Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/164633?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/164633?format=api", "vulnerability_id": "VCID-geha-8rhu-x7f9", "summary": "Uncontrolled search path in some Intel(R) NUC Chaco Canyon BIOS update software before version iFlashV Windows 5.13.00.2105 may allow an authenticated user to potentially enable escalation of privilege via local access.", "aliases": [ { "alias": "CVE-2022-38101" } ], "fixed_packages": [], "affected_packages": [], "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-38101", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20765", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20941", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-38101" }, { "reference_url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00780.html", "reference_id": "intel-sa-00780.html", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-01-24T17:44:00Z/" } ], "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00780.html" } ], "weaknesses": [ { "cwe_id": 427, "name": "Uncontrolled Search Path Element", "description": "The product uses a fixed or controlled search path to find resources, but one or more locations in that path can be under the control of unintended actors." } ], "exploits": [], "severity_range_score": "6.7 - 6.7", "exploitability": null, "weighted_severity": null, "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-geha-8rhu-x7f9" }