Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/4866?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4866?format=api", "vulnerability_id": "VCID-f67a-ybc4-x3c2", "summary": "privilege escalation", "aliases": [ { "alias": "CVE-2022-2319" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/2006?format=api", "purl": "pkg:alpm/archlinux/xorg-server@21.1.4-1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/xorg-server@21.1.4-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/136485?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136484?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.4-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.4-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-abhy-pfqz-efa2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136815?format=api", "purl": "pkg:deb/debian/xwayland@2:22.1.3-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:22.1.3-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136807?format=api", "purl": "pkg:deb/debian/xwayland@2:22.1.9-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:22.1.9-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136813?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/194187?format=api", "purl": "pkg:ebuild/x11-base/xorg-server@21.1.4", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/x11-base/xorg-server@21.1.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/194188?format=api", "purl": "pkg:ebuild/x11-base/xwayland@21.1.4", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/x11-base/xwayland@21.1.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/194189?format=api", "purl": "pkg:ebuild/x11-base/xwayland@22.1.3", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/x11-base/xwayland@22.1.3" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/2005?format=api", "purl": "pkg:alpm/archlinux/xorg-server@21.1.3-7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/xorg-server@21.1.3-7" }, { "url": "http://public2.vulnerablecode.io/api/packages/130863?format=api", "purl": "pkg:rpm/redhat/xorg-x11-server@1.20.4-18?arch=el7_9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/xorg-x11-server@1.20.4-18%3Farch=el7_9" }, { "url": "http://public2.vulnerablecode.io/api/packages/130862?format=api", "purl": "pkg:rpm/redhat/xorg-x11-server@1.20.11-9?arch=el8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/xorg-x11-server@1.20.11-9%3Farch=el8" }, { "url": "http://public2.vulnerablecode.io/api/packages/130865?format=api", "purl": "pkg:rpm/redhat/xorg-x11-server@1.20.11-11?arch=el9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/xorg-x11-server@1.20.11-11%3Farch=el9" }, { "url": "http://public2.vulnerablecode.io/api/packages/130864?format=api", "purl": "pkg:rpm/redhat/xorg-x11-server-Xwayland@21.1.3-3?arch=el9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/xorg-x11-server-Xwayland@21.1.3-3%3Farch=el9" }, { "url": "http://public2.vulnerablecode.io/api/packages/130861?format=api", "purl": "pkg:rpm/redhat/xorg-x11-server-Xwayland@21.1.3-6?arch=el8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/xorg-x11-server-Xwayland@21.1.3-6%3Farch=el8" } ], "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2319.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2319.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2319", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11235", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2319" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014903", "reference_id": "1014903", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014903" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2106671", "reference_id": "2106671", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2106671" }, { "reference_url": "https://security.archlinux.org/AVG-2770", "reference_id": "AVG-2770", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2770" }, { "reference_url": "https://security.gentoo.org/glsa/202210-30", "reference_id": "GLSA-202210-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202210-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5905", "reference_id": "RHSA-2022:5905", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5905" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7583", "reference_id": "RHSA-2022:7583", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7583" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8221", "reference_id": "RHSA-2022:8221", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8221" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8222", "reference_id": "RHSA-2022:8222", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8222" } ], "weaknesses": [ { "cwe_id": 1320, "name": "Improper Protection for Outbound Error Messages and Alert Signals", "description": "Untrusted agents can disable alerts about signal conditions exceeding limits or the response mechanism that handles such alerts." } ], "exploits": [], "severity_range_score": "7.0 - 8.9", "exploitability": "0.5", "weighted_severity": "8.0", "risk_score": 4.0, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-f67a-ybc4-x3c2" }