VulnerableCode.io REST API

Lookup for vulnerabilities affecting packages.

GET /api/vulnerabilities/34453?format=api

HTTP 200 OK
Allow: GET, HEAD, OPTIONS
Content-Type: application/json
Vary: Accept

{
    "url": "http://public2.vulnerablecode.io/api/vulnerabilities/34453?format=api",
    "vulnerability_id": "VCID-fnkc-22h5-5kc2",
    "summary": "Multiple vulnerabilities have been found in Chromium, the worst of\n    which can allow remote attackers to cause Denial of Service or gain\n    escalated privileges.",
    "aliases": [
        {
            "alias": "CVE-2014-7942"
        }
    ],
    "fixed_packages": [
        {
            "url": "http://public2.vulnerablecode.io/api/packages/73740?format=api",
            "purl": "pkg:ebuild/www-client/chromium@40.0.2214.111",
            "is_vulnerable": false,
            "affected_by_vulnerabilities": [],
            "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/chromium@40.0.2214.111"
        }
    ],
    "affected_packages": [
        {
            "url": "http://public2.vulnerablecode.io/api/packages/120422?format=api",
            "purl": "pkg:rpm/redhat/chromium-browser@40.0.2214.91-1?arch=el6_6",
            "is_vulnerable": true,
            "affected_by_vulnerabilities": [
                {
                    "vulnerability": "VCID-1h2c-p5rd-8kck"
                },
                {
                    "vulnerability": "VCID-2mju-r3m8-zqcd"
                },
                {
                    "vulnerability": "VCID-2p8s-rj1c-k3fs"
                },
                {
                    "vulnerability": "VCID-2u21-wv9v-j3b5"
                },
                {
                    "vulnerability": "VCID-3n4x-pcy2-33bw"
                },
                {
                    "vulnerability": "VCID-6b28-j1a7-n7hx"
                },
                {
                    "vulnerability": "VCID-7eeb-ct85-nbcw"
                },
                {
                    "vulnerability": "VCID-9dy8-x11g-g3es"
                },
                {
                    "vulnerability": "VCID-bncb-ke1q-zbfx"
                },
                {
                    "vulnerability": "VCID-cy3s-rgy5-yqaj"
                },
                {
                    "vulnerability": "VCID-e5my-dhfy-7fbj"
                },
                {
                    "vulnerability": "VCID-ebpb-ff24-qye4"
                },
                {
                    "vulnerability": "VCID-faut-x7vy-g3dq"
                },
                {
                    "vulnerability": "VCID-fnkc-22h5-5kc2"
                },
                {
                    "vulnerability": "VCID-g2jn-n3bb-1yed"
                },
                {
                    "vulnerability": "VCID-gx5y-cdfu-zqdj"
                },
                {
                    "vulnerability": "VCID-jkj9-eqvc-3ycm"
                },
                {
                    "vulnerability": "VCID-jm8s-9gr6-ebax"
                },
                {
                    "vulnerability": "VCID-k68t-k4zf-kubc"
                },
                {
                    "vulnerability": "VCID-mzjf-ej5z-57eh"
                },
                {
                    "vulnerability": "VCID-q6hx-ndn9-tyha"
                },
                {
                    "vulnerability": "VCID-svh2-rvdu-1fcf"
                },
                {
                    "vulnerability": "VCID-txsw-c8hq-suaj"
                },
                {
                    "vulnerability": "VCID-uq8r-u2hq-g7ex"
                },
                {
                    "vulnerability": "VCID-w4cj-3aet-qfgv"
                },
                {
                    "vulnerability": "VCID-x1y9-vy1u-f7ch"
                },
                {
                    "vulnerability": "VCID-y28v-7u8r-kycb"
                },
                {
                    "vulnerability": "VCID-yz8d-49gf-u3bw"
                },
                {
                    "vulnerability": "VCID-ze7j-91yw-fyhh"
                }
            ],
            "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/chromium-browser@40.0.2214.91-1%3Farch=el6_6"
        }
    ],
    "references": [
        {
            "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-7942.json",
            "reference_id": "",
            "reference_type": "",
            "scores": [],
            "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-7942.json"
        },
        {
            "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-7942",
            "reference_id": "",
            "reference_type": "",
            "scores": [
                {
                    "value": "0.02358",
                    "scoring_system": "epss",
                    "scoring_elements": "0.84844",
                    "published_at": "2026-04-01T12:55:00Z"
                },
                {
                    "value": "0.02358",
                    "scoring_system": "epss",
                    "scoring_elements": "0.8486",
                    "published_at": "2026-04-02T12:55:00Z"
                },
                {
                    "value": "0.02358",
                    "scoring_system": "epss",
                    "scoring_elements": "0.84878",
                    "published_at": "2026-04-04T12:55:00Z"
                },
                {
                    "value": "0.02358",
                    "scoring_system": "epss",
                    "scoring_elements": "0.8488",
                    "published_at": "2026-04-07T12:55:00Z"
                },
                {
                    "value": "0.02358",
                    "scoring_system": "epss",
                    "scoring_elements": "0.84903",
                    "published_at": "2026-04-08T12:55:00Z"
                },
                {
                    "value": "0.02358",
                    "scoring_system": "epss",
                    "scoring_elements": "0.8491",
                    "published_at": "2026-04-09T12:55:00Z"
                },
                {
                    "value": "0.02358",
                    "scoring_system": "epss",
                    "scoring_elements": "0.84928",
                    "published_at": "2026-04-11T12:55:00Z"
                },
                {
                    "value": "0.02358",
                    "scoring_system": "epss",
                    "scoring_elements": "0.84927",
                    "published_at": "2026-04-12T12:55:00Z"
                },
                {
                    "value": "0.02358",
                    "scoring_system": "epss",
                    "scoring_elements": "0.84921",
                    "published_at": "2026-04-13T12:55:00Z"
                },
                {
                    "value": "0.02358",
                    "scoring_system": "epss",
                    "scoring_elements": "0.84943",
                    "published_at": "2026-04-16T12:55:00Z"
                }
            ],
            "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-7942"
        },
        {
            "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1185222",
            "reference_id": "1185222",
            "reference_type": "",
            "scores": [],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1185222"
        },
        {
            "reference_url": "https://security.gentoo.org/glsa/201502-13",
            "reference_id": "GLSA-201502-13",
            "reference_type": "",
            "scores": [],
            "url": "https://security.gentoo.org/glsa/201502-13"
        },
        {
            "reference_url": "https://access.redhat.com/errata/RHSA-2015:0093",
            "reference_id": "RHSA-2015:0093",
            "reference_type": "",
            "scores": [],
            "url": "https://access.redhat.com/errata/RHSA-2015:0093"
        },
        {
            "reference_url": "https://usn.ubuntu.com/2476-1/",
            "reference_id": "USN-2476-1",
            "reference_type": "",
            "scores": [],
            "url": "https://usn.ubuntu.com/2476-1/"
        }
    ],
    "weaknesses": [
        {
            "cwe_id": 456,
            "name": "Missing Initialization of a Variable",
            "description": "The product does not initialize critical variables, which causes the execution environment to use unexpected values."
        }
    ],
    "exploits": [],
    "severity_range_score": null,
    "exploitability": "0.5",
    "weighted_severity": "0.0",
    "risk_score": null,
    "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fnkc-22h5-5kc2"
}

Vulnerability Instance