Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/152258?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152258?format=api", "vulnerability_id": "VCID-4fy5-a99q-cfca", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 5.6.48 and prior, 5.7.30 and prior and 8.0.20 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).", "aliases": [ { "alias": "CVE-2020-14539" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" }, { "url": "http://public2.vulnerablecode.io/api/packages/6536?format=api", "purl": "pkg:ebuild/dev-db/mysql-connector-c@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql-connector-c@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6537?format=api", "purl": "pkg:ebuild/dev-db/mysql-connector-c@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql-connector-c@8.0.24" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/342008?format=api", "purl": "pkg:rpm/redhat/rh-mysql80-mysql@8.0.21-1?arch=el7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1773-ea7q-83g8" }, { "vulnerability": "VCID-1cdz-dpx8-mbbd" }, { "vulnerability": "VCID-1gr1-qg4m-yyby" }, { "vulnerability": "VCID-1kke-bz9q-zqgc" }, { "vulnerability": "VCID-1ven-g4fs-d7hk" }, { "vulnerability": "VCID-264y-hter-jbcs" }, { "vulnerability": "VCID-2e1j-kaaw-x7cn" }, { "vulnerability": "VCID-2qk9-hypt-pkhh" }, { "vulnerability": "VCID-31wc-vkhj-mufs" }, { "vulnerability": "VCID-31wj-pdsu-1bg7" }, { "vulnerability": "VCID-36cz-q7hp-h7c9" }, { "vulnerability": "VCID-4asy-t3v6-yqfa" }, { "vulnerability": "VCID-4fy5-a99q-cfca" }, { "vulnerability": "VCID-4g78-tx7v-7qb1" }, { "vulnerability": "VCID-4pe1-uzqa-9yg7" }, { "vulnerability": "VCID-4pw2-1r7s-uya6" }, { "vulnerability": "VCID-6311-7p2f-mbej" }, { "vulnerability": "VCID-68sk-d3hz-5yg8" }, { "vulnerability": "VCID-6hny-hz46-1khz" }, { "vulnerability": "VCID-72zj-htuf-hbcb" }, { "vulnerability": "VCID-78e7-51q3-6ke6" }, { "vulnerability": "VCID-798v-tu3v-ybdv" }, { "vulnerability": "VCID-7dgq-m43w-nqex" }, { "vulnerability": "VCID-7rpz-cs3q-1qhg" }, { "vulnerability": "VCID-7tv9-kphk-93ef" }, { "vulnerability": "VCID-8bc6-7jgn-7qf1" }, { "vulnerability": "VCID-8zf8-kgs8-c7gh" }, { "vulnerability": "VCID-9yz4-rktz-fffz" }, { "vulnerability": "VCID-af5x-h8jg-v3a3" }, { "vulnerability": "VCID-ampn-g36f-qqg1" }, { "vulnerability": "VCID-ayqy-45yk-hqhv" }, { "vulnerability": "VCID-ayxm-p93v-qudf" }, { "vulnerability": "VCID-b1uu-6pra-xqbc" }, { "vulnerability": "VCID-bdq3-9b1x-u3em" }, { "vulnerability": "VCID-bn45-drtr-3bcu" }, { "vulnerability": "VCID-btgt-38wh-8yfh" }, { "vulnerability": "VCID-bvq1-9t83-b3eh" }, { "vulnerability": "VCID-c97k-dttp-17d2" }, { "vulnerability": "VCID-cr8a-wcf7-4uef" }, { "vulnerability": "VCID-dper-51k6-eke1" }, { "vulnerability": "VCID-e37r-xb89-37cu" }, { "vulnerability": "VCID-e6em-c15x-kqeu" }, { "vulnerability": "VCID-exmj-vexz-1qan" }, { "vulnerability": "VCID-f8b4-hzvg-e3g8" }, { "vulnerability": "VCID-fkqg-wcub-kyax" }, { "vulnerability": "VCID-fpav-1cda-zfct" }, { "vulnerability": "VCID-fsy7-7usp-3ba1" }, { "vulnerability": "VCID-gdv2-61zc-fuan" }, { "vulnerability": "VCID-gfps-bt8r-v3h8" }, { "vulnerability": "VCID-gmus-a2hu-q3fj" }, { "vulnerability": "VCID-gsxh-9pp8-w7ch" }, { "vulnerability": "VCID-gxys-bk7f-53d3" }, { "vulnerability": "VCID-h8ud-x7cm-aufy" }, { "vulnerability": "VCID-h8xy-1kvt-j3gr" }, { "vulnerability": "VCID-hqup-msug-q7hm" }, { "vulnerability": "VCID-j3dj-q7ez-zueg" }, { "vulnerability": "VCID-jasq-uz4z-bqcg" }, { "vulnerability": "VCID-jsjs-bfs7-zfdb" }, { "vulnerability": "VCID-jvp3-ws1c-23a5" }, { "vulnerability": "VCID-k4tu-xdxh-cyed" }, { "vulnerability": "VCID-ka5j-p1rk-8yfv" }, { "vulnerability": "VCID-kfwe-6b4z-k3e4" }, { "vulnerability": "VCID-ksf9-grm9-7ydv" }, { "vulnerability": "VCID-kz2j-krd1-u7bd" }, { "vulnerability": "VCID-m1t7-qjpp-sfgf" }, { "vulnerability": "VCID-maqx-6218-23e4" }, { "vulnerability": "VCID-mp25-qmdx-jyep" }, { "vulnerability": "VCID-mw9q-85k6-y7cy" }, { "vulnerability": "VCID-mygk-138b-u7gb" }, { "vulnerability": "VCID-n685-ddjg-vub7" }, { "vulnerability": "VCID-ngvm-btzf-c3g7" }, { "vulnerability": "VCID-nz8x-q3za-p3dd" }, { "vulnerability": "VCID-qdy7-899w-1beu" }, { "vulnerability": "VCID-qg23-yk8c-hya9" }, { "vulnerability": "VCID-qr7a-utt2-j7bu" }, { "vulnerability": "VCID-qthj-76hp-33fb" }, { "vulnerability": "VCID-qvst-eue8-jqcy" }, { "vulnerability": "VCID-qvzn-dyvx-qbaa" }, { "vulnerability": "VCID-rnjk-r2u4-sybn" }, { "vulnerability": "VCID-ry5d-pc5y-rbgu" }, { "vulnerability": "VCID-ryhg-ugzk-jqha" }, { "vulnerability": "VCID-s1jv-124a-xyfr" }, { "vulnerability": "VCID-sp8y-udju-qkd8" }, { "vulnerability": "VCID-srj3-34hq-5bca" }, { "vulnerability": "VCID-t5w4-d75r-yyha" }, { "vulnerability": "VCID-tc7x-dxd9-6kaj" }, { "vulnerability": "VCID-thu3-k5d4-k3ha" }, { "vulnerability": "VCID-tscg-3tuv-bqd4" }, { "vulnerability": "VCID-u3db-vty5-nyc3" }, { "vulnerability": "VCID-u41n-pxb8-mqaw" }, { "vulnerability": "VCID-u4mz-ex3s-3fhb" }, { "vulnerability": "VCID-ucg8-3yjb-vbec" }, { "vulnerability": "VCID-ugnq-cttj-ykcw" }, { "vulnerability": "VCID-uncy-21b2-n7aa" }, { "vulnerability": "VCID-ux2g-3jc3-tudb" }, { "vulnerability": "VCID-vesf-jady-cya5" }, { "vulnerability": "VCID-vggx-2kfb-sqen" }, { "vulnerability": "VCID-vjcv-jxjj-6qfd" }, { "vulnerability": "VCID-vpu1-97dy-8ucg" }, { "vulnerability": "VCID-xahz-qgvr-m7gs" }, { "vulnerability": "VCID-xhfd-bgpj-zkca" }, { "vulnerability": "VCID-xzsx-phnf-bufu" }, { "vulnerability": "VCID-yrjr-4mh7-3ub3" }, { "vulnerability": "VCID-yv9e-hw5v-aqav" }, { "vulnerability": "VCID-z2nc-b5e2-bbc5" }, { "vulnerability": "VCID-z5xv-h114-fyet" }, { "vulnerability": "VCID-z95m-wyn1-37gc" }, { "vulnerability": "VCID-zjb2-p2fw-qfcu" }, { "vulnerability": "VCID-zpxd-dtky-2yfb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-mysql80-mysql@8.0.21-1%3Farch=el7" } ], "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14539.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14539.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14539", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00632", "scoring_system": "epss", "scoring_elements": "0.70912", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00632", "scoring_system": "epss", "scoring_elements": "0.70914", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00632", "scoring_system": "epss", "scoring_elements": "0.70902", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00632", "scoring_system": "epss", "scoring_elements": "0.70811", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14539" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865945", "reference_id": "1865945", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865945" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:52Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4441-1/", "reference_id": "4441-1", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:52Z/" } ], "url": "https://usn.ubuntu.com/4441-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CAI7GRYZ5265JVKHC6VXI57MNJDDB63C/", "reference_id": "CAI7GRYZ5265JVKHC6VXI57MNJDDB63C", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:52Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CAI7GRYZ5265JVKHC6VXI57MNJDDB63C/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujul2020.html", "reference_id": "cpujul2020.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:52Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujul2020.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYQPCHGCVKFS3H226QQKZFQP56JYOQ3T/", "reference_id": "HYQPCHGCVKFS3H226QQKZFQP56JYOQ3T", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:52Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYQPCHGCVKFS3H226QQKZFQP56JYOQ3T/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200717-0004/", "reference_id": "ntap-20200717-0004", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:52Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200717-0004/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SA2XMR2ZY2BPR3VLTDVLNV74JL7TA7KL/", "reference_id": "SA2XMR2ZY2BPR3VLTDVLNV74JL7TA7KL", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:52Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SA2XMR2ZY2BPR3VLTDVLNV74JL7TA7KL/" } ], "weaknesses": [], "exploits": [], "severity_range_score": "6.5 - 6.5", "exploitability": "0.5", "weighted_severity": "5.9", "risk_score": 3.0, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4fy5-a99q-cfca" }