Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/942540?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/942540?format=api", "purl": "pkg:deb/debian/webkit2gtk@2.38.1-1?distro=trixie", "type": "deb", "namespace": "debian", "name": "webkit2gtk", "version": "2.38.1-1", "qualifiers": { "distro": "trixie" }, "subpath": "", "is_vulnerable": false, "next_non_vulnerable_version": "2.38.2-1~deb11u1", "latest_non_vulnerable_version": "2.52.3-1", "affected_by_vulnerabilities": [], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/49524?format=api", "vulnerability_id": "VCID-e695-3zce-rfay", "summary": "Multiple vulnerabilities have been found in WebkitGTK+, the worst of which could result in arbitrary code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46691.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46691.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-46691", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00408", "scoring_system": "epss", "scoring_elements": "0.61159", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00408", "scoring_system": "epss", "scoring_elements": "0.61153", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00408", "scoring_system": "epss", "scoring_elements": "0.61187", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00408", "scoring_system": "epss", "scoring_elements": "0.61205", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00408", "scoring_system": "epss", "scoring_elements": "0.61223", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00408", "scoring_system": "epss", "scoring_elements": "0.61236", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00408", "scoring_system": "epss", "scoring_elements": "0.61216", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00408", "scoring_system": "epss", "scoring_elements": "0.61201", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0072", "scoring_system": "epss", "scoring_elements": "0.72511", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00766", "scoring_system": "epss", "scoring_elements": "0.73504", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00766", "scoring_system": "epss", "scoring_elements": "0.73511", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-46691" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42799", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42799" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42823", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42823" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42824", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42824" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46691", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46691" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://seclists.org/fulldisclosure/2022/Dec/20", "reference_id": "20", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-21T14:28:40Z/" } ], "url": "http://seclists.org/fulldisclosure/2022/Dec/20" }, { "reference_url": "http://seclists.org/fulldisclosure/2022/Dec/21", "reference_id": "21", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-21T14:28:40Z/" } ], "url": "http://seclists.org/fulldisclosure/2022/Dec/21" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2156990", "reference_id": "2156990", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2156990" }, { "reference_url": "http://seclists.org/fulldisclosure/2022/Dec/26", "reference_id": "26", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-21T14:28:40Z/" } ], "url": "http://seclists.org/fulldisclosure/2022/Dec/26" }, { "reference_url": "http://seclists.org/fulldisclosure/2022/Dec/27", "reference_id": "27", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-21T14:28:40Z/" } ], "url": "http://seclists.org/fulldisclosure/2022/Dec/27" }, { "reference_url": "http://seclists.org/fulldisclosure/2022/Dec/28", "reference_id": "28", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-21T14:28:40Z/" } ], "url": "http://seclists.org/fulldisclosure/2022/Dec/28" }, { "reference_url": "https://security.gentoo.org/glsa/202305-32", "reference_id": "GLSA-202305-32", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-21T14:28:40Z/" } ], "url": "https://security.gentoo.org/glsa/202305-32" }, { "reference_url": "https://support.apple.com/en-us/HT213530", "reference_id": "HT213530", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-21T14:28:40Z/" } ], "url": "https://support.apple.com/en-us/HT213530" }, { "reference_url": "https://support.apple.com/en-us/HT213531", "reference_id": "HT213531", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-21T14:28:40Z/" } ], "url": "https://support.apple.com/en-us/HT213531" }, { "reference_url": "https://support.apple.com/en-us/HT213532", "reference_id": "HT213532", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-21T14:28:40Z/" } ], "url": "https://support.apple.com/en-us/HT213532" }, { "reference_url": "https://support.apple.com/en-us/HT213535", "reference_id": "HT213535", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-21T14:28:40Z/" } ], "url": "https://support.apple.com/en-us/HT213535" }, { "reference_url": "https://support.apple.com/en-us/HT213536", "reference_id": "HT213536", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-21T14:28:40Z/" } ], "url": "https://support.apple.com/en-us/HT213536" }, { "reference_url": "https://support.apple.com/en-us/HT213537", "reference_id": "HT213537", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-21T14:28:40Z/" } ], "url": "https://support.apple.com/en-us/HT213537" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2256", "reference_id": "RHSA-2023:2256", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2256" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2834", "reference_id": "RHSA-2023:2834", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2834" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10364", "reference_id": "RHSA-2025:10364", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10364" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/942540?format=api", "purl": "pkg:deb/debian/webkit2gtk@2.38.1-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/webkit2gtk@2.38.1-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/942537?format=api", "purl": "pkg:deb/debian/webkit2gtk@2.38.2-1~deb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/webkit2gtk@2.38.2-1~deb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/942452?format=api", "purl": "pkg:deb/debian/webkit2gtk@2.44.2-1~deb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-25ng-4kwb-qfat" }, { "vulnerability": "VCID-4k57-k2s6-wkhx" }, { "vulnerability": "VCID-7ut5-fu6w-63fs" }, { "vulnerability": "VCID-88kv-qter-5fc3" }, { "vulnerability": "VCID-8cxd-4p9j-dyf1" }, { "vulnerability": "VCID-988h-sqnj-57fg" }, { "vulnerability": "VCID-eu4s-vvyf-pqh3" }, { "vulnerability": "VCID-ffha-wafn-sqa9" }, { "vulnerability": "VCID-fpvs-seby-kfhv" }, { "vulnerability": "VCID-gqm2-5nh3-7ufp" }, { "vulnerability": "VCID-mmcp-4qnx-5ufh" }, { "vulnerability": "VCID-nwkr-s7vs-p7fz" }, { "vulnerability": "VCID-t46t-rhgu-cbc1" }, { "vulnerability": "VCID-teue-y6qz-jyfw" }, { "vulnerability": "VCID-w5gq-k53s-tuc5" }, { "vulnerability": "VCID-wrt4-z8ne-zffm" }, { "vulnerability": "VCID-x5sh-5xtn-r7cp" }, { "vulnerability": "VCID-yfww-r9rn-73dy" }, { "vulnerability": "VCID-zk2j-9hd2-hfcn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/webkit2gtk@2.44.2-1~deb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/942450?format=api", "purl": "pkg:deb/debian/webkit2gtk@2.50.4-1~deb12u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-88kv-qter-5fc3" }, { "vulnerability": "VCID-8cxd-4p9j-dyf1" }, { "vulnerability": "VCID-eu4s-vvyf-pqh3" }, { "vulnerability": "VCID-ffha-wafn-sqa9" }, { "vulnerability": "VCID-fpvs-seby-kfhv" }, { "vulnerability": "VCID-gqm2-5nh3-7ufp" }, { "vulnerability": "VCID-nwkr-s7vs-p7fz" }, { "vulnerability": "VCID-teue-y6qz-jyfw" }, { "vulnerability": "VCID-zk2j-9hd2-hfcn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/webkit2gtk@2.50.4-1~deb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/942457?format=api", "purl": "pkg:deb/debian/webkit2gtk@2.50.4-1~deb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-88kv-qter-5fc3" }, { "vulnerability": "VCID-8cxd-4p9j-dyf1" }, { "vulnerability": "VCID-eu4s-vvyf-pqh3" }, { "vulnerability": "VCID-ffha-wafn-sqa9" }, { "vulnerability": "VCID-fpvs-seby-kfhv" }, { "vulnerability": "VCID-gqm2-5nh3-7ufp" }, { "vulnerability": "VCID-nwkr-s7vs-p7fz" }, { "vulnerability": "VCID-teue-y6qz-jyfw" }, { "vulnerability": "VCID-zk2j-9hd2-hfcn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/webkit2gtk@2.50.4-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/942454?format=api", "purl": "pkg:deb/debian/webkit2gtk@2.50.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-88kv-qter-5fc3" }, { "vulnerability": "VCID-8cxd-4p9j-dyf1" }, { "vulnerability": "VCID-eu4s-vvyf-pqh3" }, { "vulnerability": "VCID-ffha-wafn-sqa9" }, { "vulnerability": "VCID-fpvs-seby-kfhv" }, { "vulnerability": "VCID-gqm2-5nh3-7ufp" }, { "vulnerability": "VCID-nwkr-s7vs-p7fz" }, { "vulnerability": "VCID-teue-y6qz-jyfw" }, { "vulnerability": "VCID-zk2j-9hd2-hfcn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/webkit2gtk@2.50.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/942456?format=api", "purl": "pkg:deb/debian/webkit2gtk@2.52.1-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/webkit2gtk@2.52.1-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/1066850?format=api", "purl": "pkg:deb/debian/webkit2gtk@2.52.2-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/webkit2gtk@2.52.2-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/1067647?format=api", "purl": "pkg:deb/debian/webkit2gtk@2.52.3-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/webkit2gtk@2.52.3-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-46691" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-e695-3zce-rfay" } ], "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/webkit2gtk@2.38.1-1%3Fdistro=trixie" }