Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/933984?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/933984?format=api", "purl": "pkg:deb/debian/openssl@0.9.8o-2?distro=trixie", "type": "deb", "namespace": "debian", "name": "openssl", "version": "0.9.8o-2", "qualifiers": { "distro": "trixie" }, "subpath": "", "is_vulnerable": false, "next_non_vulnerable_version": "0.9.8o-3", "latest_non_vulnerable_version": "3.6.2-1", "affected_by_vulnerabilities": [], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35742?format=api", "vulnerability_id": "VCID-ff6u-8hrf-wkge", "summary": "Multiple vulnerabilities were found in OpenSSL, allowing for the\n execution of arbitrary code and other attacks.", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00005.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00005.html" }, { "reference_url": "http://marc.info/?l=bugtraq&m=130331363227777&w=2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://marc.info/?l=bugtraq&m=130331363227777&w=2" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2939.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2939.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-2939", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.10272", "scoring_system": "epss", "scoring_elements": "0.93191", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.10272", "scoring_system": "epss", "scoring_elements": "0.93133", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.10272", "scoring_system": "epss", "scoring_elements": "0.93142", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.10272", "scoring_system": "epss", "scoring_elements": "0.93146", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.10272", "scoring_system": "epss", "scoring_elements": "0.93145", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.10272", "scoring_system": "epss", "scoring_elements": "0.93153", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.10272", "scoring_system": "epss", "scoring_elements": "0.93158", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.10272", "scoring_system": "epss", "scoring_elements": "0.93163", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.10272", "scoring_system": "epss", "scoring_elements": "0.9316", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.10272", "scoring_system": "epss", "scoring_elements": "0.93162", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.10272", "scoring_system": "epss", "scoring_elements": "0.93178", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.10272", "scoring_system": "epss", "scoring_elements": "0.93183", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-2939" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2939", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2939" }, { "reference_url": "http://seclists.org/fulldisclosure/2010/Aug/84", "reference_id": "", "reference_type": "", "scores": [], "url": "http://seclists.org/fulldisclosure/2010/Aug/84" }, { "reference_url": "http://secunia.com/advisories/40906", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/40906" }, { "reference_url": "http://secunia.com/advisories/41105", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/41105" }, { "reference_url": "http://secunia.com/advisories/42309", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/42309" }, { "reference_url": "http://secunia.com/advisories/42413", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/42413" }, { "reference_url": "http://secunia.com/advisories/43312", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/43312" }, { "reference_url": "http://security.FreeBSD.org/advisories/FreeBSD-SA-10:10.openssl.asc", "reference_id": "", "reference_type": "", "scores": [], "url": "http://security.FreeBSD.org/advisories/FreeBSD-SA-10:10.openssl.asc" }, { "reference_url": "http://securitytracker.com/id?1024296", "reference_id": "", "reference_type": "", "scores": [], "url": "http://securitytracker.com/id?1024296" }, { "reference_url": "http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.668793", "reference_id": "", "reference_type": "", "scores": [], "url": "http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.668793" }, { "reference_url": "http://www.debian.org/security/2010/dsa-2100", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2010/dsa-2100" }, { "reference_url": "http://www.mail-archive.com/openssl-dev%40openssl.org/msg28043.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.mail-archive.com/openssl-dev%40openssl.org/msg28043.html" }, { "reference_url": "http://www.mail-archive.com/openssl-dev%40openssl.org/msg28045.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.mail-archive.com/openssl-dev%40openssl.org/msg28045.html" }, { "reference_url": "http://www.mail-archive.com/openssl-dev%40openssl.org/msg28049.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.mail-archive.com/openssl-dev%40openssl.org/msg28049.html" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2010/08/11/6", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2010/08/11/6" }, { "reference_url": "http://www.securityfocus.com/archive/1/516397/100/0/threaded", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/archive/1/516397/100/0/threaded" }, { "reference_url": "http://www.ubuntu.com/usn/USN-1003-1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.ubuntu.com/usn/USN-1003-1" }, { "reference_url": "http://www.vmware.com/security/advisories/VMSA-2011-0003.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vmware.com/security/advisories/VMSA-2011-0003.html" }, { "reference_url": "http://www.vupen.com/english/advisories/2010/2038", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2010/2038" }, { "reference_url": "http://www.vupen.com/english/advisories/2010/2229", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2010/2229" }, { "reference_url": "http://www.vupen.com/english/advisories/2010/3077", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2010/3077" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=594415", "reference_id": "594415", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=594415" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=623483", "reference_id": "623483", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=623483" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:openssl:openssl:0.9.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.8:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:openssl:openssl:0.9.8:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.8:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:1.0.0a:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:openssl:openssl:1.0.0a:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:1.0.0a:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2010-2939", "reference_id": "CVE-2010-2939", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-2939" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/34427.txt", "reference_id": "CVE-2010-2939;OSVDB-66946", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/34427.txt" }, { "reference_url": "https://www.securityfocus.com/bid/42306/info", "reference_id": "CVE-2010-2939;OSVDB-66946", "reference_type": "exploit", "scores": [], "url": "https://www.securityfocus.com/bid/42306/info" }, { "reference_url": "https://security.gentoo.org/glsa/201110-01", "reference_id": "GLSA-201110-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201110-01" }, { "reference_url": "https://usn.ubuntu.com/1003-1/", "reference_id": "USN-1003-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1003-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/933984?format=api", "purl": "pkg:deb/debian/openssl@0.9.8o-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@0.9.8o-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/933951?format=api", "purl": "pkg:deb/debian/openssl@1.1.1w-0%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-87vs-4p6w-xbgq" }, { "vulnerability": "VCID-8gde-1md7-5yak" }, { "vulnerability": "VCID-cef8-2p5t-bff7" }, { "vulnerability": "VCID-f2na-rtsu-ffad" }, { "vulnerability": "VCID-hgvf-vxhr-cye8" }, { "vulnerability": "VCID-wuwm-ksb1-6qd5" }, { "vulnerability": "VCID-zkc9-huk8-27bc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@1.1.1w-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/933949?format=api", "purl": "pkg:deb/debian/openssl@3.0.18-1~deb12u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8gde-1md7-5yak" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.0.18-1~deb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/933953?format=api", "purl": "pkg:deb/debian/openssl@3.5.5-1~deb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7f9q-mhsr-8bfq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.5.5-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/933952?format=api", "purl": "pkg:deb/debian/openssl@3.6.1-3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-74wu-sup9-cybb" }, { "vulnerability": "VCID-7f9q-mhsr-8bfq" }, { "vulnerability": "VCID-87vs-4p6w-xbgq" }, { "vulnerability": "VCID-cef8-2p5t-bff7" }, { "vulnerability": "VCID-f2na-rtsu-ffad" }, { "vulnerability": "VCID-hgvf-vxhr-cye8" }, { "vulnerability": "VCID-wuwm-ksb1-6qd5" }, { "vulnerability": "VCID-zkc9-huk8-27bc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.6.1-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/1062518?format=api", "purl": "pkg:deb/debian/openssl@3.6.2-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.6.2-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2010-2939" ], "risk_score": 7.8, "exploitability": "2.0", "weighted_severity": "3.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ff6u-8hrf-wkge" } ], "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@0.9.8o-2%3Fdistro=trixie" }