GET

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

GET /api/vulnerabilities/45762?format=api
HTTP 200 OK
Allow: GET, HEAD, OPTIONS
Content-Type: application/json
Vary: Accept

{
    "url": "http://public2.vulnerablecode.io/api/vulnerabilities/45762?format=api",
    "vulnerability_id": "VCID-rn67-4ddu-zuhm",
    "summary": "A vulnerability in Brocade Fabric OS versions before 9.2.2 could allow man-in-the-middle attackers to conduct remote Service Session Hijacking that may arise from the attacker's ability to forge an SSH key while the Brocade Fabric OS Switch is performing various remote operations initiated by a switch admin.",
    "aliases": [
        {
            "alias": "CVE-2024-7516"
        }
    ],
    "fixed_packages": [],
    "affected_packages": [],
    "references": [
        {
            "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-7516",
            "reference_id": "",
            "reference_type": "",
            "scores": [
                {
                    "value": "0.00203",
                    "scoring_system": "epss",
                    "scoring_elements": "0.42339",
                    "published_at": "2026-06-11T12:55:00Z"
                },
                {
                    "value": "0.00203",
                    "scoring_system": "epss",
                    "scoring_elements": "0.42503",
                    "published_at": "2026-06-12T12:55:00Z"
                }
            ],
            "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-7516"
        },
        {
            "reference_url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/25177",
            "reference_id": "25177",
            "reference_type": "",
            "scores": [
                {
                    "value": "7",
                    "scoring_system": "cvssv4",
                    "scoring_elements": "CVSS:4.0/AV:A/AC:H/AT:P/PR:N/UI:P/VC:L/VI:L/VA:H/SC:H/SI:N/SA:N"
                },
                {
                    "value": "Track",
                    "scoring_system": "ssvc",
                    "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-13T14:14:29Z/"
                }
            ],
            "url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/25177"
        }
    ],
    "weaknesses": [
        {
            "cwe_id": 322,
            "name": "Key Exchange without Entity Authentication",
            "description": "The product performs a key exchange with an actor without verifying the identity of that actor."
        }
    ],
    "exploits": [],
    "severity_range_score": "7.0 - 7.0",
    "exploitability": null,
    "weighted_severity": null,
    "risk_score": null,
    "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rn67-4ddu-zuhm"
}