Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/202046?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/202046?format=api", "vulnerability_id": "VCID-czea-mk9a-77gs", "summary": "", "aliases": [ { "alias": "CVE-2022-37392" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/210254?format=api", "purl": "pkg:deb/debian/trafficserver@8.1.6%2Bds-1~deb11u1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.1.6%252Bds-1~deb11u1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/210225?format=api", "purl": "pkg:deb/debian/trafficserver@8.1.10%2Bds-1~deb11u1?distro=sid", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3jfe-t1r4-xfds" }, { "vulnerability": "VCID-43vz-vy1m-6qdr" }, { "vulnerability": "VCID-57nf-f2ty-4bca" }, { "vulnerability": "VCID-79rw-pvv7-6kbc" }, { "vulnerability": "VCID-eurz-q67b-7fd8" }, { "vulnerability": "VCID-m1fn-bejb-1yfw" }, { "vulnerability": "VCID-ub6f-38h8-n7fv" }, { "vulnerability": "VCID-wead-6rts-3kaw" }, { "vulnerability": "VCID-yfc4-wf3v-5qcj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.1.10%252Bds-1~deb11u1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/210253?format=api", "purl": "pkg:deb/debian/trafficserver@9.1.4%2Bds-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@9.1.4%252Bds-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/210223?format=api", "purl": "pkg:deb/debian/trafficserver@9.2.5%2Bds-0%2Bdeb12u4?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@9.2.5%252Bds-0%252Bdeb12u4%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/210226?format=api", "purl": "pkg:deb/debian/trafficserver@9.2.5%2Bds-1?distro=sid", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3jfe-t1r4-xfds" }, { "vulnerability": "VCID-43vz-vy1m-6qdr" }, { "vulnerability": "VCID-57nf-f2ty-4bca" }, { "vulnerability": "VCID-79rw-pvv7-6kbc" }, { "vulnerability": "VCID-e3zq-sb2w-7uha" }, { "vulnerability": "VCID-eurz-q67b-7fd8" }, { "vulnerability": "VCID-hx9s-fsjh-kuc4" }, { "vulnerability": "VCID-m1fn-bejb-1yfw" }, { "vulnerability": "VCID-ub6f-38h8-n7fv" }, { "vulnerability": "VCID-wead-6rts-3kaw" }, { "vulnerability": "VCID-yfc4-wf3v-5qcj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@9.2.5%252Bds-1%3Fdistro=sid" } ], "affected_packages": [], "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-37392", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.03006", "scoring_system": "epss", "scoring_elements": "0.86816", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-37392" }, { "reference_url": "https://lists.apache.org/thread/mrj2lg4s0hf027rk7gz8t7hbn9xpfg02", "reference_id": "mrj2lg4s0hf027rk7gz8t7hbn9xpfg02", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-17T14:20:03Z/" } ], "url": "https://lists.apache.org/thread/mrj2lg4s0hf027rk7gz8t7hbn9xpfg02" } ], "weaknesses": [ { "cwe_id": 754, "name": "Improper Check for Unusual or Exceptional Conditions", "description": "The product does not check or incorrectly checks for unusual or exceptional conditions that are not expected to occur frequently during day to day operation of the product." } ], "exploits": [], "severity_range_score": "5.3 - 5.3", "exploitability": null, "weighted_severity": null, "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-czea-mk9a-77gs" }