Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:rpm/redhat/microcode_ctl@2:2.1-53.25.el7_7?arch=1

Type rpm

Namespace redhat

Name microcode_ctl

Version 2:2.1-53.25.el7_7

Qualifiers

arch	1

Subpath

Is_vulnerable true

Next_non_vulnerable_version null

Latest_non_vulnerable_version null

Affected_by_vulnerabilities

url

VCID-npgb-p786-d3fe

vulnerability_id

VCID-npgb-p786-d3fe

summary

microcode_ctl: Improper input validation in UEFI firmware

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-43758.json

reference_id

reference_type

scores

value	8.2
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-43758.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-43758

reference_id

reference_type

scores

value	0.00022
scoring_system	epss
scoring_elements	0.05807
published_at	2026-04-02T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05832
published_at	2026-04-16T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05884
published_at	2026-04-11T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05874
published_at	2026-04-12T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05867
published_at	2026-04-13T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05843
published_at	2026-04-18T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05838
published_at	2026-04-07T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05877
published_at	2026-04-08T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05903
published_at	2026-04-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-43758

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43758
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43758

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1095805
reference_id	1095805
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1095805

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2345416
reference_id	2345416
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2345416

reference_url

https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01139.html

reference_id

intel-sa-01139.html

reference_type

scores

value	8.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-13T20:21:25Z/

url

https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01139.html

fixed_packages

aliases

CVE-2023-43758

risk_score

3.7

exploitability

0.5

weighted_severity

7.4

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-npgb-p786-d3fe

url

VCID-qtg5-1dxw-sfdc

vulnerability_id

VCID-qtg5-1dxw-sfdc

summary

microcode_ctl: Improper input validation in UEFI firmware CseVariableStorageSmm

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-29214.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-29214.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-29214

reference_id

reference_type

scores

value	0.00022
scoring_system	epss
scoring_elements	0.05832
published_at	2026-04-16T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05884
published_at	2026-04-11T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05874
published_at	2026-04-12T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05867
published_at	2026-04-13T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05807
published_at	2026-04-02T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05843
published_at	2026-04-18T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05838
published_at	2026-04-07T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05877
published_at	2026-04-08T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05903
published_at	2026-04-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-29214

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-29214
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-29214

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1095805
reference_id	1095805
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1095805

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2345365
reference_id	2345365
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2345365

reference_url

https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01139.html

reference_id

intel-sa-01139.html

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-13T15:17:24Z/

url

https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01139.html

fixed_packages

aliases

CVE-2024-29214

risk_score

3.4

exploitability

0.5

weighted_severity

6.8

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-qtg5-1dxw-sfdc

url

VCID-qzcy-2xsr-vqeh

vulnerability_id

VCID-qzcy-2xsr-vqeh

summary

microcode_ctl: Improper input validation in UEFI firmware

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-28127.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-28127.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-28127

reference_id

reference_type

scores

value	0.00022
scoring_system	epss
scoring_elements	0.05832
published_at	2026-04-16T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05884
published_at	2026-04-11T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05874
published_at	2026-04-12T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05867
published_at	2026-04-13T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05807
published_at	2026-04-02T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05843
published_at	2026-04-18T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05838
published_at	2026-04-07T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05877
published_at	2026-04-08T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05903
published_at	2026-04-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-28127

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-28127
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-28127

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1095805
reference_id	1095805
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1095805

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2345370
reference_id	2345370
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2345370

reference_url

https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01139.html

reference_id

intel-sa-01139.html

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-13T15:16:50Z/

url

https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01139.html

fixed_packages

aliases

CVE-2024-28127

risk_score

3.4

exploitability

0.5

weighted_severity

6.8

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-qzcy-2xsr-vqeh

url

VCID-t85u-116v-7uan

vulnerability_id

VCID-t85u-116v-7uan

summary

microcode_ctl: Improper input validation in XmlCli feature for UEFI firmware

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-24582.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-24582.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-24582

reference_id

reference_type

scores

value	0.00016
scoring_system	epss
scoring_elements	0.0338
published_at	2026-04-18T12:55:00Z

value	0.00016
scoring_system	epss
scoring_elements	0.03416
published_at	2026-04-12T12:55:00Z

value	0.00016
scoring_system	epss
scoring_elements	0.03392
published_at	2026-04-13T12:55:00Z

value	0.00016
scoring_system	epss
scoring_elements	0.03369
published_at	2026-04-16T12:55:00Z

value	0.00016
scoring_system	epss
scoring_elements	0.03435
published_at	2026-04-02T12:55:00Z

value	0.00016
scoring_system	epss
scoring_elements	0.03449
published_at	2026-04-04T12:55:00Z

value	0.00016
scoring_system	epss
scoring_elements	0.03462
published_at	2026-04-07T12:55:00Z

value	0.00016
scoring_system	epss
scoring_elements	0.03465
published_at	2026-04-08T12:55:00Z

value	0.00016
scoring_system	epss
scoring_elements	0.03488
published_at	2026-04-09T12:55:00Z

value	0.00016
scoring_system	epss
scoring_elements	0.03445
published_at	2026-04-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-24582

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-24582
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-24582

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1095805
reference_id	1095805
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1095805

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2345376
reference_id	2345376
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2345376

reference_url

https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01139.html

reference_id

intel-sa-01139.html

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-13T19:49:18Z/

url

https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01139.html

fixed_packages

aliases

CVE-2024-24582

risk_score

3.4

exploitability

0.5

weighted_severity

6.8

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-t85u-116v-7uan

url

VCID-vsda-kq13-73g1

vulnerability_id

VCID-vsda-kq13-73g1

summary

microcode_ctl: Improper input validation in UEFI firmware

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-34440.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-34440.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-34440

reference_id

reference_type

scores

value	0.00022
scoring_system	epss
scoring_elements	0.05832
published_at	2026-04-16T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05884
published_at	2026-04-11T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05874
published_at	2026-04-12T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05867
published_at	2026-04-13T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05807
published_at	2026-04-02T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05843
published_at	2026-04-18T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05838
published_at	2026-04-07T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05877
published_at	2026-04-08T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05903
published_at	2026-04-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-34440

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-34440
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-34440

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1095805
reference_id	1095805
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1095805

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2345401
reference_id	2345401
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2345401

reference_url

https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01139.html

reference_id

intel-sa-01139.html

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-13T20:21:01Z/

url

https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01139.html

fixed_packages

aliases

CVE-2023-34440

risk_score

3.4

exploitability

0.5

weighted_severity

6.8

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-vsda-kq13-73g1

Fixing_vulnerabilities

Risk_score 3.7

Resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/microcode_ctl@2:2.1-53.25.el7_7%3Farch=1

Package Instance