Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/99000?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/99000?format=api", "vulnerability_id": "VCID-t7p2-zytn-fycp", "summary": "The ssl.match_hostname function in CPython (aka Python) before 2.7.9 and 3.x before 3.3.3 does not properly handle wildcards in hostnames, which might allow man-in-the-middle attackers to spoof servers via a crafted certificate.", "aliases": [ { "alias": "CVE-2013-7440" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/125535?format=api", "purl": "pkg:deb/debian/python2.7@2.7.9-1?distro=bullseye", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/python2.7@2.7.9-1%3Fdistro=bullseye" }, { "url": "http://public2.vulnerablecode.io/api/packages/6153?format=api", "purl": "pkg:deb/debian/python2.7@2.7.9-2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-16gk-g5t6-5bbf" }, { "vulnerability": "VCID-3fpe-pvdm-kyhs" }, { "vulnerability": "VCID-5arb-eqy5-3qfy" }, { "vulnerability": "VCID-9dyt-z3y9-nkb8" }, { "vulnerability": "VCID-cpkh-xpsk-nqf1" }, { "vulnerability": "VCID-dpsq-73nq-hbcg" }, { "vulnerability": "VCID-ems8-fwjz-q3at" }, { "vulnerability": "VCID-fbrt-d4gm-efhn" }, { "vulnerability": "VCID-fwhj-bjfc-h3an" }, { "vulnerability": "VCID-g7gc-5ynw-ffcb" }, { "vulnerability": "VCID-g932-tm87-ebb6" }, { "vulnerability": "VCID-ga74-8ch9-a3hc" }, { "vulnerability": "VCID-gczs-recc-gya2" }, { "vulnerability": "VCID-k2jc-cyb3-yqcc" }, { "vulnerability": "VCID-nqa2-kqcf-wyez" }, { "vulnerability": "VCID-p2er-rxka-r7dk" }, { "vulnerability": "VCID-pa1n-3at9-qbhu" }, { "vulnerability": "VCID-qjut-1y6u-pqek" }, { "vulnerability": "VCID-ru8s-bq99-9bhd" }, { "vulnerability": "VCID-sse9-sa1n-wbc9" }, { "vulnerability": "VCID-stc9-apq8-k7a6" }, { "vulnerability": "VCID-taaq-u851-5kdt" }, { "vulnerability": "VCID-thsx-3yu5-43ff" }, { "vulnerability": "VCID-u4fg-6shu-jkh7" }, { "vulnerability": "VCID-ua1b-81hn-ykfw" }, { "vulnerability": "VCID-ue7j-kq6d-xbeb" }, { "vulnerability": "VCID-vm8m-na8y-67et" }, { "vulnerability": "VCID-wnxx-rc7w-cke4" }, { "vulnerability": "VCID-yrph-wbpc-5kgz" }, { "vulnerability": "VCID-zhu3-43e2-syh5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/python2.7@2.7.9-2" }, { "url": "http://public2.vulnerablecode.io/api/packages/125526?format=api", "purl": "pkg:deb/debian/python2.7@2.7.18-8%2Bdeb11u1?distro=bullseye", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/python2.7@2.7.18-8%252Bdeb11u1%3Fdistro=bullseye" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6152?format=api", "purl": "pkg:deb/debian/python2.7@2.7.3-6%2Bdeb7u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-16gk-g5t6-5bbf" }, { "vulnerability": "VCID-172n-hbu2-6fd3" }, { "vulnerability": "VCID-3fpe-pvdm-kyhs" }, { "vulnerability": "VCID-46e4-wwyz-3kb9" }, { "vulnerability": "VCID-5arb-eqy5-3qfy" }, { "vulnerability": "VCID-78qy-9w1z-8yhy" }, { "vulnerability": "VCID-97wt-q55v-17dg" }, { "vulnerability": "VCID-9dyt-z3y9-nkb8" }, { "vulnerability": "VCID-c6vf-8bw4-8bgj" }, { "vulnerability": "VCID-cpkh-xpsk-nqf1" }, { "vulnerability": "VCID-cwra-a4xc-budx" }, { "vulnerability": "VCID-dpsq-73nq-hbcg" }, { "vulnerability": "VCID-ems8-fwjz-q3at" }, { "vulnerability": "VCID-fbrt-d4gm-efhn" }, { "vulnerability": "VCID-fwhj-bjfc-h3an" }, { "vulnerability": "VCID-g7gc-5ynw-ffcb" }, { "vulnerability": "VCID-g932-tm87-ebb6" }, { "vulnerability": "VCID-ga74-8ch9-a3hc" }, { "vulnerability": "VCID-gczs-recc-gya2" }, { "vulnerability": "VCID-k2jc-cyb3-yqcc" }, { "vulnerability": "VCID-nqa2-kqcf-wyez" }, { "vulnerability": "VCID-p2er-rxka-r7dk" }, { "vulnerability": "VCID-pa1n-3at9-qbhu" }, { "vulnerability": "VCID-pw5s-1prw-vqhz" }, { "vulnerability": "VCID-qjut-1y6u-pqek" }, { "vulnerability": "VCID-ru8s-bq99-9bhd" }, { "vulnerability": "VCID-sse9-sa1n-wbc9" }, { "vulnerability": "VCID-stc9-apq8-k7a6" }, { "vulnerability": "VCID-t7p2-zytn-fycp" }, { "vulnerability": "VCID-taaq-u851-5kdt" }, { "vulnerability": "VCID-thsx-3yu5-43ff" }, { "vulnerability": "VCID-u4fg-6shu-jkh7" }, { "vulnerability": "VCID-ua1b-81hn-ykfw" }, { "vulnerability": "VCID-ue7j-kq6d-xbeb" }, { "vulnerability": "VCID-vm8m-na8y-67et" }, { "vulnerability": "VCID-wnxx-rc7w-cke4" }, { "vulnerability": "VCID-yrph-wbpc-5kgz" }, { "vulnerability": "VCID-z7k5-3vc9-2uga" }, { "vulnerability": "VCID-zhu3-43e2-syh5" }, { "vulnerability": "VCID-zx9p-cab8-6ubc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/python2.7@2.7.3-6%252Bdeb7u2" }, { "url": "http://public2.vulnerablecode.io/api/packages/178806?format=api", "purl": "pkg:rpm/redhat/python27@1.1-25?arch=el7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-172n-hbu2-6fd3" }, { "vulnerability": "VCID-t7p2-zytn-fycp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python27@1.1-25%3Farch=el7" }, { "url": "http://public2.vulnerablecode.io/api/packages/178807?format=api", "purl": "pkg:rpm/redhat/python27@1.1-25?arch=el6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-172n-hbu2-6fd3" }, { "vulnerability": "VCID-t7p2-zytn-fycp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python27@1.1-25%3Farch=el6" }, { "url": "http://public2.vulnerablecode.io/api/packages/178800?format=api", "purl": "pkg:rpm/redhat/python27-numpy@1:1.7.1-10?arch=el6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-172n-hbu2-6fd3" }, { "vulnerability": "VCID-t7p2-zytn-fycp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python27-numpy@1:1.7.1-10%3Farch=el6" }, { "url": "http://public2.vulnerablecode.io/api/packages/178803?format=api", "purl": "pkg:rpm/redhat/python27-numpy@1:1.7.1-10?arch=el7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-172n-hbu2-6fd3" }, { "vulnerability": "VCID-t7p2-zytn-fycp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python27-numpy@1:1.7.1-10%3Farch=el7" }, { "url": "http://public2.vulnerablecode.io/api/packages/178799?format=api", "purl": "pkg:rpm/redhat/python27-python@2.7.8-14?arch=el7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-172n-hbu2-6fd3" }, { "vulnerability": "VCID-t7p2-zytn-fycp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python27-python@2.7.8-14%3Farch=el7" }, { "url": "http://public2.vulnerablecode.io/api/packages/178801?format=api", "purl": "pkg:rpm/redhat/python27-python@2.7.8-16?arch=el6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-172n-hbu2-6fd3" }, { "vulnerability": "VCID-t7p2-zytn-fycp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python27-python@2.7.8-16%3Farch=el6" }, { "url": "http://public2.vulnerablecode.io/api/packages/178811?format=api", "purl": "pkg:rpm/redhat/python27-python-docutils@0.11-2?arch=el6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-172n-hbu2-6fd3" }, { "vulnerability": "VCID-t7p2-zytn-fycp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python27-python-docutils@0.11-2%3Farch=el6" }, { "url": "http://public2.vulnerablecode.io/api/packages/178809?format=api", "purl": "pkg:rpm/redhat/python27-python-pip@7.1.0-2?arch=el7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-172n-hbu2-6fd3" }, { "vulnerability": "VCID-t7p2-zytn-fycp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python27-python-pip@7.1.0-2%3Farch=el7" }, { "url": "http://public2.vulnerablecode.io/api/packages/178810?format=api", "purl": "pkg:rpm/redhat/python27-python-pip@7.1.0-2?arch=el6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-172n-hbu2-6fd3" }, { "vulnerability": "VCID-t7p2-zytn-fycp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python27-python-pip@7.1.0-2%3Farch=el6" }, { "url": "http://public2.vulnerablecode.io/api/packages/178812?format=api", "purl": "pkg:rpm/redhat/python27-python-pymongo@3.2.1-1?arch=el7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-172n-hbu2-6fd3" }, { "vulnerability": "VCID-t7p2-zytn-fycp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python27-python-pymongo@3.2.1-1%3Farch=el7" }, { "url": "http://public2.vulnerablecode.io/api/packages/178813?format=api", "purl": "pkg:rpm/redhat/python27-python-pymongo@3.2.1-1?arch=el6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-172n-hbu2-6fd3" }, { "vulnerability": "VCID-t7p2-zytn-fycp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python27-python-pymongo@3.2.1-1%3Farch=el6" }, { "url": "http://public2.vulnerablecode.io/api/packages/178797?format=api", "purl": "pkg:rpm/redhat/python27-python-virtualenv@13.1.0-1?arch=el7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-172n-hbu2-6fd3" }, { "vulnerability": "VCID-t7p2-zytn-fycp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python27-python-virtualenv@13.1.0-1%3Farch=el7" }, { "url": "http://public2.vulnerablecode.io/api/packages/178802?format=api", "purl": "pkg:rpm/redhat/python27-python-virtualenv@13.1.0-1?arch=el6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-172n-hbu2-6fd3" }, { "vulnerability": "VCID-t7p2-zytn-fycp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python27-python-virtualenv@13.1.0-1%3Farch=el6" }, { "url": "http://public2.vulnerablecode.io/api/packages/178805?format=api", "purl": "pkg:rpm/redhat/python27-PyYAML@3.10-14?arch=el6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-172n-hbu2-6fd3" }, { "vulnerability": "VCID-t7p2-zytn-fycp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python27-PyYAML@3.10-14%3Farch=el6" }, { "url": "http://public2.vulnerablecode.io/api/packages/178808?format=api", "purl": "pkg:rpm/redhat/python27-PyYAML@3.10-14?arch=el7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-172n-hbu2-6fd3" }, { "vulnerability": "VCID-t7p2-zytn-fycp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python27-PyYAML@3.10-14%3Farch=el7" }, { "url": "http://public2.vulnerablecode.io/api/packages/178804?format=api", "purl": "pkg:rpm/redhat/python27-scipy@0.12.1-3?arch=el6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-172n-hbu2-6fd3" }, { "vulnerability": "VCID-t7p2-zytn-fycp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python27-scipy@0.12.1-3%3Farch=el6" }, { "url": "http://public2.vulnerablecode.io/api/packages/178798?format=api", "purl": "pkg:rpm/redhat/python27-scipy@0.12.1-4?arch=el7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-172n-hbu2-6fd3" }, { "vulnerability": "VCID-t7p2-zytn-fycp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python27-scipy@0.12.1-4%3Farch=el7" }, { "url": "http://public2.vulnerablecode.io/api/packages/160336?format=api", "purl": "pkg:rpm/redhat/python-httplib2@0.6.0-6?arch=el7sat", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-172n-hbu2-6fd3" }, { "vulnerability": "VCID-2a6m-asyd-8uax" }, { "vulnerability": "VCID-2bvt-36z3-9qar" }, { "vulnerability": "VCID-2nna-s9bv-sycc" }, { "vulnerability": "VCID-8jj4-fqt3-xbhy" }, { "vulnerability": "VCID-992k-gq1d-1kcf" }, { "vulnerability": "VCID-atus-ryef-17h1" }, { "vulnerability": "VCID-b3hv-v2tw-p7ca" }, { "vulnerability": "VCID-bumt-76s4-47da" }, { "vulnerability": "VCID-dka6-3zwp-akf8" }, { "vulnerability": "VCID-e974-hhh6-8bhw" }, { "vulnerability": "VCID-m7u7-uh4a-8yhe" }, { "vulnerability": "VCID-mv2j-2zkr-ubhb" }, { "vulnerability": "VCID-qjt7-u7kg-4kb9" }, { "vulnerability": "VCID-r6rk-smsu-m7d5" }, { "vulnerability": "VCID-sfq1-wcc6-jkdt" }, { "vulnerability": "VCID-t7p2-zytn-fycp" }, { "vulnerability": "VCID-y65f-py17-z7d5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python-httplib2@0.6.0-6%3Farch=el7sat" } ], "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-7440.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-7440.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-7440", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00358", "scoring_system": "epss", "scoring_elements": "0.58295", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00358", "scoring_system": "epss", "scoring_elements": "0.58342", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00358", "scoring_system": "epss", "scoring_elements": "0.58351", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00358", "scoring_system": "epss", "scoring_elements": "0.58341", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00358", "scoring_system": "epss", "scoring_elements": "0.58326", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-7440" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7440", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7440" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1224999", "reference_id": "1224999", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1224999" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1166", "reference_id": "RHSA-2016:1166", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1166" } ], "weaknesses": [], "exploits": [], "severity_range_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-t7p2-zytn-fycp" }