{"url":"http://public2.vulnerablecode.io/api/packages/1355?format=json","purl":"pkg:apache/httpd@2.4.9","type":"apache","namespace":"","name":"httpd","version":"2.4.9","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"2.4.42","latest_non_vulnerable_version":"2.4.54","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/7593?format=json","vulnerability_id":"VCID-2w8b-3gmt-qff7","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-11985.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-11985.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-11985","reference_id":"","reference_type":"","scores":[{"value":"0.15318","scoring_system":"epss","scoring_elements":"0.94784","published_at":"2026-06-11T12:55:00Z"},{"value":"0.15318","scoring_system":"epss","scoring_elements":"0.94802","published_at":"2026-06-12T12:55:00Z"},{"value":"0.15318","scoring_system":"epss","scoring_elements":"0.94808","published_at":"2026-06-13T12:55:00Z"},{"value":"0.15318","scoring_system":"epss","scoring_elements":"0.94809","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-11985"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11985","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11985"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1866559","reference_id":"1866559","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1866559"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2020-11985.json","reference_id":"CVE-2020-11985","reference_type":"","scores":[{"value":"low","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2020-11985.json"},{"reference_url":"https://security.gentoo.org/glsa/202008-04","reference_id":"GLSA-202008-04","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202008-04"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:1161","reference_id":"RHSA-2017:1161","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:1161"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1367?format=json","purl":"pkg:apache/httpd@2.4.25","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-38r6-mbzq-e7gd"},{"vulnerability":"VCID-3dh3-8wr4-uqcd"},{"vulnerability":"VCID-3dvk-8he7-xbck"},{"vulnerability":"VCID-43j2-q5rg-7qay"},{"vulnerability":"VCID-44ma-b8wt-67fa"},{"vulnerability":"VCID-7j9j-sxt1-6qa6"},{"vulnerability":"VCID-7xcn-c8p4-j7ec"},{"vulnerability":"VCID-8vas-wy6r-pkda"},{"vulnerability":"VCID-9e8m-yzr3-pbgz"},{"vulnerability":"VCID-9wx3-62cp-fuh8"},{"vulnerability":"VCID-afat-n93z-8qeq"},{"vulnerability":"VCID-arm8-rmce-2bec"},{"vulnerability":"VCID-dk12-s4wp-suhc"},{"vulnerability":"VCID-e4mk-ydp9-m3bx"},{"vulnerability":"VCID-ea8s-ercf-qfdx"},{"vulnerability":"VCID-gqvc-a75w-dqej"},{"vulnerability":"VCID-grnf-r71w-r3h7"},{"vulnerability":"VCID-h959-hrhy-wkep"},{"vulnerability":"VCID-kp2b-t25c-sqfc"},{"vulnerability":"VCID-mzxz-ujfq-qucw"},{"vulnerability":"VCID-n8qk-qws2-9ydv"},{"vulnerability":"VCID-nxqt-4e79-w3et"},{"vulnerability":"VCID-pr6s-p29g-k3hv"},{"vulnerability":"VCID-qw6u-prup-eqar"},{"vulnerability":"VCID-rb9f-qwwr-v7c2"},{"vulnerability":"VCID-rc99-4efu-tud2"},{"vulnerability":"VCID-t95h-sdy4-tua1"},{"vulnerability":"VCID-taua-zv9g-7kck"},{"vulnerability":"VCID-tdub-a3cg-r7fg"},{"vulnerability":"VCID-uhyk-pc9e-w7cu"},{"vulnerability":"VCID-usz9-qezx-9ybx"},{"vulnerability":"VCID-wf33-hszj-akf9"},{"vulnerability":"VCID-x7bx-d6tn-fbhf"},{"vulnerability":"VCID-xj85-t7py-93cf"},{"vulnerability":"VCID-y5k7-ve1j-3bfc"},{"vulnerability":"VCID-y7cv-qzrr-rbhd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.25"}],"aliases":["CVE-2020-11985"],"risk_score":2.4,"exploitability":"0.5","weighted_severity":"4.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-2w8b-3gmt-qff7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/175418?format=json","vulnerability_id":"VCID-3dh3-8wr4-uqcd","summary":"In Apache HTTP Server versions 2.4.0 to 2.4.41 some mod_rewrite configurations vulnerable to open redirect.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-1927.json","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-1927.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-1927","reference_id":"","reference_type":"","scores":[{"value":"0.04949","scoring_system":"epss","scoring_elements":"0.89879","published_at":"2026-06-11T12:55:00Z"},{"value":"0.04949","scoring_system":"epss","scoring_elements":"0.89912","published_at":"2026-06-12T12:55:00Z"},{"value":"0.04949","scoring_system":"epss","scoring_elements":"0.89919","published_at":"2026-06-13T12:55:00Z"},{"value":"0.04949","scoring_system":"epss","scoring_elements":"0.89917","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-1927"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11984","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11984"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11993","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11993"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1927","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1927"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1934","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1934"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9490","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9490"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1820761","reference_id":"1820761","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1820761"},{"reference_url":"https://security.archlinux.org/ASA-202004-14","reference_id":"ASA-202004-14","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202004-14"},{"reference_url":"https://security.archlinux.org/AVG-1126","reference_id":"AVG-1126","reference_type":"","scores":[{"value":"Low","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1126"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2020-1927.json","reference_id":"CVE-2020-1927","reference_type":"","scores":[{"value":"low","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2020-1927.json"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:1336","reference_id":"RHSA-2020:1336","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:1336"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:1337","reference_id":"RHSA-2020:1337","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:1337"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2263","reference_id":"RHSA-2020:2263","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2263"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3958","reference_id":"RHSA-2020:3958","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3958"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4751","reference_id":"RHSA-2020:4751","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4751"},{"reference_url":"https://usn.ubuntu.com/4458-1/","reference_id":"USN-4458-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4458-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1387?format=json","purl":"pkg:apache/httpd@2.4.42","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.42"}],"aliases":["CVE-2020-1927"],"risk_score":2.8,"exploitability":"0.5","weighted_severity":"5.5","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3dh3-8wr4-uqcd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/175404?format=json","vulnerability_id":"VCID-3u4s-a96g-v3aq","summary":"HTTP trailers could be used to replace HTTP headers late during request processing, potentially undoing or otherwise confusing modules that examined or modified request headers earlier. This fix adds the \"MergeTrailers\" directive to restore legacy behavior.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-5704.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-5704.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-5704","reference_id":"","reference_type":"","scores":[{"value":"0.65044","scoring_system":"epss","scoring_elements":"0.98499","published_at":"2026-06-11T12:55:00Z"},{"value":"0.65044","scoring_system":"epss","scoring_elements":"0.98504","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-5704"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5704","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5704"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1082903","reference_id":"1082903","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1082903"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2013-5704.json","reference_id":"CVE-2013-5704","reference_type":"","scores":[{"value":"low","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2013-5704.json"},{"reference_url":"https://security.gentoo.org/glsa/201504-03","reference_id":"GLSA-201504-03","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201504-03"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1972","reference_id":"RHSA-2014:1972","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1972"},{"reference_url":"https://access.redhat.com/errata/RHSA-2015:0325","reference_id":"RHSA-2015:0325","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2015:0325"},{"reference_url":"https://access.redhat.com/errata/RHSA-2015:1249","reference_id":"RHSA-2015:1249","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2015:1249"},{"reference_url":"https://access.redhat.com/errata/RHSA-2015:2659","reference_id":"RHSA-2015:2659","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2015:2659"},{"reference_url":"https://access.redhat.com/errata/RHSA-2015:2660","reference_id":"RHSA-2015:2660","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2015:2660"},{"reference_url":"https://access.redhat.com/errata/RHSA-2015:2661","reference_id":"RHSA-2015:2661","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2015:2661"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:0061","reference_id":"RHSA-2016:0061","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:0061"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:0062","reference_id":"RHSA-2016:0062","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:0062"},{"reference_url":"https://usn.ubuntu.com/2523-1/","reference_id":"USN-2523-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2523-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1358?format=json","purl":"pkg:apache/httpd@2.4.12","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w8b-3gmt-qff7"},{"vulnerability":"VCID-3dh3-8wr4-uqcd"},{"vulnerability":"VCID-43j2-q5rg-7qay"},{"vulnerability":"VCID-4x4s-8qeu-13h3"},{"vulnerability":"VCID-7j9j-sxt1-6qa6"},{"vulnerability":"VCID-7xcn-c8p4-j7ec"},{"vulnerability":"VCID-8vkp-k5yr-n3bn"},{"vulnerability":"VCID-9e8m-yzr3-pbgz"},{"vulnerability":"VCID-9wx3-62cp-fuh8"},{"vulnerability":"VCID-arm8-rmce-2bec"},{"vulnerability":"VCID-bn5d-te6p-hyf1"},{"vulnerability":"VCID-dk12-s4wp-suhc"},{"vulnerability":"VCID-dr2b-7ack-wbfp"},{"vulnerability":"VCID-e4mk-ydp9-m3bx"},{"vulnerability":"VCID-epgm-u9j7-7bd1"},{"vulnerability":"VCID-f1cy-ycsy-qqhc"},{"vulnerability":"VCID-grnf-r71w-r3h7"},{"vulnerability":"VCID-h959-hrhy-wkep"},{"vulnerability":"VCID-kg8r-vq3s-2qa4"},{"vulnerability":"VCID-kp2b-t25c-sqfc"},{"vulnerability":"VCID-n8qk-qws2-9ydv"},{"vulnerability":"VCID-nxqt-4e79-w3et"},{"vulnerability":"VCID-qjxt-ekff-ykgk"},{"vulnerability":"VCID-rb9f-qwwr-v7c2"},{"vulnerability":"VCID-rc99-4efu-tud2"},{"vulnerability":"VCID-sfx1-4tej-gqgs"},{"vulnerability":"VCID-t95h-sdy4-tua1"},{"vulnerability":"VCID-tdub-a3cg-r7fg"},{"vulnerability":"VCID-uhyk-pc9e-w7cu"},{"vulnerability":"VCID-usz9-qezx-9ybx"},{"vulnerability":"VCID-wf33-hszj-akf9"},{"vulnerability":"VCID-y5k7-ve1j-3bfc"},{"vulnerability":"VCID-y7cv-qzrr-rbhd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.12"}],"aliases":["CVE-2013-5704"],"risk_score":1.1,"exploitability":"0.5","weighted_severity":"2.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3u4s-a96g-v3aq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4704?format=json","vulnerability_id":"VCID-43j2-q5rg-7qay","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-1312.json","reference_id":"","reference_type":"","scores":[{"value":"4.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-1312.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-1312","reference_id":"","reference_type":"","scores":[{"value":"0.0728","scoring_system":"epss","scoring_elements":"0.9188","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0728","scoring_system":"epss","scoring_elements":"0.91848","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0728","scoring_system":"epss","scoring_elements":"0.91875","published_at":"2026-06-12T12:55:00Z"},{"value":"0.0728","scoring_system":"epss","scoring_elements":"0.91883","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-1312"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15710","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15710"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15715","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15715"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1283","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1283"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1301","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1301"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1303","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1303"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1312","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1312"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1560634","reference_id":"1560634","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1560634"},{"reference_url":"https://security.archlinux.org/ASA-201804-4","reference_id":"ASA-201804-4","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201804-4"},{"reference_url":"https://security.archlinux.org/AVG-664","reference_id":"AVG-664","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-664"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2018-1312.json","reference_id":"CVE-2018-1312","reference_type":"","scores":[{"value":"low","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2018-1312.json"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:3558","reference_id":"RHSA-2018:3558","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2018:3558"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:0366","reference_id":"RHSA-2019:0366","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:0366"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:0367","reference_id":"RHSA-2019:0367","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:0367"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1898","reference_id":"RHSA-2019:1898","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1898"},{"reference_url":"https://usn.ubuntu.com/3627-1/","reference_id":"USN-3627-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3627-1/"},{"reference_url":"https://usn.ubuntu.com/3627-2/","reference_id":"USN-3627-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3627-2/"},{"reference_url":"https://usn.ubuntu.com/3937-2/","reference_id":"USN-3937-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3937-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1374?format=json","purl":"pkg:apache/httpd@2.4.33","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-38r6-mbzq-e7gd"},{"vulnerability":"VCID-3dh3-8wr4-uqcd"},{"vulnerability":"VCID-3dvk-8he7-xbck"},{"vulnerability":"VCID-7xcn-c8p4-j7ec"},{"vulnerability":"VCID-8vas-wy6r-pkda"},{"vulnerability":"VCID-9e8m-yzr3-pbgz"},{"vulnerability":"VCID-9wx3-62cp-fuh8"},{"vulnerability":"VCID-afat-n93z-8qeq"},{"vulnerability":"VCID-arm8-rmce-2bec"},{"vulnerability":"VCID-bx14-h9x6-77eb"},{"vulnerability":"VCID-ea8s-ercf-qfdx"},{"vulnerability":"VCID-h959-hrhy-wkep"},{"vulnerability":"VCID-ke6c-mee3-hkeu"},{"vulnerability":"VCID-mzxz-ujfq-qucw"},{"vulnerability":"VCID-n4rc-485y-4qgj"},{"vulnerability":"VCID-n8qk-qws2-9ydv"},{"vulnerability":"VCID-pr6s-p29g-k3hv"},{"vulnerability":"VCID-qw6u-prup-eqar"},{"vulnerability":"VCID-rb9f-qwwr-v7c2"},{"vulnerability":"VCID-rc99-4efu-tud2"},{"vulnerability":"VCID-t95h-sdy4-tua1"},{"vulnerability":"VCID-taua-zv9g-7kck"},{"vulnerability":"VCID-wf33-hszj-akf9"},{"vulnerability":"VCID-xj85-t7py-93cf"},{"vulnerability":"VCID-y5k7-ve1j-3bfc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.33"}],"aliases":["CVE-2018-1312"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-43j2-q5rg-7qay"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3420?format=json","vulnerability_id":"VCID-7j9j-sxt1-6qa6","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-3167.json","reference_id":"","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-3167.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-3167","reference_id":"","reference_type":"","scores":[{"value":"0.08717","scoring_system":"epss","scoring_elements":"0.92703","published_at":"2026-06-14T12:55:00Z"},{"value":"0.08717","scoring_system":"epss","scoring_elements":"0.92676","published_at":"2026-06-11T12:55:00Z"},{"value":"0.08717","scoring_system":"epss","scoring_elements":"0.92701","published_at":"2026-06-12T12:55:00Z"},{"value":"0.08717","scoring_system":"epss","scoring_elements":"0.92704","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-3167"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3167","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3167"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3169","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3169"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7668","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7668"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7679","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7679"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.8","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:P/I:P/A:N"},{"value":"7.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1463194","reference_id":"1463194","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1463194"},{"reference_url":"https://security.archlinux.org/ASA-201706-34","reference_id":"ASA-201706-34","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201706-34"},{"reference_url":"https://security.archlinux.org/AVG-316","reference_id":"AVG-316","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-316"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2017-3167.json","reference_id":"CVE-2017-3167","reference_type":"","scores":[{"value":"important","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2017-3167.json"},{"reference_url":"https://security.gentoo.org/glsa/201710-32","reference_id":"GLSA-201710-32","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201710-32"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:2478","reference_id":"RHSA-2017:2478","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:2478"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:2479","reference_id":"RHSA-2017:2479","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:2479"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:2483","reference_id":"RHSA-2017:2483","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:2483"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:3193","reference_id":"RHSA-2017:3193","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:3193"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:3194","reference_id":"RHSA-2017:3194","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:3194"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:3195","reference_id":"RHSA-2017:3195","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:3195"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:3475","reference_id":"RHSA-2017:3475","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:3475"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:3476","reference_id":"RHSA-2017:3476","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:3476"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:3477","reference_id":"RHSA-2017:3477","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:3477"},{"reference_url":"https://usn.ubuntu.com/3340-1/","reference_id":"USN-3340-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3340-1/"},{"reference_url":"https://usn.ubuntu.com/3373-1/","reference_id":"USN-3373-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3373-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1370?format=json","purl":"pkg:apache/httpd@2.4.26","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-38r6-mbzq-e7gd"},{"vulnerability":"VCID-3dh3-8wr4-uqcd"},{"vulnerability":"VCID-3dvk-8he7-xbck"},{"vulnerability":"VCID-43j2-q5rg-7qay"},{"vulnerability":"VCID-7xcn-c8p4-j7ec"},{"vulnerability":"VCID-8vas-wy6r-pkda"},{"vulnerability":"VCID-9e8m-yzr3-pbgz"},{"vulnerability":"VCID-9wx3-62cp-fuh8"},{"vulnerability":"VCID-afat-n93z-8qeq"},{"vulnerability":"VCID-arm8-rmce-2bec"},{"vulnerability":"VCID-dk12-s4wp-suhc"},{"vulnerability":"VCID-e4mk-ydp9-m3bx"},{"vulnerability":"VCID-ea8s-ercf-qfdx"},{"vulnerability":"VCID-ern3-8585-c7hn"},{"vulnerability":"VCID-gqvc-a75w-dqej"},{"vulnerability":"VCID-grnf-r71w-r3h7"},{"vulnerability":"VCID-h959-hrhy-wkep"},{"vulnerability":"VCID-kp2b-t25c-sqfc"},{"vulnerability":"VCID-mzxz-ujfq-qucw"},{"vulnerability":"VCID-n8qk-qws2-9ydv"},{"vulnerability":"VCID-pr6s-p29g-k3hv"},{"vulnerability":"VCID-qw6u-prup-eqar"},{"vulnerability":"VCID-rb9f-qwwr-v7c2"},{"vulnerability":"VCID-rc99-4efu-tud2"},{"vulnerability":"VCID-t95h-sdy4-tua1"},{"vulnerability":"VCID-taua-zv9g-7kck"},{"vulnerability":"VCID-tdub-a3cg-r7fg"},{"vulnerability":"VCID-usz9-qezx-9ybx"},{"vulnerability":"VCID-wf33-hszj-akf9"},{"vulnerability":"VCID-xj85-t7py-93cf"},{"vulnerability":"VCID-y5k7-ve1j-3bfc"},{"vulnerability":"VCID-y7cv-qzrr-rbhd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.26"}],"aliases":["CVE-2017-3167"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7j9j-sxt1-6qa6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/175420?format=json","vulnerability_id":"VCID-7xcn-c8p4-j7ec","summary":"Apache HTTP Server versions 2.4.0 to 2.4.46 Unprivileged local users can stop httpd on Windows","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13938.json","reference_id":"","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13938.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-13938","reference_id":"","reference_type":"","scores":[{"value":"0.00187","scoring_system":"epss","scoring_elements":"0.40378","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00187","scoring_system":"epss","scoring_elements":"0.40546","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00187","scoring_system":"epss","scoring_elements":"0.4057","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00187","scoring_system":"epss","scoring_elements":"0.40556","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-13938"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1970006","reference_id":"1970006","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1970006"},{"reference_url":"https://security.archlinux.org/AVG-2054","reference_id":"AVG-2054","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2054"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2020-13938.json","reference_id":"CVE-2020-13938","reference_type":"","scores":[{"value":"moderate","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2020-13938.json"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1385?format=json","purl":"pkg:apache/httpd@2.4.48","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-18er-46ap-subu"},{"vulnerability":"VCID-2ws7-fvz5-rbgw"},{"vulnerability":"VCID-dnnd-dss4-gfdh"},{"vulnerability":"VCID-ehs4-14pg-abgc"},{"vulnerability":"VCID-tcgf-utcm-3fc6"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.48"}],"aliases":["CVE-2020-13938"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7xcn-c8p4-j7ec"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/115675?format=json","vulnerability_id":"VCID-8vkp-k5yr-n3bn","summary":"security update","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3183.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3183.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2015-3183","reference_id":"","reference_type":"","scores":[{"value":"0.24118","scoring_system":"epss","scoring_elements":"0.96192","published_at":"2026-06-11T12:55:00Z"},{"value":"0.24118","scoring_system":"epss","scoring_elements":"0.96203","published_at":"2026-06-12T12:55:00Z"},{"value":"0.24118","scoring_system":"epss","scoring_elements":"0.96205","published_at":"2026-06-13T12:55:00Z"},{"value":"0.24118","scoring_system":"epss","scoring_elements":"0.96208","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2015-3183"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3183","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3183"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3185","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3185"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1243887","reference_id":"1243887","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1243887"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2015-3183.json","reference_id":"CVE-2015-3183","reference_type":"","scores":[{"value":"low","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2015-3183.json"},{"reference_url":"https://security.gentoo.org/glsa/201610-02","reference_id":"GLSA-201610-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201610-02"},{"reference_url":"https://access.redhat.com/errata/RHSA-2015:1666","reference_id":"RHSA-2015:1666","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2015:1666"},{"reference_url":"https://access.redhat.com/errata/RHSA-2015:1667","reference_id":"RHSA-2015:1667","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2015:1667"},{"reference_url":"https://access.redhat.com/errata/RHSA-2015:1668","reference_id":"RHSA-2015:1668","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2015:1668"},{"reference_url":"https://access.redhat.com/errata/RHSA-2015:2659","reference_id":"RHSA-2015:2659","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2015:2659"},{"reference_url":"https://access.redhat.com/errata/RHSA-2015:2660","reference_id":"RHSA-2015:2660","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2015:2660"},{"reference_url":"https://access.redhat.com/errata/RHSA-2015:2661","reference_id":"RHSA-2015:2661","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2015:2661"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:0061","reference_id":"RHSA-2016:0061","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:0061"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:0062","reference_id":"RHSA-2016:0062","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:0062"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:2054","reference_id":"RHSA-2016:2054","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:2054"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:2055","reference_id":"RHSA-2016:2055","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:2055"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:2056","reference_id":"RHSA-2016:2056","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:2056"},{"reference_url":"https://usn.ubuntu.com/2686-1/","reference_id":"USN-2686-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2686-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1359?format=json","purl":"pkg:apache/httpd@2.4.16","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w8b-3gmt-qff7"},{"vulnerability":"VCID-3dh3-8wr4-uqcd"},{"vulnerability":"VCID-43j2-q5rg-7qay"},{"vulnerability":"VCID-7j9j-sxt1-6qa6"},{"vulnerability":"VCID-7xcn-c8p4-j7ec"},{"vulnerability":"VCID-9e8m-yzr3-pbgz"},{"vulnerability":"VCID-9wx3-62cp-fuh8"},{"vulnerability":"VCID-arm8-rmce-2bec"},{"vulnerability":"VCID-bn5d-te6p-hyf1"},{"vulnerability":"VCID-dk12-s4wp-suhc"},{"vulnerability":"VCID-e4mk-ydp9-m3bx"},{"vulnerability":"VCID-epgm-u9j7-7bd1"},{"vulnerability":"VCID-f1cy-ycsy-qqhc"},{"vulnerability":"VCID-grnf-r71w-r3h7"},{"vulnerability":"VCID-h959-hrhy-wkep"},{"vulnerability":"VCID-kg8r-vq3s-2qa4"},{"vulnerability":"VCID-kp2b-t25c-sqfc"},{"vulnerability":"VCID-n8qk-qws2-9ydv"},{"vulnerability":"VCID-nxqt-4e79-w3et"},{"vulnerability":"VCID-rb9f-qwwr-v7c2"},{"vulnerability":"VCID-rc99-4efu-tud2"},{"vulnerability":"VCID-sfx1-4tej-gqgs"},{"vulnerability":"VCID-t95h-sdy4-tua1"},{"vulnerability":"VCID-tdub-a3cg-r7fg"},{"vulnerability":"VCID-uhyk-pc9e-w7cu"},{"vulnerability":"VCID-usz9-qezx-9ybx"},{"vulnerability":"VCID-wf33-hszj-akf9"},{"vulnerability":"VCID-y5k7-ve1j-3bfc"},{"vulnerability":"VCID-y7cv-qzrr-rbhd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.16"}],"aliases":["CVE-2015-3183"],"risk_score":1.6,"exploitability":"0.5","weighted_severity":"3.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8vkp-k5yr-n3bn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/5942?format=json","vulnerability_id":"VCID-9e8m-yzr3-pbgz","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-10098.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-10098.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-10098","reference_id":"","reference_type":"","scores":[{"value":"0.77398","scoring_system":"epss","scoring_elements":"0.99005","published_at":"2026-06-11T12:55:00Z"},{"value":"0.77398","scoring_system":"epss","scoring_elements":"0.99009","published_at":"2026-06-13T12:55:00Z"},{"value":"0.77398","scoring_system":"epss","scoring_elements":"0.9901","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-10098"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10081","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10081"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10082","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10082"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10098","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10098"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9517","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9517"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1743959","reference_id":"1743959","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1743959"},{"reference_url":"https://0day.work/open-redirects-in-improperly-configured-mod_rewrite-rules-poc-for-cve-2019-10098/","reference_id":"CVE-2019-10098","reference_type":"exploit","scores":[],"url":"https://0day.work/open-redirects-in-improperly-configured-mod_rewrite-rules-poc-for-cve-2019-10098/"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/webapps/47689.md","reference_id":"CVE-2019-10098","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/webapps/47689.md"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2019-10098.json","reference_id":"CVE-2019-10098","reference_type":"","scores":[{"value":"low","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2019-10098.json"},{"reference_url":"https://security.gentoo.org/glsa/201909-04","reference_id":"GLSA-201909-04","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201909-04"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:1336","reference_id":"RHSA-2020:1336","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:1336"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:1337","reference_id":"RHSA-2020:1337","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:1337"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2263","reference_id":"RHSA-2020:2263","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2263"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3958","reference_id":"RHSA-2020:3958","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3958"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4751","reference_id":"RHSA-2020:4751","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4751"},{"reference_url":"https://usn.ubuntu.com/4113-1/","reference_id":"USN-4113-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4113-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1382?format=json","purl":"pkg:apache/httpd@2.4.41","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3dh3-8wr4-uqcd"},{"vulnerability":"VCID-7xcn-c8p4-j7ec"},{"vulnerability":"VCID-9wx3-62cp-fuh8"},{"vulnerability":"VCID-n8qk-qws2-9ydv"},{"vulnerability":"VCID-rc99-4efu-tud2"},{"vulnerability":"VCID-rnxc-by82-nfhu"},{"vulnerability":"VCID-ryvw-uqwb-vbhu"},{"vulnerability":"VCID-wf33-hszj-akf9"},{"vulnerability":"VCID-y5k7-ve1j-3bfc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.41"}],"aliases":["CVE-2019-10098"],"risk_score":8.2,"exploitability":"2.0","weighted_severity":"4.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9e8m-yzr3-pbgz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/109483?format=json","vulnerability_id":"VCID-9nuk-vm33-kkha","summary":"security update","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0231.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0231.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-0231","reference_id":"","reference_type":"","scores":[{"value":"0.44151","scoring_system":"epss","scoring_elements":"0.97629","published_at":"2026-06-11T12:55:00Z"},{"value":"0.44151","scoring_system":"epss","scoring_elements":"0.97638","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-0231"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0118","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0118"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0226","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0226"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0231","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0231"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1120596","reference_id":"1120596","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1120596"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2014-0231.json","reference_id":"CVE-2014-0231","reference_type":"","scores":[{"value":"important","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2014-0231.json"},{"reference_url":"https://security.gentoo.org/glsa/201504-03","reference_id":"GLSA-201504-03","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201504-03"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0920","reference_id":"RHSA-2014:0920","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0920"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0921","reference_id":"RHSA-2014:0921","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0921"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0922","reference_id":"RHSA-2014:0922","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0922"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1019","reference_id":"RHSA-2014:1019","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1019"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1020","reference_id":"RHSA-2014:1020","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1020"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1021","reference_id":"RHSA-2014:1021","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1021"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1086","reference_id":"RHSA-2014:1086","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1086"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1087","reference_id":"RHSA-2014:1087","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1087"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1088","reference_id":"RHSA-2014:1088","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1088"},{"reference_url":"https://usn.ubuntu.com/2299-1/","reference_id":"USN-2299-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2299-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1356?format=json","purl":"pkg:apache/httpd@2.4.10","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w8b-3gmt-qff7"},{"vulnerability":"VCID-3dh3-8wr4-uqcd"},{"vulnerability":"VCID-3u4s-a96g-v3aq"},{"vulnerability":"VCID-43j2-q5rg-7qay"},{"vulnerability":"VCID-7j9j-sxt1-6qa6"},{"vulnerability":"VCID-7xcn-c8p4-j7ec"},{"vulnerability":"VCID-8vkp-k5yr-n3bn"},{"vulnerability":"VCID-9e8m-yzr3-pbgz"},{"vulnerability":"VCID-9wx3-62cp-fuh8"},{"vulnerability":"VCID-arm8-rmce-2bec"},{"vulnerability":"VCID-bn5d-te6p-hyf1"},{"vulnerability":"VCID-dk12-s4wp-suhc"},{"vulnerability":"VCID-dr2b-7ack-wbfp"},{"vulnerability":"VCID-e4mk-ydp9-m3bx"},{"vulnerability":"VCID-epgm-u9j7-7bd1"},{"vulnerability":"VCID-f1cy-ycsy-qqhc"},{"vulnerability":"VCID-grnf-r71w-r3h7"},{"vulnerability":"VCID-h959-hrhy-wkep"},{"vulnerability":"VCID-kg8r-vq3s-2qa4"},{"vulnerability":"VCID-kp2b-t25c-sqfc"},{"vulnerability":"VCID-n82t-1jhq-8ba3"},{"vulnerability":"VCID-n8qk-qws2-9ydv"},{"vulnerability":"VCID-nxqt-4e79-w3et"},{"vulnerability":"VCID-pc8m-gm5b-gya1"},{"vulnerability":"VCID-qjxt-ekff-ykgk"},{"vulnerability":"VCID-rb9f-qwwr-v7c2"},{"vulnerability":"VCID-rc99-4efu-tud2"},{"vulnerability":"VCID-sfx1-4tej-gqgs"},{"vulnerability":"VCID-t95h-sdy4-tua1"},{"vulnerability":"VCID-tdub-a3cg-r7fg"},{"vulnerability":"VCID-uhyk-pc9e-w7cu"},{"vulnerability":"VCID-usz9-qezx-9ybx"},{"vulnerability":"VCID-uyz2-jck5-d7dd"},{"vulnerability":"VCID-wf33-hszj-akf9"},{"vulnerability":"VCID-y5k7-ve1j-3bfc"},{"vulnerability":"VCID-y7cv-qzrr-rbhd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.10"}],"aliases":["CVE-2014-0231"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9nuk-vm33-kkha"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/8526?format=json","vulnerability_id":"VCID-9wx3-62cp-fuh8","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-35452.json","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-35452.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-35452","reference_id":"","reference_type":"","scores":[{"value":"0.06315","scoring_system":"epss","scoring_elements":"0.91207","published_at":"2026-06-14T12:55:00Z"},{"value":"0.06315","scoring_system":"epss","scoring_elements":"0.9117","published_at":"2026-06-11T12:55:00Z"},{"value":"0.06315","scoring_system":"epss","scoring_elements":"0.91201","published_at":"2026-06-12T12:55:00Z"},{"value":"0.06315","scoring_system":"epss","scoring_elements":"0.91208","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-35452"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35452","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35452"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26690","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26690"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26691","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26691"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30641","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30641"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-31618","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-31618"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1966724","reference_id":"1966724","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1966724"},{"reference_url":"https://security.archlinux.org/AVG-2053","reference_id":"AVG-2053","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2053"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2020-35452.json","reference_id":"CVE-2020-35452","reference_type":"","scores":[{"value":"low","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2020-35452.json"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4613","reference_id":"RHSA-2021:4613","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4613"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4614","reference_id":"RHSA-2021:4614","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4614"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1915","reference_id":"RHSA-2022:1915","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1915"},{"reference_url":"https://usn.ubuntu.com/4994-1/","reference_id":"USN-4994-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4994-1/"},{"reference_url":"https://usn.ubuntu.com/4994-2/","reference_id":"USN-4994-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4994-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1385?format=json","purl":"pkg:apache/httpd@2.4.48","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-18er-46ap-subu"},{"vulnerability":"VCID-2ws7-fvz5-rbgw"},{"vulnerability":"VCID-dnnd-dss4-gfdh"},{"vulnerability":"VCID-ehs4-14pg-abgc"},{"vulnerability":"VCID-tcgf-utcm-3fc6"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.48"}],"aliases":["CVE-2020-35452"],"risk_score":3.3,"exploitability":"0.5","weighted_severity":"6.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9wx3-62cp-fuh8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/5040?format=json","vulnerability_id":"VCID-arm8-rmce-2bec","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-17199.json","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-17199.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-17199","reference_id":"","reference_type":"","scores":[{"value":"0.10459","scoring_system":"epss","scoring_elements":"0.9343","published_at":"2026-06-14T12:55:00Z"},{"value":"0.10459","scoring_system":"epss","scoring_elements":"0.93404","published_at":"2026-06-11T12:55:00Z"},{"value":"0.10459","scoring_system":"epss","scoring_elements":"0.93425","published_at":"2026-06-12T12:55:00Z"},{"value":"0.10459","scoring_system":"epss","scoring_elements":"0.93429","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-17199"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17189","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17189"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17199","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17199"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0196","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0196"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0211","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0211"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0217","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0217"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0220","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0220"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1668493","reference_id":"1668493","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1668493"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=920303","reference_id":"920303","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=920303"},{"reference_url":"https://security.archlinux.org/ASA-201901-14","reference_id":"ASA-201901-14","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201901-14"},{"reference_url":"https://security.archlinux.org/AVG-857","reference_id":"AVG-857","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-857"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2018-17199.json","reference_id":"CVE-2018-17199","reference_type":"","scores":[{"value":"low","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2018-17199.json"},{"reference_url":"https://security.gentoo.org/glsa/201903-21","reference_id":"GLSA-201903-21","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201903-21"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3932","reference_id":"RHSA-2019:3932","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3932"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3933","reference_id":"RHSA-2019:3933","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3933"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3935","reference_id":"RHSA-2019:3935","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3935"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4126","reference_id":"RHSA-2019:4126","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:4126"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:1121","reference_id":"RHSA-2020:1121","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:1121"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:1809","reference_id":"RHSA-2021:1809","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:1809"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1379?format=json","purl":"pkg:apache/httpd@2.4.38","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-38r6-mbzq-e7gd"},{"vulnerability":"VCID-3dh3-8wr4-uqcd"},{"vulnerability":"VCID-3dvk-8he7-xbck"},{"vulnerability":"VCID-7xcn-c8p4-j7ec"},{"vulnerability":"VCID-9e8m-yzr3-pbgz"},{"vulnerability":"VCID-9wx3-62cp-fuh8"},{"vulnerability":"VCID-afat-n93z-8qeq"},{"vulnerability":"VCID-h959-hrhy-wkep"},{"vulnerability":"VCID-ke6c-mee3-hkeu"},{"vulnerability":"VCID-mfpx-f4mq-3ycz"},{"vulnerability":"VCID-mzxz-ujfq-qucw"},{"vulnerability":"VCID-n4rc-485y-4qgj"},{"vulnerability":"VCID-n8qk-qws2-9ydv"},{"vulnerability":"VCID-pr6s-p29g-k3hv"},{"vulnerability":"VCID-q5a8-7u8v-xyh2"},{"vulnerability":"VCID-qw6u-prup-eqar"},{"vulnerability":"VCID-rb9f-qwwr-v7c2"},{"vulnerability":"VCID-rc99-4efu-tud2"},{"vulnerability":"VCID-t95h-sdy4-tua1"},{"vulnerability":"VCID-taua-zv9g-7kck"},{"vulnerability":"VCID-wf33-hszj-akf9"},{"vulnerability":"VCID-y5k7-ve1j-3bfc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.38"}],"aliases":["CVE-2018-17199"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-arm8-rmce-2bec"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/1021?format=json","vulnerability_id":"VCID-bn5d-te6p-hyf1","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-2161.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-2161.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-2161","reference_id":"","reference_type":"","scores":[{"value":"0.25822","scoring_system":"epss","scoring_elements":"0.96383","published_at":"2026-06-11T12:55:00Z"},{"value":"0.25822","scoring_system":"epss","scoring_elements":"0.96394","published_at":"2026-06-13T12:55:00Z"},{"value":"0.25822","scoring_system":"epss","scoring_elements":"0.96398","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-2161"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0736","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0736"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2161","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2161"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8743","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8743"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:N/I:N/A:P"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1406753","reference_id":"1406753","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1406753"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2016-2161.json","reference_id":"CVE-2016-2161","reference_type":"","scores":[{"value":"low","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2016-2161.json"},{"reference_url":"https://security.gentoo.org/glsa/201701-36","reference_id":"GLSA-201701-36","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201701-36"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:0906","reference_id":"RHSA-2017:0906","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:0906"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:1161","reference_id":"RHSA-2017:1161","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:1161"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:1413","reference_id":"RHSA-2017:1413","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:1413"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:1414","reference_id":"RHSA-2017:1414","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:1414"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:1415","reference_id":"RHSA-2017:1415","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:1415"},{"reference_url":"https://usn.ubuntu.com/3279-1/","reference_id":"USN-3279-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3279-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1367?format=json","purl":"pkg:apache/httpd@2.4.25","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-38r6-mbzq-e7gd"},{"vulnerability":"VCID-3dh3-8wr4-uqcd"},{"vulnerability":"VCID-3dvk-8he7-xbck"},{"vulnerability":"VCID-43j2-q5rg-7qay"},{"vulnerability":"VCID-44ma-b8wt-67fa"},{"vulnerability":"VCID-7j9j-sxt1-6qa6"},{"vulnerability":"VCID-7xcn-c8p4-j7ec"},{"vulnerability":"VCID-8vas-wy6r-pkda"},{"vulnerability":"VCID-9e8m-yzr3-pbgz"},{"vulnerability":"VCID-9wx3-62cp-fuh8"},{"vulnerability":"VCID-afat-n93z-8qeq"},{"vulnerability":"VCID-arm8-rmce-2bec"},{"vulnerability":"VCID-dk12-s4wp-suhc"},{"vulnerability":"VCID-e4mk-ydp9-m3bx"},{"vulnerability":"VCID-ea8s-ercf-qfdx"},{"vulnerability":"VCID-gqvc-a75w-dqej"},{"vulnerability":"VCID-grnf-r71w-r3h7"},{"vulnerability":"VCID-h959-hrhy-wkep"},{"vulnerability":"VCID-kp2b-t25c-sqfc"},{"vulnerability":"VCID-mzxz-ujfq-qucw"},{"vulnerability":"VCID-n8qk-qws2-9ydv"},{"vulnerability":"VCID-nxqt-4e79-w3et"},{"vulnerability":"VCID-pr6s-p29g-k3hv"},{"vulnerability":"VCID-qw6u-prup-eqar"},{"vulnerability":"VCID-rb9f-qwwr-v7c2"},{"vulnerability":"VCID-rc99-4efu-tud2"},{"vulnerability":"VCID-t95h-sdy4-tua1"},{"vulnerability":"VCID-taua-zv9g-7kck"},{"vulnerability":"VCID-tdub-a3cg-r7fg"},{"vulnerability":"VCID-uhyk-pc9e-w7cu"},{"vulnerability":"VCID-usz9-qezx-9ybx"},{"vulnerability":"VCID-wf33-hszj-akf9"},{"vulnerability":"VCID-x7bx-d6tn-fbhf"},{"vulnerability":"VCID-xj85-t7py-93cf"},{"vulnerability":"VCID-y5k7-ve1j-3bfc"},{"vulnerability":"VCID-y7cv-qzrr-rbhd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.25"}],"aliases":["CVE-2016-2161"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-bn5d-te6p-hyf1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/109481?format=json","vulnerability_id":"VCID-dj7a-88wd-dugh","summary":"security update","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0226.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0226.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-0226","reference_id":"","reference_type":"","scores":[{"value":"0.75444","scoring_system":"epss","scoring_elements":"0.98911","published_at":"2026-06-11T12:55:00Z"},{"value":"0.75444","scoring_system":"epss","scoring_elements":"0.98915","published_at":"2026-06-12T12:55:00Z"},{"value":"0.75444","scoring_system":"epss","scoring_elements":"0.98917","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-0226"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0118","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0118"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0226","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0226"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0231","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0231"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1120603","reference_id":"1120603","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1120603"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2014-0226.json","reference_id":"CVE-2014-0226","reference_type":"","scores":[{"value":"moderate","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2014-0226.json"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/34133.txt","reference_id":"CVE-2014-0226;OSVDB-109216","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/34133.txt"},{"reference_url":"https://security.gentoo.org/glsa/201408-12","reference_id":"GLSA-201408-12","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201408-12"},{"reference_url":"https://security.gentoo.org/glsa/201504-03","reference_id":"GLSA-201504-03","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201504-03"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0920","reference_id":"RHSA-2014:0920","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0920"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0921","reference_id":"RHSA-2014:0921","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0921"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0922","reference_id":"RHSA-2014:0922","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0922"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1019","reference_id":"RHSA-2014:1019","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1019"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1020","reference_id":"RHSA-2014:1020","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1020"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1021","reference_id":"RHSA-2014:1021","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1021"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1086","reference_id":"RHSA-2014:1086","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1086"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1087","reference_id":"RHSA-2014:1087","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1087"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1088","reference_id":"RHSA-2014:1088","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1088"},{"reference_url":"https://usn.ubuntu.com/2299-1/","reference_id":"USN-2299-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2299-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1356?format=json","purl":"pkg:apache/httpd@2.4.10","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w8b-3gmt-qff7"},{"vulnerability":"VCID-3dh3-8wr4-uqcd"},{"vulnerability":"VCID-3u4s-a96g-v3aq"},{"vulnerability":"VCID-43j2-q5rg-7qay"},{"vulnerability":"VCID-7j9j-sxt1-6qa6"},{"vulnerability":"VCID-7xcn-c8p4-j7ec"},{"vulnerability":"VCID-8vkp-k5yr-n3bn"},{"vulnerability":"VCID-9e8m-yzr3-pbgz"},{"vulnerability":"VCID-9wx3-62cp-fuh8"},{"vulnerability":"VCID-arm8-rmce-2bec"},{"vulnerability":"VCID-bn5d-te6p-hyf1"},{"vulnerability":"VCID-dk12-s4wp-suhc"},{"vulnerability":"VCID-dr2b-7ack-wbfp"},{"vulnerability":"VCID-e4mk-ydp9-m3bx"},{"vulnerability":"VCID-epgm-u9j7-7bd1"},{"vulnerability":"VCID-f1cy-ycsy-qqhc"},{"vulnerability":"VCID-grnf-r71w-r3h7"},{"vulnerability":"VCID-h959-hrhy-wkep"},{"vulnerability":"VCID-kg8r-vq3s-2qa4"},{"vulnerability":"VCID-kp2b-t25c-sqfc"},{"vulnerability":"VCID-n82t-1jhq-8ba3"},{"vulnerability":"VCID-n8qk-qws2-9ydv"},{"vulnerability":"VCID-nxqt-4e79-w3et"},{"vulnerability":"VCID-pc8m-gm5b-gya1"},{"vulnerability":"VCID-qjxt-ekff-ykgk"},{"vulnerability":"VCID-rb9f-qwwr-v7c2"},{"vulnerability":"VCID-rc99-4efu-tud2"},{"vulnerability":"VCID-sfx1-4tej-gqgs"},{"vulnerability":"VCID-t95h-sdy4-tua1"},{"vulnerability":"VCID-tdub-a3cg-r7fg"},{"vulnerability":"VCID-uhyk-pc9e-w7cu"},{"vulnerability":"VCID-usz9-qezx-9ybx"},{"vulnerability":"VCID-uyz2-jck5-d7dd"},{"vulnerability":"VCID-wf33-hszj-akf9"},{"vulnerability":"VCID-y5k7-ve1j-3bfc"},{"vulnerability":"VCID-y7cv-qzrr-rbhd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.10"}],"aliases":["CVE-2014-0226"],"risk_score":9.6,"exploitability":"2.0","weighted_severity":"4.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-dj7a-88wd-dugh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3074?format=json","vulnerability_id":"VCID-dk12-s4wp-suhc","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15710.json","reference_id":"","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15710.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-15710","reference_id":"","reference_type":"","scores":[{"value":"0.13193","scoring_system":"epss","scoring_elements":"0.94319","published_at":"2026-06-14T12:55:00Z"},{"value":"0.13193","scoring_system":"epss","scoring_elements":"0.94293","published_at":"2026-06-11T12:55:00Z"},{"value":"0.13193","scoring_system":"epss","scoring_elements":"0.94313","published_at":"2026-06-12T12:55:00Z"},{"value":"0.13193","scoring_system":"epss","scoring_elements":"0.94317","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-15710"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15710","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15710"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15715","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15715"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1283","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1283"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1301","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1301"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1303","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1303"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1312","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1312"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1560599","reference_id":"1560599","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1560599"},{"reference_url":"https://security.archlinux.org/ASA-201804-4","reference_id":"ASA-201804-4","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201804-4"},{"reference_url":"https://security.archlinux.org/AVG-664","reference_id":"AVG-664","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-664"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2017-15710.json","reference_id":"CVE-2017-15710","reference_type":"","scores":[{"value":"low","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2017-15710.json"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:3558","reference_id":"RHSA-2018:3558","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2018:3558"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:0366","reference_id":"RHSA-2019:0366","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:0366"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:0367","reference_id":"RHSA-2019:0367","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:0367"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:1121","reference_id":"RHSA-2020:1121","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:1121"},{"reference_url":"https://usn.ubuntu.com/3627-1/","reference_id":"USN-3627-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3627-1/"},{"reference_url":"https://usn.ubuntu.com/3627-2/","reference_id":"USN-3627-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3627-2/"},{"reference_url":"https://usn.ubuntu.com/3937-2/","reference_id":"USN-3937-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3937-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1374?format=json","purl":"pkg:apache/httpd@2.4.33","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-38r6-mbzq-e7gd"},{"vulnerability":"VCID-3dh3-8wr4-uqcd"},{"vulnerability":"VCID-3dvk-8he7-xbck"},{"vulnerability":"VCID-7xcn-c8p4-j7ec"},{"vulnerability":"VCID-8vas-wy6r-pkda"},{"vulnerability":"VCID-9e8m-yzr3-pbgz"},{"vulnerability":"VCID-9wx3-62cp-fuh8"},{"vulnerability":"VCID-afat-n93z-8qeq"},{"vulnerability":"VCID-arm8-rmce-2bec"},{"vulnerability":"VCID-bx14-h9x6-77eb"},{"vulnerability":"VCID-ea8s-ercf-qfdx"},{"vulnerability":"VCID-h959-hrhy-wkep"},{"vulnerability":"VCID-ke6c-mee3-hkeu"},{"vulnerability":"VCID-mzxz-ujfq-qucw"},{"vulnerability":"VCID-n4rc-485y-4qgj"},{"vulnerability":"VCID-n8qk-qws2-9ydv"},{"vulnerability":"VCID-pr6s-p29g-k3hv"},{"vulnerability":"VCID-qw6u-prup-eqar"},{"vulnerability":"VCID-rb9f-qwwr-v7c2"},{"vulnerability":"VCID-rc99-4efu-tud2"},{"vulnerability":"VCID-t95h-sdy4-tua1"},{"vulnerability":"VCID-taua-zv9g-7kck"},{"vulnerability":"VCID-wf33-hszj-akf9"},{"vulnerability":"VCID-xj85-t7py-93cf"},{"vulnerability":"VCID-y5k7-ve1j-3bfc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.33"}],"aliases":["CVE-2017-15710"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-dk12-s4wp-suhc"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/115677?format=json","vulnerability_id":"VCID-dr2b-7ack-wbfp","summary":"security update","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3185.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3185.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2015-3185","reference_id":"","reference_type":"","scores":[{"value":"0.06367","scoring_system":"epss","scoring_elements":"0.91206","published_at":"2026-06-11T12:55:00Z"},{"value":"0.06367","scoring_system":"epss","scoring_elements":"0.91236","published_at":"2026-06-12T12:55:00Z"},{"value":"0.06367","scoring_system":"epss","scoring_elements":"0.91243","published_at":"2026-06-13T12:55:00Z"},{"value":"0.06367","scoring_system":"epss","scoring_elements":"0.91241","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2015-3185"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3183","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3183"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3185","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3185"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1243888","reference_id":"1243888","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1243888"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2015-3185.json","reference_id":"CVE-2015-3185","reference_type":"","scores":[{"value":"low","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2015-3185.json"},{"reference_url":"https://access.redhat.com/errata/RHSA-2015:1666","reference_id":"RHSA-2015:1666","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2015:1666"},{"reference_url":"https://access.redhat.com/errata/RHSA-2015:1667","reference_id":"RHSA-2015:1667","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2015:1667"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:2957","reference_id":"RHSA-2016:2957","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:2957"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:2708","reference_id":"RHSA-2017:2708","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:2708"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:2709","reference_id":"RHSA-2017:2709","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:2709"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:2710","reference_id":"RHSA-2017:2710","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:2710"},{"reference_url":"https://usn.ubuntu.com/2686-1/","reference_id":"USN-2686-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2686-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1359?format=json","purl":"pkg:apache/httpd@2.4.16","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w8b-3gmt-qff7"},{"vulnerability":"VCID-3dh3-8wr4-uqcd"},{"vulnerability":"VCID-43j2-q5rg-7qay"},{"vulnerability":"VCID-7j9j-sxt1-6qa6"},{"vulnerability":"VCID-7xcn-c8p4-j7ec"},{"vulnerability":"VCID-9e8m-yzr3-pbgz"},{"vulnerability":"VCID-9wx3-62cp-fuh8"},{"vulnerability":"VCID-arm8-rmce-2bec"},{"vulnerability":"VCID-bn5d-te6p-hyf1"},{"vulnerability":"VCID-dk12-s4wp-suhc"},{"vulnerability":"VCID-e4mk-ydp9-m3bx"},{"vulnerability":"VCID-epgm-u9j7-7bd1"},{"vulnerability":"VCID-f1cy-ycsy-qqhc"},{"vulnerability":"VCID-grnf-r71w-r3h7"},{"vulnerability":"VCID-h959-hrhy-wkep"},{"vulnerability":"VCID-kg8r-vq3s-2qa4"},{"vulnerability":"VCID-kp2b-t25c-sqfc"},{"vulnerability":"VCID-n8qk-qws2-9ydv"},{"vulnerability":"VCID-nxqt-4e79-w3et"},{"vulnerability":"VCID-rb9f-qwwr-v7c2"},{"vulnerability":"VCID-rc99-4efu-tud2"},{"vulnerability":"VCID-sfx1-4tej-gqgs"},{"vulnerability":"VCID-t95h-sdy4-tua1"},{"vulnerability":"VCID-tdub-a3cg-r7fg"},{"vulnerability":"VCID-uhyk-pc9e-w7cu"},{"vulnerability":"VCID-usz9-qezx-9ybx"},{"vulnerability":"VCID-wf33-hszj-akf9"},{"vulnerability":"VCID-y5k7-ve1j-3bfc"},{"vulnerability":"VCID-y7cv-qzrr-rbhd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.16"}],"aliases":["CVE-2015-3185"],"risk_score":1.6,"exploitability":"0.5","weighted_severity":"3.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-dr2b-7ack-wbfp"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4249?format=json","vulnerability_id":"VCID-e4mk-ydp9-m3bx","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9788.json","reference_id":"","reference_type":"","scores":[{"value":"4.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9788.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-9788","reference_id":"","reference_type":"","scores":[{"value":"0.49498","scoring_system":"epss","scoring_elements":"0.97869","published_at":"2026-06-14T12:55:00Z"},{"value":"0.49498","scoring_system":"epss","scoring_elements":"0.97859","published_at":"2026-06-11T12:55:00Z"},{"value":"0.49498","scoring_system":"epss","scoring_elements":"0.97868","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-9788"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9788","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9788"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:H/Au:N/C:P/I:N/A:P"},{"value":"4.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1470748","reference_id":"1470748","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1470748"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=868467","reference_id":"868467","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=868467"},{"reference_url":"https://security.archlinux.org/ASA-201707-15","reference_id":"ASA-201707-15","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201707-15"},{"reference_url":"https://security.archlinux.org/AVG-350","reference_id":"AVG-350","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-350"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2017-9788.json","reference_id":"CVE-2017-9788","reference_type":"","scores":[{"value":"important","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2017-9788.json"},{"reference_url":"https://security.gentoo.org/glsa/201710-32","reference_id":"GLSA-201710-32","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201710-32"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:2478","reference_id":"RHSA-2017:2478","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:2478"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:2479","reference_id":"RHSA-2017:2479","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:2479"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:2483","reference_id":"RHSA-2017:2483","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:2483"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:2708","reference_id":"RHSA-2017:2708","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:2708"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:2709","reference_id":"RHSA-2017:2709","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:2709"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:2710","reference_id":"RHSA-2017:2710","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:2710"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:3113","reference_id":"RHSA-2017:3113","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:3113"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:3114","reference_id":"RHSA-2017:3114","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:3114"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:3193","reference_id":"RHSA-2017:3193","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:3193"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:3194","reference_id":"RHSA-2017:3194","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:3194"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:3195","reference_id":"RHSA-2017:3195","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:3195"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:3239","reference_id":"RHSA-2017:3239","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:3239"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:3240","reference_id":"RHSA-2017:3240","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:3240"},{"reference_url":"https://usn.ubuntu.com/3370-1/","reference_id":"USN-3370-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3370-1/"},{"reference_url":"https://usn.ubuntu.com/3370-2/","reference_id":"USN-3370-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3370-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1371?format=json","purl":"pkg:apache/httpd@2.4.27","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-38r6-mbzq-e7gd"},{"vulnerability":"VCID-3dh3-8wr4-uqcd"},{"vulnerability":"VCID-3dvk-8he7-xbck"},{"vulnerability":"VCID-43j2-q5rg-7qay"},{"vulnerability":"VCID-7xcn-c8p4-j7ec"},{"vulnerability":"VCID-8vas-wy6r-pkda"},{"vulnerability":"VCID-9e8m-yzr3-pbgz"},{"vulnerability":"VCID-9wx3-62cp-fuh8"},{"vulnerability":"VCID-afat-n93z-8qeq"},{"vulnerability":"VCID-arm8-rmce-2bec"},{"vulnerability":"VCID-dk12-s4wp-suhc"},{"vulnerability":"VCID-ea8s-ercf-qfdx"},{"vulnerability":"VCID-gqvc-a75w-dqej"},{"vulnerability":"VCID-grnf-r71w-r3h7"},{"vulnerability":"VCID-h959-hrhy-wkep"},{"vulnerability":"VCID-kp2b-t25c-sqfc"},{"vulnerability":"VCID-mzxz-ujfq-qucw"},{"vulnerability":"VCID-n8qk-qws2-9ydv"},{"vulnerability":"VCID-pr6s-p29g-k3hv"},{"vulnerability":"VCID-qw6u-prup-eqar"},{"vulnerability":"VCID-rb9f-qwwr-v7c2"},{"vulnerability":"VCID-rc99-4efu-tud2"},{"vulnerability":"VCID-t95h-sdy4-tua1"},{"vulnerability":"VCID-taua-zv9g-7kck"},{"vulnerability":"VCID-tdub-a3cg-r7fg"},{"vulnerability":"VCID-usz9-qezx-9ybx"},{"vulnerability":"VCID-wf33-hszj-akf9"},{"vulnerability":"VCID-xj85-t7py-93cf"},{"vulnerability":"VCID-y5k7-ve1j-3bfc"},{"vulnerability":"VCID-y7cv-qzrr-rbhd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.27"}],"aliases":["CVE-2017-9788"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-e4mk-ydp9-m3bx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/1462?format=json","vulnerability_id":"VCID-epgm-u9j7-7bd1","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-4975.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-4975.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-4975","reference_id":"","reference_type":"","scores":[{"value":"0.59605","scoring_system":"epss","scoring_elements":"0.98289","published_at":"2026-06-11T12:55:00Z"},{"value":"0.59605","scoring_system":"epss","scoring_elements":"0.98296","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-4975"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4975","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4975"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.9","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1375968","reference_id":"1375968","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1375968"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2016-4975.json","reference_id":"CVE-2016-4975","reference_type":"","scores":[{"value":"moderate","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2016-4975.json"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:0906","reference_id":"RHSA-2017:0906","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:0906"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:2185","reference_id":"RHSA-2018:2185","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2018:2185"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:2186","reference_id":"RHSA-2018:2186","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2018:2186"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:2486","reference_id":"RHSA-2018:2486","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2018:2486"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1367?format=json","purl":"pkg:apache/httpd@2.4.25","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-38r6-mbzq-e7gd"},{"vulnerability":"VCID-3dh3-8wr4-uqcd"},{"vulnerability":"VCID-3dvk-8he7-xbck"},{"vulnerability":"VCID-43j2-q5rg-7qay"},{"vulnerability":"VCID-44ma-b8wt-67fa"},{"vulnerability":"VCID-7j9j-sxt1-6qa6"},{"vulnerability":"VCID-7xcn-c8p4-j7ec"},{"vulnerability":"VCID-8vas-wy6r-pkda"},{"vulnerability":"VCID-9e8m-yzr3-pbgz"},{"vulnerability":"VCID-9wx3-62cp-fuh8"},{"vulnerability":"VCID-afat-n93z-8qeq"},{"vulnerability":"VCID-arm8-rmce-2bec"},{"vulnerability":"VCID-dk12-s4wp-suhc"},{"vulnerability":"VCID-e4mk-ydp9-m3bx"},{"vulnerability":"VCID-ea8s-ercf-qfdx"},{"vulnerability":"VCID-gqvc-a75w-dqej"},{"vulnerability":"VCID-grnf-r71w-r3h7"},{"vulnerability":"VCID-h959-hrhy-wkep"},{"vulnerability":"VCID-kp2b-t25c-sqfc"},{"vulnerability":"VCID-mzxz-ujfq-qucw"},{"vulnerability":"VCID-n8qk-qws2-9ydv"},{"vulnerability":"VCID-nxqt-4e79-w3et"},{"vulnerability":"VCID-pr6s-p29g-k3hv"},{"vulnerability":"VCID-qw6u-prup-eqar"},{"vulnerability":"VCID-rb9f-qwwr-v7c2"},{"vulnerability":"VCID-rc99-4efu-tud2"},{"vulnerability":"VCID-t95h-sdy4-tua1"},{"vulnerability":"VCID-taua-zv9g-7kck"},{"vulnerability":"VCID-tdub-a3cg-r7fg"},{"vulnerability":"VCID-uhyk-pc9e-w7cu"},{"vulnerability":"VCID-usz9-qezx-9ybx"},{"vulnerability":"VCID-wf33-hszj-akf9"},{"vulnerability":"VCID-x7bx-d6tn-fbhf"},{"vulnerability":"VCID-xj85-t7py-93cf"},{"vulnerability":"VCID-y5k7-ve1j-3bfc"},{"vulnerability":"VCID-y7cv-qzrr-rbhd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.25"}],"aliases":["CVE-2016-4975"],"risk_score":2.4,"exploitability":"0.5","weighted_severity":"4.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-epgm-u9j7-7bd1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/731?format=json","vulnerability_id":"VCID-f1cy-ycsy-qqhc","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-0736.json","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-0736.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-0736","reference_id":"","reference_type":"","scores":[{"value":"0.34285","scoring_system":"epss","scoring_elements":"0.97095","published_at":"2026-06-11T12:55:00Z"},{"value":"0.34285","scoring_system":"epss","scoring_elements":"0.97104","published_at":"2026-06-12T12:55:00Z"},{"value":"0.34285","scoring_system":"epss","scoring_elements":"0.97106","published_at":"2026-06-13T12:55:00Z"},{"value":"0.34285","scoring_system":"epss","scoring_elements":"0.97105","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-0736"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0736","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0736"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2161","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2161"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8743","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8743"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:H/Au:N/C:P/I:P/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1406744","reference_id":"1406744","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1406744"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/webapps/40961.py","reference_id":"CVE-2016-0736","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/webapps/40961.py"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2016-0736.json","reference_id":"CVE-2016-0736","reference_type":"","scores":[{"value":"low","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2016-0736.json"},{"reference_url":"https://www.redteam-pentesting.de/advisories/rt-sa-2016-001.txt","reference_id":"CVE-2016-0736","reference_type":"exploit","scores":[],"url":"https://www.redteam-pentesting.de/advisories/rt-sa-2016-001.txt"},{"reference_url":"https://security.gentoo.org/glsa/201701-36","reference_id":"GLSA-201701-36","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201701-36"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:0906","reference_id":"RHSA-2017:0906","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:0906"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:1161","reference_id":"RHSA-2017:1161","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:1161"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:1413","reference_id":"RHSA-2017:1413","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:1413"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:1414","reference_id":"RHSA-2017:1414","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:1414"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:1415","reference_id":"RHSA-2017:1415","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:1415"},{"reference_url":"https://usn.ubuntu.com/3279-1/","reference_id":"USN-3279-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3279-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1367?format=json","purl":"pkg:apache/httpd@2.4.25","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-38r6-mbzq-e7gd"},{"vulnerability":"VCID-3dh3-8wr4-uqcd"},{"vulnerability":"VCID-3dvk-8he7-xbck"},{"vulnerability":"VCID-43j2-q5rg-7qay"},{"vulnerability":"VCID-44ma-b8wt-67fa"},{"vulnerability":"VCID-7j9j-sxt1-6qa6"},{"vulnerability":"VCID-7xcn-c8p4-j7ec"},{"vulnerability":"VCID-8vas-wy6r-pkda"},{"vulnerability":"VCID-9e8m-yzr3-pbgz"},{"vulnerability":"VCID-9wx3-62cp-fuh8"},{"vulnerability":"VCID-afat-n93z-8qeq"},{"vulnerability":"VCID-arm8-rmce-2bec"},{"vulnerability":"VCID-dk12-s4wp-suhc"},{"vulnerability":"VCID-e4mk-ydp9-m3bx"},{"vulnerability":"VCID-ea8s-ercf-qfdx"},{"vulnerability":"VCID-gqvc-a75w-dqej"},{"vulnerability":"VCID-grnf-r71w-r3h7"},{"vulnerability":"VCID-h959-hrhy-wkep"},{"vulnerability":"VCID-kp2b-t25c-sqfc"},{"vulnerability":"VCID-mzxz-ujfq-qucw"},{"vulnerability":"VCID-n8qk-qws2-9ydv"},{"vulnerability":"VCID-nxqt-4e79-w3et"},{"vulnerability":"VCID-pr6s-p29g-k3hv"},{"vulnerability":"VCID-qw6u-prup-eqar"},{"vulnerability":"VCID-rb9f-qwwr-v7c2"},{"vulnerability":"VCID-rc99-4efu-tud2"},{"vulnerability":"VCID-t95h-sdy4-tua1"},{"vulnerability":"VCID-taua-zv9g-7kck"},{"vulnerability":"VCID-tdub-a3cg-r7fg"},{"vulnerability":"VCID-uhyk-pc9e-w7cu"},{"vulnerability":"VCID-usz9-qezx-9ybx"},{"vulnerability":"VCID-wf33-hszj-akf9"},{"vulnerability":"VCID-x7bx-d6tn-fbhf"},{"vulnerability":"VCID-xj85-t7py-93cf"},{"vulnerability":"VCID-y5k7-ve1j-3bfc"},{"vulnerability":"VCID-y7cv-qzrr-rbhd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.25"}],"aliases":["CVE-2016-0736"],"risk_score":9.8,"exploitability":"2.0","weighted_severity":"4.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-f1cy-ycsy-qqhc"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4251?format=json","vulnerability_id":"VCID-grnf-r71w-r3h7","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9798.json","reference_id":"","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9798.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-9798","reference_id":"","reference_type":"","scores":[{"value":"0.9384","scoring_system":"epss","scoring_elements":"0.99875","published_at":"2026-06-14T12:55:00Z"},{"value":"0.9384","scoring_system":"epss","scoring_elements":"0.99874","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-9798"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9798","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9798"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:L/Au:N/C:P/I:N/A:N"},{"value":"5.9","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1490344","reference_id":"1490344","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1490344"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=876109","reference_id":"876109","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=876109"},{"reference_url":"https://security.archlinux.org/ASA-201709-15","reference_id":"ASA-201709-15","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201709-15"},{"reference_url":"https://security.archlinux.org/AVG-404","reference_id":"AVG-404","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-404"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2017-9798.json","reference_id":"CVE-2017-9798","reference_type":"","scores":[{"value":"low","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2017-9798.json"},{"reference_url":"https://github.com/hannob/optionsbleed/blob/e297ce13cfb0f338b2cabfb81a70349fd6925f82/optionsbleed","reference_id":"CVE-2017-9798;OPTIONSBLEED","reference_type":"exploit","scores":[],"url":"https://github.com/hannob/optionsbleed/blob/e297ce13cfb0f338b2cabfb81a70349fd6925f82/optionsbleed"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/webapps/42745.py","reference_id":"CVE-2017-9798;OPTIONSBLEED","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/webapps/42745.py"},{"reference_url":"https://security.gentoo.org/glsa/201710-32","reference_id":"GLSA-201710-32","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201710-32"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:2882","reference_id":"RHSA-2017:2882","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:2882"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:2972","reference_id":"RHSA-2017:2972","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:2972"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:3018","reference_id":"RHSA-2017:3018","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:3018"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:3113","reference_id":"RHSA-2017:3113","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:3113"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:3114","reference_id":"RHSA-2017:3114","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:3114"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:3193","reference_id":"RHSA-2017:3193","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:3193"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:3194","reference_id":"RHSA-2017:3194","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:3194"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:3195","reference_id":"RHSA-2017:3195","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:3195"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:3239","reference_id":"RHSA-2017:3239","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:3239"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:3240","reference_id":"RHSA-2017:3240","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:3240"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:3475","reference_id":"RHSA-2017:3475","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:3475"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:3476","reference_id":"RHSA-2017:3476","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:3476"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:3477","reference_id":"RHSA-2017:3477","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:3477"},{"reference_url":"https://usn.ubuntu.com/3425-1/","reference_id":"USN-3425-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3425-1/"},{"reference_url":"https://usn.ubuntu.com/3425-2/","reference_id":"USN-3425-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3425-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1372?format=json","purl":"pkg:apache/httpd@2.4.28","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-38r6-mbzq-e7gd"},{"vulnerability":"VCID-3dh3-8wr4-uqcd"},{"vulnerability":"VCID-3dvk-8he7-xbck"},{"vulnerability":"VCID-43j2-q5rg-7qay"},{"vulnerability":"VCID-7xcn-c8p4-j7ec"},{"vulnerability":"VCID-8vas-wy6r-pkda"},{"vulnerability":"VCID-9e8m-yzr3-pbgz"},{"vulnerability":"VCID-9wx3-62cp-fuh8"},{"vulnerability":"VCID-afat-n93z-8qeq"},{"vulnerability":"VCID-arm8-rmce-2bec"},{"vulnerability":"VCID-dk12-s4wp-suhc"},{"vulnerability":"VCID-ea8s-ercf-qfdx"},{"vulnerability":"VCID-gqvc-a75w-dqej"},{"vulnerability":"VCID-h959-hrhy-wkep"},{"vulnerability":"VCID-kp2b-t25c-sqfc"},{"vulnerability":"VCID-mzxz-ujfq-qucw"},{"vulnerability":"VCID-n8qk-qws2-9ydv"},{"vulnerability":"VCID-pr6s-p29g-k3hv"},{"vulnerability":"VCID-qw6u-prup-eqar"},{"vulnerability":"VCID-rb9f-qwwr-v7c2"},{"vulnerability":"VCID-rc99-4efu-tud2"},{"vulnerability":"VCID-t95h-sdy4-tua1"},{"vulnerability":"VCID-taua-zv9g-7kck"},{"vulnerability":"VCID-tdub-a3cg-r7fg"},{"vulnerability":"VCID-usz9-qezx-9ybx"},{"vulnerability":"VCID-wf33-hszj-akf9"},{"vulnerability":"VCID-xj85-t7py-93cf"},{"vulnerability":"VCID-y5k7-ve1j-3bfc"},{"vulnerability":"VCID-y7cv-qzrr-rbhd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.28"}],"aliases":["CVE-2017-9798"],"risk_score":10.0,"exploitability":"2.0","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-grnf-r71w-r3h7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/175407?format=json","vulnerability_id":"VCID-gs9y-327e-s7d3","summary":"A flaw was found in mod_proxy in httpd versions 2.4.6 to 2.4.9. A remote attacker could send a carefully crafted request to a server configured as a reverse proxy, and cause the child process to crash. This could lead to a denial of service against a threaded MPM.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0117.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0117.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-0117","reference_id":"","reference_type":"","scores":[{"value":"0.56996","scoring_system":"epss","scoring_elements":"0.9818","published_at":"2026-06-11T12:55:00Z"},{"value":"0.56996","scoring_system":"epss","scoring_elements":"0.98187","published_at":"2026-06-13T12:55:00Z"},{"value":"0.56996","scoring_system":"epss","scoring_elements":"0.98188","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-0117"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0117","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0117"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1120599","reference_id":"1120599","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1120599"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2014-0117.json","reference_id":"CVE-2014-0117","reference_type":"","scores":[{"value":"moderate","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2014-0117.json"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0921","reference_id":"RHSA-2014:0921","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0921"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0922","reference_id":"RHSA-2014:0922","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0922"},{"reference_url":"https://usn.ubuntu.com/2299-1/","reference_id":"USN-2299-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2299-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1356?format=json","purl":"pkg:apache/httpd@2.4.10","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w8b-3gmt-qff7"},{"vulnerability":"VCID-3dh3-8wr4-uqcd"},{"vulnerability":"VCID-3u4s-a96g-v3aq"},{"vulnerability":"VCID-43j2-q5rg-7qay"},{"vulnerability":"VCID-7j9j-sxt1-6qa6"},{"vulnerability":"VCID-7xcn-c8p4-j7ec"},{"vulnerability":"VCID-8vkp-k5yr-n3bn"},{"vulnerability":"VCID-9e8m-yzr3-pbgz"},{"vulnerability":"VCID-9wx3-62cp-fuh8"},{"vulnerability":"VCID-arm8-rmce-2bec"},{"vulnerability":"VCID-bn5d-te6p-hyf1"},{"vulnerability":"VCID-dk12-s4wp-suhc"},{"vulnerability":"VCID-dr2b-7ack-wbfp"},{"vulnerability":"VCID-e4mk-ydp9-m3bx"},{"vulnerability":"VCID-epgm-u9j7-7bd1"},{"vulnerability":"VCID-f1cy-ycsy-qqhc"},{"vulnerability":"VCID-grnf-r71w-r3h7"},{"vulnerability":"VCID-h959-hrhy-wkep"},{"vulnerability":"VCID-kg8r-vq3s-2qa4"},{"vulnerability":"VCID-kp2b-t25c-sqfc"},{"vulnerability":"VCID-n82t-1jhq-8ba3"},{"vulnerability":"VCID-n8qk-qws2-9ydv"},{"vulnerability":"VCID-nxqt-4e79-w3et"},{"vulnerability":"VCID-pc8m-gm5b-gya1"},{"vulnerability":"VCID-qjxt-ekff-ykgk"},{"vulnerability":"VCID-rb9f-qwwr-v7c2"},{"vulnerability":"VCID-rc99-4efu-tud2"},{"vulnerability":"VCID-sfx1-4tej-gqgs"},{"vulnerability":"VCID-t95h-sdy4-tua1"},{"vulnerability":"VCID-tdub-a3cg-r7fg"},{"vulnerability":"VCID-uhyk-pc9e-w7cu"},{"vulnerability":"VCID-usz9-qezx-9ybx"},{"vulnerability":"VCID-uyz2-jck5-d7dd"},{"vulnerability":"VCID-wf33-hszj-akf9"},{"vulnerability":"VCID-y5k7-ve1j-3bfc"},{"vulnerability":"VCID-y7cv-qzrr-rbhd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.10"}],"aliases":["CVE-2014-0117"],"risk_score":2.4,"exploitability":"0.5","weighted_severity":"4.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-gs9y-327e-s7d3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/5909?format=json","vulnerability_id":"VCID-h959-hrhy-wkep","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-0217.json","reference_id":"","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-0217.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-0217","reference_id":"","reference_type":"","scores":[{"value":"0.43022","scoring_system":"epss","scoring_elements":"0.97575","published_at":"2026-06-11T12:55:00Z"},{"value":"0.43022","scoring_system":"epss","scoring_elements":"0.97584","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-0217"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17189","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17189"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17199","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17199"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0196","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0196"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0211","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0211"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0217","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0217"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0220","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0220"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1695020","reference_id":"1695020","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1695020"},{"reference_url":"https://security.archlinux.org/ASA-201904-3","reference_id":"ASA-201904-3","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201904-3"},{"reference_url":"https://security.archlinux.org/AVG-946","reference_id":"AVG-946","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-946"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2019-0217.json","reference_id":"CVE-2019-0217","reference_type":"","scores":[{"value":"important","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2019-0217.json"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2343","reference_id":"RHSA-2019:2343","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:2343"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3436","reference_id":"RHSA-2019:3436","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3436"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3932","reference_id":"RHSA-2019:3932","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3932"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3933","reference_id":"RHSA-2019:3933","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3933"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3935","reference_id":"RHSA-2019:3935","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3935"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4126","reference_id":"RHSA-2019:4126","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:4126"},{"reference_url":"https://usn.ubuntu.com/3937-2/","reference_id":"USN-3937-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3937-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1380?format=json","purl":"pkg:apache/httpd@2.4.39","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3dh3-8wr4-uqcd"},{"vulnerability":"VCID-3dvk-8he7-xbck"},{"vulnerability":"VCID-7xcn-c8p4-j7ec"},{"vulnerability":"VCID-9e8m-yzr3-pbgz"},{"vulnerability":"VCID-9wx3-62cp-fuh8"},{"vulnerability":"VCID-afat-n93z-8qeq"},{"vulnerability":"VCID-ke6c-mee3-hkeu"},{"vulnerability":"VCID-mzxz-ujfq-qucw"},{"vulnerability":"VCID-n8qk-qws2-9ydv"},{"vulnerability":"VCID-pr6s-p29g-k3hv"},{"vulnerability":"VCID-qw6u-prup-eqar"},{"vulnerability":"VCID-rb9f-qwwr-v7c2"},{"vulnerability":"VCID-rc99-4efu-tud2"},{"vulnerability":"VCID-ryvw-uqwb-vbhu"},{"vulnerability":"VCID-wf33-hszj-akf9"},{"vulnerability":"VCID-y5k7-ve1j-3bfc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.39"}],"aliases":["CVE-2019-0217"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-h959-hrhy-wkep"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/1555?format=json","vulnerability_id":"VCID-kg8r-vq3s-2qa4","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5387.json","reference_id":"","reference_type":"","scores":[{"value":"5.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5387.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-5387","reference_id":"","reference_type":"","scores":[{"value":"0.43937","scoring_system":"epss","scoring_elements":"0.97619","published_at":"2026-06-11T12:55:00Z"},{"value":"0.43937","scoring_system":"epss","scoring_elements":"0.97627","published_at":"2026-06-13T12:55:00Z"},{"value":"0.43937","scoring_system":"epss","scoring_elements":"0.97628","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-5387"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5387","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5387"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:L/Au:N/C:N/I:P/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1353755","reference_id":"1353755","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1353755"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2016-5387.json","reference_id":"CVE-2016-5387","reference_type":"","scores":[{"value":"n/a","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2016-5387.json"},{"reference_url":"https://security.gentoo.org/glsa/201701-36","reference_id":"GLSA-201701-36","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201701-36"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:1420","reference_id":"RHSA-2016:1420","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:1420"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:1421","reference_id":"RHSA-2016:1421","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:1421"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:1422","reference_id":"RHSA-2016:1422","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:1422"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:1625","reference_id":"RHSA-2016:1625","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:1625"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:1648","reference_id":"RHSA-2016:1648","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:1648"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:1649","reference_id":"RHSA-2016:1649","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:1649"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:1650","reference_id":"RHSA-2016:1650","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:1650"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:1851","reference_id":"RHSA-2016:1851","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:1851"},{"reference_url":"https://usn.ubuntu.com/3038-1/","reference_id":"USN-3038-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3038-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1367?format=json","purl":"pkg:apache/httpd@2.4.25","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-38r6-mbzq-e7gd"},{"vulnerability":"VCID-3dh3-8wr4-uqcd"},{"vulnerability":"VCID-3dvk-8he7-xbck"},{"vulnerability":"VCID-43j2-q5rg-7qay"},{"vulnerability":"VCID-44ma-b8wt-67fa"},{"vulnerability":"VCID-7j9j-sxt1-6qa6"},{"vulnerability":"VCID-7xcn-c8p4-j7ec"},{"vulnerability":"VCID-8vas-wy6r-pkda"},{"vulnerability":"VCID-9e8m-yzr3-pbgz"},{"vulnerability":"VCID-9wx3-62cp-fuh8"},{"vulnerability":"VCID-afat-n93z-8qeq"},{"vulnerability":"VCID-arm8-rmce-2bec"},{"vulnerability":"VCID-dk12-s4wp-suhc"},{"vulnerability":"VCID-e4mk-ydp9-m3bx"},{"vulnerability":"VCID-ea8s-ercf-qfdx"},{"vulnerability":"VCID-gqvc-a75w-dqej"},{"vulnerability":"VCID-grnf-r71w-r3h7"},{"vulnerability":"VCID-h959-hrhy-wkep"},{"vulnerability":"VCID-kp2b-t25c-sqfc"},{"vulnerability":"VCID-mzxz-ujfq-qucw"},{"vulnerability":"VCID-n8qk-qws2-9ydv"},{"vulnerability":"VCID-nxqt-4e79-w3et"},{"vulnerability":"VCID-pr6s-p29g-k3hv"},{"vulnerability":"VCID-qw6u-prup-eqar"},{"vulnerability":"VCID-rb9f-qwwr-v7c2"},{"vulnerability":"VCID-rc99-4efu-tud2"},{"vulnerability":"VCID-t95h-sdy4-tua1"},{"vulnerability":"VCID-taua-zv9g-7kck"},{"vulnerability":"VCID-tdub-a3cg-r7fg"},{"vulnerability":"VCID-uhyk-pc9e-w7cu"},{"vulnerability":"VCID-usz9-qezx-9ybx"},{"vulnerability":"VCID-wf33-hszj-akf9"},{"vulnerability":"VCID-x7bx-d6tn-fbhf"},{"vulnerability":"VCID-xj85-t7py-93cf"},{"vulnerability":"VCID-y5k7-ve1j-3bfc"},{"vulnerability":"VCID-y7cv-qzrr-rbhd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.25"}],"aliases":["CVE-2016-5387"],"risk_score":2.2,"exploitability":"0.5","weighted_severity":"4.5","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kg8r-vq3s-2qa4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4693?format=json","vulnerability_id":"VCID-kp2b-t25c-sqfc","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-1301.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-1301.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-1301","reference_id":"","reference_type":"","scores":[{"value":"0.07499","scoring_system":"epss","scoring_elements":"0.92013","published_at":"2026-06-14T12:55:00Z"},{"value":"0.07499","scoring_system":"epss","scoring_elements":"0.91982","published_at":"2026-06-11T12:55:00Z"},{"value":"0.07499","scoring_system":"epss","scoring_elements":"0.92009","published_at":"2026-06-12T12:55:00Z"},{"value":"0.07499","scoring_system":"epss","scoring_elements":"0.92017","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-1301"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15710","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15710"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15715","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15715"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1283","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1283"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1301","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1301"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1303","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1303"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1312","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1312"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1560643","reference_id":"1560643","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1560643"},{"reference_url":"https://security.archlinux.org/ASA-201804-4","reference_id":"ASA-201804-4","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201804-4"},{"reference_url":"https://security.archlinux.org/AVG-664","reference_id":"AVG-664","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-664"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2018-1301.json","reference_id":"CVE-2018-1301","reference_type":"","scores":[{"value":"low","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2018-1301.json"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:3558","reference_id":"RHSA-2018:3558","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2018:3558"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:0366","reference_id":"RHSA-2019:0366","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:0366"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:0367","reference_id":"RHSA-2019:0367","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:0367"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:1121","reference_id":"RHSA-2020:1121","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:1121"},{"reference_url":"https://usn.ubuntu.com/3627-1/","reference_id":"USN-3627-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3627-1/"},{"reference_url":"https://usn.ubuntu.com/3627-2/","reference_id":"USN-3627-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3627-2/"},{"reference_url":"https://usn.ubuntu.com/3937-2/","reference_id":"USN-3937-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3937-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1374?format=json","purl":"pkg:apache/httpd@2.4.33","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-38r6-mbzq-e7gd"},{"vulnerability":"VCID-3dh3-8wr4-uqcd"},{"vulnerability":"VCID-3dvk-8he7-xbck"},{"vulnerability":"VCID-7xcn-c8p4-j7ec"},{"vulnerability":"VCID-8vas-wy6r-pkda"},{"vulnerability":"VCID-9e8m-yzr3-pbgz"},{"vulnerability":"VCID-9wx3-62cp-fuh8"},{"vulnerability":"VCID-afat-n93z-8qeq"},{"vulnerability":"VCID-arm8-rmce-2bec"},{"vulnerability":"VCID-bx14-h9x6-77eb"},{"vulnerability":"VCID-ea8s-ercf-qfdx"},{"vulnerability":"VCID-h959-hrhy-wkep"},{"vulnerability":"VCID-ke6c-mee3-hkeu"},{"vulnerability":"VCID-mzxz-ujfq-qucw"},{"vulnerability":"VCID-n4rc-485y-4qgj"},{"vulnerability":"VCID-n8qk-qws2-9ydv"},{"vulnerability":"VCID-pr6s-p29g-k3hv"},{"vulnerability":"VCID-qw6u-prup-eqar"},{"vulnerability":"VCID-rb9f-qwwr-v7c2"},{"vulnerability":"VCID-rc99-4efu-tud2"},{"vulnerability":"VCID-t95h-sdy4-tua1"},{"vulnerability":"VCID-taua-zv9g-7kck"},{"vulnerability":"VCID-wf33-hszj-akf9"},{"vulnerability":"VCID-xj85-t7py-93cf"},{"vulnerability":"VCID-y5k7-ve1j-3bfc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.33"}],"aliases":["CVE-2018-1301"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kp2b-t25c-sqfc"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/175409?format=json","vulnerability_id":"VCID-n82t-1jhq-8ba3","summary":"A NULL pointer deference was found in mod_cache. A malicious HTTP server could cause a crash in a caching forward proxy configuration. This crash would only be a denial of service if using a threaded MPM.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3581.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3581.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-3581","reference_id":"","reference_type":"","scores":[{"value":"0.04809","scoring_system":"epss","scoring_elements":"0.89735","published_at":"2026-06-11T12:55:00Z"},{"value":"0.04809","scoring_system":"epss","scoring_elements":"0.8977","published_at":"2026-06-12T12:55:00Z"},{"value":"0.04809","scoring_system":"epss","scoring_elements":"0.89776","published_at":"2026-06-13T12:55:00Z"},{"value":"0.04809","scoring_system":"epss","scoring_elements":"0.89774","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-3581"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3581","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3581"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1149709","reference_id":"1149709","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1149709"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2014-3581.json","reference_id":"CVE-2014-3581","reference_type":"","scores":[{"value":"low","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2014-3581.json"},{"reference_url":"https://security.gentoo.org/glsa/201610-02","reference_id":"GLSA-201610-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201610-02"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1972","reference_id":"RHSA-2014:1972","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1972"},{"reference_url":"https://access.redhat.com/errata/RHSA-2015:0325","reference_id":"RHSA-2015:0325","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2015:0325"},{"reference_url":"https://access.redhat.com/errata/RHSA-2015:2659","reference_id":"RHSA-2015:2659","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2015:2659"},{"reference_url":"https://access.redhat.com/errata/RHSA-2015:2660","reference_id":"RHSA-2015:2660","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2015:2660"},{"reference_url":"https://access.redhat.com/errata/RHSA-2015:2661","reference_id":"RHSA-2015:2661","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2015:2661"},{"reference_url":"https://usn.ubuntu.com/2523-1/","reference_id":"USN-2523-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2523-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1358?format=json","purl":"pkg:apache/httpd@2.4.12","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w8b-3gmt-qff7"},{"vulnerability":"VCID-3dh3-8wr4-uqcd"},{"vulnerability":"VCID-43j2-q5rg-7qay"},{"vulnerability":"VCID-4x4s-8qeu-13h3"},{"vulnerability":"VCID-7j9j-sxt1-6qa6"},{"vulnerability":"VCID-7xcn-c8p4-j7ec"},{"vulnerability":"VCID-8vkp-k5yr-n3bn"},{"vulnerability":"VCID-9e8m-yzr3-pbgz"},{"vulnerability":"VCID-9wx3-62cp-fuh8"},{"vulnerability":"VCID-arm8-rmce-2bec"},{"vulnerability":"VCID-bn5d-te6p-hyf1"},{"vulnerability":"VCID-dk12-s4wp-suhc"},{"vulnerability":"VCID-dr2b-7ack-wbfp"},{"vulnerability":"VCID-e4mk-ydp9-m3bx"},{"vulnerability":"VCID-epgm-u9j7-7bd1"},{"vulnerability":"VCID-f1cy-ycsy-qqhc"},{"vulnerability":"VCID-grnf-r71w-r3h7"},{"vulnerability":"VCID-h959-hrhy-wkep"},{"vulnerability":"VCID-kg8r-vq3s-2qa4"},{"vulnerability":"VCID-kp2b-t25c-sqfc"},{"vulnerability":"VCID-n8qk-qws2-9ydv"},{"vulnerability":"VCID-nxqt-4e79-w3et"},{"vulnerability":"VCID-qjxt-ekff-ykgk"},{"vulnerability":"VCID-rb9f-qwwr-v7c2"},{"vulnerability":"VCID-rc99-4efu-tud2"},{"vulnerability":"VCID-sfx1-4tej-gqgs"},{"vulnerability":"VCID-t95h-sdy4-tua1"},{"vulnerability":"VCID-tdub-a3cg-r7fg"},{"vulnerability":"VCID-uhyk-pc9e-w7cu"},{"vulnerability":"VCID-usz9-qezx-9ybx"},{"vulnerability":"VCID-wf33-hszj-akf9"},{"vulnerability":"VCID-y5k7-ve1j-3bfc"},{"vulnerability":"VCID-y7cv-qzrr-rbhd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.12"}],"aliases":["CVE-2014-3581"],"risk_score":1.1,"exploitability":"0.5","weighted_severity":"2.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-n82t-1jhq-8ba3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6605?format=json","vulnerability_id":"VCID-n8qk-qws2-9ydv","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17567.json","reference_id":"","reference_type":"","scores":[{"value":"4.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17567.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-17567","reference_id":"","reference_type":"","scores":[{"value":"0.08635","scoring_system":"epss","scoring_elements":"0.92625","published_at":"2026-06-11T12:55:00Z"},{"value":"0.08635","scoring_system":"epss","scoring_elements":"0.92651","published_at":"2026-06-12T12:55:00Z"},{"value":"0.08635","scoring_system":"epss","scoring_elements":"0.92654","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-17567"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17567","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17567"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1966740","reference_id":"1966740","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1966740"},{"reference_url":"https://security.archlinux.org/AVG-2053","reference_id":"AVG-2053","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2053"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2019-17567.json","reference_id":"CVE-2019-17567","reference_type":"","scores":[{"value":"moderate","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2019-17567.json"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4613","reference_id":"RHSA-2021:4613","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4613"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4614","reference_id":"RHSA-2021:4614","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4614"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1385?format=json","purl":"pkg:apache/httpd@2.4.48","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-18er-46ap-subu"},{"vulnerability":"VCID-2ws7-fvz5-rbgw"},{"vulnerability":"VCID-dnnd-dss4-gfdh"},{"vulnerability":"VCID-ehs4-14pg-abgc"},{"vulnerability":"VCID-tcgf-utcm-3fc6"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.48"}],"aliases":["CVE-2019-17567"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-n8qk-qws2-9ydv"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3421?format=json","vulnerability_id":"VCID-nxqt-4e79-w3et","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-3169.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-3169.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-3169","reference_id":"","reference_type":"","scores":[{"value":"0.30773","scoring_system":"epss","scoring_elements":"0.96857","published_at":"2026-06-14T12:55:00Z"},{"value":"0.30773","scoring_system":"epss","scoring_elements":"0.96843","published_at":"2026-06-11T12:55:00Z"},{"value":"0.30773","scoring_system":"epss","scoring_elements":"0.96854","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-3169"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3167","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3167"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3169","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3169"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7668","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7668"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7679","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7679"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:N/I:N/A:P"},{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1463197","reference_id":"1463197","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1463197"},{"reference_url":"https://security.archlinux.org/ASA-201706-34","reference_id":"ASA-201706-34","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201706-34"},{"reference_url":"https://security.archlinux.org/AVG-316","reference_id":"AVG-316","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-316"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2017-3169.json","reference_id":"CVE-2017-3169","reference_type":"","scores":[{"value":"important","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2017-3169.json"},{"reference_url":"https://security.gentoo.org/glsa/201710-32","reference_id":"GLSA-201710-32","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201710-32"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:2478","reference_id":"RHSA-2017:2478","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:2478"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:2479","reference_id":"RHSA-2017:2479","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:2479"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:2483","reference_id":"RHSA-2017:2483","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:2483"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:3193","reference_id":"RHSA-2017:3193","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:3193"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:3194","reference_id":"RHSA-2017:3194","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:3194"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:3195","reference_id":"RHSA-2017:3195","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:3195"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:3475","reference_id":"RHSA-2017:3475","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:3475"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:3476","reference_id":"RHSA-2017:3476","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:3476"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:3477","reference_id":"RHSA-2017:3477","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:3477"},{"reference_url":"https://usn.ubuntu.com/3340-1/","reference_id":"USN-3340-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3340-1/"},{"reference_url":"https://usn.ubuntu.com/3373-1/","reference_id":"USN-3373-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3373-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1370?format=json","purl":"pkg:apache/httpd@2.4.26","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-38r6-mbzq-e7gd"},{"vulnerability":"VCID-3dh3-8wr4-uqcd"},{"vulnerability":"VCID-3dvk-8he7-xbck"},{"vulnerability":"VCID-43j2-q5rg-7qay"},{"vulnerability":"VCID-7xcn-c8p4-j7ec"},{"vulnerability":"VCID-8vas-wy6r-pkda"},{"vulnerability":"VCID-9e8m-yzr3-pbgz"},{"vulnerability":"VCID-9wx3-62cp-fuh8"},{"vulnerability":"VCID-afat-n93z-8qeq"},{"vulnerability":"VCID-arm8-rmce-2bec"},{"vulnerability":"VCID-dk12-s4wp-suhc"},{"vulnerability":"VCID-e4mk-ydp9-m3bx"},{"vulnerability":"VCID-ea8s-ercf-qfdx"},{"vulnerability":"VCID-ern3-8585-c7hn"},{"vulnerability":"VCID-gqvc-a75w-dqej"},{"vulnerability":"VCID-grnf-r71w-r3h7"},{"vulnerability":"VCID-h959-hrhy-wkep"},{"vulnerability":"VCID-kp2b-t25c-sqfc"},{"vulnerability":"VCID-mzxz-ujfq-qucw"},{"vulnerability":"VCID-n8qk-qws2-9ydv"},{"vulnerability":"VCID-pr6s-p29g-k3hv"},{"vulnerability":"VCID-qw6u-prup-eqar"},{"vulnerability":"VCID-rb9f-qwwr-v7c2"},{"vulnerability":"VCID-rc99-4efu-tud2"},{"vulnerability":"VCID-t95h-sdy4-tua1"},{"vulnerability":"VCID-taua-zv9g-7kck"},{"vulnerability":"VCID-tdub-a3cg-r7fg"},{"vulnerability":"VCID-usz9-qezx-9ybx"},{"vulnerability":"VCID-wf33-hszj-akf9"},{"vulnerability":"VCID-xj85-t7py-93cf"},{"vulnerability":"VCID-y5k7-ve1j-3bfc"},{"vulnerability":"VCID-y7cv-qzrr-rbhd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.26"}],"aliases":["CVE-2017-3169"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-nxqt-4e79-w3et"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/175411?format=json","vulnerability_id":"VCID-pc8m-gm5b-gya1","summary":"Fix handling of the Require line in mod_lua when a LuaAuthzProvider is used in multiple Require directives with different arguments. This could lead to different authentication rules than expected.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8109.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8109.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8109","reference_id":"","reference_type":"","scores":[{"value":"0.10383","scoring_system":"epss","scoring_elements":"0.93395","published_at":"2026-06-12T12:55:00Z"},{"value":"0.10383","scoring_system":"epss","scoring_elements":"0.93399","published_at":"2026-06-13T12:55:00Z"},{"value":"0.10383","scoring_system":"epss","scoring_elements":"0.934","published_at":"2026-06-14T12:55:00Z"},{"value":"0.11719","scoring_system":"epss","scoring_elements":"0.9385","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8109"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8109","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8109"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1174077","reference_id":"1174077","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1174077"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2014-8109.json","reference_id":"CVE-2014-8109","reference_type":"","scores":[{"value":"low","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2014-8109.json"},{"reference_url":"https://usn.ubuntu.com/2523-1/","reference_id":"USN-2523-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2523-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1358?format=json","purl":"pkg:apache/httpd@2.4.12","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w8b-3gmt-qff7"},{"vulnerability":"VCID-3dh3-8wr4-uqcd"},{"vulnerability":"VCID-43j2-q5rg-7qay"},{"vulnerability":"VCID-4x4s-8qeu-13h3"},{"vulnerability":"VCID-7j9j-sxt1-6qa6"},{"vulnerability":"VCID-7xcn-c8p4-j7ec"},{"vulnerability":"VCID-8vkp-k5yr-n3bn"},{"vulnerability":"VCID-9e8m-yzr3-pbgz"},{"vulnerability":"VCID-9wx3-62cp-fuh8"},{"vulnerability":"VCID-arm8-rmce-2bec"},{"vulnerability":"VCID-bn5d-te6p-hyf1"},{"vulnerability":"VCID-dk12-s4wp-suhc"},{"vulnerability":"VCID-dr2b-7ack-wbfp"},{"vulnerability":"VCID-e4mk-ydp9-m3bx"},{"vulnerability":"VCID-epgm-u9j7-7bd1"},{"vulnerability":"VCID-f1cy-ycsy-qqhc"},{"vulnerability":"VCID-grnf-r71w-r3h7"},{"vulnerability":"VCID-h959-hrhy-wkep"},{"vulnerability":"VCID-kg8r-vq3s-2qa4"},{"vulnerability":"VCID-kp2b-t25c-sqfc"},{"vulnerability":"VCID-n8qk-qws2-9ydv"},{"vulnerability":"VCID-nxqt-4e79-w3et"},{"vulnerability":"VCID-qjxt-ekff-ykgk"},{"vulnerability":"VCID-rb9f-qwwr-v7c2"},{"vulnerability":"VCID-rc99-4efu-tud2"},{"vulnerability":"VCID-sfx1-4tej-gqgs"},{"vulnerability":"VCID-t95h-sdy4-tua1"},{"vulnerability":"VCID-tdub-a3cg-r7fg"},{"vulnerability":"VCID-uhyk-pc9e-w7cu"},{"vulnerability":"VCID-usz9-qezx-9ybx"},{"vulnerability":"VCID-wf33-hszj-akf9"},{"vulnerability":"VCID-y5k7-ve1j-3bfc"},{"vulnerability":"VCID-y7cv-qzrr-rbhd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.12"}],"aliases":["CVE-2014-8109"],"risk_score":1.1,"exploitability":"0.5","weighted_severity":"2.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-pc8m-gm5b-gya1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/175412?format=json","vulnerability_id":"VCID-qjxt-ekff-ykgk","summary":"A stack recursion crash in the mod_lua module was found. A Lua script executing the r:wsupgrade() function could crash the process if a malicious client sent a carefully crafted PING request. This issue affected releases 2.4.7 through 2.4.12 inclusive.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-0228.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-0228.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2015-0228","reference_id":"","reference_type":"","scores":[{"value":"0.15242","scoring_system":"epss","scoring_elements":"0.94768","published_at":"2026-06-11T12:55:00Z"},{"value":"0.15242","scoring_system":"epss","scoring_elements":"0.94786","published_at":"2026-06-12T12:55:00Z"},{"value":"0.15242","scoring_system":"epss","scoring_elements":"0.94793","published_at":"2026-06-13T12:55:00Z"},{"value":"0.15242","scoring_system":"epss","scoring_elements":"0.94795","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2015-0228"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0228","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0228"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1202988","reference_id":"1202988","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1202988"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2015-0228.json","reference_id":"CVE-2015-0228","reference_type":"","scores":[{"value":"low","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2015-0228.json"},{"reference_url":"https://access.redhat.com/errata/RHSA-2015:1666","reference_id":"RHSA-2015:1666","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2015:1666"},{"reference_url":"https://usn.ubuntu.com/2523-1/","reference_id":"USN-2523-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2523-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1359?format=json","purl":"pkg:apache/httpd@2.4.16","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w8b-3gmt-qff7"},{"vulnerability":"VCID-3dh3-8wr4-uqcd"},{"vulnerability":"VCID-43j2-q5rg-7qay"},{"vulnerability":"VCID-7j9j-sxt1-6qa6"},{"vulnerability":"VCID-7xcn-c8p4-j7ec"},{"vulnerability":"VCID-9e8m-yzr3-pbgz"},{"vulnerability":"VCID-9wx3-62cp-fuh8"},{"vulnerability":"VCID-arm8-rmce-2bec"},{"vulnerability":"VCID-bn5d-te6p-hyf1"},{"vulnerability":"VCID-dk12-s4wp-suhc"},{"vulnerability":"VCID-e4mk-ydp9-m3bx"},{"vulnerability":"VCID-epgm-u9j7-7bd1"},{"vulnerability":"VCID-f1cy-ycsy-qqhc"},{"vulnerability":"VCID-grnf-r71w-r3h7"},{"vulnerability":"VCID-h959-hrhy-wkep"},{"vulnerability":"VCID-kg8r-vq3s-2qa4"},{"vulnerability":"VCID-kp2b-t25c-sqfc"},{"vulnerability":"VCID-n8qk-qws2-9ydv"},{"vulnerability":"VCID-nxqt-4e79-w3et"},{"vulnerability":"VCID-rb9f-qwwr-v7c2"},{"vulnerability":"VCID-rc99-4efu-tud2"},{"vulnerability":"VCID-sfx1-4tej-gqgs"},{"vulnerability":"VCID-t95h-sdy4-tua1"},{"vulnerability":"VCID-tdub-a3cg-r7fg"},{"vulnerability":"VCID-uhyk-pc9e-w7cu"},{"vulnerability":"VCID-usz9-qezx-9ybx"},{"vulnerability":"VCID-wf33-hszj-akf9"},{"vulnerability":"VCID-y5k7-ve1j-3bfc"},{"vulnerability":"VCID-y7cv-qzrr-rbhd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.16"}],"aliases":["CVE-2015-0228"],"risk_score":1.1,"exploitability":"0.5","weighted_severity":"2.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qjxt-ekff-ykgk"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/175408?format=json","vulnerability_id":"VCID-r2fd-nfnk-h7gy","summary":"A flaw was found in the WinNT MPM in httpd versions 2.4.1 to 2.4.9, when using the default AcceptFilter for that platform. A remote attacker could send carefully crafted requests that would leak memory and eventually lead to a denial of service against the server.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3523.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3523.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-3523","reference_id":"","reference_type":"","scores":[{"value":"0.35235","scoring_system":"epss","scoring_elements":"0.97149","published_at":"2026-06-11T12:55:00Z"},{"value":"0.35235","scoring_system":"epss","scoring_elements":"0.97156","published_at":"2026-06-12T12:55:00Z"},{"value":"0.35235","scoring_system":"epss","scoring_elements":"0.97159","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-3523"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1121519","reference_id":"1121519","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1121519"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2014-3523.json","reference_id":"CVE-2014-3523","reference_type":"","scores":[{"value":"important","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2014-3523.json"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:2957","reference_id":"RHSA-2016:2957","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:2957"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1356?format=json","purl":"pkg:apache/httpd@2.4.10","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w8b-3gmt-qff7"},{"vulnerability":"VCID-3dh3-8wr4-uqcd"},{"vulnerability":"VCID-3u4s-a96g-v3aq"},{"vulnerability":"VCID-43j2-q5rg-7qay"},{"vulnerability":"VCID-7j9j-sxt1-6qa6"},{"vulnerability":"VCID-7xcn-c8p4-j7ec"},{"vulnerability":"VCID-8vkp-k5yr-n3bn"},{"vulnerability":"VCID-9e8m-yzr3-pbgz"},{"vulnerability":"VCID-9wx3-62cp-fuh8"},{"vulnerability":"VCID-arm8-rmce-2bec"},{"vulnerability":"VCID-bn5d-te6p-hyf1"},{"vulnerability":"VCID-dk12-s4wp-suhc"},{"vulnerability":"VCID-dr2b-7ack-wbfp"},{"vulnerability":"VCID-e4mk-ydp9-m3bx"},{"vulnerability":"VCID-epgm-u9j7-7bd1"},{"vulnerability":"VCID-f1cy-ycsy-qqhc"},{"vulnerability":"VCID-grnf-r71w-r3h7"},{"vulnerability":"VCID-h959-hrhy-wkep"},{"vulnerability":"VCID-kg8r-vq3s-2qa4"},{"vulnerability":"VCID-kp2b-t25c-sqfc"},{"vulnerability":"VCID-n82t-1jhq-8ba3"},{"vulnerability":"VCID-n8qk-qws2-9ydv"},{"vulnerability":"VCID-nxqt-4e79-w3et"},{"vulnerability":"VCID-pc8m-gm5b-gya1"},{"vulnerability":"VCID-qjxt-ekff-ykgk"},{"vulnerability":"VCID-rb9f-qwwr-v7c2"},{"vulnerability":"VCID-rc99-4efu-tud2"},{"vulnerability":"VCID-sfx1-4tej-gqgs"},{"vulnerability":"VCID-t95h-sdy4-tua1"},{"vulnerability":"VCID-tdub-a3cg-r7fg"},{"vulnerability":"VCID-uhyk-pc9e-w7cu"},{"vulnerability":"VCID-usz9-qezx-9ybx"},{"vulnerability":"VCID-uyz2-jck5-d7dd"},{"vulnerability":"VCID-wf33-hszj-akf9"},{"vulnerability":"VCID-y5k7-ve1j-3bfc"},{"vulnerability":"VCID-y7cv-qzrr-rbhd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.10"}],"aliases":["CVE-2014-3523"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-r2fd-nfnk-h7gy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/5938?format=json","vulnerability_id":"VCID-rb9f-qwwr-v7c2","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-10092.json","reference_id":"","reference_type":"","scores":[{"value":"4.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-10092.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-10092","reference_id":"","reference_type":"","scores":[{"value":"0.82379","scoring_system":"epss","scoring_elements":"0.99248","published_at":"2026-06-11T12:55:00Z"},{"value":"0.87525","scoring_system":"epss","scoring_elements":"0.99482","published_at":"2026-06-12T12:55:00Z"},{"value":"0.87525","scoring_system":"epss","scoring_elements":"0.99483","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-10092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10081","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10081"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10082","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10082"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10098","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10098"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9517","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9517"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1743956","reference_id":"1743956","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1743956"},{"reference_url":"https://0day.work/proof-of-concept-for-apache-httpd-limited-cross-site-scripting-in-mod_proxy-error-page-cve-2019-10092/","reference_id":"CVE-2019-10092","reference_type":"exploit","scores":[],"url":"https://0day.work/proof-of-concept-for-apache-httpd-limited-cross-site-scripting-in-mod_proxy-error-page-cve-2019-10092/"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/webapps/47688.md","reference_id":"CVE-2019-10092","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/webapps/47688.md"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2019-10092.json","reference_id":"CVE-2019-10092","reference_type":"","scores":[{"value":"low","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2019-10092.json"},{"reference_url":"https://security.gentoo.org/glsa/201909-04","reference_id":"GLSA-201909-04","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201909-04"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4126","reference_id":"RHSA-2019:4126","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:4126"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:1336","reference_id":"RHSA-2020:1336","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:1336"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:1337","reference_id":"RHSA-2020:1337","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:1337"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4751","reference_id":"RHSA-2020:4751","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4751"},{"reference_url":"https://usn.ubuntu.com/4113-1/","reference_id":"USN-4113-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4113-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1382?format=json","purl":"pkg:apache/httpd@2.4.41","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3dh3-8wr4-uqcd"},{"vulnerability":"VCID-7xcn-c8p4-j7ec"},{"vulnerability":"VCID-9wx3-62cp-fuh8"},{"vulnerability":"VCID-n8qk-qws2-9ydv"},{"vulnerability":"VCID-rc99-4efu-tud2"},{"vulnerability":"VCID-rnxc-by82-nfhu"},{"vulnerability":"VCID-ryvw-uqwb-vbhu"},{"vulnerability":"VCID-wf33-hszj-akf9"},{"vulnerability":"VCID-y5k7-ve1j-3bfc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.41"}],"aliases":["CVE-2019-10092"],"risk_score":8.4,"exploitability":"2.0","weighted_severity":"4.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rb9f-qwwr-v7c2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/9226?format=json","vulnerability_id":"VCID-rc99-4efu-tud2","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-26691.json","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-26691.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-26691","reference_id":"","reference_type":"","scores":[{"value":"0.36266","scoring_system":"epss","scoring_elements":"0.97224","published_at":"2026-06-14T12:55:00Z"},{"value":"0.36266","scoring_system":"epss","scoring_elements":"0.97214","published_at":"2026-06-11T12:55:00Z"},{"value":"0.36266","scoring_system":"epss","scoring_elements":"0.97221","published_at":"2026-06-12T12:55:00Z"},{"value":"0.36266","scoring_system":"epss","scoring_elements":"0.97223","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-26691"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35452","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35452"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26690","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26690"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26691","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26691"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30641","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30641"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-31618","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-31618"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1966732","reference_id":"1966732","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1966732"},{"reference_url":"https://security.archlinux.org/AVG-2053","reference_id":"AVG-2053","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2053"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2021-26691.json","reference_id":"CVE-2021-26691","reference_type":"","scores":[{"value":"low","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2021-26691.json"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3816","reference_id":"RHSA-2021:3816","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3816"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4613","reference_id":"RHSA-2021:4613","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4613"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4614","reference_id":"RHSA-2021:4614","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4614"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0143","reference_id":"RHSA-2022:0143","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0143"},{"reference_url":"https://usn.ubuntu.com/4994-1/","reference_id":"USN-4994-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4994-1/"},{"reference_url":"https://usn.ubuntu.com/4994-2/","reference_id":"USN-4994-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4994-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1385?format=json","purl":"pkg:apache/httpd@2.4.48","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-18er-46ap-subu"},{"vulnerability":"VCID-2ws7-fvz5-rbgw"},{"vulnerability":"VCID-dnnd-dss4-gfdh"},{"vulnerability":"VCID-ehs4-14pg-abgc"},{"vulnerability":"VCID-tcgf-utcm-3fc6"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.48"}],"aliases":["CVE-2021-26691"],"risk_score":3.6,"exploitability":"0.5","weighted_severity":"7.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rc99-4efu-tud2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/2008?format=json","vulnerability_id":"VCID-sfx1-4tej-gqgs","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8743.json","reference_id":"","reference_type":"","scores":[{"value":"4.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8743.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-8743","reference_id":"","reference_type":"","scores":[{"value":"0.0978","scoring_system":"epss","scoring_elements":"0.9313","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0978","scoring_system":"epss","scoring_elements":"0.93153","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0978","scoring_system":"epss","scoring_elements":"0.93154","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-8743"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0736","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0736"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2161","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2161"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8743","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8743"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.8","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:P/I:P/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1406822","reference_id":"1406822","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1406822"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2016-8743.json","reference_id":"CVE-2016-8743","reference_type":"","scores":[{"value":"important","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2016-8743.json"},{"reference_url":"https://security.gentoo.org/glsa/201701-36","reference_id":"GLSA-201701-36","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201701-36"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:0906","reference_id":"RHSA-2017:0906","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:0906"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:1161","reference_id":"RHSA-2017:1161","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:1161"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:1413","reference_id":"RHSA-2017:1413","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:1413"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:1414","reference_id":"RHSA-2017:1414","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:1414"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:1415","reference_id":"RHSA-2017:1415","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:1415"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:1721","reference_id":"RHSA-2017:1721","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:1721"},{"reference_url":"https://usn.ubuntu.com/3279-1/","reference_id":"USN-3279-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3279-1/"},{"reference_url":"https://usn.ubuntu.com/3373-1/","reference_id":"USN-3373-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3373-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1367?format=json","purl":"pkg:apache/httpd@2.4.25","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-38r6-mbzq-e7gd"},{"vulnerability":"VCID-3dh3-8wr4-uqcd"},{"vulnerability":"VCID-3dvk-8he7-xbck"},{"vulnerability":"VCID-43j2-q5rg-7qay"},{"vulnerability":"VCID-44ma-b8wt-67fa"},{"vulnerability":"VCID-7j9j-sxt1-6qa6"},{"vulnerability":"VCID-7xcn-c8p4-j7ec"},{"vulnerability":"VCID-8vas-wy6r-pkda"},{"vulnerability":"VCID-9e8m-yzr3-pbgz"},{"vulnerability":"VCID-9wx3-62cp-fuh8"},{"vulnerability":"VCID-afat-n93z-8qeq"},{"vulnerability":"VCID-arm8-rmce-2bec"},{"vulnerability":"VCID-dk12-s4wp-suhc"},{"vulnerability":"VCID-e4mk-ydp9-m3bx"},{"vulnerability":"VCID-ea8s-ercf-qfdx"},{"vulnerability":"VCID-gqvc-a75w-dqej"},{"vulnerability":"VCID-grnf-r71w-r3h7"},{"vulnerability":"VCID-h959-hrhy-wkep"},{"vulnerability":"VCID-kp2b-t25c-sqfc"},{"vulnerability":"VCID-mzxz-ujfq-qucw"},{"vulnerability":"VCID-n8qk-qws2-9ydv"},{"vulnerability":"VCID-nxqt-4e79-w3et"},{"vulnerability":"VCID-pr6s-p29g-k3hv"},{"vulnerability":"VCID-qw6u-prup-eqar"},{"vulnerability":"VCID-rb9f-qwwr-v7c2"},{"vulnerability":"VCID-rc99-4efu-tud2"},{"vulnerability":"VCID-t95h-sdy4-tua1"},{"vulnerability":"VCID-taua-zv9g-7kck"},{"vulnerability":"VCID-tdub-a3cg-r7fg"},{"vulnerability":"VCID-uhyk-pc9e-w7cu"},{"vulnerability":"VCID-usz9-qezx-9ybx"},{"vulnerability":"VCID-wf33-hszj-akf9"},{"vulnerability":"VCID-x7bx-d6tn-fbhf"},{"vulnerability":"VCID-xj85-t7py-93cf"},{"vulnerability":"VCID-y5k7-ve1j-3bfc"},{"vulnerability":"VCID-y7cv-qzrr-rbhd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.25"}],"aliases":["CVE-2016-8743"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-sfx1-4tej-gqgs"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/5910?format=json","vulnerability_id":"VCID-t95h-sdy4-tua1","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-0220.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-0220.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-0220","reference_id":"","reference_type":"","scores":[{"value":"0.23866","scoring_system":"epss","scoring_elements":"0.96158","published_at":"2026-06-14T12:55:00Z"},{"value":"0.23866","scoring_system":"epss","scoring_elements":"0.96142","published_at":"2026-06-11T12:55:00Z"},{"value":"0.23866","scoring_system":"epss","scoring_elements":"0.96153","published_at":"2026-06-12T12:55:00Z"},{"value":"0.23866","scoring_system":"epss","scoring_elements":"0.96155","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-0220"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17189","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17189"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17199","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17199"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0196","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0196"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0211","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0211"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0217","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0217"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0220","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0220"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1695036","reference_id":"1695036","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1695036"},{"reference_url":"https://security.archlinux.org/ASA-201904-3","reference_id":"ASA-201904-3","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201904-3"},{"reference_url":"https://security.archlinux.org/AVG-946","reference_id":"AVG-946","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-946"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2019-0220.json","reference_id":"CVE-2019-0220","reference_type":"","scores":[{"value":"low","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2019-0220.json"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2343","reference_id":"RHSA-2019:2343","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:2343"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3436","reference_id":"RHSA-2019:3436","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3436"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4126","reference_id":"RHSA-2019:4126","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:4126"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0250","reference_id":"RHSA-2020:0250","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0250"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0251","reference_id":"RHSA-2020:0251","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0251"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1380?format=json","purl":"pkg:apache/httpd@2.4.39","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3dh3-8wr4-uqcd"},{"vulnerability":"VCID-3dvk-8he7-xbck"},{"vulnerability":"VCID-7xcn-c8p4-j7ec"},{"vulnerability":"VCID-9e8m-yzr3-pbgz"},{"vulnerability":"VCID-9wx3-62cp-fuh8"},{"vulnerability":"VCID-afat-n93z-8qeq"},{"vulnerability":"VCID-ke6c-mee3-hkeu"},{"vulnerability":"VCID-mzxz-ujfq-qucw"},{"vulnerability":"VCID-n8qk-qws2-9ydv"},{"vulnerability":"VCID-pr6s-p29g-k3hv"},{"vulnerability":"VCID-qw6u-prup-eqar"},{"vulnerability":"VCID-rb9f-qwwr-v7c2"},{"vulnerability":"VCID-rc99-4efu-tud2"},{"vulnerability":"VCID-ryvw-uqwb-vbhu"},{"vulnerability":"VCID-wf33-hszj-akf9"},{"vulnerability":"VCID-y5k7-ve1j-3bfc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.39"}],"aliases":["CVE-2019-0220"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-t95h-sdy4-tua1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4673?format=json","vulnerability_id":"VCID-tdub-a3cg-r7fg","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-1283.json","reference_id":"","reference_type":"","scores":[{"value":"4.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-1283.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-1283","reference_id":"","reference_type":"","scores":[{"value":"0.03761","scoring_system":"epss","scoring_elements":"0.88343","published_at":"2026-06-14T12:55:00Z"},{"value":"0.03761","scoring_system":"epss","scoring_elements":"0.88299","published_at":"2026-06-11T12:55:00Z"},{"value":"0.03761","scoring_system":"epss","scoring_elements":"0.88338","published_at":"2026-06-12T12:55:00Z"},{"value":"0.03761","scoring_system":"epss","scoring_elements":"0.88344","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-1283"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15710","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15710"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15715","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15715"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1283","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1283"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1301","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1301"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1303","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1303"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1312","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1312"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1560395","reference_id":"1560395","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1560395"},{"reference_url":"https://security.archlinux.org/ASA-201804-4","reference_id":"ASA-201804-4","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201804-4"},{"reference_url":"https://security.archlinux.org/AVG-664","reference_id":"AVG-664","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-664"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2018-1283.json","reference_id":"CVE-2018-1283","reference_type":"","scores":[{"value":"moderate","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2018-1283.json"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:3558","reference_id":"RHSA-2018:3558","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2018:3558"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:0366","reference_id":"RHSA-2019:0366","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:0366"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:0367","reference_id":"RHSA-2019:0367","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:0367"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3958","reference_id":"RHSA-2020:3958","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3958"},{"reference_url":"https://usn.ubuntu.com/3627-1/","reference_id":"USN-3627-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3627-1/"},{"reference_url":"https://usn.ubuntu.com/3627-2/","reference_id":"USN-3627-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3627-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1374?format=json","purl":"pkg:apache/httpd@2.4.33","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-38r6-mbzq-e7gd"},{"vulnerability":"VCID-3dh3-8wr4-uqcd"},{"vulnerability":"VCID-3dvk-8he7-xbck"},{"vulnerability":"VCID-7xcn-c8p4-j7ec"},{"vulnerability":"VCID-8vas-wy6r-pkda"},{"vulnerability":"VCID-9e8m-yzr3-pbgz"},{"vulnerability":"VCID-9wx3-62cp-fuh8"},{"vulnerability":"VCID-afat-n93z-8qeq"},{"vulnerability":"VCID-arm8-rmce-2bec"},{"vulnerability":"VCID-bx14-h9x6-77eb"},{"vulnerability":"VCID-ea8s-ercf-qfdx"},{"vulnerability":"VCID-h959-hrhy-wkep"},{"vulnerability":"VCID-ke6c-mee3-hkeu"},{"vulnerability":"VCID-mzxz-ujfq-qucw"},{"vulnerability":"VCID-n4rc-485y-4qgj"},{"vulnerability":"VCID-n8qk-qws2-9ydv"},{"vulnerability":"VCID-pr6s-p29g-k3hv"},{"vulnerability":"VCID-qw6u-prup-eqar"},{"vulnerability":"VCID-rb9f-qwwr-v7c2"},{"vulnerability":"VCID-rc99-4efu-tud2"},{"vulnerability":"VCID-t95h-sdy4-tua1"},{"vulnerability":"VCID-taua-zv9g-7kck"},{"vulnerability":"VCID-wf33-hszj-akf9"},{"vulnerability":"VCID-xj85-t7py-93cf"},{"vulnerability":"VCID-y5k7-ve1j-3bfc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.33"}],"aliases":["CVE-2018-1283"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-tdub-a3cg-r7fg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3925?format=json","vulnerability_id":"VCID-uhyk-pc9e-w7cu","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7679.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7679.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-7679","reference_id":"","reference_type":"","scores":[{"value":"0.30062","scoring_system":"epss","scoring_elements":"0.9679","published_at":"2026-06-14T12:55:00Z"},{"value":"0.30062","scoring_system":"epss","scoring_elements":"0.96777","published_at":"2026-06-11T12:55:00Z"},{"value":"0.30062","scoring_system":"epss","scoring_elements":"0.96788","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-7679"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3167","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3167"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3169","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3169"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7668","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7668"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7679","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7679"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:H/Au:N/C:P/I:N/A:P"},{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1463207","reference_id":"1463207","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1463207"},{"reference_url":"https://security.archlinux.org/ASA-201706-34","reference_id":"ASA-201706-34","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201706-34"},{"reference_url":"https://security.archlinux.org/AVG-316","reference_id":"AVG-316","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-316"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2017-7679.json","reference_id":"CVE-2017-7679","reference_type":"","scores":[{"value":"important","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2017-7679.json"},{"reference_url":"https://security.gentoo.org/glsa/201710-32","reference_id":"GLSA-201710-32","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201710-32"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:2478","reference_id":"RHSA-2017:2478","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:2478"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:2479","reference_id":"RHSA-2017:2479","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:2479"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:2483","reference_id":"RHSA-2017:2483","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:2483"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:3193","reference_id":"RHSA-2017:3193","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:3193"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:3194","reference_id":"RHSA-2017:3194","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:3194"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:3195","reference_id":"RHSA-2017:3195","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:3195"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:3475","reference_id":"RHSA-2017:3475","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:3475"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:3476","reference_id":"RHSA-2017:3476","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:3476"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:3477","reference_id":"RHSA-2017:3477","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:3477"},{"reference_url":"https://usn.ubuntu.com/3340-1/","reference_id":"USN-3340-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3340-1/"},{"reference_url":"https://usn.ubuntu.com/3373-1/","reference_id":"USN-3373-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3373-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1370?format=json","purl":"pkg:apache/httpd@2.4.26","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-38r6-mbzq-e7gd"},{"vulnerability":"VCID-3dh3-8wr4-uqcd"},{"vulnerability":"VCID-3dvk-8he7-xbck"},{"vulnerability":"VCID-43j2-q5rg-7qay"},{"vulnerability":"VCID-7xcn-c8p4-j7ec"},{"vulnerability":"VCID-8vas-wy6r-pkda"},{"vulnerability":"VCID-9e8m-yzr3-pbgz"},{"vulnerability":"VCID-9wx3-62cp-fuh8"},{"vulnerability":"VCID-afat-n93z-8qeq"},{"vulnerability":"VCID-arm8-rmce-2bec"},{"vulnerability":"VCID-dk12-s4wp-suhc"},{"vulnerability":"VCID-e4mk-ydp9-m3bx"},{"vulnerability":"VCID-ea8s-ercf-qfdx"},{"vulnerability":"VCID-ern3-8585-c7hn"},{"vulnerability":"VCID-gqvc-a75w-dqej"},{"vulnerability":"VCID-grnf-r71w-r3h7"},{"vulnerability":"VCID-h959-hrhy-wkep"},{"vulnerability":"VCID-kp2b-t25c-sqfc"},{"vulnerability":"VCID-mzxz-ujfq-qucw"},{"vulnerability":"VCID-n8qk-qws2-9ydv"},{"vulnerability":"VCID-pr6s-p29g-k3hv"},{"vulnerability":"VCID-qw6u-prup-eqar"},{"vulnerability":"VCID-rb9f-qwwr-v7c2"},{"vulnerability":"VCID-rc99-4efu-tud2"},{"vulnerability":"VCID-t95h-sdy4-tua1"},{"vulnerability":"VCID-taua-zv9g-7kck"},{"vulnerability":"VCID-tdub-a3cg-r7fg"},{"vulnerability":"VCID-usz9-qezx-9ybx"},{"vulnerability":"VCID-wf33-hszj-akf9"},{"vulnerability":"VCID-xj85-t7py-93cf"},{"vulnerability":"VCID-y5k7-ve1j-3bfc"},{"vulnerability":"VCID-y7cv-qzrr-rbhd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.26"}],"aliases":["CVE-2017-7679"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-uhyk-pc9e-w7cu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3075?format=json","vulnerability_id":"VCID-usz9-qezx-9ybx","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15715.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15715.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-15715","reference_id":"","reference_type":"","scores":[{"value":"0.93618","scoring_system":"epss","scoring_elements":"0.99848","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-15715"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15710","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15710"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15715","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15715"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1283","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1283"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1301","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1301"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1303","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1303"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1312","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1312"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1560614","reference_id":"1560614","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1560614"},{"reference_url":"https://security.archlinux.org/ASA-201804-4","reference_id":"ASA-201804-4","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201804-4"},{"reference_url":"https://security.archlinux.org/AVG-664","reference_id":"AVG-664","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-664"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2017-15715.json","reference_id":"CVE-2017-15715","reference_type":"","scores":[{"value":"low","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2017-15715.json"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:3558","reference_id":"RHSA-2018:3558","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2018:3558"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:0366","reference_id":"RHSA-2019:0366","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:0366"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:0367","reference_id":"RHSA-2019:0367","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:0367"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3958","reference_id":"RHSA-2020:3958","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3958"},{"reference_url":"https://usn.ubuntu.com/3627-1/","reference_id":"USN-3627-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3627-1/"},{"reference_url":"https://usn.ubuntu.com/3627-2/","reference_id":"USN-3627-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3627-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1374?format=json","purl":"pkg:apache/httpd@2.4.33","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-38r6-mbzq-e7gd"},{"vulnerability":"VCID-3dh3-8wr4-uqcd"},{"vulnerability":"VCID-3dvk-8he7-xbck"},{"vulnerability":"VCID-7xcn-c8p4-j7ec"},{"vulnerability":"VCID-8vas-wy6r-pkda"},{"vulnerability":"VCID-9e8m-yzr3-pbgz"},{"vulnerability":"VCID-9wx3-62cp-fuh8"},{"vulnerability":"VCID-afat-n93z-8qeq"},{"vulnerability":"VCID-arm8-rmce-2bec"},{"vulnerability":"VCID-bx14-h9x6-77eb"},{"vulnerability":"VCID-ea8s-ercf-qfdx"},{"vulnerability":"VCID-h959-hrhy-wkep"},{"vulnerability":"VCID-ke6c-mee3-hkeu"},{"vulnerability":"VCID-mzxz-ujfq-qucw"},{"vulnerability":"VCID-n4rc-485y-4qgj"},{"vulnerability":"VCID-n8qk-qws2-9ydv"},{"vulnerability":"VCID-pr6s-p29g-k3hv"},{"vulnerability":"VCID-qw6u-prup-eqar"},{"vulnerability":"VCID-rb9f-qwwr-v7c2"},{"vulnerability":"VCID-rc99-4efu-tud2"},{"vulnerability":"VCID-t95h-sdy4-tua1"},{"vulnerability":"VCID-taua-zv9g-7kck"},{"vulnerability":"VCID-wf33-hszj-akf9"},{"vulnerability":"VCID-xj85-t7py-93cf"},{"vulnerability":"VCID-y5k7-ve1j-3bfc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.33"}],"aliases":["CVE-2017-15715"],"risk_score":10.0,"exploitability":"2.0","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-usz9-qezx-9ybx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/175419?format=json","vulnerability_id":"VCID-wf33-hszj-akf9","summary":"in Apache HTTP Server versions 2.4.0 to 2.4.41, mod_proxy_ftp use of uninitialized value with malicious FTP backend.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-1934.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-1934.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-1934","reference_id":"","reference_type":"","scores":[{"value":"0.27241","scoring_system":"epss","scoring_elements":"0.96509","published_at":"2026-06-11T12:55:00Z"},{"value":"0.27241","scoring_system":"epss","scoring_elements":"0.9652","published_at":"2026-06-12T12:55:00Z"},{"value":"0.27241","scoring_system":"epss","scoring_elements":"0.96521","published_at":"2026-06-13T12:55:00Z"},{"value":"0.27241","scoring_system":"epss","scoring_elements":"0.96523","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-1934"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11984","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11984"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11993","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11993"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1927","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1927"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1934","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1934"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9490","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9490"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1820772","reference_id":"1820772","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1820772"},{"reference_url":"https://security.archlinux.org/ASA-202004-14","reference_id":"ASA-202004-14","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202004-14"},{"reference_url":"https://security.archlinux.org/AVG-1126","reference_id":"AVG-1126","reference_type":"","scores":[{"value":"Low","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1126"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2020-1934.json","reference_id":"CVE-2020-1934","reference_type":"","scores":[{"value":"low","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2020-1934.json"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2644","reference_id":"RHSA-2020:2644","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2644"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2646","reference_id":"RHSA-2020:2646","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2646"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3958","reference_id":"RHSA-2020:3958","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3958"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4751","reference_id":"RHSA-2020:4751","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4751"},{"reference_url":"https://usn.ubuntu.com/4458-1/","reference_id":"USN-4458-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4458-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1387?format=json","purl":"pkg:apache/httpd@2.4.42","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.42"}],"aliases":["CVE-2020-1934"],"risk_score":1.6,"exploitability":"0.5","weighted_severity":"3.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wf33-hszj-akf9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/109479?format=json","vulnerability_id":"VCID-xmt2-8ett-qbgx","summary":"security update","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0118.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0118.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-0118","reference_id":"","reference_type":"","scores":[{"value":"0.41327","scoring_system":"epss","scoring_elements":"0.97492","published_at":"2026-06-11T12:55:00Z"},{"value":"0.41327","scoring_system":"epss","scoring_elements":"0.975","published_at":"2026-06-12T12:55:00Z"},{"value":"0.41327","scoring_system":"epss","scoring_elements":"0.97502","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-0118"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0118","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0118"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0226","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0226"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0231","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0231"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1120601","reference_id":"1120601","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1120601"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2014-0118.json","reference_id":"CVE-2014-0118","reference_type":"","scores":[{"value":"moderate","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2014-0118.json"},{"reference_url":"https://security.gentoo.org/glsa/201504-03","reference_id":"GLSA-201504-03","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201504-03"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0920","reference_id":"RHSA-2014:0920","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0920"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0921","reference_id":"RHSA-2014:0921","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0921"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0922","reference_id":"RHSA-2014:0922","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0922"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1019","reference_id":"RHSA-2014:1019","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1019"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1020","reference_id":"RHSA-2014:1020","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1020"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1021","reference_id":"RHSA-2014:1021","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1021"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1086","reference_id":"RHSA-2014:1086","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1086"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1087","reference_id":"RHSA-2014:1087","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1087"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1088","reference_id":"RHSA-2014:1088","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1088"},{"reference_url":"https://usn.ubuntu.com/2299-1/","reference_id":"USN-2299-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2299-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1356?format=json","purl":"pkg:apache/httpd@2.4.10","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w8b-3gmt-qff7"},{"vulnerability":"VCID-3dh3-8wr4-uqcd"},{"vulnerability":"VCID-3u4s-a96g-v3aq"},{"vulnerability":"VCID-43j2-q5rg-7qay"},{"vulnerability":"VCID-7j9j-sxt1-6qa6"},{"vulnerability":"VCID-7xcn-c8p4-j7ec"},{"vulnerability":"VCID-8vkp-k5yr-n3bn"},{"vulnerability":"VCID-9e8m-yzr3-pbgz"},{"vulnerability":"VCID-9wx3-62cp-fuh8"},{"vulnerability":"VCID-arm8-rmce-2bec"},{"vulnerability":"VCID-bn5d-te6p-hyf1"},{"vulnerability":"VCID-dk12-s4wp-suhc"},{"vulnerability":"VCID-dr2b-7ack-wbfp"},{"vulnerability":"VCID-e4mk-ydp9-m3bx"},{"vulnerability":"VCID-epgm-u9j7-7bd1"},{"vulnerability":"VCID-f1cy-ycsy-qqhc"},{"vulnerability":"VCID-grnf-r71w-r3h7"},{"vulnerability":"VCID-h959-hrhy-wkep"},{"vulnerability":"VCID-kg8r-vq3s-2qa4"},{"vulnerability":"VCID-kp2b-t25c-sqfc"},{"vulnerability":"VCID-n82t-1jhq-8ba3"},{"vulnerability":"VCID-n8qk-qws2-9ydv"},{"vulnerability":"VCID-nxqt-4e79-w3et"},{"vulnerability":"VCID-pc8m-gm5b-gya1"},{"vulnerability":"VCID-qjxt-ekff-ykgk"},{"vulnerability":"VCID-rb9f-qwwr-v7c2"},{"vulnerability":"VCID-rc99-4efu-tud2"},{"vulnerability":"VCID-sfx1-4tej-gqgs"},{"vulnerability":"VCID-t95h-sdy4-tua1"},{"vulnerability":"VCID-tdub-a3cg-r7fg"},{"vulnerability":"VCID-uhyk-pc9e-w7cu"},{"vulnerability":"VCID-usz9-qezx-9ybx"},{"vulnerability":"VCID-uyz2-jck5-d7dd"},{"vulnerability":"VCID-wf33-hszj-akf9"},{"vulnerability":"VCID-y5k7-ve1j-3bfc"},{"vulnerability":"VCID-y7cv-qzrr-rbhd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.10"}],"aliases":["CVE-2014-0118"],"risk_score":2.4,"exploitability":"0.5","weighted_severity":"4.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xmt2-8ett-qbgx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/9225?format=json","vulnerability_id":"VCID-y5k7-ve1j-3bfc","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-26690.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-26690.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-26690","reference_id":"","reference_type":"","scores":[{"value":"0.5815","scoring_system":"epss","scoring_elements":"0.98224","published_at":"2026-06-11T12:55:00Z"},{"value":"0.5815","scoring_system":"epss","scoring_elements":"0.98231","published_at":"2026-06-12T12:55:00Z"},{"value":"0.5815","scoring_system":"epss","scoring_elements":"0.98232","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-26690"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35452","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35452"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26690","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26690"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26691","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26691"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30641","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30641"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-31618","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-31618"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1966729","reference_id":"1966729","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1966729"},{"reference_url":"https://security.archlinux.org/AVG-2053","reference_id":"AVG-2053","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2053"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2021-26690.json","reference_id":"CVE-2021-26690","reference_type":"","scores":[{"value":"low","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2021-26690.json"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4257","reference_id":"RHSA-2021:4257","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4257"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4613","reference_id":"RHSA-2021:4613","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4613"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4614","reference_id":"RHSA-2021:4614","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4614"},{"reference_url":"https://usn.ubuntu.com/4994-1/","reference_id":"USN-4994-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4994-1/"},{"reference_url":"https://usn.ubuntu.com/4994-2/","reference_id":"USN-4994-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4994-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1385?format=json","purl":"pkg:apache/httpd@2.4.48","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-18er-46ap-subu"},{"vulnerability":"VCID-2ws7-fvz5-rbgw"},{"vulnerability":"VCID-dnnd-dss4-gfdh"},{"vulnerability":"VCID-ehs4-14pg-abgc"},{"vulnerability":"VCID-tcgf-utcm-3fc6"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.48"}],"aliases":["CVE-2021-26690"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-y5k7-ve1j-3bfc"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4695?format=json","vulnerability_id":"VCID-y7cv-qzrr-rbhd","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-1303.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-1303.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-1303","reference_id":"","reference_type":"","scores":[{"value":"0.34546","scoring_system":"epss","scoring_elements":"0.97109","published_at":"2026-06-11T12:55:00Z"},{"value":"0.34546","scoring_system":"epss","scoring_elements":"0.97117","published_at":"2026-06-12T12:55:00Z"},{"value":"0.34546","scoring_system":"epss","scoring_elements":"0.97119","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-1303"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15710","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15710"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15715","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15715"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1283","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1283"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1301","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1301"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1303","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1303"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1312","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1312"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1560399","reference_id":"1560399","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1560399"},{"reference_url":"https://security.archlinux.org/ASA-201804-4","reference_id":"ASA-201804-4","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201804-4"},{"reference_url":"https://security.archlinux.org/AVG-664","reference_id":"AVG-664","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-664"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2018-1303.json","reference_id":"CVE-2018-1303","reference_type":"","scores":[{"value":"low","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2018-1303.json"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:3558","reference_id":"RHSA-2018:3558","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2018:3558"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:0366","reference_id":"RHSA-2019:0366","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:0366"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:0367","reference_id":"RHSA-2019:0367","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:0367"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3958","reference_id":"RHSA-2020:3958","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3958"},{"reference_url":"https://usn.ubuntu.com/3627-1/","reference_id":"USN-3627-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3627-1/"},{"reference_url":"https://usn.ubuntu.com/3627-2/","reference_id":"USN-3627-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3627-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1374?format=json","purl":"pkg:apache/httpd@2.4.33","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-38r6-mbzq-e7gd"},{"vulnerability":"VCID-3dh3-8wr4-uqcd"},{"vulnerability":"VCID-3dvk-8he7-xbck"},{"vulnerability":"VCID-7xcn-c8p4-j7ec"},{"vulnerability":"VCID-8vas-wy6r-pkda"},{"vulnerability":"VCID-9e8m-yzr3-pbgz"},{"vulnerability":"VCID-9wx3-62cp-fuh8"},{"vulnerability":"VCID-afat-n93z-8qeq"},{"vulnerability":"VCID-arm8-rmce-2bec"},{"vulnerability":"VCID-bx14-h9x6-77eb"},{"vulnerability":"VCID-ea8s-ercf-qfdx"},{"vulnerability":"VCID-h959-hrhy-wkep"},{"vulnerability":"VCID-ke6c-mee3-hkeu"},{"vulnerability":"VCID-mzxz-ujfq-qucw"},{"vulnerability":"VCID-n4rc-485y-4qgj"},{"vulnerability":"VCID-n8qk-qws2-9ydv"},{"vulnerability":"VCID-pr6s-p29g-k3hv"},{"vulnerability":"VCID-qw6u-prup-eqar"},{"vulnerability":"VCID-rb9f-qwwr-v7c2"},{"vulnerability":"VCID-rc99-4efu-tud2"},{"vulnerability":"VCID-t95h-sdy4-tua1"},{"vulnerability":"VCID-taua-zv9g-7kck"},{"vulnerability":"VCID-wf33-hszj-akf9"},{"vulnerability":"VCID-xj85-t7py-93cf"},{"vulnerability":"VCID-y5k7-ve1j-3bfc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.33"}],"aliases":["CVE-2018-1303"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-y7cv-qzrr-rbhd"}],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/175406?format=json","vulnerability_id":"VCID-rj9n-s2a4-w7he","summary":"A flaw was found in mod_log_config. A remote attacker could send a specific truncated cookie causing a crash. This crash would only be a denial of service if using a threaded MPM.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0098.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0098.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-0098","reference_id":"","reference_type":"","scores":[{"value":"0.50788","scoring_system":"epss","scoring_elements":"0.97918","published_at":"2026-06-11T12:55:00Z"},{"value":"0.50788","scoring_system":"epss","scoring_elements":"0.97926","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-0098"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0098","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0098"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1077871","reference_id":"1077871","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1077871"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2014-0098.json","reference_id":"CVE-2014-0098","reference_type":"","scores":[{"value":"low","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2014-0098.json"},{"reference_url":"https://security.gentoo.org/glsa/201408-12","reference_id":"GLSA-201408-12","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201408-12"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0369","reference_id":"RHSA-2014:0369","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0369"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0370","reference_id":"RHSA-2014:0370","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0370"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0783","reference_id":"RHSA-2014:0783","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0783"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0784","reference_id":"RHSA-2014:0784","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0784"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0825","reference_id":"RHSA-2014:0825","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0825"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0826","reference_id":"RHSA-2014:0826","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0826"},{"reference_url":"https://usn.ubuntu.com/2152-1/","reference_id":"USN-2152-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2152-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1354?format=json","purl":"pkg:apache/httpd@2.2.27","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3u4s-a96g-v3aq"},{"vulnerability":"VCID-7j9j-sxt1-6qa6"},{"vulnerability":"VCID-8vkp-k5yr-n3bn"},{"vulnerability":"VCID-9nuk-vm33-kkha"},{"vulnerability":"VCID-dj7a-88wd-dugh"},{"vulnerability":"VCID-e4mk-ydp9-m3bx"},{"vulnerability":"VCID-epgm-u9j7-7bd1"},{"vulnerability":"VCID-grnf-r71w-r3h7"},{"vulnerability":"VCID-kg8r-vq3s-2qa4"},{"vulnerability":"VCID-nxqt-4e79-w3et"},{"vulnerability":"VCID-sfx1-4tej-gqgs"},{"vulnerability":"VCID-uhyk-pc9e-w7cu"},{"vulnerability":"VCID-xmt2-8ett-qbgx"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.2.27"},{"url":"http://public2.vulnerablecode.io/api/packages/1355?format=json","purl":"pkg:apache/httpd@2.4.9","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w8b-3gmt-qff7"},{"vulnerability":"VCID-3dh3-8wr4-uqcd"},{"vulnerability":"VCID-3u4s-a96g-v3aq"},{"vulnerability":"VCID-43j2-q5rg-7qay"},{"vulnerability":"VCID-7j9j-sxt1-6qa6"},{"vulnerability":"VCID-7xcn-c8p4-j7ec"},{"vulnerability":"VCID-8vkp-k5yr-n3bn"},{"vulnerability":"VCID-9e8m-yzr3-pbgz"},{"vulnerability":"VCID-9nuk-vm33-kkha"},{"vulnerability":"VCID-9wx3-62cp-fuh8"},{"vulnerability":"VCID-arm8-rmce-2bec"},{"vulnerability":"VCID-bn5d-te6p-hyf1"},{"vulnerability":"VCID-dj7a-88wd-dugh"},{"vulnerability":"VCID-dk12-s4wp-suhc"},{"vulnerability":"VCID-dr2b-7ack-wbfp"},{"vulnerability":"VCID-e4mk-ydp9-m3bx"},{"vulnerability":"VCID-epgm-u9j7-7bd1"},{"vulnerability":"VCID-f1cy-ycsy-qqhc"},{"vulnerability":"VCID-grnf-r71w-r3h7"},{"vulnerability":"VCID-gs9y-327e-s7d3"},{"vulnerability":"VCID-h959-hrhy-wkep"},{"vulnerability":"VCID-kg8r-vq3s-2qa4"},{"vulnerability":"VCID-kp2b-t25c-sqfc"},{"vulnerability":"VCID-n82t-1jhq-8ba3"},{"vulnerability":"VCID-n8qk-qws2-9ydv"},{"vulnerability":"VCID-nxqt-4e79-w3et"},{"vulnerability":"VCID-pc8m-gm5b-gya1"},{"vulnerability":"VCID-qjxt-ekff-ykgk"},{"vulnerability":"VCID-r2fd-nfnk-h7gy"},{"vulnerability":"VCID-rb9f-qwwr-v7c2"},{"vulnerability":"VCID-rc99-4efu-tud2"},{"vulnerability":"VCID-sfx1-4tej-gqgs"},{"vulnerability":"VCID-t95h-sdy4-tua1"},{"vulnerability":"VCID-tdub-a3cg-r7fg"},{"vulnerability":"VCID-uhyk-pc9e-w7cu"},{"vulnerability":"VCID-usz9-qezx-9ybx"},{"vulnerability":"VCID-wf33-hszj-akf9"},{"vulnerability":"VCID-xmt2-8ett-qbgx"},{"vulnerability":"VCID-y5k7-ve1j-3bfc"},{"vulnerability":"VCID-y7cv-qzrr-rbhd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.9"}],"aliases":["CVE-2014-0098"],"risk_score":1.1,"exploitability":"0.5","weighted_severity":"2.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rj9n-s2a4-w7he"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/175405?format=json","vulnerability_id":"VCID-uhmn-527n-fqgq","summary":"XML parsing code in mod_dav incorrectly calculates the end of the string when removing leading spaces and places a NUL character outside the buffer, causing random crashes. This XML parsing code is only used with DAV provider modules that support DeltaV, of which the only publicly released provider is mod_dav_svn.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-6438.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-6438.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-6438","reference_id":"","reference_type":"","scores":[{"value":"0.39561","scoring_system":"epss","scoring_elements":"0.97399","published_at":"2026-06-11T12:55:00Z"},{"value":"0.39561","scoring_system":"epss","scoring_elements":"0.97407","published_at":"2026-06-12T12:55:00Z"},{"value":"0.39561","scoring_system":"epss","scoring_elements":"0.97409","published_at":"2026-06-13T12:55:00Z"},{"value":"0.39561","scoring_system":"epss","scoring_elements":"0.9741","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-6438"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6438","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6438"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1077867","reference_id":"1077867","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1077867"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2013-6438.json","reference_id":"CVE-2013-6438","reference_type":"","scores":[{"value":"moderate","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2013-6438.json"},{"reference_url":"https://security.gentoo.org/glsa/201408-12","reference_id":"GLSA-201408-12","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201408-12"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0369","reference_id":"RHSA-2014:0369","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0369"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0370","reference_id":"RHSA-2014:0370","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0370"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0783","reference_id":"RHSA-2014:0783","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0783"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0784","reference_id":"RHSA-2014:0784","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0784"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0825","reference_id":"RHSA-2014:0825","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0825"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0826","reference_id":"RHSA-2014:0826","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0826"},{"reference_url":"https://usn.ubuntu.com/2152-1/","reference_id":"USN-2152-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2152-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1354?format=json","purl":"pkg:apache/httpd@2.2.27","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3u4s-a96g-v3aq"},{"vulnerability":"VCID-7j9j-sxt1-6qa6"},{"vulnerability":"VCID-8vkp-k5yr-n3bn"},{"vulnerability":"VCID-9nuk-vm33-kkha"},{"vulnerability":"VCID-dj7a-88wd-dugh"},{"vulnerability":"VCID-e4mk-ydp9-m3bx"},{"vulnerability":"VCID-epgm-u9j7-7bd1"},{"vulnerability":"VCID-grnf-r71w-r3h7"},{"vulnerability":"VCID-kg8r-vq3s-2qa4"},{"vulnerability":"VCID-nxqt-4e79-w3et"},{"vulnerability":"VCID-sfx1-4tej-gqgs"},{"vulnerability":"VCID-uhyk-pc9e-w7cu"},{"vulnerability":"VCID-xmt2-8ett-qbgx"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.2.27"},{"url":"http://public2.vulnerablecode.io/api/packages/1355?format=json","purl":"pkg:apache/httpd@2.4.9","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w8b-3gmt-qff7"},{"vulnerability":"VCID-3dh3-8wr4-uqcd"},{"vulnerability":"VCID-3u4s-a96g-v3aq"},{"vulnerability":"VCID-43j2-q5rg-7qay"},{"vulnerability":"VCID-7j9j-sxt1-6qa6"},{"vulnerability":"VCID-7xcn-c8p4-j7ec"},{"vulnerability":"VCID-8vkp-k5yr-n3bn"},{"vulnerability":"VCID-9e8m-yzr3-pbgz"},{"vulnerability":"VCID-9nuk-vm33-kkha"},{"vulnerability":"VCID-9wx3-62cp-fuh8"},{"vulnerability":"VCID-arm8-rmce-2bec"},{"vulnerability":"VCID-bn5d-te6p-hyf1"},{"vulnerability":"VCID-dj7a-88wd-dugh"},{"vulnerability":"VCID-dk12-s4wp-suhc"},{"vulnerability":"VCID-dr2b-7ack-wbfp"},{"vulnerability":"VCID-e4mk-ydp9-m3bx"},{"vulnerability":"VCID-epgm-u9j7-7bd1"},{"vulnerability":"VCID-f1cy-ycsy-qqhc"},{"vulnerability":"VCID-grnf-r71w-r3h7"},{"vulnerability":"VCID-gs9y-327e-s7d3"},{"vulnerability":"VCID-h959-hrhy-wkep"},{"vulnerability":"VCID-kg8r-vq3s-2qa4"},{"vulnerability":"VCID-kp2b-t25c-sqfc"},{"vulnerability":"VCID-n82t-1jhq-8ba3"},{"vulnerability":"VCID-n8qk-qws2-9ydv"},{"vulnerability":"VCID-nxqt-4e79-w3et"},{"vulnerability":"VCID-pc8m-gm5b-gya1"},{"vulnerability":"VCID-qjxt-ekff-ykgk"},{"vulnerability":"VCID-r2fd-nfnk-h7gy"},{"vulnerability":"VCID-rb9f-qwwr-v7c2"},{"vulnerability":"VCID-rc99-4efu-tud2"},{"vulnerability":"VCID-sfx1-4tej-gqgs"},{"vulnerability":"VCID-t95h-sdy4-tua1"},{"vulnerability":"VCID-tdub-a3cg-r7fg"},{"vulnerability":"VCID-uhyk-pc9e-w7cu"},{"vulnerability":"VCID-usz9-qezx-9ybx"},{"vulnerability":"VCID-wf33-hszj-akf9"},{"vulnerability":"VCID-xmt2-8ett-qbgx"},{"vulnerability":"VCID-y5k7-ve1j-3bfc"},{"vulnerability":"VCID-y7cv-qzrr-rbhd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.9"}],"aliases":["CVE-2013-6438"],"risk_score":2.4,"exploitability":"0.5","weighted_severity":"4.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-uhmn-527n-fqgq"}],"risk_score":"10.0","resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.9"}