Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/xen@4.14.3%2B32-g9de3671772-1~deb11u1?distro=trixie

Type deb

Namespace debian

Name xen

Version 4.14.3+32-g9de3671772-1~deb11u1

Qualifiers

distro	trixie

Subpath

Is_vulnerable false

Next_non_vulnerable_version 4.14.3+32-g9de3671772-1

Latest_non_vulnerable_version 4.20.2+7-g1badcf5035-1

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-5dbd-kz24-6fc1

vulnerability_id VCID-5dbd-kz24-6fc1

summary issues with partially successful P2M updates on x86

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-28709

reference_id

reference_type

scores

value	0.00086
scoring_system	epss
scoring_elements	0.24654
published_at	2026-04-24T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24807
published_at	2026-04-01T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24885
published_at	2026-04-02T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24925
published_at	2026-04-04T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.247
published_at	2026-04-07T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24767
published_at	2026-04-08T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24813
published_at	2026-04-09T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24827
published_at	2026-04-11T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24787
published_at	2026-04-12T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.2473
published_at	2026-04-13T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24745
published_at	2026-04-16T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24737
published_at	2026-04-18T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24714
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-28709

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28702
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28702

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28704
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28704

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28705
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28705

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28706
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28706

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28707
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28707

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28708
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28708

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28709
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28709

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://security.gentoo.org/glsa/202402-07
reference_id	GLSA-202402-07
reference_type
scores
url	https://security.gentoo.org/glsa/202402-07

reference_url	https://xenbits.xen.org/xsa/advisory-389.html
reference_id	XSA-389
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-389.html

fixed_packages

url	pkg:deb/debian/xen@4.14.3%2B32-g9de3671772-1~deb11u1?distro=trixie
purl	pkg:deb/debian/xen@4.14.3%2B32-g9de3671772-1~deb11u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.3%252B32-g9de3671772-1~deb11u1%3Fdistro=trixie

url	pkg:deb/debian/xen@4.14.3%2B32-g9de3671772-1?distro=trixie
purl	pkg:deb/debian/xen@4.14.3%2B32-g9de3671772-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.3%252B32-g9de3671772-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.14.6-1?distro=trixie

purl pkg:deb/debian/xen@4.14.6-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1tb8-t91c-63bp

vulnerability	VCID-26a9-9zz3-wfhh

vulnerability	VCID-2trm-w3ww-cfhk

vulnerability	VCID-3bw4-631f-e7h6

vulnerability	VCID-3se4-qv6j-xqfq

vulnerability	VCID-3vdg-5g64-wkbt

vulnerability	VCID-46ad-1k9n-j3hm

vulnerability	VCID-4cdt-ycjx-6ub4

vulnerability	VCID-4k7p-3g95-n7dm

vulnerability	VCID-4pra-prf3-1uff

vulnerability	VCID-4rmg-db7g-u3hs

vulnerability	VCID-5ktg-bhh1-ubbz

vulnerability	VCID-5u88-jt28-cfb6

vulnerability	VCID-6dax-cddv-7bbs

vulnerability	VCID-6jqj-2qwn-8qd9

vulnerability	VCID-8k1q-b2kj-w7hh

vulnerability	VCID-8tv5-zxmm-r3fk

vulnerability	VCID-97zm-r9b6-uqdu

vulnerability	VCID-b57c-x3pw-7fb7

vulnerability	VCID-bhdk-jmss-4qc8

vulnerability	VCID-byu1-7n9c-5fes

vulnerability	VCID-c4xu-szkm-1kh6

vulnerability	VCID-ee3z-24pr-kqcm

vulnerability	VCID-ejhc-6yqt-gkgv

vulnerability	VCID-evcg-2z3p-gbch

vulnerability	VCID-h9hz-vur7-kyhg

vulnerability	VCID-j22f-mbqe-a7dk

vulnerability	VCID-p2fk-8snj-x7dy

vulnerability	VCID-psaa-jdr7-e3fm

vulnerability	VCID-q3p3-tgay-6kcs

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-rdub-9bhg-nbc6

vulnerability	VCID-rk2f-yqbb-nyd2

vulnerability	VCID-rt5n-e4wq-p3gh

vulnerability	VCID-tjgh-waa3-wqgk

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-uv8m-bj4c-8fes

vulnerability	VCID-vv23-mvyn-87hg

vulnerability	VCID-wd4s-jxuf-skbp

vulnerability	VCID-wz1m-aeaf-nkg7

vulnerability	VCID-xqpz-y83m-4uc4

vulnerability	VCID-ye1t-qhtx-sucm

vulnerability	VCID-z9rm-9p2q-wfag

vulnerability	VCID-zkeg-d5d5-vbda

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

purl pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie

aliases CVE-2021-28709, XSA-389

risk_score 1.4

exploitability 0.5

weighted_severity 2.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5dbd-kz24-6fc1

url VCID-bxae-85uh-uyek

vulnerability_id VCID-bxae-85uh-uyek

summary PoD operations on misaligned GFNs

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-28708

reference_id

reference_type

scores

value	0.00086
scoring_system	epss
scoring_elements	0.24781
published_at	2026-04-24T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24909
published_at	2026-04-12T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24855
published_at	2026-04-13T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24867
published_at	2026-04-16T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.2486
published_at	2026-04-18T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24838
published_at	2026-04-21T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24929
published_at	2026-04-01T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.25008
published_at	2026-04-02T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.25047
published_at	2026-04-04T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.2482
published_at	2026-04-07T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24888
published_at	2026-04-08T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24934
published_at	2026-04-09T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24949
published_at	2026-04-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-28708

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28702
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28702

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28704
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28704

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28705
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28705

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28706
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28706

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28707
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28707

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28708
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28708

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28709
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28709

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://xenbits.xenproject.org/xsa/advisory-388.txt

reference_id

advisory-388.txt

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-18T20:21:02Z/

url

https://xenbits.xenproject.org/xsa/advisory-388.txt

reference_url

https://www.debian.org/security/2021/dsa-5017

reference_id

dsa-5017

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-18T20:21:02Z/

url

https://www.debian.org/security/2021/dsa-5017

reference_url

https://security.gentoo.org/glsa/202402-07

reference_id

GLSA-202402-07

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-18T20:21:02Z/

url

https://security.gentoo.org/glsa/202402-07

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I7ZGWVVRI4XY2XSTBI3XEMWBXPDVX6OT/

reference_id

I7ZGWVVRI4XY2XSTBI3XEMWBXPDVX6OT

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-18T20:21:02Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I7ZGWVVRI4XY2XSTBI3XEMWBXPDVX6OT/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PXUI4VMD52CH3T7YXAG3J2JW7ZNN3SXF/

reference_id

PXUI4VMD52CH3T7YXAG3J2JW7ZNN3SXF

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-18T20:21:02Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PXUI4VMD52CH3T7YXAG3J2JW7ZNN3SXF/

reference_url	https://xenbits.xen.org/xsa/advisory-388.html
reference_id	XSA-388
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-388.html

fixed_packages

url	pkg:deb/debian/xen@4.14.3%2B32-g9de3671772-1~deb11u1?distro=trixie
purl	pkg:deb/debian/xen@4.14.3%2B32-g9de3671772-1~deb11u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.3%252B32-g9de3671772-1~deb11u1%3Fdistro=trixie

url	pkg:deb/debian/xen@4.14.3%2B32-g9de3671772-1?distro=trixie
purl	pkg:deb/debian/xen@4.14.3%2B32-g9de3671772-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.3%252B32-g9de3671772-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.14.6-1?distro=trixie

purl pkg:deb/debian/xen@4.14.6-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1tb8-t91c-63bp

vulnerability	VCID-26a9-9zz3-wfhh

vulnerability	VCID-2trm-w3ww-cfhk

vulnerability	VCID-3bw4-631f-e7h6

vulnerability	VCID-3se4-qv6j-xqfq

vulnerability	VCID-3vdg-5g64-wkbt

vulnerability	VCID-46ad-1k9n-j3hm

vulnerability	VCID-4cdt-ycjx-6ub4

vulnerability	VCID-4k7p-3g95-n7dm

vulnerability	VCID-4pra-prf3-1uff

vulnerability	VCID-4rmg-db7g-u3hs

vulnerability	VCID-5ktg-bhh1-ubbz

vulnerability	VCID-5u88-jt28-cfb6

vulnerability	VCID-6dax-cddv-7bbs

vulnerability	VCID-6jqj-2qwn-8qd9

vulnerability	VCID-8k1q-b2kj-w7hh

vulnerability	VCID-8tv5-zxmm-r3fk

vulnerability	VCID-97zm-r9b6-uqdu

vulnerability	VCID-b57c-x3pw-7fb7

vulnerability	VCID-bhdk-jmss-4qc8

vulnerability	VCID-byu1-7n9c-5fes

vulnerability	VCID-c4xu-szkm-1kh6

vulnerability	VCID-ee3z-24pr-kqcm

vulnerability	VCID-ejhc-6yqt-gkgv

vulnerability	VCID-evcg-2z3p-gbch

vulnerability	VCID-h9hz-vur7-kyhg

vulnerability	VCID-j22f-mbqe-a7dk

vulnerability	VCID-p2fk-8snj-x7dy

vulnerability	VCID-psaa-jdr7-e3fm

vulnerability	VCID-q3p3-tgay-6kcs

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-rdub-9bhg-nbc6

vulnerability	VCID-rk2f-yqbb-nyd2

vulnerability	VCID-rt5n-e4wq-p3gh

vulnerability	VCID-tjgh-waa3-wqgk

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-uv8m-bj4c-8fes

vulnerability	VCID-vv23-mvyn-87hg

vulnerability	VCID-wd4s-jxuf-skbp

vulnerability	VCID-wz1m-aeaf-nkg7

vulnerability	VCID-xqpz-y83m-4uc4

vulnerability	VCID-ye1t-qhtx-sucm

vulnerability	VCID-z9rm-9p2q-wfag

vulnerability	VCID-zkeg-d5d5-vbda

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

purl pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie

aliases CVE-2021-28708

risk_score 1.4

exploitability 0.5

weighted_severity 2.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bxae-85uh-uyek

url VCID-fekb-fbhz-y7g7

vulnerability_id VCID-fekb-fbhz-y7g7

summary PoD operations on misaligned GFNs

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-28704

reference_id

reference_type

scores

value	0.00086
scoring_system	epss
scoring_elements	0.24654
published_at	2026-04-24T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24807
published_at	2026-04-01T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24885
published_at	2026-04-02T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24925
published_at	2026-04-04T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.247
published_at	2026-04-07T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24767
published_at	2026-04-08T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24813
published_at	2026-04-09T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24827
published_at	2026-04-11T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24787
published_at	2026-04-12T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.2473
published_at	2026-04-13T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24745
published_at	2026-04-16T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24737
published_at	2026-04-18T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24714
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-28704

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28702
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28702

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28704
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28704

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28705
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28705

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28706
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28706

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28707
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28707

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28708
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28708

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28709
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28709

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://security.gentoo.org/glsa/202402-07
reference_id	GLSA-202402-07
reference_type
scores
url	https://security.gentoo.org/glsa/202402-07

reference_url	https://xenbits.xen.org/xsa/advisory-388.html
reference_id	XSA-388
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-388.html

fixed_packages

url	pkg:deb/debian/xen@4.14.3%2B32-g9de3671772-1~deb11u1?distro=trixie
purl	pkg:deb/debian/xen@4.14.3%2B32-g9de3671772-1~deb11u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.3%252B32-g9de3671772-1~deb11u1%3Fdistro=trixie

url	pkg:deb/debian/xen@4.14.3%2B32-g9de3671772-1?distro=trixie
purl	pkg:deb/debian/xen@4.14.3%2B32-g9de3671772-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.3%252B32-g9de3671772-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.14.6-1?distro=trixie

purl pkg:deb/debian/xen@4.14.6-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1tb8-t91c-63bp

vulnerability	VCID-26a9-9zz3-wfhh

vulnerability	VCID-2trm-w3ww-cfhk

vulnerability	VCID-3bw4-631f-e7h6

vulnerability	VCID-3se4-qv6j-xqfq

vulnerability	VCID-3vdg-5g64-wkbt

vulnerability	VCID-46ad-1k9n-j3hm

vulnerability	VCID-4cdt-ycjx-6ub4

vulnerability	VCID-4k7p-3g95-n7dm

vulnerability	VCID-4pra-prf3-1uff

vulnerability	VCID-4rmg-db7g-u3hs

vulnerability	VCID-5ktg-bhh1-ubbz

vulnerability	VCID-5u88-jt28-cfb6

vulnerability	VCID-6dax-cddv-7bbs

vulnerability	VCID-6jqj-2qwn-8qd9

vulnerability	VCID-8k1q-b2kj-w7hh

vulnerability	VCID-8tv5-zxmm-r3fk

vulnerability	VCID-97zm-r9b6-uqdu

vulnerability	VCID-b57c-x3pw-7fb7

vulnerability	VCID-bhdk-jmss-4qc8

vulnerability	VCID-byu1-7n9c-5fes

vulnerability	VCID-c4xu-szkm-1kh6

vulnerability	VCID-ee3z-24pr-kqcm

vulnerability	VCID-ejhc-6yqt-gkgv

vulnerability	VCID-evcg-2z3p-gbch

vulnerability	VCID-h9hz-vur7-kyhg

vulnerability	VCID-j22f-mbqe-a7dk

vulnerability	VCID-p2fk-8snj-x7dy

vulnerability	VCID-psaa-jdr7-e3fm

vulnerability	VCID-q3p3-tgay-6kcs

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-rdub-9bhg-nbc6

vulnerability	VCID-rk2f-yqbb-nyd2

vulnerability	VCID-rt5n-e4wq-p3gh

vulnerability	VCID-tjgh-waa3-wqgk

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-uv8m-bj4c-8fes

vulnerability	VCID-vv23-mvyn-87hg

vulnerability	VCID-wd4s-jxuf-skbp

vulnerability	VCID-wz1m-aeaf-nkg7

vulnerability	VCID-xqpz-y83m-4uc4

vulnerability	VCID-ye1t-qhtx-sucm

vulnerability	VCID-z9rm-9p2q-wfag

vulnerability	VCID-zkeg-d5d5-vbda

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

purl pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie

aliases CVE-2021-28704, XSA-388

risk_score 1.4

exploitability 0.5

weighted_severity 2.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fekb-fbhz-y7g7

url VCID-fqt9-2esb-ffan

vulnerability_id VCID-fqt9-2esb-ffan

summary PCI devices with RMRRs not deassigned correctly

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-28702

reference_id

reference_type

scores

value	0.00053
scoring_system	epss
scoring_elements	0.16617
published_at	2026-04-24T12:55:00Z

value	0.00053
scoring_system	epss
scoring_elements	0.16834
published_at	2026-04-11T12:55:00Z

value	0.00053
scoring_system	epss
scoring_elements	0.16789
published_at	2026-04-12T12:55:00Z

value	0.00053
scoring_system	epss
scoring_elements	0.1673
published_at	2026-04-13T12:55:00Z

value	0.00053
scoring_system	epss
scoring_elements	0.16666
published_at	2026-04-16T12:55:00Z

value	0.00053
scoring_system	epss
scoring_elements	0.16674
published_at	2026-04-18T12:55:00Z

value	0.00053
scoring_system	epss
scoring_elements	0.16711
published_at	2026-04-21T12:55:00Z

value	0.00074
scoring_system	epss
scoring_elements	0.22583
published_at	2026-04-04T12:55:00Z

value	0.00074
scoring_system	epss
scoring_elements	0.22508
published_at	2026-04-09T12:55:00Z

value	0.00074
scoring_system	epss
scoring_elements	0.22541
published_at	2026-04-02T12:55:00Z

value	0.00074
scoring_system	epss
scoring_elements	0.22374
published_at	2026-04-01T12:55:00Z

value	0.00074
scoring_system	epss
scoring_elements	0.22371
published_at	2026-04-07T12:55:00Z

value	0.00074
scoring_system	epss
scoring_elements	0.22453
published_at	2026-04-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-28702

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28702
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28702

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28704
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28704

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28705
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28705

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28706
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28706

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28707
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28707

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28708
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28708

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28709
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28709

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://security.gentoo.org/glsa/202208-23
reference_id	GLSA-202208-23
reference_type
scores
url	https://security.gentoo.org/glsa/202208-23

reference_url	https://xenbits.xen.org/xsa/advisory-386.html
reference_id	XSA-386
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-386.html

fixed_packages

url	pkg:deb/debian/xen@4.14.3%2B32-g9de3671772-1~deb11u1?distro=trixie
purl	pkg:deb/debian/xen@4.14.3%2B32-g9de3671772-1~deb11u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.3%252B32-g9de3671772-1~deb11u1%3Fdistro=trixie

url	pkg:deb/debian/xen@4.14.3%2B32-g9de3671772-1?distro=trixie
purl	pkg:deb/debian/xen@4.14.3%2B32-g9de3671772-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.3%252B32-g9de3671772-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.14.6-1?distro=trixie

purl pkg:deb/debian/xen@4.14.6-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1tb8-t91c-63bp

vulnerability	VCID-26a9-9zz3-wfhh

vulnerability	VCID-2trm-w3ww-cfhk

vulnerability	VCID-3bw4-631f-e7h6

vulnerability	VCID-3se4-qv6j-xqfq

vulnerability	VCID-3vdg-5g64-wkbt

vulnerability	VCID-46ad-1k9n-j3hm

vulnerability	VCID-4cdt-ycjx-6ub4

vulnerability	VCID-4k7p-3g95-n7dm

vulnerability	VCID-4pra-prf3-1uff

vulnerability	VCID-4rmg-db7g-u3hs

vulnerability	VCID-5ktg-bhh1-ubbz

vulnerability	VCID-5u88-jt28-cfb6

vulnerability	VCID-6dax-cddv-7bbs

vulnerability	VCID-6jqj-2qwn-8qd9

vulnerability	VCID-8k1q-b2kj-w7hh

vulnerability	VCID-8tv5-zxmm-r3fk

vulnerability	VCID-97zm-r9b6-uqdu

vulnerability	VCID-b57c-x3pw-7fb7

vulnerability	VCID-bhdk-jmss-4qc8

vulnerability	VCID-byu1-7n9c-5fes

vulnerability	VCID-c4xu-szkm-1kh6

vulnerability	VCID-ee3z-24pr-kqcm

vulnerability	VCID-ejhc-6yqt-gkgv

vulnerability	VCID-evcg-2z3p-gbch

vulnerability	VCID-h9hz-vur7-kyhg

vulnerability	VCID-j22f-mbqe-a7dk

vulnerability	VCID-p2fk-8snj-x7dy

vulnerability	VCID-psaa-jdr7-e3fm

vulnerability	VCID-q3p3-tgay-6kcs

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-rdub-9bhg-nbc6

vulnerability	VCID-rk2f-yqbb-nyd2

vulnerability	VCID-rt5n-e4wq-p3gh

vulnerability	VCID-tjgh-waa3-wqgk

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-uv8m-bj4c-8fes

vulnerability	VCID-vv23-mvyn-87hg

vulnerability	VCID-wd4s-jxuf-skbp

vulnerability	VCID-wz1m-aeaf-nkg7

vulnerability	VCID-xqpz-y83m-4uc4

vulnerability	VCID-ye1t-qhtx-sucm

vulnerability	VCID-z9rm-9p2q-wfag

vulnerability	VCID-zkeg-d5d5-vbda

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

purl pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie

aliases CVE-2021-28702, XSA-386

risk_score 1.7

exploitability 0.5

weighted_severity 3.4

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fqt9-2esb-ffan

url VCID-gdsj-4cbx-ufep

vulnerability_id VCID-gdsj-4cbx-ufep

summary issues with partially successful P2M updates on x86

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-28705

reference_id

reference_type

scores

value	0.00115
scoring_system	epss
scoring_elements	0.29944
published_at	2026-04-24T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.30158
published_at	2026-04-09T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.30195
published_at	2026-04-02T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.30243
published_at	2026-04-04T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.30063
published_at	2026-04-07T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.30122
published_at	2026-04-08T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.30161
published_at	2026-04-11T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.30119
published_at	2026-04-12T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.30069
published_at	2026-04-13T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.30082
published_at	2026-04-16T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.3006
published_at	2026-04-18T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.30014
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-28705

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28702
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28702

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28704
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28704

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28705
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28705

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28706
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28706

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28707
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28707

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28708
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28708

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28709
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28709

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://security.gentoo.org/glsa/202402-07
reference_id	GLSA-202402-07
reference_type
scores
url	https://security.gentoo.org/glsa/202402-07

reference_url	https://xenbits.xen.org/xsa/advisory-389.html
reference_id	XSA-389
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-389.html

fixed_packages

url	pkg:deb/debian/xen@4.14.3%2B32-g9de3671772-1~deb11u1?distro=trixie
purl	pkg:deb/debian/xen@4.14.3%2B32-g9de3671772-1~deb11u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.3%252B32-g9de3671772-1~deb11u1%3Fdistro=trixie

url	pkg:deb/debian/xen@4.14.3%2B32-g9de3671772-1?distro=trixie
purl	pkg:deb/debian/xen@4.14.3%2B32-g9de3671772-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.3%252B32-g9de3671772-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.14.6-1?distro=trixie

purl pkg:deb/debian/xen@4.14.6-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1tb8-t91c-63bp

vulnerability	VCID-26a9-9zz3-wfhh

vulnerability	VCID-2trm-w3ww-cfhk

vulnerability	VCID-3bw4-631f-e7h6

vulnerability	VCID-3se4-qv6j-xqfq

vulnerability	VCID-3vdg-5g64-wkbt

vulnerability	VCID-46ad-1k9n-j3hm

vulnerability	VCID-4cdt-ycjx-6ub4

vulnerability	VCID-4k7p-3g95-n7dm

vulnerability	VCID-4pra-prf3-1uff

vulnerability	VCID-4rmg-db7g-u3hs

vulnerability	VCID-5ktg-bhh1-ubbz

vulnerability	VCID-5u88-jt28-cfb6

vulnerability	VCID-6dax-cddv-7bbs

vulnerability	VCID-6jqj-2qwn-8qd9

vulnerability	VCID-8k1q-b2kj-w7hh

vulnerability	VCID-8tv5-zxmm-r3fk

vulnerability	VCID-97zm-r9b6-uqdu

vulnerability	VCID-b57c-x3pw-7fb7

vulnerability	VCID-bhdk-jmss-4qc8

vulnerability	VCID-byu1-7n9c-5fes

vulnerability	VCID-c4xu-szkm-1kh6

vulnerability	VCID-ee3z-24pr-kqcm

vulnerability	VCID-ejhc-6yqt-gkgv

vulnerability	VCID-evcg-2z3p-gbch

vulnerability	VCID-h9hz-vur7-kyhg

vulnerability	VCID-j22f-mbqe-a7dk

vulnerability	VCID-p2fk-8snj-x7dy

vulnerability	VCID-psaa-jdr7-e3fm

vulnerability	VCID-q3p3-tgay-6kcs

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-rdub-9bhg-nbc6

vulnerability	VCID-rk2f-yqbb-nyd2

vulnerability	VCID-rt5n-e4wq-p3gh

vulnerability	VCID-tjgh-waa3-wqgk

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-uv8m-bj4c-8fes

vulnerability	VCID-vv23-mvyn-87hg

vulnerability	VCID-wd4s-jxuf-skbp

vulnerability	VCID-wz1m-aeaf-nkg7

vulnerability	VCID-xqpz-y83m-4uc4

vulnerability	VCID-ye1t-qhtx-sucm

vulnerability	VCID-z9rm-9p2q-wfag

vulnerability	VCID-zkeg-d5d5-vbda

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

purl pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie

aliases CVE-2021-28705

risk_score 1.4

exploitability 0.5

weighted_severity 2.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-gdsj-4cbx-ufep

url VCID-xcvw-eex8-j3bf

vulnerability_id VCID-xcvw-eex8-j3bf

summary PoD operations on misaligned GFNs

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-28707

reference_id

reference_type

scores

value	0.00086
scoring_system	epss
scoring_elements	0.24654
published_at	2026-04-24T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24807
published_at	2026-04-01T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24885
published_at	2026-04-02T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24925
published_at	2026-04-04T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.247
published_at	2026-04-07T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24767
published_at	2026-04-08T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24813
published_at	2026-04-09T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24827
published_at	2026-04-11T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24787
published_at	2026-04-12T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.2473
published_at	2026-04-13T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24745
published_at	2026-04-16T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24737
published_at	2026-04-18T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24714
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-28707

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28702
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28702

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28704
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28704

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28705
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28705

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28706
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28706

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28707
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28707

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28708
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28708

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28709
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28709

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://security.gentoo.org/glsa/202402-07
reference_id	GLSA-202402-07
reference_type
scores
url	https://security.gentoo.org/glsa/202402-07

reference_url	https://xenbits.xen.org/xsa/advisory-388.html
reference_id	XSA-388
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-388.html

fixed_packages

url	pkg:deb/debian/xen@4.14.3%2B32-g9de3671772-1~deb11u1?distro=trixie
purl	pkg:deb/debian/xen@4.14.3%2B32-g9de3671772-1~deb11u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.3%252B32-g9de3671772-1~deb11u1%3Fdistro=trixie

url	pkg:deb/debian/xen@4.14.3%2B32-g9de3671772-1?distro=trixie
purl	pkg:deb/debian/xen@4.14.3%2B32-g9de3671772-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.3%252B32-g9de3671772-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.14.6-1?distro=trixie

purl pkg:deb/debian/xen@4.14.6-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1tb8-t91c-63bp

vulnerability	VCID-26a9-9zz3-wfhh

vulnerability	VCID-2trm-w3ww-cfhk

vulnerability	VCID-3bw4-631f-e7h6

vulnerability	VCID-3se4-qv6j-xqfq

vulnerability	VCID-3vdg-5g64-wkbt

vulnerability	VCID-46ad-1k9n-j3hm

vulnerability	VCID-4cdt-ycjx-6ub4

vulnerability	VCID-4k7p-3g95-n7dm

vulnerability	VCID-4pra-prf3-1uff

vulnerability	VCID-4rmg-db7g-u3hs

vulnerability	VCID-5ktg-bhh1-ubbz

vulnerability	VCID-5u88-jt28-cfb6

vulnerability	VCID-6dax-cddv-7bbs

vulnerability	VCID-6jqj-2qwn-8qd9

vulnerability	VCID-8k1q-b2kj-w7hh

vulnerability	VCID-8tv5-zxmm-r3fk

vulnerability	VCID-97zm-r9b6-uqdu

vulnerability	VCID-b57c-x3pw-7fb7

vulnerability	VCID-bhdk-jmss-4qc8

vulnerability	VCID-byu1-7n9c-5fes

vulnerability	VCID-c4xu-szkm-1kh6

vulnerability	VCID-ee3z-24pr-kqcm

vulnerability	VCID-ejhc-6yqt-gkgv

vulnerability	VCID-evcg-2z3p-gbch

vulnerability	VCID-h9hz-vur7-kyhg

vulnerability	VCID-j22f-mbqe-a7dk

vulnerability	VCID-p2fk-8snj-x7dy

vulnerability	VCID-psaa-jdr7-e3fm

vulnerability	VCID-q3p3-tgay-6kcs

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-rdub-9bhg-nbc6

vulnerability	VCID-rk2f-yqbb-nyd2

vulnerability	VCID-rt5n-e4wq-p3gh

vulnerability	VCID-tjgh-waa3-wqgk

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-uv8m-bj4c-8fes

vulnerability	VCID-vv23-mvyn-87hg

vulnerability	VCID-wd4s-jxuf-skbp

vulnerability	VCID-wz1m-aeaf-nkg7

vulnerability	VCID-xqpz-y83m-4uc4

vulnerability	VCID-ye1t-qhtx-sucm

vulnerability	VCID-z9rm-9p2q-wfag

vulnerability	VCID-zkeg-d5d5-vbda

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

purl pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie

aliases CVE-2021-28707

risk_score 1.4

exploitability 0.5

weighted_severity 2.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-xcvw-eex8-j3bf

url VCID-z3qj-cnxq-pkgq

vulnerability_id VCID-z3qj-cnxq-pkgq

summary guests may exceed their designated memory limit

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-28706

reference_id

reference_type

scores

value	0.00155
scoring_system	epss
scoring_elements	0.35982
published_at	2026-04-24T12:55:00Z

value	0.00155
scoring_system	epss
scoring_elements	0.3616
published_at	2026-04-01T12:55:00Z

value	0.00155
scoring_system	epss
scoring_elements	0.36355
published_at	2026-04-02T12:55:00Z

value	0.00155
scoring_system	epss
scoring_elements	0.36388
published_at	2026-04-04T12:55:00Z

value	0.00155
scoring_system	epss
scoring_elements	0.36222
published_at	2026-04-07T12:55:00Z

value	0.00155
scoring_system	epss
scoring_elements	0.36271
published_at	2026-04-08T12:55:00Z

value	0.00155
scoring_system	epss
scoring_elements	0.36294
published_at	2026-04-09T12:55:00Z

value	0.00155
scoring_system	epss
scoring_elements	0.36299
published_at	2026-04-11T12:55:00Z

value	0.00155
scoring_system	epss
scoring_elements	0.36262
published_at	2026-04-12T12:55:00Z

value	0.00155
scoring_system	epss
scoring_elements	0.36238
published_at	2026-04-13T12:55:00Z

value	0.00155
scoring_system	epss
scoring_elements	0.36282
published_at	2026-04-16T12:55:00Z

value	0.00155
scoring_system	epss
scoring_elements	0.36266
published_at	2026-04-18T12:55:00Z

value	0.00155
scoring_system	epss
scoring_elements	0.36214
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-28706

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28702
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28702

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28704
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28704

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28705
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28705

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28706
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28706

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28707
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28707

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28708
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28708

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28709
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28709

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://security.gentoo.org/glsa/202402-07
reference_id	GLSA-202402-07
reference_type
scores
url	https://security.gentoo.org/glsa/202402-07

reference_url	https://xenbits.xen.org/xsa/advisory-385.html
reference_id	XSA-385
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-385.html

fixed_packages

url	pkg:deb/debian/xen@4.14.3%2B32-g9de3671772-1~deb11u1?distro=trixie
purl	pkg:deb/debian/xen@4.14.3%2B32-g9de3671772-1~deb11u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.3%252B32-g9de3671772-1~deb11u1%3Fdistro=trixie

url	pkg:deb/debian/xen@4.14.3%2B32-g9de3671772-1?distro=trixie
purl	pkg:deb/debian/xen@4.14.3%2B32-g9de3671772-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.3%252B32-g9de3671772-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.14.6-1?distro=trixie

purl pkg:deb/debian/xen@4.14.6-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1tb8-t91c-63bp

vulnerability	VCID-26a9-9zz3-wfhh

vulnerability	VCID-2trm-w3ww-cfhk

vulnerability	VCID-3bw4-631f-e7h6

vulnerability	VCID-3se4-qv6j-xqfq

vulnerability	VCID-3vdg-5g64-wkbt

vulnerability	VCID-46ad-1k9n-j3hm

vulnerability	VCID-4cdt-ycjx-6ub4

vulnerability	VCID-4k7p-3g95-n7dm

vulnerability	VCID-4pra-prf3-1uff

vulnerability	VCID-4rmg-db7g-u3hs

vulnerability	VCID-5ktg-bhh1-ubbz

vulnerability	VCID-5u88-jt28-cfb6

vulnerability	VCID-6dax-cddv-7bbs

vulnerability	VCID-6jqj-2qwn-8qd9

vulnerability	VCID-8k1q-b2kj-w7hh

vulnerability	VCID-8tv5-zxmm-r3fk

vulnerability	VCID-97zm-r9b6-uqdu

vulnerability	VCID-b57c-x3pw-7fb7

vulnerability	VCID-bhdk-jmss-4qc8

vulnerability	VCID-byu1-7n9c-5fes

vulnerability	VCID-c4xu-szkm-1kh6

vulnerability	VCID-ee3z-24pr-kqcm

vulnerability	VCID-ejhc-6yqt-gkgv

vulnerability	VCID-evcg-2z3p-gbch

vulnerability	VCID-h9hz-vur7-kyhg

vulnerability	VCID-j22f-mbqe-a7dk

vulnerability	VCID-p2fk-8snj-x7dy

vulnerability	VCID-psaa-jdr7-e3fm

vulnerability	VCID-q3p3-tgay-6kcs

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-rdub-9bhg-nbc6

vulnerability	VCID-rk2f-yqbb-nyd2

vulnerability	VCID-rt5n-e4wq-p3gh

vulnerability	VCID-tjgh-waa3-wqgk

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-uv8m-bj4c-8fes

vulnerability	VCID-vv23-mvyn-87hg

vulnerability	VCID-wd4s-jxuf-skbp

vulnerability	VCID-wz1m-aeaf-nkg7

vulnerability	VCID-xqpz-y83m-4uc4

vulnerability	VCID-ye1t-qhtx-sucm

vulnerability	VCID-z9rm-9p2q-wfag

vulnerability	VCID-zkeg-d5d5-vbda

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

purl pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie

aliases CVE-2021-28706, XSA-385

risk_score 1.4

exploitability 0.5

weighted_severity 2.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-z3qj-cnxq-pkgq

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.3%252B32-g9de3671772-1~deb11u1%3Fdistro=trixie

Package Instance