{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/31482?format=json","vulnerability_id":"VCID-xcen-sbye-cfdc","summary":"A buffer overflow in RPCBind might allow remote attackers to cause\n    a Denial of Service.","aliases":[{"alias":"CVE-2015-7236"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1036320?format=json","purl":"pkg:deb/debian/rpcbind@0.2.0-8%2Bdeb7u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ubmz-6h4h-b7ae"},{"vulnerability":"VCID-xcen-sbye-cfdc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpcbind@0.2.0-8%252Bdeb7u1"},{"url":"http://public2.vulnerablecode.io/api/packages/1036322?format=json","purl":"pkg:deb/debian/rpcbind@0.2.1-6%2Bdeb8u2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ubmz-6h4h-b7ae"},{"vulnerability":"VCID-xcen-sbye-cfdc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpcbind@0.2.1-6%252Bdeb8u2"},{"url":"http://public2.vulnerablecode.io/api/packages/937955?format=json","purl":"pkg:deb/debian/rpcbind@0.2.1-6.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpcbind@0.2.1-6.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1050913?format=json","purl":"pkg:deb/debian/rpcbind@0.2.3-0.6","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpcbind@0.2.3-0.6"},{"url":"http://public2.vulnerablecode.io/api/packages/937953?format=json","purl":"pkg:deb/debian/rpcbind@1.2.5-9?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpcbind@1.2.5-9%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/937951?format=json","purl":"pkg:deb/debian/rpcbind@1.2.6-6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpcbind@1.2.6-6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/937954?format=json","purl":"pkg:deb/debian/rpcbind@1.2.7-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpcbind@1.2.7-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/71880?format=json","purl":"pkg:ebuild/net-nds/rpcbind@0.2.3-r1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/net-nds/rpcbind@0.2.3-r1"}],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1036318?format=json","purl":"pkg:deb/debian/rpcbind@0.2.0-4.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ubmz-6h4h-b7ae"},{"vulnerability":"VCID-xcen-sbye-cfdc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpcbind@0.2.0-4.1"},{"url":"http://public2.vulnerablecode.io/api/packages/1036319?format=json","purl":"pkg:deb/debian/rpcbind@0.2.0-4.1%2Bdeb6u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ubmz-6h4h-b7ae"},{"vulnerability":"VCID-xcen-sbye-cfdc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpcbind@0.2.0-4.1%252Bdeb6u1"},{"url":"http://public2.vulnerablecode.io/api/packages/1036320?format=json","purl":"pkg:deb/debian/rpcbind@0.2.0-8%2Bdeb7u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ubmz-6h4h-b7ae"},{"vulnerability":"VCID-xcen-sbye-cfdc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpcbind@0.2.0-8%252Bdeb7u1"},{"url":"http://public2.vulnerablecode.io/api/packages/1036321?format=json","purl":"pkg:deb/debian/rpcbind@0.2.1-6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ubmz-6h4h-b7ae"},{"vulnerability":"VCID-xcen-sbye-cfdc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpcbind@0.2.1-6"},{"url":"http://public2.vulnerablecode.io/api/packages/1036322?format=json","purl":"pkg:deb/debian/rpcbind@0.2.1-6%2Bdeb8u2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ubmz-6h4h-b7ae"},{"vulnerability":"VCID-xcen-sbye-cfdc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpcbind@0.2.1-6%252Bdeb8u2"},{"url":"http://public2.vulnerablecode.io/api/packages/117292?format=json","purl":"pkg:rpm/redhat/rpcbind@0.2.0-11?arch=el6_7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-xcen-sbye-cfdc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rpcbind@0.2.0-11%3Farch=el6_7"},{"url":"http://public2.vulnerablecode.io/api/packages/117291?format=json","purl":"pkg:rpm/redhat/rpcbind@0.2.0-33?arch=el7_2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-xcen-sbye-cfdc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rpcbind@0.2.0-33%3Farch=el7_2"}],"references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-7236.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-7236.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2015-7236","reference_id":"","reference_type":"","scores":[{"value":"0.04255","scoring_system":"epss","scoring_elements":"0.88854","published_at":"2026-05-05T12:55:00Z"},{"value":"0.04255","scoring_system":"epss","scoring_elements":"0.88823","published_at":"2026-04-21T12:55:00Z"},{"value":"0.04255","scoring_system":"epss","scoring_elements":"0.88839","published_at":"2026-04-24T12:55:00Z"},{"value":"0.04255","scoring_system":"epss","scoring_elements":"0.88845","published_at":"2026-04-26T12:55:00Z"},{"value":"0.04255","scoring_system":"epss","scoring_elements":"0.88844","published_at":"2026-04-29T12:55:00Z"},{"value":"0.04255","scoring_system":"epss","scoring_elements":"0.88801","published_at":"2026-04-08T12:55:00Z"},{"value":"0.04255","scoring_system":"epss","scoring_elements":"0.88807","published_at":"2026-04-09T12:55:00Z"},{"value":"0.04255","scoring_system":"epss","scoring_elements":"0.88819","published_at":"2026-04-11T12:55:00Z"},{"value":"0.04255","scoring_system":"epss","scoring_elements":"0.88814","published_at":"2026-04-13T12:55:00Z"},{"value":"0.04255","scoring_system":"epss","scoring_elements":"0.88828","published_at":"2026-04-16T12:55:00Z"},{"value":"0.04255","scoring_system":"epss","scoring_elements":"0.88826","published_at":"2026-04-18T12:55:00Z"},{"value":"0.07676","scoring_system":"epss","scoring_elements":"0.91873","published_at":"2026-04-02T12:55:00Z"},{"value":"0.07676","scoring_system":"epss","scoring_elements":"0.9188","published_at":"2026-04-04T12:55:00Z"},{"value":"0.07676","scoring_system":"epss","scoring_elements":"0.91887","published_at":"2026-04-07T12:55:00Z"},{"value":"0.07676","scoring_system":"epss","scoring_elements":"0.91865","published_at":"2026-04-01T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2015-7236"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7236","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7236"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1264345","reference_id":"1264345","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1264345"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=799307","reference_id":"799307","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=799307"},{"reference_url":"https://security.gentoo.org/glsa/201611-17","reference_id":"GLSA-201611-17","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201611-17"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:0005","reference_id":"RHSA-2016:0005","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:0005"},{"reference_url":"https://usn.ubuntu.com/2756-1/","reference_id":"USN-2756-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2756-1/"}],"weaknesses":[{"cwe_id":416,"name":"Use After Free","description":"Referencing memory after it has been freed can cause a program to crash, use unexpected values, or execute code."}],"exploits":[],"severity_range_score":null,"exploitability":"0.5","weighted_severity":"0.1","risk_score":0.1,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xcen-sbye-cfdc"}