Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:rpm/redhat/openssh@6.6.1p1-22?arch=el7

Type rpm

Namespace redhat

Name openssh

Version 6.6.1p1-22

Qualifiers

arch	el7

Subpath

Is_vulnerable true

Next_non_vulnerable_version null

Latest_non_vulnerable_version null

Affected_by_vulnerabilities

url VCID-aaue-a343-u7f5

vulnerability_id VCID-aaue-a343-u7f5

summary

Multiple vulnerabilities have been found in OpenSSH, the worst of
    which could lead to arbitrary code execution, or cause a Denial of Service
    condition.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-6563.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-6563.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2015-6563

reference_id

reference_type

scores

value	0.00099
scoring_system	epss
scoring_elements	0.2761
published_at	2026-04-01T12:55:00Z

value	0.00099
scoring_system	epss
scoring_elements	0.2765
published_at	2026-04-02T12:55:00Z

value	0.00099
scoring_system	epss
scoring_elements	0.27687
published_at	2026-04-04T12:55:00Z

value	0.00099
scoring_system	epss
scoring_elements	0.2748
published_at	2026-04-07T12:55:00Z

value	0.00099
scoring_system	epss
scoring_elements	0.27548
published_at	2026-04-08T12:55:00Z

value	0.00099
scoring_system	epss
scoring_elements	0.2759
published_at	2026-04-09T12:55:00Z

value	0.00099
scoring_system	epss
scoring_elements	0.27595
published_at	2026-04-11T12:55:00Z

value	0.00099
scoring_system	epss
scoring_elements	0.27551
published_at	2026-04-12T12:55:00Z

value	0.00099
scoring_system	epss
scoring_elements	0.27494
published_at	2026-04-13T12:55:00Z

value	0.00099
scoring_system	epss
scoring_elements	0.27501
published_at	2026-04-16T12:55:00Z

value	0.00099
scoring_system	epss
scoring_elements	0.27473
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2015-6563

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-6563
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-6563

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1252844
reference_id	1252844
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1252844

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=795711
reference_id	795711
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=795711

reference_url	https://security.gentoo.org/glsa/201512-04
reference_id	GLSA-201512-04
reference_type
scores
url	https://security.gentoo.org/glsa/201512-04

reference_url	https://access.redhat.com/errata/RHSA-2015:2088
reference_id	RHSA-2015:2088
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:2088

reference_url	https://access.redhat.com/errata/RHSA-2016:0741
reference_id	RHSA-2016:0741
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:0741

fixed_packages

aliases CVE-2015-6563

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-aaue-a343-u7f5

url

VCID-t1sg-4bvj-qqfk

vulnerability_id

VCID-t1sg-4bvj-qqfk

summary

Multiple vulnerabilities have been found in OpenSSH, the worst of
    which could lead to arbitrary code execution, or cause a Denial of Service
    condition.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-5600.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-5600.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2015-5600

reference_id

reference_type

scores

value	0.70907
scoring_system	epss
scoring_elements	0.9869
published_at	2026-04-01T12:55:00Z

value	0.70907
scoring_system	epss
scoring_elements	0.98691
published_at	2026-04-02T12:55:00Z

value	0.70907
scoring_system	epss
scoring_elements	0.98694
published_at	2026-04-04T12:55:00Z

value	0.70907
scoring_system	epss
scoring_elements	0.98697
published_at	2026-04-07T12:55:00Z

value	0.70907
scoring_system	epss
scoring_elements	0.98698
published_at	2026-04-08T12:55:00Z

value	0.73594
scoring_system	epss
scoring_elements	0.98803
published_at	2026-04-09T12:55:00Z

value	0.73594
scoring_system	epss
scoring_elements	0.98806
published_at	2026-04-11T12:55:00Z

value	0.73594
scoring_system	epss
scoring_elements	0.98807
published_at	2026-04-12T12:55:00Z

value	0.73594
scoring_system	epss
scoring_elements	0.98808
published_at	2026-04-13T12:55:00Z

value	0.73594
scoring_system	epss
scoring_elements	0.98812
published_at	2026-04-16T12:55:00Z

value	0.73594
scoring_system	epss
scoring_elements	0.98813
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2015-5600

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5600
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5600

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1245969
reference_id	1245969
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1245969

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=793616
reference_id	793616
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=793616

reference_url	https://security.gentoo.org/glsa/201512-04
reference_id	GLSA-201512-04
reference_type
scores
url	https://security.gentoo.org/glsa/201512-04

reference_url	https://access.redhat.com/errata/RHSA-2015:2088
reference_id	RHSA-2015:2088
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:2088

reference_url	https://access.redhat.com/errata/RHSA-2016:0466
reference_id	RHSA-2016:0466
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:0466

reference_url	https://usn.ubuntu.com/2710-1/
reference_id	USN-2710-1
reference_type
scores
url	https://usn.ubuntu.com/2710-1/

fixed_packages

aliases

CVE-2015-5600

risk_score

0.3

exploitability

0.5

weighted_severity

0.7

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-t1sg-4bvj-qqfk

url VCID-yrzy-er8x-c3ad

vulnerability_id VCID-yrzy-er8x-c3ad

summary

Multiple vulnerabilities have been found in OpenSSH, the worst of
    which could lead to arbitrary code execution, or cause a Denial of Service
    condition.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-6564.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-6564.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2015-6564

reference_id

reference_type

scores

value	0.02032
scoring_system	epss
scoring_elements	0.83736
published_at	2026-04-01T12:55:00Z

value	0.02032
scoring_system	epss
scoring_elements	0.83749
published_at	2026-04-02T12:55:00Z

value	0.02032
scoring_system	epss
scoring_elements	0.83763
published_at	2026-04-04T12:55:00Z

value	0.02032
scoring_system	epss
scoring_elements	0.83766
published_at	2026-04-07T12:55:00Z

value	0.02032
scoring_system	epss
scoring_elements	0.8379
published_at	2026-04-08T12:55:00Z

value	0.02032
scoring_system	epss
scoring_elements	0.83796
published_at	2026-04-09T12:55:00Z

value	0.02032
scoring_system	epss
scoring_elements	0.83812
published_at	2026-04-11T12:55:00Z

value	0.02032
scoring_system	epss
scoring_elements	0.83806
published_at	2026-04-12T12:55:00Z

value	0.02032
scoring_system	epss
scoring_elements	0.83802
published_at	2026-04-13T12:55:00Z

value	0.02032
scoring_system	epss
scoring_elements	0.83835
published_at	2026-04-16T12:55:00Z

value	0.02032
scoring_system	epss
scoring_elements	0.83836
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2015-6564

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-6564
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-6564

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1252852
reference_id	1252852
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1252852

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=795711
reference_id	795711
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=795711

reference_url	https://security.gentoo.org/glsa/201512-04
reference_id	GLSA-201512-04
reference_type
scores
url	https://security.gentoo.org/glsa/201512-04

reference_url	https://access.redhat.com/errata/RHSA-2015:2088
reference_id	RHSA-2015:2088
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:2088

reference_url	https://access.redhat.com/errata/RHSA-2016:0741
reference_id	RHSA-2016:0741
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:0741

fixed_packages

aliases CVE-2015-6564

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-yrzy-er8x-c3ad

Fixing_vulnerabilities

Risk_score 0.3

Resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openssh@6.6.1p1-22%3Farch=el7

Package Instance