Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/86188?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/86188?format=api", "vulnerability_id": "VCID-fass-3uxv-rbdc", "summary": "JDK: Privilege escalation issue", "aliases": [ { "alias": "CVE-2014-3086" } ], "fixed_packages": [], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/120661?format=api", "purl": "pkg:rpm/redhat/java-1.5.0-ibm@1:1.5.0.16.7-1jpp.1?arch=el5_10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-4nna-17uk-13a1" }, { "vulnerability": "VCID-8muz-j586-jubr" }, { "vulnerability": "VCID-927f-vkza-gfck" }, { "vulnerability": "VCID-aefw-31dp-ufg8" }, { "vulnerability": "VCID-f34q-etf1-7qdp" }, { "vulnerability": "VCID-fass-3uxv-rbdc" }, { "vulnerability": "VCID-pz85-gym7-wub1" }, { "vulnerability": "VCID-v6xh-u5b3-zffs" }, { "vulnerability": "VCID-wgn7-zgah-qkg6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.5.0-ibm@1:1.5.0.16.7-1jpp.1%3Farch=el5_10" }, { "url": "http://public2.vulnerablecode.io/api/packages/120663?format=api", "purl": "pkg:rpm/redhat/java-1.5.0-ibm@1:1.5.0.16.7-1jpp.1?arch=el6_5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-4nna-17uk-13a1" }, { "vulnerability": "VCID-8muz-j586-jubr" }, { "vulnerability": "VCID-927f-vkza-gfck" }, { "vulnerability": "VCID-aefw-31dp-ufg8" }, { "vulnerability": "VCID-f34q-etf1-7qdp" }, { "vulnerability": "VCID-fass-3uxv-rbdc" }, { "vulnerability": "VCID-pz85-gym7-wub1" }, { "vulnerability": "VCID-v6xh-u5b3-zffs" }, { "vulnerability": "VCID-wgn7-zgah-qkg6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.5.0-ibm@1:1.5.0.16.7-1jpp.1%3Farch=el6_5" }, { "url": "http://public2.vulnerablecode.io/api/packages/120665?format=api", "purl": "pkg:rpm/redhat/java-1.6.0-ibm@1:1.6.0.16.1-1jpp.1?arch=el6_5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-4nna-17uk-13a1" }, { "vulnerability": "VCID-8muz-j586-jubr" }, { "vulnerability": "VCID-927f-vkza-gfck" }, { "vulnerability": "VCID-aefw-31dp-ufg8" }, { "vulnerability": "VCID-cjda-feye-v3fd" }, { "vulnerability": "VCID-f34q-etf1-7qdp" }, { "vulnerability": "VCID-fass-3uxv-rbdc" }, { "vulnerability": "VCID-fwvc-5k33-fkbm" }, { "vulnerability": "VCID-pz85-gym7-wub1" }, { "vulnerability": "VCID-v6xh-u5b3-zffs" }, { "vulnerability": "VCID-wgn7-zgah-qkg6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.6.0-ibm@1:1.6.0.16.1-1jpp.1%3Farch=el6_5" }, { "url": "http://public2.vulnerablecode.io/api/packages/120667?format=api", "purl": "pkg:rpm/redhat/java-1.6.0-ibm@1:1.6.0.16.1-1jpp.1?arch=el5_10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-4nna-17uk-13a1" }, { "vulnerability": "VCID-8muz-j586-jubr" }, { "vulnerability": "VCID-927f-vkza-gfck" }, { "vulnerability": "VCID-aefw-31dp-ufg8" }, { "vulnerability": "VCID-cjda-feye-v3fd" }, { "vulnerability": "VCID-f34q-etf1-7qdp" }, { "vulnerability": "VCID-fass-3uxv-rbdc" }, { "vulnerability": "VCID-fwvc-5k33-fkbm" }, { "vulnerability": "VCID-pz85-gym7-wub1" }, { "vulnerability": "VCID-v6xh-u5b3-zffs" }, { "vulnerability": "VCID-wgn7-zgah-qkg6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.6.0-ibm@1:1.6.0.16.1-1jpp.1%3Farch=el5_10" }, { "url": "http://public2.vulnerablecode.io/api/packages/120359?format=api", "purl": "pkg:rpm/redhat/java-1.6.0-ibm@1:1.6.0.16.3-1jpp.1?arch=el5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13cc-fgdq-jygw" }, { "vulnerability": "VCID-4nna-17uk-13a1" }, { "vulnerability": "VCID-56dc-jab3-jubm" }, { "vulnerability": "VCID-753c-x7gd-37dd" }, { "vulnerability": "VCID-8muz-j586-jubr" }, { "vulnerability": "VCID-927f-vkza-gfck" }, { "vulnerability": "VCID-9yus-96z5-dub9" }, { "vulnerability": "VCID-aefw-31dp-ufg8" }, { "vulnerability": "VCID-bmb1-ekh1-9fc3" }, { "vulnerability": "VCID-ccht-tkj5-jfez" }, { "vulnerability": "VCID-cjda-feye-v3fd" }, { "vulnerability": "VCID-dr2n-9pz1-gfd5" }, { "vulnerability": "VCID-edhe-xduh-8fb9" }, { "vulnerability": "VCID-f34q-etf1-7qdp" }, { "vulnerability": "VCID-f46c-z1vt-jkae" }, { "vulnerability": "VCID-fass-3uxv-rbdc" }, { "vulnerability": "VCID-fwvc-5k33-fkbm" }, { "vulnerability": "VCID-gst6-e8vf-jff8" }, { "vulnerability": "VCID-hwk7-33xw-pqhy" }, { "vulnerability": "VCID-jqmy-2cq5-v7gf" }, { "vulnerability": "VCID-kbur-d5ax-jqgk" }, { "vulnerability": "VCID-kdct-g1je-hkc5" }, { "vulnerability": "VCID-keub-rq9p-vqhh" }, { "vulnerability": "VCID-kwca-ph6k-wqar" }, { "vulnerability": "VCID-mjry-sm7c-pubz" }, { "vulnerability": "VCID-n9gc-93v2-ukdm" }, { "vulnerability": "VCID-ntmk-ub1c-5ygz" }, { "vulnerability": "VCID-nyhx-9tes-9ygr" }, { "vulnerability": "VCID-pz85-gym7-wub1" }, { "vulnerability": "VCID-t4vm-9pr1-dbav" }, { "vulnerability": "VCID-uhsa-uttv-mfes" }, { "vulnerability": "VCID-v6xh-u5b3-zffs" }, { "vulnerability": "VCID-v8dj-c1hh-wbe8" }, { "vulnerability": "VCID-vuvu-hscm-guh1" }, { "vulnerability": "VCID-wgn7-zgah-qkg6" }, { "vulnerability": "VCID-wy3y-qjfn-xudt" }, { "vulnerability": "VCID-xap5-djda-2uem" }, { "vulnerability": "VCID-xgvx-tpbg-73hf" }, { "vulnerability": "VCID-xry5-hzk4-b3b8" }, { "vulnerability": "VCID-ydpy-su7k-ffe9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.6.0-ibm@1:1.6.0.16.3-1jpp.1%3Farch=el5" }, { "url": "http://public2.vulnerablecode.io/api/packages/120662?format=api", "purl": "pkg:rpm/redhat/java-1.7.0-ibm@1:1.7.0.7.1-1jpp.1?arch=el5_10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-4nna-17uk-13a1" }, { "vulnerability": "VCID-4xsa-sqvy-kffk" }, { "vulnerability": "VCID-57rs-bkt8-63ex" }, { "vulnerability": "VCID-8muz-j586-jubr" }, { "vulnerability": "VCID-927f-vkza-gfck" }, { "vulnerability": "VCID-aefw-31dp-ufg8" }, { "vulnerability": "VCID-cet1-c4ea-p3af" }, { "vulnerability": "VCID-cjda-feye-v3fd" }, { "vulnerability": "VCID-f34q-etf1-7qdp" }, { "vulnerability": "VCID-fass-3uxv-rbdc" }, { "vulnerability": "VCID-fwvc-5k33-fkbm" }, { "vulnerability": "VCID-pz85-gym7-wub1" }, { "vulnerability": "VCID-u3q8-mpq7-skgm" }, { "vulnerability": "VCID-v6xh-u5b3-zffs" }, { "vulnerability": "VCID-wgn7-zgah-qkg6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.7.0-ibm@1:1.7.0.7.1-1jpp.1%3Farch=el5_10" }, { "url": "http://public2.vulnerablecode.io/api/packages/120666?format=api", "purl": "pkg:rpm/redhat/java-1.7.0-ibm@1:1.7.0.7.1-1jpp.1?arch=el6_5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-4nna-17uk-13a1" }, { "vulnerability": "VCID-4xsa-sqvy-kffk" }, { "vulnerability": "VCID-57rs-bkt8-63ex" }, { "vulnerability": "VCID-8muz-j586-jubr" }, { "vulnerability": "VCID-927f-vkza-gfck" }, { "vulnerability": "VCID-aefw-31dp-ufg8" }, { "vulnerability": "VCID-cet1-c4ea-p3af" }, { "vulnerability": "VCID-cjda-feye-v3fd" }, { "vulnerability": "VCID-f34q-etf1-7qdp" }, { "vulnerability": "VCID-fass-3uxv-rbdc" }, { "vulnerability": "VCID-fwvc-5k33-fkbm" }, { "vulnerability": "VCID-pz85-gym7-wub1" }, { "vulnerability": "VCID-u3q8-mpq7-skgm" }, { "vulnerability": "VCID-v6xh-u5b3-zffs" }, { "vulnerability": "VCID-wgn7-zgah-qkg6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.7.0-ibm@1:1.7.0.7.1-1jpp.1%3Farch=el6_5" }, { "url": "http://public2.vulnerablecode.io/api/packages/120664?format=api", "purl": "pkg:rpm/redhat/java-1.7.1-ibm@1:1.7.1.1.1-1jpp.1?arch=el7_0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-4nna-17uk-13a1" }, { "vulnerability": "VCID-4xsa-sqvy-kffk" }, { "vulnerability": "VCID-57rs-bkt8-63ex" }, { "vulnerability": "VCID-8muz-j586-jubr" }, { "vulnerability": "VCID-927f-vkza-gfck" }, { "vulnerability": "VCID-aefw-31dp-ufg8" }, { "vulnerability": "VCID-cet1-c4ea-p3af" }, { "vulnerability": "VCID-cjda-feye-v3fd" }, { "vulnerability": "VCID-f34q-etf1-7qdp" }, { "vulnerability": "VCID-fass-3uxv-rbdc" }, { "vulnerability": "VCID-fwvc-5k33-fkbm" }, { "vulnerability": "VCID-pz85-gym7-wub1" }, { "vulnerability": "VCID-u3q8-mpq7-skgm" }, { "vulnerability": "VCID-v6xh-u5b3-zffs" }, { "vulnerability": "VCID-wgn7-zgah-qkg6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.7.1-ibm@1:1.7.1.1.1-1jpp.1%3Farch=el7_0" } ], "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3086.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3086.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-3086", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02857", "scoring_system": "epss", "scoring_elements": "0.86264", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.02857", "scoring_system": "epss", "scoring_elements": "0.86181", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.02857", "scoring_system": "epss", "scoring_elements": "0.86191", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.02857", "scoring_system": "epss", "scoring_elements": "0.86204", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.02857", "scoring_system": "epss", "scoring_elements": "0.86223", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.02857", "scoring_system": "epss", "scoring_elements": "0.86234", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.02857", "scoring_system": "epss", "scoring_elements": "0.86249", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.02857", "scoring_system": "epss", "scoring_elements": "0.86246", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.02857", "scoring_system": "epss", "scoring_elements": "0.86242", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.02857", "scoring_system": "epss", "scoring_elements": "0.86259", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-3086" }, { "reference_url": "http://secunia.com/advisories/59680", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/59680" }, { "reference_url": "http://secunia.com/advisories/60081", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/60081" }, { "reference_url": "http://secunia.com/advisories/60317", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/60317" }, { "reference_url": "http://secunia.com/advisories/60622", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/60622" }, { "reference_url": "http://secunia.com/advisories/61577", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/61577" }, { "reference_url": "http://secunia.com/advisories/61640", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/61640" }, { "reference_url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/94097", "reference_id": "", "reference_type": "", "scores": [], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/94097" }, { "reference_url": "http://www-01.ibm.com/support/docview.wss?uid=swg1IV62634", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg1IV62634" }, { "reference_url": "http://www-01.ibm.com/support/docview.wss?uid=swg21680333", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21680333" }, { "reference_url": "http://www-01.ibm.com/support/docview.wss?uid=swg21680334", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21680334" }, { "reference_url": "http://www-01.ibm.com/support/docview.wss?uid=swg21686383", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21686383" }, { "reference_url": "http://www-01.ibm.com/support/docview.wss?uid=swg21686824", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21686824" }, { "reference_url": "http://www.securityfocus.com/bid/69183", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/69183" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1324547", "reference_id": "1324547", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1324547" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ibm:lotus_domino:8.5.3.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:ibm:lotus_domino:8.5.3.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ibm:lotus_domino:8.5.3.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ibm:lotus_domino:9.0.1.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:ibm:lotus_domino:9.0.1.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ibm:lotus_domino:9.0.1.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ibm:lotus_notes:8.5.3.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:ibm:lotus_notes:8.5.3.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ibm:lotus_notes:8.5.3.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ibm:lotus_notes:9.0.1.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:ibm:lotus_notes:9.0.1.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ibm:lotus_notes:9.0.1.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ibm:websphere_real_time:3.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:ibm:websphere_real_time:3.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ibm:websphere_real_time:3.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3086", "reference_id": "CVE-2014-3086", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:P/I:P/A:P" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3086" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1033", "reference_id": "RHSA-2014:1033", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1033" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1036", "reference_id": "RHSA-2014:1036", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1036" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1041", "reference_id": "RHSA-2014:1041", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1042", "reference_id": "RHSA-2014:1042", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1042" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2015:0264", "reference_id": "RHSA-2015:0264", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2015:0264" } ], "weaknesses": [ { "cwe_id": 266, "name": "Incorrect Privilege Assignment", "description": "A product incorrectly assigns a privilege to a particular actor, creating an unintended sphere of control for that actor." } ], "exploits": [], "severity_range_score": "7.5 - 7.5", "exploitability": "0.5", "weighted_severity": "6.8", "risk_score": 3.4, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fass-3uxv-rbdc" }