Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/152302?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152302?format=api", "vulnerability_id": "VCID-upfa-r369-d7d6", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in takeover of MySQL Server. CVSS 3.1 Base Score 7.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H).", "aliases": [ { "alias": "CVE-2020-14828" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/95496?format=api", "purl": "pkg:deb/debian/mysql-8.0@8.0.22-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mysql-8.0@8.0.22-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/95495?format=api", "purl": "pkg:deb/debian/mysql-8.0@8.0.46-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mysql-8.0@8.0.46-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" }, { "url": "http://public2.vulnerablecode.io/api/packages/6536?format=api", "purl": "pkg:ebuild/dev-db/mysql-connector-c@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql-connector-c@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6537?format=api", "purl": "pkg:ebuild/dev-db/mysql-connector-c@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql-connector-c@8.0.24" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/341301?format=api", "purl": "pkg:rpm/redhat/rh-mysql80-mysql@8.0.26-1?arch=el7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15uu-gexb-dqbb" }, { "vulnerability": "VCID-17se-4t5r-m7cx" }, { "vulnerability": "VCID-1f5y-gp7n-1qdp" }, { "vulnerability": "VCID-1jey-x1st-3yeb" }, { "vulnerability": "VCID-1mg4-vcu3-bkcp" }, { "vulnerability": "VCID-1n2n-h18u-8qcc" }, { "vulnerability": "VCID-29fh-6yda-73cy" }, { "vulnerability": "VCID-2p96-ddsz-kqae" }, { "vulnerability": "VCID-2uk7-ddhz-mkdt" }, { "vulnerability": "VCID-31qa-gz6u-r7h9" }, { "vulnerability": "VCID-39s2-cu1b-dfeq" }, { "vulnerability": "VCID-3jr1-6uff-abdc" }, { "vulnerability": "VCID-3rys-sncu-sbbf" }, { "vulnerability": "VCID-3wn9-mafy-zkas" }, { "vulnerability": "VCID-44eg-e1ph-qbe8" }, { "vulnerability": "VCID-46hm-r759-xbdc" }, { "vulnerability": "VCID-4982-ycrb-wff4" }, { "vulnerability": "VCID-49sf-kdf5-pfev" }, { "vulnerability": "VCID-4a5t-n4me-tbhe" }, { "vulnerability": "VCID-4dyw-8ep4-m3h3" }, { "vulnerability": "VCID-4puw-e8ca-67hb" }, { "vulnerability": "VCID-4vp1-x21y-j3dy" }, { "vulnerability": "VCID-51kc-gf74-yua2" }, { "vulnerability": "VCID-56d3-hdqf-zqf9" }, { "vulnerability": "VCID-56p7-1bns-5ugz" }, { "vulnerability": "VCID-57u2-46wy-b7c1" }, { "vulnerability": "VCID-5dhg-h6y4-y7bp" }, { "vulnerability": "VCID-64yu-hcyb-kke8" }, { "vulnerability": "VCID-6h38-vgs1-yqd8" }, { "vulnerability": "VCID-7k35-a8zj-xqbw" }, { "vulnerability": "VCID-7z97-pryb-hugp" }, { "vulnerability": "VCID-87ju-4ty8-r3bj" }, { "vulnerability": "VCID-89qs-v69n-fuhe" }, { "vulnerability": "VCID-8exs-ftp9-xkgw" }, { "vulnerability": "VCID-8fgc-gvyy-fkac" }, { "vulnerability": "VCID-8n1d-7qy4-ffc9" }, { "vulnerability": "VCID-8q3p-dmw9-y3g1" }, { "vulnerability": "VCID-8vbv-a27q-jbd3" }, { "vulnerability": "VCID-8ws1-utzg-k3hd" }, { "vulnerability": "VCID-8x7t-r38c-rfh7" }, { "vulnerability": "VCID-96pg-nrs8-afgz" }, { "vulnerability": "VCID-aanc-ymtk-ckhy" }, { "vulnerability": "VCID-ac1d-fn3t-gbac" }, { "vulnerability": "VCID-aw43-d77z-dqc9" }, { "vulnerability": "VCID-bax6-zd1f-pkey" }, { "vulnerability": "VCID-bcyh-t3ps-h3ev" }, { "vulnerability": "VCID-bduk-59hd-mbf8" }, { "vulnerability": "VCID-bhr9-4tma-5yhx" }, { "vulnerability": "VCID-bp9y-2g8a-zqhu" }, { "vulnerability": "VCID-cnaz-rbdy-tqh1" }, { "vulnerability": "VCID-cut9-sjrw-wqfj" }, { "vulnerability": "VCID-d685-mxpn-cfc8" }, { "vulnerability": "VCID-dreh-gk36-6fb5" }, { "vulnerability": "VCID-drxz-zs76-c7a5" }, { "vulnerability": "VCID-dudn-7zbh-bbce" }, { "vulnerability": "VCID-e7ye-3suf-8fbq" }, { "vulnerability": "VCID-fpan-eka3-47fw" }, { "vulnerability": "VCID-g158-hn6h-2fft" }, { "vulnerability": "VCID-g72c-766j-rfga" }, { "vulnerability": "VCID-g9bt-pc77-a7gp" }, { "vulnerability": "VCID-gc7e-jg1b-ffbf" }, { "vulnerability": "VCID-gq38-gcvr-yyab" }, { "vulnerability": "VCID-gwjj-2yy5-wyfg" }, { "vulnerability": "VCID-hn5e-6pju-euax" }, { "vulnerability": "VCID-htg4-372d-dbd3" }, { "vulnerability": "VCID-htwp-kgz2-auft" }, { "vulnerability": "VCID-j1z8-6fqk-mbf7" }, { "vulnerability": "VCID-jf5k-d67w-eybn" }, { "vulnerability": "VCID-jpfn-85v8-6yd3" }, { "vulnerability": "VCID-jrw2-943h-5bbr" }, { "vulnerability": "VCID-jt5c-qgw8-v7a5" }, { "vulnerability": "VCID-juy2-3vcv-kycw" }, { "vulnerability": "VCID-jvtg-7sgb-eff7" }, { "vulnerability": "VCID-jzbk-tgz3-ekew" }, { "vulnerability": "VCID-k4ps-pena-57dx" }, { "vulnerability": "VCID-kazq-p85w-53dy" }, { "vulnerability": "VCID-kv1a-q8qt-vqav" }, { "vulnerability": "VCID-kz2z-y58y-pug8" }, { "vulnerability": "VCID-mgx8-xvgq-bbcr" }, { "vulnerability": "VCID-mksj-hd3c-v3cf" }, { "vulnerability": "VCID-mmcc-59yy-w3cy" }, { "vulnerability": "VCID-mp1j-87qt-m3aa" }, { "vulnerability": "VCID-mrue-hagp-cufs" }, { "vulnerability": "VCID-ms3t-z71f-zqfc" }, { "vulnerability": "VCID-mub3-zear-cqe7" }, { "vulnerability": "VCID-my2k-ujsp-bbbg" }, { "vulnerability": "VCID-n37g-kwzh-jfdq" }, { "vulnerability": "VCID-n5vd-k859-vker" }, { "vulnerability": "VCID-nqq9-wney-yyfv" }, { "vulnerability": "VCID-nvfw-pmqb-c3dz" }, { "vulnerability": "VCID-p8vg-z2s8-tqhd" }, { "vulnerability": "VCID-pdc3-m38j-cycb" }, { "vulnerability": "VCID-pq56-6fr4-sudy" }, { "vulnerability": "VCID-pqmy-ahvq-1uf1" }, { "vulnerability": "VCID-qmrc-tmaw-63dt" }, { "vulnerability": "VCID-r1gm-acdr-vfby" }, { "vulnerability": "VCID-r5ys-h7yb-muh5" }, { "vulnerability": "VCID-r8da-hek9-gfcu" }, { "vulnerability": "VCID-rac8-q5nd-p7de" }, { "vulnerability": "VCID-rbar-11vv-43hs" }, { "vulnerability": "VCID-rqw5-knwa-jqb1" }, { "vulnerability": "VCID-s5dr-1j95-63dh" }, { "vulnerability": "VCID-sw1z-rcta-afh7" }, { "vulnerability": "VCID-sz57-b1q7-byf4" }, { "vulnerability": "VCID-szep-pw56-rye7" }, { "vulnerability": "VCID-t8rn-c95t-53c6" }, { "vulnerability": "VCID-tecd-5pp3-7fc5" }, { "vulnerability": "VCID-thy1-9usv-qkhc" }, { "vulnerability": "VCID-tkdq-agqb-47d2" }, { "vulnerability": "VCID-trs8-pcm4-pkh9" }, { "vulnerability": "VCID-ucmy-m6wv-pkfk" }, { "vulnerability": "VCID-uegu-gs11-cfa4" }, { "vulnerability": "VCID-upfa-r369-d7d6" }, { "vulnerability": "VCID-uttr-gxmg-syca" }, { "vulnerability": "VCID-v5qc-ymug-yudd" }, { "vulnerability": "VCID-vu6d-udde-9qf6" }, { "vulnerability": "VCID-wb94-6gfc-a7b3" }, { "vulnerability": "VCID-wmym-qjbr-bqe7" }, { "vulnerability": "VCID-wqyn-v49b-gud8" }, { "vulnerability": "VCID-ww4h-ewj5-8qa1" }, { "vulnerability": "VCID-x6cq-jaux-bfax" }, { "vulnerability": "VCID-x9xr-u2ez-6bac" }, { "vulnerability": "VCID-xtmz-za7h-aqdm" }, { "vulnerability": "VCID-xzzs-g9cs-qfgp" }, { "vulnerability": "VCID-y2ba-m468-4qdt" }, { "vulnerability": "VCID-y3rn-48kf-abb2" }, { "vulnerability": "VCID-y6qw-qh4g-8fgp" }, { "vulnerability": "VCID-y9wt-tews-bqhs" }, { "vulnerability": "VCID-ydqz-d33w-9ufe" }, { "vulnerability": "VCID-ye5y-efk8-ykas" }, { "vulnerability": "VCID-yhns-4tru-augx" }, { "vulnerability": "VCID-ynmn-z16f-v3fd" }, { "vulnerability": "VCID-yqa8-s6py-5kdr" }, { "vulnerability": "VCID-yvw3-zw6y-a7hs" }, { "vulnerability": "VCID-yx5q-gpgz-67ar" }, { "vulnerability": "VCID-z9nb-6sff-zydc" }, { "vulnerability": "VCID-zcp4-zg5k-s7fz" }, { "vulnerability": "VCID-zn9u-anwu-nbfz" }, { "vulnerability": "VCID-zubj-a5g9-2yen" }, { "vulnerability": "VCID-zuky-4v2b-zqgv" }, { "vulnerability": "VCID-zzs2-eeu9-f3hu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-mysql80-mysql@8.0.26-1%3Farch=el7" } ], "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14828.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14828.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14828", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00942", "scoring_system": "epss", "scoring_elements": "0.76709", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00942", "scoring_system": "epss", "scoring_elements": "0.76786", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00942", "scoring_system": "epss", "scoring_elements": "0.76791", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00942", "scoring_system": "epss", "scoring_elements": "0.76777", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14828" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890760", "reference_id": "1890760", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890760" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-26T19:54:02Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623", "reference_id": "972623", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-26T19:54:02Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-26T19:54:02Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" } ], "weaknesses": [], "exploits": [], "severity_range_score": "7.2 - 7.2", "exploitability": "0.5", "weighted_severity": "6.5", "risk_score": 3.2, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-upfa-r369-d7d6" }