Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/112356?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/112356?format=api", "vulnerability_id": "VCID-wjw1-e5zm-hyfg", "summary": "mysql: insecure error log file handling in mysqld_safe (CPU Oct 2016)", "aliases": [ { "alias": "CVE-2016-5617" } ], "fixed_packages": [], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/153207?format=api", "purl": "pkg:rpm/redhat/mariadb@1:5.5.56-2?arch=el7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1sng-r3xv-sfch" }, { "vulnerability": "VCID-2963-nhhe-ruh4" }, { "vulnerability": "VCID-6a5h-d25j-kkfn" }, { "vulnerability": "VCID-99he-ytch-abhw" }, { "vulnerability": "VCID-azya-cswr-huaq" }, { "vulnerability": "VCID-eh1q-u7yu-y3gn" }, { "vulnerability": "VCID-g982-u19y-f7cw" }, { "vulnerability": "VCID-hnu9-tkmz-zkc1" }, { "vulnerability": "VCID-jj4q-t5pz-1bga" }, { "vulnerability": "VCID-mywx-vbs4-jkaz" }, { "vulnerability": "VCID-n2aq-8bbh-jqbs" }, { "vulnerability": "VCID-nebp-9zgp-23b1" }, { "vulnerability": "VCID-peeq-u79a-c3bx" }, { "vulnerability": "VCID-rrmz-cacr-x3dp" }, { "vulnerability": "VCID-ryx2-1u8s-r7ff" }, { "vulnerability": "VCID-s1g1-8de8-8beq" }, { "vulnerability": "VCID-t7my-j23s-nqgf" }, { "vulnerability": "VCID-vpc3-uym8-bfc1" }, { "vulnerability": "VCID-wjw1-e5zm-hyfg" }, { "vulnerability": "VCID-ygk6-wmq5-yqd8" }, { "vulnerability": "VCID-zyf6-jtac-ufbv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/mariadb@1:5.5.56-2%3Farch=el7" }, { "url": "http://public2.vulnerablecode.io/api/packages/155687?format=api", "purl": "pkg:rpm/redhat/mysql55-mysql@5.5.52-1?arch=el6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-34wb-5fgb-dkbs" }, { "vulnerability": "VCID-9hye-u9zt-cqaf" }, { "vulnerability": "VCID-9pzm-hqjm-pkcg" }, { "vulnerability": "VCID-hnu9-tkmz-zkc1" }, { "vulnerability": "VCID-p252-q4u2-3bdd" }, { "vulnerability": "VCID-pvvj-mrbe-xkdu" }, { "vulnerability": "VCID-r27r-1s48-aycf" }, { "vulnerability": "VCID-u2yg-xdqq-9bea" }, { "vulnerability": "VCID-w3hh-ck55-nybr" }, { "vulnerability": "VCID-wjw1-e5zm-hyfg" }, { "vulnerability": "VCID-xr5s-qg54-6bgx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/mysql55-mysql@5.5.52-1%3Farch=el6" }, { "url": "http://public2.vulnerablecode.io/api/packages/155688?format=api", "purl": "pkg:rpm/redhat/mysql55-mysql@5.5.52-1?arch=el7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-34wb-5fgb-dkbs" }, { "vulnerability": "VCID-9hye-u9zt-cqaf" }, { "vulnerability": "VCID-9pzm-hqjm-pkcg" }, { "vulnerability": "VCID-hnu9-tkmz-zkc1" }, { "vulnerability": "VCID-p252-q4u2-3bdd" }, { "vulnerability": "VCID-pvvj-mrbe-xkdu" }, { "vulnerability": "VCID-r27r-1s48-aycf" }, { "vulnerability": "VCID-u2yg-xdqq-9bea" }, { "vulnerability": "VCID-w3hh-ck55-nybr" }, { "vulnerability": "VCID-wjw1-e5zm-hyfg" }, { "vulnerability": "VCID-xr5s-qg54-6bgx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/mysql55-mysql@5.5.52-1%3Farch=el7" }, { "url": "http://public2.vulnerablecode.io/api/packages/151957?format=api", "purl": "pkg:rpm/redhat/rh-mariadb100-mariadb@1:10.0.33-3?arch=el6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1sng-r3xv-sfch" }, { "vulnerability": "VCID-2963-nhhe-ruh4" }, { "vulnerability": "VCID-99he-ytch-abhw" }, { "vulnerability": "VCID-azya-cswr-huaq" }, { "vulnerability": "VCID-bphm-jk52-5ych" }, { "vulnerability": "VCID-c8cd-u5qc-juat" }, { "vulnerability": "VCID-d883-hxvh-c3hy" }, { "vulnerability": "VCID-eh1q-u7yu-y3gn" }, { "vulnerability": "VCID-g982-u19y-f7cw" }, { "vulnerability": "VCID-hnu9-tkmz-zkc1" }, { "vulnerability": "VCID-jj4q-t5pz-1bga" }, { "vulnerability": "VCID-k6dm-gvut-pyaz" }, { "vulnerability": "VCID-kz5d-2vu6-jkdh" }, { "vulnerability": "VCID-mywx-vbs4-jkaz" }, { "vulnerability": "VCID-n2aq-8bbh-jqbs" }, { "vulnerability": "VCID-nebp-9zgp-23b1" }, { "vulnerability": "VCID-p4fs-jk22-2bc6" }, { "vulnerability": "VCID-peeq-u79a-c3bx" }, { "vulnerability": "VCID-rrmz-cacr-x3dp" }, { "vulnerability": "VCID-ryx2-1u8s-r7ff" }, { "vulnerability": "VCID-s1g1-8de8-8beq" }, { "vulnerability": "VCID-t7my-j23s-nqgf" }, { "vulnerability": "VCID-uw9f-fvfw-z7af" }, { "vulnerability": "VCID-vm1z-yuqw-fkdf" }, { "vulnerability": "VCID-wjw1-e5zm-hyfg" }, { "vulnerability": "VCID-xg3x-dbg6-fkfz" }, { "vulnerability": "VCID-ygk6-wmq5-yqd8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-mariadb100-mariadb@1:10.0.33-3%3Farch=el6" }, { "url": "http://public2.vulnerablecode.io/api/packages/151958?format=api", "purl": "pkg:rpm/redhat/rh-mariadb100-mariadb@1:10.0.33-3?arch=el7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1sng-r3xv-sfch" }, { "vulnerability": "VCID-2963-nhhe-ruh4" }, { "vulnerability": "VCID-99he-ytch-abhw" }, { "vulnerability": "VCID-azya-cswr-huaq" }, { "vulnerability": "VCID-bphm-jk52-5ych" }, { "vulnerability": "VCID-c8cd-u5qc-juat" }, { "vulnerability": "VCID-d883-hxvh-c3hy" }, { "vulnerability": "VCID-eh1q-u7yu-y3gn" }, { "vulnerability": "VCID-g982-u19y-f7cw" }, { "vulnerability": "VCID-hnu9-tkmz-zkc1" }, { "vulnerability": "VCID-jj4q-t5pz-1bga" }, { "vulnerability": "VCID-k6dm-gvut-pyaz" }, { "vulnerability": "VCID-kz5d-2vu6-jkdh" }, { "vulnerability": "VCID-mywx-vbs4-jkaz" }, { "vulnerability": "VCID-n2aq-8bbh-jqbs" }, { "vulnerability": "VCID-nebp-9zgp-23b1" }, { "vulnerability": "VCID-p4fs-jk22-2bc6" }, { "vulnerability": "VCID-peeq-u79a-c3bx" }, { "vulnerability": "VCID-rrmz-cacr-x3dp" }, { "vulnerability": "VCID-ryx2-1u8s-r7ff" }, { "vulnerability": "VCID-s1g1-8de8-8beq" }, { "vulnerability": "VCID-t7my-j23s-nqgf" }, { "vulnerability": "VCID-uw9f-fvfw-z7af" }, { "vulnerability": "VCID-vm1z-yuqw-fkdf" }, { "vulnerability": "VCID-wjw1-e5zm-hyfg" }, { "vulnerability": "VCID-xg3x-dbg6-fkfz" }, { "vulnerability": "VCID-ygk6-wmq5-yqd8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-mariadb100-mariadb@1:10.0.33-3%3Farch=el7" }, { "url": "http://public2.vulnerablecode.io/api/packages/151955?format=api", "purl": "pkg:rpm/redhat/rh-mariadb101-galera@25.3.12-12?arch=el7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1sng-r3xv-sfch" }, { "vulnerability": "VCID-2963-nhhe-ruh4" }, { "vulnerability": "VCID-99he-ytch-abhw" }, { "vulnerability": "VCID-azya-cswr-huaq" }, { "vulnerability": "VCID-bphm-jk52-5ych" }, { "vulnerability": "VCID-c8cd-u5qc-juat" }, { "vulnerability": "VCID-d883-hxvh-c3hy" }, { "vulnerability": "VCID-eh1q-u7yu-y3gn" }, { "vulnerability": "VCID-g982-u19y-f7cw" }, { "vulnerability": "VCID-hnu9-tkmz-zkc1" }, { "vulnerability": "VCID-jj4q-t5pz-1bga" }, { "vulnerability": "VCID-k6dm-gvut-pyaz" }, { "vulnerability": "VCID-kz5d-2vu6-jkdh" }, { "vulnerability": "VCID-mywx-vbs4-jkaz" }, { "vulnerability": "VCID-n2aq-8bbh-jqbs" }, { "vulnerability": "VCID-nebp-9zgp-23b1" }, { "vulnerability": "VCID-p4fs-jk22-2bc6" }, { "vulnerability": "VCID-peeq-u79a-c3bx" }, { "vulnerability": "VCID-rrmz-cacr-x3dp" }, { "vulnerability": "VCID-ryx2-1u8s-r7ff" }, { "vulnerability": "VCID-s1g1-8de8-8beq" }, { "vulnerability": "VCID-t7my-j23s-nqgf" }, { "vulnerability": "VCID-uw9f-fvfw-z7af" }, { "vulnerability": "VCID-vm1z-yuqw-fkdf" }, { "vulnerability": "VCID-wjw1-e5zm-hyfg" }, { "vulnerability": "VCID-xg3x-dbg6-fkfz" }, { "vulnerability": "VCID-ygk6-wmq5-yqd8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-mariadb101-galera@25.3.12-12%3Farch=el7" }, { "url": "http://public2.vulnerablecode.io/api/packages/151956?format=api", "purl": "pkg:rpm/redhat/rh-mariadb101-galera@25.3.12-12?arch=el6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1sng-r3xv-sfch" }, { "vulnerability": "VCID-2963-nhhe-ruh4" }, { "vulnerability": "VCID-99he-ytch-abhw" }, { "vulnerability": "VCID-azya-cswr-huaq" }, { "vulnerability": "VCID-bphm-jk52-5ych" }, { "vulnerability": "VCID-c8cd-u5qc-juat" }, { "vulnerability": "VCID-d883-hxvh-c3hy" }, { "vulnerability": "VCID-eh1q-u7yu-y3gn" }, { "vulnerability": "VCID-g982-u19y-f7cw" }, { "vulnerability": "VCID-hnu9-tkmz-zkc1" }, { "vulnerability": "VCID-jj4q-t5pz-1bga" }, { "vulnerability": "VCID-k6dm-gvut-pyaz" }, { "vulnerability": "VCID-kz5d-2vu6-jkdh" }, { "vulnerability": "VCID-mywx-vbs4-jkaz" }, { "vulnerability": "VCID-n2aq-8bbh-jqbs" }, { "vulnerability": "VCID-nebp-9zgp-23b1" }, { "vulnerability": "VCID-p4fs-jk22-2bc6" }, { "vulnerability": "VCID-peeq-u79a-c3bx" }, { "vulnerability": "VCID-rrmz-cacr-x3dp" }, { "vulnerability": "VCID-ryx2-1u8s-r7ff" }, { "vulnerability": "VCID-s1g1-8de8-8beq" }, { "vulnerability": "VCID-t7my-j23s-nqgf" }, { "vulnerability": "VCID-uw9f-fvfw-z7af" }, { "vulnerability": "VCID-vm1z-yuqw-fkdf" }, { "vulnerability": "VCID-wjw1-e5zm-hyfg" }, { "vulnerability": "VCID-xg3x-dbg6-fkfz" }, { "vulnerability": "VCID-ygk6-wmq5-yqd8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-mariadb101-galera@25.3.12-12%3Farch=el6" }, { "url": "http://public2.vulnerablecode.io/api/packages/151959?format=api", "purl": "pkg:rpm/redhat/rh-mariadb101-mariadb@1:10.1.29-3?arch=el6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1sng-r3xv-sfch" }, { "vulnerability": "VCID-2963-nhhe-ruh4" }, { "vulnerability": "VCID-99he-ytch-abhw" }, { "vulnerability": "VCID-azya-cswr-huaq" }, { "vulnerability": "VCID-bphm-jk52-5ych" }, { "vulnerability": "VCID-c8cd-u5qc-juat" }, { "vulnerability": "VCID-d883-hxvh-c3hy" }, { "vulnerability": "VCID-eh1q-u7yu-y3gn" }, { "vulnerability": "VCID-g982-u19y-f7cw" }, { "vulnerability": "VCID-hnu9-tkmz-zkc1" }, { "vulnerability": "VCID-jj4q-t5pz-1bga" }, { "vulnerability": "VCID-k6dm-gvut-pyaz" }, { "vulnerability": "VCID-kz5d-2vu6-jkdh" }, { "vulnerability": "VCID-mywx-vbs4-jkaz" }, { "vulnerability": "VCID-n2aq-8bbh-jqbs" }, { "vulnerability": "VCID-nebp-9zgp-23b1" }, { "vulnerability": "VCID-p4fs-jk22-2bc6" }, { "vulnerability": "VCID-peeq-u79a-c3bx" }, { "vulnerability": "VCID-rrmz-cacr-x3dp" }, { "vulnerability": "VCID-ryx2-1u8s-r7ff" }, { "vulnerability": "VCID-s1g1-8de8-8beq" }, { "vulnerability": "VCID-t7my-j23s-nqgf" }, { "vulnerability": "VCID-uw9f-fvfw-z7af" }, { "vulnerability": "VCID-vm1z-yuqw-fkdf" }, { "vulnerability": "VCID-wjw1-e5zm-hyfg" }, { "vulnerability": "VCID-xg3x-dbg6-fkfz" }, { "vulnerability": "VCID-ygk6-wmq5-yqd8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-mariadb101-mariadb@1:10.1.29-3%3Farch=el6" }, { "url": "http://public2.vulnerablecode.io/api/packages/151961?format=api", "purl": "pkg:rpm/redhat/rh-mariadb101-mariadb@1:10.1.29-3?arch=el7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1sng-r3xv-sfch" }, { "vulnerability": "VCID-2963-nhhe-ruh4" }, { "vulnerability": "VCID-99he-ytch-abhw" }, { "vulnerability": "VCID-azya-cswr-huaq" }, { "vulnerability": "VCID-bphm-jk52-5ych" }, { "vulnerability": "VCID-c8cd-u5qc-juat" }, { "vulnerability": "VCID-d883-hxvh-c3hy" }, { "vulnerability": "VCID-eh1q-u7yu-y3gn" }, { "vulnerability": "VCID-g982-u19y-f7cw" }, { "vulnerability": "VCID-hnu9-tkmz-zkc1" }, { "vulnerability": "VCID-jj4q-t5pz-1bga" }, { "vulnerability": "VCID-k6dm-gvut-pyaz" }, { "vulnerability": "VCID-kz5d-2vu6-jkdh" }, { "vulnerability": "VCID-mywx-vbs4-jkaz" }, { "vulnerability": "VCID-n2aq-8bbh-jqbs" }, { "vulnerability": "VCID-nebp-9zgp-23b1" }, { "vulnerability": "VCID-p4fs-jk22-2bc6" }, { "vulnerability": "VCID-peeq-u79a-c3bx" }, { "vulnerability": "VCID-rrmz-cacr-x3dp" }, { "vulnerability": "VCID-ryx2-1u8s-r7ff" }, { "vulnerability": "VCID-s1g1-8de8-8beq" }, { "vulnerability": "VCID-t7my-j23s-nqgf" }, { "vulnerability": "VCID-uw9f-fvfw-z7af" }, { "vulnerability": "VCID-vm1z-yuqw-fkdf" }, { "vulnerability": "VCID-wjw1-e5zm-hyfg" }, { "vulnerability": "VCID-xg3x-dbg6-fkfz" }, { "vulnerability": "VCID-ygk6-wmq5-yqd8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-mariadb101-mariadb@1:10.1.29-3%3Farch=el7" }, { "url": "http://public2.vulnerablecode.io/api/packages/155690?format=api", "purl": "pkg:rpm/redhat/rh-mysql56-mysql@5.6.34-2?arch=el6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9pzm-hqjm-pkcg" }, { "vulnerability": "VCID-fhx9-m3sg-97fg" }, { "vulnerability": "VCID-hnu9-tkmz-zkc1" }, { "vulnerability": "VCID-p252-q4u2-3bdd" }, { "vulnerability": "VCID-pvvj-mrbe-xkdu" }, { "vulnerability": "VCID-r27r-1s48-aycf" }, { "vulnerability": "VCID-u2yg-xdqq-9bea" }, { "vulnerability": "VCID-w3hh-ck55-nybr" }, { "vulnerability": "VCID-wjw1-e5zm-hyfg" }, { "vulnerability": "VCID-xr5s-qg54-6bgx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-mysql56-mysql@5.6.34-2%3Farch=el6" }, { "url": "http://public2.vulnerablecode.io/api/packages/155691?format=api", "purl": "pkg:rpm/redhat/rh-mysql56-mysql@5.6.34-2?arch=el7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9pzm-hqjm-pkcg" }, { "vulnerability": "VCID-fhx9-m3sg-97fg" }, { "vulnerability": "VCID-hnu9-tkmz-zkc1" }, { "vulnerability": "VCID-p252-q4u2-3bdd" }, { "vulnerability": "VCID-pvvj-mrbe-xkdu" }, { "vulnerability": "VCID-r27r-1s48-aycf" }, { "vulnerability": "VCID-u2yg-xdqq-9bea" }, { "vulnerability": "VCID-w3hh-ck55-nybr" }, { "vulnerability": "VCID-wjw1-e5zm-hyfg" }, { "vulnerability": "VCID-xr5s-qg54-6bgx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-mysql56-mysql@5.6.34-2%3Farch=el7" } ], "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5617.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5617.json" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1386564", "reference_id": "1386564", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1386564" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/40679.sh", "reference_id": "CVE-2016-6664;CVE-2016-5617", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/40679.sh" }, { "reference_url": "https://legalhackers.com/advisories/MySQL-Maria-Percona-RootPrivEsc-CVE-2016-6664-5617-Exploit.html", "reference_id": "CVE-2016-6664;CVE-2016-5617", "reference_type": "exploit", "scores": [], "url": "https://legalhackers.com/advisories/MySQL-Maria-Percona-RootPrivEsc-CVE-2016-6664-5617-Exploit.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:2130", "reference_id": "RHSA-2016:2130", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:2130" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:2749", "reference_id": "RHSA-2016:2749", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:2749" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:2192", "reference_id": "RHSA-2017:2192", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:2192" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0279", "reference_id": "RHSA-2018:0279", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0279" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0574", "reference_id": "RHSA-2018:0574", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0574" } ], "weaknesses": [], "exploits": [ { "date_added": "2016-11-01", "description": "MySQL / MariaDB / PerconaDB 5.5.x/5.6.x/5.7.x - 'root' System User Privilege Escalation", "required_action": null, "due_date": null, "notes": null, "known_ransomware_campaign_use": false, "source_date_published": "2016-11-01", "exploit_type": "local", "platform": "linux", "source_date_updated": "2017-01-30", "data_source": "Exploit-DB", "source_url": "https://legalhackers.com/advisories/MySQL-Maria-Percona-RootPrivEsc-CVE-2016-6664-5617-Exploit.html" } ], "severity_range_score": "7.8 - 7.8", "exploitability": "2.0", "weighted_severity": "7.0", "risk_score": 10.0, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wjw1-e5zm-hyfg" }