Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/132922?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/132922?format=api", "purl": "pkg:deb/debian/trafficserver@5.2.0-1?distro=sid", "type": "deb", "namespace": "debian", "name": "trafficserver", "version": "5.2.0-1", "qualifiers": { "distro": "sid" }, "subpath": "", "is_vulnerable": false, "next_non_vulnerable_version": "5.3.1-1", "latest_non_vulnerable_version": "9.2.5+ds-0+deb12u4", "affected_by_vulnerabilities": [], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/103106?format=api", "vulnerability_id": "VCID-pp8v-fjet-uyeh", "summary": "Apache Traffic Server before 5.1.2 allows remote attackers to cause a denial of service via unspecified vectors, related to internal buffer sizing.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-10022", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02709", "scoring_system": "epss", "scoring_elements": "0.86181", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.02709", "scoring_system": "epss", "scoring_elements": "0.86202", "published_at": "2026-06-09T12:55:00Z" }, { "value": "0.02709", "scoring_system": "epss", "scoring_elements": "0.86205", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.02709", "scoring_system": "epss", "scoring_elements": "0.862", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.02709", "scoring_system": "epss", "scoring_elements": "0.86188", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-10022" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-10022", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-10022" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=778895", "reference_id": "778895", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=778895" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/132922?format=api", "purl": "pkg:deb/debian/trafficserver@5.2.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@5.2.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/132919?format=api", "purl": "pkg:deb/debian/trafficserver@8.1.10%2Bds-1~deb11u1?distro=sid", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7cx9-r4vs-jycb" }, { "vulnerability": "VCID-9and-qdyn-ryh8" }, { "vulnerability": "VCID-g4ca-xg28-j7a3" }, { "vulnerability": "VCID-pamq-mbf9-5yd5" }, { "vulnerability": "VCID-pswv-yvhe-9ubs" }, { "vulnerability": "VCID-qjzn-d1sw-13gk" }, { "vulnerability": "VCID-rtzu-8w8v-wbhj" }, { "vulnerability": "VCID-sq5z-yfbm-cffs" }, { "vulnerability": "VCID-w96r-ryuy-bbca" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@8.1.10%252Bds-1~deb11u1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/132917?format=api", "purl": "pkg:deb/debian/trafficserver@9.2.5%2Bds-0%2Bdeb12u4?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@9.2.5%252Bds-0%252Bdeb12u4%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/132920?format=api", "purl": "pkg:deb/debian/trafficserver@9.2.5%2Bds-1?distro=sid", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6tcz-mrt1-ufh2" }, { "vulnerability": "VCID-7cx9-r4vs-jycb" }, { "vulnerability": "VCID-9and-qdyn-ryh8" }, { "vulnerability": "VCID-g4ca-xg28-j7a3" }, { "vulnerability": "VCID-pamq-mbf9-5yd5" }, { "vulnerability": "VCID-pswv-yvhe-9ubs" }, { "vulnerability": "VCID-qh8b-vbxg-7uht" }, { "vulnerability": "VCID-qjzn-d1sw-13gk" }, { "vulnerability": "VCID-rtzu-8w8v-wbhj" }, { "vulnerability": "VCID-sq5z-yfbm-cffs" }, { "vulnerability": "VCID-w96r-ryuy-bbca" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@9.2.5%252Bds-1%3Fdistro=sid" } ], "aliases": [ "CVE-2014-10022" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-pp8v-fjet-uyeh" } ], "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/trafficserver@5.2.0-1%3Fdistro=sid" }