Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/1063?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/1063?format=api", "vulnerability_id": "VCID-jdws-6nrz-77ht", "summary": "", "aliases": [ { "alias": "CVE-2016-2377" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1073980?format=api", "purl": "pkg:deb/debian/pidgin@2.11.0-0%2Bdeb8u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cb1y-6mht-ebac" }, { "vulnerability": "VCID-f3fy-z5hx-u3ch" }, { "vulnerability": "VCID-hcxv-afwu-cyfj" }, { "vulnerability": "VCID-hwvx-7xcw-mbf3" }, { "vulnerability": "VCID-sbsg-4s3h-kuf8" }, { "vulnerability": "VCID-yq8z-82gx-2beh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/pidgin@2.11.0-0%252Bdeb8u2" }, { "url": "http://public2.vulnerablecode.io/api/packages/99598?format=api", "purl": "pkg:deb/debian/pidgin@2.11.0-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/pidgin@2.11.0-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/99569?format=api", "purl": "pkg:deb/debian/pidgin@2.14.1-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-shr9-317b-8yhb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/pidgin@2.14.1-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/99567?format=api", "purl": "pkg:deb/debian/pidgin@2.14.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/pidgin@2.14.12-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/99570?format=api", "purl": "pkg:deb/debian/pidgin@2.14.14-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/pidgin@2.14.14-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/6638?format=api", "purl": "pkg:ebuild/net-im/pidgin@2.11.0", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/net-im/pidgin@2.11.0" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1072167?format=api", "purl": "pkg:deb/debian/pidgin@2.10.10-1~deb7u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-63kw-t7pj-3yfq" }, { "vulnerability": "VCID-6p15-s25h-u7cf" }, { "vulnerability": "VCID-avvj-adc3-3qbu" }, { "vulnerability": "VCID-cb1y-6mht-ebac" }, { "vulnerability": "VCID-e48q-7hwx-fkfc" }, { "vulnerability": "VCID-ecj5-evbb-g7ds" }, { "vulnerability": "VCID-f3fy-z5hx-u3ch" }, { "vulnerability": "VCID-f5rn-nsn3-zycw" }, { "vulnerability": "VCID-hcxv-afwu-cyfj" }, { "vulnerability": "VCID-hwvx-7xcw-mbf3" }, { "vulnerability": "VCID-j7y4-8eff-nqe5" }, { "vulnerability": "VCID-jdws-6nrz-77ht" }, { "vulnerability": "VCID-rn7c-pqgx-xbgj" }, { "vulnerability": "VCID-rttg-mnfe-dkhh" }, { "vulnerability": "VCID-sbsg-4s3h-kuf8" }, { "vulnerability": "VCID-w8hz-pcx4-uqap" }, { "vulnerability": "VCID-wwqc-q96d-mkb9" }, { "vulnerability": "VCID-xx8v-9b3m-3qbj" }, { "vulnerability": "VCID-yq8z-82gx-2beh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/pidgin@2.10.10-1~deb7u1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1073979?format=api", "purl": "pkg:deb/debian/pidgin@2.10.11-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-63kw-t7pj-3yfq" }, { "vulnerability": "VCID-6p15-s25h-u7cf" }, { "vulnerability": "VCID-avvj-adc3-3qbu" }, { "vulnerability": "VCID-cb1y-6mht-ebac" }, { "vulnerability": "VCID-e48q-7hwx-fkfc" }, { "vulnerability": "VCID-ecj5-evbb-g7ds" }, { "vulnerability": "VCID-f3fy-z5hx-u3ch" }, { "vulnerability": "VCID-f5rn-nsn3-zycw" }, { "vulnerability": "VCID-hcxv-afwu-cyfj" }, { "vulnerability": "VCID-hwvx-7xcw-mbf3" }, { "vulnerability": "VCID-j7y4-8eff-nqe5" }, { "vulnerability": "VCID-jdws-6nrz-77ht" }, { "vulnerability": "VCID-rttg-mnfe-dkhh" }, { "vulnerability": "VCID-sbsg-4s3h-kuf8" }, { "vulnerability": "VCID-w8hz-pcx4-uqap" }, { "vulnerability": "VCID-xx8v-9b3m-3qbj" }, { "vulnerability": "VCID-yq8z-82gx-2beh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/pidgin@2.10.11-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1072165?format=api", "purl": "pkg:deb/debian/pidgin@2.4.3-4lenny8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-7c2e-uue1" }, { "vulnerability": "VCID-2129-d57q-9ke4" }, { "vulnerability": "VCID-2gku-gvag-2bgx" }, { "vulnerability": "VCID-42dx-nswn-qqh6" }, { "vulnerability": "VCID-4h32-9kcb-3bf6" }, { "vulnerability": "VCID-4mdc-5qxa-eqcd" }, { "vulnerability": "VCID-4sun-w3fz-akav" }, { "vulnerability": "VCID-5nqv-y3fh-ekch" }, { "vulnerability": "VCID-63kw-t7pj-3yfq" }, { "vulnerability": "VCID-67dd-cs6t-cyac" }, { "vulnerability": "VCID-69jq-5t19-rbc8" }, { "vulnerability": "VCID-6p15-s25h-u7cf" }, { "vulnerability": "VCID-84nh-7z7b-rfhy" }, { "vulnerability": "VCID-8j87-t9nr-qkdd" }, { "vulnerability": "VCID-9j68-5kkd-e7fd" }, { "vulnerability": "VCID-9nz8-wemr-8kcp" }, { "vulnerability": "VCID-avvj-adc3-3qbu" }, { "vulnerability": "VCID-b1tz-wa3v-j7a4" }, { "vulnerability": "VCID-bump-xb88-fyef" }, { "vulnerability": "VCID-cb1y-6mht-ebac" }, { "vulnerability": "VCID-e48q-7hwx-fkfc" }, { "vulnerability": "VCID-ecj5-evbb-g7ds" }, { "vulnerability": "VCID-f3fy-z5hx-u3ch" }, { "vulnerability": "VCID-f5rn-nsn3-zycw" }, { "vulnerability": "VCID-gp74-pf26-xye8" }, { "vulnerability": "VCID-hcxv-afwu-cyfj" }, { "vulnerability": "VCID-hwvx-7xcw-mbf3" }, { "vulnerability": "VCID-j7y4-8eff-nqe5" }, { "vulnerability": "VCID-jdws-6nrz-77ht" }, { "vulnerability": "VCID-jzhu-7r7a-tydj" }, { "vulnerability": "VCID-k8zk-e54c-mqah" }, { "vulnerability": "VCID-mmvf-t9hb-zyh8" }, { "vulnerability": "VCID-pcxx-24kb-tqhw" }, { "vulnerability": "VCID-qbsn-nmxu-jbcr" }, { "vulnerability": "VCID-rn7c-pqgx-xbgj" }, { "vulnerability": "VCID-rttg-mnfe-dkhh" }, { "vulnerability": "VCID-s6vn-a8zn-zyb5" }, { "vulnerability": "VCID-sbsg-4s3h-kuf8" }, { "vulnerability": "VCID-tmzb-5gp4-tuac" }, { "vulnerability": "VCID-u9qh-4t3c-2kf7" }, { "vulnerability": "VCID-v66f-6c1r-mbd4" }, { "vulnerability": "VCID-vrnm-pqqj-nqg1" }, { "vulnerability": "VCID-w4v7-cq1s-nbev" }, { "vulnerability": "VCID-w8hz-pcx4-uqap" }, { "vulnerability": "VCID-wwqc-q96d-mkb9" }, { "vulnerability": "VCID-xx8v-9b3m-3qbj" }, { "vulnerability": "VCID-yeu6-upt2-g3eu" }, { "vulnerability": "VCID-yq8z-82gx-2beh" }, { "vulnerability": "VCID-z5zt-3kh6-cugj" }, { "vulnerability": "VCID-zktp-dkas-8uey" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/pidgin@2.4.3-4lenny8" }, { "url": "http://public2.vulnerablecode.io/api/packages/1072166?format=api", "purl": "pkg:deb/debian/pidgin@2.7.3-1%2Bsqueeze4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-7c2e-uue1" }, { "vulnerability": "VCID-42dx-nswn-qqh6" }, { "vulnerability": "VCID-4h32-9kcb-3bf6" }, { "vulnerability": "VCID-5nqv-y3fh-ekch" }, { "vulnerability": "VCID-63kw-t7pj-3yfq" }, { "vulnerability": "VCID-67dd-cs6t-cyac" }, { "vulnerability": "VCID-69jq-5t19-rbc8" }, { "vulnerability": "VCID-6p15-s25h-u7cf" }, { "vulnerability": "VCID-8j87-t9nr-qkdd" }, { "vulnerability": "VCID-9j68-5kkd-e7fd" }, { "vulnerability": "VCID-avvj-adc3-3qbu" }, { "vulnerability": "VCID-b1tz-wa3v-j7a4" }, { "vulnerability": "VCID-cb1y-6mht-ebac" }, { "vulnerability": "VCID-e48q-7hwx-fkfc" }, { "vulnerability": "VCID-ecj5-evbb-g7ds" }, { "vulnerability": "VCID-f3fy-z5hx-u3ch" }, { "vulnerability": "VCID-f5rn-nsn3-zycw" }, { "vulnerability": "VCID-gp74-pf26-xye8" }, { "vulnerability": "VCID-hcxv-afwu-cyfj" }, { "vulnerability": "VCID-hwvx-7xcw-mbf3" }, { "vulnerability": "VCID-j7y4-8eff-nqe5" }, { "vulnerability": "VCID-jdws-6nrz-77ht" }, { "vulnerability": "VCID-jzhu-7r7a-tydj" }, { "vulnerability": "VCID-k8zk-e54c-mqah" }, { "vulnerability": "VCID-mmvf-t9hb-zyh8" }, { "vulnerability": "VCID-pcxx-24kb-tqhw" }, { "vulnerability": "VCID-qbsn-nmxu-jbcr" }, { "vulnerability": "VCID-rn7c-pqgx-xbgj" }, { "vulnerability": "VCID-rttg-mnfe-dkhh" }, { "vulnerability": "VCID-s6vn-a8zn-zyb5" }, { "vulnerability": "VCID-sbsg-4s3h-kuf8" }, { "vulnerability": "VCID-v66f-6c1r-mbd4" }, { "vulnerability": "VCID-vrnm-pqqj-nqg1" }, { "vulnerability": "VCID-w4v7-cq1s-nbev" }, { "vulnerability": "VCID-w8hz-pcx4-uqap" }, { "vulnerability": "VCID-wwqc-q96d-mkb9" }, { "vulnerability": "VCID-xx8v-9b3m-3qbj" }, { "vulnerability": "VCID-yeu6-upt2-g3eu" }, { "vulnerability": "VCID-yq8z-82gx-2beh" }, { "vulnerability": "VCID-z5zt-3kh6-cugj" }, { "vulnerability": "VCID-zktp-dkas-8uey" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/pidgin@2.7.3-1%252Bsqueeze4" } ], "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-2377.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-2377.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-2377", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.03242", "scoring_system": "epss", "scoring_elements": "0.87397", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-2377" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2365", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2365" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2366", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2366" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2367", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2367" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2368", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2368" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2369", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2369" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2370", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2370" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2371", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2371" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2372", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2372" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2373", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2373" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2374", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2374" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2375", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2375" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2376", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2376" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2377", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2377" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2378", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2378" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2380", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2380" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4323" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1348852", "reference_id": "1348852", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1348852" }, { "reference_url": "https://security.gentoo.org/glsa/201701-38", "reference_id": "GLSA-201701-38", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-38" }, { "reference_url": "https://usn.ubuntu.com/3031-1/", "reference_id": "USN-3031-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3031-1/" } ], "weaknesses": [ { "cwe_id": 122, "name": "Heap-based Buffer Overflow", "description": "A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc()." } ], "exploits": [], "severity_range_score": "5.6 - 6.8", "exploitability": null, "weighted_severity": null, "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jdws-6nrz-77ht" }