Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/intel-microcode@3.20230214.1~deb11u1?distro=trixie

Type deb

Namespace debian

Name intel-microcode

Version 3.20230214.1~deb11u1

Qualifiers

distro	trixie

Subpath

Is_vulnerable false

Next_non_vulnerable_version 3.20230214.1

Latest_non_vulnerable_version 3.20260227.1

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-6mzy-wsz1-cyhf

vulnerability_id VCID-6mzy-wsz1-cyhf

summary kernel: Intel firmware update for incorrect calculation in microcode keying mechanism

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-33972.json

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-33972.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-33972

reference_id

reference_type

scores

value	0.00035
scoring_system	epss
scoring_elements	0.10309
published_at	2026-04-02T12:55:00Z

value	0.00035
scoring_system	epss
scoring_elements	0.10356
published_at	2026-04-21T12:55:00Z

value	0.00035
scoring_system	epss
scoring_elements	0.10382
published_at	2026-04-13T12:55:00Z

value	0.00035
scoring_system	epss
scoring_elements	0.10254
published_at	2026-04-16T12:55:00Z

value	0.00035
scoring_system	epss
scoring_elements	0.10225
published_at	2026-04-18T12:55:00Z

value	0.00035
scoring_system	epss
scoring_elements	0.10375
published_at	2026-04-04T12:55:00Z

value	0.00035
scoring_system	epss
scoring_elements	0.10276
published_at	2026-04-07T12:55:00Z

value	0.00035
scoring_system	epss
scoring_elements	0.10349
published_at	2026-04-08T12:55:00Z

value	0.00035
scoring_system	epss
scoring_elements	0.10416
published_at	2026-04-09T12:55:00Z

value	0.00035
scoring_system	epss
scoring_elements	0.10444
published_at	2026-04-11T12:55:00Z

value	0.00035
scoring_system	epss
scoring_elements	0.10404
published_at	2026-04-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-33972

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33972
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33972

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031334
reference_id	1031334
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031334

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2171243
reference_id	2171243
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2171243

reference_url

http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00730.html

reference_id

intel-sa-00730.html

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-27T17:28:30Z/

url

http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00730.html

reference_url	https://usn.ubuntu.com/5886-1/
reference_id	USN-5886-1
reference_type
scores
url	https://usn.ubuntu.com/5886-1/

fixed_packages

url	pkg:deb/debian/intel-microcode@3.20230214.1~deb11u1?distro=trixie
purl	pkg:deb/debian/intel-microcode@3.20230214.1~deb11u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/intel-microcode@3.20230214.1~deb11u1%3Fdistro=trixie

url	pkg:deb/debian/intel-microcode@3.20230214.1?distro=trixie
purl	pkg:deb/debian/intel-microcode@3.20230214.1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/intel-microcode@3.20230214.1%3Fdistro=trixie

url pkg:deb/debian/intel-microcode@3.20240813.1~deb11u1?distro=trixie

purl pkg:deb/debian/intel-microcode@3.20240813.1~deb11u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-38q7-4ar3-sqcc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/intel-microcode@3.20240813.1~deb11u1%3Fdistro=trixie

url pkg:deb/debian/intel-microcode@3.20251111.1~deb12u1?distro=trixie

purl pkg:deb/debian/intel-microcode@3.20251111.1~deb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-38q7-4ar3-sqcc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/intel-microcode@3.20251111.1~deb12u1%3Fdistro=trixie

url pkg:deb/debian/intel-microcode@3.20251111.1~deb13u1?distro=trixie

purl pkg:deb/debian/intel-microcode@3.20251111.1~deb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-38q7-4ar3-sqcc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/intel-microcode@3.20251111.1~deb13u1%3Fdistro=trixie

url	pkg:deb/debian/intel-microcode@3.20260227.1?distro=trixie
purl	pkg:deb/debian/intel-microcode@3.20260227.1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/intel-microcode@3.20260227.1%3Fdistro=trixie

aliases CVE-2022-33972

risk_score 2.8

exploitability 0.5

weighted_severity 5.5

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6mzy-wsz1-cyhf

url VCID-8vx6-ctvp-8qeq

vulnerability_id VCID-8vx6-ctvp-8qeq

summary kernel: Intel firmware update for insufficient granularity of access control in out-of-band management in some Intel Atom and Intel Xeon Scalable Processors

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21216.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:C/C:H/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21216.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-21216

reference_id

reference_type

scores

value	0.00051
scoring_system	epss
scoring_elements	0.1593
published_at	2026-04-02T12:55:00Z

value	0.00051
scoring_system	epss
scoring_elements	0.15785
published_at	2026-04-21T12:55:00Z

value	0.00051
scoring_system	epss
scoring_elements	0.15939
published_at	2026-04-09T12:55:00Z

value	0.00051
scoring_system	epss
scoring_elements	0.15915
published_at	2026-04-11T12:55:00Z

value	0.00051
scoring_system	epss
scoring_elements	0.15809
published_at	2026-04-13T12:55:00Z

value	0.00051
scoring_system	epss
scoring_elements	0.15732
published_at	2026-04-16T12:55:00Z

value	0.00051
scoring_system	epss
scoring_elements	0.15741
published_at	2026-04-18T12:55:00Z

value	0.00051
scoring_system	epss
scoring_elements	0.15992
published_at	2026-04-04T12:55:00Z

value	0.00051
scoring_system	epss
scoring_elements	0.15791
published_at	2026-04-07T12:55:00Z

value	0.00051
scoring_system	epss
scoring_elements	0.15877
published_at	2026-04-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-21216

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21216
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21216

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:C/C:H/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031334
reference_id	1031334
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031334

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2171227
reference_id	2171227
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2171227

reference_url

http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00700.html

reference_id

intel-sa-00700.html

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:C/C:H/I:L/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-27T17:29:15Z/

url

http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00700.html

reference_url

https://security.netapp.com/advisory/ntap-20230601-0005/

reference_id

ntap-20230601-0005

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:C/C:H/I:L/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-27T17:29:15Z/

url

https://security.netapp.com/advisory/ntap-20230601-0005/

reference_url	https://access.redhat.com/errata/RHSA-2023:5209
reference_id	RHSA-2023:5209
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5209

reference_url	https://usn.ubuntu.com/5886-1/
reference_id	USN-5886-1
reference_type
scores
url	https://usn.ubuntu.com/5886-1/

fixed_packages

url	pkg:deb/debian/intel-microcode@3.20230214.1~deb11u1?distro=trixie
purl	pkg:deb/debian/intel-microcode@3.20230214.1~deb11u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/intel-microcode@3.20230214.1~deb11u1%3Fdistro=trixie

url	pkg:deb/debian/intel-microcode@3.20230214.1?distro=trixie
purl	pkg:deb/debian/intel-microcode@3.20230214.1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/intel-microcode@3.20230214.1%3Fdistro=trixie

url pkg:deb/debian/intel-microcode@3.20240813.1~deb11u1?distro=trixie

purl pkg:deb/debian/intel-microcode@3.20240813.1~deb11u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-38q7-4ar3-sqcc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/intel-microcode@3.20240813.1~deb11u1%3Fdistro=trixie

url pkg:deb/debian/intel-microcode@3.20251111.1~deb12u1?distro=trixie

purl pkg:deb/debian/intel-microcode@3.20251111.1~deb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-38q7-4ar3-sqcc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/intel-microcode@3.20251111.1~deb12u1%3Fdistro=trixie

url pkg:deb/debian/intel-microcode@3.20251111.1~deb13u1?distro=trixie

purl pkg:deb/debian/intel-microcode@3.20251111.1~deb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-38q7-4ar3-sqcc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/intel-microcode@3.20251111.1~deb13u1%3Fdistro=trixie

url	pkg:deb/debian/intel-microcode@3.20260227.1?distro=trixie
purl	pkg:deb/debian/intel-microcode@3.20260227.1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/intel-microcode@3.20260227.1%3Fdistro=trixie

aliases CVE-2022-21216

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8vx6-ctvp-8qeq

url VCID-f91c-4ty9-h7a2

vulnerability_id VCID-f91c-4ty9-h7a2

summary hw: cpu: Intel: Stale Data Read from legacy xAPIC vulnerability

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21233.json

reference_id

reference_type

scores

value	6.0
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21233.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-21233

reference_id

reference_type

scores

value	0.00074
scoring_system	epss
scoring_elements	0.22519
published_at	2026-04-02T12:55:00Z

value	0.00078
scoring_system	epss
scoring_elements	0.23336
published_at	2026-04-04T12:55:00Z

value	0.00078
scoring_system	epss
scoring_elements	0.23125
published_at	2026-04-07T12:55:00Z

value	0.00078
scoring_system	epss
scoring_elements	0.23199
published_at	2026-04-08T12:55:00Z

value	0.00078
scoring_system	epss
scoring_elements	0.23249
published_at	2026-04-09T12:55:00Z

value	0.00078
scoring_system	epss
scoring_elements	0.23271
published_at	2026-04-11T12:55:00Z

value	0.00078
scoring_system	epss
scoring_elements	0.23233
published_at	2026-04-12T12:55:00Z

value	0.00078
scoring_system	epss
scoring_elements	0.23175
published_at	2026-04-13T12:55:00Z

value	0.00116
scoring_system	epss
scoring_elements	0.30172
published_at	2026-04-21T12:55:00Z

value	0.00116
scoring_system	epss
scoring_elements	0.30236
published_at	2026-04-16T12:55:00Z

value	0.00116
scoring_system	epss
scoring_elements	0.30218
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-21233

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21233
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21233

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2115640
reference_id	2115640
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2115640

reference_url

https://security.archlinux.org/AVG-2795

reference_id

AVG-2795

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2795

reference_url

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00657.html

reference_id

intel-sa-00657.html

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:20:24Z/

url

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00657.html

reference_url

https://lists.debian.org/debian-lts-announce/2023/04/msg00000.html

reference_id

msg00000.html

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:20:24Z/

url

https://lists.debian.org/debian-lts-announce/2023/04/msg00000.html

reference_url

https://security.netapp.com/advisory/ntap-20220923-0002/

reference_id

ntap-20220923-0002

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:20:24Z/

url

https://security.netapp.com/advisory/ntap-20220923-0002/

reference_url	https://access.redhat.com/errata/RHSA-2022:5937
reference_id	RHSA-2022:5937
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:5937

reference_url	https://access.redhat.com/errata/RHSA-2022:5939
reference_id	RHSA-2022:5939
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:5939

reference_url	https://usn.ubuntu.com/5612-1/
reference_id	USN-5612-1
reference_type
scores
url	https://usn.ubuntu.com/5612-1/

fixed_packages

url	pkg:deb/debian/intel-microcode@3.20220809.1?distro=trixie
purl	pkg:deb/debian/intel-microcode@3.20220809.1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/intel-microcode@3.20220809.1%3Fdistro=trixie

url	pkg:deb/debian/intel-microcode@3.20230214.1~deb11u1?distro=trixie
purl	pkg:deb/debian/intel-microcode@3.20230214.1~deb11u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/intel-microcode@3.20230214.1~deb11u1%3Fdistro=trixie

url pkg:deb/debian/intel-microcode@3.20240813.1~deb11u1?distro=trixie

purl pkg:deb/debian/intel-microcode@3.20240813.1~deb11u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-38q7-4ar3-sqcc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/intel-microcode@3.20240813.1~deb11u1%3Fdistro=trixie

url pkg:deb/debian/intel-microcode@3.20251111.1~deb12u1?distro=trixie

purl pkg:deb/debian/intel-microcode@3.20251111.1~deb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-38q7-4ar3-sqcc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/intel-microcode@3.20251111.1~deb12u1%3Fdistro=trixie

url pkg:deb/debian/intel-microcode@3.20251111.1~deb13u1?distro=trixie

purl pkg:deb/debian/intel-microcode@3.20251111.1~deb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-38q7-4ar3-sqcc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/intel-microcode@3.20251111.1~deb13u1%3Fdistro=trixie

url	pkg:deb/debian/intel-microcode@3.20260227.1?distro=trixie
purl	pkg:deb/debian/intel-microcode@3.20260227.1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/intel-microcode@3.20260227.1%3Fdistro=trixie

aliases CVE-2022-21233

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-f91c-4ty9-h7a2

url VCID-pgps-58ra-1ugy

vulnerability_id VCID-pgps-58ra-1ugy

summary kernel: Intel firmware update for Incorrect default permissions in some memory controller configurations

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-33196.json

reference_id

reference_type

scores

value	7.2
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-33196.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-33196

reference_id

reference_type

scores

value	0.00035
scoring_system	epss
scoring_elements	0.10313
published_at	2026-04-02T12:55:00Z

value	0.00035
scoring_system	epss
scoring_elements	0.10359
published_at	2026-04-21T12:55:00Z

value	0.00035
scoring_system	epss
scoring_elements	0.10386
published_at	2026-04-13T12:55:00Z

value	0.00035
scoring_system	epss
scoring_elements	0.10257
published_at	2026-04-16T12:55:00Z

value	0.00035
scoring_system	epss
scoring_elements	0.10228
published_at	2026-04-18T12:55:00Z

value	0.00035
scoring_system	epss
scoring_elements	0.10378
published_at	2026-04-04T12:55:00Z

value	0.00035
scoring_system	epss
scoring_elements	0.10279
published_at	2026-04-07T12:55:00Z

value	0.00035
scoring_system	epss
scoring_elements	0.10353
published_at	2026-04-08T12:55:00Z

value	0.00035
scoring_system	epss
scoring_elements	0.10419
published_at	2026-04-09T12:55:00Z

value	0.00035
scoring_system	epss
scoring_elements	0.10448
published_at	2026-04-11T12:55:00Z

value	0.00035
scoring_system	epss
scoring_elements	0.10408
published_at	2026-04-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-33196

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33196
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33196

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031334
reference_id	1031334
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031334

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2171252
reference_id	2171252
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2171252

reference_url

http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00738.html

reference_id

intel-sa-00738.html

reference_type

scores

value	7.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-01-27T17:29:22Z/

url

http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00738.html

reference_url	https://access.redhat.com/errata/RHSA-2023:5209
reference_id	RHSA-2023:5209
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5209

reference_url	https://usn.ubuntu.com/5886-1/
reference_id	USN-5886-1
reference_type
scores
url	https://usn.ubuntu.com/5886-1/

fixed_packages

url	pkg:deb/debian/intel-microcode@3.20230214.1~deb11u1?distro=trixie
purl	pkg:deb/debian/intel-microcode@3.20230214.1~deb11u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/intel-microcode@3.20230214.1~deb11u1%3Fdistro=trixie

url	pkg:deb/debian/intel-microcode@3.20230214.1?distro=trixie
purl	pkg:deb/debian/intel-microcode@3.20230214.1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/intel-microcode@3.20230214.1%3Fdistro=trixie

url pkg:deb/debian/intel-microcode@3.20240813.1~deb11u1?distro=trixie

purl pkg:deb/debian/intel-microcode@3.20240813.1~deb11u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-38q7-4ar3-sqcc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/intel-microcode@3.20240813.1~deb11u1%3Fdistro=trixie

url pkg:deb/debian/intel-microcode@3.20251111.1~deb12u1?distro=trixie

purl pkg:deb/debian/intel-microcode@3.20251111.1~deb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-38q7-4ar3-sqcc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/intel-microcode@3.20251111.1~deb12u1%3Fdistro=trixie

url pkg:deb/debian/intel-microcode@3.20251111.1~deb13u1?distro=trixie

purl pkg:deb/debian/intel-microcode@3.20251111.1~deb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-38q7-4ar3-sqcc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/intel-microcode@3.20251111.1~deb13u1%3Fdistro=trixie

url	pkg:deb/debian/intel-microcode@3.20260227.1?distro=trixie
purl	pkg:deb/debian/intel-microcode@3.20260227.1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/intel-microcode@3.20260227.1%3Fdistro=trixie

aliases CVE-2022-33196

risk_score 3.2

exploitability 0.5

weighted_severity 6.5

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-pgps-58ra-1ugy

url VCID-zx9g-4trv-hfgc

vulnerability_id VCID-zx9g-4trv-hfgc

summary kernel: Intel firmware update for improper isolation of shared resources

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-38090.json

reference_id

reference_type

scores

value	6.0
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-38090.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-38090

reference_id

reference_type

scores

value	0.00041
scoring_system	epss
scoring_elements	0.12557
published_at	2026-04-02T12:55:00Z

value	0.00041
scoring_system	epss
scoring_elements	0.12452
published_at	2026-04-21T12:55:00Z

value	0.00041
scoring_system	epss
scoring_elements	0.12432
published_at	2026-04-13T12:55:00Z

value	0.00041
scoring_system	epss
scoring_elements	0.12336
published_at	2026-04-16T12:55:00Z

value	0.00041
scoring_system	epss
scoring_elements	0.12338
published_at	2026-04-18T12:55:00Z

value	0.00041
scoring_system	epss
scoring_elements	0.12599
published_at	2026-04-04T12:55:00Z

value	0.00041
scoring_system	epss
scoring_elements	0.12407
published_at	2026-04-07T12:55:00Z

value	0.00041
scoring_system	epss
scoring_elements	0.12488
published_at	2026-04-08T12:55:00Z

value	0.00041
scoring_system	epss
scoring_elements	0.1254
published_at	2026-04-09T12:55:00Z

value	0.00041
scoring_system	epss
scoring_elements	0.1251
published_at	2026-04-11T12:55:00Z

value	0.00041
scoring_system	epss
scoring_elements	0.12472
published_at	2026-04-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-38090

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-38090
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-38090

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031334
reference_id	1031334
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031334

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2171281
reference_id	2171281
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2171281

reference_url

http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00767.html

reference_id

intel-sa-00767.html

reference_type

scores

value	6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-28T14:53:30Z/

url

http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00767.html

reference_url	https://usn.ubuntu.com/5886-1/
reference_id	USN-5886-1
reference_type
scores
url	https://usn.ubuntu.com/5886-1/

fixed_packages

url	pkg:deb/debian/intel-microcode@3.20230214.1~deb11u1?distro=trixie
purl	pkg:deb/debian/intel-microcode@3.20230214.1~deb11u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/intel-microcode@3.20230214.1~deb11u1%3Fdistro=trixie

url	pkg:deb/debian/intel-microcode@3.20230214.1?distro=trixie
purl	pkg:deb/debian/intel-microcode@3.20230214.1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/intel-microcode@3.20230214.1%3Fdistro=trixie

url pkg:deb/debian/intel-microcode@3.20240813.1~deb11u1?distro=trixie

purl pkg:deb/debian/intel-microcode@3.20240813.1~deb11u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-38q7-4ar3-sqcc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/intel-microcode@3.20240813.1~deb11u1%3Fdistro=trixie

url pkg:deb/debian/intel-microcode@3.20251111.1~deb12u1?distro=trixie

purl pkg:deb/debian/intel-microcode@3.20251111.1~deb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-38q7-4ar3-sqcc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/intel-microcode@3.20251111.1~deb12u1%3Fdistro=trixie

url pkg:deb/debian/intel-microcode@3.20251111.1~deb13u1?distro=trixie

purl pkg:deb/debian/intel-microcode@3.20251111.1~deb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-38q7-4ar3-sqcc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/intel-microcode@3.20251111.1~deb13u1%3Fdistro=trixie

url	pkg:deb/debian/intel-microcode@3.20260227.1?distro=trixie
purl	pkg:deb/debian/intel-microcode@3.20260227.1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/intel-microcode@3.20260227.1%3Fdistro=trixie

aliases CVE-2022-38090

risk_score 2.7

exploitability 0.5

weighted_severity 5.4

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-zx9g-4trv-hfgc

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/intel-microcode@3.20230214.1~deb11u1%3Fdistro=trixie

Package Instance