Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/926419?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/926419?format=api", "purl": "pkg:deb/debian/krb5@1.6.dfsg.4~beta1-13?distro=trixie", "type": "deb", "namespace": "debian", "name": "krb5", "version": "1.6.dfsg.4~beta1-13", "qualifiers": { "distro": "trixie" }, "subpath": "", "is_vulnerable": false, "next_non_vulnerable_version": "1.7+dfsg-1", "latest_non_vulnerable_version": "1.22.1-2", "affected_by_vulnerabilities": [], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/48777?format=api", "vulnerability_id": "VCID-dq1q-jbpx-8fhb", "summary": "Multiple vulnerabilities in MIT Kerberos 5 might allow remote\n unauthenticated users to execute arbitrary code with root privileges.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-0847.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-0847.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2009-0847", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.20287", "scoring_system": "epss", "scoring_elements": "0.95482", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.20287", "scoring_system": "epss", "scoring_elements": "0.95491", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.20287", "scoring_system": "epss", "scoring_elements": "0.95497", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.20287", "scoring_system": "epss", "scoring_elements": "0.95502", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.20287", "scoring_system": "epss", "scoring_elements": "0.95508", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.20287", "scoring_system": "epss", "scoring_elements": "0.95511", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.20287", "scoring_system": "epss", "scoring_elements": "0.95515", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.20287", "scoring_system": "epss", "scoring_elements": "0.95517", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.20287", "scoring_system": "epss", "scoring_elements": "0.95518", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.20287", "scoring_system": "epss", "scoring_elements": "0.95526", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.20287", "scoring_system": "epss", "scoring_elements": "0.95531", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.20287", "scoring_system": "epss", "scoring_elements": "0.95533", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.20287", "scoring_system": "epss", "scoring_elements": "0.95534", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.20287", "scoring_system": "epss", "scoring_elements": "0.95535", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.20287", "scoring_system": "epss", "scoring_elements": "0.95536", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2009-0847" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0847", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0847" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=491034", "reference_id": "491034", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=491034" }, { "reference_url": "https://security.gentoo.org/glsa/200904-09", "reference_id": "GLSA-200904-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200904-09" }, { "reference_url": "https://usn.ubuntu.com/755-1/", "reference_id": "USN-755-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/755-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/926419?format=api", "purl": "pkg:deb/debian/krb5@1.6.dfsg.4~beta1-13?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.6.dfsg.4~beta1-13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/926395?format=api", "purl": "pkg:deb/debian/krb5@1.18.3-6%2Bdeb11u5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.18.3-6%252Bdeb11u5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/926393?format=api", "purl": "pkg:deb/debian/krb5@1.20.1-2%2Bdeb12u4?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.20.1-2%252Bdeb12u4%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/926397?format=api", "purl": "pkg:deb/debian/krb5@1.21.3-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.21.3-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/926396?format=api", "purl": "pkg:deb/debian/krb5@1.22.1-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.22.1-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2009-0847" ], "risk_score": 0.1, "exploitability": "0.5", "weighted_severity": "0.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dq1q-jbpx-8fhb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/48774?format=api", "vulnerability_id": "VCID-hryp-mt7d-kygt", "summary": "Multiple vulnerabilities in MIT Kerberos 5 might allow remote\n unauthenticated users to execute arbitrary code with root privileges.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-0844.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-0844.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2009-0844", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.03433", "scoring_system": "epss", "scoring_elements": "0.8742", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.03433", "scoring_system": "epss", "scoring_elements": "0.8743", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.03433", "scoring_system": "epss", "scoring_elements": "0.87444", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.03433", "scoring_system": "epss", "scoring_elements": "0.87446", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.03433", "scoring_system": "epss", "scoring_elements": "0.87465", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.03433", "scoring_system": "epss", "scoring_elements": "0.87472", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.03433", "scoring_system": "epss", "scoring_elements": "0.87484", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.03433", "scoring_system": "epss", "scoring_elements": "0.87479", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.03433", "scoring_system": "epss", "scoring_elements": "0.87476", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.03433", "scoring_system": "epss", "scoring_elements": "0.8749", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.03433", "scoring_system": "epss", "scoring_elements": "0.87492", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.03433", "scoring_system": "epss", "scoring_elements": "0.87506", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.03433", "scoring_system": "epss", "scoring_elements": "0.87513", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.03433", "scoring_system": "epss", "scoring_elements": "0.87512", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2009-0844" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0844", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0844" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=491033", "reference_id": "491033", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=491033" }, { "reference_url": "https://security.gentoo.org/glsa/200904-09", "reference_id": "GLSA-200904-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200904-09" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2009:0408", "reference_id": "RHSA-2009:0408", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2009:0408" }, { "reference_url": "https://usn.ubuntu.com/755-1/", "reference_id": "USN-755-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/755-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/926419?format=api", "purl": "pkg:deb/debian/krb5@1.6.dfsg.4~beta1-13?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.6.dfsg.4~beta1-13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/926395?format=api", "purl": "pkg:deb/debian/krb5@1.18.3-6%2Bdeb11u5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.18.3-6%252Bdeb11u5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/926393?format=api", "purl": "pkg:deb/debian/krb5@1.20.1-2%2Bdeb12u4?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.20.1-2%252Bdeb12u4%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/926397?format=api", "purl": "pkg:deb/debian/krb5@1.21.3-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.21.3-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/926396?format=api", "purl": "pkg:deb/debian/krb5@1.22.1-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.22.1-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2009-0844" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hryp-mt7d-kygt" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/48776?format=api", "vulnerability_id": "VCID-qq4w-brbc-8fab", "summary": "Multiple vulnerabilities in MIT Kerberos 5 might allow remote\n unauthenticated users to execute arbitrary code with root privileges.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-0846.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-0846.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2009-0846", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.50005", "scoring_system": "epss", "scoring_elements": "0.97835", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.50005", "scoring_system": "epss", "scoring_elements": "0.97823", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.50005", "scoring_system": "epss", "scoring_elements": "0.97829", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.50005", "scoring_system": "epss", "scoring_elements": "0.97832", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.50005", "scoring_system": "epss", "scoring_elements": "0.9783", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.50005", "scoring_system": "epss", "scoring_elements": "0.97828", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.50005", "scoring_system": "epss", "scoring_elements": "0.97817", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.50005", "scoring_system": "epss", "scoring_elements": "0.97819", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.50005", "scoring_system": "epss", "scoring_elements": "0.97821", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.56355", "scoring_system": "epss", "scoring_elements": "0.98101", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.56355", "scoring_system": "epss", "scoring_elements": "0.98104", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.56355", "scoring_system": "epss", "scoring_elements": "0.98105", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.56355", "scoring_system": "epss", "scoring_elements": "0.98109", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.56355", "scoring_system": "epss", "scoring_elements": "0.98097", "published_at": "2026-04-01T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2009-0846" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0846", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0846" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=491036", "reference_id": "491036", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=491036" }, { "reference_url": "https://security.gentoo.org/glsa/200904-09", "reference_id": "GLSA-200904-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200904-09" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2009:0408", "reference_id": "RHSA-2009:0408", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2009:0408" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2009:0409", "reference_id": "RHSA-2009:0409", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2009:0409" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2009:0410", "reference_id": "RHSA-2009:0410", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2009:0410" }, { "reference_url": "https://usn.ubuntu.com/755-1/", "reference_id": "USN-755-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/755-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/926419?format=api", "purl": "pkg:deb/debian/krb5@1.6.dfsg.4~beta1-13?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.6.dfsg.4~beta1-13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/926395?format=api", "purl": "pkg:deb/debian/krb5@1.18.3-6%2Bdeb11u5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.18.3-6%252Bdeb11u5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/926393?format=api", "purl": "pkg:deb/debian/krb5@1.20.1-2%2Bdeb12u4?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.20.1-2%252Bdeb12u4%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/926397?format=api", "purl": "pkg:deb/debian/krb5@1.21.3-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.21.3-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/926396?format=api", "purl": "pkg:deb/debian/krb5@1.22.1-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.22.1-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2009-0846" ], "risk_score": 0.2, "exploitability": "0.5", "weighted_severity": "0.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qq4w-brbc-8fab" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/48775?format=api", "vulnerability_id": "VCID-v61z-w8nz-87bv", "summary": "Multiple vulnerabilities in MIT Kerberos 5 might allow remote\n unauthenticated users to execute arbitrary code with root privileges.", "references": [ { "reference_url": "http://krbdev.mit.edu/rt/Ticket/Display.html?user=guest&pass=guest&id=6402", "reference_id": "", "reference_type": "", "scores": [], "url": "http://krbdev.mit.edu/rt/Ticket/Display.html?user=guest&pass=guest&id=6402" }, { "reference_url": "http://lists.apple.com/archives/security-announce/2009/May/msg00002.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.apple.com/archives/security-announce/2009/May/msg00002.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-0845.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-0845.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2009-0845", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.19309", "scoring_system": "epss", "scoring_elements": "0.95388", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.19309", "scoring_system": "epss", "scoring_elements": "0.95333", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.19309", "scoring_system": "epss", "scoring_elements": "0.95343", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.19309", "scoring_system": "epss", "scoring_elements": "0.95349", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.19309", "scoring_system": "epss", "scoring_elements": "0.95354", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.19309", "scoring_system": "epss", "scoring_elements": "0.95361", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.19309", "scoring_system": "epss", "scoring_elements": "0.95364", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.19309", "scoring_system": "epss", "scoring_elements": "0.95368", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.19309", "scoring_system": "epss", "scoring_elements": "0.9537", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.19309", "scoring_system": "epss", "scoring_elements": "0.95377", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.19309", "scoring_system": "epss", "scoring_elements": "0.95381", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.19309", "scoring_system": "epss", "scoring_elements": "0.95384", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.19309", "scoring_system": "epss", "scoring_elements": "0.95387", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2009-0845" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0845", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0845" }, { "reference_url": "http://secunia.com/advisories/34347", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/34347" }, { "reference_url": "http://secunia.com/advisories/34594", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/34594" }, { "reference_url": "http://secunia.com/advisories/34617", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/34617" }, { "reference_url": "http://secunia.com/advisories/34622", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/34622" }, { "reference_url": "http://secunia.com/advisories/34628", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/34628" }, { "reference_url": "http://secunia.com/advisories/34630", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/34630" }, { "reference_url": "http://secunia.com/advisories/34637", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/34637" }, { "reference_url": "http://secunia.com/advisories/34640", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/34640" }, { "reference_url": "http://secunia.com/advisories/34734", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/34734" }, { "reference_url": "http://secunia.com/advisories/35074", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/35074" }, { "reference_url": "http://security.gentoo.org/glsa/glsa-200904-09.xml", "reference_id": "", "reference_type": "", "scores": [], "url": "http://security.gentoo.org/glsa/glsa-200904-09.xml" }, { "reference_url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/49448", "reference_id": "", "reference_type": "", "scores": [], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/49448" }, { "reference_url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10044", "reference_id": "", "reference_type": "", "scores": [], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10044" }, { "reference_url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6449", "reference_id": "", "reference_type": "", "scores": [], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6449" }, { "reference_url": "http://src.mit.edu/fisheye/browse/krb5/trunk/src/lib/gssapi/spnego/spnego_mech.c?r1=21875&r2=22084", "reference_id": "", "reference_type": "", "scores": [], "url": "http://src.mit.edu/fisheye/browse/krb5/trunk/src/lib/gssapi/spnego/spnego_mech.c?r1=21875&r2=22084" }, { "reference_url": "http://src.mit.edu/fisheye/changelog/krb5/?cs=22084", "reference_id": "", "reference_type": "", "scores": [], "url": "http://src.mit.edu/fisheye/changelog/krb5/?cs=22084" }, { "reference_url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-256728-1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-256728-1" }, { "reference_url": "http://support.apple.com/kb/HT3549", "reference_id": "", "reference_type": "", "scores": [], "url": "http://support.apple.com/kb/HT3549" }, { "reference_url": "http://support.avaya.com/elmodocs2/security/ASA-2009-142.htm", "reference_id": "", "reference_type": "", "scores": [], "url": "http://support.avaya.com/elmodocs2/security/ASA-2009-142.htm" }, { "reference_url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5047180.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5047180.html" }, { "reference_url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5047181.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5047181.html" }, { "reference_url": "https://www.redhat.com/archives/fedora-package-announce/2009-April/msg00205.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.redhat.com/archives/fedora-package-announce/2009-April/msg00205.html" }, { "reference_url": "https://www.redhat.com/archives/fedora-package-announce/2009-April/msg00206.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.redhat.com/archives/fedora-package-announce/2009-April/msg00206.html" }, { "reference_url": "http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2009-001.txt", "reference_id": "", "reference_type": "", "scores": [], "url": "http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2009-001.txt" }, { "reference_url": "http://wiki.rpath.com/Advisories:rPSA-2009-0058", "reference_id": "", "reference_type": "", "scores": [], "url": "http://wiki.rpath.com/Advisories:rPSA-2009-0058" }, { "reference_url": "http://wiki.rpath.com/wiki/Advisories:rPSA-2009-0058", "reference_id": "", "reference_type": "", "scores": [], "url": "http://wiki.rpath.com/wiki/Advisories:rPSA-2009-0058" }, { "reference_url": "http://www-01.ibm.com/support/docview.wss?uid=swg21396120", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21396120" }, { "reference_url": "http://www.kb.cert.org/vuls/id/662091", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.kb.cert.org/vuls/id/662091" }, { "reference_url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:082", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:082" }, { "reference_url": "http://www.redhat.com/support/errata/RHSA-2009-0408.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.redhat.com/support/errata/RHSA-2009-0408.html" }, { "reference_url": "http://www.securityfocus.com/archive/1/502526/100/0/threaded", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/archive/1/502526/100/0/threaded" }, { "reference_url": "http://www.securityfocus.com/archive/1/502546/100/0/threaded", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/archive/1/502546/100/0/threaded" }, { "reference_url": "http://www.securityfocus.com/bid/34257", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/34257" }, { "reference_url": "http://www.securitytracker.com/id?1021867", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securitytracker.com/id?1021867" }, { "reference_url": "http://www.ubuntu.com/usn/usn-755-1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.ubuntu.com/usn/usn-755-1" }, { "reference_url": "http://www.us-cert.gov/cas/techalerts/TA09-133A.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.us-cert.gov/cas/techalerts/TA09-133A.html" }, { "reference_url": "http://www.vupen.com/english/advisories/2009/0847", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2009/0847" }, { "reference_url": "http://www.vupen.com/english/advisories/2009/0976", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2009/0976" }, { "reference_url": "http://www.vupen.com/english/advisories/2009/1057", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2009/1057" }, { "reference_url": "http://www.vupen.com/english/advisories/2009/1106", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2009/1106" }, { "reference_url": "http://www.vupen.com/english/advisories/2009/1297", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2009/1297" }, { "reference_url": "http://www.vupen.com/english/advisories/2009/2248", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2009/2248" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=490634", "reference_id": "490634", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=490634" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:mit:kerberos_5:1.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.5.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:mit:kerberos_5:1.5.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.5.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.5.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:mit:kerberos_5:1.5.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.5.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.5.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:mit:kerberos_5:1.5.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.5.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:mit:kerberos_5:1.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.6.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:mit:kerberos_5:1.6.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.6.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.6.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:mit:kerberos_5:1.6.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.6.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos:5-1.6.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:mit:kerberos:5-1.6.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos:5-1.6.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2009-0845", "reference_id": "CVE-2009-0845", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-0845" }, { "reference_url": "https://security.gentoo.org/glsa/200904-09", "reference_id": "GLSA-200904-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200904-09" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2009:0408", "reference_id": "RHSA-2009:0408", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2009:0408" }, { "reference_url": "https://usn.ubuntu.com/755-1/", "reference_id": "USN-755-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/755-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/926419?format=api", "purl": "pkg:deb/debian/krb5@1.6.dfsg.4~beta1-13?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.6.dfsg.4~beta1-13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/926395?format=api", "purl": "pkg:deb/debian/krb5@1.18.3-6%2Bdeb11u5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.18.3-6%252Bdeb11u5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/926393?format=api", "purl": "pkg:deb/debian/krb5@1.20.1-2%2Bdeb12u4?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.20.1-2%252Bdeb12u4%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/926397?format=api", "purl": "pkg:deb/debian/krb5@1.21.3-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.21.3-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/926396?format=api", "purl": "pkg:deb/debian/krb5@1.22.1-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.22.1-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2009-0845" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-v61z-w8nz-87bv" } ], "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.6.dfsg.4~beta1-13%3Fdistro=trixie" }