GET

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

GET /api/vulnerabilities/87652?format=api
HTTP 200 OK
Allow: GET, HEAD, OPTIONS
Content-Type: application/json
Vary: Accept

{
    "url": "http://public2.vulnerablecode.io/api/vulnerabilities/87652?format=api",
    "vulnerability_id": "VCID-9qzq-mtps-gfg1",
    "summary": "CVE-2025-54088 is an open-redirect vulnerability in Secure\nAccess prior to version 14.10. Attackers with access to the console can\nredirect victims to an arbitrary URL. The attack complexity is low, attack\nrequirements are present, no privileges are required, and users must actively\nparticipate in the attack. Impact to confidentiality is low and there is no\nimpact to integrity or availability. There are high severity impacts to\nconfidentiality, integrity, availability in subsequent systems.",
    "aliases": [
        {
            "alias": "CVE-2025-54088"
        }
    ],
    "fixed_packages": [],
    "affected_packages": [],
    "references": [
        {
            "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-54088",
            "reference_id": "",
            "reference_type": "",
            "scores": [
                {
                    "value": "0.00032",
                    "scoring_system": "epss",
                    "scoring_elements": "0.09698",
                    "published_at": "2026-06-11T12:55:00Z"
                },
                {
                    "value": "0.00032",
                    "scoring_system": "epss",
                    "scoring_elements": "0.09748",
                    "published_at": "2026-06-12T12:55:00Z"
                },
                {
                    "value": "0.00032",
                    "scoring_system": "epss",
                    "scoring_elements": "0.0975",
                    "published_at": "2026-06-13T12:55:00Z"
                }
            ],
            "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-54088"
        },
        {
            "reference_url": "https://www.absolute.com/platform/security-information/vulnerability-archive/cve-2025-54088",
            "reference_id": "cve-2025-54088",
            "reference_type": "",
            "scores": [
                {
                    "value": "5.5",
                    "scoring_system": "cvssv4",
                    "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:N/VI:N/VA:N/SC:H/SI:H/SA:H"
                },
                {
                    "value": "Track",
                    "scoring_system": "ssvc",
                    "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-07T19:26:12Z/"
                }
            ],
            "url": "https://www.absolute.com/platform/security-information/vulnerability-archive/cve-2025-54088"
        }
    ],
    "weaknesses": [],
    "exploits": [],
    "severity_range_score": "5.5 - 5.5",
    "exploitability": null,
    "weighted_severity": null,
    "risk_score": null,
    "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9qzq-mtps-gfg1"
}