Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:deb/debian/grub2@2.06-3~deb11u2
Typedeb
Namespacedebian
Namegrub2
Version2.06-3~deb11u2
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version2.06-13+deb12u2
Latest_non_vulnerable_version2.14-2
Affected_by_vulnerabilities
0
url VCID-33ec-pjax-nkak
vulnerability_id VCID-33ec-pjax-nkak
summary Multiple vulnerabilities have been discoverd in GRUB, which may lead to secure boot circumvention or code execution.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3775.json
reference_id
reference_type
scores
0
value 7.1
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3775.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-3775
reference_id
reference_type
scores
0
value 0.00078
scoring_system epss
scoring_elements 0.22987
published_at 2026-05-12T12:55:00Z
1
value 0.00078
scoring_system epss
scoring_elements 0.23205
published_at 2026-04-11T12:55:00Z
2
value 0.00078
scoring_system epss
scoring_elements 0.23168
published_at 2026-04-12T12:55:00Z
3
value 0.00078
scoring_system epss
scoring_elements 0.2311
published_at 2026-04-13T12:55:00Z
4
value 0.00078
scoring_system epss
scoring_elements 0.23124
published_at 2026-04-16T12:55:00Z
5
value 0.00078
scoring_system epss
scoring_elements 0.23116
published_at 2026-04-18T12:55:00Z
6
value 0.00078
scoring_system epss
scoring_elements 0.23003
published_at 2026-05-09T12:55:00Z
7
value 0.00078
scoring_system epss
scoring_elements 0.2297
published_at 2026-05-11T12:55:00Z
8
value 0.0008
scoring_system epss
scoring_elements 0.2369
published_at 2026-04-02T12:55:00Z
9
value 0.0008
scoring_system epss
scoring_elements 0.23732
published_at 2026-04-04T12:55:00Z
10
value 0.0008
scoring_system epss
scoring_elements 0.23513
published_at 2026-04-07T12:55:00Z
11
value 0.0008
scoring_system epss
scoring_elements 0.23584
published_at 2026-04-08T12:55:00Z
12
value 0.0008
scoring_system epss
scoring_elements 0.2363
published_at 2026-04-09T12:55:00Z
13
value 0.00083
scoring_system epss
scoring_elements 0.23961
published_at 2026-04-29T12:55:00Z
14
value 0.00083
scoring_system epss
scoring_elements 0.23934
published_at 2026-05-07T12:55:00Z
15
value 0.00083
scoring_system epss
scoring_elements 0.24138
published_at 2026-04-21T12:55:00Z
16
value 0.00083
scoring_system epss
scoring_elements 0.24013
published_at 2026-04-24T12:55:00Z
17
value 0.00083
scoring_system epss
scoring_elements 0.23851
published_at 2026-05-05T12:55:00Z
18
value 0.00083
scoring_system epss
scoring_elements 0.24002
published_at 2026-04-26T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-3775
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2601
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2601
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3775
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3775
4
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2138880
reference_id 2138880
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2138880
6
reference_url https://security.gentoo.org/glsa/202311-14
reference_id GLSA-202311-14
reference_type
scores
url https://security.gentoo.org/glsa/202311-14
7
reference_url https://access.redhat.com/errata/RHSA-2022:8494
reference_id RHSA-2022:8494
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:8494
8
reference_url https://access.redhat.com/errata/RHSA-2022:8800
reference_id RHSA-2022:8800
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:8800
9
reference_url https://access.redhat.com/errata/RHSA-2022:8978
reference_id RHSA-2022:8978
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:8978
10
reference_url https://access.redhat.com/errata/RHSA-2023:0047
reference_id RHSA-2023:0047
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:0047
11
reference_url https://access.redhat.com/errata/RHSA-2023:0048
reference_id RHSA-2023:0048
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:0048
12
reference_url https://access.redhat.com/errata/RHSA-2023:0049
reference_id RHSA-2023:0049
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:0049
13
reference_url https://access.redhat.com/errata/RHSA-2023:0752
reference_id RHSA-2023:0752
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:0752
14
reference_url https://usn.ubuntu.com/6355-1/
reference_id USN-6355-1
reference_type
scores
url https://usn.ubuntu.com/6355-1/
fixed_packages
0
url pkg:deb/debian/grub2@2.06-3~deb11u6
purl pkg:deb/debian/grub2@2.06-3~deb11u6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdk-6d8a-m7h8
1
vulnerability VCID-1vtj-un1a-afax
2
vulnerability VCID-29d7-asmu-e7ev
3
vulnerability VCID-3vhv-ya75-cuhc
4
vulnerability VCID-53x3-83by-gueq
5
vulnerability VCID-5a7e-ctj7-dqab
6
vulnerability VCID-5m3u-p8q4-kfhx
7
vulnerability VCID-5m6c-h4j2-mqcg
8
vulnerability VCID-5vyx-ut4z-jucd
9
vulnerability VCID-6cpn-v8j3-7ub3
10
vulnerability VCID-6tg5-6gjc-nygy
11
vulnerability VCID-6vxc-35x2-3fek
12
vulnerability VCID-c2vg-36gb-bqas
13
vulnerability VCID-dn64-5ysd-yfer
14
vulnerability VCID-gaet-924c-57dv
15
vulnerability VCID-h2ca-d9yc-vbex
16
vulnerability VCID-hn4b-sdcq-j3bx
17
vulnerability VCID-nphq-62t2-b7bk
18
vulnerability VCID-pjq7-bxwk-uqec
19
vulnerability VCID-s86w-7czc-s3a9
20
vulnerability VCID-sub1-vd8w-dka7
21
vulnerability VCID-swtj-9pmu-4ugn
22
vulnerability VCID-tkur-tbms-zkcz
23
vulnerability VCID-ur99-cm1x-cfdm
24
vulnerability VCID-wy3p-p9zf-r7ef
25
vulnerability VCID-x57b-4ggt-5qdf
26
vulnerability VCID-xamt-2k26-p3ev
27
vulnerability VCID-xjtf-q3gz-7ug8
28
vulnerability VCID-ymw1-gk3r-kfhz
29
vulnerability VCID-yw2r-4rr8-pkfd
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u6
aliases CVE-2022-3775
risk_score 3.2
exploitability 0.5
weighted_severity 6.4
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-33ec-pjax-nkak
1
url VCID-8kh4-ym2x-k3he
vulnerability_id VCID-8kh4-ym2x-k3he
summary grub2: out-of-bounds read at fs/ntfs.c
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-4693.json
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-4693.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-4693
reference_id
reference_type
scores
0
value 0.0001
scoring_system epss
scoring_elements 0.01162
published_at 2026-05-12T12:55:00Z
1
value 0.0001
scoring_system epss
scoring_elements 0.01177
published_at 2026-05-05T12:55:00Z
2
value 0.0001
scoring_system epss
scoring_elements 0.01175
published_at 2026-05-07T12:55:00Z
3
value 0.0001
scoring_system epss
scoring_elements 0.01173
published_at 2026-05-09T12:55:00Z
4
value 0.0001
scoring_system epss
scoring_elements 0.01166
published_at 2026-05-11T12:55:00Z
5
value 9e-05
scoring_system epss
scoring_elements 0.00938
published_at 2026-04-09T12:55:00Z
6
value 9e-05
scoring_system epss
scoring_elements 0.00922
published_at 2026-04-12T12:55:00Z
7
value 9e-05
scoring_system epss
scoring_elements 0.00924
published_at 2026-04-13T12:55:00Z
8
value 9e-05
scoring_system epss
scoring_elements 0.0092
published_at 2026-04-16T12:55:00Z
9
value 9e-05
scoring_system epss
scoring_elements 0.00928
published_at 2026-04-18T12:55:00Z
10
value 9e-05
scoring_system epss
scoring_elements 0.00979
published_at 2026-04-21T12:55:00Z
11
value 9e-05
scoring_system epss
scoring_elements 0.00981
published_at 2026-04-24T12:55:00Z
12
value 9e-05
scoring_system epss
scoring_elements 0.00985
published_at 2026-04-26T12:55:00Z
13
value 9e-05
scoring_system epss
scoring_elements 0.00978
published_at 2026-04-29T12:55:00Z
14
value 9e-05
scoring_system epss
scoring_elements 0.00927
published_at 2026-04-11T12:55:00Z
15
value 9e-05
scoring_system epss
scoring_elements 0.00935
published_at 2026-04-04T12:55:00Z
16
value 9e-05
scoring_system epss
scoring_elements 0.00939
published_at 2026-04-07T12:55:00Z
17
value 9e-05
scoring_system epss
scoring_elements 0.00942
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-4693
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4692
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4692
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4693
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4693
4
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2238343
reference_id 2238343
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2238343
6
reference_url https://access.redhat.com/errata/RHSA-2024:2456
reference_id RHSA-2024:2456
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:2456
7
reference_url https://access.redhat.com/errata/RHSA-2024:3184
reference_id RHSA-2024:3184
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:3184
8
reference_url https://usn.ubuntu.com/6410-1/
reference_id USN-6410-1
reference_type
scores
url https://usn.ubuntu.com/6410-1/
fixed_packages
0
url pkg:deb/debian/grub2@2.06-3~deb11u6
purl pkg:deb/debian/grub2@2.06-3~deb11u6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdk-6d8a-m7h8
1
vulnerability VCID-1vtj-un1a-afax
2
vulnerability VCID-29d7-asmu-e7ev
3
vulnerability VCID-3vhv-ya75-cuhc
4
vulnerability VCID-53x3-83by-gueq
5
vulnerability VCID-5a7e-ctj7-dqab
6
vulnerability VCID-5m3u-p8q4-kfhx
7
vulnerability VCID-5m6c-h4j2-mqcg
8
vulnerability VCID-5vyx-ut4z-jucd
9
vulnerability VCID-6cpn-v8j3-7ub3
10
vulnerability VCID-6tg5-6gjc-nygy
11
vulnerability VCID-6vxc-35x2-3fek
12
vulnerability VCID-c2vg-36gb-bqas
13
vulnerability VCID-dn64-5ysd-yfer
14
vulnerability VCID-gaet-924c-57dv
15
vulnerability VCID-h2ca-d9yc-vbex
16
vulnerability VCID-hn4b-sdcq-j3bx
17
vulnerability VCID-nphq-62t2-b7bk
18
vulnerability VCID-pjq7-bxwk-uqec
19
vulnerability VCID-s86w-7czc-s3a9
20
vulnerability VCID-sub1-vd8w-dka7
21
vulnerability VCID-swtj-9pmu-4ugn
22
vulnerability VCID-tkur-tbms-zkcz
23
vulnerability VCID-ur99-cm1x-cfdm
24
vulnerability VCID-wy3p-p9zf-r7ef
25
vulnerability VCID-x57b-4ggt-5qdf
26
vulnerability VCID-xamt-2k26-p3ev
27
vulnerability VCID-xjtf-q3gz-7ug8
28
vulnerability VCID-ymw1-gk3r-kfhz
29
vulnerability VCID-yw2r-4rr8-pkfd
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u6
aliases CVE-2023-4693
risk_score 2.4
exploitability 0.5
weighted_severity 4.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8kh4-ym2x-k3he
2
url VCID-9mut-ye1e-pbdx
vulnerability_id VCID-9mut-ye1e-pbdx
summary grub2: Out-of-bounds write at fs/ntfs.c may lead to unsigned code execution
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-4692.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-4692.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-4692
reference_id
reference_type
scores
0
value 4e-05
scoring_system epss
scoring_elements 0.00184
published_at 2026-05-12T12:55:00Z
1
value 4e-05
scoring_system epss
scoring_elements 0.00161
published_at 2026-04-02T12:55:00Z
2
value 4e-05
scoring_system epss
scoring_elements 0.00164
published_at 2026-04-13T12:55:00Z
3
value 4e-05
scoring_system epss
scoring_elements 0.00166
published_at 2026-04-29T12:55:00Z
4
value 4e-05
scoring_system epss
scoring_elements 0.00168
published_at 2026-04-21T12:55:00Z
5
value 4e-05
scoring_system epss
scoring_elements 0.0017
published_at 2026-04-24T12:55:00Z
6
value 4e-05
scoring_system epss
scoring_elements 0.00169
published_at 2026-04-26T12:55:00Z
7
value 4e-05
scoring_system epss
scoring_elements 0.0019
published_at 2026-05-05T12:55:00Z
8
value 4e-05
scoring_system epss
scoring_elements 0.00188
published_at 2026-05-07T12:55:00Z
9
value 4e-05
scoring_system epss
scoring_elements 0.00189
published_at 2026-05-09T12:55:00Z
10
value 4e-05
scoring_system epss
scoring_elements 0.00186
published_at 2026-05-11T12:55:00Z
11
value 4e-05
scoring_system epss
scoring_elements 0.00163
published_at 2026-04-09T12:55:00Z
12
value 4e-05
scoring_system epss
scoring_elements 0.00165
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-4692
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4692
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4692
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4693
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4693
4
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2236613
reference_id 2236613
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
1
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-08-15T14:23:06Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2236613
6
reference_url https://seclists.org/oss-sec/2023/q4/37
reference_id 37
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
1
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-08-15T14:23:06Z/
url https://seclists.org/oss-sec/2023/q4/37
7
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7
reference_id cpe:/o:redhat:enterprise_linux:7
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7
8
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8::baseos
reference_id cpe:/o:redhat:enterprise_linux:8::baseos
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8::baseos
9
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9::baseos
reference_id cpe:/o:redhat:enterprise_linux:9::baseos
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9::baseos
10
reference_url https://access.redhat.com/security/cve/CVE-2023-4692
reference_id CVE-2023-4692
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
1
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-08-15T14:23:06Z/
url https://access.redhat.com/security/cve/CVE-2023-4692
11
reference_url https://dfir.ru/2023/10/03/cve-2023-4692-cve-2023-4693-vulnerabilities-in-the-grub-boot-manager/
reference_id cve-2023-4692-cve-2023-4693-vulnerabilities-in-the-grub-boot-manager
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
1
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-08-15T14:23:06Z/
url https://dfir.ru/2023/10/03/cve-2023-4692-cve-2023-4693-vulnerabilities-in-the-grub-boot-manager/
12
reference_url https://lists.gnu.org/archive/html/grub-devel/2023-10/msg00028.html
reference_id msg00028.html
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
1
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-08-15T14:23:06Z/
url https://lists.gnu.org/archive/html/grub-devel/2023-10/msg00028.html
13
reference_url https://access.redhat.com/errata/RHSA-2024:2456
reference_id RHSA-2024:2456
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
1
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-08-15T14:23:06Z/
url https://access.redhat.com/errata/RHSA-2024:2456
14
reference_url https://access.redhat.com/errata/RHSA-2024:3184
reference_id RHSA-2024:3184
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
1
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-08-15T14:23:06Z/
url https://access.redhat.com/errata/RHSA-2024:3184
15
reference_url https://usn.ubuntu.com/6410-1/
reference_id USN-6410-1
reference_type
scores
url https://usn.ubuntu.com/6410-1/
fixed_packages
0
url pkg:deb/debian/grub2@2.06-3~deb11u6
purl pkg:deb/debian/grub2@2.06-3~deb11u6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdk-6d8a-m7h8
1
vulnerability VCID-1vtj-un1a-afax
2
vulnerability VCID-29d7-asmu-e7ev
3
vulnerability VCID-3vhv-ya75-cuhc
4
vulnerability VCID-53x3-83by-gueq
5
vulnerability VCID-5a7e-ctj7-dqab
6
vulnerability VCID-5m3u-p8q4-kfhx
7
vulnerability VCID-5m6c-h4j2-mqcg
8
vulnerability VCID-5vyx-ut4z-jucd
9
vulnerability VCID-6cpn-v8j3-7ub3
10
vulnerability VCID-6tg5-6gjc-nygy
11
vulnerability VCID-6vxc-35x2-3fek
12
vulnerability VCID-c2vg-36gb-bqas
13
vulnerability VCID-dn64-5ysd-yfer
14
vulnerability VCID-gaet-924c-57dv
15
vulnerability VCID-h2ca-d9yc-vbex
16
vulnerability VCID-hn4b-sdcq-j3bx
17
vulnerability VCID-nphq-62t2-b7bk
18
vulnerability VCID-pjq7-bxwk-uqec
19
vulnerability VCID-s86w-7czc-s3a9
20
vulnerability VCID-sub1-vd8w-dka7
21
vulnerability VCID-swtj-9pmu-4ugn
22
vulnerability VCID-tkur-tbms-zkcz
23
vulnerability VCID-ur99-cm1x-cfdm
24
vulnerability VCID-wy3p-p9zf-r7ef
25
vulnerability VCID-x57b-4ggt-5qdf
26
vulnerability VCID-xamt-2k26-p3ev
27
vulnerability VCID-xjtf-q3gz-7ug8
28
vulnerability VCID-ymw1-gk3r-kfhz
29
vulnerability VCID-yw2r-4rr8-pkfd
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u6
aliases CVE-2023-4692
risk_score 3.4
exploitability 0.5
weighted_severity 6.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9mut-ye1e-pbdx
3
url VCID-gjbg-nve3-m3gy
vulnerability_id VCID-gjbg-nve3-m3gy
summary Multiple vulnerabilities have been discoverd in GRUB, which may lead to secure boot circumvention or code execution.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2601.json
reference_id
reference_type
scores
0
value 8.2
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2601.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-2601
reference_id
reference_type
scores
0
value 0.00063
scoring_system epss
scoring_elements 0.19708
published_at 2026-04-02T12:55:00Z
1
value 0.00063
scoring_system epss
scoring_elements 0.19757
published_at 2026-04-04T12:55:00Z
2
value 0.00063
scoring_system epss
scoring_elements 0.19481
published_at 2026-04-07T12:55:00Z
3
value 0.00063
scoring_system epss
scoring_elements 0.1956
published_at 2026-04-08T12:55:00Z
4
value 0.00063
scoring_system epss
scoring_elements 0.19613
published_at 2026-04-09T12:55:00Z
5
value 0.00063
scoring_system epss
scoring_elements 0.19617
published_at 2026-04-11T12:55:00Z
6
value 0.00063
scoring_system epss
scoring_elements 0.19569
published_at 2026-04-12T12:55:00Z
7
value 0.00063
scoring_system epss
scoring_elements 0.1951
published_at 2026-04-13T12:55:00Z
8
value 0.00063
scoring_system epss
scoring_elements 0.19442
published_at 2026-05-12T12:55:00Z
9
value 0.00063
scoring_system epss
scoring_elements 0.19275
published_at 2026-05-05T12:55:00Z
10
value 0.00063
scoring_system epss
scoring_elements 0.19363
published_at 2026-05-07T12:55:00Z
11
value 0.00063
scoring_system epss
scoring_elements 0.19451
published_at 2026-05-09T12:55:00Z
12
value 0.00063
scoring_system epss
scoring_elements 0.19411
published_at 2026-05-11T12:55:00Z
13
value 0.00067
scoring_system epss
scoring_elements 0.2065
published_at 2026-04-16T12:55:00Z
14
value 0.00067
scoring_system epss
scoring_elements 0.20491
published_at 2026-04-29T12:55:00Z
15
value 0.00067
scoring_system epss
scoring_elements 0.20648
published_at 2026-04-18T12:55:00Z
16
value 0.00069
scoring_system epss
scoring_elements 0.21004
published_at 2026-04-26T12:55:00Z
17
value 0.00069
scoring_system epss
scoring_elements 0.20999
published_at 2026-04-24T12:55:00Z
18
value 0.00069
scoring_system epss
scoring_elements 0.21128
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-2601
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2601
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2601
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3775
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3775
4
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2112975
reference_id 2112975
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2112975
6
reference_url https://security.gentoo.org/glsa/202311-14
reference_id GLSA-202311-14
reference_type
scores
url https://security.gentoo.org/glsa/202311-14
7
reference_url https://access.redhat.com/errata/RHSA-2022:8494
reference_id RHSA-2022:8494
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:8494
8
reference_url https://access.redhat.com/errata/RHSA-2022:8800
reference_id RHSA-2022:8800
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:8800
9
reference_url https://access.redhat.com/errata/RHSA-2022:8978
reference_id RHSA-2022:8978
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:8978
10
reference_url https://access.redhat.com/errata/RHSA-2023:0047
reference_id RHSA-2023:0047
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:0047
11
reference_url https://access.redhat.com/errata/RHSA-2023:0048
reference_id RHSA-2023:0048
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:0048
12
reference_url https://access.redhat.com/errata/RHSA-2023:0049
reference_id RHSA-2023:0049
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:0049
13
reference_url https://access.redhat.com/errata/RHSA-2023:0752
reference_id RHSA-2023:0752
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:0752
14
reference_url https://access.redhat.com/errata/RHSA-2024:2002
reference_id RHSA-2024:2002
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:2002
fixed_packages
0
url pkg:deb/debian/grub2@2.06-3~deb11u6
purl pkg:deb/debian/grub2@2.06-3~deb11u6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdk-6d8a-m7h8
1
vulnerability VCID-1vtj-un1a-afax
2
vulnerability VCID-29d7-asmu-e7ev
3
vulnerability VCID-3vhv-ya75-cuhc
4
vulnerability VCID-53x3-83by-gueq
5
vulnerability VCID-5a7e-ctj7-dqab
6
vulnerability VCID-5m3u-p8q4-kfhx
7
vulnerability VCID-5m6c-h4j2-mqcg
8
vulnerability VCID-5vyx-ut4z-jucd
9
vulnerability VCID-6cpn-v8j3-7ub3
10
vulnerability VCID-6tg5-6gjc-nygy
11
vulnerability VCID-6vxc-35x2-3fek
12
vulnerability VCID-c2vg-36gb-bqas
13
vulnerability VCID-dn64-5ysd-yfer
14
vulnerability VCID-gaet-924c-57dv
15
vulnerability VCID-h2ca-d9yc-vbex
16
vulnerability VCID-hn4b-sdcq-j3bx
17
vulnerability VCID-nphq-62t2-b7bk
18
vulnerability VCID-pjq7-bxwk-uqec
19
vulnerability VCID-s86w-7czc-s3a9
20
vulnerability VCID-sub1-vd8w-dka7
21
vulnerability VCID-swtj-9pmu-4ugn
22
vulnerability VCID-tkur-tbms-zkcz
23
vulnerability VCID-ur99-cm1x-cfdm
24
vulnerability VCID-wy3p-p9zf-r7ef
25
vulnerability VCID-x57b-4ggt-5qdf
26
vulnerability VCID-xamt-2k26-p3ev
27
vulnerability VCID-xjtf-q3gz-7ug8
28
vulnerability VCID-ymw1-gk3r-kfhz
29
vulnerability VCID-yw2r-4rr8-pkfd
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u6
aliases CVE-2022-2601
risk_score 3.7
exploitability 0.5
weighted_severity 7.4
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-gjbg-nve3-m3gy
Fixing_vulnerabilities
0
url VCID-2f6m-msj2-2fgy
vulnerability_id VCID-2f6m-msj2-2fgy
summary Multiple vulnerabilities have been discovered in GRUB, the worst of which may allow for secureboot bypass.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3697.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3697.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-3697
reference_id
reference_type
scores
0
value 0.00067
scoring_system epss
scoring_elements 0.20795
published_at 2026-04-01T12:55:00Z
1
value 0.00067
scoring_system epss
scoring_elements 0.20629
published_at 2026-05-12T12:55:00Z
2
value 0.00067
scoring_system epss
scoring_elements 0.20589
published_at 2026-04-29T12:55:00Z
3
value 0.00067
scoring_system epss
scoring_elements 0.20483
published_at 2026-05-05T12:55:00Z
4
value 0.00067
scoring_system epss
scoring_elements 0.20553
published_at 2026-05-07T12:55:00Z
5
value 0.00067
scoring_system epss
scoring_elements 0.20639
published_at 2026-05-09T12:55:00Z
6
value 0.00067
scoring_system epss
scoring_elements 0.20614
published_at 2026-05-11T12:55:00Z
7
value 0.00067
scoring_system epss
scoring_elements 0.20942
published_at 2026-04-02T12:55:00Z
8
value 0.00067
scoring_system epss
scoring_elements 0.20999
published_at 2026-04-04T12:55:00Z
9
value 0.00067
scoring_system epss
scoring_elements 0.20716
published_at 2026-04-07T12:55:00Z
10
value 0.00067
scoring_system epss
scoring_elements 0.20793
published_at 2026-04-08T12:55:00Z
11
value 0.00067
scoring_system epss
scoring_elements 0.20854
published_at 2026-04-09T12:55:00Z
12
value 0.00067
scoring_system epss
scoring_elements 0.2087
published_at 2026-04-11T12:55:00Z
13
value 0.00067
scoring_system epss
scoring_elements 0.20827
published_at 2026-04-12T12:55:00Z
14
value 0.00067
scoring_system epss
scoring_elements 0.20774
published_at 2026-04-13T12:55:00Z
15
value 0.00067
scoring_system epss
scoring_elements 0.20765
published_at 2026-04-16T12:55:00Z
16
value 0.00067
scoring_system epss
scoring_elements 0.20757
published_at 2026-04-18T12:55:00Z
17
value 0.00069
scoring_system epss
scoring_elements 0.21106
published_at 2026-04-26T12:55:00Z
18
value 0.00069
scoring_system epss
scoring_elements 0.21234
published_at 2026-04-21T12:55:00Z
19
value 0.00069
scoring_system epss
scoring_elements 0.21103
published_at 2026-04-24T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-3697
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3697
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3697
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1991687
reference_id 1991687
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1991687
5
reference_url https://security.archlinux.org/AVG-2762
reference_id AVG-2762
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2762
6
reference_url https://security.gentoo.org/glsa/202209-12
reference_id GLSA-202209-12
reference_type
scores
url https://security.gentoo.org/glsa/202209-12
7
reference_url https://access.redhat.com/errata/RHSA-2022:5095
reference_id RHSA-2022:5095
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5095
8
reference_url https://access.redhat.com/errata/RHSA-2022:5096
reference_id RHSA-2022:5096
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5096
9
reference_url https://access.redhat.com/errata/RHSA-2022:5098
reference_id RHSA-2022:5098
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5098
10
reference_url https://access.redhat.com/errata/RHSA-2022:5099
reference_id RHSA-2022:5099
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5099
11
reference_url https://access.redhat.com/errata/RHSA-2022:5100
reference_id RHSA-2022:5100
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5100
12
reference_url https://usn.ubuntu.com/6355-1/
reference_id USN-6355-1
reference_type
scores
url https://usn.ubuntu.com/6355-1/
fixed_packages
0
url pkg:deb/debian/grub2@2.06-3~deb11u2
purl pkg:deb/debian/grub2@2.06-3~deb11u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-33ec-pjax-nkak
1
vulnerability VCID-8kh4-ym2x-k3he
2
vulnerability VCID-9mut-ye1e-pbdx
3
vulnerability VCID-gjbg-nve3-m3gy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u2
aliases CVE-2021-3697
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2f6m-msj2-2fgy
1
url VCID-6jes-p579-uyg3
vulnerability_id VCID-6jes-p579-uyg3
summary Multiple vulnerabilities have been discovered in GRUB, the worst of which may allow for secureboot bypass.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-28735.json
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-28735.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-28735
reference_id
reference_type
scores
0
value 0.00018
scoring_system epss
scoring_elements 0.04953
published_at 2026-05-12T12:55:00Z
1
value 0.00018
scoring_system epss
scoring_elements 0.047
published_at 2026-04-09T12:55:00Z
2
value 0.00018
scoring_system epss
scoring_elements 0.04691
published_at 2026-04-11T12:55:00Z
3
value 0.00018
scoring_system epss
scoring_elements 0.04674
published_at 2026-04-12T12:55:00Z
4
value 0.00018
scoring_system epss
scoring_elements 0.04657
published_at 2026-04-13T12:55:00Z
5
value 0.00018
scoring_system epss
scoring_elements 0.04624
published_at 2026-04-16T12:55:00Z
6
value 0.00018
scoring_system epss
scoring_elements 0.04632
published_at 2026-04-18T12:55:00Z
7
value 0.00018
scoring_system epss
scoring_elements 0.04861
published_at 2026-04-29T12:55:00Z
8
value 0.00018
scoring_system epss
scoring_elements 0.04857
published_at 2026-05-05T12:55:00Z
9
value 0.00018
scoring_system epss
scoring_elements 0.04906
published_at 2026-05-07T12:55:00Z
10
value 0.00018
scoring_system epss
scoring_elements 0.0495
published_at 2026-05-09T12:55:00Z
11
value 0.00018
scoring_system epss
scoring_elements 0.04956
published_at 2026-05-11T12:55:00Z
12
value 0.00018
scoring_system epss
scoring_elements 0.04617
published_at 2026-04-02T12:55:00Z
13
value 0.00018
scoring_system epss
scoring_elements 0.04642
published_at 2026-04-04T12:55:00Z
14
value 0.00018
scoring_system epss
scoring_elements 0.04654
published_at 2026-04-07T12:55:00Z
15
value 0.00018
scoring_system epss
scoring_elements 0.04688
published_at 2026-04-08T12:55:00Z
16
value 0.00019
scoring_system epss
scoring_elements 0.05046
published_at 2026-04-26T12:55:00Z
17
value 0.00019
scoring_system epss
scoring_elements 0.05005
published_at 2026-04-24T12:55:00Z
18
value 0.00019
scoring_system epss
scoring_elements 0.04973
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-28735
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28735
reference_id
reference_type
scores
0
value 6.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-24T19:20:44Z/
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28735
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1001057
reference_id 1001057
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1001057
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2090857
reference_id 2090857
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2090857
6
reference_url https://www.openwall.com/lists/oss-security/2022/06/07/5
reference_id 5
reference_type
scores
0
value 6.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-24T19:20:44Z/
url https://www.openwall.com/lists/oss-security/2022/06/07/5
7
reference_url https://security.archlinux.org/AVG-2762
reference_id AVG-2762
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2762
8
reference_url https://security.gentoo.org/glsa/202209-12
reference_id GLSA-202209-12
reference_type
scores
url https://security.gentoo.org/glsa/202209-12
9
reference_url https://security.netapp.com/advisory/ntap-20230825-0002/
reference_id ntap-20230825-0002
reference_type
scores
0
value 6.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-24T19:20:44Z/
url https://security.netapp.com/advisory/ntap-20230825-0002/
10
reference_url https://access.redhat.com/errata/RHSA-2022:5095
reference_id RHSA-2022:5095
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5095
11
reference_url https://access.redhat.com/errata/RHSA-2022:5096
reference_id RHSA-2022:5096
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5096
12
reference_url https://access.redhat.com/errata/RHSA-2022:5098
reference_id RHSA-2022:5098
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5098
13
reference_url https://access.redhat.com/errata/RHSA-2022:5099
reference_id RHSA-2022:5099
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5099
14
reference_url https://access.redhat.com/errata/RHSA-2022:5100
reference_id RHSA-2022:5100
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5100
15
reference_url https://usn.ubuntu.com/6355-1/
reference_id USN-6355-1
reference_type
scores
url https://usn.ubuntu.com/6355-1/
fixed_packages
0
url pkg:deb/debian/grub2@2.06-3~deb11u2
purl pkg:deb/debian/grub2@2.06-3~deb11u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-33ec-pjax-nkak
1
vulnerability VCID-8kh4-ym2x-k3he
2
vulnerability VCID-9mut-ye1e-pbdx
3
vulnerability VCID-gjbg-nve3-m3gy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u2
aliases CVE-2022-28735
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6jes-p579-uyg3
2
url VCID-8zje-6cet-h3a4
vulnerability_id VCID-8zje-6cet-h3a4
summary Multiple vulnerabilities have been discovered in GRUB, the worst of which may allow for secureboot bypass.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3695.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3695.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-3695
reference_id
reference_type
scores
0
value 0.0006
scoring_system epss
scoring_elements 0.18734
published_at 2026-04-01T12:55:00Z
1
value 0.0006
scoring_system epss
scoring_elements 0.18548
published_at 2026-05-12T12:55:00Z
2
value 0.0006
scoring_system epss
scoring_elements 0.18495
published_at 2026-04-29T12:55:00Z
3
value 0.0006
scoring_system epss
scoring_elements 0.18368
published_at 2026-05-05T12:55:00Z
4
value 0.0006
scoring_system epss
scoring_elements 0.18454
published_at 2026-05-07T12:55:00Z
5
value 0.0006
scoring_system epss
scoring_elements 0.18555
published_at 2026-05-09T12:55:00Z
6
value 0.0006
scoring_system epss
scoring_elements 0.18517
published_at 2026-05-11T12:55:00Z
7
value 0.0006
scoring_system epss
scoring_elements 0.18871
published_at 2026-04-02T12:55:00Z
8
value 0.0006
scoring_system epss
scoring_elements 0.18925
published_at 2026-04-04T12:55:00Z
9
value 0.0006
scoring_system epss
scoring_elements 0.18645
published_at 2026-04-07T12:55:00Z
10
value 0.0006
scoring_system epss
scoring_elements 0.18724
published_at 2026-04-08T12:55:00Z
11
value 0.0006
scoring_system epss
scoring_elements 0.18779
published_at 2026-04-09T12:55:00Z
12
value 0.0006
scoring_system epss
scoring_elements 0.18783
published_at 2026-04-11T12:55:00Z
13
value 0.0006
scoring_system epss
scoring_elements 0.18737
published_at 2026-04-12T12:55:00Z
14
value 0.0006
scoring_system epss
scoring_elements 0.18687
published_at 2026-04-13T12:55:00Z
15
value 0.0006
scoring_system epss
scoring_elements 0.18635
published_at 2026-04-16T12:55:00Z
16
value 0.0006
scoring_system epss
scoring_elements 0.18647
published_at 2026-04-18T12:55:00Z
17
value 0.00061
scoring_system epss
scoring_elements 0.19016
published_at 2026-04-26T12:55:00Z
18
value 0.00061
scoring_system epss
scoring_elements 0.19135
published_at 2026-04-21T12:55:00Z
19
value 0.00061
scoring_system epss
scoring_elements 0.19028
published_at 2026-04-24T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-3695
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3695
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3695
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1991685
reference_id 1991685
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1991685
5
reference_url https://security.archlinux.org/AVG-2762
reference_id AVG-2762
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2762
6
reference_url https://security.gentoo.org/glsa/202209-12
reference_id GLSA-202209-12
reference_type
scores
url https://security.gentoo.org/glsa/202209-12
7
reference_url https://access.redhat.com/errata/RHSA-2022:5095
reference_id RHSA-2022:5095
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5095
8
reference_url https://access.redhat.com/errata/RHSA-2022:5096
reference_id RHSA-2022:5096
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5096
9
reference_url https://access.redhat.com/errata/RHSA-2022:5098
reference_id RHSA-2022:5098
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5098
10
reference_url https://access.redhat.com/errata/RHSA-2022:5099
reference_id RHSA-2022:5099
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5099
11
reference_url https://access.redhat.com/errata/RHSA-2022:5100
reference_id RHSA-2022:5100
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5100
12
reference_url https://usn.ubuntu.com/6355-1/
reference_id USN-6355-1
reference_type
scores
url https://usn.ubuntu.com/6355-1/
fixed_packages
0
url pkg:deb/debian/grub2@2.06-3~deb11u2
purl pkg:deb/debian/grub2@2.06-3~deb11u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-33ec-pjax-nkak
1
vulnerability VCID-8kh4-ym2x-k3he
2
vulnerability VCID-9mut-ye1e-pbdx
3
vulnerability VCID-gjbg-nve3-m3gy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u2
aliases CVE-2021-3695
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8zje-6cet-h3a4
3
url VCID-9dkn-kkgd-37ce
vulnerability_id VCID-9dkn-kkgd-37ce
summary Multiple vulnerabilities have been discovered in GRUB, the worst of which may allow for secureboot bypass.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-28733.json
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-28733.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-28733
reference_id
reference_type
scores
0
value 0.00109
scoring_system epss
scoring_elements 0.28657
published_at 2026-05-12T12:55:00Z
1
value 0.00109
scoring_system epss
scoring_elements 0.29185
published_at 2026-04-12T12:55:00Z
2
value 0.00109
scoring_system epss
scoring_elements 0.29226
published_at 2026-04-09T12:55:00Z
3
value 0.00109
scoring_system epss
scoring_elements 0.29231
published_at 2026-04-11T12:55:00Z
4
value 0.00109
scoring_system epss
scoring_elements 0.29133
published_at 2026-04-13T12:55:00Z
5
value 0.00109
scoring_system epss
scoring_elements 0.29158
published_at 2026-04-16T12:55:00Z
6
value 0.00109
scoring_system epss
scoring_elements 0.29135
published_at 2026-04-18T12:55:00Z
7
value 0.00109
scoring_system epss
scoring_elements 0.28784
published_at 2026-04-29T12:55:00Z
8
value 0.00109
scoring_system epss
scoring_elements 0.28635
published_at 2026-05-05T12:55:00Z
9
value 0.00109
scoring_system epss
scoring_elements 0.28694
published_at 2026-05-07T12:55:00Z
10
value 0.00109
scoring_system epss
scoring_elements 0.28713
published_at 2026-05-09T12:55:00Z
11
value 0.00109
scoring_system epss
scoring_elements 0.28637
published_at 2026-05-11T12:55:00Z
12
value 0.00109
scoring_system epss
scoring_elements 0.29258
published_at 2026-04-02T12:55:00Z
13
value 0.00109
scoring_system epss
scoring_elements 0.29308
published_at 2026-04-04T12:55:00Z
14
value 0.00109
scoring_system epss
scoring_elements 0.2912
published_at 2026-04-07T12:55:00Z
15
value 0.00112
scoring_system epss
scoring_elements 0.29363
published_at 2026-04-26T12:55:00Z
16
value 0.00112
scoring_system epss
scoring_elements 0.29477
published_at 2026-04-24T12:55:00Z
17
value 0.00112
scoring_system epss
scoring_elements 0.2957
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-28733
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28733
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-24T19:49:29Z/
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28733
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2083339
reference_id 2083339
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2083339
5
reference_url https://www.openwall.com/lists/oss-security/2022/06/07/5
reference_id 5
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-24T19:49:29Z/
url https://www.openwall.com/lists/oss-security/2022/06/07/5
6
reference_url https://security.archlinux.org/AVG-2762
reference_id AVG-2762
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2762
7
reference_url https://security.gentoo.org/glsa/202209-12
reference_id GLSA-202209-12
reference_type
scores
url https://security.gentoo.org/glsa/202209-12
8
reference_url https://security.netapp.com/advisory/ntap-20230825-0002/
reference_id ntap-20230825-0002
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-24T19:49:29Z/
url https://security.netapp.com/advisory/ntap-20230825-0002/
9
reference_url https://access.redhat.com/errata/RHSA-2022:5095
reference_id RHSA-2022:5095
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5095
10
reference_url https://access.redhat.com/errata/RHSA-2022:5096
reference_id RHSA-2022:5096
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5096
11
reference_url https://access.redhat.com/errata/RHSA-2022:5098
reference_id RHSA-2022:5098
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5098
12
reference_url https://access.redhat.com/errata/RHSA-2022:5099
reference_id RHSA-2022:5099
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5099
13
reference_url https://access.redhat.com/errata/RHSA-2022:5100
reference_id RHSA-2022:5100
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5100
14
reference_url https://access.redhat.com/errata/RHSA-2022:5678
reference_id RHSA-2022:5678
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5678
15
reference_url https://access.redhat.com/errata/RHSA-2022:8900
reference_id RHSA-2022:8900
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:8900
16
reference_url https://usn.ubuntu.com/6355-1/
reference_id USN-6355-1
reference_type
scores
url https://usn.ubuntu.com/6355-1/
fixed_packages
0
url pkg:deb/debian/grub2@2.06-3~deb11u2
purl pkg:deb/debian/grub2@2.06-3~deb11u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-33ec-pjax-nkak
1
vulnerability VCID-8kh4-ym2x-k3he
2
vulnerability VCID-9mut-ye1e-pbdx
3
vulnerability VCID-gjbg-nve3-m3gy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u2
aliases CVE-2022-28733
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9dkn-kkgd-37ce
4
url VCID-g3tz-5rzv-wkgk
vulnerability_id VCID-g3tz-5rzv-wkgk
summary Multiple vulnerabilities have been discovered in GRUB, the worst of which may allow for secureboot bypass.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-28734.json
reference_id
reference_type
scores
0
value 7.0
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-28734.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-28734
reference_id
reference_type
scores
0
value 0.00127
scoring_system epss
scoring_elements 0.3177
published_at 2026-04-26T12:55:00Z
1
value 0.00127
scoring_system epss
scoring_elements 0.32062
published_at 2026-04-21T12:55:00Z
2
value 0.00127
scoring_system epss
scoring_elements 0.31897
published_at 2026-04-24T12:55:00Z
3
value 0.00141
scoring_system epss
scoring_elements 0.34367
published_at 2026-04-08T12:55:00Z
4
value 0.00141
scoring_system epss
scoring_elements 0.34396
published_at 2026-04-09T12:55:00Z
5
value 0.00141
scoring_system epss
scoring_elements 0.34399
published_at 2026-04-11T12:55:00Z
6
value 0.00141
scoring_system epss
scoring_elements 0.34359
published_at 2026-04-12T12:55:00Z
7
value 0.00141
scoring_system epss
scoring_elements 0.34336
published_at 2026-04-13T12:55:00Z
8
value 0.00141
scoring_system epss
scoring_elements 0.3437
published_at 2026-04-16T12:55:00Z
9
value 0.00141
scoring_system epss
scoring_elements 0.34357
published_at 2026-04-18T12:55:00Z
10
value 0.00141
scoring_system epss
scoring_elements 0.33767
published_at 2026-05-12T12:55:00Z
11
value 0.00141
scoring_system epss
scoring_elements 0.34429
published_at 2026-04-02T12:55:00Z
12
value 0.00141
scoring_system epss
scoring_elements 0.34457
published_at 2026-04-04T12:55:00Z
13
value 0.00141
scoring_system epss
scoring_elements 0.34324
published_at 2026-04-07T12:55:00Z
14
value 0.00141
scoring_system epss
scoring_elements 0.33832
published_at 2026-05-09T12:55:00Z
15
value 0.00141
scoring_system epss
scoring_elements 0.33744
published_at 2026-05-11T12:55:00Z
16
value 0.00141
scoring_system epss
scoring_elements 0.33841
published_at 2026-04-29T12:55:00Z
17
value 0.00141
scoring_system epss
scoring_elements 0.33721
published_at 2026-05-05T12:55:00Z
18
value 0.00141
scoring_system epss
scoring_elements 0.33791
published_at 2026-05-07T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-28734
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28734
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28734
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2090463
reference_id 2090463
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2090463
5
reference_url https://security.archlinux.org/AVG-2762
reference_id AVG-2762
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2762
6
reference_url https://security.gentoo.org/glsa/202209-12
reference_id GLSA-202209-12
reference_type
scores
url https://security.gentoo.org/glsa/202209-12
7
reference_url https://access.redhat.com/errata/RHSA-2022:5095
reference_id RHSA-2022:5095
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5095
8
reference_url https://access.redhat.com/errata/RHSA-2022:5096
reference_id RHSA-2022:5096
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5096
9
reference_url https://access.redhat.com/errata/RHSA-2022:5098
reference_id RHSA-2022:5098
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5098
10
reference_url https://access.redhat.com/errata/RHSA-2022:5099
reference_id RHSA-2022:5099
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5099
11
reference_url https://access.redhat.com/errata/RHSA-2022:5100
reference_id RHSA-2022:5100
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5100
12
reference_url https://usn.ubuntu.com/6355-1/
reference_id USN-6355-1
reference_type
scores
url https://usn.ubuntu.com/6355-1/
fixed_packages
0
url pkg:deb/debian/grub2@2.06-3~deb11u2
purl pkg:deb/debian/grub2@2.06-3~deb11u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-33ec-pjax-nkak
1
vulnerability VCID-8kh4-ym2x-k3he
2
vulnerability VCID-9mut-ye1e-pbdx
3
vulnerability VCID-gjbg-nve3-m3gy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u2
aliases CVE-2022-28734
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-g3tz-5rzv-wkgk
5
url VCID-nn2e-jq31-n7bc
vulnerability_id VCID-nn2e-jq31-n7bc
summary Multiple vulnerabilities have been discovered in GRUB, the worst of which may allow for secureboot bypass.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3696.json
reference_id
reference_type
scores
0
value 5.0
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3696.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-3696
reference_id
reference_type
scores
0
value 0.00114
scoring_system epss
scoring_elements 0.29993
published_at 2026-04-01T12:55:00Z
1
value 0.00114
scoring_system epss
scoring_elements 0.29477
published_at 2026-05-12T12:55:00Z
2
value 0.00114
scoring_system epss
scoring_elements 0.29599
published_at 2026-04-29T12:55:00Z
3
value 0.00114
scoring_system epss
scoring_elements 0.29457
published_at 2026-05-05T12:55:00Z
4
value 0.00114
scoring_system epss
scoring_elements 0.29519
published_at 2026-05-07T12:55:00Z
5
value 0.00114
scoring_system epss
scoring_elements 0.2953
published_at 2026-05-09T12:55:00Z
6
value 0.00114
scoring_system epss
scoring_elements 0.29456
published_at 2026-05-11T12:55:00Z
7
value 0.00114
scoring_system epss
scoring_elements 0.30033
published_at 2026-04-02T12:55:00Z
8
value 0.00114
scoring_system epss
scoring_elements 0.3008
published_at 2026-04-04T12:55:00Z
9
value 0.00114
scoring_system epss
scoring_elements 0.29893
published_at 2026-04-07T12:55:00Z
10
value 0.00114
scoring_system epss
scoring_elements 0.29954
published_at 2026-04-08T12:55:00Z
11
value 0.00114
scoring_system epss
scoring_elements 0.2999
published_at 2026-04-09T12:55:00Z
12
value 0.00114
scoring_system epss
scoring_elements 0.29995
published_at 2026-04-11T12:55:00Z
13
value 0.00114
scoring_system epss
scoring_elements 0.29949
published_at 2026-04-12T12:55:00Z
14
value 0.00114
scoring_system epss
scoring_elements 0.299
published_at 2026-04-13T12:55:00Z
15
value 0.00114
scoring_system epss
scoring_elements 0.29917
published_at 2026-04-16T12:55:00Z
16
value 0.00114
scoring_system epss
scoring_elements 0.29897
published_at 2026-04-18T12:55:00Z
17
value 0.00117
scoring_system epss
scoring_elements 0.30138
published_at 2026-04-26T12:55:00Z
18
value 0.00117
scoring_system epss
scoring_elements 0.30313
published_at 2026-04-21T12:55:00Z
19
value 0.00117
scoring_system epss
scoring_elements 0.30252
published_at 2026-04-24T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-3696
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3696
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3696
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1991686
reference_id 1991686
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1991686
5
reference_url https://security.archlinux.org/AVG-2762
reference_id AVG-2762
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2762
6
reference_url https://security.gentoo.org/glsa/202209-12
reference_id GLSA-202209-12
reference_type
scores
url https://security.gentoo.org/glsa/202209-12
7
reference_url https://access.redhat.com/errata/RHSA-2022:5095
reference_id RHSA-2022:5095
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5095
8
reference_url https://access.redhat.com/errata/RHSA-2022:5096
reference_id RHSA-2022:5096
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5096
9
reference_url https://access.redhat.com/errata/RHSA-2022:5098
reference_id RHSA-2022:5098
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5098
10
reference_url https://access.redhat.com/errata/RHSA-2022:5099
reference_id RHSA-2022:5099
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5099
11
reference_url https://access.redhat.com/errata/RHSA-2022:5100
reference_id RHSA-2022:5100
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5100
12
reference_url https://usn.ubuntu.com/6355-1/
reference_id USN-6355-1
reference_type
scores
url https://usn.ubuntu.com/6355-1/
fixed_packages
0
url pkg:deb/debian/grub2@2.06-3~deb11u2
purl pkg:deb/debian/grub2@2.06-3~deb11u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-33ec-pjax-nkak
1
vulnerability VCID-8kh4-ym2x-k3he
2
vulnerability VCID-9mut-ye1e-pbdx
3
vulnerability VCID-gjbg-nve3-m3gy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u2
aliases CVE-2021-3696
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-nn2e-jq31-n7bc
6
url VCID-wp1a-2ueg-mych
vulnerability_id VCID-wp1a-2ueg-mych
summary Multiple vulnerabilities have been discovered in GRUB, the worst of which may allow for secureboot bypass.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-28736.json
reference_id
reference_type
scores
0
value 7.0
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-28736.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-28736
reference_id
reference_type
scores
0
value 0.00032
scoring_system epss
scoring_elements 0.09326
published_at 2026-05-12T12:55:00Z
1
value 0.00032
scoring_system epss
scoring_elements 0.09204
published_at 2026-04-12T12:55:00Z
2
value 0.00032
scoring_system epss
scoring_elements 0.09233
published_at 2026-04-09T12:55:00Z
3
value 0.00032
scoring_system epss
scoring_elements 0.09236
published_at 2026-04-11T12:55:00Z
4
value 0.00032
scoring_system epss
scoring_elements 0.0919
published_at 2026-04-13T12:55:00Z
5
value 0.00032
scoring_system epss
scoring_elements 0.09085
published_at 2026-04-16T12:55:00Z
6
value 0.00032
scoring_system epss
scoring_elements 0.09066
published_at 2026-04-18T12:55:00Z
7
value 0.00032
scoring_system epss
scoring_elements 0.09188
published_at 2026-04-29T12:55:00Z
8
value 0.00032
scoring_system epss
scoring_elements 0.091
published_at 2026-05-05T12:55:00Z
9
value 0.00032
scoring_system epss
scoring_elements 0.09264
published_at 2026-05-07T12:55:00Z
10
value 0.00032
scoring_system epss
scoring_elements 0.09339
published_at 2026-05-09T12:55:00Z
11
value 0.00032
scoring_system epss
scoring_elements 0.09302
published_at 2026-05-11T12:55:00Z
12
value 0.00032
scoring_system epss
scoring_elements 0.09147
published_at 2026-04-02T12:55:00Z
13
value 0.00032
scoring_system epss
scoring_elements 0.092
published_at 2026-04-04T12:55:00Z
14
value 0.00032
scoring_system epss
scoring_elements 0.09124
published_at 2026-04-07T12:55:00Z
15
value 0.00033
scoring_system epss
scoring_elements 0.09558
published_at 2026-04-26T12:55:00Z
16
value 0.00033
scoring_system epss
scoring_elements 0.09592
published_at 2026-04-24T12:55:00Z
17
value 0.00033
scoring_system epss
scoring_elements 0.09545
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-28736
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28736
reference_id
reference_type
scores
0
value 6.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-24T18:53:03Z/
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28736
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2092613
reference_id 2092613
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2092613
5
reference_url https://www.openwall.com/lists/oss-security/2022/06/07/5
reference_id 5
reference_type
scores
0
value 6.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-24T18:53:03Z/
url https://www.openwall.com/lists/oss-security/2022/06/07/5
6
reference_url https://security.archlinux.org/AVG-2762
reference_id AVG-2762
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2762
7
reference_url https://security.gentoo.org/glsa/202209-12
reference_id GLSA-202209-12
reference_type
scores
url https://security.gentoo.org/glsa/202209-12
8
reference_url https://security.netapp.com/advisory/ntap-20230825-0002/
reference_id ntap-20230825-0002
reference_type
scores
0
value 6.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-24T18:53:03Z/
url https://security.netapp.com/advisory/ntap-20230825-0002/
9
reference_url https://access.redhat.com/errata/RHSA-2022:5095
reference_id RHSA-2022:5095
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5095
10
reference_url https://access.redhat.com/errata/RHSA-2022:5096
reference_id RHSA-2022:5096
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5096
11
reference_url https://access.redhat.com/errata/RHSA-2022:5098
reference_id RHSA-2022:5098
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5098
12
reference_url https://access.redhat.com/errata/RHSA-2022:5099
reference_id RHSA-2022:5099
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5099
13
reference_url https://access.redhat.com/errata/RHSA-2022:5100
reference_id RHSA-2022:5100
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5100
14
reference_url https://usn.ubuntu.com/6355-1/
reference_id USN-6355-1
reference_type
scores
url https://usn.ubuntu.com/6355-1/
fixed_packages
0
url pkg:deb/debian/grub2@2.06-3~deb11u2
purl pkg:deb/debian/grub2@2.06-3~deb11u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-33ec-pjax-nkak
1
vulnerability VCID-8kh4-ym2x-k3he
2
vulnerability VCID-9mut-ye1e-pbdx
3
vulnerability VCID-gjbg-nve3-m3gy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u2
aliases CVE-2022-28736
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wp1a-2ueg-mych
Risk_score3.7
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u2