Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/196993?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/196993?format=api", "vulnerability_id": "VCID-m7bj-3gpe-ryhb", "summary": "multiple issues", "aliases": [ { "alias": "CVE-2017-5387" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/9168?format=api", "purl": "pkg:alpm/archlinux/firefox@51.0.1-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1q8m-s6nk-8qa8" }, { "vulnerability": "VCID-31be-wdy1-euc3" }, { "vulnerability": "VCID-3hqm-76r6-gyc9" }, { "vulnerability": "VCID-69m7-knm8-vud5" }, { "vulnerability": "VCID-89uu-ebbr-rkc9" }, { "vulnerability": "VCID-8qyx-u2x8-fueg" }, { "vulnerability": "VCID-ap1f-236v-9bdd" }, { "vulnerability": "VCID-b4v1-g6wr-2bbx" }, { "vulnerability": "VCID-bppg-wbvs-9udc" }, { "vulnerability": "VCID-c9hg-24v9-cfd1" }, { "vulnerability": "VCID-e76p-ykmn-sff6" }, { "vulnerability": "VCID-etam-bt4e-wkf2" }, { "vulnerability": "VCID-f4pn-qnvv-nbc3" }, { "vulnerability": "VCID-fjg1-j4dg-xuh5" }, { "vulnerability": "VCID-h2m3-xdkq-nya6" }, { "vulnerability": "VCID-h87n-rakn-hkha" }, { "vulnerability": "VCID-m7er-r9gh-uqb6" }, { "vulnerability": "VCID-n8xp-5xwh-27f8" }, { "vulnerability": "VCID-nuhf-ts6g-23fn" }, { "vulnerability": "VCID-rpc4-8v36-73f9" }, { "vulnerability": "VCID-sajd-wmgp-x3a1" }, { "vulnerability": "VCID-udmp-s2bg-j3bh" }, { "vulnerability": "VCID-v8hz-21h3-akh9" }, { "vulnerability": "VCID-z6j4-58gv-ykcn" }, { "vulnerability": "VCID-zykw-xt67-ukaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@51.0.1-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/40711?format=api", "purl": "pkg:deb/debian/firefox@51.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@51.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/40570?format=api", "purl": "pkg:deb/debian/firefox@151.0.4-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.4-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/41799?format=api", "purl": "pkg:deb/debian/firefox-esr@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/41784?format=api", "purl": "pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/41782?format=api", "purl": "pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zj6v-hmj8-syfy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/41786?format=api", "purl": "pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zj6v-hmj8-syfy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/41785?format=api", "purl": "pkg:deb/debian/firefox-esr@140.11.0esr-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zj6v-hmj8-syfy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1%3Fdistro=trixie" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/9182?format=api", "purl": "pkg:alpm/archlinux/firefox@50.1.0-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-56sd-8xv6-rfh1" }, { "vulnerability": "VCID-67sg-az4a-pue7" }, { "vulnerability": "VCID-88v6-axth-87e7" }, { "vulnerability": "VCID-8rzb-zvae-5uh1" }, { "vulnerability": "VCID-c2ha-x24x-zye9" }, { "vulnerability": "VCID-cyke-6j3r-v7b9" }, { "vulnerability": "VCID-fw7b-ynyy-h3hf" }, { "vulnerability": "VCID-g8hj-bk84-x7fy" }, { "vulnerability": "VCID-hwrp-yjtx-23d4" }, { "vulnerability": "VCID-m2tg-m821-7ka7" }, { "vulnerability": "VCID-m7bj-3gpe-ryhb" }, { "vulnerability": "VCID-rpns-xxft-9ff2" }, { "vulnerability": "VCID-rx9t-9db6-cbgv" }, { "vulnerability": "VCID-t7gs-maju-c3fe" }, { "vulnerability": "VCID-tpyh-8rg9-hke5" }, { "vulnerability": "VCID-unmt-jsyx-f3bg" }, { "vulnerability": "VCID-vfvk-2ts3-53gp" }, { "vulnerability": "VCID-x8d6-qvh2-u7da" }, { "vulnerability": "VCID-x8ur-qphq-sua1" }, { "vulnerability": "VCID-xkz5-x8ta-kkb9" }, { "vulnerability": "VCID-z5s7-q73z-4bdr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@50.1.0-1" } ], "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-5387", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00126", "scoring_system": "epss", "scoring_elements": "0.31469", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00126", "scoring_system": "epss", "scoring_elements": "0.3166", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00126", "scoring_system": "epss", "scoring_elements": "0.31678", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-5387" }, { "reference_url": "https://security.archlinux.org/ASA-201701-39", "reference_id": "ASA-201701-39", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201701-39" }, { "reference_url": "https://security.archlinux.org/AVG-157", "reference_id": "AVG-157", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-157" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-01", "reference_id": "mfsa2017-01", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2017-01" }, { "reference_url": "https://usn.ubuntu.com/3175-1/", "reference_id": "USN-3175-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3175-1/" } ], "weaknesses": [], "exploits": [], "severity_range_score": "9.0 - 10.0", "exploitability": "0.5", "weighted_severity": "9.0", "risk_score": 4.5, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-m7bj-3gpe-ryhb" }