Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/83528?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/83528?format=api", "vulnerability_id": "VCID-8x3z-sc1j-xkfq", "summary": "mysql: Group Replication GCS unspecified vulnerability (CPU Apr 2018)", "aliases": [ { "alias": "CVE-2018-2776" } ], "fixed_packages": [], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/105810?format=api", "purl": "pkg:rpm/redhat/rh-mysql57-mysql@5.7.24-1?arch=el7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15r5-nr1z-8bdv" }, { "vulnerability": "VCID-1nvb-xd5n-gkh8" }, { "vulnerability": "VCID-23h6-7bez-4bft" }, { "vulnerability": "VCID-23nu-t3h3-pyf8" }, { "vulnerability": "VCID-2b6g-wn3n-afg7" }, { "vulnerability": "VCID-2maq-jmhp-ebag" }, { "vulnerability": "VCID-2t9k-k2d3-z7fd" }, { "vulnerability": "VCID-2twk-w9tn-eqcu" }, { "vulnerability": "VCID-2uxe-ep8b-y7b9" }, { "vulnerability": "VCID-2yqz-qtv5-47hh" }, { "vulnerability": "VCID-3nbc-83rh-f7e6" }, { "vulnerability": "VCID-4f4z-1nb6-jfcc" }, { "vulnerability": "VCID-4pa2-q79d-mqf1" }, { "vulnerability": "VCID-5dmb-u13u-3yd4" }, { "vulnerability": "VCID-7tqz-mrng-yfas" }, { "vulnerability": "VCID-84dc-zgcp-eqen" }, { "vulnerability": "VCID-8ce6-1122-k7fc" }, { "vulnerability": "VCID-8wvq-hn5j-ubc2" }, { "vulnerability": "VCID-8x3z-sc1j-xkfq" }, { "vulnerability": "VCID-9hdt-8a2a-tbh2" }, { "vulnerability": "VCID-9r3t-wqvg-4qen" }, { "vulnerability": "VCID-9xaf-ssma-57bg" }, { "vulnerability": "VCID-acja-21he-tqas" }, { "vulnerability": "VCID-b645-3y7g-7bgy" }, { "vulnerability": "VCID-b675-vjj2-2yb6" }, { "vulnerability": "VCID-bchg-2uha-zbb9" }, { "vulnerability": "VCID-c48f-7fnj-8yfv" }, { "vulnerability": "VCID-cu2j-hqyu-skdp" }, { "vulnerability": "VCID-dfbz-5n6w-syd9" }, { "vulnerability": "VCID-fvuq-f6v7-j3bn" }, { "vulnerability": "VCID-gdvw-26ux-7ygu" }, { "vulnerability": "VCID-h3t4-kd8k-cuen" }, { "vulnerability": "VCID-j2wu-2rx7-3yf2" }, { "vulnerability": "VCID-jttf-5mgy-73d7" }, { "vulnerability": "VCID-kfw6-vf1q-8bfz" }, { "vulnerability": "VCID-ks79-8usy-zfbw" }, { "vulnerability": "VCID-m4mk-fw8a-hyb8" }, { "vulnerability": "VCID-mduv-envj-6uap" }, { "vulnerability": "VCID-mgxt-87ak-fuaq" }, { "vulnerability": "VCID-mvfq-1e2q-cucx" }, { "vulnerability": "VCID-n8mq-dbkq-57fc" }, { "vulnerability": "VCID-pbjf-9583-kudq" }, { "vulnerability": "VCID-ppqe-sngx-5fgh" }, { "vulnerability": "VCID-qax4-fpdj-wqhk" }, { "vulnerability": "VCID-qp22-6sda-9fdv" }, { "vulnerability": "VCID-rn8y-91ua-nkf6" }, { "vulnerability": "VCID-s1vz-6nxa-n7cj" }, { "vulnerability": "VCID-s4fx-n659-c3en" }, { "vulnerability": "VCID-s993-j33e-tydt" }, { "vulnerability": "VCID-sy6p-5km4-1kcy" }, { "vulnerability": "VCID-t7f9-akcy-uqgz" }, { "vulnerability": "VCID-tarh-68rn-fqfz" }, { "vulnerability": "VCID-tcv3-rvq7-eqcw" }, { "vulnerability": "VCID-u9aw-t2h8-y7hk" }, { "vulnerability": "VCID-umzj-y9yv-cqfr" }, { "vulnerability": "VCID-ux3x-md4q-4udu" }, { "vulnerability": "VCID-v3jf-a6dy-efdr" }, { "vulnerability": "VCID-wfy8-47px-8kbj" }, { "vulnerability": "VCID-xuhv-wrut-wuez" }, { "vulnerability": "VCID-yhz8-4u65-xqd6" }, { "vulnerability": "VCID-z183-g8nz-4kde" }, { "vulnerability": "VCID-zj4f-6f1c-5yhc" }, { "vulnerability": "VCID-zkvk-538h-w3b9" }, { "vulnerability": "VCID-zuxd-n3wn-s7hg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-mysql57-mysql@5.7.24-1%3Farch=el7" }, { "url": "http://public2.vulnerablecode.io/api/packages/105809?format=api", "purl": "pkg:rpm/redhat/rh-mysql57-mysql@5.7.24-2?arch=el6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15r5-nr1z-8bdv" }, { "vulnerability": "VCID-1nvb-xd5n-gkh8" }, { "vulnerability": "VCID-23h6-7bez-4bft" }, { "vulnerability": "VCID-23nu-t3h3-pyf8" }, { "vulnerability": "VCID-2b6g-wn3n-afg7" }, { "vulnerability": "VCID-2maq-jmhp-ebag" }, { "vulnerability": "VCID-2t9k-k2d3-z7fd" }, { "vulnerability": "VCID-2twk-w9tn-eqcu" }, { "vulnerability": "VCID-2uxe-ep8b-y7b9" }, { "vulnerability": "VCID-2yqz-qtv5-47hh" }, { "vulnerability": "VCID-3nbc-83rh-f7e6" }, { "vulnerability": "VCID-4f4z-1nb6-jfcc" }, { "vulnerability": "VCID-4pa2-q79d-mqf1" }, { "vulnerability": "VCID-5dmb-u13u-3yd4" }, { "vulnerability": "VCID-7tqz-mrng-yfas" }, { "vulnerability": "VCID-84dc-zgcp-eqen" }, { "vulnerability": "VCID-8ce6-1122-k7fc" }, { "vulnerability": "VCID-8wvq-hn5j-ubc2" }, { "vulnerability": "VCID-8x3z-sc1j-xkfq" }, { "vulnerability": "VCID-9hdt-8a2a-tbh2" }, { "vulnerability": "VCID-9r3t-wqvg-4qen" }, { "vulnerability": "VCID-9xaf-ssma-57bg" }, { "vulnerability": "VCID-acja-21he-tqas" }, { "vulnerability": "VCID-b645-3y7g-7bgy" }, { "vulnerability": "VCID-b675-vjj2-2yb6" }, { "vulnerability": "VCID-bchg-2uha-zbb9" }, { "vulnerability": "VCID-c48f-7fnj-8yfv" }, { "vulnerability": "VCID-cu2j-hqyu-skdp" }, { "vulnerability": "VCID-dfbz-5n6w-syd9" }, { "vulnerability": "VCID-fvuq-f6v7-j3bn" }, { "vulnerability": "VCID-gdvw-26ux-7ygu" }, { "vulnerability": "VCID-h3t4-kd8k-cuen" }, { "vulnerability": "VCID-j2wu-2rx7-3yf2" }, { "vulnerability": "VCID-jttf-5mgy-73d7" }, { "vulnerability": "VCID-kfw6-vf1q-8bfz" }, { "vulnerability": "VCID-ks79-8usy-zfbw" }, { "vulnerability": "VCID-m4mk-fw8a-hyb8" }, { "vulnerability": "VCID-mduv-envj-6uap" }, { "vulnerability": "VCID-mgxt-87ak-fuaq" }, { "vulnerability": "VCID-mvfq-1e2q-cucx" }, { "vulnerability": "VCID-n8mq-dbkq-57fc" }, { "vulnerability": "VCID-pbjf-9583-kudq" }, { "vulnerability": "VCID-ppqe-sngx-5fgh" }, { "vulnerability": "VCID-qax4-fpdj-wqhk" }, { "vulnerability": "VCID-qp22-6sda-9fdv" }, { "vulnerability": "VCID-rn8y-91ua-nkf6" }, { "vulnerability": "VCID-s1vz-6nxa-n7cj" }, { "vulnerability": "VCID-s4fx-n659-c3en" }, { "vulnerability": "VCID-s993-j33e-tydt" }, { "vulnerability": "VCID-sy6p-5km4-1kcy" }, { "vulnerability": "VCID-t7f9-akcy-uqgz" }, { "vulnerability": "VCID-tarh-68rn-fqfz" }, { "vulnerability": "VCID-tcv3-rvq7-eqcw" }, { "vulnerability": "VCID-u9aw-t2h8-y7hk" }, { "vulnerability": "VCID-umzj-y9yv-cqfr" }, { "vulnerability": "VCID-ux3x-md4q-4udu" }, { "vulnerability": "VCID-v3jf-a6dy-efdr" }, { "vulnerability": "VCID-wfy8-47px-8kbj" }, { "vulnerability": "VCID-xuhv-wrut-wuez" }, { "vulnerability": "VCID-yhz8-4u65-xqd6" }, { "vulnerability": "VCID-z183-g8nz-4kde" }, { "vulnerability": "VCID-zj4f-6f1c-5yhc" }, { "vulnerability": "VCID-zkvk-538h-w3b9" }, { "vulnerability": "VCID-zuxd-n3wn-s7hg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-mysql57-mysql@5.7.24-2%3Farch=el6" } ], "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-2776.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-2776.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-2776", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0038", "scoring_system": "epss", "scoring_elements": "0.59464", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0038", "scoring_system": "epss", "scoring_elements": "0.59537", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0038", "scoring_system": "epss", "scoring_elements": "0.59391", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0038", "scoring_system": "epss", "scoring_elements": "0.59489", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0038", "scoring_system": "epss", "scoring_elements": "0.59456", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0038", "scoring_system": "epss", "scoring_elements": "0.59506", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0038", "scoring_system": "epss", "scoring_elements": "0.5952", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0038", "scoring_system": "epss", "scoring_elements": "0.59538", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0038", "scoring_system": "epss", "scoring_elements": "0.59523", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0038", "scoring_system": "epss", "scoring_elements": "0.59504", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-2776" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20180419-0002/", "reference_id": "", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T19:26:06Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20180419-0002/" }, { "reference_url": "http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T19:26:06Z/" } ], "url": "http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html" }, { "reference_url": "http://www.securityfocus.com/bid/103791", "reference_id": "", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T19:26:06Z/" } ], "url": "http://www.securityfocus.com/bid/103791" }, { "reference_url": "http://www.securitytracker.com/id/1040698", "reference_id": "", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T19:26:06Z/" } ], "url": "http://www.securitytracker.com/id/1040698" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1568936", "reference_id": "1568936", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1568936" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2776", "reference_id": "CVE-2018-2776", "reference_type": "", "scores": [ { "value": "4.0", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:S/C:N/I:N/A:P" }, { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2776" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:3655", "reference_id": "RHSA-2018:3655", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T19:26:06Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2018:3655" }, { "reference_url": "https://usn.ubuntu.com/3629-1/", "reference_id": "USN-3629-1", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T19:26:06Z/" } ], "url": "https://usn.ubuntu.com/3629-1/" }, { "reference_url": "https://usn.ubuntu.com/3629-3/", "reference_id": "USN-3629-3", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T19:26:06Z/" } ], "url": "https://usn.ubuntu.com/3629-3/" } ], "weaknesses": [], "exploits": [], "severity_range_score": "4.0 - 4.9", "exploitability": "0.5", "weighted_severity": "4.4", "risk_score": 2.2, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8x3z-sc1j-xkfq" }