Django REST framework
Api Root
Vulnerability List
Vulnerability Instance
Format
json
api
admin
Vulnerability Instance
Lookup for vulnerabilities affecting packages.
Vulnerability_id
VCID-h2xx-3gu7-sqcs
Summary
Aliases
0
alias
CVE-2020-25816
1
alias
GHSA-57gg-cj55-q5g2
Fixed_packages
0
url
pkg:apk/alpine/vault@1.5.4-r0?arch=aarch64&distroversion=v3.14&reponame=community
purl
pkg:apk/alpine/vault@1.5.4-r0?arch=aarch64&distroversion=v3.14&reponame=community
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:apk/alpine/vault@1.5.4-r0%3Farch=aarch64&distroversion=v3.14&reponame=community
1
url
pkg:apk/alpine/vault@1.5.4-r0?arch=aarch64&distroversion=v3.18&reponame=community
purl
pkg:apk/alpine/vault@1.5.4-r0?arch=aarch64&distroversion=v3.18&reponame=community
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:apk/alpine/vault@1.5.4-r0%3Farch=aarch64&distroversion=v3.18&reponame=community
2
url
pkg:apk/alpine/vault@1.5.4-r0?arch=armhf&distroversion=v3.14&reponame=community
purl
pkg:apk/alpine/vault@1.5.4-r0?arch=armhf&distroversion=v3.14&reponame=community
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:apk/alpine/vault@1.5.4-r0%3Farch=armhf&distroversion=v3.14&reponame=community
3
url
pkg:apk/alpine/vault@1.5.4-r0?arch=armhf&distroversion=v3.18&reponame=community
purl
pkg:apk/alpine/vault@1.5.4-r0?arch=armhf&distroversion=v3.18&reponame=community
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:apk/alpine/vault@1.5.4-r0%3Farch=armhf&distroversion=v3.18&reponame=community
4
url
pkg:apk/alpine/vault@1.5.4-r0?arch=armv7&distroversion=v3.14&reponame=community
purl
pkg:apk/alpine/vault@1.5.4-r0?arch=armv7&distroversion=v3.14&reponame=community
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:apk/alpine/vault@1.5.4-r0%3Farch=armv7&distroversion=v3.14&reponame=community
5
url
pkg:apk/alpine/vault@1.5.4-r0?arch=armv7&distroversion=v3.18&reponame=community
purl
pkg:apk/alpine/vault@1.5.4-r0?arch=armv7&distroversion=v3.18&reponame=community
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:apk/alpine/vault@1.5.4-r0%3Farch=armv7&distroversion=v3.18&reponame=community
6
url
pkg:apk/alpine/vault@1.5.4-r0?arch=ppc64le&distroversion=v3.14&reponame=community
purl
pkg:apk/alpine/vault@1.5.4-r0?arch=ppc64le&distroversion=v3.14&reponame=community
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:apk/alpine/vault@1.5.4-r0%3Farch=ppc64le&distroversion=v3.14&reponame=community
7
url
pkg:apk/alpine/vault@1.5.4-r0?arch=ppc64le&distroversion=v3.18&reponame=community
purl
pkg:apk/alpine/vault@1.5.4-r0?arch=ppc64le&distroversion=v3.18&reponame=community
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:apk/alpine/vault@1.5.4-r0%3Farch=ppc64le&distroversion=v3.18&reponame=community
8
url
pkg:apk/alpine/vault@1.5.4-r0?arch=s390x&distroversion=v3.14&reponame=community
purl
pkg:apk/alpine/vault@1.5.4-r0?arch=s390x&distroversion=v3.14&reponame=community
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:apk/alpine/vault@1.5.4-r0%3Farch=s390x&distroversion=v3.14&reponame=community
9
url
pkg:apk/alpine/vault@1.5.4-r0?arch=s390x&distroversion=v3.18&reponame=community
purl
pkg:apk/alpine/vault@1.5.4-r0?arch=s390x&distroversion=v3.18&reponame=community
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:apk/alpine/vault@1.5.4-r0%3Farch=s390x&distroversion=v3.18&reponame=community
10
url
pkg:apk/alpine/vault@1.5.4-r0?arch=x86_64&distroversion=v3.14&reponame=community
purl
pkg:apk/alpine/vault@1.5.4-r0?arch=x86_64&distroversion=v3.14&reponame=community
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:apk/alpine/vault@1.5.4-r0%3Farch=x86_64&distroversion=v3.14&reponame=community
11
url
pkg:apk/alpine/vault@1.5.4-r0?arch=x86_64&distroversion=v3.18&reponame=community
purl
pkg:apk/alpine/vault@1.5.4-r0?arch=x86_64&distroversion=v3.18&reponame=community
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:apk/alpine/vault@1.5.4-r0%3Farch=x86_64&distroversion=v3.18&reponame=community
12
url
pkg:apk/alpine/vault@1.5.4-r0?arch=x86&distroversion=v3.14&reponame=community
purl
pkg:apk/alpine/vault@1.5.4-r0?arch=x86&distroversion=v3.14&reponame=community
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:apk/alpine/vault@1.5.4-r0%3Farch=x86&distroversion=v3.14&reponame=community
13
url
pkg:apk/alpine/vault@1.5.4-r0?arch=x86&distroversion=v3.18&reponame=community
purl
pkg:apk/alpine/vault@1.5.4-r0?arch=x86&distroversion=v3.18&reponame=community
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:apk/alpine/vault@1.5.4-r0%3Farch=x86&distroversion=v3.18&reponame=community
14
url
pkg:apk/alpine/vault@1.5.4-r0?arch=aarch64&distroversion=v3.13&reponame=community
purl
pkg:apk/alpine/vault@1.5.4-r0?arch=aarch64&distroversion=v3.13&reponame=community
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:apk/alpine/vault@1.5.4-r0%3Farch=aarch64&distroversion=v3.13&reponame=community
15
url
pkg:apk/alpine/vault@1.5.4-r0?arch=aarch64&distroversion=v3.16&reponame=community
purl
pkg:apk/alpine/vault@1.5.4-r0?arch=aarch64&distroversion=v3.16&reponame=community
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:apk/alpine/vault@1.5.4-r0%3Farch=aarch64&distroversion=v3.16&reponame=community
16
url
pkg:apk/alpine/vault@1.5.4-r0?arch=armhf&distroversion=v3.13&reponame=community
purl
pkg:apk/alpine/vault@1.5.4-r0?arch=armhf&distroversion=v3.13&reponame=community
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:apk/alpine/vault@1.5.4-r0%3Farch=armhf&distroversion=v3.13&reponame=community
17
url
pkg:apk/alpine/vault@1.5.4-r0?arch=armhf&distroversion=v3.16&reponame=community
purl
pkg:apk/alpine/vault@1.5.4-r0?arch=armhf&distroversion=v3.16&reponame=community
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:apk/alpine/vault@1.5.4-r0%3Farch=armhf&distroversion=v3.16&reponame=community
18
url
pkg:apk/alpine/vault@1.5.4-r0?arch=armv7&distroversion=v3.13&reponame=community
purl
pkg:apk/alpine/vault@1.5.4-r0?arch=armv7&distroversion=v3.13&reponame=community
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:apk/alpine/vault@1.5.4-r0%3Farch=armv7&distroversion=v3.13&reponame=community
19
url
pkg:apk/alpine/vault@1.5.4-r0?arch=armv7&distroversion=v3.16&reponame=community
purl
pkg:apk/alpine/vault@1.5.4-r0?arch=armv7&distroversion=v3.16&reponame=community
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:apk/alpine/vault@1.5.4-r0%3Farch=armv7&distroversion=v3.16&reponame=community
20
url
pkg:apk/alpine/vault@1.5.4-r0?arch=mips64&distroversion=v3.13&reponame=community
purl
pkg:apk/alpine/vault@1.5.4-r0?arch=mips64&distroversion=v3.13&reponame=community
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:apk/alpine/vault@1.5.4-r0%3Farch=mips64&distroversion=v3.13&reponame=community
21
url
pkg:apk/alpine/vault@1.5.4-r0?arch=ppc64le&distroversion=v3.13&reponame=community
purl
pkg:apk/alpine/vault@1.5.4-r0?arch=ppc64le&distroversion=v3.13&reponame=community
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:apk/alpine/vault@1.5.4-r0%3Farch=ppc64le&distroversion=v3.13&reponame=community
22
url
pkg:apk/alpine/vault@1.5.4-r0?arch=ppc64le&distroversion=v3.16&reponame=community
purl
pkg:apk/alpine/vault@1.5.4-r0?arch=ppc64le&distroversion=v3.16&reponame=community
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:apk/alpine/vault@1.5.4-r0%3Farch=ppc64le&distroversion=v3.16&reponame=community
23
url
pkg:apk/alpine/vault@1.5.4-r0?arch=s390x&distroversion=v3.13&reponame=community
purl
pkg:apk/alpine/vault@1.5.4-r0?arch=s390x&distroversion=v3.13&reponame=community
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:apk/alpine/vault@1.5.4-r0%3Farch=s390x&distroversion=v3.13&reponame=community
24
url
pkg:apk/alpine/vault@1.5.4-r0?arch=s390x&distroversion=v3.16&reponame=community
purl
pkg:apk/alpine/vault@1.5.4-r0?arch=s390x&distroversion=v3.16&reponame=community
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:apk/alpine/vault@1.5.4-r0%3Farch=s390x&distroversion=v3.16&reponame=community
25
url
pkg:apk/alpine/vault@1.5.4-r0?arch=x86_64&distroversion=v3.13&reponame=community
purl
pkg:apk/alpine/vault@1.5.4-r0?arch=x86_64&distroversion=v3.13&reponame=community
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:apk/alpine/vault@1.5.4-r0%3Farch=x86_64&distroversion=v3.13&reponame=community
26
url
pkg:apk/alpine/vault@1.5.4-r0?arch=x86_64&distroversion=v3.16&reponame=community
purl
pkg:apk/alpine/vault@1.5.4-r0?arch=x86_64&distroversion=v3.16&reponame=community
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:apk/alpine/vault@1.5.4-r0%3Farch=x86_64&distroversion=v3.16&reponame=community
27
url
pkg:apk/alpine/vault@1.5.4-r0?arch=x86&distroversion=v3.13&reponame=community
purl
pkg:apk/alpine/vault@1.5.4-r0?arch=x86&distroversion=v3.13&reponame=community
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:apk/alpine/vault@1.5.4-r0%3Farch=x86&distroversion=v3.13&reponame=community
28
url
pkg:apk/alpine/vault@1.5.4-r0?arch=x86&distroversion=v3.16&reponame=community
purl
pkg:apk/alpine/vault@1.5.4-r0?arch=x86&distroversion=v3.16&reponame=community
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:apk/alpine/vault@1.5.4-r0%3Farch=x86&distroversion=v3.16&reponame=community
29
url
pkg:golang/github.com/hashicorp/vault@1.5.4
purl
pkg:golang/github.com/hashicorp/vault@1.5.4
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:golang/github.com/hashicorp/vault@1.5.4
Affected_packages
References
0
reference_url
https://api.first.org/data/v1/epss?cve=CVE-2020-25816
reference_id
reference_type
scores
0
value
0.00308
scoring_system
epss
scoring_elements
0.54229
published_at
2026-05-30T12:55:00Z
url
https://api.first.org/data/v1/epss?cve=CVE-2020-25816
1
reference_url
https://github.com/hashicorp/vault
reference_id
reference_type
scores
0
value
9.8
scoring_system
cvssv3.1
scoring_elements
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value
CRITICAL
scoring_system
generic_textual
scoring_elements
url
https://github.com/hashicorp/vault
2
reference_url
https://github.com/hashicorp/vault/blob/master/CHANGELOG.md#147
reference_id
reference_type
scores
0
value
9.8
scoring_system
cvssv3.1
scoring_elements
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value
CRITICAL
scoring_system
generic_textual
scoring_elements
url
https://github.com/hashicorp/vault/blob/master/CHANGELOG.md#147
3
reference_url
https://github.com/hashicorp/vault/blob/master/CHANGELOG.md#154
reference_id
reference_type
scores
0
value
9.8
scoring_system
cvssv3.1
scoring_elements
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value
CRITICAL
scoring_system
generic_textual
scoring_elements
url
https://github.com/hashicorp/vault/blob/master/CHANGELOG.md#154
4
reference_url
https://github.com/hashicorp/vault/pull/10020/commits/f192878110fe93eb13da914b2bee28caa7866a29
reference_id
reference_type
scores
0
value
9.8
scoring_system
cvssv3.1
scoring_elements
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value
CRITICAL
scoring_system
generic_textual
scoring_elements
url
https://github.com/hashicorp/vault/pull/10020/commits/f192878110fe93eb13da914b2bee28caa7866a29
5
reference_url
https://nvd.nist.gov/vuln/detail/CVE-2020-25816
reference_id
reference_type
scores
0
value
9.8
scoring_system
cvssv3.1
scoring_elements
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value
CRITICAL
scoring_system
generic_textual
scoring_elements
url
https://nvd.nist.gov/vuln/detail/CVE-2020-25816
6
reference_url
https://www.hashicorp.com/blog/category/vault
reference_id
reference_type
scores
0
value
9.8
scoring_system
cvssv3.1
scoring_elements
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value
CRITICAL
scoring_system
generic_textual
scoring_elements
url
https://www.hashicorp.com/blog/category/vault
Weaknesses
0
cwe_id
613
name
Insufficient Session Expiration
description
According to WASC, Insufficient Session Expiration is when a web site permits an attacker to reuse old session credentials or session IDs for authorization.
Exploits
Severity_range_score
9.0 - 10.0
Exploitability
null
Weighted_severity
null
Risk_score
null
Resource_url
http://public2.vulnerablecode.io/vulnerabilities/VCID-h2xx-3gu7-sqcs
×
Create
None
×
Edit
None