Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/37011?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/37011?format=api", "vulnerability_id": "VCID-6xgm-xhae-3bbv", "summary": "Multiple vulnerabilities have been found in Oracle's JRE and JDK\n software suites, the worst of which may allow execution of arbitrary code", "aliases": [ { "alias": "CVE-2016-5549" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/933685?format=api", "purl": "pkg:deb/debian/openjdk-8@8u121-b13-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/openjdk-8@8u121-b13-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/933671?format=api", "purl": "pkg:deb/debian/openjdk-8@8u482-ga-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/openjdk-8@8u482-ga-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/84834?format=api", "purl": "pkg:ebuild/dev-java/icedtea-bin@3.4.0", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-java/icedtea-bin@3.4.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/84835?format=api", "purl": "pkg:ebuild/dev-java/icedtea-bin@7.2.6.10", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-java/icedtea-bin@7.2.6.10" }, { "url": "http://public2.vulnerablecode.io/api/packages/74570?format=api", "purl": "pkg:ebuild/dev-java/oracle-jdk-bin@1.8.0.121", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-java/oracle-jdk-bin@1.8.0.121" }, { "url": "http://public2.vulnerablecode.io/api/packages/74569?format=api", "purl": "pkg:ebuild/dev-java/oracle-jre-bin@1.8.0.121", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-java/oracle-jre-bin@1.8.0.121" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/113176?format=api", "purl": "pkg:rpm/redhat/java-1.6.0-ibm@1:1.6.0.16.41-1jpp.1?arch=el5_11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6383-1rzy-9kcr" }, { "vulnerability": "VCID-6xgm-xhae-3bbv" }, { "vulnerability": "VCID-ar8p-z4ww-wuau" }, { "vulnerability": "VCID-e2zb-3859-qfe6" }, { "vulnerability": "VCID-ftnn-eurn-wydw" }, { "vulnerability": "VCID-k3pa-xdxn-ubbg" }, { "vulnerability": "VCID-kzak-fju8-eqew" }, { "vulnerability": "VCID-qs1s-6yjm-jye5" }, { "vulnerability": "VCID-snqh-ebq3-hubn" }, { "vulnerability": "VCID-tc8v-xrjj-hucq" }, { "vulnerability": "VCID-v64t-4c46-3bhj" }, { "vulnerability": "VCID-x54g-mhs4-mug4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.6.0-ibm@1:1.6.0.16.41-1jpp.1%3Farch=el5_11" }, { "url": "http://public2.vulnerablecode.io/api/packages/113167?format=api", "purl": "pkg:rpm/redhat/java-1.6.0-ibm@1:1.6.0.16.41-1jpp.1?arch=el6_8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6383-1rzy-9kcr" }, { "vulnerability": "VCID-6xgm-xhae-3bbv" }, { "vulnerability": "VCID-ar8p-z4ww-wuau" }, { "vulnerability": "VCID-e2zb-3859-qfe6" }, { "vulnerability": "VCID-ftnn-eurn-wydw" }, { "vulnerability": "VCID-k3pa-xdxn-ubbg" }, { "vulnerability": "VCID-kzak-fju8-eqew" }, { "vulnerability": "VCID-qs1s-6yjm-jye5" }, { "vulnerability": "VCID-snqh-ebq3-hubn" }, { "vulnerability": "VCID-tc8v-xrjj-hucq" }, { "vulnerability": "VCID-v64t-4c46-3bhj" }, { "vulnerability": "VCID-x54g-mhs4-mug4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.6.0-ibm@1:1.6.0.16.41-1jpp.1%3Farch=el6_8" }, { "url": "http://public2.vulnerablecode.io/api/packages/113169?format=api", "purl": "pkg:rpm/redhat/java-1.7.0-ibm@1:1.7.0.10.1-1jpp.1?arch=el5_11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6383-1rzy-9kcr" }, { "vulnerability": "VCID-6xgm-xhae-3bbv" }, { "vulnerability": "VCID-7ez7-vdry-wbep" }, { "vulnerability": "VCID-ar8p-z4ww-wuau" }, { "vulnerability": "VCID-c7sa-v6cu-d3ex" }, { "vulnerability": "VCID-e2zb-3859-qfe6" }, { "vulnerability": "VCID-ftnn-eurn-wydw" }, { "vulnerability": "VCID-k3pa-xdxn-ubbg" }, { "vulnerability": "VCID-kzak-fju8-eqew" }, { "vulnerability": "VCID-qs1s-6yjm-jye5" }, { "vulnerability": "VCID-snqh-ebq3-hubn" }, { "vulnerability": "VCID-tc8v-xrjj-hucq" }, { "vulnerability": "VCID-v64t-4c46-3bhj" }, { "vulnerability": "VCID-x54g-mhs4-mug4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.7.0-ibm@1:1.7.0.10.1-1jpp.1%3Farch=el5_11" }, { "url": "http://public2.vulnerablecode.io/api/packages/113161?format=api", "purl": "pkg:rpm/redhat/java-1.7.0-oracle@1:1.7.0.131-1jpp.1?arch=el6_8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6383-1rzy-9kcr" }, { "vulnerability": "VCID-6xgm-xhae-3bbv" }, { "vulnerability": "VCID-7ez7-vdry-wbep" }, { "vulnerability": "VCID-ar8p-z4ww-wuau" }, { "vulnerability": "VCID-c7sa-v6cu-d3ex" }, { "vulnerability": "VCID-e2zb-3859-qfe6" }, { "vulnerability": "VCID-ftnn-eurn-wydw" }, { "vulnerability": "VCID-k3pa-xdxn-ubbg" }, { "vulnerability": "VCID-kzak-fju8-eqew" }, { "vulnerability": "VCID-qs1s-6yjm-jye5" }, { "vulnerability": "VCID-snqh-ebq3-hubn" }, { "vulnerability": "VCID-tc8v-xrjj-hucq" }, { "vulnerability": "VCID-v64t-4c46-3bhj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.7.0-oracle@1:1.7.0.131-1jpp.1%3Farch=el6_8" }, { "url": "http://public2.vulnerablecode.io/api/packages/113164?format=api", "purl": "pkg:rpm/redhat/java-1.7.0-oracle@1:1.7.0.131-1jpp.1?arch=el5_11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6383-1rzy-9kcr" }, { "vulnerability": "VCID-6xgm-xhae-3bbv" }, { "vulnerability": "VCID-7ez7-vdry-wbep" }, { "vulnerability": "VCID-ar8p-z4ww-wuau" }, { "vulnerability": "VCID-c7sa-v6cu-d3ex" }, { "vulnerability": "VCID-e2zb-3859-qfe6" }, { "vulnerability": "VCID-ftnn-eurn-wydw" }, { "vulnerability": "VCID-k3pa-xdxn-ubbg" }, { "vulnerability": "VCID-kzak-fju8-eqew" }, { "vulnerability": "VCID-qs1s-6yjm-jye5" }, { "vulnerability": "VCID-snqh-ebq3-hubn" }, { "vulnerability": "VCID-tc8v-xrjj-hucq" }, { "vulnerability": "VCID-v64t-4c46-3bhj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.7.0-oracle@1:1.7.0.131-1jpp.1%3Farch=el5_11" }, { "url": "http://public2.vulnerablecode.io/api/packages/113178?format=api", "purl": "pkg:rpm/redhat/java-1.7.0-oracle@1:1.7.0.131-1jpp.1?arch=el7_3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6383-1rzy-9kcr" }, { "vulnerability": "VCID-6xgm-xhae-3bbv" }, { "vulnerability": "VCID-7ez7-vdry-wbep" }, { "vulnerability": "VCID-ar8p-z4ww-wuau" }, { "vulnerability": "VCID-c7sa-v6cu-d3ex" }, { "vulnerability": "VCID-e2zb-3859-qfe6" }, { "vulnerability": "VCID-ftnn-eurn-wydw" }, { "vulnerability": "VCID-k3pa-xdxn-ubbg" }, { "vulnerability": "VCID-kzak-fju8-eqew" }, { "vulnerability": "VCID-qs1s-6yjm-jye5" }, { "vulnerability": "VCID-snqh-ebq3-hubn" }, { "vulnerability": "VCID-tc8v-xrjj-hucq" }, { "vulnerability": "VCID-v64t-4c46-3bhj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.7.0-oracle@1:1.7.0.131-1jpp.1%3Farch=el7_3" }, { "url": "http://public2.vulnerablecode.io/api/packages/113170?format=api", "purl": "pkg:rpm/redhat/java-1.7.1-ibm@1:1.7.1.4.1-1jpp.1?arch=el6_8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1pew-7np4-vqfu" }, { "vulnerability": "VCID-2krr-m59b-77a7" }, { "vulnerability": "VCID-2v3q-7u91-syh3" }, { "vulnerability": "VCID-46bb-rmw3-47c5" }, { "vulnerability": "VCID-4ptw-ap8n-bkf2" }, { "vulnerability": "VCID-6383-1rzy-9kcr" }, { "vulnerability": "VCID-6t46-7fea-dyav" }, { "vulnerability": "VCID-6xgm-xhae-3bbv" }, { "vulnerability": "VCID-7ez7-vdry-wbep" }, { "vulnerability": "VCID-8edn-xjyj-9fgf" }, { "vulnerability": "VCID-ar8p-z4ww-wuau" }, { "vulnerability": "VCID-b15r-cqd5-rugd" }, { "vulnerability": "VCID-c7sa-v6cu-d3ex" }, { "vulnerability": "VCID-cmr5-b3n9-6uhu" }, { "vulnerability": "VCID-e2zb-3859-qfe6" }, { "vulnerability": "VCID-ftnn-eurn-wydw" }, { "vulnerability": "VCID-jccp-8k75-xkhn" }, { "vulnerability": "VCID-k3pa-xdxn-ubbg" }, { "vulnerability": "VCID-kzak-fju8-eqew" }, { "vulnerability": "VCID-n1wv-bkbb-gugt" }, { "vulnerability": "VCID-n3s6-1ba7-47g7" }, { "vulnerability": "VCID-qp1y-5scd-c7hy" }, { "vulnerability": "VCID-qs1s-6yjm-jye5" }, { "vulnerability": "VCID-qs56-bnkb-buhu" }, { "vulnerability": "VCID-r7cu-ewk5-pygd" }, { "vulnerability": "VCID-snqh-ebq3-hubn" }, { "vulnerability": "VCID-taqg-ukr5-ybbk" }, { "vulnerability": "VCID-tc8v-xrjj-hucq" }, { "vulnerability": "VCID-u3rj-qyrr-vkbw" }, { "vulnerability": "VCID-v64t-4c46-3bhj" }, { "vulnerability": "VCID-x54g-mhs4-mug4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.7.1-ibm@1:1.7.1.4.1-1jpp.1%3Farch=el6_8" }, { "url": "http://public2.vulnerablecode.io/api/packages/113166?format=api", "purl": "pkg:rpm/redhat/java-1.7.1-ibm@1:1.7.1.4.1-1jpp.2?arch=el7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6383-1rzy-9kcr" }, { "vulnerability": "VCID-6xgm-xhae-3bbv" }, { "vulnerability": "VCID-7ez7-vdry-wbep" }, { "vulnerability": "VCID-ar8p-z4ww-wuau" }, { "vulnerability": "VCID-c7sa-v6cu-d3ex" }, { "vulnerability": "VCID-e2zb-3859-qfe6" }, { "vulnerability": "VCID-ftnn-eurn-wydw" }, { "vulnerability": "VCID-k3pa-xdxn-ubbg" }, { "vulnerability": "VCID-kzak-fju8-eqew" }, { "vulnerability": "VCID-qs1s-6yjm-jye5" }, { "vulnerability": "VCID-snqh-ebq3-hubn" }, { "vulnerability": "VCID-tc8v-xrjj-hucq" }, { "vulnerability": "VCID-v64t-4c46-3bhj" }, { "vulnerability": "VCID-x54g-mhs4-mug4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.7.1-ibm@1:1.7.1.4.1-1jpp.2%3Farch=el7" }, { "url": "http://public2.vulnerablecode.io/api/packages/113163?format=api", "purl": "pkg:rpm/redhat/java-1.8.0-ibm@1:1.8.0.4.0-1jpp.1?arch=el7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6383-1rzy-9kcr" }, { "vulnerability": "VCID-6xgm-xhae-3bbv" }, { "vulnerability": "VCID-7ez7-vdry-wbep" }, { "vulnerability": "VCID-ar8p-z4ww-wuau" }, { "vulnerability": "VCID-c7sa-v6cu-d3ex" }, { "vulnerability": "VCID-e2zb-3859-qfe6" }, { "vulnerability": "VCID-ftnn-eurn-wydw" }, { "vulnerability": "VCID-k3pa-xdxn-ubbg" }, { "vulnerability": "VCID-kzak-fju8-eqew" }, { "vulnerability": "VCID-qs1s-6yjm-jye5" }, { "vulnerability": "VCID-snqh-ebq3-hubn" }, { "vulnerability": "VCID-tc8v-xrjj-hucq" }, { "vulnerability": "VCID-v64t-4c46-3bhj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.8.0-ibm@1:1.8.0.4.0-1jpp.1%3Farch=el7" }, { "url": "http://public2.vulnerablecode.io/api/packages/113174?format=api", "purl": "pkg:rpm/redhat/java-1.8.0-ibm@1:1.8.0.4.0-1jpp.1?arch=el6_8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6383-1rzy-9kcr" }, { "vulnerability": "VCID-6xgm-xhae-3bbv" }, { "vulnerability": "VCID-7ez7-vdry-wbep" }, { "vulnerability": "VCID-ar8p-z4ww-wuau" }, { "vulnerability": "VCID-c7sa-v6cu-d3ex" }, { "vulnerability": "VCID-e2zb-3859-qfe6" }, { "vulnerability": "VCID-ftnn-eurn-wydw" }, { "vulnerability": "VCID-k3pa-xdxn-ubbg" }, { "vulnerability": "VCID-kzak-fju8-eqew" }, { "vulnerability": "VCID-qs1s-6yjm-jye5" }, { "vulnerability": "VCID-snqh-ebq3-hubn" }, { "vulnerability": "VCID-tc8v-xrjj-hucq" }, { "vulnerability": "VCID-v64t-4c46-3bhj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.8.0-ibm@1:1.8.0.4.0-1jpp.1%3Farch=el6_8" }, { "url": "http://public2.vulnerablecode.io/api/packages/113162?format=api", "purl": "pkg:rpm/redhat/java-1.8.0-oracle@1:1.8.0.121-1jpp.1?arch=el7_3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6383-1rzy-9kcr" }, { "vulnerability": "VCID-6xgm-xhae-3bbv" }, { "vulnerability": "VCID-7ez7-vdry-wbep" }, { "vulnerability": "VCID-ar8p-z4ww-wuau" }, { "vulnerability": "VCID-c7sa-v6cu-d3ex" }, { "vulnerability": "VCID-e2zb-3859-qfe6" }, { "vulnerability": "VCID-ftnn-eurn-wydw" }, { "vulnerability": "VCID-k3pa-xdxn-ubbg" }, { "vulnerability": "VCID-kzak-fju8-eqew" }, { "vulnerability": "VCID-qs1s-6yjm-jye5" }, { "vulnerability": "VCID-snqh-ebq3-hubn" }, { "vulnerability": "VCID-tc8v-xrjj-hucq" }, { "vulnerability": "VCID-upgw-aw1e-m7g6" }, { "vulnerability": "VCID-v64t-4c46-3bhj" }, { "vulnerability": "VCID-xwtx-qzfe-duac" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.8.0-oracle@1:1.8.0.121-1jpp.1%3Farch=el7_3" }, { "url": "http://public2.vulnerablecode.io/api/packages/113179?format=api", "purl": "pkg:rpm/redhat/java-1.8.0-oracle@1:1.8.0.121-1jpp.1?arch=el6_8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6383-1rzy-9kcr" }, { "vulnerability": "VCID-6xgm-xhae-3bbv" }, { "vulnerability": "VCID-7ez7-vdry-wbep" }, { "vulnerability": "VCID-ar8p-z4ww-wuau" }, { "vulnerability": "VCID-c7sa-v6cu-d3ex" }, { "vulnerability": "VCID-e2zb-3859-qfe6" }, { "vulnerability": "VCID-ftnn-eurn-wydw" }, { "vulnerability": "VCID-k3pa-xdxn-ubbg" }, { "vulnerability": "VCID-kzak-fju8-eqew" }, { "vulnerability": "VCID-qs1s-6yjm-jye5" }, { "vulnerability": "VCID-snqh-ebq3-hubn" }, { "vulnerability": "VCID-tc8v-xrjj-hucq" }, { "vulnerability": "VCID-upgw-aw1e-m7g6" }, { "vulnerability": "VCID-v64t-4c46-3bhj" }, { "vulnerability": "VCID-xwtx-qzfe-duac" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.8.0-oracle@1:1.8.0.121-1jpp.1%3Farch=el6_8" } ], "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5549.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5549.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5549", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00527", "scoring_system": "epss", "scoring_elements": "0.67149", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00527", "scoring_system": "epss", "scoring_elements": "0.67044", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00527", "scoring_system": "epss", "scoring_elements": "0.67106", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00527", "scoring_system": "epss", "scoring_elements": "0.6708", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00527", "scoring_system": "epss", "scoring_elements": "0.67129", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00527", "scoring_system": "epss", "scoring_elements": "0.67142", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00527", "scoring_system": "epss", "scoring_elements": "0.67161", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00527", "scoring_system": "epss", "scoring_elements": "0.67147", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00527", "scoring_system": "epss", "scoring_elements": "0.67116", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00527", "scoring_system": "epss", "scoring_elements": "0.67082", "published_at": "2026-04-02T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5549" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:C/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://www.securitytracker.com/id/1037637", "reference_id": "1037637", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-09T19:31:29Z/" } ], "url": "http://www.securitytracker.com/id/1037637" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1413923", "reference_id": "1413923", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1413923" }, { "reference_url": "http://www.securityfocus.com/bid/95530", "reference_id": "95530", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-09T19:31:29Z/" } ], "url": "http://www.securityfocus.com/bid/95530" }, { "reference_url": "http://www.oracle.com/technetwork/security-advisory/cpujan2017-2881727.html", "reference_id": "cpujan2017-2881727.html", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-09T19:31:29Z/" } ], "url": "http://www.oracle.com/technetwork/security-advisory/cpujan2017-2881727.html" }, { "reference_url": "https://security.gentoo.org/glsa/201701-65", "reference_id": "GLSA-201701-65", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-09T19:31:29Z/" } ], "url": "https://security.gentoo.org/glsa/201701-65" }, { "reference_url": "https://security.gentoo.org/glsa/201707-01", "reference_id": "GLSA-201707-01", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-09T19:31:29Z/" } ], "url": "https://security.gentoo.org/glsa/201707-01" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20170119-0001/", "reference_id": "ntap-20170119-0001", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-09T19:31:29Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20170119-0001/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0175", "reference_id": "RHSA-2017:0175", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0175" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2017-0175.html", "reference_id": "RHSA-2017-0175.html", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-09T19:31:29Z/" } ], "url": "http://rhn.redhat.com/errata/RHSA-2017-0175.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0176", "reference_id": "RHSA-2017:0176", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0176" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2017-0176.html", "reference_id": "RHSA-2017-0176.html", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-09T19:31:29Z/" } ], "url": "http://rhn.redhat.com/errata/RHSA-2017-0176.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0263", "reference_id": "RHSA-2017:0263", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0263" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2017-0263.html", "reference_id": "RHSA-2017-0263.html", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-09T19:31:29Z/" } ], "url": "http://rhn.redhat.com/errata/RHSA-2017-0263.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0336", "reference_id": "RHSA-2017:0336", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0336" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2017-0336.html", "reference_id": "RHSA-2017-0336.html", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-09T19:31:29Z/" } ], "url": "http://rhn.redhat.com/errata/RHSA-2017-0336.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0337", "reference_id": "RHSA-2017:0337", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0337" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2017-0337.html", "reference_id": "RHSA-2017-0337.html", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-09T19:31:29Z/" } ], "url": "http://rhn.redhat.com/errata/RHSA-2017-0337.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0338", "reference_id": "RHSA-2017:0338", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0338" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2017-0338.html", "reference_id": "RHSA-2017-0338.html", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-09T19:31:29Z/" } ], "url": "http://rhn.redhat.com/errata/RHSA-2017-0338.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:1216", "reference_id": "RHSA-2017:1216", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-09T19:31:29Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2017:1216" }, { "reference_url": "https://usn.ubuntu.com/3179-1/", "reference_id": "USN-3179-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3179-1/" } ], "weaknesses": [ { "cwe_id": 385, "name": "Covert Timing Channel", "description": "Covert timing channels convey information by modulating some aspect of system behavior over time, so that the program receiving the information can observe system behavior and infer protected information." } ], "exploits": [], "severity_range_score": "6.5 - 7.8", "exploitability": "0.5", "weighted_severity": "5.9", "risk_score": 3.0, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6xgm-xhae-3bbv" }