Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/943319?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/943319?format=api", "purl": "pkg:deb/debian/xen@4.14.2%2B25-gb6a8c4f72d-1?distro=trixie", "type": "deb", "namespace": "debian", "name": "xen", "version": "4.14.2+25-gb6a8c4f72d-1", "qualifiers": { "distro": "trixie" }, "subpath": "", "is_vulnerable": false, "next_non_vulnerable_version": "4.14.3-1~deb11u1", "latest_non_vulnerable_version": "4.20.2+7-g1badcf5035-1", "affected_by_vulnerabilities": [], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4267?format=api", "vulnerability_id": "VCID-32w3-vmcb-wfd9", "summary": "xen/arm: Boot modules are not scrubbed", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28693", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18543", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18781", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18919", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18972", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18698", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18778", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18832", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18837", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18791", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18738", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18688", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.187", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18719", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18606", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18584", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28693" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28693", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28693" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202107-30", "reference_id": "GLSA-202107-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202107-30" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-372.html", "reference_id": "XSA-372", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-372.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/943319?format=api", "purl": "pkg:deb/debian/xen@4.14.2%2B25-gb6a8c4f72d-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.2%252B25-gb6a8c4f72d-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/943265?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/943263?format=api", "purl": "pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-wx6w-6y5m-fugn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/943267?format=api", "purl": "pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-wx6w-6y5m-fugn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/943266?format=api", "purl": "pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-wx6w-6y5m-fugn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2021-28693", "XSA-372" ], "risk_score": 1.2, "exploitability": "0.5", "weighted_severity": "2.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-32w3-vmcb-wfd9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4263?format=api", "vulnerability_id": "VCID-77st-3475-5kdr", "summary": "HVM soft-reset crashes toolstack", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28687", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13827", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13979", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.14057", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.14111", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13914", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13999", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.14052", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.14006", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13969", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.1392", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13825", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13818", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13889", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13922", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13894", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28687" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28687", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28687" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202107-30", "reference_id": "GLSA-202107-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202107-30" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-368.html", "reference_id": "XSA-368", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-368.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/943319?format=api", "purl": "pkg:deb/debian/xen@4.14.2%2B25-gb6a8c4f72d-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.2%252B25-gb6a8c4f72d-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/943265?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/943263?format=api", "purl": "pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-wx6w-6y5m-fugn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/943267?format=api", "purl": "pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-wx6w-6y5m-fugn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/943266?format=api", "purl": "pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-wx6w-6y5m-fugn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2021-28687", "XSA-368" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-77st-3475-5kdr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4271?format=api", "vulnerability_id": "VCID-e96u-uwba-kfg5", "summary": "Speculative Code Store Bypass", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-26313", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00078", "scoring_system": "epss", "scoring_elements": "0.23106", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00078", "scoring_system": "epss", "scoring_elements": "0.23281", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00078", "scoring_system": "epss", "scoring_elements": "0.23324", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00078", "scoring_system": "epss", "scoring_elements": "0.23112", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00078", "scoring_system": "epss", "scoring_elements": "0.23186", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00078", "scoring_system": "epss", "scoring_elements": "0.23237", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00078", "scoring_system": "epss", "scoring_elements": "0.23259", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00078", "scoring_system": "epss", "scoring_elements": "0.23222", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00078", "scoring_system": "epss", "scoring_elements": "0.23163", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00078", "scoring_system": "epss", "scoring_elements": "0.2318", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00078", "scoring_system": "epss", "scoring_elements": "0.23172", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00078", "scoring_system": "epss", "scoring_elements": "0.23133", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00078", "scoring_system": "epss", "scoring_elements": "0.22958", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00078", "scoring_system": "epss", "scoring_elements": "0.22952", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00078", "scoring_system": "epss", "scoring_elements": "0.22948", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-26313" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-0089", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-0089" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26313", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26313" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28690", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28690" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28692", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28692" }, { "reference_url": "https://security.gentoo.org/glsa/202107-30", "reference_id": "GLSA-202107-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202107-30" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-375.html", "reference_id": "XSA-375", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-375.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/943319?format=api", "purl": "pkg:deb/debian/xen@4.14.2%2B25-gb6a8c4f72d-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.2%252B25-gb6a8c4f72d-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/943265?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/943263?format=api", "purl": "pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-wx6w-6y5m-fugn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/943267?format=api", "purl": "pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-wx6w-6y5m-fugn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/943266?format=api", "purl": "pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-wx6w-6y5m-fugn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2021-26313" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-e96u-uwba-kfg5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4272?format=api", "vulnerability_id": "VCID-hyup-47wa-pfac", "summary": "x86: TSX Async Abort protections not restored after S3", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28690", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00357", "scoring_system": "epss", "scoring_elements": "0.57967", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00357", "scoring_system": "epss", "scoring_elements": "0.57887", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00357", "scoring_system": "epss", "scoring_elements": "0.57971", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00357", "scoring_system": "epss", "scoring_elements": "0.5799", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00357", "scoring_system": "epss", "scoring_elements": "0.57966", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00357", "scoring_system": "epss", "scoring_elements": "0.58022", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00357", "scoring_system": "epss", "scoring_elements": "0.58024", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00357", "scoring_system": "epss", "scoring_elements": "0.58041", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00357", "scoring_system": "epss", "scoring_elements": "0.58019", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00357", "scoring_system": "epss", "scoring_elements": "0.57999", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00357", "scoring_system": "epss", "scoring_elements": "0.58029", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00357", "scoring_system": "epss", "scoring_elements": "0.58028", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00357", "scoring_system": "epss", "scoring_elements": "0.58005", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00357", "scoring_system": "epss", "scoring_elements": "0.57968", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00357", "scoring_system": "epss", "scoring_elements": "0.57984", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28690" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-0089", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-0089" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26313", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26313" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28690", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28690" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28692", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28692" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202107-30", "reference_id": "GLSA-202107-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202107-30" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-377.html", "reference_id": "XSA-377", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-377.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/943319?format=api", "purl": "pkg:deb/debian/xen@4.14.2%2B25-gb6a8c4f72d-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.2%252B25-gb6a8c4f72d-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/943265?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/943263?format=api", "purl": "pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-wx6w-6y5m-fugn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/943267?format=api", "purl": "pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-wx6w-6y5m-fugn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/943266?format=api", "purl": "pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-wx6w-6y5m-fugn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2021-28690", "XSA-377" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hyup-47wa-pfac" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4270?format=api", "vulnerability_id": "VCID-knqd-zktw-cydm", "summary": "Speculative Code Store Bypass", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-0089", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.1765", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.1783", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.17992", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.18046", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.17746", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.17834", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.17896", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.17912", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.17867", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.17818", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.1776", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.1777", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.17808", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.17717", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.17694", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-0089" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-0089", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-0089" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26313", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26313" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28690", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28690" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28692", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28692" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202107-30", "reference_id": "GLSA-202107-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202107-30" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-375.html", "reference_id": "XSA-375", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-375.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/943319?format=api", "purl": "pkg:deb/debian/xen@4.14.2%2B25-gb6a8c4f72d-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.2%252B25-gb6a8c4f72d-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/943265?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/943263?format=api", "purl": "pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-wx6w-6y5m-fugn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/943267?format=api", "purl": "pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-wx6w-6y5m-fugn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/943266?format=api", "purl": "pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-wx6w-6y5m-fugn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2021-0089", "XSA-375" ], "risk_score": 1.6, "exploitability": "0.5", "weighted_severity": "3.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-knqd-zktw-cydm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4268?format=api", "vulnerability_id": "VCID-n7pg-b7kc-wkew", "summary": "inappropriate x86 IOMMU timeout detection / handling", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28692", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10522", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10461", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10604", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10666", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.1053", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10603", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10662", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10675", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10643", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10619", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10484", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10502", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10627", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10576", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10575", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28692" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-0089", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-0089" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26313", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26313" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28690", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28690" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28692", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28692" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202107-30", "reference_id": "GLSA-202107-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202107-30" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-373.html", "reference_id": "XSA-373", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-373.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/943319?format=api", "purl": "pkg:deb/debian/xen@4.14.2%2B25-gb6a8c4f72d-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.2%252B25-gb6a8c4f72d-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/943265?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/943263?format=api", "purl": "pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-wx6w-6y5m-fugn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/943267?format=api", "purl": "pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-wx6w-6y5m-fugn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/943266?format=api", "purl": "pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-wx6w-6y5m-fugn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2021-28692", "XSA-373" ], "risk_score": 1.1, "exploitability": "0.5", "weighted_severity": "2.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-n7pg-b7kc-wkew" } ], "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.2%252B25-gb6a8c4f72d-1%3Fdistro=trixie" }