value	0.00017
scoring_system	epss
scoring_elements	0.03854
published_at	2026-04-13T12:55:00Z

value	0.00017
scoring_system	epss
scoring_elements	0.03833
published_at	2026-04-16T12:55:00Z

value	0.00017
scoring_system	epss
scoring_elements	0.03843
published_at	2026-04-18T12:55:00Z

value	0.00017
scoring_system	epss
scoring_elements	0.03877
published_at	2026-04-02T12:55:00Z

value	0.00017
scoring_system	epss
scoring_elements	0.03886
published_at	2026-04-04T12:55:00Z

value	0.00017
scoring_system	epss
scoring_elements	0.039
published_at	2026-04-07T12:55:00Z

value	0.00017
scoring_system	epss
scoring_elements	0.03905
published_at	2026-04-08T12:55:00Z

value	0.00017
scoring_system	epss
scoring_elements	0.0393
published_at	2026-04-09T12:55:00Z

value	0.00017
scoring_system	epss
scoring_elements	0.03899
published_at	2026-04-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-31068

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31068
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31068

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1095805
reference_id	1095805
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1095805

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2345359
reference_id	2345359
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2345359

reference_url

https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01166.html

reference_id

intel-sa-01166.html

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:H

value	5.6
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-13T15:07:29Z/

url

https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01166.html

reference_url	https://usn.ubuntu.com/7269-1/
reference_id	USN-7269-1
reference_type
scores
url	https://usn.ubuntu.com/7269-1/

reference_url	https://usn.ubuntu.com/7269-2/
reference_id	USN-7269-2
reference_type
scores
url	https://usn.ubuntu.com/7269-2/

fixed_packages

aliases

CVE-2024-31068

risk_score

2.4

exploitability

0.5

weighted_severity

4.8

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-wgce-vves-guek

url

VCID-wv5f-6x7x-7fdw

vulnerability_id

VCID-wv5f-6x7x-7fdw

summary

kernel: microcode_ctl: From CVEorg collector

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-36293.json

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-36293.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-36293

reference_id

reference_type

scores

value	0.00027
scoring_system	epss
scoring_elements	0.07493
published_at	2026-04-21T12:55:00Z

value	0.00027
scoring_system	epss
scoring_elements	0.07467
published_at	2026-04-12T12:55:00Z

value	0.00027
scoring_system	epss
scoring_elements	0.07456
published_at	2026-04-13T12:55:00Z

value	0.00027
scoring_system	epss
scoring_elements	0.07379
published_at	2026-04-16T12:55:00Z

value	0.00027
scoring_system	epss
scoring_elements	0.07365
published_at	2026-04-18T12:55:00Z

value	0.00027
scoring_system	epss
scoring_elements	0.07382
published_at	2026-04-02T12:55:00Z

value	0.00027
scoring_system	epss
scoring_elements	0.07427
published_at	2026-04-04T12:55:00Z

value	0.00027
scoring_system	epss
scoring_elements	0.07409
published_at	2026-04-07T12:55:00Z

value	0.00027
scoring_system	epss
scoring_elements	0.07464
published_at	2026-04-08T12:55:00Z

value	0.00027
scoring_system	epss
scoring_elements	0.07487
published_at	2026-04-09T12:55:00Z

value	0.00027
scoring_system	epss
scoring_elements	0.07481
published_at	2026-04-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-36293

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-36293
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-36293

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1095805
reference_id	1095805
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1095805

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2345367
reference_id	2345367
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2345367

reference_url

https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01213.html

reference_id

intel-sa-01213.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

value	6.8
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-13T15:27:21Z/

url

https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01213.html

reference_url	https://usn.ubuntu.com/7269-1/
reference_id	USN-7269-1
reference_type
scores
url	https://usn.ubuntu.com/7269-1/

reference_url	https://usn.ubuntu.com/7269-2/
reference_id	USN-7269-2
reference_type
scores
url	https://usn.ubuntu.com/7269-2/

fixed_packages

aliases

CVE-2024-36293

risk_score

3.0

exploitability

0.5

weighted_severity

5.9

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-wv5f-6x7x-7fdw

Fixing_vulnerabilities

Risk_score 3.7

Resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/microcode_ctl@4:20250211-1%3Farch=el8_10

Package Instance