{"url":"http://public2.vulnerablecode.io/api/packages/146675?format=json","purl":"pkg:npm/mongoose@5.6.12","type":"npm","namespace":"","name":"mongoose","version":"5.6.12","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"4.13.21","latest_non_vulnerable_version":"7.3.4","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/141502?format=json","vulnerability_id":"VCID-xs6e-v42x-4ub9","summary":"","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-17426","reference_id":"","reference_type":"","scores":[{"value":"0.00237","scoring_system":"epss","scoring_elements":"0.46929","published_at":"2026-05-30T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-17426"},{"reference_url":"https://github.com/Automattic/mongoose/commit/f3eca5b94d822225c04e96cbeed9f095afb3c31c","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/Automattic/mongoose/commit/f3eca5b94d822225c04e96cbeed9f095afb3c31c"},{"reference_url":"https://github.com/Automattic/mongoose/commit/f88eb2524b65a68ff893c90a03c04f0913c1913e","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/Automattic/mongoose/commit/f88eb2524b65a68ff893c90a03c04f0913c1913e"},{"reference_url":"https://github.com/Automattic/mongoose/commits/4.13.21","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/Automattic/mongoose/commits/4.13.21"},{"reference_url":"https://github.com/Automattic/mongoose/issues/8222","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/Automattic/mongoose/issues/8222"},{"reference_url":"https://github.com/Automattic/mongoose/releases/tag/4.13.21","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/Automattic/mongoose/releases/tag/4.13.21"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2019-17426","reference_id":"CVE-2019-17426","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2019-17426"},{"reference_url":"https://github.com/advisories/GHSA-8687-vv9j-hgph","reference_id":"GHSA-8687-vv9j-hgph","reference_type":"","scores":[{"value":"CRITICAL","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-8687-vv9j-hgph"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/74313?format=json","purl":"pkg:npm/mongoose@5.7.5","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:npm/mongoose@5.7.5"}],"aliases":["CVE-2019-17426","GHSA-8687-vv9j-hgph"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xs6e-v42x-4ub9"}],"fixing_vulnerabilities":[],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:npm/mongoose@5.6.12"}