Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/3605?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3605?format=api", "vulnerability_id": "VCID-swbt-7zch-sbcp", "summary": "Any database user is permitted to load arbitrary shared libraries using the LOAD command. A valid login is required to exploit this vulnerability.more details", "aliases": [ { "alias": "CVE-2005-0227" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/409?format=api", "purl": "pkg:generic/postgresql@7.3.9", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@7.3.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/408?format=api", "purl": "pkg:generic/postgresql@7.4.7", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@7.4.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/407?format=api", "purl": "pkg:generic/postgresql@8.0.1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@8.0.1" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366?format=api", "purl": "pkg:generic/postgresql@7.3.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5zj2-a3y7-zueh" }, { "vulnerability": "VCID-6ppw-nxh2-2bfs" }, { "vulnerability": "VCID-8753-jd2h-8yhw" }, { "vulnerability": "VCID-8z74-udgw-kue3" }, { "vulnerability": "VCID-dema-khb4-d7c3" }, { "vulnerability": "VCID-dwxv-7v5k-pbgt" }, { "vulnerability": "VCID-f89t-37f7-hbau" }, { "vulnerability": "VCID-g5yd-z8gh-pbc4" }, { "vulnerability": "VCID-hase-39jj-6khk" }, { "vulnerability": "VCID-nj9p-fdc9-m7fu" }, { "vulnerability": "VCID-qw91-9hzj-2bbd" }, { "vulnerability": "VCID-s1hd-1asy-q3dd" }, { "vulnerability": "VCID-swbt-7zch-sbcp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@7.3.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/330?format=api", "purl": "pkg:generic/postgresql@7.4.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1qsp-wvwq-j3f5" }, { "vulnerability": "VCID-1uzm-h9m3-akge" }, { "vulnerability": "VCID-4tyx-g9kz-y3fq" }, { "vulnerability": "VCID-5zj2-a3y7-zueh" }, { "vulnerability": "VCID-6ppw-nxh2-2bfs" }, { "vulnerability": "VCID-721k-9zdg-buhv" }, { "vulnerability": "VCID-7q99-jk4u-1fen" }, { "vulnerability": "VCID-8753-jd2h-8yhw" }, { "vulnerability": "VCID-8z74-udgw-kue3" }, { "vulnerability": "VCID-c8ch-zd9x-kufn" }, { "vulnerability": "VCID-cffd-gdpc-uqeb" }, { "vulnerability": "VCID-dema-khb4-d7c3" }, { "vulnerability": "VCID-dwxv-7v5k-pbgt" }, { "vulnerability": "VCID-f89t-37f7-hbau" }, { "vulnerability": "VCID-g5yd-z8gh-pbc4" }, { "vulnerability": "VCID-h86x-6j3b-eqfh" }, { "vulnerability": "VCID-hase-39jj-6khk" }, { "vulnerability": "VCID-jeef-j758-s3a4" }, { "vulnerability": "VCID-nj9p-fdc9-m7fu" }, { "vulnerability": "VCID-qw91-9hzj-2bbd" }, { "vulnerability": "VCID-s1hd-1asy-q3dd" }, { "vulnerability": "VCID-swbt-7zch-sbcp" }, { "vulnerability": "VCID-u5h4-4p6j-wbay" }, { "vulnerability": "VCID-v69z-cmag-xfaf" }, { "vulnerability": "VCID-wesb-d296-4ba8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@7.4.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/331?format=api", "purl": "pkg:generic/postgresql@8.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1qsp-wvwq-j3f5" }, { "vulnerability": "VCID-1uzm-h9m3-akge" }, { "vulnerability": "VCID-4tyx-g9kz-y3fq" }, { "vulnerability": "VCID-5zj2-a3y7-zueh" }, { "vulnerability": "VCID-6ppw-nxh2-2bfs" }, { "vulnerability": "VCID-721k-9zdg-buhv" }, { "vulnerability": "VCID-7q99-jk4u-1fen" }, { "vulnerability": "VCID-8753-jd2h-8yhw" }, { "vulnerability": "VCID-8z74-udgw-kue3" }, { "vulnerability": "VCID-978k-4cn7-bfbz" }, { "vulnerability": "VCID-c8ch-zd9x-kufn" }, { "vulnerability": "VCID-cffd-gdpc-uqeb" }, { "vulnerability": "VCID-dema-khb4-d7c3" }, { "vulnerability": "VCID-f89t-37f7-hbau" }, { "vulnerability": "VCID-g5yd-z8gh-pbc4" }, { "vulnerability": "VCID-h86x-6j3b-eqfh" }, { "vulnerability": "VCID-hase-39jj-6khk" }, { "vulnerability": "VCID-jeef-j758-s3a4" }, { "vulnerability": "VCID-nj9p-fdc9-m7fu" }, { "vulnerability": "VCID-qw91-9hzj-2bbd" }, { "vulnerability": "VCID-s1hd-1asy-q3dd" }, { "vulnerability": "VCID-swbt-7zch-sbcp" }, { "vulnerability": "VCID-u5h4-4p6j-wbay" }, { "vulnerability": "VCID-v69z-cmag-xfaf" }, { "vulnerability": "VCID-wesb-d296-4ba8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@8.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/130380?format=api", "purl": "pkg:rpm/redhat/postgresql@7.4.7-2.RHEL4?arch=1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8753-jd2h-8yhw" }, { "vulnerability": "VCID-hase-39jj-6khk" }, { "vulnerability": "VCID-s1hd-1asy-q3dd" }, { "vulnerability": "VCID-swbt-7zch-sbcp" }, { "vulnerability": "VCID-wesb-d296-4ba8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/postgresql@7.4.7-2.RHEL4%3Farch=1" } ], "references": [ { "reference_url": "http://archives.postgresql.org/pgsql-announce/2005-02/msg00000.php", "reference_id": "", "reference_type": "", "scores": [], "url": "http://archives.postgresql.org/pgsql-announce/2005-02/msg00000.php" }, { "reference_url": "http://archives.postgresql.org/pgsql-bugs/2005-01/msg00269.php", "reference_id": "", "reference_type": "", "scores": [], "url": "http://archives.postgresql.org/pgsql-bugs/2005-01/msg00269.php" }, { "reference_url": "http://marc.info/?l=bugtraq&m=110726899107148&w=2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://marc.info/?l=bugtraq&m=110726899107148&w=2" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-0227.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-0227.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2005-0227", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.29929", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30335", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30365", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30413", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30228", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30288", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30322", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30326", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30281", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30235", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.3025", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30232", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30186", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30122", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30007", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2005-0227" }, { "reference_url": "http://secunia.com/advisories/12948", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/12948" }, { "reference_url": "http://security.gentoo.org/glsa/glsa-200502-08.xml", "reference_id": "", "reference_type": "", "scores": [], "url": "http://security.gentoo.org/glsa/glsa-200502-08.xml" }, { "reference_url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10234", "reference_id": "", "reference_type": "", "scores": [], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10234" }, { "reference_url": "https://www.postgresql.org/support/security/CVE-2005-0227/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.postgresql.org/support/security/CVE-2005-0227/" }, { "reference_url": "http://www.debian.org/security/2005/dsa-668", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2005/dsa-668" }, { "reference_url": "http://www.mandriva.com/security/advisories?name=MDKSA-2005:040", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2005:040" }, { "reference_url": "http://www.novell.com/linux/security/advisories/2005_36_sudo.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.novell.com/linux/security/advisories/2005_36_sudo.html" }, { "reference_url": "http://www.redhat.com/support/errata/RHSA-2005-138.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.redhat.com/support/errata/RHSA-2005-138.html" }, { "reference_url": "http://www.redhat.com/support/errata/RHSA-2005-150.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.redhat.com/support/errata/RHSA-2005-150.html" }, { "reference_url": "http://www.securityfocus.com/bid/12411", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/12411" }, { "reference_url": "http://www.trustix.org/errata/2005/0003/", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.trustix.org/errata/2005/0003/" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617499", "reference_id": "1617499", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617499" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:postgresql:postgresql:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2005-0227", "reference_id": "CVE-2005-0227", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:S/C:P/I:P/A:P" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2005-0227" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2005:138", "reference_id": "RHSA-2005:138", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2005:138" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2005:141", "reference_id": "RHSA-2005:141", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2005:141" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2005:150", "reference_id": "RHSA-2005:150", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2005:150" } ], "weaknesses": [ { "cwe_id": 94, "name": "Improper Control of Generation of Code ('Code Injection')", "description": "The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment." } ], "exploits": [], "severity_range_score": "4.3 - 4.3", "exploitability": "0.5", "weighted_severity": "3.9", "risk_score": 1.9, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-swbt-7zch-sbcp" }