Django REST framework
Api Root
Package List
Package Instance
Format
json
api
admin
Package Instance
Lookup for vulnerable packages by Package URL.
Purl
pkg:deb/debian/libexif@0.6.22-3%2Bdeb11u1?distro=trixie
Type
deb
Namespace
debian
Name
libexif
Version
0.6.22-3+deb11u1
Qualifiers
distro
trixie
Subpath
Is_vulnerable
false
Next_non_vulnerable_version
0.6.24-1+deb12u1
Latest_non_vulnerable_version
0.6.26-1
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url
VCID-6jqb-s4w9-y3af
vulnerability_id
VCID-6jqb-s4w9-y3af
summary
libexif: libexif: Information disclosure and crashes via integer overflow in Nikon MakerNote handling
references
0
reference_url
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-40385.json
reference_id
reference_type
scores
0
value
4.0
scoring_system
cvssv3
scoring_elements
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L
url
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-40385.json
1
reference_url
https://api.first.org/data/v1/epss?cve=CVE-2026-40385
reference_id
reference_type
scores
0
value
0.00016
scoring_system
epss
scoring_elements
0.03638
published_at
2026-06-08T12:55:00Z
1
value
0.00016
scoring_system
epss
scoring_elements
0.03669
published_at
2026-06-06T12:55:00Z
2
value
0.00016
scoring_system
epss
scoring_elements
0.03662
published_at
2026-06-07T12:55:00Z
3
value
0.00019
scoring_system
epss
scoring_elements
0.05281
published_at
2026-06-05T12:55:00Z
url
https://api.first.org/data/v1/epss?cve=CVE-2026-40385
2
reference_url
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-40385
reference_id
reference_type
scores
url
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-40385
3
reference_url
https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value
4.4
scoring_system
cvssv3.1
scoring_elements
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L
url
https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1133922
reference_id
1133922
reference_type
scores
url
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1133922
5
reference_url
https://bugzilla.redhat.com/show_bug.cgi?id=2457687
reference_id
2457687
reference_type
scores
url
https://bugzilla.redhat.com/show_bug.cgi?id=2457687
6
reference_url
https://github.com/libexif/libexif/commit/93003b93e50b3d259bd2227d8775b73a53c35d58
reference_id
93003b93e50b3d259bd2227d8775b73a53c35d58
reference_type
scores
0
value
4
scoring_system
cvssv3.1
scoring_elements
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L
1
value
Track
scoring_system
ssvc
scoring_elements
SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-14T15:18:42Z/
url
https://github.com/libexif/libexif/commit/93003b93e50b3d259bd2227d8775b73a53c35d58
7
reference_url
https://access.redhat.com/errata/RHSA-2026:20929
reference_id
RHSA-2026:20929
reference_type
scores
url
https://access.redhat.com/errata/RHSA-2026:20929
8
reference_url
https://access.redhat.com/errata/RHSA-2026:22553
reference_id
RHSA-2026:22553
reference_type
scores
url
https://access.redhat.com/errata/RHSA-2026:22553
fixed_packages
0
url
pkg:deb/debian/libexif@0.6.22-3?distro=trixie
purl
pkg:deb/debian/libexif@0.6.22-3?distro=trixie
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:deb/debian/libexif@0.6.22-3%3Fdistro=trixie
1
url
pkg:deb/debian/libexif@0.6.22-3%2Bdeb11u1?distro=trixie
purl
pkg:deb/debian/libexif@0.6.22-3%2Bdeb11u1?distro=trixie
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:deb/debian/libexif@0.6.22-3%252Bdeb11u1%3Fdistro=trixie
2
url
pkg:deb/debian/libexif@0.6.24-1%2Bdeb12u1?distro=trixie
purl
pkg:deb/debian/libexif@0.6.24-1%2Bdeb12u1?distro=trixie
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:deb/debian/libexif@0.6.24-1%252Bdeb12u1%3Fdistro=trixie
3
url
pkg:deb/debian/libexif@0.6.25-1%2Bdeb13u1?distro=trixie
purl
pkg:deb/debian/libexif@0.6.25-1%2Bdeb13u1?distro=trixie
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:deb/debian/libexif@0.6.25-1%252Bdeb13u1%3Fdistro=trixie
4
url
pkg:deb/debian/libexif@0.6.26-1?distro=trixie
purl
pkg:deb/debian/libexif@0.6.26-1?distro=trixie
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:deb/debian/libexif@0.6.26-1%3Fdistro=trixie
aliases
CVE-2026-40385
risk_score
1.8
exploitability
0.5
weighted_severity
3.6
resource_url
http://public2.vulnerablecode.io/vulnerabilities/VCID-6jqb-s4w9-y3af
1
url
VCID-huqq-ss1g-jue2
vulnerability_id
VCID-huqq-ss1g-jue2
summary
libexif: libexif: Buffer overwrite via integer underflow in MakerNotes decoding
references
0
reference_url
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-32775.json
reference_id
reference_type
scores
0
value
5.3
scoring_system
cvssv3
scoring_elements
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
url
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-32775.json
1
reference_url
https://api.first.org/data/v1/epss?cve=CVE-2026-32775
reference_id
reference_type
scores
0
value
8e-05
scoring_system
epss
scoring_elements
0.00821
published_at
2026-06-08T12:55:00Z
1
value
8e-05
scoring_system
epss
scoring_elements
0.00822
published_at
2026-06-05T12:55:00Z
2
value
8e-05
scoring_system
epss
scoring_elements
0.00828
published_at
2026-06-06T12:55:00Z
3
value
8e-05
scoring_system
epss
scoring_elements
0.00825
published_at
2026-06-07T12:55:00Z
url
https://api.first.org/data/v1/epss?cve=CVE-2026-32775
2
reference_url
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-32775
reference_id
reference_type
scores
url
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-32775
3
reference_url
https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value
5.3
scoring_system
cvssv3.1
scoring_elements
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
url
https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1131116
reference_id
1131116
reference_type
scores
url
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1131116
5
reference_url
https://bugzilla.redhat.com/show_bug.cgi?id=2447881
reference_id
2447881
reference_type
scores
url
https://bugzilla.redhat.com/show_bug.cgi?id=2447881
6
reference_url
https://github.com/libexif/libexif/issues/247
reference_id
247
reference_type
scores
0
value
7.4
scoring_system
cvssv3.1
scoring_elements
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value
Track*
scoring_system
ssvc
scoring_elements
SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2026-03-16T13:45:37Z/
url
https://github.com/libexif/libexif/issues/247
7
reference_url
https://github.com/libexif/libexif/commit/7df372e9d31d7c993a22b913c813a5f7ec4f3692
reference_id
7df372e9d31d7c993a22b913c813a5f7ec4f3692
reference_type
scores
0
value
7.4
scoring_system
cvssv3.1
scoring_elements
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value
Track*
scoring_system
ssvc
scoring_elements
SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2026-03-16T13:45:37Z/
url
https://github.com/libexif/libexif/commit/7df372e9d31d7c993a22b913c813a5f7ec4f3692
fixed_packages
0
url
pkg:deb/debian/libexif@0.6.22-3?distro=trixie
purl
pkg:deb/debian/libexif@0.6.22-3?distro=trixie
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:deb/debian/libexif@0.6.22-3%3Fdistro=trixie
1
url
pkg:deb/debian/libexif@0.6.22-3%2Bdeb11u1?distro=trixie
purl
pkg:deb/debian/libexif@0.6.22-3%2Bdeb11u1?distro=trixie
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:deb/debian/libexif@0.6.22-3%252Bdeb11u1%3Fdistro=trixie
2
url
pkg:deb/debian/libexif@0.6.24-1%2Bdeb12u1?distro=trixie
purl
pkg:deb/debian/libexif@0.6.24-1%2Bdeb12u1?distro=trixie
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:deb/debian/libexif@0.6.24-1%252Bdeb12u1%3Fdistro=trixie
3
url
pkg:deb/debian/libexif@0.6.25-1%2Bdeb13u1?distro=trixie
purl
pkg:deb/debian/libexif@0.6.25-1%2Bdeb13u1?distro=trixie
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:deb/debian/libexif@0.6.25-1%252Bdeb13u1%3Fdistro=trixie
4
url
pkg:deb/debian/libexif@0.6.26-1?distro=trixie
purl
pkg:deb/debian/libexif@0.6.26-1?distro=trixie
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:deb/debian/libexif@0.6.26-1%3Fdistro=trixie
aliases
CVE-2026-32775
risk_score
3.4
exploitability
0.5
weighted_severity
6.7
resource_url
http://public2.vulnerablecode.io/vulnerabilities/VCID-huqq-ss1g-jue2
2
url
VCID-kmqk-uta9-83e7
vulnerability_id
VCID-kmqk-uta9-83e7
summary
libexif: libexif: Denial of Service and information disclosure via integer underflow in MakerNote decoding
references
0
reference_url
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-40386.json
reference_id
reference_type
scores
0
value
4.0
scoring_system
cvssv3
scoring_elements
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L
url
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-40386.json
1
reference_url
https://api.first.org/data/v1/epss?cve=CVE-2026-40386
reference_id
reference_type
scores
0
value
6e-05
scoring_system
epss
scoring_elements
0.00458
published_at
2026-06-08T12:55:00Z
1
value
6e-05
scoring_system
epss
scoring_elements
0.00464
published_at
2026-06-06T12:55:00Z
2
value
6e-05
scoring_system
epss
scoring_elements
0.00461
published_at
2026-06-07T12:55:00Z
3
value
8e-05
scoring_system
epss
scoring_elements
0.00714
published_at
2026-06-05T12:55:00Z
url
https://api.first.org/data/v1/epss?cve=CVE-2026-40386
2
reference_url
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-40386
reference_id
reference_type
scores
url
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-40386
3
reference_url
https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value
4.4
scoring_system
cvssv3.1
scoring_elements
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L
url
https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1133923
reference_id
1133923
reference_type
scores
url
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1133923
5
reference_url
https://bugzilla.redhat.com/show_bug.cgi?id=2457689
reference_id
2457689
reference_type
scores
url
https://bugzilla.redhat.com/show_bug.cgi?id=2457689
6
reference_url
https://github.com/libexif/libexif/commit/dc6eac6e9655d14d0779d99e82d0f5f442d2f34b
reference_id
dc6eac6e9655d14d0779d99e82d0f5f442d2f34b
reference_type
scores
0
value
4
scoring_system
cvssv3.1
scoring_elements
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L
1
value
Track
scoring_system
ssvc
scoring_elements
SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-14T15:18:57Z/
url
https://github.com/libexif/libexif/commit/dc6eac6e9655d14d0779d99e82d0f5f442d2f34b
7
reference_url
https://access.redhat.com/errata/RHSA-2026:20929
reference_id
RHSA-2026:20929
reference_type
scores
url
https://access.redhat.com/errata/RHSA-2026:20929
8
reference_url
https://access.redhat.com/errata/RHSA-2026:22529
reference_id
RHSA-2026:22529
reference_type
scores
url
https://access.redhat.com/errata/RHSA-2026:22529
9
reference_url
https://access.redhat.com/errata/RHSA-2026:22553
reference_id
RHSA-2026:22553
reference_type
scores
url
https://access.redhat.com/errata/RHSA-2026:22553
fixed_packages
0
url
pkg:deb/debian/libexif@0.6.22-3?distro=trixie
purl
pkg:deb/debian/libexif@0.6.22-3?distro=trixie
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:deb/debian/libexif@0.6.22-3%3Fdistro=trixie
1
url
pkg:deb/debian/libexif@0.6.22-3%2Bdeb11u1?distro=trixie
purl
pkg:deb/debian/libexif@0.6.22-3%2Bdeb11u1?distro=trixie
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:deb/debian/libexif@0.6.22-3%252Bdeb11u1%3Fdistro=trixie
2
url
pkg:deb/debian/libexif@0.6.24-1%2Bdeb12u1?distro=trixie
purl
pkg:deb/debian/libexif@0.6.24-1%2Bdeb12u1?distro=trixie
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:deb/debian/libexif@0.6.24-1%252Bdeb12u1%3Fdistro=trixie
3
url
pkg:deb/debian/libexif@0.6.25-1%2Bdeb13u1?distro=trixie
purl
pkg:deb/debian/libexif@0.6.25-1%2Bdeb13u1?distro=trixie
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:deb/debian/libexif@0.6.25-1%252Bdeb13u1%3Fdistro=trixie
4
url
pkg:deb/debian/libexif@0.6.26-1?distro=trixie
purl
pkg:deb/debian/libexif@0.6.26-1?distro=trixie
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:deb/debian/libexif@0.6.26-1%3Fdistro=trixie
aliases
CVE-2026-40386
risk_score
1.8
exploitability
0.5
weighted_severity
3.6
resource_url
http://public2.vulnerablecode.io/vulnerabilities/VCID-kmqk-uta9-83e7
Risk_score
null
Resource_url
http://public2.vulnerablecode.io/packages/pkg:deb/debian/libexif@0.6.22-3%252Bdeb11u1%3Fdistro=trixie
×
Create
None
×
Edit
None