Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/1733?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/1733?format=api", "vulnerability_id": "VCID-h69y-besn-ebaj", "summary": "", "aliases": [ { "alias": "CVE-2016-6893" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1075899?format=api", "purl": "pkg:deb/debian/mailman@1:2.1.18-2%2Bdeb8u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19x8-akjj-w3dn" }, { "vulnerability": "VCID-682q-jyvr-cub6" }, { "vulnerability": "VCID-aeex-3f2a-wkav" }, { "vulnerability": "VCID-dae5-pkj6-33e5" }, { "vulnerability": "VCID-hqvn-apr1-13ez" }, { "vulnerability": "VCID-n6rb-76p4-tfc4" }, { "vulnerability": "VCID-y9cq-xsb9-jyer" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mailman@1:2.1.18-2%252Bdeb8u2" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1073131?format=api", "purl": "pkg:deb/debian/mailman@1.0rc2-5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19x8-akjj-w3dn" }, { "vulnerability": "VCID-3b32-52qa-6fbn" }, { "vulnerability": "VCID-682q-jyvr-cub6" }, { "vulnerability": "VCID-aeex-3f2a-wkav" }, { "vulnerability": "VCID-dae5-pkj6-33e5" }, { "vulnerability": "VCID-h69y-besn-ebaj" }, { "vulnerability": "VCID-hqvn-apr1-13ez" }, { "vulnerability": "VCID-n6rb-76p4-tfc4" }, { "vulnerability": "VCID-y9cq-xsb9-jyer" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mailman@1.0rc2-5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1073132?format=api", "purl": "pkg:deb/debian/mailman@1.1-10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19x8-akjj-w3dn" }, { "vulnerability": "VCID-3b32-52qa-6fbn" }, { "vulnerability": "VCID-682q-jyvr-cub6" }, { "vulnerability": "VCID-aeex-3f2a-wkav" }, { "vulnerability": "VCID-dae5-pkj6-33e5" }, { "vulnerability": "VCID-h69y-besn-ebaj" }, { "vulnerability": "VCID-hqvn-apr1-13ez" }, { "vulnerability": "VCID-n6rb-76p4-tfc4" }, { "vulnerability": "VCID-y9cq-xsb9-jyer" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mailman@1.1-10" }, { "url": "http://public2.vulnerablecode.io/api/packages/1073133?format=api", "purl": "pkg:deb/debian/mailman@2.0.11-1woody11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19x8-akjj-w3dn" }, { "vulnerability": "VCID-3b32-52qa-6fbn" }, { "vulnerability": "VCID-682q-jyvr-cub6" }, { "vulnerability": "VCID-aeex-3f2a-wkav" }, { "vulnerability": "VCID-dae5-pkj6-33e5" }, { "vulnerability": "VCID-h69y-besn-ebaj" }, { "vulnerability": "VCID-hqvn-apr1-13ez" }, { "vulnerability": "VCID-n6rb-76p4-tfc4" }, { "vulnerability": "VCID-y9cq-xsb9-jyer" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mailman@2.0.11-1woody11" }, { "url": "http://public2.vulnerablecode.io/api/packages/1073134?format=api", "purl": "pkg:deb/debian/mailman@2.1.5-8sarge5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19x8-akjj-w3dn" }, { "vulnerability": "VCID-3b32-52qa-6fbn" }, { "vulnerability": "VCID-682q-jyvr-cub6" }, { "vulnerability": "VCID-aeex-3f2a-wkav" }, { "vulnerability": "VCID-dae5-pkj6-33e5" }, { "vulnerability": "VCID-h69y-besn-ebaj" }, { "vulnerability": "VCID-hqvn-apr1-13ez" }, { "vulnerability": "VCID-n6rb-76p4-tfc4" }, { "vulnerability": "VCID-y9cq-xsb9-jyer" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mailman@2.1.5-8sarge5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1073135?format=api", "purl": "pkg:deb/debian/mailman@1:2.1.9-7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19x8-akjj-w3dn" }, { "vulnerability": "VCID-3b32-52qa-6fbn" }, { "vulnerability": "VCID-682q-jyvr-cub6" }, { "vulnerability": "VCID-aeex-3f2a-wkav" }, { "vulnerability": "VCID-dae5-pkj6-33e5" }, { "vulnerability": "VCID-h69y-besn-ebaj" }, { "vulnerability": "VCID-hqvn-apr1-13ez" }, { "vulnerability": "VCID-n6rb-76p4-tfc4" }, { "vulnerability": "VCID-y9cq-xsb9-jyer" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mailman@1:2.1.9-7" }, { "url": "http://public2.vulnerablecode.io/api/packages/1073136?format=api", "purl": "pkg:deb/debian/mailman@1:2.1.11-11%2Blenny2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19x8-akjj-w3dn" }, { "vulnerability": "VCID-3b32-52qa-6fbn" }, { "vulnerability": "VCID-682q-jyvr-cub6" }, { "vulnerability": "VCID-aeex-3f2a-wkav" }, { "vulnerability": "VCID-dae5-pkj6-33e5" }, { "vulnerability": "VCID-h69y-besn-ebaj" }, { "vulnerability": "VCID-hqvn-apr1-13ez" }, { "vulnerability": "VCID-n6rb-76p4-tfc4" }, { "vulnerability": "VCID-y9cq-xsb9-jyer" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mailman@1:2.1.11-11%252Blenny2" }, { "url": "http://public2.vulnerablecode.io/api/packages/1073137?format=api", "purl": "pkg:deb/debian/mailman@1:2.1.13-5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19x8-akjj-w3dn" }, { "vulnerability": "VCID-3b32-52qa-6fbn" }, { "vulnerability": "VCID-682q-jyvr-cub6" }, { "vulnerability": "VCID-aeex-3f2a-wkav" }, { "vulnerability": "VCID-dae5-pkj6-33e5" }, { "vulnerability": "VCID-h69y-besn-ebaj" }, { "vulnerability": "VCID-hqvn-apr1-13ez" }, { "vulnerability": "VCID-n6rb-76p4-tfc4" }, { "vulnerability": "VCID-y9cq-xsb9-jyer" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mailman@1:2.1.13-5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1073138?format=api", "purl": "pkg:deb/debian/mailman@1:2.1.13-6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19x8-akjj-w3dn" }, { "vulnerability": "VCID-3b32-52qa-6fbn" }, { "vulnerability": "VCID-682q-jyvr-cub6" }, { "vulnerability": "VCID-aeex-3f2a-wkav" }, { "vulnerability": "VCID-dae5-pkj6-33e5" }, { "vulnerability": "VCID-h69y-besn-ebaj" }, { "vulnerability": "VCID-hqvn-apr1-13ez" }, { "vulnerability": "VCID-n6rb-76p4-tfc4" }, { "vulnerability": "VCID-y9cq-xsb9-jyer" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mailman@1:2.1.13-6" }, { "url": "http://public2.vulnerablecode.io/api/packages/1073139?format=api", "purl": "pkg:deb/debian/mailman@1:2.1.15-1%2Bdeb7u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19x8-akjj-w3dn" }, { "vulnerability": "VCID-682q-jyvr-cub6" }, { "vulnerability": "VCID-aeex-3f2a-wkav" }, { "vulnerability": "VCID-dae5-pkj6-33e5" }, { "vulnerability": "VCID-h69y-besn-ebaj" }, { "vulnerability": "VCID-hqvn-apr1-13ez" }, { "vulnerability": "VCID-n6rb-76p4-tfc4" }, { "vulnerability": "VCID-y9cq-xsb9-jyer" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mailman@1:2.1.15-1%252Bdeb7u1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1075897?format=api", "purl": "pkg:deb/debian/mailman@1:2.1.18-2~bpo70%2B1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19x8-akjj-w3dn" }, { "vulnerability": "VCID-682q-jyvr-cub6" }, { "vulnerability": "VCID-aeex-3f2a-wkav" }, { "vulnerability": "VCID-dae5-pkj6-33e5" }, { "vulnerability": "VCID-h69y-besn-ebaj" }, { "vulnerability": "VCID-hqvn-apr1-13ez" }, { "vulnerability": "VCID-n6rb-76p4-tfc4" }, { "vulnerability": "VCID-y9cq-xsb9-jyer" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mailman@1:2.1.18-2~bpo70%252B1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1075898?format=api", "purl": "pkg:deb/debian/mailman@1:2.1.18-2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19x8-akjj-w3dn" }, { "vulnerability": "VCID-682q-jyvr-cub6" }, { "vulnerability": "VCID-aeex-3f2a-wkav" }, { "vulnerability": "VCID-dae5-pkj6-33e5" }, { "vulnerability": "VCID-h69y-besn-ebaj" }, { "vulnerability": "VCID-hqvn-apr1-13ez" }, { "vulnerability": "VCID-n6rb-76p4-tfc4" }, { "vulnerability": "VCID-y9cq-xsb9-jyer" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mailman@1:2.1.18-2" }, { "url": "http://public2.vulnerablecode.io/api/packages/341207?format=api", "purl": "pkg:rpm/redhat/mailman@3:2.1.15-30.el7_9?arch=2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-682q-jyvr-cub6" }, { "vulnerability": "VCID-h69y-besn-ebaj" }, { "vulnerability": "VCID-pn4q-mpyk-p3fx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/mailman@3:2.1.15-30.el7_9%3Farch=2" } ], "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-6893.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-6893.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-6893", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.57096", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.57214", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.57228", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.57221", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-6893" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6893", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6893" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:S/C:P/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1370155", "reference_id": "1370155", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1370155" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4913", "reference_id": "RHSA-2021:4913", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4913" }, { "reference_url": "https://usn.ubuntu.com/3118-1/", "reference_id": "USN-3118-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3118-1/" } ], "weaknesses": [ { "cwe_id": 352, "name": "Cross-Site Request Forgery (CSRF)", "description": "The web application does not, or can not, sufficiently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request." } ], "exploits": [], "severity_range_score": "3.5 - 6.5", "exploitability": "0.5", "weighted_severity": "5.9", "risk_score": 3.0, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-h69y-besn-ebaj" }