Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:apk/alpine/qt5-qtwebengine@5.15.16-r3?arch=x86_64&distroversion=v3.19&reponame=community

Type apk

Namespace alpine

Name qt5-qtwebengine

Version 5.15.16-r3

Qualifiers

arch	x86_64
distroversion	v3.19
reponame	community

Subpath

Is_vulnerable false

Next_non_vulnerable_version 5.15.16-r4

Latest_non_vulnerable_version 5.15.16-r6

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-chnc-y1nj-7bdp

vulnerability_id VCID-chnc-y1nj-7bdp

summary Heap buffer overflow in WebRTC in Google Chrome prior to 120.0.6099.129 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-7024

reference_id

reference_type

scores

value	0.03067
scoring_system	epss
scoring_elements	0.87032
published_at	2026-06-11T12:55:00Z

value	0.03067
scoring_system	epss
scoring_elements	0.87082
published_at	2026-06-14T12:55:00Z

value	0.03067
scoring_system	epss
scoring_elements	0.87086
published_at	2026-06-13T12:55:00Z

value	0.03067
scoring_system	epss
scoring_elements	0.87077
published_at	2026-06-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-7024

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-7024
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-7024

reference_url

https://crbug.com/1513170

reference_id

1513170

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Attend
scoring_system	ssvc
scoring_elements	SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2023-12-23T05:01:04Z/

url

https://crbug.com/1513170

reference_url

https://security.gentoo.org/glsa/202401-34

reference_id

202401-34

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Attend
scoring_system	ssvc
scoring_elements	SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2023-12-23T05:01:04Z/

url

https://security.gentoo.org/glsa/202401-34

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6M6AJDHUL6EDPURWQXGLUFJNDE7SOJT3/

reference_id

6M6AJDHUL6EDPURWQXGLUFJNDE7SOJT3

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Attend
scoring_system	ssvc
scoring_elements	SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2023-12-23T05:01:04Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6M6AJDHUL6EDPURWQXGLUFJNDE7SOJT3/

reference_url

https://www.debian.org/security/2023/dsa-5585

reference_id

dsa-5585

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Attend
scoring_system	ssvc
scoring_elements	SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2023-12-23T05:01:04Z/

url

https://www.debian.org/security/2023/dsa-5585

reference_url	https://security.gentoo.org/glsa/202402-14
reference_id	GLSA-202402-14
reference_type
scores
url	https://security.gentoo.org/glsa/202402-14

reference_url

https://chromereleases.googleblog.com/2023/12/stable-channel-update-for-desktop_20.html

reference_id

stable-channel-update-for-desktop_20.html

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Attend
scoring_system	ssvc
scoring_elements	SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2023-12-23T05:01:04Z/

url

https://chromereleases.googleblog.com/2023/12/stable-channel-update-for-desktop_20.html

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U6JL4VHZMHFGEGQYTF74533ZNRWMCMMR/

reference_id

U6JL4VHZMHFGEGQYTF74533ZNRWMCMMR

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Attend
scoring_system	ssvc
scoring_elements	SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2023-12-23T05:01:04Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U6JL4VHZMHFGEGQYTF74533ZNRWMCMMR/

fixed_packages

url	pkg:apk/alpine/qt5-qtwebengine@5.15.16-r3?arch=x86_64&distroversion=v3.19&reponame=community
purl	pkg:apk/alpine/qt5-qtwebengine@5.15.16-r3?arch=x86_64&distroversion=v3.19&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt5-qtwebengine@5.15.16-r3%3Farch=x86_64&distroversion=v3.19&reponame=community

aliases CVE-2023-7024

risk_score 10.0

exploitability 2.0

weighted_severity 7.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-chnc-y1nj-7bdp

url VCID-gvne-fnpb-4ycc

vulnerability_id VCID-gvne-fnpb-4ycc

summary Type confusion in V8 in Google Chrome prior to 120.0.6099.224 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-0518

reference_id

reference_type

scores

value	0.00139
scoring_system	epss
scoring_elements	0.33784
published_at	2026-06-11T12:55:00Z

value	0.00139
scoring_system	epss
scoring_elements	0.33963
published_at	2026-06-14T12:55:00Z

value	0.00139
scoring_system	epss
scoring_elements	0.33985
published_at	2026-06-13T12:55:00Z

value	0.00139
scoring_system	epss
scoring_elements	0.33962
published_at	2026-06-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-0518

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0517
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0517

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0518
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0518

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0519
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0519

reference_url

https://crbug.com/1507412

reference_id

1507412

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-17T04:00:16Z/

url

https://crbug.com/1507412

reference_url	https://security.gentoo.org/glsa/202402-14
reference_id	GLSA-202402-14
reference_type
scores
url	https://security.gentoo.org/glsa/202402-14

reference_url	https://security.gentoo.org/glsa/202402-23
reference_id	GLSA-202402-23
reference_type
scores
url	https://security.gentoo.org/glsa/202402-23

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IIUBRVICICWREJQUVT67RS7E4PVZQ5RS/

reference_id

IIUBRVICICWREJQUVT67RS7E4PVZQ5RS

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-17T04:00:16Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IIUBRVICICWREJQUVT67RS7E4PVZQ5RS/

reference_url

https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_16.html

reference_id

stable-channel-update-for-desktop_16.html

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-17T04:00:16Z/

url

https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_16.html

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TNN4SO5UI3U3Q6ASTVT6WMZ4723FYDLH/

reference_id

TNN4SO5UI3U3Q6ASTVT6WMZ4723FYDLH

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-17T04:00:16Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TNN4SO5UI3U3Q6ASTVT6WMZ4723FYDLH/

fixed_packages

url	pkg:apk/alpine/qt5-qtwebengine@5.15.16-r3?arch=x86_64&distroversion=v3.19&reponame=community
purl	pkg:apk/alpine/qt5-qtwebengine@5.15.16-r3?arch=x86_64&distroversion=v3.19&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt5-qtwebengine@5.15.16-r3%3Farch=x86_64&distroversion=v3.19&reponame=community

aliases CVE-2024-0518

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-gvne-fnpb-4ycc

url VCID-humv-qwen-5kce

vulnerability_id VCID-humv-qwen-5kce

summary Out of bounds memory access in V8 in Google Chrome prior to 120.0.6099.224 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-0519

reference_id

reference_type

scores

value	0.00175
scoring_system	epss
scoring_elements	0.38781
published_at	2026-06-11T12:55:00Z

value	0.00175
scoring_system	epss
scoring_elements	0.38966
published_at	2026-06-14T12:55:00Z

value	0.00175
scoring_system	epss
scoring_elements	0.38976
published_at	2026-06-13T12:55:00Z

value	0.00175
scoring_system	epss
scoring_elements	0.38953
published_at	2026-06-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-0519

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0517
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0517

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0518
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0518

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0519
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0519

reference_url

https://crbug.com/1517354

reference_id

1517354

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Attend
scoring_system	ssvc
scoring_elements	SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2024-01-18T20:18:46Z/

url

https://crbug.com/1517354

reference_url

https://www.couchbase.com/alerts/

reference_id

alerts

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Attend
scoring_system	ssvc
scoring_elements	SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2024-01-18T20:18:46Z/

url

https://www.couchbase.com/alerts/

reference_url	https://security.gentoo.org/glsa/202402-14
reference_id	GLSA-202402-14
reference_type
scores
url	https://security.gentoo.org/glsa/202402-14

reference_url	https://security.gentoo.org/glsa/202402-23
reference_id	GLSA-202402-23
reference_type
scores
url	https://security.gentoo.org/glsa/202402-23

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IIUBRVICICWREJQUVT67RS7E4PVZQ5RS/

reference_id

IIUBRVICICWREJQUVT67RS7E4PVZQ5RS

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Attend
scoring_system	ssvc
scoring_elements	SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2024-01-18T20:18:46Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IIUBRVICICWREJQUVT67RS7E4PVZQ5RS/

reference_url

https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_16.html

reference_id

stable-channel-update-for-desktop_16.html

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Attend
scoring_system	ssvc
scoring_elements	SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2024-01-18T20:18:46Z/

url

https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_16.html

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TNN4SO5UI3U3Q6ASTVT6WMZ4723FYDLH/

reference_id

TNN4SO5UI3U3Q6ASTVT6WMZ4723FYDLH

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Attend
scoring_system	ssvc
scoring_elements	SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2024-01-18T20:18:46Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TNN4SO5UI3U3Q6ASTVT6WMZ4723FYDLH/

fixed_packages

url	pkg:apk/alpine/qt5-qtwebengine@5.15.16-r3?arch=x86_64&distroversion=v3.19&reponame=community
purl	pkg:apk/alpine/qt5-qtwebengine@5.15.16-r3?arch=x86_64&distroversion=v3.19&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt5-qtwebengine@5.15.16-r3%3Farch=x86_64&distroversion=v3.19&reponame=community

aliases CVE-2024-0519

risk_score 10.0

exploitability 2.0

weighted_severity 7.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-humv-qwen-5kce

url VCID-mgsq-vczt-43g2

vulnerability_id VCID-mgsq-vczt-43g2

summary Use after free in WebAudio in Google Chrome prior to 120.0.6099.199 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-0224

reference_id

reference_type

scores

value	0.00447
scoring_system	epss
scoring_elements	0.63952
published_at	2026-06-11T12:55:00Z

value	0.00447
scoring_system	epss
scoring_elements	0.64065
published_at	2026-06-14T12:55:00Z

value	0.00447
scoring_system	epss
scoring_elements	0.64068
published_at	2026-06-13T12:55:00Z

value	0.00447
scoring_system	epss
scoring_elements	0.64054
published_at	2026-06-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-0224

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0222
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0222

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0223
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0223

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0224
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0224

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0225
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0225

reference_url

https://crbug.com/1505086

reference_id

1505086

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-04T16:51:02Z/

url

https://crbug.com/1505086

reference_url

https://security.gentoo.org/glsa/202401-34

reference_id

202401-34

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-04T16:51:02Z/

url

https://security.gentoo.org/glsa/202401-34

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AYONA2XSNFMXLAW4IHLFI5UVV3QRNG5K/

reference_id

AYONA2XSNFMXLAW4IHLFI5UVV3QRNG5K

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-04T16:51:02Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AYONA2XSNFMXLAW4IHLFI5UVV3QRNG5K/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/D6C2HN4T2S6GYNTAUXLH45LQZHK7QPHP/

reference_id

D6C2HN4T2S6GYNTAUXLH45LQZHK7QPHP

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-04T16:51:02Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/D6C2HN4T2S6GYNTAUXLH45LQZHK7QPHP/

reference_url	https://security.gentoo.org/glsa/202402-14
reference_id	GLSA-202402-14
reference_type
scores
url	https://security.gentoo.org/glsa/202402-14

reference_url

https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop.html

reference_id

stable-channel-update-for-desktop.html

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-04T16:51:02Z/

url

https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop.html

fixed_packages

url	pkg:apk/alpine/qt5-qtwebengine@5.15.16-r3?arch=x86_64&distroversion=v3.19&reponame=community
purl	pkg:apk/alpine/qt5-qtwebengine@5.15.16-r3?arch=x86_64&distroversion=v3.19&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt5-qtwebengine@5.15.16-r3%3Farch=x86_64&distroversion=v3.19&reponame=community

aliases CVE-2024-0224

risk_score 4.0

exploitability 0.5

weighted_severity 7.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-mgsq-vczt-43g2

url VCID-xa9t-86az-gqhk

vulnerability_id VCID-xa9t-86az-gqhk

summary Use after free in ANGLE in Google Chrome prior to 120.0.6099.199 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-0222

reference_id

reference_type

scores

value	0.00443
scoring_system	epss
scoring_elements	0.63765
published_at	2026-06-11T12:55:00Z

value	0.00443
scoring_system	epss
scoring_elements	0.63879
published_at	2026-06-14T12:55:00Z

value	0.00443
scoring_system	epss
scoring_elements	0.6388
published_at	2026-06-13T12:55:00Z

value	0.00443
scoring_system	epss
scoring_elements	0.63867
published_at	2026-06-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-0222

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0222
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0222

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0223
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0223

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0224
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0224

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0225
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0225

reference_url

https://crbug.com/1501798

reference_id

1501798

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-04T16:52:28Z/

url

https://crbug.com/1501798

reference_url

https://security.gentoo.org/glsa/202401-34

reference_id

202401-34

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-04T16:52:28Z/

url

https://security.gentoo.org/glsa/202401-34

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AYONA2XSNFMXLAW4IHLFI5UVV3QRNG5K/

reference_id

AYONA2XSNFMXLAW4IHLFI5UVV3QRNG5K

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-04T16:52:28Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AYONA2XSNFMXLAW4IHLFI5UVV3QRNG5K/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/D6C2HN4T2S6GYNTAUXLH45LQZHK7QPHP/

reference_id

D6C2HN4T2S6GYNTAUXLH45LQZHK7QPHP

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-04T16:52:28Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/D6C2HN4T2S6GYNTAUXLH45LQZHK7QPHP/

reference_url	https://security.gentoo.org/glsa/202402-14
reference_id	GLSA-202402-14
reference_type
scores
url	https://security.gentoo.org/glsa/202402-14

reference_url

https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop.html

reference_id

stable-channel-update-for-desktop.html

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-04T16:52:28Z/

url

https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop.html

fixed_packages

url	pkg:apk/alpine/qt5-qtwebengine@5.15.16-r3?arch=x86_64&distroversion=v3.19&reponame=community
purl	pkg:apk/alpine/qt5-qtwebengine@5.15.16-r3?arch=x86_64&distroversion=v3.19&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt5-qtwebengine@5.15.16-r3%3Farch=x86_64&distroversion=v3.19&reponame=community

aliases CVE-2024-0222

risk_score 4.0

exploitability 0.5

weighted_severity 7.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-xa9t-86az-gqhk

url VCID-zqet-6fq2-jbdj

vulnerability_id VCID-zqet-6fq2-jbdj

summary Multiple vulnerabilities have been discovered in QtWebEngine, the worst of which could lead to remote code execution.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-0333

reference_id

reference_type

scores

value	0.00074
scoring_system	epss
scoring_elements	0.22573
published_at	2026-06-11T12:55:00Z

value	0.00074
scoring_system	epss
scoring_elements	0.22768
published_at	2026-06-12T12:55:00Z

value	0.00074
scoring_system	epss
scoring_elements	0.22781
published_at	2026-06-13T12:55:00Z

value	0.00074
scoring_system	epss
scoring_elements	0.22761
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-0333

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0333
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0333

reference_url	https://security.gentoo.org/glsa/202402-14
reference_id	GLSA-202402-14
reference_type
scores
url	https://security.gentoo.org/glsa/202402-14

reference_url	https://security.gentoo.org/glsa/202402-23
reference_id	GLSA-202402-23
reference_type
scores
url	https://security.gentoo.org/glsa/202402-23

fixed_packages

url	pkg:apk/alpine/qt5-qtwebengine@5.15.16-r3?arch=x86_64&distroversion=v3.19&reponame=community
purl	pkg:apk/alpine/qt5-qtwebengine@5.15.16-r3?arch=x86_64&distroversion=v3.19&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt5-qtwebengine@5.15.16-r3%3Farch=x86_64&distroversion=v3.19&reponame=community

aliases CVE-2024-0333

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-zqet-6fq2-jbdj

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt5-qtwebengine@5.15.16-r3%3Farch=x86_64&distroversion=v3.19&reponame=community

Package Instance