Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/75865?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/75865?format=api", "vulnerability_id": "VCID-f9d1-vday-wqba", "summary": "A flaw was found in InstructLab. A local attacker could exploit a path traversal vulnerability in the chat session handler by manipulating the `logs_dir` parameter. This allows the attacker to create new directories and write files to arbitrary locations on the system, potentially leading to unauthorized data modification or disclosure.", "aliases": [ { "alias": "CVE-2026-6855" }, { "alias": "GHSA-pqmg-c2j8-fq92" } ], "fixed_packages": [], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1023663?format=api", "purl": "pkg:pypi/instructlab@0.14.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.14.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023664?format=api", "purl": "pkg:pypi/instructlab@0.15.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.15.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023665?format=api", "purl": "pkg:pypi/instructlab@0.16.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.16.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023666?format=api", "purl": "pkg:pypi/instructlab@0.16.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.16.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023667?format=api", "purl": "pkg:pypi/instructlab@0.17.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.17.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023668?format=api", "purl": "pkg:pypi/instructlab@0.17.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.17.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023669?format=api", "purl": "pkg:pypi/instructlab@0.17.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.17.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023670?format=api", "purl": "pkg:pypi/instructlab@0.18.0a1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.18.0a1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023671?format=api", "purl": "pkg:pypi/instructlab@0.18.0a2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.18.0a2" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023672?format=api", "purl": "pkg:pypi/instructlab@0.18.0a3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.18.0a3" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023673?format=api", "purl": "pkg:pypi/instructlab@0.18.0a4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.18.0a4" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023674?format=api", "purl": "pkg:pypi/instructlab@0.18.0a5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.18.0a5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023675?format=api", "purl": "pkg:pypi/instructlab@0.18.0a6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.18.0a6" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023676?format=api", "purl": "pkg:pypi/instructlab@0.18.0a7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.18.0a7" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023677?format=api", "purl": "pkg:pypi/instructlab@0.18.0b1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.18.0b1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023678?format=api", "purl": "pkg:pypi/instructlab@0.18.0b2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.18.0b2" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023679?format=api", "purl": "pkg:pypi/instructlab@0.18.0b3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.18.0b3" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023680?format=api", "purl": "pkg:pypi/instructlab@0.18.0b4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.18.0b4" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023681?format=api", "purl": "pkg:pypi/instructlab@0.18.0b5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.18.0b5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023682?format=api", "purl": "pkg:pypi/instructlab@0.18.0b6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.18.0b6" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023683?format=api", "purl": "pkg:pypi/instructlab@0.18.0rc1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.18.0rc1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023684?format=api", "purl": "pkg:pypi/instructlab@0.18.0rc2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.18.0rc2" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023685?format=api", "purl": "pkg:pypi/instructlab@0.18.0rc3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.18.0rc3" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023686?format=api", "purl": "pkg:pypi/instructlab@0.18.0rc4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.18.0rc4" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023687?format=api", "purl": "pkg:pypi/instructlab@0.18.0rc5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.18.0rc5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023688?format=api", "purl": "pkg:pypi/instructlab@0.18.0rc6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.18.0rc6" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023689?format=api", "purl": "pkg:pypi/instructlab@0.18.0rc7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.18.0rc7" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023690?format=api", "purl": "pkg:pypi/instructlab@0.18.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.18.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023691?format=api", "purl": "pkg:pypi/instructlab@0.18.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.18.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023692?format=api", "purl": "pkg:pypi/instructlab@0.18.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.18.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023693?format=api", "purl": "pkg:pypi/instructlab@0.18.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.18.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023694?format=api", "purl": "pkg:pypi/instructlab@0.18.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.18.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023695?format=api", "purl": "pkg:pypi/instructlab@0.19.0a1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.19.0a1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023696?format=api", "purl": "pkg:pypi/instructlab@0.19.0b1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.19.0b1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023697?format=api", "purl": "pkg:pypi/instructlab@0.19.0rc1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.19.0rc1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023698?format=api", "purl": "pkg:pypi/instructlab@0.19.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.19.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023699?format=api", "purl": "pkg:pypi/instructlab@0.19.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.19.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023700?format=api", "purl": "pkg:pypi/instructlab@0.19.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.19.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023701?format=api", "purl": "pkg:pypi/instructlab@0.19.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.19.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023702?format=api", "purl": "pkg:pypi/instructlab@0.19.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.19.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023703?format=api", "purl": "pkg:pypi/instructlab@0.19.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.19.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023704?format=api", "purl": "pkg:pypi/instructlab@0.20.0a1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.20.0a1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023705?format=api", "purl": "pkg:pypi/instructlab@0.20.0a2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.20.0a2" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023706?format=api", "purl": "pkg:pypi/instructlab@0.20.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.20.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023707?format=api", "purl": "pkg:pypi/instructlab@0.20.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.20.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023708?format=api", "purl": "pkg:pypi/instructlab@0.21.0a0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.21.0a0" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023709?format=api", "purl": "pkg:pypi/instructlab@0.21.0a1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.21.0a1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023710?format=api", "purl": "pkg:pypi/instructlab@0.21.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.21.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023711?format=api", "purl": "pkg:pypi/instructlab@0.21.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.21.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023712?format=api", "purl": "pkg:pypi/instructlab@0.21.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.21.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023713?format=api", "purl": "pkg:pypi/instructlab@0.22.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.22.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023714?format=api", "purl": "pkg:pypi/instructlab@0.22.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.22.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023715?format=api", "purl": "pkg:pypi/instructlab@0.22.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.22.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023716?format=api", "purl": "pkg:pypi/instructlab@0.23.0a0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.23.0a0" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023717?format=api", "purl": "pkg:pypi/instructlab@0.23.0rc0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.23.0rc0" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023718?format=api", "purl": "pkg:pypi/instructlab@0.23.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.23.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023719?format=api", "purl": "pkg:pypi/instructlab@0.23.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.23.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023720?format=api", "purl": "pkg:pypi/instructlab@0.23.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.23.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023721?format=api", "purl": "pkg:pypi/instructlab@0.23.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.23.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023722?format=api", "purl": "pkg:pypi/instructlab@0.23.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.23.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023723?format=api", "purl": "pkg:pypi/instructlab@0.23.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.23.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023724?format=api", "purl": "pkg:pypi/instructlab@0.24.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.24.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023725?format=api", "purl": "pkg:pypi/instructlab@0.24.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.24.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023726?format=api", "purl": "pkg:pypi/instructlab@0.24.2a0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.24.2a0" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023727?format=api", "purl": "pkg:pypi/instructlab@0.24.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.24.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023728?format=api", "purl": "pkg:pypi/instructlab@0.24.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.24.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023729?format=api", "purl": "pkg:pypi/instructlab@0.25", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.25" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023730?format=api", "purl": "pkg:pypi/instructlab@0.26.0a1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.26.0a1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023731?format=api", "purl": "pkg:pypi/instructlab@0.26.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.26.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/1023732?format=api", "purl": "pkg:pypi/instructlab@0.26.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9wsw-b1b6-tkcc" }, { "vulnerability": "VCID-f9d1-vday-wqba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/instructlab@0.26.1" } ], "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6855.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6855.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6855", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03661", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03645", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03667", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03653", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6855" }, { "reference_url": "https://github.com/instructlab/instructlab", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/instructlab/instructlab" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-6855", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-6855" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux_ai:3", "reference_id": "cpe:/a:redhat:enterprise_linux_ai:3", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux_ai:3" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2026-6855", "reference_id": "CVE-2026-6855", "reference_type": "", "scores": [ { "value": "7.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-22T18:34:55Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2026-6855" }, { "reference_url": "https://github.com/advisories/GHSA-pqmg-c2j8-fq92", "reference_id": "GHSA-pqmg-c2j8-fq92", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-pqmg-c2j8-fq92" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460013", "reference_id": "show_bug.cgi?id=2460013", "reference_type": "", "scores": [ { "value": "7.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-22T18:34:55Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460013" } ], "weaknesses": [ { "cwe_id": 22, "name": "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')", "description": "The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory." }, { "cwe_id": 937, "name": "OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013." }, { "cwe_id": 1035, "name": "OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017." } ], "exploits": [], "severity_range_score": "7.0 - 8.9", "exploitability": "0.5", "weighted_severity": "8.0", "risk_score": 4.0, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-f9d1-vday-wqba" }