Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/1981?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/1981?format=api", "vulnerability_id": "VCID-2amq-1dpv-r7ce", "summary": "Mozilla has updated the version of Network Security\nServices (NSS) library used in Mozilla projects to NSS 3.15.3 with the\nexception of ESR17-based releases, which have been updated to NSS 3.14.5. This\naddresses several moderate to critical rated networking security issues.Google developer Andrew Tinits reported a potentially\nexploitable buffer overflow that was fixed in both NSS 3.15.3 and NSS\n3.14.5.", "aliases": [ { "alias": "CVE-2013-5605" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4085?format=api", "purl": "pkg:deb/debian/nss@2:3.14.5-1%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1btz-x11h-wbe3" }, { "vulnerability": "VCID-2amq-1dpv-r7ce" }, { "vulnerability": "VCID-7gkv-pu79-43hx" }, { "vulnerability": "VCID-81zk-xrsj-cufe" }, { "vulnerability": "VCID-9pxb-dcy9-gybh" }, { "vulnerability": "VCID-9wc3-cjef-3ucq" }, { "vulnerability": "VCID-9wkp-gr2p-kuda" }, { "vulnerability": "VCID-aabg-akur-cyf3" }, { "vulnerability": "VCID-bw2w-68hs-3bcd" }, { "vulnerability": "VCID-bzab-cse9-uudk" }, { "vulnerability": "VCID-c6v9-maak-dyde" }, { "vulnerability": "VCID-ca9j-qrnm-eqc3" }, { "vulnerability": "VCID-cjnx-d8j7-zqg3" }, { "vulnerability": "VCID-dj1s-kgfe-f7cm" }, { "vulnerability": "VCID-dvah-yevw-quhe" }, { "vulnerability": "VCID-fam8-n44k-2qh7" }, { "vulnerability": "VCID-jj5f-y1h9-skcp" }, { "vulnerability": "VCID-jwzp-ucfg-wycd" }, { "vulnerability": "VCID-kn9n-dpkn-d7bu" }, { "vulnerability": "VCID-kzju-7twc-fya8" }, { "vulnerability": "VCID-m314-1d92-fke4" }, { "vulnerability": "VCID-mq7v-8uvq-5yeq" }, { "vulnerability": "VCID-nmpw-53d9-cqaj" }, { "vulnerability": "VCID-pa6e-373h-6ybr" }, { "vulnerability": "VCID-phzc-3ex9-4bf7" }, { "vulnerability": "VCID-qpmv-44r5-tqby" }, { "vulnerability": "VCID-rc8a-n1r3-v7a1" }, { "vulnerability": "VCID-rfpm-yp1s-y3ft" }, { "vulnerability": "VCID-s692-wjkg-xkfr" }, { "vulnerability": "VCID-vct8-ur1y-63db" }, { "vulnerability": "VCID-wfu5-qgs8-13ht" }, { "vulnerability": "VCID-x4x5-44xh-6uat" }, { "vulnerability": "VCID-xavu-ygkk-u3fn" }, { "vulnerability": "VCID-xg2b-zzbj-juds" }, { "vulnerability": "VCID-yjyn-kpq2-qkb7" }, { "vulnerability": "VCID-znh3-rqwe-8ke3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/nss@2:3.14.5-1%252Bdeb7u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4279?format=api", "purl": "pkg:deb/debian/nss@2:3.17.2-1.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1btz-x11h-wbe3" }, { "vulnerability": "VCID-7gkv-pu79-43hx" }, { "vulnerability": "VCID-81zk-xrsj-cufe" }, { "vulnerability": "VCID-9pxb-dcy9-gybh" }, { "vulnerability": "VCID-9wc3-cjef-3ucq" }, { "vulnerability": "VCID-9wkp-gr2p-kuda" }, { "vulnerability": "VCID-aabg-akur-cyf3" }, { "vulnerability": "VCID-bw2w-68hs-3bcd" }, { "vulnerability": "VCID-cjnx-d8j7-zqg3" }, { "vulnerability": "VCID-dj1s-kgfe-f7cm" }, { "vulnerability": "VCID-fam8-n44k-2qh7" }, { "vulnerability": "VCID-jj5f-y1h9-skcp" }, { "vulnerability": "VCID-jwzp-ucfg-wycd" }, { "vulnerability": "VCID-kzju-7twc-fya8" }, { "vulnerability": "VCID-m314-1d92-fke4" }, { "vulnerability": "VCID-mq7v-8uvq-5yeq" }, { "vulnerability": "VCID-pa6e-373h-6ybr" }, { "vulnerability": "VCID-phzc-3ex9-4bf7" }, { "vulnerability": "VCID-qpmv-44r5-tqby" }, { "vulnerability": "VCID-rc8a-n1r3-v7a1" }, { "vulnerability": "VCID-rfpm-yp1s-y3ft" }, { "vulnerability": "VCID-s692-wjkg-xkfr" }, { "vulnerability": "VCID-vct8-ur1y-63db" }, { "vulnerability": "VCID-wfu5-qgs8-13ht" }, { "vulnerability": "VCID-x4x5-44xh-6uat" }, { "vulnerability": "VCID-xavu-ygkk-u3fn" }, { "vulnerability": "VCID-yjyn-kpq2-qkb7" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/nss@2:3.17.2-1.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/928?format=api", "purl": "pkg:mozilla/Firefox@25.0.1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@25.0.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/930?format=api", "purl": "pkg:mozilla/Firefox%20ESR@17.0.11", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox%2520ESR@17.0.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/929?format=api", "purl": "pkg:mozilla/Firefox%20ESR@24.1.1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox%2520ESR@24.1.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/933?format=api", "purl": "pkg:mozilla/Seamonkey@2.22.1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:mozilla/Seamonkey@2.22.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/931?format=api", "purl": "pkg:mozilla/Thunderbird@24.1.1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird@24.1.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/932?format=api", "purl": "pkg:mozilla/Thunderbird%20ESR@17.0.11", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird%2520ESR@17.0.11" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4082?format=api", "purl": "pkg:deb/debian/nss@3.12.3.1-0lenny7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1btz-x11h-wbe3" }, { "vulnerability": "VCID-2amq-1dpv-r7ce" }, { "vulnerability": "VCID-4gzd-m5g6-rbgm" }, { "vulnerability": "VCID-7gkv-pu79-43hx" }, { "vulnerability": "VCID-81zk-xrsj-cufe" }, { "vulnerability": "VCID-9pxb-dcy9-gybh" }, { "vulnerability": "VCID-9wc3-cjef-3ucq" }, { "vulnerability": "VCID-9wkp-gr2p-kuda" }, { "vulnerability": "VCID-aabg-akur-cyf3" }, { "vulnerability": "VCID-atus-ryef-17h1" }, { "vulnerability": "VCID-bw2w-68hs-3bcd" }, { "vulnerability": "VCID-bzab-cse9-uudk" }, { "vulnerability": "VCID-c2jb-u1sf-xkgr" }, { "vulnerability": "VCID-c6v9-maak-dyde" }, { "vulnerability": "VCID-ca9j-qrnm-eqc3" }, { "vulnerability": "VCID-cjnx-d8j7-zqg3" }, { "vulnerability": "VCID-dj1s-kgfe-f7cm" }, { "vulnerability": "VCID-dvah-yevw-quhe" }, { "vulnerability": "VCID-fam8-n44k-2qh7" }, { "vulnerability": "VCID-jj5f-y1h9-skcp" }, { "vulnerability": "VCID-jwzp-ucfg-wycd" }, { "vulnerability": "VCID-kn9n-dpkn-d7bu" }, { "vulnerability": "VCID-kzju-7twc-fya8" }, { "vulnerability": "VCID-m314-1d92-fke4" }, { "vulnerability": "VCID-mg1g-83ha-ekgc" }, { "vulnerability": "VCID-mq7v-8uvq-5yeq" }, { "vulnerability": "VCID-nmpw-53d9-cqaj" }, { "vulnerability": "VCID-pa6e-373h-6ybr" }, { "vulnerability": "VCID-phzc-3ex9-4bf7" }, { "vulnerability": "VCID-qpmv-44r5-tqby" }, { "vulnerability": "VCID-rc8a-n1r3-v7a1" }, { "vulnerability": "VCID-rfpm-yp1s-y3ft" }, { "vulnerability": "VCID-s692-wjkg-xkfr" }, { "vulnerability": "VCID-vct8-ur1y-63db" }, { "vulnerability": "VCID-wfu5-qgs8-13ht" }, { "vulnerability": "VCID-wh5f-gkuv-q3ep" }, { "vulnerability": "VCID-x4x5-44xh-6uat" }, { "vulnerability": "VCID-xavu-ygkk-u3fn" }, { "vulnerability": "VCID-xg2b-zzbj-juds" }, { "vulnerability": "VCID-yjyn-kpq2-qkb7" }, { "vulnerability": "VCID-znh3-rqwe-8ke3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/nss@3.12.3.1-0lenny7" }, { "url": "http://public2.vulnerablecode.io/api/packages/4083?format=api", "purl": "pkg:deb/debian/nss@3.12.8-1%2Bsqueeze7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1btz-x11h-wbe3" }, { "vulnerability": "VCID-2amq-1dpv-r7ce" }, { "vulnerability": "VCID-4gzd-m5g6-rbgm" }, { "vulnerability": "VCID-7gkv-pu79-43hx" }, { "vulnerability": "VCID-81zk-xrsj-cufe" }, { "vulnerability": "VCID-9pxb-dcy9-gybh" }, { "vulnerability": "VCID-9wc3-cjef-3ucq" }, { "vulnerability": "VCID-9wkp-gr2p-kuda" }, { "vulnerability": "VCID-aabg-akur-cyf3" }, { "vulnerability": "VCID-bw2w-68hs-3bcd" }, { "vulnerability": "VCID-bzab-cse9-uudk" }, { "vulnerability": "VCID-c6v9-maak-dyde" }, { "vulnerability": "VCID-ca9j-qrnm-eqc3" }, { "vulnerability": "VCID-cjnx-d8j7-zqg3" }, { "vulnerability": "VCID-dj1s-kgfe-f7cm" }, { "vulnerability": "VCID-dvah-yevw-quhe" }, { "vulnerability": "VCID-fam8-n44k-2qh7" }, { "vulnerability": "VCID-jj5f-y1h9-skcp" }, { "vulnerability": "VCID-jwzp-ucfg-wycd" }, { "vulnerability": "VCID-kn9n-dpkn-d7bu" }, { "vulnerability": "VCID-kzju-7twc-fya8" }, { "vulnerability": "VCID-m314-1d92-fke4" }, { "vulnerability": "VCID-mq7v-8uvq-5yeq" }, { "vulnerability": "VCID-nmpw-53d9-cqaj" }, { "vulnerability": "VCID-pa6e-373h-6ybr" }, { "vulnerability": "VCID-phzc-3ex9-4bf7" }, { "vulnerability": "VCID-qpmv-44r5-tqby" }, { "vulnerability": "VCID-rc8a-n1r3-v7a1" }, { "vulnerability": "VCID-rfpm-yp1s-y3ft" }, { "vulnerability": "VCID-s692-wjkg-xkfr" }, { "vulnerability": "VCID-vct8-ur1y-63db" }, { "vulnerability": "VCID-wfu5-qgs8-13ht" }, { "vulnerability": "VCID-wh5f-gkuv-q3ep" }, { "vulnerability": "VCID-x4x5-44xh-6uat" }, { "vulnerability": "VCID-xavu-ygkk-u3fn" }, { "vulnerability": "VCID-xg2b-zzbj-juds" }, { "vulnerability": "VCID-yjyn-kpq2-qkb7" }, { "vulnerability": "VCID-znh3-rqwe-8ke3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/nss@3.12.8-1%252Bsqueeze7" }, { "url": "http://public2.vulnerablecode.io/api/packages/4084?format=api", "purl": "pkg:deb/debian/nss@3.12.8-1%2Bsqueeze14", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1btz-x11h-wbe3" }, { "vulnerability": "VCID-2amq-1dpv-r7ce" }, { "vulnerability": "VCID-4gzd-m5g6-rbgm" }, { "vulnerability": "VCID-7gkv-pu79-43hx" }, { "vulnerability": "VCID-81zk-xrsj-cufe" }, { "vulnerability": "VCID-9pxb-dcy9-gybh" }, { "vulnerability": "VCID-9wc3-cjef-3ucq" }, { "vulnerability": "VCID-9wkp-gr2p-kuda" }, { "vulnerability": "VCID-aabg-akur-cyf3" }, { "vulnerability": "VCID-bw2w-68hs-3bcd" }, { "vulnerability": "VCID-bzab-cse9-uudk" }, { "vulnerability": "VCID-c6v9-maak-dyde" }, { "vulnerability": "VCID-ca9j-qrnm-eqc3" }, { "vulnerability": "VCID-cjnx-d8j7-zqg3" }, { "vulnerability": "VCID-dj1s-kgfe-f7cm" }, { "vulnerability": "VCID-dvah-yevw-quhe" }, { "vulnerability": "VCID-fam8-n44k-2qh7" }, { "vulnerability": "VCID-jj5f-y1h9-skcp" }, { "vulnerability": "VCID-jwzp-ucfg-wycd" }, { "vulnerability": "VCID-kn9n-dpkn-d7bu" }, { "vulnerability": "VCID-kzju-7twc-fya8" }, { "vulnerability": "VCID-m314-1d92-fke4" }, { "vulnerability": "VCID-mq7v-8uvq-5yeq" }, { "vulnerability": "VCID-nmpw-53d9-cqaj" }, { "vulnerability": "VCID-pa6e-373h-6ybr" }, { "vulnerability": "VCID-phzc-3ex9-4bf7" }, { "vulnerability": "VCID-qpmv-44r5-tqby" }, { "vulnerability": "VCID-rc8a-n1r3-v7a1" }, { "vulnerability": "VCID-rfpm-yp1s-y3ft" }, { "vulnerability": "VCID-s692-wjkg-xkfr" }, { "vulnerability": "VCID-vct8-ur1y-63db" }, { "vulnerability": "VCID-wfu5-qgs8-13ht" }, { "vulnerability": "VCID-wh5f-gkuv-q3ep" }, { "vulnerability": "VCID-x4x5-44xh-6uat" }, { "vulnerability": "VCID-xavu-ygkk-u3fn" }, { "vulnerability": "VCID-xg2b-zzbj-juds" }, { "vulnerability": "VCID-yjyn-kpq2-qkb7" }, { "vulnerability": "VCID-znh3-rqwe-8ke3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/nss@3.12.8-1%252Bsqueeze14" }, { "url": "http://public2.vulnerablecode.io/api/packages/4085?format=api", "purl": "pkg:deb/debian/nss@2:3.14.5-1%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1btz-x11h-wbe3" }, { "vulnerability": "VCID-2amq-1dpv-r7ce" }, { "vulnerability": "VCID-7gkv-pu79-43hx" }, { "vulnerability": "VCID-81zk-xrsj-cufe" }, { "vulnerability": "VCID-9pxb-dcy9-gybh" }, { "vulnerability": "VCID-9wc3-cjef-3ucq" }, { "vulnerability": "VCID-9wkp-gr2p-kuda" }, { "vulnerability": "VCID-aabg-akur-cyf3" }, { "vulnerability": "VCID-bw2w-68hs-3bcd" }, { "vulnerability": "VCID-bzab-cse9-uudk" }, { "vulnerability": "VCID-c6v9-maak-dyde" }, { "vulnerability": "VCID-ca9j-qrnm-eqc3" }, { "vulnerability": "VCID-cjnx-d8j7-zqg3" }, { "vulnerability": "VCID-dj1s-kgfe-f7cm" }, { "vulnerability": "VCID-dvah-yevw-quhe" }, { "vulnerability": "VCID-fam8-n44k-2qh7" }, { "vulnerability": "VCID-jj5f-y1h9-skcp" }, { "vulnerability": "VCID-jwzp-ucfg-wycd" }, { "vulnerability": "VCID-kn9n-dpkn-d7bu" }, { "vulnerability": "VCID-kzju-7twc-fya8" }, { "vulnerability": "VCID-m314-1d92-fke4" }, { "vulnerability": "VCID-mq7v-8uvq-5yeq" }, { "vulnerability": "VCID-nmpw-53d9-cqaj" }, { "vulnerability": "VCID-pa6e-373h-6ybr" }, { "vulnerability": "VCID-phzc-3ex9-4bf7" }, { "vulnerability": "VCID-qpmv-44r5-tqby" }, { "vulnerability": "VCID-rc8a-n1r3-v7a1" }, { "vulnerability": "VCID-rfpm-yp1s-y3ft" }, { "vulnerability": "VCID-s692-wjkg-xkfr" }, { "vulnerability": "VCID-vct8-ur1y-63db" }, { "vulnerability": "VCID-wfu5-qgs8-13ht" }, { "vulnerability": "VCID-x4x5-44xh-6uat" }, { "vulnerability": "VCID-xavu-ygkk-u3fn" }, { "vulnerability": "VCID-xg2b-zzbj-juds" }, { "vulnerability": "VCID-yjyn-kpq2-qkb7" }, { "vulnerability": "VCID-znh3-rqwe-8ke3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/nss@2:3.14.5-1%252Bdeb7u5" } ], "references": [ { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5605", "reference_id": "CVE-2013-5605", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5605" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2013-103", "reference_id": "mfsa2013-103", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2013-103" } ], "weaknesses": [], "exploits": [], "severity_range_score": "9.0 - 10.0", "exploitability": null, "weighted_severity": null, "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2amq-1dpv-r7ce" }