Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:apk/alpine/busybox@1.27.2-r4?arch=x86&distroversion=v3.12&reponame=main

Type apk

Namespace alpine

Name busybox

Version 1.27.2-r4

Qualifiers

arch	x86
distroversion	v3.12
reponame	main

Subpath

Is_vulnerable false

Next_non_vulnerable_version 1.28.3-r2

Latest_non_vulnerable_version 1.31.1-r22

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-5rmt-k48a-ubbg

vulnerability_id VCID-5rmt-k48a-ubbg

summary

Multiple vulnerabilities have been found in BusyBox, the worst of
    which could allow remote attackers to execute arbitrary code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15873.json

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15873.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-15873

reference_id

reference_type

scores

value	0.00138
scoring_system	epss
scoring_elements	0.33641
published_at	2026-04-01T12:55:00Z

value	0.00138
scoring_system	epss
scoring_elements	0.33877
published_at	2026-04-13T12:55:00Z

value	0.00138
scoring_system	epss
scoring_elements	0.33985
published_at	2026-04-02T12:55:00Z

value	0.00138
scoring_system	epss
scoring_elements	0.34016
published_at	2026-04-04T12:55:00Z

value	0.00138
scoring_system	epss
scoring_elements	0.33871
published_at	2026-04-07T12:55:00Z

value	0.00138
scoring_system	epss
scoring_elements	0.33913
published_at	2026-04-08T12:55:00Z

value	0.00138
scoring_system	epss
scoring_elements	0.33945
published_at	2026-04-09T12:55:00Z

value	0.00138
scoring_system	epss
scoring_elements	0.33943
published_at	2026-04-11T12:55:00Z

value	0.00138
scoring_system	epss
scoring_elements	0.33901
published_at	2026-04-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-15873

reference_url

https://bugs.busybox.net/show_bug.cgi?id=10431

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-09T15:26:38Z/

url

https://bugs.busybox.net/show_bug.cgi?id=10431

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15873
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15873

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.9
scoring_system	cvssv2
scoring_elements	AV:L/AC:M/Au:N/C:C/I:C/A:C

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://git.busybox.net/busybox/commit/?id=0402cb32df015d9372578e3db27db47b33d5c7b0

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-09T15:26:38Z/

url

https://git.busybox.net/busybox/commit/?id=0402cb32df015d9372578e3db27db47b33d5c7b0

reference_url

https://lists.debian.org/debian-lts-announce/2018/07/msg00037.html

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-09T15:26:38Z/

url

https://lists.debian.org/debian-lts-announce/2018/07/msg00037.html

reference_url

https://lists.debian.org/debian-lts-announce/2021/02/msg00020.html

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-09T15:26:38Z/

url

https://lists.debian.org/debian-lts-announce/2021/02/msg00020.html

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1515249
reference_id	1515249
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1515249

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=879732
reference_id	879732
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=879732

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:busybox:busybox:1.27.2:::::::*
reference_id	cpe:2.3:a:busybox:busybox:1.27.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:busybox:busybox:1.27.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04::::esm:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:14.04::::esm:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04::::esm:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04::::lts:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:16.04::::lts:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04::::lts:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:::::::*
reference_id	cpe:2.3:o:canonical:ubuntu_linux:18.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:::::::*
reference_id	cpe:2.3:o:debian:debian_linux:8.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:::::::*
reference_id	cpe:2.3:o:debian:debian_linux:9.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2017-15873

reference_id

CVE-2017-15873

reference_type

scores

value	4.3
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:N/I:N/A:P

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://nvd.nist.gov/vuln/detail/CVE-2017-15873

reference_url	https://security.gentoo.org/glsa/201803-12
reference_id	GLSA-201803-12
reference_type
scores
url	https://security.gentoo.org/glsa/201803-12

reference_url

https://usn.ubuntu.com/3935-1/

reference_id

USN-3935-1

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-09T15:26:38Z/

url

https://usn.ubuntu.com/3935-1/

fixed_packages

url	pkg:apk/alpine/busybox@1.27.2-r4?arch=x86&distroversion=v3.12&reponame=main
purl	pkg:apk/alpine/busybox@1.27.2-r4?arch=x86&distroversion=v3.12&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/busybox@1.27.2-r4%3Farch=x86&distroversion=v3.12&reponame=main

aliases CVE-2017-15873

risk_score 2.5

exploitability 0.5

weighted_severity 5.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5rmt-k48a-ubbg

url VCID-dktd-xqjr-h7h1

vulnerability_id VCID-dktd-xqjr-h7h1

summary

Multiple vulnerabilities have been found in BusyBox, the worst of
    which could allow remote attackers to execute arbitrary code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-16544.json

reference_id

reference_type

scores

value	4.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-16544.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-16544

reference_id

reference_type

scores

value	0.03313
scoring_system	epss
scoring_elements	0.87216
published_at	2026-04-02T12:55:00Z

value	0.03313
scoring_system	epss
scoring_elements	0.87206
published_at	2026-04-01T12:55:00Z

value	0.03313
scoring_system	epss
scoring_elements	0.87232
published_at	2026-04-04T12:55:00Z

value	0.03313
scoring_system	epss
scoring_elements	0.87229
published_at	2026-04-07T12:55:00Z

value	0.03313
scoring_system	epss
scoring_elements	0.87249
published_at	2026-04-08T12:55:00Z

value	0.03313
scoring_system	epss
scoring_elements	0.87256
published_at	2026-04-09T12:55:00Z

value	0.03313
scoring_system	epss
scoring_elements	0.87268
published_at	2026-04-11T12:55:00Z

value	0.03313
scoring_system	epss
scoring_elements	0.87263
published_at	2026-04-12T12:55:00Z

value	0.03313
scoring_system	epss
scoring_elements	0.87258
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-16544

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16544
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16544

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.9
scoring_system	cvssv2
scoring_elements	AV:L/AC:M/Au:N/C:C/I:C/A:C

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

http://seclists.org/fulldisclosure/2020/Mar/15

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-06-09T15:34:08Z/

url

http://seclists.org/fulldisclosure/2020/Mar/15

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1515713
reference_id	1515713
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1515713

reference_url

http://seclists.org/fulldisclosure/2020/Aug/20

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-06-09T15:34:08Z/

url

http://seclists.org/fulldisclosure/2020/Aug/20

reference_url

http://seclists.org/fulldisclosure/2021/Aug/21

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-06-09T15:34:08Z/

url

http://seclists.org/fulldisclosure/2021/Aug/21

reference_url

http://seclists.org/fulldisclosure/2021/Jan/39

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-06-09T15:34:08Z/

url

http://seclists.org/fulldisclosure/2021/Jan/39

reference_url

http://seclists.org/fulldisclosure/2020/Sep/6

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-06-09T15:34:08Z/

url

http://seclists.org/fulldisclosure/2020/Sep/6

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=882258
reference_id	882258
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=882258

reference_url	https://security.archlinux.org/ASA-201803-1
reference_id	ASA-201803-1
reference_type
scores
url	https://security.archlinux.org/ASA-201803-1

reference_url	https://security.archlinux.org/ASA-201803-2
reference_id	ASA-201803-2
reference_type
scores
url	https://security.archlinux.org/ASA-201803-2

reference_url

https://security.archlinux.org/AVG-512

reference_id

AVG-512

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-512

reference_url

https://security.archlinux.org/AVG-514

reference_id

AVG-514

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-514

reference_url

https://www.twistlock.com/2017/11/20/cve-2017-16544-busybox-autocompletion-vulnerability/

reference_id

cve-2017-16544-busybox-autocompletion-vulnerability

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-06-09T15:34:08Z/

url

https://www.twistlock.com/2017/11/20/cve-2017-16544-busybox-autocompletion-vulnerability/

reference_url	https://security.gentoo.org/glsa/201803-12
reference_id	GLSA-201803-12
reference_type
scores
url	https://security.gentoo.org/glsa/201803-12

reference_url

https://us-cert.cisa.gov/ics/advisories/icsa-20-240-01

reference_id

icsa-20-240-01

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-06-09T15:34:08Z/

url

https://us-cert.cisa.gov/ics/advisories/icsa-20-240-01

reference_url

https://git.busybox.net/busybox/commit/?id=c3797d40a1c57352192c6106cc0f435e7d9c11e8

reference_id

?id=c3797d40a1c57352192c6106cc0f435e7d9c11e8

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-06-09T15:34:08Z/

url

https://git.busybox.net/busybox/commit/?id=c3797d40a1c57352192c6106cc0f435e7d9c11e8

reference_url

https://usn.ubuntu.com/3935-1/

reference_id

USN-3935-1

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-06-09T15:34:08Z/

url

https://usn.ubuntu.com/3935-1/

fixed_packages

url	pkg:apk/alpine/busybox@1.27.2-r4?arch=x86&distroversion=v3.12&reponame=main
purl	pkg:apk/alpine/busybox@1.27.2-r4?arch=x86&distroversion=v3.12&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/busybox@1.27.2-r4%3Farch=x86&distroversion=v3.12&reponame=main

aliases CVE-2017-16544

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dktd-xqjr-h7h1

url VCID-g587-5fx5-5uew

vulnerability_id VCID-g587-5fx5-5uew

summary

Multiple vulnerabilities have been found in BusyBox, the worst of
    which could allow remote attackers to execute arbitrary code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15874.json

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15874.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-15874

reference_id

reference_type

scores

value	0.0028
scoring_system	epss
scoring_elements	0.51276
published_at	2026-04-01T12:55:00Z

value	0.0028
scoring_system	epss
scoring_elements	0.51374
published_at	2026-04-13T12:55:00Z

value	0.0028
scoring_system	epss
scoring_elements	0.51328
published_at	2026-04-02T12:55:00Z

value	0.0028
scoring_system	epss
scoring_elements	0.51355
published_at	2026-04-04T12:55:00Z

value	0.0028
scoring_system	epss
scoring_elements	0.51314
published_at	2026-04-07T12:55:00Z

value	0.0028
scoring_system	epss
scoring_elements	0.51368
published_at	2026-04-08T12:55:00Z

value	0.0028
scoring_system	epss
scoring_elements	0.51366
published_at	2026-04-09T12:55:00Z

value	0.0028
scoring_system	epss
scoring_elements	0.51409
published_at	2026-04-11T12:55:00Z

value	0.0028
scoring_system	epss
scoring_elements	0.51388
published_at	2026-04-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-15874

reference_url

https://bugs.busybox.net/show_bug.cgi?id=10436

reference_id

reference_type

scores

value	5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-09T15:23:46Z/

url

https://bugs.busybox.net/show_bug.cgi?id=10436

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15874
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15874

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	1.9
scoring_system	cvssv2
scoring_elements	AV:L/AC:M/Au:N/C:N/I:N/A:P

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1515286
reference_id	1515286
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1515286

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=879732
reference_id	879732
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=879732

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:busybox:busybox:1.27.2:::::::*
reference_id	cpe:2.3:a:busybox:busybox:1.27.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:busybox:busybox:1.27.2:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2017-15874

reference_id

CVE-2017-15874

reference_type

scores

value	4.3
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:N/I:N/A:P

value	5.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	5.0
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N

url

https://nvd.nist.gov/vuln/detail/CVE-2017-15874

reference_url	https://security.gentoo.org/glsa/201803-12
reference_id	GLSA-201803-12
reference_type
scores
url	https://security.gentoo.org/glsa/201803-12

fixed_packages

url	pkg:apk/alpine/busybox@1.27.2-r4?arch=x86&distroversion=v3.12&reponame=main
purl	pkg:apk/alpine/busybox@1.27.2-r4?arch=x86&distroversion=v3.12&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/busybox@1.27.2-r4%3Farch=x86&distroversion=v3.12&reponame=main

aliases CVE-2017-15874

risk_score 2.5

exploitability 0.5

weighted_severity 5.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-g587-5fx5-5uew

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/busybox@1.27.2-r4%3Farch=x86&distroversion=v3.12&reponame=main

Package Instance