Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/51723?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/51723?format=api", "vulnerability_id": "VCID-9mux-fuyc-a7dx", "summary": "Multiple vulnerabilities have been found in Firefox, Thunderbird,\n Network Security Services (NSS), and NetScape Portable Runtime (NSPR) with\n the worst of which may allow remote execution of arbitrary code.", "aliases": [ { "alias": "CVE-2016-1938" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/932976?format=api", "purl": "pkg:deb/debian/nss@2:3.21-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/nss@2:3.21-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/1035553?format=api", "purl": "pkg:deb/debian/nss@2:3.26-1%2Bdebu8u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2zrv-q4tb-wqeg" }, { "vulnerability": "VCID-46cy-x3cp-tke5" }, { "vulnerability": "VCID-6fvj-phnx-kfgs" }, { "vulnerability": "VCID-7msj-wyd6-zkbe" }, { "vulnerability": "VCID-8qtg-h4km-bfg2" }, { "vulnerability": "VCID-cgvg-aj53-kkbp" }, { "vulnerability": "VCID-dh3c-g3k3-zkb7" }, { "vulnerability": "VCID-ekxy-vaed-u7cg" }, { "vulnerability": "VCID-ewe9-39b1-kba2" }, { "vulnerability": "VCID-fgv4-bz59-h7g7" }, { "vulnerability": "VCID-gfj6-dsud-g3fh" }, { "vulnerability": "VCID-hs5f-21nx-gfeb" }, { "vulnerability": "VCID-jrsz-ynp7-wbb2" }, { "vulnerability": "VCID-jvrr-2gej-bfby" }, { "vulnerability": "VCID-k2s2-zkua-8ydy" }, { "vulnerability": "VCID-k4a4-f1as-x3bj" }, { "vulnerability": "VCID-kxvg-qw8v-vydv" }, { "vulnerability": "VCID-mx8t-s47w-wud5" }, { "vulnerability": "VCID-paez-g9wh-mfeq" }, { "vulnerability": "VCID-rk7t-zjzg-eqar" }, { "vulnerability": "VCID-szzk-wxm2-cfgj" }, { "vulnerability": "VCID-t89f-eksr-juen" }, { "vulnerability": "VCID-vjas-pry4-93cz" }, { "vulnerability": "VCID-vszp-vyxy-f7g7" }, { "vulnerability": "VCID-vzb9-aeqz-hybr" }, { "vulnerability": "VCID-w794-gqex-83du" }, { "vulnerability": "VCID-wavp-f4kn-j3cm" }, { "vulnerability": "VCID-x1ty-wqph-gkak" }, { "vulnerability": "VCID-y43f-tmvr-hqas" }, { "vulnerability": "VCID-ykkw-a6a1-43fe" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/nss@2:3.26-1%252Bdebu8u3" }, { "url": "http://public2.vulnerablecode.io/api/packages/932959?format=api", "purl": "pkg:deb/debian/nss@2:3.61-1%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2tts-gwgd-zqcz" }, { "vulnerability": "VCID-3nrj-5r53-37ab" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/nss@2:3.61-1%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/932957?format=api", "purl": "pkg:deb/debian/nss@2:3.87.1-1%2Bdeb12u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2tts-gwgd-zqcz" }, { "vulnerability": "VCID-3nrj-5r53-37ab" }, { "vulnerability": "VCID-gret-hn3p-5kbk" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/nss@2:3.87.1-1%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/932961?format=api", "purl": "pkg:deb/debian/nss@2:3.110-1%2Bdeb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/nss@2:3.110-1%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/932960?format=api", "purl": "pkg:deb/debian/nss@2:3.121-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/nss@2:3.121-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/79270?format=api", "purl": "pkg:ebuild/dev-libs/nspr@4.12", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-libs/nspr@4.12" }, { "url": "http://public2.vulnerablecode.io/api/packages/79271?format=api", "purl": "pkg:ebuild/dev-libs/nss@3.22.2", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-libs/nss@3.22.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/84233?format=api", "purl": "pkg:ebuild/dev-libs/nss@3.28", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-libs/nss@3.28" }, { "url": "http://public2.vulnerablecode.io/api/packages/79272?format=api", "purl": "pkg:ebuild/dev-libs/nss@4.12", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-libs/nss@4.12" }, { "url": "http://public2.vulnerablecode.io/api/packages/79273?format=api", "purl": "pkg:ebuild/mail-client/thunderbird@3.22.2", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/mail-client/thunderbird@3.22.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/79274?format=api", "purl": "pkg:ebuild/mail-client/thunderbird@4.12", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/mail-client/thunderbird@4.12" }, { "url": "http://public2.vulnerablecode.io/api/packages/79275?format=api", "purl": "pkg:ebuild/mail-client/thunderbird@38.7.0", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/mail-client/thunderbird@38.7.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/79276?format=api", "purl": "pkg:ebuild/mail-client/thunderbird-bin@3.22.2", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/mail-client/thunderbird-bin@3.22.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/79277?format=api", "purl": "pkg:ebuild/mail-client/thunderbird-bin@4.12", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/mail-client/thunderbird-bin@4.12" }, { "url": "http://public2.vulnerablecode.io/api/packages/79278?format=api", "purl": "pkg:ebuild/mail-client/thunderbird-bin@38.7.0", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/mail-client/thunderbird-bin@38.7.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/79279?format=api", "purl": "pkg:ebuild/www-client/firefox@3.22.2", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/firefox@3.22.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/79280?format=api", "purl": "pkg:ebuild/www-client/firefox@4.12", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/firefox@4.12" }, { "url": "http://public2.vulnerablecode.io/api/packages/79281?format=api", "purl": "pkg:ebuild/www-client/firefox@38.7.0", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/firefox@38.7.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/79283?format=api", "purl": "pkg:ebuild/www-client/firefox-bin@3.22.2", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/firefox-bin@3.22.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/79284?format=api", "purl": "pkg:ebuild/www-client/firefox-bin@4.12", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/firefox-bin@4.12" }, { "url": "http://public2.vulnerablecode.io/api/packages/79285?format=api", "purl": "pkg:ebuild/www-client/firefox-bin@38.7.0", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/firefox-bin@38.7.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/86478?format=api", "purl": "pkg:mozilla/Firefox@44.0.0", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@44.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/86481?format=api", "purl": "pkg:mozilla/Firefox%20ESR@38.8.0", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox%2520ESR@38.8.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/86482?format=api", "purl": "pkg:mozilla/NSS@3.21.0", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:mozilla/NSS@3.21.0" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571416?format=api", "purl": "pkg:deb/debian/nss@3.12.3.1-0lenny7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ert-2qyc-cfc1" }, { "vulnerability": "VCID-2w58-mdmk-guh8" }, { "vulnerability": "VCID-2w9f-avet-g7c5" }, { "vulnerability": "VCID-2zrv-q4tb-wqeg" }, { "vulnerability": "VCID-46cy-x3cp-tke5" }, { "vulnerability": "VCID-5wqt-2dtu-8qa4" }, { "vulnerability": "VCID-6fvj-phnx-kfgs" }, { "vulnerability": "VCID-7msj-wyd6-zkbe" }, { "vulnerability": "VCID-8j3v-g9xv-gud5" }, { "vulnerability": "VCID-8qtg-h4km-bfg2" }, { "vulnerability": "VCID-8z26-rmnt-m7bw" }, { "vulnerability": "VCID-9e9c-9p3v-87e9" }, { "vulnerability": "VCID-9mux-fuyc-a7dx" }, { "vulnerability": "VCID-aaas-s64r-gfhg" }, { "vulnerability": "VCID-b1m6-r1bv-d7gr" }, { "vulnerability": "VCID-b3mt-3nfn-suc1" }, { "vulnerability": "VCID-bfd8-7p4k-abae" }, { "vulnerability": "VCID-cgvg-aj53-kkbp" }, { "vulnerability": "VCID-dh3c-g3k3-zkb7" }, { "vulnerability": "VCID-dk4z-1j37-aucx" }, { "vulnerability": "VCID-dtrc-mwu9-2bdf" }, { "vulnerability": "VCID-e1yx-dxa6-1bba" }, { "vulnerability": "VCID-ekxy-vaed-u7cg" }, { "vulnerability": "VCID-ewe9-39b1-kba2" }, { "vulnerability": "VCID-fgv4-bz59-h7g7" }, { "vulnerability": "VCID-gfj6-dsud-g3fh" }, { "vulnerability": "VCID-hs5f-21nx-gfeb" }, { "vulnerability": "VCID-hs79-pemh-vfd6" }, { "vulnerability": "VCID-jau7-gfz8-dkfa" }, { "vulnerability": "VCID-jm5w-6pdb-bbes" }, { "vulnerability": "VCID-jmhk-12t1-kugh" }, { "vulnerability": "VCID-jrsz-ynp7-wbb2" }, { "vulnerability": "VCID-jvrr-2gej-bfby" }, { "vulnerability": "VCID-k2s2-zkua-8ydy" }, { "vulnerability": "VCID-k4a4-f1as-x3bj" }, { "vulnerability": "VCID-k8ap-r7e3-cuem" }, { "vulnerability": "VCID-kxvg-qw8v-vydv" }, { "vulnerability": "VCID-mwjm-p7pr-kfhj" }, { "vulnerability": "VCID-mwyu-5rk2-xbbz" }, { "vulnerability": "VCID-mx8t-s47w-wud5" }, { "vulnerability": "VCID-paez-g9wh-mfeq" }, { "vulnerability": "VCID-pc13-zwmr-p7hz" }, { "vulnerability": "VCID-qdev-8m9n-8bbr" }, { "vulnerability": "VCID-qdqz-admy-e7cg" }, { "vulnerability": "VCID-qup9-qy11-fqhe" }, { "vulnerability": "VCID-rk7t-zjzg-eqar" }, { "vulnerability": "VCID-rzqy-gheq-cqgg" }, { "vulnerability": "VCID-sucm-cq7u-r3en" }, { "vulnerability": "VCID-szzk-wxm2-cfgj" }, { "vulnerability": "VCID-t89f-eksr-juen" }, { "vulnerability": "VCID-tqc3-eb8c-q3f9" }, { "vulnerability": "VCID-ukuz-m6d3-5kab" }, { "vulnerability": "VCID-uqv9-vr1q-6ya1" }, { "vulnerability": "VCID-uzt2-tufb-rua5" }, { "vulnerability": "VCID-vjas-pry4-93cz" }, { "vulnerability": "VCID-vszp-vyxy-f7g7" }, { "vulnerability": "VCID-vzb9-aeqz-hybr" }, { "vulnerability": "VCID-w5wp-ujx1-vkhp" }, { "vulnerability": "VCID-w794-gqex-83du" }, { "vulnerability": "VCID-wavp-f4kn-j3cm" }, { "vulnerability": "VCID-wut5-sqr6-mubd" }, { "vulnerability": "VCID-x1ty-wqph-gkak" }, { "vulnerability": "VCID-xap5-djda-2uem" }, { "vulnerability": "VCID-y43f-tmvr-hqas" }, { "vulnerability": "VCID-yazh-n5vb-pkf1" }, { "vulnerability": "VCID-ykkw-a6a1-43fe" }, { "vulnerability": "VCID-z26z-btvf-x7eq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/nss@3.12.3.1-0lenny7" }, { "url": "http://public2.vulnerablecode.io/api/packages/571417?format=api", "purl": "pkg:deb/debian/nss@3.12.8-1%2Bsqueeze7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ert-2qyc-cfc1" }, { "vulnerability": "VCID-2w58-mdmk-guh8" }, { "vulnerability": "VCID-2w9f-avet-g7c5" }, { "vulnerability": "VCID-2zrv-q4tb-wqeg" }, { "vulnerability": "VCID-46cy-x3cp-tke5" }, { "vulnerability": "VCID-5wqt-2dtu-8qa4" }, { "vulnerability": "VCID-6fvj-phnx-kfgs" }, { "vulnerability": "VCID-7msj-wyd6-zkbe" }, { "vulnerability": "VCID-8j3v-g9xv-gud5" }, { "vulnerability": "VCID-8qtg-h4km-bfg2" }, { "vulnerability": "VCID-8z26-rmnt-m7bw" }, { "vulnerability": "VCID-9mux-fuyc-a7dx" }, { "vulnerability": "VCID-b1m6-r1bv-d7gr" }, { "vulnerability": "VCID-b3mt-3nfn-suc1" }, { "vulnerability": "VCID-bfd8-7p4k-abae" }, { "vulnerability": "VCID-cgvg-aj53-kkbp" }, { "vulnerability": "VCID-dh3c-g3k3-zkb7" }, { "vulnerability": "VCID-dk4z-1j37-aucx" }, { "vulnerability": "VCID-dtrc-mwu9-2bdf" }, { "vulnerability": "VCID-e1yx-dxa6-1bba" }, { "vulnerability": "VCID-ekxy-vaed-u7cg" }, { "vulnerability": "VCID-ewe9-39b1-kba2" }, { "vulnerability": "VCID-fgv4-bz59-h7g7" }, { "vulnerability": "VCID-gfj6-dsud-g3fh" }, { "vulnerability": "VCID-hs5f-21nx-gfeb" }, { "vulnerability": "VCID-hs79-pemh-vfd6" }, { "vulnerability": "VCID-jm5w-6pdb-bbes" }, { "vulnerability": "VCID-jmhk-12t1-kugh" }, { "vulnerability": "VCID-jrsz-ynp7-wbb2" }, { "vulnerability": "VCID-jvrr-2gej-bfby" }, { "vulnerability": "VCID-k2s2-zkua-8ydy" }, { "vulnerability": "VCID-k4a4-f1as-x3bj" }, { "vulnerability": "VCID-k8ap-r7e3-cuem" }, { "vulnerability": "VCID-kxvg-qw8v-vydv" }, { "vulnerability": "VCID-mwjm-p7pr-kfhj" }, { "vulnerability": "VCID-mwyu-5rk2-xbbz" }, { "vulnerability": "VCID-mx8t-s47w-wud5" }, { "vulnerability": "VCID-paez-g9wh-mfeq" }, { "vulnerability": "VCID-pc13-zwmr-p7hz" }, { "vulnerability": "VCID-qdev-8m9n-8bbr" }, { "vulnerability": "VCID-qdqz-admy-e7cg" }, { "vulnerability": "VCID-qup9-qy11-fqhe" }, { "vulnerability": "VCID-rk7t-zjzg-eqar" }, { "vulnerability": "VCID-rzqy-gheq-cqgg" }, { "vulnerability": "VCID-sucm-cq7u-r3en" }, { "vulnerability": "VCID-szzk-wxm2-cfgj" }, { "vulnerability": "VCID-t89f-eksr-juen" }, { "vulnerability": "VCID-tqc3-eb8c-q3f9" }, { "vulnerability": "VCID-ukuz-m6d3-5kab" }, { "vulnerability": "VCID-uqv9-vr1q-6ya1" }, { "vulnerability": "VCID-uzt2-tufb-rua5" }, { "vulnerability": "VCID-vjas-pry4-93cz" }, { "vulnerability": "VCID-vszp-vyxy-f7g7" }, { "vulnerability": "VCID-vzb9-aeqz-hybr" }, { "vulnerability": "VCID-w5wp-ujx1-vkhp" }, { "vulnerability": "VCID-w794-gqex-83du" }, { "vulnerability": "VCID-wavp-f4kn-j3cm" }, { "vulnerability": "VCID-wut5-sqr6-mubd" }, { "vulnerability": "VCID-x1ty-wqph-gkak" }, { "vulnerability": "VCID-xap5-djda-2uem" }, { "vulnerability": "VCID-y43f-tmvr-hqas" }, { "vulnerability": "VCID-yazh-n5vb-pkf1" }, { "vulnerability": "VCID-ykkw-a6a1-43fe" }, { "vulnerability": "VCID-z26z-btvf-x7eq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/nss@3.12.8-1%252Bsqueeze7" }, { "url": "http://public2.vulnerablecode.io/api/packages/571418?format=api", "purl": "pkg:deb/debian/nss@3.12.8-1%2Bsqueeze14", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ert-2qyc-cfc1" }, { "vulnerability": "VCID-2w58-mdmk-guh8" }, { "vulnerability": "VCID-2w9f-avet-g7c5" }, { "vulnerability": "VCID-2zrv-q4tb-wqeg" }, { "vulnerability": "VCID-46cy-x3cp-tke5" }, { "vulnerability": "VCID-5wqt-2dtu-8qa4" }, { "vulnerability": "VCID-6fvj-phnx-kfgs" }, { "vulnerability": "VCID-7msj-wyd6-zkbe" }, { "vulnerability": "VCID-8j3v-g9xv-gud5" }, { "vulnerability": "VCID-8qtg-h4km-bfg2" }, { "vulnerability": "VCID-8z26-rmnt-m7bw" }, { "vulnerability": "VCID-9mux-fuyc-a7dx" }, { "vulnerability": "VCID-b1m6-r1bv-d7gr" }, { "vulnerability": "VCID-b3mt-3nfn-suc1" }, { "vulnerability": "VCID-bfd8-7p4k-abae" }, { "vulnerability": "VCID-cgvg-aj53-kkbp" }, { "vulnerability": "VCID-dh3c-g3k3-zkb7" }, { "vulnerability": "VCID-dk4z-1j37-aucx" }, { "vulnerability": "VCID-dtrc-mwu9-2bdf" }, { "vulnerability": "VCID-e1yx-dxa6-1bba" }, { "vulnerability": "VCID-ekxy-vaed-u7cg" }, { "vulnerability": "VCID-ewe9-39b1-kba2" }, { "vulnerability": "VCID-fgv4-bz59-h7g7" }, { "vulnerability": "VCID-gfj6-dsud-g3fh" }, { "vulnerability": "VCID-hs5f-21nx-gfeb" }, { "vulnerability": "VCID-hs79-pemh-vfd6" }, { "vulnerability": "VCID-jm5w-6pdb-bbes" }, { "vulnerability": "VCID-jmhk-12t1-kugh" }, { "vulnerability": "VCID-jrsz-ynp7-wbb2" }, { "vulnerability": "VCID-jvrr-2gej-bfby" }, { "vulnerability": "VCID-k2s2-zkua-8ydy" }, { "vulnerability": "VCID-k4a4-f1as-x3bj" }, { "vulnerability": "VCID-k8ap-r7e3-cuem" }, { "vulnerability": "VCID-kxvg-qw8v-vydv" }, { "vulnerability": "VCID-mwjm-p7pr-kfhj" }, { "vulnerability": "VCID-mwyu-5rk2-xbbz" }, { "vulnerability": "VCID-mx8t-s47w-wud5" }, { "vulnerability": "VCID-paez-g9wh-mfeq" }, { "vulnerability": "VCID-pc13-zwmr-p7hz" }, { "vulnerability": "VCID-qdev-8m9n-8bbr" }, { "vulnerability": "VCID-qdqz-admy-e7cg" }, { "vulnerability": "VCID-qup9-qy11-fqhe" }, { "vulnerability": "VCID-rk7t-zjzg-eqar" }, { "vulnerability": "VCID-rzqy-gheq-cqgg" }, { "vulnerability": "VCID-sucm-cq7u-r3en" }, { "vulnerability": "VCID-szzk-wxm2-cfgj" }, { "vulnerability": "VCID-t89f-eksr-juen" }, { "vulnerability": "VCID-tqc3-eb8c-q3f9" }, { "vulnerability": "VCID-ukuz-m6d3-5kab" }, { "vulnerability": "VCID-uqv9-vr1q-6ya1" }, { "vulnerability": "VCID-uzt2-tufb-rua5" }, { "vulnerability": "VCID-vjas-pry4-93cz" }, { "vulnerability": "VCID-vszp-vyxy-f7g7" }, { "vulnerability": "VCID-vzb9-aeqz-hybr" }, { "vulnerability": "VCID-w5wp-ujx1-vkhp" }, { "vulnerability": "VCID-w794-gqex-83du" }, { "vulnerability": "VCID-wavp-f4kn-j3cm" }, { "vulnerability": "VCID-wut5-sqr6-mubd" }, { "vulnerability": "VCID-x1ty-wqph-gkak" }, { "vulnerability": "VCID-xap5-djda-2uem" }, { "vulnerability": "VCID-y43f-tmvr-hqas" }, { "vulnerability": "VCID-yazh-n5vb-pkf1" }, { "vulnerability": "VCID-ykkw-a6a1-43fe" }, { "vulnerability": "VCID-z26z-btvf-x7eq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/nss@3.12.8-1%252Bsqueeze14" }, { "url": "http://public2.vulnerablecode.io/api/packages/571419?format=api", "purl": "pkg:deb/debian/nss@2:3.14.5-1%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ert-2qyc-cfc1" }, { "vulnerability": "VCID-2w58-mdmk-guh8" }, { "vulnerability": "VCID-2w9f-avet-g7c5" }, { "vulnerability": "VCID-2zrv-q4tb-wqeg" }, { "vulnerability": "VCID-46cy-x3cp-tke5" }, { "vulnerability": "VCID-5wqt-2dtu-8qa4" }, { "vulnerability": "VCID-6fvj-phnx-kfgs" }, { "vulnerability": "VCID-7msj-wyd6-zkbe" }, { "vulnerability": "VCID-8j3v-g9xv-gud5" }, { "vulnerability": "VCID-8qtg-h4km-bfg2" }, { "vulnerability": "VCID-9mux-fuyc-a7dx" }, { "vulnerability": "VCID-b3mt-3nfn-suc1" }, { "vulnerability": "VCID-cgvg-aj53-kkbp" }, { "vulnerability": "VCID-dh3c-g3k3-zkb7" }, { "vulnerability": "VCID-dk4z-1j37-aucx" }, { "vulnerability": "VCID-dtrc-mwu9-2bdf" }, { "vulnerability": "VCID-ekxy-vaed-u7cg" }, { "vulnerability": "VCID-ewe9-39b1-kba2" }, { "vulnerability": "VCID-fgv4-bz59-h7g7" }, { "vulnerability": "VCID-gfj6-dsud-g3fh" }, { "vulnerability": "VCID-hs5f-21nx-gfeb" }, { "vulnerability": "VCID-hs79-pemh-vfd6" }, { "vulnerability": "VCID-jm5w-6pdb-bbes" }, { "vulnerability": "VCID-jmhk-12t1-kugh" }, { "vulnerability": "VCID-jrsz-ynp7-wbb2" }, { "vulnerability": "VCID-jvrr-2gej-bfby" }, { "vulnerability": "VCID-k2s2-zkua-8ydy" }, { "vulnerability": "VCID-k4a4-f1as-x3bj" }, { "vulnerability": "VCID-kxvg-qw8v-vydv" }, { "vulnerability": "VCID-mwjm-p7pr-kfhj" }, { "vulnerability": "VCID-mwyu-5rk2-xbbz" }, { "vulnerability": "VCID-mx8t-s47w-wud5" }, { "vulnerability": "VCID-paez-g9wh-mfeq" }, { "vulnerability": "VCID-pc13-zwmr-p7hz" }, { "vulnerability": "VCID-qdev-8m9n-8bbr" }, { "vulnerability": "VCID-qdqz-admy-e7cg" }, { "vulnerability": "VCID-qup9-qy11-fqhe" }, { "vulnerability": "VCID-rk7t-zjzg-eqar" }, { "vulnerability": "VCID-rzqy-gheq-cqgg" }, { "vulnerability": "VCID-sucm-cq7u-r3en" }, { "vulnerability": "VCID-szzk-wxm2-cfgj" }, { "vulnerability": "VCID-t89f-eksr-juen" }, { "vulnerability": "VCID-ukuz-m6d3-5kab" }, { "vulnerability": "VCID-uqv9-vr1q-6ya1" }, { "vulnerability": "VCID-uzt2-tufb-rua5" }, { "vulnerability": "VCID-vjas-pry4-93cz" }, { "vulnerability": "VCID-vszp-vyxy-f7g7" }, { "vulnerability": "VCID-vzb9-aeqz-hybr" }, { "vulnerability": "VCID-w5wp-ujx1-vkhp" }, { "vulnerability": "VCID-w794-gqex-83du" }, { "vulnerability": "VCID-wavp-f4kn-j3cm" }, { "vulnerability": "VCID-wut5-sqr6-mubd" }, { "vulnerability": "VCID-x1ty-wqph-gkak" }, { "vulnerability": "VCID-xap5-djda-2uem" }, { "vulnerability": "VCID-y43f-tmvr-hqas" }, { "vulnerability": "VCID-ykkw-a6a1-43fe" }, { "vulnerability": "VCID-z26z-btvf-x7eq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/nss@2:3.14.5-1%252Bdeb7u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1035552?format=api", "purl": "pkg:deb/debian/nss@2:3.17.2-1.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2w58-mdmk-guh8" }, { "vulnerability": "VCID-2w9f-avet-g7c5" }, { "vulnerability": "VCID-2zrv-q4tb-wqeg" }, { "vulnerability": "VCID-46cy-x3cp-tke5" }, { "vulnerability": "VCID-5wqt-2dtu-8qa4" }, { "vulnerability": "VCID-6fvj-phnx-kfgs" }, { "vulnerability": "VCID-7msj-wyd6-zkbe" }, { "vulnerability": "VCID-8qtg-h4km-bfg2" }, { "vulnerability": "VCID-9mux-fuyc-a7dx" }, { "vulnerability": "VCID-cgvg-aj53-kkbp" }, { "vulnerability": "VCID-dh3c-g3k3-zkb7" }, { "vulnerability": "VCID-dk4z-1j37-aucx" }, { "vulnerability": "VCID-ekxy-vaed-u7cg" }, { "vulnerability": "VCID-ewe9-39b1-kba2" }, { "vulnerability": "VCID-fgv4-bz59-h7g7" }, { "vulnerability": "VCID-gfj6-dsud-g3fh" }, { "vulnerability": "VCID-hs5f-21nx-gfeb" }, { "vulnerability": "VCID-hs79-pemh-vfd6" }, { "vulnerability": "VCID-jmhk-12t1-kugh" }, { "vulnerability": "VCID-jrsz-ynp7-wbb2" }, { "vulnerability": "VCID-jvrr-2gej-bfby" }, { "vulnerability": "VCID-k2s2-zkua-8ydy" }, { "vulnerability": "VCID-k4a4-f1as-x3bj" }, { "vulnerability": "VCID-kxvg-qw8v-vydv" }, { "vulnerability": "VCID-mwyu-5rk2-xbbz" }, { "vulnerability": "VCID-mx8t-s47w-wud5" }, { "vulnerability": "VCID-paez-g9wh-mfeq" }, { "vulnerability": "VCID-pc13-zwmr-p7hz" }, { "vulnerability": "VCID-qup9-qy11-fqhe" }, { "vulnerability": "VCID-rk7t-zjzg-eqar" }, { "vulnerability": "VCID-rzqy-gheq-cqgg" }, { "vulnerability": "VCID-szzk-wxm2-cfgj" }, { "vulnerability": "VCID-t89f-eksr-juen" }, { "vulnerability": "VCID-ukuz-m6d3-5kab" }, { "vulnerability": "VCID-vjas-pry4-93cz" }, { "vulnerability": "VCID-vszp-vyxy-f7g7" }, { "vulnerability": "VCID-vzb9-aeqz-hybr" }, { "vulnerability": "VCID-w794-gqex-83du" }, { "vulnerability": "VCID-wavp-f4kn-j3cm" }, { "vulnerability": "VCID-wut5-sqr6-mubd" }, { "vulnerability": "VCID-x1ty-wqph-gkak" }, { "vulnerability": "VCID-y43f-tmvr-hqas" }, { "vulnerability": "VCID-ykkw-a6a1-43fe" }, { "vulnerability": "VCID-z26z-btvf-x7eq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/nss@2:3.17.2-1.1" } ], "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00001.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00001.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00002.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00002.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00010.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00010.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-1938.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-1938.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-1938", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01048", "scoring_system": "epss", "scoring_elements": "0.77513", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01048", "scoring_system": "epss", "scoring_elements": "0.77455", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01048", "scoring_system": "epss", "scoring_elements": "0.77506", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01048", "scoring_system": "epss", "scoring_elements": "0.77532", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01048", "scoring_system": "epss", "scoring_elements": "0.77516", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01048", "scoring_system": "epss", "scoring_elements": "0.77461", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01048", "scoring_system": "epss", "scoring_elements": "0.77486", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01048", "scoring_system": "epss", "scoring_elements": "0.77467", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01048", "scoring_system": "epss", "scoring_elements": "0.77497", "published_at": "2026-04-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-1938" }, { "reference_url": "https://blog.fuzzing-project.org/37-Mozilla-NSS-Wrong-calculation-results-in-mp_div-and-mp_exptmod.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://blog.fuzzing-project.org/37-Mozilla-NSS-Wrong-calculation-results-in-mp_div-and-mp_exptmod.html" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1190248", "reference_id": "", "reference_type": "", "scores": [], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1190248" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1194947", "reference_id": "", "reference_type": "", "scores": [], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1194947" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4000", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4000" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7575", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7575" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1950", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1950" }, { "reference_url": "https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.21_release_notes", "reference_id": "", "reference_type": "", "scores": [], "url": "https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.21_release_notes" }, { "reference_url": "https://github.com/hannob/bignum-fuzz/blob/master/CVE-2016-1938-nss-mp_div.c", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/hannob/bignum-fuzz/blob/master/CVE-2016-1938-nss-mp_div.c" }, { "reference_url": "https://github.com/hannob/bignum-fuzz/blob/master/CVE-2016-1938-nss-mp_exptmod.c", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/hannob/bignum-fuzz/blob/master/CVE-2016-1938-nss-mp_exptmod.c" }, { "reference_url": "https://hg.mozilla.org/projects/nss/diff/a555bf0fc23a/lib/freebl/mpi/mpi.c", "reference_id": "", "reference_type": "", "scores": [], "url": "https://hg.mozilla.org/projects/nss/diff/a555bf0fc23a/lib/freebl/mpi/mpi.c" }, { "reference_url": "http://www.debian.org/security/2016/dsa-3688", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2016/dsa-3688" }, { "reference_url": "http://www.mozilla.org/security/announce/2016/mfsa2016-07.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.mozilla.org/security/announce/2016/mfsa2016-07.html" }, { "reference_url": "http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html" }, { "reference_url": "http://www.securityfocus.com/bid/81955", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/81955" }, { "reference_url": "http://www.securityfocus.com/bid/91787", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/91787" }, { "reference_url": "http://www.securitytracker.com/id/1034825", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securitytracker.com/id/1034825" }, { "reference_url": "http://www.ubuntu.com/usn/USN-2880-1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.ubuntu.com/usn/USN-2880-1" }, { "reference_url": "http://www.ubuntu.com/usn/USN-2880-2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.ubuntu.com/usn/USN-2880-2" }, { "reference_url": "http://www.ubuntu.com/usn/USN-2903-1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.ubuntu.com/usn/USN-2903-1" }, { "reference_url": "http://www.ubuntu.com/usn/USN-2903-2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.ubuntu.com/usn/USN-2903-2" }, { "reference_url": "http://www.ubuntu.com/usn/USN-2973-1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.ubuntu.com/usn/USN-2973-1" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1305159", "reference_id": "1305159", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1305159" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:nss:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:mozilla:nss:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:nss:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:42.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:opensuse:leap:42.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:42.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1938", "reference_id": "CVE-2016-1938", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1938" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2016-1938", "reference_id": "CVE-2016-1938", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:P/I:P/A:N" }, { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-1938" }, { "reference_url": "https://security.gentoo.org/glsa/201605-06", "reference_id": "GLSA-201605-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201605-06" }, { "reference_url": "https://security.gentoo.org/glsa/201701-46", "reference_id": "GLSA-201701-46", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-46" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2016-07", "reference_id": "mfsa2016-07", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2016-07" }, { "reference_url": "https://usn.ubuntu.com/2880-1/", "reference_id": "USN-2880-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2880-1/" }, { "reference_url": "https://usn.ubuntu.com/2903-1/", "reference_id": "USN-2903-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2903-1/" }, { "reference_url": "https://usn.ubuntu.com/2973-1/", "reference_id": "USN-2973-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2973-1/" } ], "weaknesses": [ { "cwe_id": 682, "name": "Incorrect Calculation", "description": "The product performs a calculation that generates incorrect or unintended results that are later used in security-critical decisions or resource management." }, { "cwe_id": 310, "name": "Cryptographic Issues", "description": "Weaknesses in this category are related to the design and implementation of data confidentiality and integrity. Frequently these deal with the use of encoding techniques, encryption libraries, and hashing algorithms. The weaknesses in this category could lead to a degradation of the quality data if they are not addressed." } ], "exploits": [], "severity_range_score": "6.4 - 8.9", "exploitability": "0.5", "weighted_severity": "8.0", "risk_score": 4.0, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9mux-fuyc-a7dx" }