Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/84792?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/84792?format=api", "purl": "pkg:ebuild/net-misc/asterisk@1.2.27", "type": "ebuild", "namespace": "net-misc", "name": "asterisk", "version": "1.2.27", "qualifiers": {}, "subpath": "", "is_vulnerable": false, "next_non_vulnerable_version": "1.2.32", "latest_non_vulnerable_version": "18.26.3", "affected_by_vulnerabilities": [], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/60121?format=api", "vulnerability_id": "VCID-p6k6-8gxf-sydp", "summary": "Multiple vulnerabilities have been found in Asterisk allowing for SQL\n injection, session hijacking and unauthorized usage.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2007-6430", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00659", "scoring_system": "epss", "scoring_elements": "0.7102", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00659", "scoring_system": "epss", "scoring_elements": "0.71029", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00659", "scoring_system": "epss", "scoring_elements": "0.71047", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00659", "scoring_system": "epss", "scoring_elements": "0.71022", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00659", "scoring_system": "epss", "scoring_elements": "0.71064", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00659", "scoring_system": "epss", "scoring_elements": "0.71079", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00659", "scoring_system": "epss", "scoring_elements": "0.71102", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00659", "scoring_system": "epss", "scoring_elements": "0.71087", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00659", "scoring_system": "epss", "scoring_elements": "0.7107", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2007-6430" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6430", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6430" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=457063", "reference_id": "457063", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=457063" }, { "reference_url": "https://security.gentoo.org/glsa/200804-13", "reference_id": "GLSA-200804-13", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200804-13" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/84792?format=api", "purl": "pkg:ebuild/net-misc/asterisk@1.2.27", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/net-misc/asterisk@1.2.27" } ], "aliases": [ "CVE-2007-6430" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-p6k6-8gxf-sydp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/60122?format=api", "vulnerability_id": "VCID-rb9n-t857-1uac", "summary": "Multiple vulnerabilities have been found in Asterisk allowing for SQL\n injection, session hijacking and unauthorized usage.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-1332.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-1332.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2008-1332", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01064", "scoring_system": "epss", "scoring_elements": "0.77612", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01064", "scoring_system": "epss", "scoring_elements": "0.77619", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01064", "scoring_system": "epss", "scoring_elements": "0.77646", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01064", "scoring_system": "epss", "scoring_elements": "0.77629", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01064", "scoring_system": "epss", "scoring_elements": "0.77657", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01064", "scoring_system": "epss", "scoring_elements": "0.77662", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01064", "scoring_system": "epss", "scoring_elements": "0.77688", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01064", "scoring_system": "epss", "scoring_elements": "0.77672", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01064", "scoring_system": "epss", "scoring_elements": "0.77671", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2008-1332" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1332", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1332" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=438129", "reference_id": "438129", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=438129" }, { "reference_url": "https://security.gentoo.org/glsa/200804-13", "reference_id": "GLSA-200804-13", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200804-13" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/84792?format=api", "purl": "pkg:ebuild/net-misc/asterisk@1.2.27", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/net-misc/asterisk@1.2.27" } ], "aliases": [ "CVE-2008-1332" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rb9n-t857-1uac" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/60120?format=api", "vulnerability_id": "VCID-w7ce-jd16-xbbs", "summary": "Multiple vulnerabilities have been found in Asterisk allowing for SQL\n injection, session hijacking and unauthorized usage.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2007-6170", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00367", "scoring_system": "epss", "scoring_elements": "0.5863", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00367", "scoring_system": "epss", "scoring_elements": "0.58651", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00367", "scoring_system": "epss", "scoring_elements": "0.58669", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00367", "scoring_system": "epss", "scoring_elements": "0.5865", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00367", "scoring_system": "epss", "scoring_elements": "0.58593", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00367", "scoring_system": "epss", "scoring_elements": "0.58645", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00427", "scoring_system": "epss", "scoring_elements": "0.62346", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00427", "scoring_system": "epss", "scoring_elements": "0.62376", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00427", "scoring_system": "epss", "scoring_elements": "0.62288", "published_at": "2026-04-01T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2007-6170" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6170", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6170" }, { "reference_url": "https://security.gentoo.org/glsa/200804-13", "reference_id": "GLSA-200804-13", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200804-13" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/84792?format=api", "purl": "pkg:ebuild/net-misc/asterisk@1.2.27", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/net-misc/asterisk@1.2.27" } ], "aliases": [ "CVE-2007-6170" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-w7ce-jd16-xbbs" } ], "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/net-misc/asterisk@1.2.27" }