Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/44746?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/44746?format=api", "vulnerability_id": "VCID-apmt-8c22-mkev", "summary": "zhmcclient is a pure Python client library for the IBM Z HMC Web Services API. In affected versions the Python package \"zhmcclient\" writes password-like properties in clear text into its HMC and API logs in the following cases: 1. The 'boot-ftp-password' and 'ssc-master-pw' properties when creating or updating a partition in DPM mode, in the zhmcclient API and HMC logs. 2. The 'ssc-master-pw' and 'zaware-master-pw' properties when updating an LPAR in classic mode, in the zhmcclient API and HMC logs. 3. The 'ssc-master-pw' and 'zaware-master-pw' properties when creating or updating an image activation profile in classic mode, in the zhmcclient API and HMC logs. 4. The 'password' property when creating or updating an HMC user, in the zhmcclient API log. 5. The 'bind-password' property when creating or updating an LDAP server definition, in the zhmcclient API and HMC logs. This issue affects only users of the zhmcclient package that have enabled the Python loggers named \"zhmcclient.api\" (for the API log) or \"zhmcclient.hmc\" (for the HMC log) and that use the functions listed above. This issue has been fixed in zhmcclient version 1.18.1. Users are advised to upgrade. There are no known workarounds for this vulnerability.", "aliases": [ { "alias": "CVE-2024-53865" }, { "alias": "GHSA-p57h-3cmc-xpjq" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/372392?format=api", "purl": "pkg:pypi/zhmcclient@1.18.1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.18.1" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/766873?format=api", "purl": "pkg:pypi/zhmcclient@0.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@0.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766874?format=api", "purl": "pkg:pypi/zhmcclient@0.2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@0.2.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766875?format=api", "purl": "pkg:pypi/zhmcclient@0.3.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@0.3.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766876?format=api", "purl": "pkg:pypi/zhmcclient@0.4.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@0.4.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766877?format=api", "purl": "pkg:pypi/zhmcclient@0.5.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@0.5.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766878?format=api", "purl": "pkg:pypi/zhmcclient@0.5.1.dev39", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@0.5.1.dev39" }, { "url": "http://public2.vulnerablecode.io/api/packages/766879?format=api", "purl": "pkg:pypi/zhmcclient@0.6.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@0.6.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766880?format=api", "purl": "pkg:pypi/zhmcclient@0.7.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@0.7.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766881?format=api", "purl": "pkg:pypi/zhmcclient@0.8.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@0.8.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766882?format=api", "purl": "pkg:pypi/zhmcclient@0.9.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@0.9.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766883?format=api", "purl": "pkg:pypi/zhmcclient@0.10.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@0.10.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766884?format=api", "purl": "pkg:pypi/zhmcclient@0.11.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@0.11.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766885?format=api", "purl": "pkg:pypi/zhmcclient@0.12.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@0.12.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766886?format=api", "purl": "pkg:pypi/zhmcclient@0.13.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@0.13.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766887?format=api", "purl": "pkg:pypi/zhmcclient@0.14.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@0.14.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766888?format=api", "purl": "pkg:pypi/zhmcclient@0.15.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@0.15.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766889?format=api", "purl": "pkg:pypi/zhmcclient@0.16.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@0.16.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766890?format=api", "purl": "pkg:pypi/zhmcclient@0.17.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@0.17.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766891?format=api", "purl": "pkg:pypi/zhmcclient@0.18.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@0.18.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766892?format=api", "purl": "pkg:pypi/zhmcclient@0.19.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@0.19.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766893?format=api", "purl": "pkg:pypi/zhmcclient@0.20.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@0.20.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766894?format=api", "purl": "pkg:pypi/zhmcclient@0.21.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@0.21.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766895?format=api", "purl": "pkg:pypi/zhmcclient@0.22.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@0.22.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766896?format=api", "purl": "pkg:pypi/zhmcclient@0.23.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@0.23.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766897?format=api", "purl": "pkg:pypi/zhmcclient@0.24.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@0.24.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766898?format=api", "purl": "pkg:pypi/zhmcclient@0.25.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@0.25.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766899?format=api", "purl": "pkg:pypi/zhmcclient@0.25.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@0.25.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/766900?format=api", "purl": "pkg:pypi/zhmcclient@0.26.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@0.26.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766901?format=api", "purl": "pkg:pypi/zhmcclient@0.26.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@0.26.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/766902?format=api", "purl": "pkg:pypi/zhmcclient@0.26.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@0.26.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/766903?format=api", "purl": "pkg:pypi/zhmcclient@0.27.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@0.27.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766904?format=api", "purl": "pkg:pypi/zhmcclient@0.28.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@0.28.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766905?format=api", "purl": "pkg:pypi/zhmcclient@0.29.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@0.29.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766906?format=api", "purl": "pkg:pypi/zhmcclient@0.30.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@0.30.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766907?format=api", "purl": "pkg:pypi/zhmcclient@0.30.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@0.30.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/766908?format=api", "purl": "pkg:pypi/zhmcclient@0.30.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@0.30.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/766909?format=api", "purl": "pkg:pypi/zhmcclient@0.31.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@0.31.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766910?format=api", "purl": "pkg:pypi/zhmcclient@0.31.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@0.31.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/766911?format=api", "purl": "pkg:pypi/zhmcclient@0.32.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@0.32.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766912?format=api", "purl": "pkg:pypi/zhmcclient@0.32.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@0.32.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/766913?format=api", "purl": "pkg:pypi/zhmcclient@1.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766914?format=api", "purl": "pkg:pypi/zhmcclient@1.0.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.0.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/766915?format=api", "purl": "pkg:pypi/zhmcclient@1.0.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.0.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/766916?format=api", "purl": "pkg:pypi/zhmcclient@1.0.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.0.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/766917?format=api", "purl": "pkg:pypi/zhmcclient@1.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766918?format=api", "purl": "pkg:pypi/zhmcclient@1.1.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.1.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/766919?format=api", "purl": "pkg:pypi/zhmcclient@1.2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.2.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766920?format=api", "purl": "pkg:pypi/zhmcclient@1.2.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.2.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/766921?format=api", "purl": "pkg:pypi/zhmcclient@1.2.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.2.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/766922?format=api", "purl": "pkg:pypi/zhmcclient@1.3.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.3.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766923?format=api", "purl": "pkg:pypi/zhmcclient@1.3.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.3.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/766924?format=api", "purl": "pkg:pypi/zhmcclient@1.3.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.3.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/766925?format=api", "purl": "pkg:pypi/zhmcclient@1.3.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.3.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/766926?format=api", "purl": "pkg:pypi/zhmcclient@1.4.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.4.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766927?format=api", "purl": "pkg:pypi/zhmcclient@1.4.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.4.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/766928?format=api", "purl": "pkg:pypi/zhmcclient@1.5.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.5.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766929?format=api", "purl": "pkg:pypi/zhmcclient@1.6.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.6.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766930?format=api", "purl": "pkg:pypi/zhmcclient@1.7.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.7.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766931?format=api", "purl": "pkg:pypi/zhmcclient@1.7.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.7.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/766932?format=api", "purl": "pkg:pypi/zhmcclient@1.7.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.7.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/766933?format=api", "purl": "pkg:pypi/zhmcclient@1.7.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.7.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/766934?format=api", "purl": "pkg:pypi/zhmcclient@1.8.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.8.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766935?format=api", "purl": "pkg:pypi/zhmcclient@1.8.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.8.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/766936?format=api", "purl": "pkg:pypi/zhmcclient@1.8.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.8.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/766937?format=api", "purl": "pkg:pypi/zhmcclient@1.9.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.9.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766938?format=api", "purl": "pkg:pypi/zhmcclient@1.9.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.9.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/766939?format=api", "purl": "pkg:pypi/zhmcclient@1.10.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.10.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766940?format=api", "purl": "pkg:pypi/zhmcclient@1.10.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.10.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/766941?format=api", "purl": "pkg:pypi/zhmcclient@1.11.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.11.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766942?format=api", "purl": "pkg:pypi/zhmcclient@1.11.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.11.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/766943?format=api", "purl": "pkg:pypi/zhmcclient@1.11.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.11.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/766944?format=api", "purl": "pkg:pypi/zhmcclient@1.11.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.11.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/766945?format=api", "purl": "pkg:pypi/zhmcclient@1.11.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.11.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/766946?format=api", "purl": "pkg:pypi/zhmcclient@1.12.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.12.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766947?format=api", "purl": "pkg:pypi/zhmcclient@1.12.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.12.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/766948?format=api", "purl": "pkg:pypi/zhmcclient@1.12.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.12.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/766949?format=api", "purl": "pkg:pypi/zhmcclient@1.12.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.12.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/766950?format=api", "purl": "pkg:pypi/zhmcclient@1.12.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.12.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/766951?format=api", "purl": "pkg:pypi/zhmcclient@1.13.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.13.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766952?format=api", "purl": "pkg:pypi/zhmcclient@1.13.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.13.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/766953?format=api", "purl": "pkg:pypi/zhmcclient@1.13.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.13.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/766954?format=api", "purl": "pkg:pypi/zhmcclient@1.13.3.dev1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.13.3.dev1" }, { "url": "http://public2.vulnerablecode.io/api/packages/766955?format=api", "purl": "pkg:pypi/zhmcclient@1.13.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.13.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/766956?format=api", "purl": "pkg:pypi/zhmcclient@1.13.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.13.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/766957?format=api", "purl": "pkg:pypi/zhmcclient@1.14.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.14.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766958?format=api", "purl": "pkg:pypi/zhmcclient@1.14.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.14.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/766959?format=api", "purl": "pkg:pypi/zhmcclient@1.15.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.15.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766960?format=api", "purl": "pkg:pypi/zhmcclient@1.16.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.16.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766961?format=api", "purl": "pkg:pypi/zhmcclient@1.16.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.16.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/766962?format=api", "purl": "pkg:pypi/zhmcclient@1.16.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.16.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/766963?format=api", "purl": "pkg:pypi/zhmcclient@1.17.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.17.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/766964?format=api", "purl": "pkg:pypi/zhmcclient@1.17.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.17.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/766965?format=api", "purl": "pkg:pypi/zhmcclient@1.17.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.17.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/766966?format=api", "purl": "pkg:pypi/zhmcclient@1.18.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-apmt-8c22-mkev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/zhmcclient@1.18.0" } ], "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-53865", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06756", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06728", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06745", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06736", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-53865" }, { "reference_url": "https://github.com/zhmcclient/python-zhmcclient", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" }, { "value": "6.2", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:H/SI:H/SA:H" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/zhmcclient/python-zhmcclient" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2024-53865", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" }, { "value": "6.2", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:H/SI:H/SA:H" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-53865" }, { "reference_url": "https://github.com/zhmcclient/python-zhmcclient/commit/ad32781e782d0f604c6da4680fce48e4cc1f4433", "reference_id": "ad32781e782d0f604c6da4680fce48e4cc1f4433", "reference_type": "", "scores": [ { "value": "8.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" }, { "value": "8.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" }, { "value": "6.2", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:H/SI:H/SA:H" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-12-02T20:53:57Z/" } ], "url": "https://github.com/zhmcclient/python-zhmcclient/commit/ad32781e782d0f604c6da4680fce48e4cc1f4433" }, { "reference_url": "https://github.com/advisories/GHSA-p57h-3cmc-xpjq", "reference_id": "GHSA-p57h-3cmc-xpjq", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-p57h-3cmc-xpjq" }, { "reference_url": "https://github.com/zhmcclient/python-zhmcclient/security/advisories/GHSA-p57h-3cmc-xpjq", "reference_id": "GHSA-p57h-3cmc-xpjq", "reference_type": "", "scores": [ { "value": "8.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" }, { "value": "8.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" }, { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" }, { "value": "6.2", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:H/SI:H/SA:H" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-12-02T20:53:57Z/" } ], "url": "https://github.com/zhmcclient/python-zhmcclient/security/advisories/GHSA-p57h-3cmc-xpjq" } ], "weaknesses": [ { "cwe_id": 312, "name": "Cleartext Storage of Sensitive Information", "description": "The product stores sensitive information in cleartext within a resource that might be accessible to another control sphere." }, { "cwe_id": 937, "name": "OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013." }, { "cwe_id": 1035, "name": "OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017." } ], "exploits": [], "severity_range_score": "4.0 - 8.3", "exploitability": "0.5", "weighted_severity": "7.5", "risk_score": 3.8, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-apmt-8c22-mkev" }