Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/81198?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81198?format=api", "vulnerability_id": "VCID-rm5h-82ek-73dn", "summary": "unbound: incomplete fix for CVE-2020-12662 in RHEL7", "aliases": [ { "alias": "CVE-2020-10772" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/941769?format=api", "purl": "pkg:deb/debian/unbound@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/unbound@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/941758?format=api", "purl": "pkg:deb/debian/unbound@1.13.1-1%2Bdeb11u2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/unbound@1.13.1-1%252Bdeb11u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/941756?format=api", "purl": "pkg:deb/debian/unbound@1.17.1-2%2Bdeb12u4?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/unbound@1.17.1-2%252Bdeb12u4%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/941760?format=api", "purl": "pkg:deb/debian/unbound@1.22.0-2%2Bdeb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/unbound@1.22.0-2%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/941759?format=api", "purl": "pkg:deb/debian/unbound@1.24.2-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/unbound@1.24.2-1%3Fdistro=trixie" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/102919?format=api", "purl": "pkg:rpm/redhat/unbound@1.6.6-5?arch=el7_8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-rm5h-82ek-73dn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/unbound@1.6.6-5%3Farch=el7_8" } ], "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-10772.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-10772.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-10772", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00303", "scoring_system": "epss", "scoring_elements": "0.53508", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00303", "scoring_system": "epss", "scoring_elements": "0.53532", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00303", "scoring_system": "epss", "scoring_elements": "0.53558", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00303", "scoring_system": "epss", "scoring_elements": "0.53527", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00303", "scoring_system": "epss", "scoring_elements": "0.53577", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00303", "scoring_system": "epss", "scoring_elements": "0.53573", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00303", "scoring_system": "epss", "scoring_elements": "0.53622", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00303", "scoring_system": "epss", "scoring_elements": "0.53605", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00303", "scoring_system": "epss", "scoring_elements": "0.53588", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00303", "scoring_system": "epss", "scoring_elements": "0.53625", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00303", "scoring_system": "epss", "scoring_elements": "0.5363", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00303", "scoring_system": "epss", "scoring_elements": "0.53614", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00303", "scoring_system": "epss", "scoring_elements": "0.53576", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-10772" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1846026", "reference_id": "1846026", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1846026" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2642", "reference_id": "RHSA-2020:2642", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2642" } ], "weaknesses": [ { "cwe_id": 406, "name": "Insufficient Control of Network Message Volume (Network Amplification)", "description": "The product does not sufficiently monitor or control transmitted network traffic volume, so that an actor can cause the product to transmit more traffic than should be allowed for that actor." }, { "cwe_id": 400, "name": "Uncontrolled Resource Consumption", "description": "The product does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources." } ], "exploits": [], "severity_range_score": "7.5 - 7.5", "exploitability": "0.5", "weighted_severity": "6.8", "risk_score": 3.4, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rm5h-82ek-73dn" }