VulnerableCode.io REST API

Lookup for vulnerable packages by Package URL.

GET /api/packages/1051977?format=api

HTTP 200 OK
Allow: GET, HEAD, OPTIONS
Content-Type: application/json
Vary: Accept

{
    "url": "http://public2.vulnerablecode.io/api/packages/1051977?format=api",
    "purl": "pkg:deb/debian/ssvnc@1.0.29-4%2Bdeb10u1",
    "type": "deb",
    "namespace": "debian",
    "name": "ssvnc",
    "version": "1.0.29-4+deb10u1",
    "qualifiers": {},
    "subpath": "",
    "is_vulnerable": true,
    "next_non_vulnerable_version": "1.0.29-5",
    "latest_non_vulnerable_version": "1.0.29-5",
    "affected_by_vulnerabilities": [
        {
            "url": "http://public2.vulnerablecode.io/api/vulnerabilities/30944?format=api",
            "vulnerability_id": "VCID-3817-suhy-xfhd",
            "summary": "Multiple vulnerabilities have been found in ssvnc, the worst of\n    which could result in the arbitrary execution of code.",
            "references": [
                {
                    "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20020.json",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [
                        {
                            "value": "8.8",
                            "scoring_system": "cvssv3",
                            "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"
                        }
                    ],
                    "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20020.json"
                },
                {
                    "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-20020",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [
                        {
                            "value": "0.2103",
                            "scoring_system": "epss",
                            "scoring_elements": "0.95607",
                            "published_at": "2026-04-01T12:55:00Z"
                        },
                        {
                            "value": "0.2103",
                            "scoring_system": "epss",
                            "scoring_elements": "0.95616",
                            "published_at": "2026-04-02T12:55:00Z"
                        },
                        {
                            "value": "0.2103",
                            "scoring_system": "epss",
                            "scoring_elements": "0.95621",
                            "published_at": "2026-04-04T12:55:00Z"
                        },
                        {
                            "value": "0.2103",
                            "scoring_system": "epss",
                            "scoring_elements": "0.95624",
                            "published_at": "2026-04-07T12:55:00Z"
                        },
                        {
                            "value": "0.2103",
                            "scoring_system": "epss",
                            "scoring_elements": "0.95632",
                            "published_at": "2026-04-08T12:55:00Z"
                        },
                        {
                            "value": "0.2103",
                            "scoring_system": "epss",
                            "scoring_elements": "0.95636",
                            "published_at": "2026-04-09T12:55:00Z"
                        },
                        {
                            "value": "0.2103",
                            "scoring_system": "epss",
                            "scoring_elements": "0.95641",
                            "published_at": "2026-04-11T12:55:00Z"
                        },
                        {
                            "value": "0.2103",
                            "scoring_system": "epss",
                            "scoring_elements": "0.9564",
                            "published_at": "2026-04-12T12:55:00Z"
                        },
                        {
                            "value": "0.2103",
                            "scoring_system": "epss",
                            "scoring_elements": "0.95643",
                            "published_at": "2026-04-13T12:55:00Z"
                        },
                        {
                            "value": "0.2103",
                            "scoring_system": "epss",
                            "scoring_elements": "0.95651",
                            "published_at": "2026-04-16T12:55:00Z"
                        },
                        {
                            "value": "0.2103",
                            "scoring_system": "epss",
                            "scoring_elements": "0.95655",
                            "published_at": "2026-04-18T12:55:00Z"
                        },
                        {
                            "value": "0.2103",
                            "scoring_system": "epss",
                            "scoring_elements": "0.95656",
                            "published_at": "2026-04-21T12:55:00Z"
                        },
                        {
                            "value": "0.2103",
                            "scoring_system": "epss",
                            "scoring_elements": "0.95657",
                            "published_at": "2026-04-29T12:55:00Z"
                        },
                        {
                            "value": "0.2103",
                            "scoring_system": "epss",
                            "scoring_elements": "0.95659",
                            "published_at": "2026-04-26T12:55:00Z"
                        },
                        {
                            "value": "0.2103",
                            "scoring_system": "epss",
                            "scoring_elements": "0.95673",
                            "published_at": "2026-05-05T12:55:00Z"
                        },
                        {
                            "value": "0.2103",
                            "scoring_system": "epss",
                            "scoring_elements": "0.95676",
                            "published_at": "2026-05-07T12:55:00Z"
                        }
                    ],
                    "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-20020"
                },
                {
                    "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15126",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15126"
                },
                {
                    "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15127",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15127"
                },
                {
                    "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20019",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20019"
                },
                {
                    "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20020",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20020"
                },
                {
                    "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20021",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20021"
                },
                {
                    "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20022",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20022"
                },
                {
                    "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20023",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20023"
                },
                {
                    "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20024",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20024"
                },
                {
                    "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-21247",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-21247"
                },
                {
                    "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6307",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6307"
                },
                {
                    "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [
                        {
                            "value": "8.8",
                            "scoring_system": "cvssv3",
                            "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"
                        }
                    ],
                    "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"
                },
                {
                    "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1661117",
                    "reference_id": "1661117",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1661117"
                },
                {
                    "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=916941",
                    "reference_id": "916941",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=916941"
                },
                {
                    "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=945827",
                    "reference_id": "945827",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=945827"
                },
                {
                    "reference_url": "https://security.gentoo.org/glsa/201908-05",
                    "reference_id": "GLSA-201908-05",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://security.gentoo.org/glsa/201908-05"
                },
                {
                    "reference_url": "https://security.gentoo.org/glsa/202006-06",
                    "reference_id": "GLSA-202006-06",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://security.gentoo.org/glsa/202006-06"
                },
                {
                    "reference_url": "https://usn.ubuntu.com/3877-1/",
                    "reference_id": "USN-3877-1",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://usn.ubuntu.com/3877-1/"
                },
                {
                    "reference_url": "https://usn.ubuntu.com/4547-1/",
                    "reference_id": "USN-4547-1",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://usn.ubuntu.com/4547-1/"
                },
                {
                    "reference_url": "https://usn.ubuntu.com/4547-2/",
                    "reference_id": "USN-4547-2",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://usn.ubuntu.com/4547-2/"
                },
                {
                    "reference_url": "https://usn.ubuntu.com/4587-1/",
                    "reference_id": "USN-4587-1",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://usn.ubuntu.com/4587-1/"
                }
            ],
            "fixed_packages": [
                {
                    "url": "http://public2.vulnerablecode.io/api/packages/1051978?format=api",
                    "purl": "pkg:deb/debian/ssvnc@1.0.29-5",
                    "is_vulnerable": false,
                    "affected_by_vulnerabilities": [],
                    "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ssvnc@1.0.29-5"
                }
            ],
            "aliases": [
                "CVE-2018-20020"
            ],
            "risk_score": 4.0,
            "exploitability": "0.5",
            "weighted_severity": "7.9",
            "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-3817-suhy-xfhd"
        },
        {
            "url": "http://public2.vulnerablecode.io/api/vulnerabilities/30946?format=api",
            "vulnerability_id": "VCID-bngs-4nkn-rbh1",
            "summary": "Multiple vulnerabilities have been found in ssvnc, the worst of\n    which could result in the arbitrary execution of code.",
            "references": [
                {
                    "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20022.json",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [
                        {
                            "value": "5.4",
                            "scoring_system": "cvssv3",
                            "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L"
                        }
                    ],
                    "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20022.json"
                },
                {
                    "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-20022",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [
                        {
                            "value": "0.06177",
                            "scoring_system": "epss",
                            "scoring_elements": "0.9079",
                            "published_at": "2026-04-01T12:55:00Z"
                        },
                        {
                            "value": "0.06177",
                            "scoring_system": "epss",
                            "scoring_elements": "0.90796",
                            "published_at": "2026-04-02T12:55:00Z"
                        },
                        {
                            "value": "0.06177",
                            "scoring_system": "epss",
                            "scoring_elements": "0.90808",
                            "published_at": "2026-04-04T12:55:00Z"
                        },
                        {
                            "value": "0.06177",
                            "scoring_system": "epss",
                            "scoring_elements": "0.90818",
                            "published_at": "2026-04-07T12:55:00Z"
                        },
                        {
                            "value": "0.06177",
                            "scoring_system": "epss",
                            "scoring_elements": "0.90829",
                            "published_at": "2026-04-08T12:55:00Z"
                        },
                        {
                            "value": "0.06177",
                            "scoring_system": "epss",
                            "scoring_elements": "0.90836",
                            "published_at": "2026-04-09T12:55:00Z"
                        },
                        {
                            "value": "0.06177",
                            "scoring_system": "epss",
                            "scoring_elements": "0.90844",
                            "published_at": "2026-04-12T12:55:00Z"
                        },
                        {
                            "value": "0.06177",
                            "scoring_system": "epss",
                            "scoring_elements": "0.90842",
                            "published_at": "2026-04-13T12:55:00Z"
                        },
                        {
                            "value": "0.06177",
                            "scoring_system": "epss",
                            "scoring_elements": "0.90866",
                            "published_at": "2026-04-16T12:55:00Z"
                        },
                        {
                            "value": "0.06177",
                            "scoring_system": "epss",
                            "scoring_elements": "0.90864",
                            "published_at": "2026-04-18T12:55:00Z"
                        },
                        {
                            "value": "0.06177",
                            "scoring_system": "epss",
                            "scoring_elements": "0.90863",
                            "published_at": "2026-04-21T12:55:00Z"
                        },
                        {
                            "value": "0.06177",
                            "scoring_system": "epss",
                            "scoring_elements": "0.90877",
                            "published_at": "2026-04-24T12:55:00Z"
                        },
                        {
                            "value": "0.06177",
                            "scoring_system": "epss",
                            "scoring_elements": "0.90875",
                            "published_at": "2026-04-26T12:55:00Z"
                        },
                        {
                            "value": "0.06177",
                            "scoring_system": "epss",
                            "scoring_elements": "0.90873",
                            "published_at": "2026-04-29T12:55:00Z"
                        },
                        {
                            "value": "0.06177",
                            "scoring_system": "epss",
                            "scoring_elements": "0.90888",
                            "published_at": "2026-05-05T12:55:00Z"
                        },
                        {
                            "value": "0.06177",
                            "scoring_system": "epss",
                            "scoring_elements": "0.90905",
                            "published_at": "2026-05-07T12:55:00Z"
                        }
                    ],
                    "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-20022"
                },
                {
                    "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15126",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15126"
                },
                {
                    "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15127",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15127"
                },
                {
                    "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20019",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20019"
                },
                {
                    "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20020",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20020"
                },
                {
                    "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20021",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20021"
                },
                {
                    "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20022",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20022"
                },
                {
                    "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20023",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20023"
                },
                {
                    "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20024",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20024"
                },
                {
                    "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-21247",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-21247"
                },
                {
                    "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6307",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6307"
                },
                {
                    "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [
                        {
                            "value": "5.4",
                            "scoring_system": "cvssv3",
                            "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L"
                        }
                    ],
                    "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"
                },
                {
                    "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1661123",
                    "reference_id": "1661123",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1661123"
                },
                {
                    "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=916941",
                    "reference_id": "916941",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=916941"
                },
                {
                    "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=945827",
                    "reference_id": "945827",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=945827"
                },
                {
                    "reference_url": "https://security.gentoo.org/glsa/201908-05",
                    "reference_id": "GLSA-201908-05",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://security.gentoo.org/glsa/201908-05"
                },
                {
                    "reference_url": "https://security.gentoo.org/glsa/202006-06",
                    "reference_id": "GLSA-202006-06",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://security.gentoo.org/glsa/202006-06"
                },
                {
                    "reference_url": "https://usn.ubuntu.com/3877-1/",
                    "reference_id": "USN-3877-1",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://usn.ubuntu.com/3877-1/"
                },
                {
                    "reference_url": "https://usn.ubuntu.com/4547-1/",
                    "reference_id": "USN-4547-1",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://usn.ubuntu.com/4547-1/"
                },
                {
                    "reference_url": "https://usn.ubuntu.com/4547-2/",
                    "reference_id": "USN-4547-2",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://usn.ubuntu.com/4547-2/"
                },
                {
                    "reference_url": "https://usn.ubuntu.com/4587-1/",
                    "reference_id": "USN-4587-1",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://usn.ubuntu.com/4587-1/"
                }
            ],
            "fixed_packages": [
                {
                    "url": "http://public2.vulnerablecode.io/api/packages/1051978?format=api",
                    "purl": "pkg:deb/debian/ssvnc@1.0.29-5",
                    "is_vulnerable": false,
                    "affected_by_vulnerabilities": [],
                    "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ssvnc@1.0.29-5"
                }
            ],
            "aliases": [
                "CVE-2018-20022"
            ],
            "risk_score": 2.5,
            "exploitability": "0.5",
            "weighted_severity": "4.9",
            "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bngs-4nkn-rbh1"
        },
        {
            "url": "http://public2.vulnerablecode.io/api/vulnerabilities/30945?format=api",
            "vulnerability_id": "VCID-du88-cbhp-rkcc",
            "summary": "Multiple vulnerabilities have been found in ssvnc, the worst of\n    which could result in the arbitrary execution of code.",
            "references": [
                {
                    "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20021.json",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [
                        {
                            "value": "6.5",
                            "scoring_system": "cvssv3",
                            "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"
                        }
                    ],
                    "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20021.json"
                },
                {
                    "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-20021",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [
                        {
                            "value": "0.02552",
                            "scoring_system": "epss",
                            "scoring_elements": "0.85421",
                            "published_at": "2026-04-01T12:55:00Z"
                        },
                        {
                            "value": "0.02552",
                            "scoring_system": "epss",
                            "scoring_elements": "0.85433",
                            "published_at": "2026-04-02T12:55:00Z"
                        },
                        {
                            "value": "0.02552",
                            "scoring_system": "epss",
                            "scoring_elements": "0.85453",
                            "published_at": "2026-04-04T12:55:00Z"
                        },
                        {
                            "value": "0.02552",
                            "scoring_system": "epss",
                            "scoring_elements": "0.85456",
                            "published_at": "2026-04-07T12:55:00Z"
                        },
                        {
                            "value": "0.02552",
                            "scoring_system": "epss",
                            "scoring_elements": "0.85477",
                            "published_at": "2026-04-08T12:55:00Z"
                        },
                        {
                            "value": "0.02552",
                            "scoring_system": "epss",
                            "scoring_elements": "0.85485",
                            "published_at": "2026-04-09T12:55:00Z"
                        },
                        {
                            "value": "0.02552",
                            "scoring_system": "epss",
                            "scoring_elements": "0.85499",
                            "published_at": "2026-04-11T12:55:00Z"
                        },
                        {
                            "value": "0.02552",
                            "scoring_system": "epss",
                            "scoring_elements": "0.85498",
                            "published_at": "2026-04-12T12:55:00Z"
                        },
                        {
                            "value": "0.02552",
                            "scoring_system": "epss",
                            "scoring_elements": "0.85494",
                            "published_at": "2026-04-13T12:55:00Z"
                        },
                        {
                            "value": "0.02552",
                            "scoring_system": "epss",
                            "scoring_elements": "0.85518",
                            "published_at": "2026-04-16T12:55:00Z"
                        },
                        {
                            "value": "0.02552",
                            "scoring_system": "epss",
                            "scoring_elements": "0.85522",
                            "published_at": "2026-04-18T12:55:00Z"
                        },
                        {
                            "value": "0.02552",
                            "scoring_system": "epss",
                            "scoring_elements": "0.85519",
                            "published_at": "2026-04-21T12:55:00Z"
                        },
                        {
                            "value": "0.02552",
                            "scoring_system": "epss",
                            "scoring_elements": "0.85541",
                            "published_at": "2026-04-24T12:55:00Z"
                        },
                        {
                            "value": "0.02552",
                            "scoring_system": "epss",
                            "scoring_elements": "0.8555",
                            "published_at": "2026-04-26T12:55:00Z"
                        },
                        {
                            "value": "0.02552",
                            "scoring_system": "epss",
                            "scoring_elements": "0.85548",
                            "published_at": "2026-04-29T12:55:00Z"
                        },
                        {
                            "value": "0.02552",
                            "scoring_system": "epss",
                            "scoring_elements": "0.85566",
                            "published_at": "2026-05-05T12:55:00Z"
                        },
                        {
                            "value": "0.02552",
                            "scoring_system": "epss",
                            "scoring_elements": "0.85589",
                            "published_at": "2026-05-07T12:55:00Z"
                        }
                    ],
                    "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-20021"
                },
                {
                    "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15126",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15126"
                },
                {
                    "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15127",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15127"
                },
                {
                    "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20019",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20019"
                },
                {
                    "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20020",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20020"
                },
                {
                    "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20021",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20021"
                },
                {
                    "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20022",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20022"
                },
                {
                    "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20023",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20023"
                },
                {
                    "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20024",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20024"
                },
                {
                    "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-21247",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-21247"
                },
                {
                    "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6307",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6307"
                },
                {
                    "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [
                        {
                            "value": "6.5",
                            "scoring_system": "cvssv3",
                            "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"
                        }
                    ],
                    "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"
                },
                {
                    "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1661120",
                    "reference_id": "1661120",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1661120"
                },
                {
                    "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=916941",
                    "reference_id": "916941",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=916941"
                },
                {
                    "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=945827",
                    "reference_id": "945827",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=945827"
                },
                {
                    "reference_url": "https://security.gentoo.org/glsa/201908-05",
                    "reference_id": "GLSA-201908-05",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://security.gentoo.org/glsa/201908-05"
                },
                {
                    "reference_url": "https://security.gentoo.org/glsa/202006-06",
                    "reference_id": "GLSA-202006-06",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://security.gentoo.org/glsa/202006-06"
                },
                {
                    "reference_url": "https://usn.ubuntu.com/3877-1/",
                    "reference_id": "USN-3877-1",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://usn.ubuntu.com/3877-1/"
                },
                {
                    "reference_url": "https://usn.ubuntu.com/4547-1/",
                    "reference_id": "USN-4547-1",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://usn.ubuntu.com/4547-1/"
                },
                {
                    "reference_url": "https://usn.ubuntu.com/4547-2/",
                    "reference_id": "USN-4547-2",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://usn.ubuntu.com/4547-2/"
                },
                {
                    "reference_url": "https://usn.ubuntu.com/4587-1/",
                    "reference_id": "USN-4587-1",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://usn.ubuntu.com/4587-1/"
                }
            ],
            "fixed_packages": [
                {
                    "url": "http://public2.vulnerablecode.io/api/packages/1051978?format=api",
                    "purl": "pkg:deb/debian/ssvnc@1.0.29-5",
                    "is_vulnerable": false,
                    "affected_by_vulnerabilities": [],
                    "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ssvnc@1.0.29-5"
                }
            ],
            "aliases": [
                "CVE-2018-20021"
            ],
            "risk_score": 3.0,
            "exploitability": "0.5",
            "weighted_severity": "5.9",
            "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-du88-cbhp-rkcc"
        },
        {
            "url": "http://public2.vulnerablecode.io/api/vulnerabilities/30947?format=api",
            "vulnerability_id": "VCID-q89b-2emb-j3br",
            "summary": "Multiple vulnerabilities have been found in ssvnc, the worst of\n    which could result in the arbitrary execution of code.",
            "references": [
                {
                    "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20024.json",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [
                        {
                            "value": "6.5",
                            "scoring_system": "cvssv3",
                            "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"
                        }
                    ],
                    "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20024.json"
                },
                {
                    "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-20024",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [
                        {
                            "value": "0.03729",
                            "scoring_system": "epss",
                            "scoring_elements": "0.87937",
                            "published_at": "2026-04-01T12:55:00Z"
                        },
                        {
                            "value": "0.03729",
                            "scoring_system": "epss",
                            "scoring_elements": "0.87947",
                            "published_at": "2026-04-02T12:55:00Z"
                        },
                        {
                            "value": "0.03729",
                            "scoring_system": "epss",
                            "scoring_elements": "0.8796",
                            "published_at": "2026-04-04T12:55:00Z"
                        },
                        {
                            "value": "0.03729",
                            "scoring_system": "epss",
                            "scoring_elements": "0.87964",
                            "published_at": "2026-04-07T12:55:00Z"
                        },
                        {
                            "value": "0.03729",
                            "scoring_system": "epss",
                            "scoring_elements": "0.87984",
                            "published_at": "2026-04-08T12:55:00Z"
                        },
                        {
                            "value": "0.03729",
                            "scoring_system": "epss",
                            "scoring_elements": "0.87991",
                            "published_at": "2026-04-09T12:55:00Z"
                        },
                        {
                            "value": "0.03729",
                            "scoring_system": "epss",
                            "scoring_elements": "0.88002",
                            "published_at": "2026-04-11T12:55:00Z"
                        },
                        {
                            "value": "0.03729",
                            "scoring_system": "epss",
                            "scoring_elements": "0.87995",
                            "published_at": "2026-04-12T12:55:00Z"
                        },
                        {
                            "value": "0.03729",
                            "scoring_system": "epss",
                            "scoring_elements": "0.87994",
                            "published_at": "2026-04-13T12:55:00Z"
                        },
                        {
                            "value": "0.03729",
                            "scoring_system": "epss",
                            "scoring_elements": "0.88008",
                            "published_at": "2026-04-16T12:55:00Z"
                        },
                        {
                            "value": "0.03729",
                            "scoring_system": "epss",
                            "scoring_elements": "0.88007",
                            "published_at": "2026-04-21T12:55:00Z"
                        },
                        {
                            "value": "0.03729",
                            "scoring_system": "epss",
                            "scoring_elements": "0.88023",
                            "published_at": "2026-04-24T12:55:00Z"
                        },
                        {
                            "value": "0.03729",
                            "scoring_system": "epss",
                            "scoring_elements": "0.88029",
                            "published_at": "2026-04-29T12:55:00Z"
                        },
                        {
                            "value": "0.03729",
                            "scoring_system": "epss",
                            "scoring_elements": "0.8804",
                            "published_at": "2026-05-05T12:55:00Z"
                        },
                        {
                            "value": "0.03729",
                            "scoring_system": "epss",
                            "scoring_elements": "0.88056",
                            "published_at": "2026-05-07T12:55:00Z"
                        }
                    ],
                    "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-20024"
                },
                {
                    "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15126",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15126"
                },
                {
                    "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15127",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15127"
                },
                {
                    "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20019",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20019"
                },
                {
                    "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20020",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20020"
                },
                {
                    "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20021",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20021"
                },
                {
                    "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20022",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20022"
                },
                {
                    "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20023",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20023"
                },
                {
                    "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20024",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20024"
                },
                {
                    "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-21247",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-21247"
                },
                {
                    "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6307",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6307"
                },
                {
                    "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [
                        {
                            "value": "6.5",
                            "scoring_system": "cvssv3",
                            "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"
                        }
                    ],
                    "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"
                },
                {
                    "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1661132",
                    "reference_id": "1661132",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1661132"
                },
                {
                    "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=916941",
                    "reference_id": "916941",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=916941"
                },
                {
                    "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=945827",
                    "reference_id": "945827",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=945827"
                },
                {
                    "reference_url": "https://security.gentoo.org/glsa/201908-05",
                    "reference_id": "GLSA-201908-05",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://security.gentoo.org/glsa/201908-05"
                },
                {
                    "reference_url": "https://security.gentoo.org/glsa/202006-06",
                    "reference_id": "GLSA-202006-06",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://security.gentoo.org/glsa/202006-06"
                },
                {
                    "reference_url": "https://usn.ubuntu.com/3877-1/",
                    "reference_id": "USN-3877-1",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://usn.ubuntu.com/3877-1/"
                },
                {
                    "reference_url": "https://usn.ubuntu.com/4547-1/",
                    "reference_id": "USN-4547-1",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://usn.ubuntu.com/4547-1/"
                },
                {
                    "reference_url": "https://usn.ubuntu.com/4547-2/",
                    "reference_id": "USN-4547-2",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://usn.ubuntu.com/4547-2/"
                },
                {
                    "reference_url": "https://usn.ubuntu.com/4587-1/",
                    "reference_id": "USN-4587-1",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://usn.ubuntu.com/4587-1/"
                }
            ],
            "fixed_packages": [
                {
                    "url": "http://public2.vulnerablecode.io/api/packages/1051978?format=api",
                    "purl": "pkg:deb/debian/ssvnc@1.0.29-5",
                    "is_vulnerable": false,
                    "affected_by_vulnerabilities": [],
                    "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ssvnc@1.0.29-5"
                }
            ],
            "aliases": [
                "CVE-2018-20024"
            ],
            "risk_score": 3.0,
            "exploitability": "0.5",
            "weighted_severity": "5.9",
            "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-q89b-2emb-j3br"
        }
    ],
    "fixing_vulnerabilities": [],
    "risk_score": "4.0",
    "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ssvnc@1.0.29-4%252Bdeb10u1"
}

Package Instance