Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/922877?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/922877?format=api", "purl": "pkg:deb/debian/gdal@0?distro=trixie", "type": "deb", "namespace": "debian", "name": "gdal", "version": "0", "qualifiers": { "distro": "trixie" }, "subpath": "", "is_vulnerable": false, "next_non_vulnerable_version": "2.4.2+dfsg-2", "latest_non_vulnerable_version": "3.12.3+dfsg-1", "affected_by_vulnerabilities": [], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/58137?format=api", "vulnerability_id": "VCID-usqv-s3dc-hkgk", "summary": "Multiple packages suffer from RUNPATH issues that may allow users in the\n \"portage\" group to escalate privileges.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2005-3581", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.16888", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17164", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.1733", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17377", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17156", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17248", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17306", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17319", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.1727", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17212", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.1715", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17192", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17097", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17079", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17024", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2005-3581" }, { "reference_url": "http://secunia.com/advisories/17427/", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/17427/" }, { "reference_url": "http://www.gentoo.org/security/en/glsa/glsa-200511-02.xml", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.gentoo.org/security/en/glsa/glsa-200511-02.xml" }, { "reference_url": "http://www.osvdb.org/20529", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.osvdb.org/20529" }, { "reference_url": "http://www.securityfocus.com/bid/15120", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/15120" }, { "reference_url": "http://www.vupen.com/english/advisories/2005/2281", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2005/2281" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gdal:gdal:1.2.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:gdal:gdal:1.2.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gdal:gdal:1.2.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gdal:gdal:1.2.5_r1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:gdal:gdal:1.2.5_r1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gdal:gdal:1.2.5_r1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gdal:gdal:1.2.6_r1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:gdal:gdal:1.2.6_r1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gdal:gdal:1.2.6_r1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gdal:gdal:1.2.6_r2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:gdal:gdal:1.2.6_r2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gdal:gdal:1.2.6_r2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gdal:gdal:1.2.6_r3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:gdal:gdal:1.2.6_r3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gdal:gdal:1.2.6_r3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gdal:gdal:1.2.6_r4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:gdal:gdal:1.2.6_r4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gdal:gdal:1.2.6_r4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gdal:gdal:1.3.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:gdal:gdal:1.3.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gdal:gdal:1.3.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2005-3581", "reference_id": "CVE-2005-3581", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:C/I:C/A:C" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2005-3581" }, { "reference_url": "https://security.gentoo.org/glsa/200511-02", "reference_id": "GLSA-200511-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200511-02" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/922877?format=api", "purl": "pkg:deb/debian/gdal@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdal@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/922878?format=api", "purl": "pkg:deb/debian/gdal@3.2.2%2Bdfsg-2%2Bdeb11u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-yghg-jnaz-xyaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdal@3.2.2%252Bdfsg-2%252Bdeb11u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/922876?format=api", "purl": "pkg:deb/debian/gdal@3.6.2%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-yghg-jnaz-xyaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdal@3.6.2%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/922880?format=api", "purl": "pkg:deb/debian/gdal@3.10.3%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-yghg-jnaz-xyaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdal@3.10.3%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/922879?format=api", "purl": "pkg:deb/debian/gdal@3.12.3%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdal@3.12.3%252Bdfsg-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2005-3581" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-usqv-s3dc-hkgk" } ], "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdal@0%3Fdistro=trixie" }