Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/105909?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/105909?format=api", "vulnerability_id": "VCID-cmpu-sjnc-qyc9", "summary": "hostapd before 2.6, in EAP mode, makes calls to the rand() and random() standard library functions without any preceding srand() or srandom() call, which results in inappropriate use of deterministic values. This was fixed in conjunction with CVE-2016-10743.", "aliases": [ { "alias": "CVE-2019-10064" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/135411?format=api", "purl": "pkg:deb/debian/wpa@2:2.6-7?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/wpa@2:2.6-7%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/5284?format=api", "purl": "pkg:deb/debian/wpa@2:2.7%2Bgit20190128%2B0c1e29f-6%2Bdeb10u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1eva-m1zn-dbbs" }, { "vulnerability": "VCID-57qp-9n3e-g7g7" }, { "vulnerability": "VCID-5uqd-9srx-buhb" }, { "vulnerability": "VCID-64pb-r9pk-3bfk" }, { "vulnerability": "VCID-6jb3-mw38-gqaf" }, { "vulnerability": "VCID-7fuh-9z2r-ekee" }, { "vulnerability": "VCID-c6rb-kwrq-uubn" }, { "vulnerability": "VCID-kj7b-sur9-hfhb" }, { "vulnerability": "VCID-p4b2-1g26-nkd2" }, { "vulnerability": "VCID-up8e-3hxu-73ah" }, { "vulnerability": "VCID-w27s-tf26-t7fb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/wpa@2:2.7%252Bgit20190128%252B0c1e29f-6%252Bdeb10u3" }, { "url": "http://public2.vulnerablecode.io/api/packages/135393?format=api", "purl": "pkg:deb/debian/wpa@2:2.9.0-21%2Bdeb11u2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/wpa@2:2.9.0-21%252Bdeb11u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/135391?format=api", "purl": "pkg:deb/debian/wpa@2:2.10-12%2Bdeb12u3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/wpa@2:2.10-12%252Bdeb12u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/135395?format=api", "purl": "pkg:deb/debian/wpa@2:2.10-24?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/wpa@2:2.10-24%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/135394?format=api", "purl": "pkg:deb/debian/wpa@2:2.10-25?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/wpa@2:2.10-25%3Fdistro=trixie" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4281?format=api", "purl": "pkg:deb/debian/wpa@1.0-3%2Bdeb7u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ba4-zp3t-j7b7" }, { "vulnerability": "VCID-1eva-m1zn-dbbs" }, { "vulnerability": "VCID-2pae-t1zg-d7dy" }, { "vulnerability": "VCID-2u68-nqzd-pqcu" }, { "vulnerability": "VCID-57qp-9n3e-g7g7" }, { "vulnerability": "VCID-5uqd-9srx-buhb" }, { "vulnerability": "VCID-64pb-r9pk-3bfk" }, { "vulnerability": "VCID-6jb3-mw38-gqaf" }, { "vulnerability": "VCID-7fuh-9z2r-ekee" }, { "vulnerability": "VCID-7kes-xst7-z3d3" }, { "vulnerability": "VCID-7q6k-mpk6-t7bv" }, { "vulnerability": "VCID-7y9t-7akx-afg7" }, { "vulnerability": "VCID-84gv-j3vy-kbhp" }, { "vulnerability": "VCID-8d56-3k4a-c7hy" }, { "vulnerability": "VCID-awmy-cpam-xqah" }, { "vulnerability": "VCID-b8k9-3pnn-ekgs" }, { "vulnerability": "VCID-bugv-6pzr-tuhy" }, { "vulnerability": "VCID-c1uc-msuh-bbgq" }, { "vulnerability": "VCID-c6rb-kwrq-uubn" }, { "vulnerability": "VCID-cmpu-sjnc-qyc9" }, { "vulnerability": "VCID-d17v-v7yt-5kb3" }, { "vulnerability": "VCID-dc5z-thyu-sqhb" }, { "vulnerability": "VCID-dvkq-285n-9kaw" }, { "vulnerability": "VCID-edpz-qhd8-jfez" }, { "vulnerability": "VCID-fwsj-n5rh-53h1" }, { "vulnerability": "VCID-hxn4-6y6j-83cz" }, { "vulnerability": "VCID-kj7b-sur9-hfhb" }, { "vulnerability": "VCID-kyvg-q58s-cfff" }, { "vulnerability": "VCID-m6c2-crap-b3b7" }, { "vulnerability": "VCID-mwc1-rpqz-uqcj" }, { "vulnerability": "VCID-n7rh-f4mj-jbdq" }, { "vulnerability": "VCID-p4b2-1g26-nkd2" }, { "vulnerability": "VCID-p6m7-m2w8-uybh" }, { "vulnerability": "VCID-qv3p-mcnx-gfh9" }, { "vulnerability": "VCID-s7gm-17ms-53fd" }, { "vulnerability": "VCID-s91q-7xur-gudp" }, { "vulnerability": "VCID-sz7g-jw53-yyf1" }, { "vulnerability": "VCID-ttwt-unqp-mbec" }, { "vulnerability": "VCID-up8e-3hxu-73ah" }, { "vulnerability": "VCID-uyg6-fyc7-fqf5" }, { "vulnerability": "VCID-vgs9-juev-53d2" }, { "vulnerability": "VCID-w1t7-99j6-ducn" }, { "vulnerability": "VCID-w27s-tf26-t7fb" }, { "vulnerability": "VCID-yj2a-e823-nyfw" }, { "vulnerability": "VCID-yv7z-2x73-xygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/wpa@1.0-3%252Bdeb7u3" }, { "url": "http://public2.vulnerablecode.io/api/packages/4282?format=api", "purl": "pkg:deb/debian/wpa@2.3-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ba4-zp3t-j7b7" }, { "vulnerability": "VCID-1eva-m1zn-dbbs" }, { "vulnerability": "VCID-2pae-t1zg-d7dy" }, { "vulnerability": "VCID-2u68-nqzd-pqcu" }, { "vulnerability": "VCID-57qp-9n3e-g7g7" }, { "vulnerability": "VCID-5uqd-9srx-buhb" }, { "vulnerability": "VCID-64pb-r9pk-3bfk" }, { "vulnerability": "VCID-6jb3-mw38-gqaf" }, { "vulnerability": "VCID-7fuh-9z2r-ekee" }, { "vulnerability": "VCID-7kes-xst7-z3d3" }, { "vulnerability": "VCID-7q6k-mpk6-t7bv" }, { "vulnerability": "VCID-7y9t-7akx-afg7" }, { "vulnerability": "VCID-84gv-j3vy-kbhp" }, { "vulnerability": "VCID-8d56-3k4a-c7hy" }, { "vulnerability": "VCID-awmy-cpam-xqah" }, { "vulnerability": "VCID-b8k9-3pnn-ekgs" }, { "vulnerability": "VCID-bugv-6pzr-tuhy" }, { "vulnerability": "VCID-c1uc-msuh-bbgq" }, { "vulnerability": "VCID-c6rb-kwrq-uubn" }, { "vulnerability": "VCID-cmpu-sjnc-qyc9" }, { "vulnerability": "VCID-d17v-v7yt-5kb3" }, { "vulnerability": "VCID-dc5z-thyu-sqhb" }, { "vulnerability": "VCID-dvkq-285n-9kaw" }, { "vulnerability": "VCID-edpz-qhd8-jfez" }, { "vulnerability": "VCID-fwsj-n5rh-53h1" }, { "vulnerability": "VCID-hxn4-6y6j-83cz" }, { "vulnerability": "VCID-kj7b-sur9-hfhb" }, { "vulnerability": "VCID-kyvg-q58s-cfff" }, { "vulnerability": "VCID-m6c2-crap-b3b7" }, { "vulnerability": "VCID-mwc1-rpqz-uqcj" }, { "vulnerability": "VCID-n7rh-f4mj-jbdq" }, { "vulnerability": "VCID-p4b2-1g26-nkd2" }, { "vulnerability": "VCID-p6m7-m2w8-uybh" }, { "vulnerability": "VCID-qv3p-mcnx-gfh9" }, { "vulnerability": "VCID-s7gm-17ms-53fd" }, { "vulnerability": "VCID-s91q-7xur-gudp" }, { "vulnerability": "VCID-sz7g-jw53-yyf1" }, { "vulnerability": "VCID-up8e-3hxu-73ah" }, { "vulnerability": "VCID-uyg6-fyc7-fqf5" }, { "vulnerability": "VCID-vgs9-juev-53d2" }, { "vulnerability": "VCID-w1t7-99j6-ducn" }, { "vulnerability": "VCID-w27s-tf26-t7fb" }, { "vulnerability": "VCID-yj2a-e823-nyfw" }, { "vulnerability": "VCID-yv7z-2x73-xygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/wpa@2.3-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/4283?format=api", "purl": "pkg:deb/debian/wpa@2.3-1%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ba4-zp3t-j7b7" }, { "vulnerability": "VCID-1eva-m1zn-dbbs" }, { "vulnerability": "VCID-2pae-t1zg-d7dy" }, { "vulnerability": "VCID-2u68-nqzd-pqcu" }, { "vulnerability": "VCID-57qp-9n3e-g7g7" }, { "vulnerability": "VCID-5uqd-9srx-buhb" }, { "vulnerability": "VCID-64pb-r9pk-3bfk" }, { "vulnerability": "VCID-6jb3-mw38-gqaf" }, { "vulnerability": "VCID-7fuh-9z2r-ekee" }, { "vulnerability": "VCID-7kes-xst7-z3d3" }, { "vulnerability": "VCID-7q6k-mpk6-t7bv" }, { "vulnerability": "VCID-7y9t-7akx-afg7" }, { "vulnerability": "VCID-84gv-j3vy-kbhp" }, { "vulnerability": "VCID-8d56-3k4a-c7hy" }, { "vulnerability": "VCID-awmy-cpam-xqah" }, { "vulnerability": "VCID-b8k9-3pnn-ekgs" }, { "vulnerability": "VCID-bugv-6pzr-tuhy" }, { "vulnerability": "VCID-c1uc-msuh-bbgq" }, { "vulnerability": "VCID-c6rb-kwrq-uubn" }, { "vulnerability": "VCID-cmpu-sjnc-qyc9" }, { "vulnerability": "VCID-d17v-v7yt-5kb3" }, { "vulnerability": "VCID-dc5z-thyu-sqhb" }, { "vulnerability": "VCID-dvkq-285n-9kaw" }, { "vulnerability": "VCID-edpz-qhd8-jfez" }, { "vulnerability": "VCID-fwsj-n5rh-53h1" }, { "vulnerability": "VCID-hxn4-6y6j-83cz" }, { "vulnerability": "VCID-kj7b-sur9-hfhb" }, { "vulnerability": "VCID-kyvg-q58s-cfff" }, { "vulnerability": "VCID-m6c2-crap-b3b7" }, { "vulnerability": "VCID-mwc1-rpqz-uqcj" }, { "vulnerability": "VCID-n7rh-f4mj-jbdq" }, { "vulnerability": "VCID-p4b2-1g26-nkd2" }, { "vulnerability": "VCID-p6m7-m2w8-uybh" }, { "vulnerability": "VCID-qv3p-mcnx-gfh9" }, { "vulnerability": "VCID-s7gm-17ms-53fd" }, { "vulnerability": "VCID-s91q-7xur-gudp" }, { "vulnerability": "VCID-sz7g-jw53-yyf1" }, { "vulnerability": "VCID-up8e-3hxu-73ah" }, { "vulnerability": "VCID-uyg6-fyc7-fqf5" }, { "vulnerability": "VCID-vgs9-juev-53d2" }, { "vulnerability": "VCID-w1t7-99j6-ducn" }, { "vulnerability": "VCID-w27s-tf26-t7fb" }, { "vulnerability": "VCID-yj2a-e823-nyfw" }, { "vulnerability": "VCID-yv7z-2x73-xygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/wpa@2.3-1%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5005?format=api", "purl": "pkg:deb/debian/wpa@2:2.4-1%2Bdeb9u6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ba4-zp3t-j7b7" }, { "vulnerability": "VCID-1eva-m1zn-dbbs" }, { "vulnerability": "VCID-2pae-t1zg-d7dy" }, { "vulnerability": "VCID-57qp-9n3e-g7g7" }, { "vulnerability": "VCID-5uqd-9srx-buhb" }, { "vulnerability": "VCID-64pb-r9pk-3bfk" }, { "vulnerability": "VCID-6jb3-mw38-gqaf" }, { "vulnerability": "VCID-7fuh-9z2r-ekee" }, { "vulnerability": "VCID-7kes-xst7-z3d3" }, { "vulnerability": "VCID-7q6k-mpk6-t7bv" }, { "vulnerability": "VCID-84gv-j3vy-kbhp" }, { "vulnerability": "VCID-awmy-cpam-xqah" }, { "vulnerability": "VCID-b8k9-3pnn-ekgs" }, { "vulnerability": "VCID-c6rb-kwrq-uubn" }, { "vulnerability": "VCID-cmpu-sjnc-qyc9" }, { "vulnerability": "VCID-d17v-v7yt-5kb3" }, { "vulnerability": "VCID-dc5z-thyu-sqhb" }, { "vulnerability": "VCID-kj7b-sur9-hfhb" }, { "vulnerability": "VCID-m6c2-crap-b3b7" }, { "vulnerability": "VCID-n7rh-f4mj-jbdq" }, { "vulnerability": "VCID-p4b2-1g26-nkd2" }, { "vulnerability": "VCID-p6m7-m2w8-uybh" }, { "vulnerability": "VCID-s91q-7xur-gudp" }, { "vulnerability": "VCID-sz7g-jw53-yyf1" }, { "vulnerability": "VCID-up8e-3hxu-73ah" }, { "vulnerability": "VCID-vgs9-juev-53d2" }, { "vulnerability": "VCID-w1t7-99j6-ducn" }, { "vulnerability": "VCID-w27s-tf26-t7fb" }, { "vulnerability": "VCID-yj2a-e823-nyfw" }, { "vulnerability": "VCID-yv7z-2x73-xygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/wpa@2:2.4-1%252Bdeb9u6" } ], "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-10064.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-10064.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-10064", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01405", "scoring_system": "epss", "scoring_elements": "0.80797", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01405", "scoring_system": "epss", "scoring_elements": "0.80825", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.01405", "scoring_system": "epss", "scoring_elements": "0.80826", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01405", "scoring_system": "epss", "scoring_elements": "0.80824", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.01405", "scoring_system": "epss", "scoring_elements": "0.8082", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-10064" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10064", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10064" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1811069", "reference_id": "1811069", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1811069" } ], "weaknesses": [ { "cwe_id": 331, "name": "Insufficient Entropy", "description": "The product uses an algorithm or scheme that produces insufficient entropy, leaving patterns or clusters of values that are more likely to occur than others." } ], "exploits": [], "severity_range_score": "7.5 - 7.5", "exploitability": "0.5", "weighted_severity": "6.8", "risk_score": 3.4, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-cmpu-sjnc-qyc9" }