Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/5222?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5222?format=api", "vulnerability_id": "VCID-jvav-61fn-huav", "summary": "multiple issues", "aliases": [ { "alias": "CVE-2021-40438" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/2193?format=api", "purl": "pkg:alpm/archlinux/apache@2.4.49-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fzbd-mhtw-eybp" }, { "vulnerability": "VCID-p4z4-22k5-kqam" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/apache@2.4.49-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/75016?format=api", "purl": "pkg:apache/httpd@2.4.49", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3c4z-fnu7-h3af" }, { "vulnerability": "VCID-fzbd-mhtw-eybp" }, { "vulnerability": "VCID-p4z4-22k5-kqam" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.49" }, { "url": "http://public2.vulnerablecode.io/api/packages/5363?format=api", "purl": "pkg:deb/debian/apache2@2.4.38-3%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2pj8-zfdd-tufx" }, { "vulnerability": "VCID-ckj4-4db9-6bgy" }, { "vulnerability": "VCID-qafr-qreg-bbby" }, { "vulnerability": "VCID-t8aa-rv68-fkg5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.38-3%252Bdeb10u8" }, { "url": "http://public2.vulnerablecode.io/api/packages/88237?format=api", "purl": "pkg:deb/debian/apache2@2.4.49-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.49-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/88238?format=api", "purl": "pkg:deb/debian/apache2@2.4.51-1~deb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.51-1~deb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/88145?format=api", "purl": "pkg:deb/debian/apache2@2.4.62-1~deb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-urh9-bae6-1yc8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.62-1~deb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/88143?format=api", "purl": "pkg:deb/debian/apache2@2.4.67-1~deb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-urh9-bae6-1yc8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/88148?format=api", "purl": "pkg:deb/debian/apache2@2.4.67-1~deb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-urh9-bae6-1yc8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/88146?format=api", "purl": "pkg:deb/debian/apache2@2.4.67-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-urh9-bae6-1yc8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/88147?format=api", "purl": "pkg:deb/debian/apache2@2.4.67-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/192936?format=api", "purl": "pkg:ebuild/app-admin/apache-tools@2.4.54", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/app-admin/apache-tools@2.4.54" }, { "url": "http://public2.vulnerablecode.io/api/packages/192937?format=api", "purl": "pkg:ebuild/www-servers/apache@2.4.54", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-servers/apache@2.4.54" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/2214?format=api", "purl": "pkg:alpm/archlinux/apache@2.4.48-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3xa7-ar49-fucn" }, { "vulnerability": "VCID-jvav-61fn-huav" }, { "vulnerability": "VCID-k9t6-m45c-xyf4" }, { "vulnerability": "VCID-kgfq-eyta-wbgz" }, { "vulnerability": "VCID-zz8m-9k7f-ckb6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/apache@2.4.48-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/75011?format=api", "purl": "pkg:apache/httpd@2.4.48", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3xa7-ar49-fucn" }, { "vulnerability": "VCID-jvav-61fn-huav" }, { "vulnerability": "VCID-k9t6-m45c-xyf4" }, { "vulnerability": "VCID-kgfq-eyta-wbgz" }, { "vulnerability": "VCID-zz8m-9k7f-ckb6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.48" }, { "url": "http://public2.vulnerablecode.io/api/packages/4547?format=api", "purl": "pkg:deb/debian/apache2@2.0.54-5sarge2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1xb5-reys-d7fb" }, { "vulnerability": "VCID-2phf-6893-rugx" }, { "vulnerability": "VCID-2pj8-zfdd-tufx" }, { "vulnerability": "VCID-3cam-1afg-9bdv" }, { "vulnerability": "VCID-3xa7-ar49-fucn" }, { "vulnerability": "VCID-4yze-nb6e-8yav" }, { "vulnerability": "VCID-52q8-y1bq-nqe2" }, { "vulnerability": "VCID-5qj8-vuec-h3fg" }, { "vulnerability": "VCID-5y32-wcg3-sybr" }, { "vulnerability": "VCID-8qu7-pwaj-yqhq" }, { "vulnerability": "VCID-aj4u-27vr-9ugt" }, { "vulnerability": "VCID-atus-ryef-17h1" }, { "vulnerability": "VCID-bmyw-jdh2-17d3" }, { "vulnerability": "VCID-bp2p-twzt-wkap" }, { "vulnerability": "VCID-ckj4-4db9-6bgy" }, { "vulnerability": "VCID-d8gx-nfxh-wbem" }, { "vulnerability": "VCID-faqh-hsss-93bc" }, { "vulnerability": "VCID-j5r1-q5tv-xqcp" }, { "vulnerability": "VCID-jvav-61fn-huav" }, { "vulnerability": "VCID-kaw2-gdzq-4qdm" }, { "vulnerability": "VCID-kgfq-eyta-wbgz" }, { "vulnerability": "VCID-nxt8-4r1p-kuab" }, { "vulnerability": "VCID-pj23-hhvw-6ucr" }, { "vulnerability": "VCID-ps1g-6hy7-87dr" }, { "vulnerability": "VCID-qafr-qreg-bbby" }, { "vulnerability": "VCID-rhy7-r84u-gbfc" }, { "vulnerability": "VCID-saux-awas-mfau" }, { "vulnerability": "VCID-sufe-qfsf-pbaq" }, { "vulnerability": "VCID-t8aa-rv68-fkg5" }, { "vulnerability": "VCID-t9kh-3weu-qugs" }, { "vulnerability": "VCID-um53-bb17-93fp" }, { "vulnerability": "VCID-vb2q-wweb-37gz" }, { "vulnerability": "VCID-wmmz-e7c5-1ye1" }, { "vulnerability": "VCID-xac7-5qrj-r3gu" }, { "vulnerability": "VCID-xd6e-12jd-pufb" }, { "vulnerability": "VCID-yvfg-1nhp-qqg8" }, { "vulnerability": "VCID-zz8m-9k7f-ckb6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.0.54-5sarge2" }, { "url": "http://public2.vulnerablecode.io/api/packages/4548?format=api", "purl": "pkg:deb/debian/apache2@2.2.3-4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1xb5-reys-d7fb" }, { "vulnerability": "VCID-2phf-6893-rugx" }, { "vulnerability": "VCID-2pj8-zfdd-tufx" }, { "vulnerability": "VCID-3cam-1afg-9bdv" }, { "vulnerability": "VCID-3xa7-ar49-fucn" }, { "vulnerability": "VCID-4yze-nb6e-8yav" }, { "vulnerability": "VCID-52q8-y1bq-nqe2" }, { "vulnerability": "VCID-5qj8-vuec-h3fg" }, { "vulnerability": "VCID-5y32-wcg3-sybr" }, { "vulnerability": "VCID-8qu7-pwaj-yqhq" }, { "vulnerability": "VCID-aj4u-27vr-9ugt" }, { "vulnerability": "VCID-atus-ryef-17h1" }, { "vulnerability": "VCID-bmyw-jdh2-17d3" }, { "vulnerability": "VCID-bp2p-twzt-wkap" }, { "vulnerability": "VCID-ckj4-4db9-6bgy" }, { "vulnerability": "VCID-d8gx-nfxh-wbem" }, { "vulnerability": "VCID-faqh-hsss-93bc" }, { "vulnerability": "VCID-j5r1-q5tv-xqcp" }, { "vulnerability": "VCID-jvav-61fn-huav" }, { "vulnerability": "VCID-kaw2-gdzq-4qdm" }, { "vulnerability": "VCID-kgfq-eyta-wbgz" }, { "vulnerability": "VCID-nxt8-4r1p-kuab" }, { "vulnerability": "VCID-pj23-hhvw-6ucr" }, { "vulnerability": "VCID-ps1g-6hy7-87dr" }, { "vulnerability": "VCID-qafr-qreg-bbby" }, { "vulnerability": "VCID-rhy7-r84u-gbfc" }, { "vulnerability": "VCID-saux-awas-mfau" }, { "vulnerability": "VCID-sufe-qfsf-pbaq" }, { "vulnerability": "VCID-t8aa-rv68-fkg5" }, { "vulnerability": "VCID-t9kh-3weu-qugs" }, { "vulnerability": "VCID-um53-bb17-93fp" }, { "vulnerability": "VCID-vb2q-wweb-37gz" }, { "vulnerability": "VCID-wmmz-e7c5-1ye1" }, { "vulnerability": "VCID-xac7-5qrj-r3gu" }, { "vulnerability": "VCID-xd6e-12jd-pufb" }, { "vulnerability": "VCID-yvfg-1nhp-qqg8" }, { "vulnerability": "VCID-zz8m-9k7f-ckb6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.2.3-4" }, { "url": "http://public2.vulnerablecode.io/api/packages/4549?format=api", "purl": "pkg:deb/debian/apache2@2.2.3-4%2Betch11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1xb5-reys-d7fb" }, { "vulnerability": "VCID-2phf-6893-rugx" }, { "vulnerability": "VCID-2pj8-zfdd-tufx" }, { "vulnerability": "VCID-3cam-1afg-9bdv" }, { "vulnerability": "VCID-3xa7-ar49-fucn" }, { "vulnerability": "VCID-4yze-nb6e-8yav" }, { "vulnerability": "VCID-52q8-y1bq-nqe2" }, { "vulnerability": "VCID-5qj8-vuec-h3fg" }, { "vulnerability": "VCID-5y32-wcg3-sybr" }, { "vulnerability": "VCID-8qu7-pwaj-yqhq" }, { "vulnerability": "VCID-aj4u-27vr-9ugt" }, { "vulnerability": "VCID-atus-ryef-17h1" }, { "vulnerability": "VCID-bmyw-jdh2-17d3" }, { "vulnerability": "VCID-bp2p-twzt-wkap" }, { "vulnerability": "VCID-ckj4-4db9-6bgy" }, { "vulnerability": "VCID-d8gx-nfxh-wbem" }, { "vulnerability": "VCID-faqh-hsss-93bc" }, { "vulnerability": "VCID-j5r1-q5tv-xqcp" }, { "vulnerability": "VCID-jvav-61fn-huav" }, { "vulnerability": "VCID-kaw2-gdzq-4qdm" }, { "vulnerability": "VCID-kgfq-eyta-wbgz" }, { "vulnerability": "VCID-nxt8-4r1p-kuab" }, { "vulnerability": "VCID-pj23-hhvw-6ucr" }, { "vulnerability": "VCID-ps1g-6hy7-87dr" }, { "vulnerability": "VCID-qafr-qreg-bbby" }, { "vulnerability": "VCID-rhy7-r84u-gbfc" }, { "vulnerability": "VCID-saux-awas-mfau" }, { "vulnerability": "VCID-sufe-qfsf-pbaq" }, { "vulnerability": "VCID-t8aa-rv68-fkg5" }, { "vulnerability": "VCID-t9kh-3weu-qugs" }, { "vulnerability": "VCID-um53-bb17-93fp" }, { "vulnerability": "VCID-vb2q-wweb-37gz" }, { "vulnerability": "VCID-wmmz-e7c5-1ye1" }, { "vulnerability": "VCID-xac7-5qrj-r3gu" }, { "vulnerability": "VCID-xd6e-12jd-pufb" }, { "vulnerability": "VCID-yvfg-1nhp-qqg8" }, { "vulnerability": "VCID-zz8m-9k7f-ckb6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.2.3-4%252Betch11" }, { "url": "http://public2.vulnerablecode.io/api/packages/4550?format=api", "purl": "pkg:deb/debian/apache2@2.2.9-10%2Blenny12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1xb5-reys-d7fb" }, { "vulnerability": "VCID-2phf-6893-rugx" }, { "vulnerability": "VCID-2pj8-zfdd-tufx" }, { "vulnerability": "VCID-3cam-1afg-9bdv" }, { "vulnerability": "VCID-3xa7-ar49-fucn" }, { "vulnerability": "VCID-4yze-nb6e-8yav" }, { "vulnerability": "VCID-52q8-y1bq-nqe2" }, { "vulnerability": "VCID-5qj8-vuec-h3fg" }, { "vulnerability": "VCID-5y32-wcg3-sybr" }, { "vulnerability": "VCID-8qu7-pwaj-yqhq" }, { "vulnerability": "VCID-aj4u-27vr-9ugt" }, { "vulnerability": "VCID-atus-ryef-17h1" }, { "vulnerability": "VCID-bmyw-jdh2-17d3" }, { "vulnerability": "VCID-bp2p-twzt-wkap" }, { "vulnerability": "VCID-ckj4-4db9-6bgy" }, { "vulnerability": "VCID-d8gx-nfxh-wbem" }, { "vulnerability": "VCID-faqh-hsss-93bc" }, { "vulnerability": "VCID-j5r1-q5tv-xqcp" }, { "vulnerability": "VCID-jvav-61fn-huav" }, { "vulnerability": "VCID-kaw2-gdzq-4qdm" }, { "vulnerability": "VCID-kgfq-eyta-wbgz" }, { "vulnerability": "VCID-nxt8-4r1p-kuab" }, { "vulnerability": "VCID-pj23-hhvw-6ucr" }, { "vulnerability": "VCID-ps1g-6hy7-87dr" }, { "vulnerability": "VCID-qafr-qreg-bbby" }, { "vulnerability": "VCID-rhy7-r84u-gbfc" }, { "vulnerability": "VCID-saux-awas-mfau" }, { "vulnerability": "VCID-sufe-qfsf-pbaq" }, { "vulnerability": "VCID-t8aa-rv68-fkg5" }, { "vulnerability": "VCID-t9kh-3weu-qugs" }, { "vulnerability": "VCID-um53-bb17-93fp" }, { "vulnerability": "VCID-vb2q-wweb-37gz" }, { "vulnerability": "VCID-wmmz-e7c5-1ye1" }, { "vulnerability": "VCID-xac7-5qrj-r3gu" }, { "vulnerability": "VCID-xd6e-12jd-pufb" }, { "vulnerability": "VCID-yvfg-1nhp-qqg8" }, { "vulnerability": "VCID-zz8m-9k7f-ckb6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.2.9-10%252Blenny12" }, { "url": "http://public2.vulnerablecode.io/api/packages/4551?format=api", "purl": "pkg:deb/debian/apache2@2.2.16-6%2Bsqueeze12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1xb5-reys-d7fb" }, { "vulnerability": "VCID-2phf-6893-rugx" }, { "vulnerability": "VCID-2pj8-zfdd-tufx" }, { "vulnerability": "VCID-3cam-1afg-9bdv" }, { "vulnerability": "VCID-3xa7-ar49-fucn" }, { "vulnerability": "VCID-4yze-nb6e-8yav" }, { "vulnerability": "VCID-52q8-y1bq-nqe2" }, { "vulnerability": "VCID-5qj8-vuec-h3fg" }, { "vulnerability": "VCID-5y32-wcg3-sybr" }, { "vulnerability": "VCID-8qu7-pwaj-yqhq" }, { "vulnerability": "VCID-aj4u-27vr-9ugt" }, { "vulnerability": "VCID-bmyw-jdh2-17d3" }, { "vulnerability": "VCID-bp2p-twzt-wkap" }, { "vulnerability": "VCID-ckj4-4db9-6bgy" }, { "vulnerability": "VCID-d8gx-nfxh-wbem" }, { "vulnerability": "VCID-faqh-hsss-93bc" }, { "vulnerability": "VCID-j5r1-q5tv-xqcp" }, { "vulnerability": "VCID-jvav-61fn-huav" }, { "vulnerability": "VCID-kaw2-gdzq-4qdm" }, { "vulnerability": "VCID-kgfq-eyta-wbgz" }, { "vulnerability": "VCID-nxt8-4r1p-kuab" }, { "vulnerability": "VCID-pj23-hhvw-6ucr" }, { "vulnerability": "VCID-ps1g-6hy7-87dr" }, { "vulnerability": "VCID-qafr-qreg-bbby" }, { "vulnerability": "VCID-rhy7-r84u-gbfc" }, { "vulnerability": "VCID-saux-awas-mfau" }, { "vulnerability": "VCID-sufe-qfsf-pbaq" }, { "vulnerability": "VCID-t8aa-rv68-fkg5" }, { "vulnerability": "VCID-t9kh-3weu-qugs" }, { "vulnerability": "VCID-um53-bb17-93fp" }, { "vulnerability": "VCID-vb2q-wweb-37gz" }, { "vulnerability": "VCID-wmmz-e7c5-1ye1" }, { "vulnerability": "VCID-xac7-5qrj-r3gu" }, { "vulnerability": "VCID-xd6e-12jd-pufb" }, { "vulnerability": "VCID-yvfg-1nhp-qqg8" }, { "vulnerability": "VCID-zz8m-9k7f-ckb6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.2.16-6%252Bsqueeze12" }, { "url": "http://public2.vulnerablecode.io/api/packages/4552?format=api", "purl": "pkg:deb/debian/apache2@2.2.16-6%2Bsqueeze15", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1xb5-reys-d7fb" }, { "vulnerability": "VCID-2phf-6893-rugx" }, { "vulnerability": "VCID-2pj8-zfdd-tufx" }, { "vulnerability": "VCID-3cam-1afg-9bdv" }, { "vulnerability": "VCID-3xa7-ar49-fucn" }, { "vulnerability": "VCID-4yze-nb6e-8yav" }, { "vulnerability": "VCID-52q8-y1bq-nqe2" }, { "vulnerability": "VCID-5qj8-vuec-h3fg" }, { "vulnerability": "VCID-5y32-wcg3-sybr" }, { "vulnerability": "VCID-8qu7-pwaj-yqhq" }, { "vulnerability": "VCID-aj4u-27vr-9ugt" }, { "vulnerability": "VCID-bmyw-jdh2-17d3" }, { "vulnerability": "VCID-bp2p-twzt-wkap" }, { "vulnerability": "VCID-ckj4-4db9-6bgy" }, { "vulnerability": "VCID-d8gx-nfxh-wbem" }, { "vulnerability": "VCID-faqh-hsss-93bc" }, { "vulnerability": "VCID-j5r1-q5tv-xqcp" }, { "vulnerability": "VCID-jvav-61fn-huav" }, { "vulnerability": "VCID-kaw2-gdzq-4qdm" }, { "vulnerability": "VCID-kgfq-eyta-wbgz" }, { "vulnerability": "VCID-nxt8-4r1p-kuab" }, { "vulnerability": "VCID-pj23-hhvw-6ucr" }, { "vulnerability": "VCID-ps1g-6hy7-87dr" }, { "vulnerability": "VCID-qafr-qreg-bbby" }, { "vulnerability": "VCID-rhy7-r84u-gbfc" }, { "vulnerability": "VCID-saux-awas-mfau" }, { "vulnerability": "VCID-sufe-qfsf-pbaq" }, { "vulnerability": "VCID-t8aa-rv68-fkg5" }, { "vulnerability": "VCID-t9kh-3weu-qugs" }, { "vulnerability": "VCID-um53-bb17-93fp" }, { "vulnerability": "VCID-vb2q-wweb-37gz" }, { "vulnerability": "VCID-wmmz-e7c5-1ye1" }, { "vulnerability": "VCID-xac7-5qrj-r3gu" }, { "vulnerability": "VCID-xd6e-12jd-pufb" }, { "vulnerability": "VCID-yvfg-1nhp-qqg8" }, { "vulnerability": "VCID-zz8m-9k7f-ckb6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.2.16-6%252Bsqueeze15" }, { "url": "http://public2.vulnerablecode.io/api/packages/4553?format=api", "purl": "pkg:deb/debian/apache2@2.2.22-13%2Bdeb7u6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2phf-6893-rugx" }, { "vulnerability": "VCID-2pj8-zfdd-tufx" }, { "vulnerability": "VCID-3cam-1afg-9bdv" }, { "vulnerability": "VCID-3xa7-ar49-fucn" }, { "vulnerability": "VCID-4yze-nb6e-8yav" }, { "vulnerability": "VCID-52q8-y1bq-nqe2" }, { "vulnerability": "VCID-5qj8-vuec-h3fg" }, { "vulnerability": "VCID-5y32-wcg3-sybr" }, { "vulnerability": "VCID-aj4u-27vr-9ugt" }, { "vulnerability": "VCID-bmyw-jdh2-17d3" }, { "vulnerability": "VCID-bp2p-twzt-wkap" }, { "vulnerability": "VCID-ckj4-4db9-6bgy" }, { "vulnerability": "VCID-d8gx-nfxh-wbem" }, { "vulnerability": "VCID-faqh-hsss-93bc" }, { "vulnerability": "VCID-j5r1-q5tv-xqcp" }, { "vulnerability": "VCID-jvav-61fn-huav" }, { "vulnerability": "VCID-kaw2-gdzq-4qdm" }, { "vulnerability": "VCID-kgfq-eyta-wbgz" }, { "vulnerability": "VCID-nxt8-4r1p-kuab" }, { "vulnerability": "VCID-pj23-hhvw-6ucr" }, { "vulnerability": "VCID-ps1g-6hy7-87dr" }, { "vulnerability": "VCID-qafr-qreg-bbby" }, { "vulnerability": "VCID-saux-awas-mfau" }, { "vulnerability": "VCID-sufe-qfsf-pbaq" }, { "vulnerability": "VCID-t8aa-rv68-fkg5" }, { "vulnerability": "VCID-t9kh-3weu-qugs" }, { "vulnerability": "VCID-um53-bb17-93fp" }, { "vulnerability": "VCID-wmmz-e7c5-1ye1" }, { "vulnerability": "VCID-xac7-5qrj-r3gu" }, { "vulnerability": "VCID-yvfg-1nhp-qqg8" }, { "vulnerability": "VCID-zz8m-9k7f-ckb6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.2.22-13%252Bdeb7u6" }, { "url": "http://public2.vulnerablecode.io/api/packages/4554?format=api", "purl": "pkg:deb/debian/apache2@2.4.10-10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2phf-6893-rugx" }, { "vulnerability": "VCID-2pj8-zfdd-tufx" }, { "vulnerability": "VCID-3cam-1afg-9bdv" }, { "vulnerability": "VCID-3xa7-ar49-fucn" }, { "vulnerability": "VCID-4yze-nb6e-8yav" }, { "vulnerability": "VCID-52q8-y1bq-nqe2" }, { "vulnerability": "VCID-5qj8-vuec-h3fg" }, { "vulnerability": "VCID-5y32-wcg3-sybr" }, { "vulnerability": "VCID-aj4u-27vr-9ugt" }, { "vulnerability": "VCID-bmyw-jdh2-17d3" }, { "vulnerability": "VCID-bp2p-twzt-wkap" }, { "vulnerability": "VCID-ckj4-4db9-6bgy" }, { "vulnerability": "VCID-d8gx-nfxh-wbem" }, { "vulnerability": "VCID-faqh-hsss-93bc" }, { "vulnerability": "VCID-j5r1-q5tv-xqcp" }, { "vulnerability": "VCID-jvav-61fn-huav" }, { "vulnerability": "VCID-kaw2-gdzq-4qdm" }, { "vulnerability": "VCID-kgfq-eyta-wbgz" }, { "vulnerability": "VCID-nxt8-4r1p-kuab" }, { "vulnerability": "VCID-pj23-hhvw-6ucr" }, { "vulnerability": "VCID-ps1g-6hy7-87dr" }, { "vulnerability": "VCID-qafr-qreg-bbby" }, { "vulnerability": "VCID-saux-awas-mfau" }, { "vulnerability": "VCID-sufe-qfsf-pbaq" }, { "vulnerability": "VCID-t8aa-rv68-fkg5" }, { "vulnerability": "VCID-t9kh-3weu-qugs" }, { "vulnerability": "VCID-um53-bb17-93fp" }, { "vulnerability": "VCID-wmmz-e7c5-1ye1" }, { "vulnerability": "VCID-xac7-5qrj-r3gu" }, { "vulnerability": "VCID-yvfg-1nhp-qqg8" }, { "vulnerability": "VCID-zz8m-9k7f-ckb6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.10-10" }, { "url": "http://public2.vulnerablecode.io/api/packages/4555?format=api", "purl": "pkg:deb/debian/apache2@2.4.10-10%2Bdeb8u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2phf-6893-rugx" }, { "vulnerability": "VCID-2pj8-zfdd-tufx" }, { "vulnerability": "VCID-3cam-1afg-9bdv" }, { "vulnerability": "VCID-3xa7-ar49-fucn" }, { "vulnerability": "VCID-4yze-nb6e-8yav" }, { "vulnerability": "VCID-52q8-y1bq-nqe2" }, { "vulnerability": "VCID-5y32-wcg3-sybr" }, { "vulnerability": "VCID-bmyw-jdh2-17d3" }, { "vulnerability": "VCID-ckj4-4db9-6bgy" }, { "vulnerability": "VCID-d8gx-nfxh-wbem" }, { "vulnerability": "VCID-faqh-hsss-93bc" }, { "vulnerability": "VCID-j5r1-q5tv-xqcp" }, { "vulnerability": "VCID-jvav-61fn-huav" }, { "vulnerability": "VCID-kaw2-gdzq-4qdm" }, { "vulnerability": "VCID-kgfq-eyta-wbgz" }, { "vulnerability": "VCID-nxt8-4r1p-kuab" }, { "vulnerability": "VCID-pj23-hhvw-6ucr" }, { "vulnerability": "VCID-ps1g-6hy7-87dr" }, { "vulnerability": "VCID-qafr-qreg-bbby" }, { "vulnerability": "VCID-saux-awas-mfau" }, { "vulnerability": "VCID-sufe-qfsf-pbaq" }, { "vulnerability": "VCID-t8aa-rv68-fkg5" }, { "vulnerability": "VCID-t9kh-3weu-qugs" }, { "vulnerability": "VCID-um53-bb17-93fp" }, { "vulnerability": "VCID-wmmz-e7c5-1ye1" }, { "vulnerability": "VCID-xac7-5qrj-r3gu" }, { "vulnerability": "VCID-yvfg-1nhp-qqg8" }, { "vulnerability": "VCID-zz8m-9k7f-ckb6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.10-10%252Bdeb8u12" }, { "url": "http://public2.vulnerablecode.io/api/packages/4824?format=api", "purl": "pkg:deb/debian/apache2@2.4.25-3%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2phf-6893-rugx" }, { "vulnerability": "VCID-2pj8-zfdd-tufx" }, { "vulnerability": "VCID-3cam-1afg-9bdv" }, { "vulnerability": "VCID-3xa7-ar49-fucn" }, { "vulnerability": "VCID-4yze-nb6e-8yav" }, { "vulnerability": "VCID-52q8-y1bq-nqe2" }, { "vulnerability": "VCID-5y32-wcg3-sybr" }, { "vulnerability": "VCID-bmyw-jdh2-17d3" }, { "vulnerability": "VCID-ckj4-4db9-6bgy" }, { "vulnerability": "VCID-d8gx-nfxh-wbem" }, { "vulnerability": "VCID-faqh-hsss-93bc" }, { "vulnerability": "VCID-j5r1-q5tv-xqcp" }, { "vulnerability": "VCID-jvav-61fn-huav" }, { "vulnerability": "VCID-kaw2-gdzq-4qdm" }, { "vulnerability": "VCID-kgfq-eyta-wbgz" }, { "vulnerability": "VCID-nxt8-4r1p-kuab" }, { "vulnerability": "VCID-pj23-hhvw-6ucr" }, { "vulnerability": "VCID-ps1g-6hy7-87dr" }, { "vulnerability": "VCID-qafr-qreg-bbby" }, { "vulnerability": "VCID-saux-awas-mfau" }, { "vulnerability": "VCID-sufe-qfsf-pbaq" }, { "vulnerability": "VCID-t8aa-rv68-fkg5" }, { "vulnerability": "VCID-t9kh-3weu-qugs" }, { "vulnerability": "VCID-um53-bb17-93fp" }, { "vulnerability": "VCID-wmmz-e7c5-1ye1" }, { "vulnerability": "VCID-xac7-5qrj-r3gu" }, { "vulnerability": "VCID-yvfg-1nhp-qqg8" }, { "vulnerability": "VCID-zz8m-9k7f-ckb6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.25-3%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/136039?format=api", "purl": "pkg:rpm/redhat/httpd@2.4.6-40.el7_2?arch=7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-jvav-61fn-huav" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/httpd@2.4.6-40.el7_2%3Farch=7" }, { "url": "http://public2.vulnerablecode.io/api/packages/136031?format=api", "purl": "pkg:rpm/redhat/httpd@2.4.6-45.el7_3?arch=6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-jvav-61fn-huav" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/httpd@2.4.6-45.el7_3%3Farch=6" }, { "url": "http://public2.vulnerablecode.io/api/packages/136028?format=api", "purl": "pkg:rpm/redhat/httpd@2.4.6-67.el7_4?arch=7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-jvav-61fn-huav" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/httpd@2.4.6-67.el7_4%3Farch=7" }, { "url": "http://public2.vulnerablecode.io/api/packages/136026?format=api", "purl": "pkg:rpm/redhat/httpd@2.4.6-89.el7_6?arch=2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-jvav-61fn-huav" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/httpd@2.4.6-89.el7_6%3Farch=2" }, { "url": "http://public2.vulnerablecode.io/api/packages/136035?format=api", "purl": "pkg:rpm/redhat/httpd@2.4.6-90.el7_7?arch=1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-jvav-61fn-huav" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/httpd@2.4.6-90.el7_7%3Farch=1" }, { "url": "http://public2.vulnerablecode.io/api/packages/136027?format=api", "purl": "pkg:rpm/redhat/httpd@2.4.6-97.el7_9?arch=1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-jvav-61fn-huav" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/httpd@2.4.6-97.el7_9%3Farch=1" }, { "url": "http://public2.vulnerablecode.io/api/packages/136043?format=api", "purl": "pkg:rpm/redhat/httpd24-httpd@2.4.34-22.el7?arch=1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-jvav-61fn-huav" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/httpd24-httpd@2.4.34-22.el7%3Farch=1" }, { "url": "http://public2.vulnerablecode.io/api/packages/136041?format=api", "purl": "pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.37-76?arch=el8jbcs", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-jvav-61fn-huav" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.37-76%3Farch=el8jbcs" }, { "url": "http://public2.vulnerablecode.io/api/packages/136030?format=api", "purl": "pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.37-76.jbcs?arch=el7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-jvav-61fn-huav" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.37-76.jbcs%3Farch=el7" }, { "url": "http://public2.vulnerablecode.io/api/packages/136033?format=api", "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.16-7.Final_redhat_2?arch=el8jbcs", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-jvav-61fn-huav" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.16-7.Final_redhat_2%3Farch=el8jbcs" }, { "url": "http://public2.vulnerablecode.io/api/packages/136034?format=api", "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.16-7.Final_redhat_2.jbcs?arch=el7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-jvav-61fn-huav" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.16-7.Final_redhat_2.jbcs%3Farch=el7" }, { "url": "http://public2.vulnerablecode.io/api/packages/136029?format=api", "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_http2@1.15.7-19?arch=el8jbcs", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-jvav-61fn-huav" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbcs-httpd24-mod_http2@1.15.7-19%3Farch=el8jbcs" }, { "url": "http://public2.vulnerablecode.io/api/packages/136042?format=api", "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_http2@1.15.7-19.jbcs?arch=el7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-jvav-61fn-huav" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbcs-httpd24-mod_http2@1.15.7-19.jbcs%3Farch=el7" }, { "url": "http://public2.vulnerablecode.io/api/packages/136032?format=api", "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk@1.2.48-18.redhat_1?arch=el8jbcs", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-jvav-61fn-huav" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbcs-httpd24-mod_jk@1.2.48-18.redhat_1%3Farch=el8jbcs" }, { "url": "http://public2.vulnerablecode.io/api/packages/136036?format=api", "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk@1.2.48-18.redhat_1.jbcs?arch=el7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-jvav-61fn-huav" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbcs-httpd24-mod_jk@1.2.48-18.redhat_1.jbcs%3Farch=el7" }, { "url": "http://public2.vulnerablecode.io/api/packages/136037?format=api", "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_md@1:2.0.8-38?arch=el8jbcs", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-jvav-61fn-huav" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbcs-httpd24-mod_md@1:2.0.8-38%3Farch=el8jbcs" }, { "url": "http://public2.vulnerablecode.io/api/packages/136038?format=api", "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_md@1:2.0.8-38.jbcs?arch=el7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-jvav-61fn-huav" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbcs-httpd24-mod_md@1:2.0.8-38.jbcs%3Farch=el7" }, { "url": "http://public2.vulnerablecode.io/api/packages/136040?format=api", "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_security@2.9.2-65.GA?arch=el8jbcs", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-jvav-61fn-huav" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbcs-httpd24-mod_security@2.9.2-65.GA%3Farch=el8jbcs" }, { "url": "http://public2.vulnerablecode.io/api/packages/136025?format=api", "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_security@2.9.2-65.GA.jbcs?arch=el7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-jvav-61fn-huav" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbcs-httpd24-mod_security@2.9.2-65.GA.jbcs%3Farch=el7" } ], "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-40438.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-40438.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-40438", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.94432", "scoring_system": "epss", "scoring_elements": "0.99987", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-40438" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-34798", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-34798" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-36160", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-36160" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-39275", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-39275" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-40438", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-40438" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2005117", "reference_id": "2005117", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2005117" }, { "reference_url": "https://security.archlinux.org/AVG-2289", "reference_id": "AVG-2289", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2289" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2021-40438.json", "reference_id": "CVE-2021-40438", "reference_type": "", "scores": [ { "value": "important", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2021-40438.json" }, { "reference_url": "https://security.gentoo.org/glsa/202208-20", "reference_id": "GLSA-202208-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-20" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3745", "reference_id": "RHSA-2021:3745", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3745" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3746", "reference_id": "RHSA-2021:3746", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3746" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3754", "reference_id": "RHSA-2021:3754", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3754" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3816", "reference_id": "RHSA-2021:3816", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3816" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3836", "reference_id": "RHSA-2021:3836", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3836" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3837", "reference_id": "RHSA-2021:3837", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3837" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3856", "reference_id": "RHSA-2021:3856", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3856" } ], "weaknesses": [ { "cwe_id": 918, "name": "Server-Side Request Forgery (SSRF)", "description": "The web server receives a URL or similar request from an upstream component and retrieves the contents of this URL, but it does not sufficiently ensure that the request is being sent to the expected destination." } ], "exploits": [ { "date_added": "2021-12-01", "description": "A crafted request uri-path can cause mod_proxy to forward the request to an origin server choosen by the remote user. This issue affects Apache HTTP Server 2.4.48 and earlier.", "required_action": "Apply updates per vendor instructions.", "due_date": "2021-12-15", "notes": "https://nvd.nist.gov/vuln/detail/CVE-2021-40438", "known_ransomware_campaign_use": false, "source_date_published": null, "exploit_type": null, "platform": null, "source_date_updated": null, "data_source": "KEV", "source_url": null } ], "severity_range_score": "7.0 - 9.0", "exploitability": "0.5", "weighted_severity": "8.1", "risk_score": 4.0, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jvav-61fn-huav" }