Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/322133?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/322133?format=api", "vulnerability_id": "VCID-6c9t-f9wj-cbbs", "summary": "", "aliases": [ { "alias": "CVE-2026-22796" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/254986?format=api", "purl": "pkg:apk/alpine/openssl@3.0.19-r0?arch=aarch64&distroversion=v3.17&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.0.19-r0%3Farch=aarch64&distroversion=v3.17&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/254987?format=api", "purl": "pkg:apk/alpine/openssl@3.0.19-r0?arch=armhf&distroversion=v3.17&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.0.19-r0%3Farch=armhf&distroversion=v3.17&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/254988?format=api", "purl": "pkg:apk/alpine/openssl@3.0.19-r0?arch=armv7&distroversion=v3.17&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.0.19-r0%3Farch=armv7&distroversion=v3.17&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/254989?format=api", "purl": "pkg:apk/alpine/openssl@3.0.19-r0?arch=ppc64le&distroversion=v3.17&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.0.19-r0%3Farch=ppc64le&distroversion=v3.17&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/254990?format=api", "purl": "pkg:apk/alpine/openssl@3.0.19-r0?arch=s390x&distroversion=v3.17&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.0.19-r0%3Farch=s390x&distroversion=v3.17&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/254992?format=api", "purl": "pkg:apk/alpine/openssl@3.0.19-r0?arch=x86_64&distroversion=v3.17&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.0.19-r0%3Farch=x86_64&distroversion=v3.17&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/254991?format=api", "purl": "pkg:apk/alpine/openssl@3.0.19-r0?arch=x86&distroversion=v3.17&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.0.19-r0%3Farch=x86&distroversion=v3.17&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/254697?format=api", "purl": "pkg:apk/alpine/openssl@3.3.6-r0?arch=aarch64&distroversion=v3.20&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.3.6-r0%3Farch=aarch64&distroversion=v3.20&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/254698?format=api", "purl": "pkg:apk/alpine/openssl@3.3.6-r0?arch=armhf&distroversion=v3.20&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.3.6-r0%3Farch=armhf&distroversion=v3.20&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/254699?format=api", "purl": "pkg:apk/alpine/openssl@3.3.6-r0?arch=armv7&distroversion=v3.20&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.3.6-r0%3Farch=armv7&distroversion=v3.20&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/254700?format=api", "purl": "pkg:apk/alpine/openssl@3.3.6-r0?arch=ppc64le&distroversion=v3.20&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.3.6-r0%3Farch=ppc64le&distroversion=v3.20&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/254701?format=api", "purl": "pkg:apk/alpine/openssl@3.3.6-r0?arch=riscv64&distroversion=v3.20&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.3.6-r0%3Farch=riscv64&distroversion=v3.20&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/254702?format=api", "purl": "pkg:apk/alpine/openssl@3.3.6-r0?arch=s390x&distroversion=v3.20&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.3.6-r0%3Farch=s390x&distroversion=v3.20&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/254704?format=api", "purl": "pkg:apk/alpine/openssl@3.3.6-r0?arch=x86_64&distroversion=v3.20&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.3.6-r0%3Farch=x86_64&distroversion=v3.20&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/254703?format=api", "purl": "pkg:apk/alpine/openssl@3.3.6-r0?arch=x86&distroversion=v3.20&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.3.6-r0%3Farch=x86&distroversion=v3.20&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/201221?format=api", "purl": "pkg:deb/debian/openssl@1.1.1w-0%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7y4x-nrsa-mbb3" }, { "vulnerability": "VCID-a6ex-h8k7-8fbx" }, { "vulnerability": "VCID-cccj-zqe2-1bbw" }, { "vulnerability": "VCID-mnvc-6qng-ufbb" }, { "vulnerability": "VCID-q64m-j51z-6fhu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@1.1.1w-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/201344?format=api", "purl": "pkg:deb/debian/openssl@1.1.1w-0%2Bdeb11u5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@1.1.1w-0%252Bdeb11u5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/201341?format=api", "purl": "pkg:deb/debian/openssl@3.0.18-1~deb12u2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.0.18-1~deb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/201219?format=api", "purl": "pkg:deb/debian/openssl@3.0.20-1~deb12u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cccj-zqe2-1bbw" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.0.20-1~deb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/201340?format=api", "purl": "pkg:deb/debian/openssl@3.5.4-1~deb13u2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.5.4-1~deb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/201339?format=api", "purl": "pkg:deb/debian/openssl@3.5.5-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.5.5-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/201223?format=api", "purl": "pkg:deb/debian/openssl@3.5.6-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.5.6-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/201222?format=api", "purl": "pkg:deb/debian/openssl@3.6.2-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.6.2-1%3Fdistro=trixie" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/113673?format=api", "purl": "pkg:rpm/redhat/openssl@1:3.5.1-7?arch=el10_1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2e7a-p1jj-93eu" }, { "vulnerability": "VCID-3fzu-b8xk-gfa7" }, { "vulnerability": "VCID-6c9t-f9wj-cbbs" }, { "vulnerability": "VCID-9u2f-m6r6-yqev" }, { "vulnerability": "VCID-bvz5-dj4f-gbbz" }, { "vulnerability": "VCID-ecac-wyth-3fgd" }, { "vulnerability": "VCID-fpxe-6bps-eke6" }, { "vulnerability": "VCID-m28e-hawn-wqhh" }, { "vulnerability": "VCID-pxab-d41r-m3c2" }, { "vulnerability": "VCID-pxaj-7epr-pqbs" }, { "vulnerability": "VCID-rkwm-zkyy-bbfu" }, { "vulnerability": "VCID-xs57-nrgs-fka9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openssl@1:3.5.1-7%3Farch=el10_1" }, { "url": "http://public2.vulnerablecode.io/api/packages/113670?format=api", "purl": "pkg:rpm/redhat/openssl@1:3.5.1-7?arch=el9_7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2e7a-p1jj-93eu" }, { "vulnerability": "VCID-3fzu-b8xk-gfa7" }, { "vulnerability": "VCID-6c9t-f9wj-cbbs" }, { "vulnerability": "VCID-9u2f-m6r6-yqev" }, { "vulnerability": "VCID-bvz5-dj4f-gbbz" }, { "vulnerability": "VCID-ecac-wyth-3fgd" }, { "vulnerability": "VCID-fpxe-6bps-eke6" }, { "vulnerability": "VCID-m28e-hawn-wqhh" }, { "vulnerability": "VCID-pxab-d41r-m3c2" }, { "vulnerability": "VCID-pxaj-7epr-pqbs" }, { "vulnerability": "VCID-rkwm-zkyy-bbfu" }, { "vulnerability": "VCID-xs57-nrgs-fka9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openssl@1:3.5.1-7%3Farch=el9_7" }, { "url": "http://public2.vulnerablecode.io/api/packages/110134?format=api", "purl": "pkg:rpm/redhat/openssl-main@3.5.6-0.1?arch=hum1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2e7a-p1jj-93eu" }, { "vulnerability": "VCID-3fzu-b8xk-gfa7" }, { "vulnerability": "VCID-5cpy-4cch-uqhe" }, { "vulnerability": "VCID-6c9t-f9wj-cbbs" }, { "vulnerability": "VCID-7xw3-uquz-v7ek" }, { "vulnerability": "VCID-7y4x-nrsa-mbb3" }, { "vulnerability": "VCID-9u2f-m6r6-yqev" }, { "vulnerability": "VCID-a6ex-h8k7-8fbx" }, { "vulnerability": "VCID-bvz5-dj4f-gbbz" }, { "vulnerability": "VCID-ecac-wyth-3fgd" }, { "vulnerability": "VCID-f94y-yeah-y7cu" }, { "vulnerability": "VCID-fpxe-6bps-eke6" }, { "vulnerability": "VCID-hh45-myn6-83ex" }, { "vulnerability": "VCID-m28e-hawn-wqhh" }, { "vulnerability": "VCID-mg72-e4j7-4yax" }, { "vulnerability": "VCID-mnvc-6qng-ufbb" }, { "vulnerability": "VCID-pxab-d41r-m3c2" }, { "vulnerability": "VCID-pxaj-7epr-pqbs" }, { "vulnerability": "VCID-q64m-j51z-6fhu" }, { "vulnerability": "VCID-q6ke-1n27-53f1" }, { "vulnerability": "VCID-rkwm-zkyy-bbfu" }, { "vulnerability": "VCID-xs57-nrgs-fka9" }, { "vulnerability": "VCID-y7cx-fpjq-87at" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openssl-main@3.5.6-0.1%3Farch=hum1" } ], "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-22796.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-22796.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-22796", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0052", "scoring_system": "epss", "scoring_elements": "0.6713", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-22796" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://openssl-library.org/news/secadv/20260127.txt", "reference_id": "20260127.txt", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-01-27T16:27:50Z/" } ], "url": "https://openssl-library.org/news/secadv/20260127.txt" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2430390", "reference_id": "2430390", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2430390" }, { "reference_url": "https://github.com/openssl/openssl/commit/2502e7b7d4c0cf4f972a881641fe09edc67aeec4", "reference_id": "2502e7b7d4c0cf4f972a881641fe09edc67aeec4", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-01-27T16:27:50Z/" } ], "url": "https://github.com/openssl/openssl/commit/2502e7b7d4c0cf4f972a881641fe09edc67aeec4" }, { "reference_url": "https://github.com/openssl/openssl/commit/572844beca95068394c916626a6d3a490f831a49", "reference_id": "572844beca95068394c916626a6d3a490f831a49", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-01-27T16:27:50Z/" } ], "url": "https://github.com/openssl/openssl/commit/572844beca95068394c916626a6d3a490f831a49" }, { "reference_url": "https://github.com/openssl/openssl/commit/7bbca05be55b129651d9df4bdb92becc45002c12", "reference_id": "7bbca05be55b129651d9df4bdb92becc45002c12", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-01-27T16:27:50Z/" } ], "url": "https://github.com/openssl/openssl/commit/7bbca05be55b129651d9df4bdb92becc45002c12" }, { "reference_url": "https://github.com/openssl/openssl/commit/eeee3cbd4d682095ed431052f00403004596373e", "reference_id": "eeee3cbd4d682095ed431052f00403004596373e", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-01-27T16:27:50Z/" } ], "url": "https://github.com/openssl/openssl/commit/eeee3cbd4d682095ed431052f00403004596373e" }, { "reference_url": "https://github.com/openssl/openssl/commit/ef2fb66ec571564d64d1c74a12e388a2a54d05d2", "reference_id": "ef2fb66ec571564d64d1c74a12e388a2a54d05d2", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-01-27T16:27:50Z/" } ], "url": "https://github.com/openssl/openssl/commit/ef2fb66ec571564d64d1c74a12e388a2a54d05d2" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:1472", "reference_id": "RHSA-2026:1472", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:1472" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:1473", "reference_id": "RHSA-2026:1473", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:1473" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:1736", "reference_id": "RHSA-2026:1736", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:1736" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:2485", "reference_id": "RHSA-2026:2485", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:2485" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:2563", "reference_id": "RHSA-2026:2563", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:2563" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:3228", "reference_id": "RHSA-2026:3228", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:3228" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:4943", "reference_id": "RHSA-2026:4943", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:4943" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:7261", "reference_id": "RHSA-2026:7261", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:7261" }, { "reference_url": "https://usn.ubuntu.com/7980-1/", "reference_id": "USN-7980-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7980-1/" }, { "reference_url": "https://usn.ubuntu.com/7980-2/", "reference_id": "USN-7980-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7980-2/" } ], "weaknesses": [ { "cwe_id": 1287, "name": "Improper Validation of Specified Type of Input", "description": "The product receives input that is expected to be of a certain type, but it does not validate or incorrectly validates that the input is actually of the expected type." }, { "cwe_id": 754, "name": "Improper Check for Unusual or Exceptional Conditions", "description": "The product does not check or incorrectly checks for unusual or exceptional conditions that are not expected to occur frequently during day to day operation of the product." } ], "exploits": [], "severity_range_score": "5.3 - 5.9", "exploitability": "0.5", "weighted_severity": "5.3", "risk_score": 2.6, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6c9t-f9wj-cbbs" }