Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/104907?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/104907?format=api", "vulnerability_id": "VCID-ndcp-pvu7-1kgy", "summary": "Multiple integer underflows in Wireshark 1.4.x before 1.4.13 and 1.6.x before 1.6.8 allow remote attackers to cause a denial of service (loop) via vectors related to the R3 dissector, a different vulnerability than CVE-2012-2392.", "aliases": [ { "alias": "CVE-2012-3826" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/134895?format=api", "purl": "pkg:deb/debian/wireshark@1.6.8-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/wireshark@1.6.8-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/134852?format=api", "purl": "pkg:deb/debian/wireshark@3.4.10-0%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3bdv-pvum-jud3" }, { "vulnerability": "VCID-45xv-2dyd-3yad" }, { "vulnerability": "VCID-4dq1-zbyw-gyac" }, { "vulnerability": "VCID-66w4-u7u4-rbdq" }, { "vulnerability": "VCID-7fgb-bzhv-ebfm" }, { "vulnerability": "VCID-axfm-y4p4-yycj" }, { "vulnerability": "VCID-azg9-g6ss-4qe6" }, { "vulnerability": "VCID-b7z2-mayh-7fa6" }, { "vulnerability": "VCID-bxwp-h46j-fkcn" }, { "vulnerability": "VCID-cnzm-6acd-1kf8" }, { "vulnerability": "VCID-dg6t-b7ww-hkej" }, { "vulnerability": "VCID-e21t-6wmz-kuh6" }, { "vulnerability": "VCID-e3ka-wgzb-8uaw" }, { "vulnerability": "VCID-esvq-nfaj-jqac" }, { "vulnerability": "VCID-fkuk-3xf4-gfh4" }, { "vulnerability": "VCID-fnb2-jyc6-gqdj" }, { "vulnerability": "VCID-hzjw-r8cg-xyaf" }, { "vulnerability": "VCID-j475-vnu8-4fce" }, { "vulnerability": "VCID-jfgz-rymr-ubbq" }, { "vulnerability": "VCID-jhrs-99a3-zkd5" }, { "vulnerability": "VCID-jsfh-g428-syda" }, { "vulnerability": "VCID-mp77-7che-23a1" }, { "vulnerability": "VCID-q6jg-vmz9-bucr" }, { "vulnerability": "VCID-qbjd-cgry-8ubg" }, { "vulnerability": "VCID-qm9s-hnm2-9bfx" }, { "vulnerability": "VCID-quef-b85t-uqge" }, { "vulnerability": "VCID-qvff-2yjc-p7by" }, { "vulnerability": "VCID-rrcv-xtp9-wfau" }, { "vulnerability": "VCID-s4qf-31yq-37ad" }, { "vulnerability": "VCID-snz1-p6zx-s3b3" }, { "vulnerability": "VCID-sp5k-c5dd-qybs" }, { "vulnerability": "VCID-th5u-1czb-nfg2" }, { "vulnerability": "VCID-tjyh-q8g4-pye4" }, { "vulnerability": "VCID-ugcx-gvqd-kfhk" }, { "vulnerability": "VCID-vuxd-3st3-1kca" }, { "vulnerability": "VCID-w9v4-kn7p-77c4" }, { "vulnerability": "VCID-wutn-naab-zkf2" }, { "vulnerability": "VCID-xdav-buc3-j3aj" }, { "vulnerability": "VCID-xkuu-cnxs-hbde" }, { "vulnerability": "VCID-xmzb-edg9-c7c2" }, { "vulnerability": "VCID-xvhg-y9cs-wff8" }, { "vulnerability": "VCID-yg6w-jv29-zfer" }, { "vulnerability": "VCID-z72t-cwh9-kkds" }, { "vulnerability": "VCID-zag5-v1aq-63ax" }, { "vulnerability": "VCID-zxjt-vuqk-dbbh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/wireshark@3.4.10-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/134850?format=api", "purl": "pkg:deb/debian/wireshark@4.0.17-0%2Bdeb12u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3bdv-pvum-jud3" }, { "vulnerability": "VCID-45xv-2dyd-3yad" }, { "vulnerability": "VCID-4dq1-zbyw-gyac" }, { "vulnerability": "VCID-54dh-wm3m-ckdc" }, { "vulnerability": "VCID-7fgb-bzhv-ebfm" }, { "vulnerability": "VCID-axfm-y4p4-yycj" }, { "vulnerability": "VCID-azg9-g6ss-4qe6" }, { "vulnerability": "VCID-bxwp-h46j-fkcn" }, { "vulnerability": "VCID-cnzm-6acd-1kf8" }, { "vulnerability": "VCID-dg6t-b7ww-hkej" }, { "vulnerability": "VCID-e21t-6wmz-kuh6" }, { "vulnerability": "VCID-esvq-nfaj-jqac" }, { "vulnerability": "VCID-fkuk-3xf4-gfh4" }, { "vulnerability": "VCID-fnb2-jyc6-gqdj" }, { "vulnerability": "VCID-j475-vnu8-4fce" }, { "vulnerability": "VCID-jfgz-rymr-ubbq" }, { "vulnerability": "VCID-jhrs-99a3-zkd5" }, { "vulnerability": "VCID-jsfh-g428-syda" }, { "vulnerability": "VCID-mp77-7che-23a1" }, { "vulnerability": "VCID-q6jg-vmz9-bucr" }, { "vulnerability": "VCID-qbjd-cgry-8ubg" }, { "vulnerability": "VCID-qvff-2yjc-p7by" }, { "vulnerability": "VCID-s4qf-31yq-37ad" }, { "vulnerability": "VCID-snz1-p6zx-s3b3" }, { "vulnerability": "VCID-sp5k-c5dd-qybs" }, { "vulnerability": "VCID-th5u-1czb-nfg2" }, { "vulnerability": "VCID-tjyh-q8g4-pye4" }, { "vulnerability": "VCID-vuxd-3st3-1kca" }, { "vulnerability": "VCID-w9v4-kn7p-77c4" }, { "vulnerability": "VCID-xdav-buc3-j3aj" }, { "vulnerability": "VCID-xmzb-edg9-c7c2" }, { "vulnerability": "VCID-xvhg-y9cs-wff8" }, { "vulnerability": "VCID-yg6w-jv29-zfer" }, { "vulnerability": "VCID-z72t-cwh9-kkds" }, { "vulnerability": "VCID-zag5-v1aq-63ax" }, { "vulnerability": "VCID-zxjt-vuqk-dbbh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/wireshark@4.0.17-0%252Bdeb12u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/134854?format=api", "purl": "pkg:deb/debian/wireshark@4.4.15-0%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7fgb-bzhv-ebfm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/wireshark@4.4.15-0%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/134853?format=api", "purl": "pkg:deb/debian/wireshark@4.6.6-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/wireshark@4.6.6-1%3Fdistro=trixie" } ], "affected_packages": [], "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3826.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3826.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2012-3826", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0074", "scoring_system": "epss", "scoring_elements": "0.73284", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2012-3826" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=836961", "reference_id": "836961", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=836961" } ], "weaknesses": [ { "cwe_id": 190, "name": "Integer Overflow or Wraparound", "description": "The product performs a calculation that can produce an integer overflow or wraparound, when the logic assumes that the resulting value will always be larger than the original value. This can introduce other weaknesses when the calculation is used for resource management or execution control." } ], "exploits": [ { "date_added": "2012-05-24", "description": "Wireshark - Multiple Dissector Denial of Service Vulnerabilities", "required_action": null, "due_date": null, "notes": null, "known_ransomware_campaign_use": true, "source_date_published": "2012-05-24", "exploit_type": "dos", "platform": "multiple", "source_date_updated": "2016-11-12", "data_source": "Exploit-DB", "source_url": "https://www.securityfocus.com/bid/53651/info" } ], "severity_range_score": null, "exploitability": null, "weighted_severity": null, "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ndcp-pvu7-1kgy" }