Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/96830?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/96830?format=api", "purl": "pkg:deb/debian/gnome-online-accounts@3.54.5-1~deb13u1?distro=trixie", "type": "deb", "namespace": "debian", "name": "gnome-online-accounts", "version": "3.54.5-1~deb13u1", "qualifiers": { "distro": "trixie" }, "subpath": "", "is_vulnerable": false, "next_non_vulnerable_version": "3.58.1-1", "latest_non_vulnerable_version": "3.58.1-1", "affected_by_vulnerabilities": [], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/70720?format=api", "vulnerability_id": "VCID-6quq-t6hg-p3fb", "summary": "Gnome Online Accounts (GOA) 3.4.x, 3.6.x before 3.6.3, and 3.7.x before 3.7.5, does not properly validate SSL certificates when creating accounts such as Windows Live and Facebook accounts, which allows man-in-the-middle attackers to obtain sensitive information such as credentials by sniffing the network.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-0240", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00476", "scoring_system": "epss", "scoring_elements": "0.65233", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00476", "scoring_system": "epss", "scoring_elements": "0.65275", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00476", "scoring_system": "epss", "scoring_elements": "0.65285", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00476", "scoring_system": "epss", "scoring_elements": "0.65273", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00476", "scoring_system": "epss", "scoring_elements": "0.65263", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00476", "scoring_system": "epss", "scoring_elements": "0.65282", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-0240" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0240", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0240" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=699825", "reference_id": "699825", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=699825" }, { "reference_url": "https://usn.ubuntu.com/1779-1/", "reference_id": "USN-1779-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1779-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/96827?format=api", "purl": "pkg:deb/debian/gnome-online-accounts@3.4.2-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/gnome-online-accounts@3.4.2-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/96828?format=api", "purl": "pkg:deb/debian/gnome-online-accounts@3.38.0-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/gnome-online-accounts@3.38.0-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/96826?format=api", "purl": "pkg:deb/debian/gnome-online-accounts@3.46.0-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/gnome-online-accounts@3.46.0-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/96830?format=api", "purl": "pkg:deb/debian/gnome-online-accounts@3.54.5-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/gnome-online-accounts@3.54.5-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/96829?format=api", "purl": "pkg:deb/debian/gnome-online-accounts@3.58.1-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/gnome-online-accounts@3.58.1-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2013-0240" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6quq-t6hg-p3fb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/70721?format=api", "vulnerability_id": "VCID-pbxp-3grz-8kfb", "summary": "Gnome Online Accounts (GOA) 3.6.x before 3.6.3 and 3.7.x before 3.7.91, does not properly validate SSL certificates when creating accounts for providers who use the libsoup library, which allows man-in-the-middle attackers to obtain sensitive information such as credentials by sniffing the network. NOTE: this issue exists because of an incomplete fix for CVE-2013-0240.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-1799", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00556", "scoring_system": "epss", "scoring_elements": "0.68499", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00556", "scoring_system": "epss", "scoring_elements": "0.6854", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00556", "scoring_system": "epss", "scoring_elements": "0.68547", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00556", "scoring_system": "epss", "scoring_elements": "0.68541", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00556", "scoring_system": "epss", "scoring_elements": "0.68525", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00556", "scoring_system": "epss", "scoring_elements": "0.68543", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-1799" }, { "reference_url": "https://usn.ubuntu.com/1779-1/", "reference_id": "USN-1779-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1779-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/96831?format=api", "purl": "pkg:deb/debian/gnome-online-accounts@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/gnome-online-accounts@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/96828?format=api", "purl": "pkg:deb/debian/gnome-online-accounts@3.38.0-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/gnome-online-accounts@3.38.0-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/96826?format=api", "purl": "pkg:deb/debian/gnome-online-accounts@3.46.0-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/gnome-online-accounts@3.46.0-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/96830?format=api", "purl": "pkg:deb/debian/gnome-online-accounts@3.54.5-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/gnome-online-accounts@3.54.5-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/96829?format=api", "purl": "pkg:deb/debian/gnome-online-accounts@3.58.1-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/gnome-online-accounts@3.58.1-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2013-1799" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-pbxp-3grz-8kfb" } ], "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/gnome-online-accounts@3.54.5-1~deb13u1%3Fdistro=trixie" }