Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/2183?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/2183?format=api", "vulnerability_id": "VCID-9b97-rcfn-fyhh", "summary": "Security researcher Alexander Miller reported that\npassing an excessively long string to document.write\ncould cause text rendering routines to end up in an inconsistent state\nwith sections of stack memory being overwritten with the string data.\nAn attacker could use this flaw to crash a victim's browser and\npotentially run arbitrary code on their computer.", "aliases": [ { "alias": "CVE-2010-3179" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/998?format=api", "purl": "pkg:mozilla/Firefox@3.5.14", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@3.5.14" }, { "url": "http://public2.vulnerablecode.io/api/packages/997?format=api", "purl": "pkg:mozilla/Firefox@3.6.11", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@3.6.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/999?format=api", "purl": "pkg:mozilla/SeaMonkey@2.0.9", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:mozilla/SeaMonkey@2.0.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1003?format=api", "purl": "pkg:mozilla/Thunderbird@3.0.9", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird@3.0.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1002?format=api", "purl": "pkg:mozilla/Thunderbird@3.1.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird@3.1.5" } ], "affected_packages": [], "references": [ { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3179", "reference_id": "CVE-2010-3179", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3179" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2010-65", "reference_id": "mfsa2010-65", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2010-65" } ], "weaknesses": [], "exploits": [], "severity_range_score": "9.0 - 10.0", "exploitability": null, "weighted_severity": null, "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9b97-rcfn-fyhh" }