Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/69381?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/69381?format=api", "vulnerability_id": "VCID-5cvy-3su4-5bgq", "summary": "", "aliases": [ { "alias": "CVE-2011-0657" } ], "fixed_packages": [], "affected_packages": [], "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2011-0657", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.46929", "scoring_system": "epss", "scoring_elements": "0.97725", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2011-0657" }, { "reference_url": "http://www.vupen.com/english/advisories/2011/0948", "reference_id": "0948", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-10-17T19:58:57Z/" } ], "url": "http://www.vupen.com/english/advisories/2011/0948" }, { "reference_url": "http://secunia.com/advisories/44161", "reference_id": "44161", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-10-17T19:58:57Z/" } ], "url": "http://secunia.com/advisories/44161" }, { "reference_url": "http://www.securityfocus.com/bid/47242", "reference_id": "47242", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-10-17T19:58:57Z/" } ], "url": "http://www.securityfocus.com/bid/47242" }, { "reference_url": "http://osvdb.org/71780", "reference_id": "71780", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-10-17T19:58:57Z/" } ], "url": "http://osvdb.org/71780" }, { "reference_url": "http://www.securitytracker.com/id?1025332", "reference_id": "id?1025332", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-10-17T19:58:57Z/" } ], "url": "http://www.securitytracker.com/id?1025332" }, { "reference_url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-030", "reference_id": "ms11-030", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-10-17T19:58:57Z/" } ], "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-030" }, { "reference_url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11902", "reference_id": "oval%3Aorg.mitre.oval%3Adef%3A11902", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-10-17T19:58:57Z/" } ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11902" }, { "reference_url": "http://www.us-cert.gov/cas/techalerts/TA11-102A.html", "reference_id": "TA11-102A.html", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-10-17T19:58:57Z/" } ], "url": "http://www.us-cert.gov/cas/techalerts/TA11-102A.html" } ], "weaknesses": [], "exploits": [ { "date_added": null, "description": "This module exploits a buffer underrun vulnerability in Microsoft's DNSAPI.dll\n as distributed with Windows Vista and later without KB2509553. By sending a\n specially crafted LLMNR query, containing a leading '.' character, an attacker\n can trigger stack exhaustion or potentially cause stack memory corruption.\n\n Although this vulnerability may lead to code execution, it has not been proven\n to be possible at the time of this writing.\n\n NOTE: In some circumstances, a '.' may be found before the top of the stack is\n reached. In these cases, this module may not be able to cause a crash.", "required_action": null, "due_date": null, "notes": "Stability:\n - crash-service-down\nSideEffects: []\nReliability: []\n", "known_ransomware_campaign_use": false, "source_date_published": "2011-04-12", "exploit_type": null, "platform": "", "source_date_updated": null, "data_source": "Metasploit", "source_url": "https://github.com/rapid7/metasploit-framework/tree/master/modules/auxiliary/dos/windows/llmnr/ms11_030_dnsapi.rb" } ], "severity_range_score": "9.8 - 9.8", "exploitability": null, "weighted_severity": null, "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5cvy-3su4-5bgq" }