{"url":"http://public2.vulnerablecode.io/api/packages/4788?format=json","purl":"pkg:deb/debian/mbedtls@2.4.2-1%2Bdeb9u1~bpo8%2B1","type":"deb","namespace":"debian","name":"mbedtls","version":"2.4.2-1+deb9u1~bpo8+1","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"2.4.2-1+deb9u3","latest_non_vulnerable_version":"2.4.2-1+deb9u3","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6251?format=json","vulnerability_id":"VCID-p162-tw8z-yfdx","summary":"information disclosure","references":[{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0497","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0497"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0498","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0498"},{"reference_url":"https://security.archlinux.org/AVG-742","reference_id":"AVG-742","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-742"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4789?format=json","purl":"pkg:deb/debian/mbedtls@2.4.2-1%2Bdeb9u3","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/mbedtls@2.4.2-1%252Bdeb9u3"}],"aliases":["CVE-2018-0497"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-p162-tw8z-yfdx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6333?format=json","vulnerability_id":"VCID-q4fa-4qre-mbam","summary":"arbitrary code execution","references":[{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18187","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18187"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0487","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0487"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0488","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0488"},{"reference_url":"https://security.archlinux.org/ASA-201802-15","reference_id":"ASA-201802-15","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201802-15"},{"reference_url":"https://security.archlinux.org/AVG-617","reference_id":"AVG-617","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-617"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4789?format=json","purl":"pkg:deb/debian/mbedtls@2.4.2-1%2Bdeb9u3","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/mbedtls@2.4.2-1%252Bdeb9u3"}],"aliases":["CVE-2018-0488"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-q4fa-4qre-mbam"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6334?format=json","vulnerability_id":"VCID-xbug-nn1y-sygc","summary":"arbitrary code execution","references":[{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18187","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18187"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0487","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0487"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0488","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0488"},{"reference_url":"https://security.archlinux.org/ASA-201802-15","reference_id":"ASA-201802-15","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201802-15"},{"reference_url":"https://security.archlinux.org/AVG-617","reference_id":"AVG-617","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-617"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4789?format=json","purl":"pkg:deb/debian/mbedtls@2.4.2-1%2Bdeb9u3","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/mbedtls@2.4.2-1%252Bdeb9u3"}],"aliases":["CVE-2018-0487"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xbug-nn1y-sygc"}],"fixing_vulnerabilities":[],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/mbedtls@2.4.2-1%252Bdeb9u1~bpo8%252B1"}