Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/339714?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/339714?format=api", "vulnerability_id": "VCID-fn9u-w13j-43dz", "summary": "High severity vulnerability that affects actionpack", "aliases": [ { "alias": "GHSA-hx46-vwmx-wx95" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/51535?format=api", "purl": "pkg:gem/actionpack@3.2.22.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-31rm-1rpc-g3dq" }, { "vulnerability": "VCID-4jjq-jkgc-mkca" }, { "vulnerability": "VCID-6cjf-b88j-n3bw" }, { "vulnerability": "VCID-6jdd-kze9-myfz" }, { "vulnerability": "VCID-9w4d-2z52-wyaf" }, { "vulnerability": "VCID-b5zn-u8pu-zya6" }, { "vulnerability": "VCID-dz1r-ae9g-57en" }, { "vulnerability": "VCID-f22x-hsz9-kfau" }, { "vulnerability": "VCID-fm16-z8wy-6fgz" }, { "vulnerability": "VCID-fnkq-8eys-gygm" }, { "vulnerability": "VCID-hud5-xxhh-u3ex" }, { "vulnerability": "VCID-jnrw-sue5-zqex" }, { "vulnerability": "VCID-kyj5-b8wz-pkgj" }, { "vulnerability": "VCID-m8rg-xa7x-6yan" }, { "vulnerability": "VCID-n2ap-zgrd-skhf" }, { "vulnerability": "VCID-r7ur-pzac-7bbk" }, { "vulnerability": "VCID-sevc-c95q-tyg8" }, { "vulnerability": "VCID-tc9x-h24m-9ufe" }, { "vulnerability": "VCID-xhqj-617q-f7fb" }, { "vulnerability": "VCID-yp5x-mgfj-xbbf" }, { "vulnerability": "VCID-ypmv-73g2-gfex" }, { "vulnerability": "VCID-yrjj-cken-6qff" }, { "vulnerability": "VCID-zm15-yzy1-xuhv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/actionpack@3.2.22.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/51541?format=api", "purl": "pkg:gem/actionpack@4.1.14.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-31rm-1rpc-g3dq" }, { "vulnerability": "VCID-4jjq-jkgc-mkca" }, { "vulnerability": "VCID-6cjf-b88j-n3bw" }, { "vulnerability": "VCID-6jdd-kze9-myfz" }, { "vulnerability": "VCID-9w4d-2z52-wyaf" }, { "vulnerability": "VCID-b5zn-u8pu-zya6" }, { "vulnerability": "VCID-dz1r-ae9g-57en" }, { "vulnerability": "VCID-f22x-hsz9-kfau" }, { "vulnerability": "VCID-fm16-z8wy-6fgz" }, { "vulnerability": "VCID-fnkq-8eys-gygm" }, { "vulnerability": "VCID-hud5-xxhh-u3ex" }, { "vulnerability": "VCID-jnrw-sue5-zqex" }, { "vulnerability": "VCID-kyj5-b8wz-pkgj" }, { "vulnerability": "VCID-m8rg-xa7x-6yan" }, { "vulnerability": "VCID-n2ap-zgrd-skhf" }, { "vulnerability": "VCID-r7ur-pzac-7bbk" }, { "vulnerability": "VCID-sevc-c95q-tyg8" }, { "vulnerability": "VCID-tc9x-h24m-9ufe" }, { "vulnerability": "VCID-xhqj-617q-f7fb" }, { "vulnerability": "VCID-yp5x-mgfj-xbbf" }, { "vulnerability": "VCID-ypmv-73g2-gfex" }, { "vulnerability": "VCID-yrjj-cken-6qff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/actionpack@4.1.14.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/51542?format=api", "purl": "pkg:gem/actionpack@4.2.5.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-31rm-1rpc-g3dq" }, { "vulnerability": "VCID-4jjq-jkgc-mkca" }, { "vulnerability": "VCID-6cjf-b88j-n3bw" }, { "vulnerability": "VCID-6jdd-kze9-myfz" }, { "vulnerability": "VCID-9w4d-2z52-wyaf" }, { "vulnerability": "VCID-b5zn-u8pu-zya6" }, { "vulnerability": "VCID-dz1r-ae9g-57en" }, { "vulnerability": "VCID-f22x-hsz9-kfau" }, { "vulnerability": "VCID-fm16-z8wy-6fgz" }, { "vulnerability": "VCID-fnkq-8eys-gygm" }, { "vulnerability": "VCID-hud5-xxhh-u3ex" }, { "vulnerability": "VCID-jnrw-sue5-zqex" }, { "vulnerability": "VCID-kyj5-b8wz-pkgj" }, { "vulnerability": "VCID-m8rg-xa7x-6yan" }, { "vulnerability": "VCID-n2ap-zgrd-skhf" }, { "vulnerability": "VCID-r7ur-pzac-7bbk" }, { "vulnerability": "VCID-sevc-c95q-tyg8" }, { "vulnerability": "VCID-tc9x-h24m-9ufe" }, { "vulnerability": "VCID-xhqj-617q-f7fb" }, { "vulnerability": "VCID-yp5x-mgfj-xbbf" }, { "vulnerability": "VCID-ypmv-73g2-gfex" }, { "vulnerability": "VCID-yrjj-cken-6qff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/actionpack@4.2.5.2" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/50174?format=api", "purl": "pkg:gem/actionpack@3.2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1161-4sdr-fkc3" }, { "vulnerability": "VCID-14eh-tn37-bfhu" }, { "vulnerability": "VCID-26je-urbt-8kee" }, { "vulnerability": "VCID-31rm-1rpc-g3dq" }, { "vulnerability": "VCID-4jjq-jkgc-mkca" }, { "vulnerability": "VCID-6as7-jkwa-53dk" }, { "vulnerability": "VCID-6cjf-b88j-n3bw" }, { "vulnerability": "VCID-6jdd-kze9-myfz" }, { "vulnerability": "VCID-9w4d-2z52-wyaf" }, { "vulnerability": "VCID-ahgm-vw45-33a2" }, { "vulnerability": "VCID-apra-79g2-wkfn" }, { "vulnerability": "VCID-auvj-pgpu-mybv" }, { "vulnerability": "VCID-b5zn-u8pu-zya6" }, { "vulnerability": "VCID-ct3m-wed2-6bhq" }, { "vulnerability": "VCID-de5p-39kn-pkd3" }, { "vulnerability": "VCID-dz1r-ae9g-57en" }, { "vulnerability": "VCID-f22x-hsz9-kfau" }, { "vulnerability": "VCID-f8s8-epzh-3bhw" }, { "vulnerability": "VCID-fm16-z8wy-6fgz" }, { "vulnerability": "VCID-fn9u-w13j-43dz" }, { "vulnerability": "VCID-fnkq-8eys-gygm" }, { "vulnerability": "VCID-ghfd-u91m-dbdz" }, { "vulnerability": "VCID-gqg3-gs2h-zugf" }, { "vulnerability": "VCID-hpu4-xbs2-fugs" }, { "vulnerability": "VCID-hud5-xxhh-u3ex" }, { "vulnerability": "VCID-j52w-azvw-1ycn" }, { "vulnerability": "VCID-j585-zz5s-nqd5" }, { "vulnerability": "VCID-jnrw-sue5-zqex" }, { "vulnerability": "VCID-kyj5-b8wz-pkgj" }, { "vulnerability": "VCID-m8rg-xa7x-6yan" }, { "vulnerability": "VCID-n2ap-zgrd-skhf" }, { "vulnerability": "VCID-pzs8-zstn-hbf2" }, { "vulnerability": "VCID-r7ur-pzac-7bbk" }, { "vulnerability": "VCID-sevc-c95q-tyg8" }, { "vulnerability": "VCID-sfnx-agxs-9yc9" }, { "vulnerability": "VCID-swv6-gyb1-y7bs" }, { "vulnerability": "VCID-t1ep-g6cz-7kgr" }, { "vulnerability": "VCID-tc9x-h24m-9ufe" }, { "vulnerability": "VCID-vaa4-b9ph-b7cm" }, { "vulnerability": "VCID-vm51-p4w4-n3du" }, { "vulnerability": "VCID-wyvv-ks5y-fkex" }, { "vulnerability": "VCID-xhqj-617q-f7fb" }, { "vulnerability": "VCID-yp5x-mgfj-xbbf" }, { "vulnerability": "VCID-ypmv-73g2-gfex" }, { "vulnerability": "VCID-yrjj-cken-6qff" }, { "vulnerability": "VCID-zm15-yzy1-xuhv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/actionpack@3.2.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/51439?format=api", "purl": "pkg:gem/actionpack@3.2.22.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-31rm-1rpc-g3dq" }, { "vulnerability": "VCID-4jjq-jkgc-mkca" }, { "vulnerability": "VCID-6cjf-b88j-n3bw" }, { "vulnerability": "VCID-6jdd-kze9-myfz" }, { "vulnerability": "VCID-9w4d-2z52-wyaf" }, { "vulnerability": "VCID-apra-79g2-wkfn" }, { "vulnerability": "VCID-b5zn-u8pu-zya6" }, { "vulnerability": "VCID-dz1r-ae9g-57en" }, { "vulnerability": "VCID-f22x-hsz9-kfau" }, { "vulnerability": "VCID-fm16-z8wy-6fgz" }, { "vulnerability": "VCID-fn9u-w13j-43dz" }, { "vulnerability": "VCID-fnkq-8eys-gygm" }, { "vulnerability": "VCID-hud5-xxhh-u3ex" }, { "vulnerability": "VCID-jnrw-sue5-zqex" }, { "vulnerability": "VCID-kyj5-b8wz-pkgj" }, { "vulnerability": "VCID-m8rg-xa7x-6yan" }, { "vulnerability": "VCID-n2ap-zgrd-skhf" }, { "vulnerability": "VCID-r7ur-pzac-7bbk" }, { "vulnerability": "VCID-sevc-c95q-tyg8" }, { "vulnerability": "VCID-tc9x-h24m-9ufe" }, { "vulnerability": "VCID-vm51-p4w4-n3du" }, { "vulnerability": "VCID-xhqj-617q-f7fb" }, { "vulnerability": "VCID-yp5x-mgfj-xbbf" }, { "vulnerability": "VCID-ypmv-73g2-gfex" }, { "vulnerability": "VCID-yrjj-cken-6qff" }, { "vulnerability": "VCID-zm15-yzy1-xuhv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/actionpack@3.2.22.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/50569?format=api", "purl": "pkg:gem/actionpack@4.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1161-4sdr-fkc3" }, { "vulnerability": "VCID-14eh-tn37-bfhu" }, { "vulnerability": "VCID-1bxj-7h5q-jbdz" }, { "vulnerability": "VCID-26je-urbt-8kee" }, { "vulnerability": "VCID-31rm-1rpc-g3dq" }, { "vulnerability": "VCID-4jjq-jkgc-mkca" }, { "vulnerability": "VCID-5za7-eapk-3qgx" }, { "vulnerability": "VCID-6cjf-b88j-n3bw" }, { "vulnerability": "VCID-6jdd-kze9-myfz" }, { "vulnerability": "VCID-8frw-skyq-1fh9" }, { "vulnerability": "VCID-9w4d-2z52-wyaf" }, { "vulnerability": "VCID-apra-79g2-wkfn" }, { "vulnerability": "VCID-b5zn-u8pu-zya6" }, { "vulnerability": "VCID-ct3m-wed2-6bhq" }, { "vulnerability": "VCID-dz1r-ae9g-57en" }, { "vulnerability": "VCID-f22x-hsz9-kfau" }, { "vulnerability": "VCID-fm16-z8wy-6fgz" }, { "vulnerability": "VCID-fn9u-w13j-43dz" }, { "vulnerability": "VCID-fnkq-8eys-gygm" }, { "vulnerability": "VCID-ghfd-u91m-dbdz" }, { "vulnerability": "VCID-hud5-xxhh-u3ex" }, { "vulnerability": "VCID-j52w-azvw-1ycn" }, { "vulnerability": "VCID-j585-zz5s-nqd5" }, { "vulnerability": "VCID-jnrw-sue5-zqex" }, { "vulnerability": "VCID-kurg-1k8b-zkh6" }, { "vulnerability": "VCID-kyj5-b8wz-pkgj" }, { "vulnerability": "VCID-m8rg-xa7x-6yan" }, { "vulnerability": "VCID-mrwn-mkcp-j7dv" }, { "vulnerability": "VCID-n2ap-zgrd-skhf" }, { "vulnerability": "VCID-pssv-24tn-kkc5" }, { "vulnerability": "VCID-r7ur-pzac-7bbk" }, { "vulnerability": "VCID-rjft-pjjz-vycp" }, { "vulnerability": "VCID-sevc-c95q-tyg8" }, { "vulnerability": "VCID-sfnx-agxs-9yc9" }, { "vulnerability": "VCID-swv6-gyb1-y7bs" }, { "vulnerability": "VCID-t1ep-g6cz-7kgr" }, { "vulnerability": "VCID-tc9x-h24m-9ufe" }, { "vulnerability": "VCID-vaa4-b9ph-b7cm" }, { "vulnerability": "VCID-vm51-p4w4-n3du" }, { "vulnerability": "VCID-w2ca-rqx2-m7f4" }, { "vulnerability": "VCID-wrrq-xxs9-xka9" }, { "vulnerability": "VCID-wyvv-ks5y-fkex" }, { "vulnerability": "VCID-xhqj-617q-f7fb" }, { "vulnerability": "VCID-yp5x-mgfj-xbbf" }, { "vulnerability": "VCID-ypmv-73g2-gfex" }, { "vulnerability": "VCID-yrjj-cken-6qff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/actionpack@4.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/51440?format=api", "purl": "pkg:gem/actionpack@4.1.14.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-31rm-1rpc-g3dq" }, { "vulnerability": "VCID-4jjq-jkgc-mkca" }, { "vulnerability": "VCID-6cjf-b88j-n3bw" }, { "vulnerability": "VCID-6jdd-kze9-myfz" }, { "vulnerability": "VCID-9w4d-2z52-wyaf" }, { "vulnerability": "VCID-apra-79g2-wkfn" }, { "vulnerability": "VCID-b5zn-u8pu-zya6" }, { "vulnerability": "VCID-dz1r-ae9g-57en" }, { "vulnerability": "VCID-f22x-hsz9-kfau" }, { "vulnerability": "VCID-fm16-z8wy-6fgz" }, { "vulnerability": "VCID-fn9u-w13j-43dz" }, { "vulnerability": "VCID-fnkq-8eys-gygm" }, { "vulnerability": "VCID-hud5-xxhh-u3ex" }, { "vulnerability": "VCID-jnrw-sue5-zqex" }, { "vulnerability": "VCID-kyj5-b8wz-pkgj" }, { "vulnerability": "VCID-m8rg-xa7x-6yan" }, { "vulnerability": "VCID-n2ap-zgrd-skhf" }, { "vulnerability": "VCID-r7ur-pzac-7bbk" }, { "vulnerability": "VCID-sevc-c95q-tyg8" }, { "vulnerability": "VCID-tc9x-h24m-9ufe" }, { "vulnerability": "VCID-vm51-p4w4-n3du" }, { "vulnerability": "VCID-xhqj-617q-f7fb" }, { "vulnerability": "VCID-yp5x-mgfj-xbbf" }, { "vulnerability": "VCID-ypmv-73g2-gfex" }, { "vulnerability": "VCID-yrjj-cken-6qff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/actionpack@4.1.14.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/53549?format=api", "purl": "pkg:gem/actionpack@4.2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-31rm-1rpc-g3dq" }, { "vulnerability": "VCID-4jjq-jkgc-mkca" }, { "vulnerability": "VCID-5za7-eapk-3qgx" }, { "vulnerability": "VCID-6cjf-b88j-n3bw" }, { "vulnerability": "VCID-6jdd-kze9-myfz" }, { "vulnerability": "VCID-8frw-skyq-1fh9" }, { "vulnerability": "VCID-9w4d-2z52-wyaf" }, { "vulnerability": "VCID-apra-79g2-wkfn" }, { "vulnerability": "VCID-b5zn-u8pu-zya6" }, { "vulnerability": "VCID-ct3m-wed2-6bhq" }, { "vulnerability": "VCID-dz1r-ae9g-57en" }, { "vulnerability": "VCID-f22x-hsz9-kfau" }, { "vulnerability": "VCID-fm16-z8wy-6fgz" }, { "vulnerability": "VCID-fn9u-w13j-43dz" }, { "vulnerability": "VCID-fnkq-8eys-gygm" }, { "vulnerability": "VCID-hud5-xxhh-u3ex" }, { "vulnerability": "VCID-j585-zz5s-nqd5" }, { "vulnerability": "VCID-jnrw-sue5-zqex" }, { "vulnerability": "VCID-kyj5-b8wz-pkgj" }, { "vulnerability": "VCID-m8rg-xa7x-6yan" }, { "vulnerability": "VCID-n2ap-zgrd-skhf" }, { "vulnerability": "VCID-pssv-24tn-kkc5" }, { "vulnerability": "VCID-r7ur-pzac-7bbk" }, { "vulnerability": "VCID-rjft-pjjz-vycp" }, { "vulnerability": "VCID-sevc-c95q-tyg8" }, { "vulnerability": "VCID-tc9x-h24m-9ufe" }, { "vulnerability": "VCID-wyvv-ks5y-fkex" }, { "vulnerability": "VCID-xhqj-617q-f7fb" }, { "vulnerability": "VCID-yp5x-mgfj-xbbf" }, { "vulnerability": "VCID-ypmv-73g2-gfex" }, { "vulnerability": "VCID-yrjj-cken-6qff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/actionpack@4.2.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/51441?format=api", "purl": "pkg:gem/actionpack@4.2.5.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-31rm-1rpc-g3dq" }, { "vulnerability": "VCID-4jjq-jkgc-mkca" }, { "vulnerability": "VCID-6cjf-b88j-n3bw" }, { "vulnerability": "VCID-6jdd-kze9-myfz" }, { "vulnerability": "VCID-9w4d-2z52-wyaf" }, { "vulnerability": "VCID-apra-79g2-wkfn" }, { "vulnerability": "VCID-b5zn-u8pu-zya6" }, { "vulnerability": "VCID-dz1r-ae9g-57en" }, { "vulnerability": "VCID-f22x-hsz9-kfau" }, { "vulnerability": "VCID-fm16-z8wy-6fgz" }, { "vulnerability": "VCID-fn9u-w13j-43dz" }, { "vulnerability": "VCID-fnkq-8eys-gygm" }, { "vulnerability": "VCID-hud5-xxhh-u3ex" }, { "vulnerability": "VCID-jnrw-sue5-zqex" }, { "vulnerability": "VCID-kyj5-b8wz-pkgj" }, { "vulnerability": "VCID-m8rg-xa7x-6yan" }, { "vulnerability": "VCID-n2ap-zgrd-skhf" }, { "vulnerability": "VCID-r7ur-pzac-7bbk" }, { "vulnerability": "VCID-sevc-c95q-tyg8" }, { "vulnerability": "VCID-tc9x-h24m-9ufe" }, { "vulnerability": "VCID-xhqj-617q-f7fb" }, { "vulnerability": "VCID-yp5x-mgfj-xbbf" }, { "vulnerability": "VCID-ypmv-73g2-gfex" }, { "vulnerability": "VCID-yrjj-cken-6qff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/actionpack@4.2.5.1" } ], "references": [ { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2016-2098", "reference_id": "CVE-2016-2098", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-2098" }, { "reference_url": "https://github.com/advisories/GHSA-hx46-vwmx-wx95", "reference_id": "GHSA-hx46-vwmx-wx95", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-hx46-vwmx-wx95" } ], "weaknesses": [], "exploits": [], "severity_range_score": "7.0 - 8.9", "exploitability": "0.5", "weighted_severity": "8.0", "risk_score": 4.0, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fn9u-w13j-43dz" }