Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/485855?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/485855?format=api", "purl": "pkg:apk/alpine/intel-ucode@20230808-r0?arch=x86&distroversion=v3.18&reponame=main", "type": "apk", "namespace": "alpine", "name": "intel-ucode", "version": "20230808-r0", "qualifiers": { "arch": "x86", "distroversion": "v3.18", "reponame": "main" }, "subpath": "", "is_vulnerable": false, "next_non_vulnerable_version": "20231114-r0", "latest_non_vulnerable_version": "20250512-r0", "affected_by_vulnerabilities": [], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/78204?format=api", "vulnerability_id": "VCID-fe46-8fs3-p3fd", "summary": "hw: Intel: Unauthorized error injection in Intel SGX or Intel TDX", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-41804.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:L/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-41804.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-41804", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00017", "scoring_system": "epss", "scoring_elements": "0.03982", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00017", "scoring_system": "epss", "scoring_elements": "0.04141", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00017", "scoring_system": "epss", "scoring_elements": "0.03998", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00017", "scoring_system": "epss", "scoring_elements": "0.04011", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00017", "scoring_system": "epss", "scoring_elements": "0.04017", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00017", "scoring_system": "epss", "scoring_elements": "0.04035", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00017", "scoring_system": "epss", "scoring_elements": "0.04006", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00017", "scoring_system": "epss", "scoring_elements": "0.0399", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00017", "scoring_system": "epss", "scoring_elements": "0.03961", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00017", "scoring_system": "epss", "scoring_elements": "0.03941", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00017", "scoring_system": "epss", "scoring_elements": "0.03953", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00017", "scoring_system": "epss", "scoring_elements": "0.04075", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00017", "scoring_system": "epss", "scoring_elements": "0.0409", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00017", "scoring_system": "epss", "scoring_elements": "0.04108", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-41804" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40982", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40982" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41804", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41804" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-23908", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-23908" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:L/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1043305", "reference_id": "1043305", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1043305" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2230685", "reference_id": "2230685", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2230685" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5474", "reference_id": "dsa-5474", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-02T13:34:03Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5474" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HKREYYTWUY7ZDNIB2N6H5BUJ3LE5VZPE/", "reference_id": "HKREYYTWUY7ZDNIB2N6H5BUJ3LE5VZPE", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-02T13:34:03Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HKREYYTWUY7ZDNIB2N6H5BUJ3LE5VZPE/" }, { "reference_url": "http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00837.html", "reference_id": "intel-sa-00837.html", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-02T13:34:03Z/" } ], "url": "http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00837.html" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/08/msg00026.html", "reference_id": "msg00026.html", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-02T13:34:03Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/08/msg00026.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230915-0003/", "reference_id": "ntap-20230915-0003", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-02T13:34:03Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230915-0003/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OL7WI2TJCWSZIQP2RIOLWHOKLM25M44J/", "reference_id": "OL7WI2TJCWSZIQP2RIOLWHOKLM25M44J", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-02T13:34:03Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OL7WI2TJCWSZIQP2RIOLWHOKLM25M44J/" }, { "reference_url": "https://usn.ubuntu.com/6286-1/", "reference_id": "USN-6286-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6286-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/485855?format=api", "purl": "pkg:apk/alpine/intel-ucode@20230808-r0?arch=x86&distroversion=v3.18&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/intel-ucode@20230808-r0%3Farch=x86&distroversion=v3.18&reponame=main" } ], "aliases": [ "CVE-2022-41804" ], "risk_score": 3.2, "exploitability": "0.5", "weighted_severity": "6.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fe46-8fs3-p3fd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/78203?format=api", "vulnerability_id": "VCID-t56a-46c7-fybe", "summary": "hw: Intel: 3rd Generation processors may allow information disclosure", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-23908.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-23908.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-23908", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02059", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02104", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02065", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02061", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02063", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.0208", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02056", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02041", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02036", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02014", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02028", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02113", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02084", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02077", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-23908" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40982", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40982" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41804", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41804" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-23908", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-23908" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1043305", "reference_id": "1043305", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1043305" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2230675", "reference_id": "2230675", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2230675" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5474", "reference_id": "dsa-5474", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-02T13:35:03Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5474" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HKREYYTWUY7ZDNIB2N6H5BUJ3LE5VZPE/", "reference_id": "HKREYYTWUY7ZDNIB2N6H5BUJ3LE5VZPE", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-02T13:35:03Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HKREYYTWUY7ZDNIB2N6H5BUJ3LE5VZPE/" }, { "reference_url": "http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00836.html", "reference_id": "intel-sa-00836.html", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-02T13:35:03Z/" } ], "url": "http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00836.html" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/08/msg00026.html", "reference_id": "msg00026.html", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-02T13:35:03Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/08/msg00026.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230824-0003/", "reference_id": "ntap-20230824-0003", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-02T13:35:03Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230824-0003/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OL7WI2TJCWSZIQP2RIOLWHOKLM25M44J/", "reference_id": "OL7WI2TJCWSZIQP2RIOLWHOKLM25M44J", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-02T13:35:03Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OL7WI2TJCWSZIQP2RIOLWHOKLM25M44J/" }, { "reference_url": "https://usn.ubuntu.com/6286-1/", "reference_id": "USN-6286-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6286-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/485855?format=api", "purl": "pkg:apk/alpine/intel-ucode@20230808-r0?arch=x86&distroversion=v3.18&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/intel-ucode@20230808-r0%3Farch=x86&distroversion=v3.18&reponame=main" } ], "aliases": [ "CVE-2023-23908" ], "risk_score": 2.7, "exploitability": "0.5", "weighted_severity": "5.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-t56a-46c7-fybe" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4357?format=api", "vulnerability_id": "VCID-trxm-8mg3-4bbr", "summary": "x86/Intel: Gather Data Sampling", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-40982.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-40982.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-40982", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00853", "scoring_system": "epss", "scoring_elements": "0.75003", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00853", "scoring_system": "epss", "scoring_elements": "0.7488", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00853", "scoring_system": "epss", "scoring_elements": "0.74909", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00853", "scoring_system": "epss", "scoring_elements": "0.74883", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00853", "scoring_system": "epss", "scoring_elements": "0.74916", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00853", "scoring_system": "epss", "scoring_elements": "0.74929", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00853", "scoring_system": "epss", "scoring_elements": "0.74952", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00853", "scoring_system": "epss", "scoring_elements": "0.7493", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00853", "scoring_system": "epss", "scoring_elements": "0.74921", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00853", "scoring_system": "epss", "scoring_elements": "0.74957", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00853", "scoring_system": "epss", "scoring_elements": "0.74964", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00853", "scoring_system": "epss", "scoring_elements": "0.74993", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00853", "scoring_system": "epss", "scoring_elements": "0.74999", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-40982" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40982", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40982" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41804", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41804" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-20569", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-20569" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-23908", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-23908" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1043305", "reference_id": "1043305", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1043305" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2223949", "reference_id": "2223949", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2223949" }, { "reference_url": "https://access.redhat.com/solutions/7027704", "reference_id": "7027704", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-31T20:33:43Z/" } ], "url": "https://access.redhat.com/solutions/7027704" }, { "reference_url": "https://aws.amazon.com/security/security-bulletins/AWS-2023-007/", "reference_id": "AWS-2023-007", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-31T20:33:43Z/" } ], "url": "https://aws.amazon.com/security/security-bulletins/AWS-2023-007/" }, { "reference_url": "https://downfall.page", "reference_id": "downfall.page", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-31T20:33:43Z/" } ], "url": "https://downfall.page" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5474", "reference_id": "dsa-5474", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-31T20:33:43Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5474" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5475", "reference_id": "dsa-5475", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-31T20:33:43Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5475" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HKKYIK2EASDNUV4I7EFJKNBVO3KCKGRR/", "reference_id": "HKKYIK2EASDNUV4I7EFJKNBVO3KCKGRR", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-31T20:33:43Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HKKYIK2EASDNUV4I7EFJKNBVO3KCKGRR/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HKREYYTWUY7ZDNIB2N6H5BUJ3LE5VZPE/", "reference_id": "HKREYYTWUY7ZDNIB2N6H5BUJ3LE5VZPE", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-31T20:33:43Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HKREYYTWUY7ZDNIB2N6H5BUJ3LE5VZPE/" }, { "reference_url": "http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00828.html", "reference_id": "intel-sa-00828.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-31T20:33:43Z/" } ], "url": "http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00828.html" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/08/msg00013.html", "reference_id": "msg00013.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-31T20:33:43Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/08/msg00013.html" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/08/msg00026.html", "reference_id": "msg00026.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-31T20:33:43Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/08/msg00026.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230811-0001/", "reference_id": "ntap-20230811-0001", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-31T20:33:43Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230811-0001/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OL7WI2TJCWSZIQP2RIOLWHOKLM25M44J/", "reference_id": "OL7WI2TJCWSZIQP2RIOLWHOKLM25M44J", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-31T20:33:43Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OL7WI2TJCWSZIQP2RIOLWHOKLM25M44J/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6583", "reference_id": "RHSA-2023:6583", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6583" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6901", "reference_id": "RHSA-2023:6901", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6901" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7077", "reference_id": "RHSA-2023:7077", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7077" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7370", "reference_id": "RHSA-2023:7370", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7370" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7379", "reference_id": "RHSA-2023:7379", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7379" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7423", "reference_id": "RHSA-2023:7423", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7423" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7424", "reference_id": "RHSA-2023:7424", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7424" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7539", "reference_id": "RHSA-2023:7539", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7539" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0412", "reference_id": "RHSA-2024:0412", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0412" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0562", "reference_id": "RHSA-2024:0562", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0562" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0563", "reference_id": "RHSA-2024:0563", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0563" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:1250", "reference_id": "RHSA-2024:1250", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:1250" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:1268", "reference_id": "RHSA-2024:1268", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:1268" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:1269", "reference_id": "RHSA-2024:1269", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:1269" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:1306", "reference_id": "RHSA-2024:1306", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:1306" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3319", "reference_id": "RHSA-2024:3319", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:3319" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T7WO5JM74YJSYAE5RBV4DC6A4YLEKWLF/", "reference_id": "T7WO5JM74YJSYAE5RBV4DC6A4YLEKWLF", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-31T20:33:43Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T7WO5JM74YJSYAE5RBV4DC6A4YLEKWLF/" }, { "reference_url": "https://usn.ubuntu.com/6286-1/", "reference_id": "USN-6286-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6286-1/" }, { "reference_url": "https://usn.ubuntu.com/6315-1/", "reference_id": "USN-6315-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6315-1/" }, { "reference_url": "https://usn.ubuntu.com/6316-1/", "reference_id": "USN-6316-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6316-1/" }, { "reference_url": "https://usn.ubuntu.com/6317-1/", "reference_id": "USN-6317-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6317-1/" }, { "reference_url": "https://usn.ubuntu.com/6318-1/", "reference_id": "USN-6318-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6318-1/" }, { "reference_url": "https://usn.ubuntu.com/6321-1/", "reference_id": "USN-6321-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6321-1/" }, { "reference_url": "https://usn.ubuntu.com/6324-1/", "reference_id": "USN-6324-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6324-1/" }, { "reference_url": "https://usn.ubuntu.com/6325-1/", "reference_id": "USN-6325-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6325-1/" }, { "reference_url": "https://usn.ubuntu.com/6328-1/", "reference_id": "USN-6328-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6328-1/" }, { "reference_url": "https://usn.ubuntu.com/6329-1/", "reference_id": "USN-6329-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6329-1/" }, { "reference_url": "https://usn.ubuntu.com/6330-1/", "reference_id": "USN-6330-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6330-1/" }, { "reference_url": "https://usn.ubuntu.com/6331-1/", "reference_id": "USN-6331-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6331-1/" }, { "reference_url": "https://usn.ubuntu.com/6332-1/", "reference_id": "USN-6332-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6332-1/" }, { "reference_url": "https://usn.ubuntu.com/6346-1/", "reference_id": "USN-6346-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6346-1/" }, { "reference_url": "https://usn.ubuntu.com/6348-1/", "reference_id": "USN-6348-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6348-1/" }, { "reference_url": "https://usn.ubuntu.com/6357-1/", "reference_id": "USN-6357-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6357-1/" }, { "reference_url": "https://usn.ubuntu.com/6388-1/", "reference_id": "USN-6388-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6388-1/" }, { "reference_url": "https://usn.ubuntu.com/6396-1/", "reference_id": "USN-6396-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6396-1/" }, { "reference_url": "https://usn.ubuntu.com/6396-2/", "reference_id": "USN-6396-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6396-2/" }, { "reference_url": "https://usn.ubuntu.com/6396-3/", "reference_id": "USN-6396-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6396-3/" }, { "reference_url": "https://usn.ubuntu.com/6397-1/", "reference_id": "USN-6397-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6397-1/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-435.html", "reference_id": "XSA-435", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-31T20:33:43Z/" } ], "url": "https://xenbits.xen.org/xsa/advisory-435.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/485855?format=api", "purl": "pkg:apk/alpine/intel-ucode@20230808-r0?arch=x86&distroversion=v3.18&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/intel-ucode@20230808-r0%3Farch=x86&distroversion=v3.18&reponame=main" } ], "aliases": [ "CVE-2022-40982", "XSA-435" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-trxm-8mg3-4bbr" } ], "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/intel-ucode@20230808-r0%3Farch=x86&distroversion=v3.18&reponame=main" }