Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/926443?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/926443?format=api", "purl": "pkg:deb/debian/krb5@1.12.1%2Bdfsg-5?distro=trixie", "type": "deb", "namespace": "debian", "name": "krb5", "version": "1.12.1+dfsg-5", "qualifiers": { "distro": "trixie" }, "subpath": "", "is_vulnerable": false, "next_non_vulnerable_version": "1.12.1+dfsg-7", "latest_non_vulnerable_version": "1.22.1-2.1", "affected_by_vulnerabilities": [], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/49819?format=api", "vulnerability_id": "VCID-9d6t-z5dr-yqgy", "summary": "A vulnerability has been found in MIT Kerberos 5, possibly\n resulting in arbitrary code execution or a Denial of Service condition.", "references": [ { "reference_url": "http://advisories.mageia.org/MGASA-2014-0345.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://advisories.mageia.org/MGASA-2014-0345.html" }, { "reference_url": "http://aix.software.ibm.com/aix/efixes/security/nas_advisory1.asc", "reference_id": "", "reference_type": "", "scores": [], "url": "http://aix.software.ibm.com/aix/efixes/security/nas_advisory1.asc" }, { "reference_url": "http://krbdev.mit.edu/rt/Ticket/Display.html?id=7969", "reference_id": "", "reference_type": "", "scores": [], "url": "http://krbdev.mit.edu/rt/Ticket/Display.html?id=7969" }, { "reference_url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136360.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136360.html" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2015-0439.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://rhn.redhat.com/errata/RHSA-2015-0439.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-4343.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-4343.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-4343", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.07384", "scoring_system": "epss", "scoring_elements": "0.91797", "published_at": "2026-05-14T12:55:00Z" }, { "value": "0.07384", "scoring_system": "epss", "scoring_elements": "0.91687", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.07384", "scoring_system": "epss", "scoring_elements": "0.91695", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.07384", "scoring_system": "epss", "scoring_elements": "0.91701", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.07384", "scoring_system": "epss", "scoring_elements": "0.91709", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.07384", "scoring_system": "epss", "scoring_elements": "0.91721", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.07384", "scoring_system": "epss", "scoring_elements": "0.91728", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.07384", "scoring_system": "epss", "scoring_elements": "0.91731", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.07384", "scoring_system": "epss", "scoring_elements": "0.91733", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.07384", "scoring_system": "epss", "scoring_elements": "0.91729", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.07384", "scoring_system": "epss", "scoring_elements": "0.91749", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.07384", "scoring_system": "epss", "scoring_elements": "0.91742", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.07384", "scoring_system": "epss", "scoring_elements": "0.91744", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.07384", "scoring_system": "epss", "scoring_elements": "0.91746", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.07384", "scoring_system": "epss", "scoring_elements": "0.91757", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.07384", "scoring_system": "epss", "scoring_elements": "0.91769", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.07384", "scoring_system": "epss", "scoring_elements": "0.91779", "published_at": "2026-05-09T12:55:00Z" }, { "value": "0.07384", "scoring_system": "epss", "scoring_elements": "0.91778", "published_at": "2026-05-11T12:55:00Z" }, { "value": "0.07384", "scoring_system": "epss", "scoring_elements": "0.91786", "published_at": "2026-05-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-4343" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4341", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4341" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4342", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4342" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4343", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4343" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4344", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4344" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4345", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4345" }, { "reference_url": "http://secunia.com/advisories/59102", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/59102" }, { "reference_url": "http://secunia.com/advisories/60082", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/60082" }, { "reference_url": "http://secunia.com/advisories/60448", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/60448" }, { "reference_url": "http://secunia.com/advisories/61052", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/61052" }, { "reference_url": "http://security.gentoo.org/glsa/glsa-201412-53.xml", "reference_id": "", "reference_type": "", "scores": [], "url": "http://security.gentoo.org/glsa/glsa-201412-53.xml" }, { "reference_url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/95211", "reference_id": "", "reference_type": "", "scores": [], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/95211" }, { "reference_url": "https://github.com/krb5/krb5/commit/f18ddf5d82de0ab7591a36e465bc24225776940f", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/krb5/krb5/commit/f18ddf5d82de0ab7591a36e465bc24225776940f" }, { "reference_url": "http://support.f5.com/kb/en-us/solutions/public/15000/500/sol15553.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://support.f5.com/kb/en-us/solutions/public/15000/500/sol15553.html" }, { "reference_url": "http://www.debian.org/security/2014/dsa-3000", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2014/dsa-3000" }, { "reference_url": "http://www.osvdb.org/109390", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.osvdb.org/109390" }, { "reference_url": "http://www.securityfocus.com/bid/69159", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/69159" }, { "reference_url": "http://www.securitytracker.com/id/1030706", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securitytracker.com/id/1030706" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1121876", "reference_id": "1121876", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1121876" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=755520", "reference_id": "755520", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=755520" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:mit:kerberos_5:1.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.10.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:mit:kerberos_5:1.10.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.10.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.10.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:mit:kerberos_5:1.10.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.10.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.10.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:mit:kerberos_5:1.10.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.10.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.10.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:mit:kerberos_5:1.10.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.10.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.11:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:mit:kerberos_5:1.11:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.11:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.11.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:mit:kerberos_5:1.11.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.11.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.11.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:mit:kerberos_5:1.11.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.11.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.11.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:mit:kerberos_5:1.11.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.11.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.11.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:mit:kerberos_5:1.11.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.11.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.11.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:mit:kerberos_5:1.11.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.11.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.12:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:mit:kerberos_5:1.12:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.12:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.12.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:mit:kerberos_5:1.12.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.12.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_hpc_node:7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_hpc_node:7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_hpc_node:7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2014-4343", "reference_id": "CVE-2014-4343", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:N/C:C/I:C/A:C" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-4343" }, { "reference_url": "https://security.gentoo.org/glsa/201412-53", "reference_id": "GLSA-201412-53", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201412-53" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1389", "reference_id": "RHSA-2014:1389", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1389" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2015:0439", "reference_id": "RHSA-2015:0439", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2015:0439" }, { "reference_url": "https://usn.ubuntu.com/2310-1/", "reference_id": "USN-2310-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2310-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/926443?format=api", "purl": "pkg:deb/debian/krb5@1.12.1%2Bdfsg-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.12.1%252Bdfsg-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/926395?format=api", "purl": "pkg:deb/debian/krb5@1.18.3-6%2Bdeb11u5?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8bra-vqyv-ffd8" }, { "vulnerability": "VCID-vrxs-u44n-vqax" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.18.3-6%252Bdeb11u5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/926393?format=api", "purl": "pkg:deb/debian/krb5@1.20.1-2%2Bdeb12u4?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8bra-vqyv-ffd8" }, { "vulnerability": "VCID-vrxs-u44n-vqax" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.20.1-2%252Bdeb12u4%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/926397?format=api", "purl": "pkg:deb/debian/krb5@1.21.3-5?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8bra-vqyv-ffd8" }, { "vulnerability": "VCID-vrxs-u44n-vqax" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.21.3-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/926396?format=api", "purl": "pkg:deb/debian/krb5@1.22.1-2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8bra-vqyv-ffd8" }, { "vulnerability": "VCID-vrxs-u44n-vqax" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.22.1-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/1112539?format=api", "purl": "pkg:deb/debian/krb5@1.22.1-2.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.22.1-2.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2014-4343" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9d6t-z5dr-yqgy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/57847?format=api", "vulnerability_id": "VCID-yuur-7md8-skcv", "summary": "security update", "references": [ { "reference_url": "http://advisories.mageia.org/MGASA-2014-0345.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://advisories.mageia.org/MGASA-2014-0345.html" }, { "reference_url": "http://aix.software.ibm.com/aix/efixes/security/nas_advisory1.asc", "reference_id": "", "reference_type": "", "scores": [], "url": "http://aix.software.ibm.com/aix/efixes/security/nas_advisory1.asc" }, { "reference_url": "http://krbdev.mit.edu/rt/Ticket/Display.html?id=7970", "reference_id": "", "reference_type": "", "scores": [], "url": "http://krbdev.mit.edu/rt/Ticket/Display.html?id=7970" }, { "reference_url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136360.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136360.html" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2015-0439.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://rhn.redhat.com/errata/RHSA-2015-0439.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-4344.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-4344.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-4344", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0527", "scoring_system": "epss", "scoring_elements": "0.90086", "published_at": "2026-05-14T12:55:00Z" }, { "value": "0.0527", "scoring_system": "epss", "scoring_elements": "0.89956", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0527", "scoring_system": "epss", "scoring_elements": "0.89959", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0527", "scoring_system": "epss", "scoring_elements": "0.89971", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0527", "scoring_system": "epss", "scoring_elements": "0.89978", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0527", "scoring_system": "epss", "scoring_elements": "0.89993", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0527", "scoring_system": "epss", "scoring_elements": "0.89999", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0527", "scoring_system": "epss", "scoring_elements": "0.90006", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0527", "scoring_system": "epss", "scoring_elements": "0.90005", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0527", "scoring_system": "epss", "scoring_elements": "0.89998", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0527", "scoring_system": "epss", "scoring_elements": "0.90013", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0527", "scoring_system": "epss", "scoring_elements": "0.90014", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0527", "scoring_system": "epss", "scoring_elements": "0.90011", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.0527", "scoring_system": "epss", "scoring_elements": "0.90029", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.0527", "scoring_system": "epss", "scoring_elements": "0.90041", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.0527", "scoring_system": "epss", "scoring_elements": "0.90055", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.0527", "scoring_system": "epss", "scoring_elements": "0.90067", "published_at": "2026-05-09T12:55:00Z" }, { "value": "0.0527", "scoring_system": "epss", "scoring_elements": "0.90063", "published_at": "2026-05-11T12:55:00Z" }, { "value": "0.0527", "scoring_system": "epss", "scoring_elements": "0.90072", "published_at": "2026-05-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-4344" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4341", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4341" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4342", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4342" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4343", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4343" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4344", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4344" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4345", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4345" }, { "reference_url": "http://secunia.com/advisories/59102", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/59102" }, { "reference_url": "http://secunia.com/advisories/60082", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/60082" }, { "reference_url": "http://secunia.com/advisories/60448", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/60448" }, { "reference_url": "http://secunia.com/advisories/61051", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/61051" }, { "reference_url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/95210", "reference_id": "", "reference_type": "", "scores": [], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/95210" }, { "reference_url": "https://github.com/krb5/krb5/commit/524688ce87a15fc75f87efc8c039ba4c7d5c197b", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/krb5/krb5/commit/524688ce87a15fc75f87efc8c039ba4c7d5c197b" }, { "reference_url": "https://github.com/krb5/krb5/commit/a7886f0ed1277c69142b14a2c6629175a6331edc", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/krb5/krb5/commit/a7886f0ed1277c69142b14a2c6629175a6331edc" }, { "reference_url": "http://support.f5.com/kb/en-us/solutions/public/15000/500/sol15561.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://support.f5.com/kb/en-us/solutions/public/15000/500/sol15561.html" }, { "reference_url": "http://www.debian.org/security/2014/dsa-3000", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2014/dsa-3000" }, { "reference_url": "http://www.mandriva.com/security/advisories?name=MDVSA-2014:165", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2014:165" }, { "reference_url": "http://www.osvdb.org/109389", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.osvdb.org/109389" }, { "reference_url": "http://www.securityfocus.com/bid/69160", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/69160" }, { "reference_url": "http://www.securitytracker.com/id/1030706", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securitytracker.com/id/1030706" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1121877", "reference_id": "1121877", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1121877" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=755521", "reference_id": "755521", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=755521" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:mit:kerberos_5:1.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.10.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:mit:kerberos_5:1.10.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.10.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.10.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:mit:kerberos_5:1.10.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.10.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.10.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:mit:kerberos_5:1.10.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.10.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.10.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:mit:kerberos_5:1.10.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.10.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.11:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:mit:kerberos_5:1.11:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.11:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.11.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:mit:kerberos_5:1.11.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.11.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.11.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:mit:kerberos_5:1.11.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.11.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.11.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:mit:kerberos_5:1.11.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.11.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.11.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:mit:kerberos_5:1.11.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.11.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.11.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:mit:kerberos_5:1.11.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.11.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.12:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:mit:kerberos_5:1.12:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.12:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.12.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:mit:kerberos_5:1.12.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.12.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_hpc_node:7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_hpc_node:7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_hpc_node:7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2014-4344", "reference_id": "CVE-2014-4344", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:C" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-4344" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1245", "reference_id": "RHSA-2014:1245", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1245" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1389", "reference_id": "RHSA-2014:1389", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1389" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2015:0439", "reference_id": "RHSA-2015:0439", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2015:0439" }, { "reference_url": "https://usn.ubuntu.com/2310-1/", "reference_id": "USN-2310-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2310-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/926443?format=api", "purl": "pkg:deb/debian/krb5@1.12.1%2Bdfsg-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.12.1%252Bdfsg-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/926395?format=api", "purl": "pkg:deb/debian/krb5@1.18.3-6%2Bdeb11u5?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8bra-vqyv-ffd8" }, { "vulnerability": "VCID-vrxs-u44n-vqax" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.18.3-6%252Bdeb11u5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/926393?format=api", "purl": "pkg:deb/debian/krb5@1.20.1-2%2Bdeb12u4?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8bra-vqyv-ffd8" }, { "vulnerability": "VCID-vrxs-u44n-vqax" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.20.1-2%252Bdeb12u4%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/926397?format=api", "purl": "pkg:deb/debian/krb5@1.21.3-5?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8bra-vqyv-ffd8" }, { "vulnerability": "VCID-vrxs-u44n-vqax" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.21.3-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/926396?format=api", "purl": "pkg:deb/debian/krb5@1.22.1-2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8bra-vqyv-ffd8" }, { "vulnerability": "VCID-vrxs-u44n-vqax" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.22.1-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/1112539?format=api", "purl": "pkg:deb/debian/krb5@1.22.1-2.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.22.1-2.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2014-4344" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-yuur-7md8-skcv" } ], "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.12.1%252Bdfsg-5%3Fdistro=trixie" }