Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/3583?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3583?format=api", "vulnerability_id": "VCID-g5yd-z8gh-pbc4", "summary": "A vulnerability involving insecure search_path settings allows unprivileged users to gain the SQL privileges of the owner of any SECURITY DEFINER function they are allowed to call. Securing such a function requires both a software update and changes to the function definition.more details", "aliases": [ { "alias": "CVE-2007-2138" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74242?format=api", "purl": "pkg:ebuild/dev-db/postgresql@8.0.13", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/postgresql@8.0.13" }, { "url": "http://public2.vulnerablecode.io/api/packages/376?format=api", "purl": "pkg:generic/postgresql@7.3.19", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@7.3.19" }, { "url": "http://public2.vulnerablecode.io/api/packages/375?format=api", "purl": "pkg:generic/postgresql@7.4.17", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@7.4.17" }, { "url": "http://public2.vulnerablecode.io/api/packages/374?format=api", "purl": "pkg:generic/postgresql@8.0.13", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@8.0.13" }, { "url": "http://public2.vulnerablecode.io/api/packages/373?format=api", "purl": "pkg:generic/postgresql@8.1.9", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@8.1.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/372?format=api", "purl": "pkg:generic/postgresql@8.2.4", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@8.2.4" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366?format=api", "purl": "pkg:generic/postgresql@7.3.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5zj2-a3y7-zueh" }, { "vulnerability": "VCID-6ppw-nxh2-2bfs" }, { "vulnerability": "VCID-8753-jd2h-8yhw" }, { "vulnerability": "VCID-8z74-udgw-kue3" }, { "vulnerability": "VCID-dema-khb4-d7c3" }, { "vulnerability": "VCID-dwxv-7v5k-pbgt" }, { "vulnerability": "VCID-f89t-37f7-hbau" }, { "vulnerability": "VCID-g5yd-z8gh-pbc4" }, { "vulnerability": "VCID-hase-39jj-6khk" }, { "vulnerability": "VCID-nj9p-fdc9-m7fu" }, { "vulnerability": "VCID-qw91-9hzj-2bbd" }, { "vulnerability": "VCID-s1hd-1asy-q3dd" }, { "vulnerability": "VCID-swbt-7zch-sbcp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@7.3.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/330?format=api", "purl": "pkg:generic/postgresql@7.4.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1qsp-wvwq-j3f5" }, { "vulnerability": "VCID-1uzm-h9m3-akge" }, { "vulnerability": "VCID-4tyx-g9kz-y3fq" }, { "vulnerability": "VCID-5zj2-a3y7-zueh" }, { "vulnerability": "VCID-6ppw-nxh2-2bfs" }, { "vulnerability": "VCID-721k-9zdg-buhv" }, { "vulnerability": "VCID-7q99-jk4u-1fen" }, { "vulnerability": "VCID-8753-jd2h-8yhw" }, { "vulnerability": "VCID-8z74-udgw-kue3" }, { "vulnerability": "VCID-c8ch-zd9x-kufn" }, { "vulnerability": "VCID-cffd-gdpc-uqeb" }, { "vulnerability": "VCID-dema-khb4-d7c3" }, { "vulnerability": "VCID-dwxv-7v5k-pbgt" }, { "vulnerability": "VCID-f89t-37f7-hbau" }, { "vulnerability": "VCID-g5yd-z8gh-pbc4" }, { "vulnerability": "VCID-h86x-6j3b-eqfh" }, { "vulnerability": "VCID-hase-39jj-6khk" }, { "vulnerability": "VCID-jeef-j758-s3a4" }, { "vulnerability": "VCID-nj9p-fdc9-m7fu" }, { "vulnerability": "VCID-qw91-9hzj-2bbd" }, { "vulnerability": "VCID-s1hd-1asy-q3dd" }, { "vulnerability": "VCID-swbt-7zch-sbcp" }, { "vulnerability": "VCID-u5h4-4p6j-wbay" }, { "vulnerability": "VCID-v69z-cmag-xfaf" }, { "vulnerability": "VCID-wesb-d296-4ba8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@7.4.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/331?format=api", "purl": "pkg:generic/postgresql@8.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1qsp-wvwq-j3f5" }, { "vulnerability": "VCID-1uzm-h9m3-akge" }, { "vulnerability": "VCID-4tyx-g9kz-y3fq" }, { "vulnerability": "VCID-5zj2-a3y7-zueh" }, { "vulnerability": "VCID-6ppw-nxh2-2bfs" }, { "vulnerability": "VCID-721k-9zdg-buhv" }, { "vulnerability": "VCID-7q99-jk4u-1fen" }, { "vulnerability": "VCID-8753-jd2h-8yhw" }, { "vulnerability": "VCID-8z74-udgw-kue3" }, { "vulnerability": "VCID-978k-4cn7-bfbz" }, { "vulnerability": "VCID-c8ch-zd9x-kufn" }, { "vulnerability": "VCID-cffd-gdpc-uqeb" }, { "vulnerability": "VCID-dema-khb4-d7c3" }, { "vulnerability": "VCID-f89t-37f7-hbau" }, { "vulnerability": "VCID-g5yd-z8gh-pbc4" }, { "vulnerability": "VCID-h86x-6j3b-eqfh" }, { "vulnerability": "VCID-hase-39jj-6khk" }, { "vulnerability": "VCID-jeef-j758-s3a4" }, { "vulnerability": "VCID-nj9p-fdc9-m7fu" }, { "vulnerability": "VCID-qw91-9hzj-2bbd" }, { "vulnerability": "VCID-s1hd-1asy-q3dd" }, { "vulnerability": "VCID-swbt-7zch-sbcp" }, { "vulnerability": "VCID-u5h4-4p6j-wbay" }, { "vulnerability": "VCID-v69z-cmag-xfaf" }, { "vulnerability": "VCID-wesb-d296-4ba8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@8.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/332?format=api", "purl": "pkg:generic/postgresql@8.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1qsp-wvwq-j3f5" }, { "vulnerability": "VCID-1uzm-h9m3-akge" }, { "vulnerability": "VCID-4tyx-g9kz-y3fq" }, { "vulnerability": "VCID-5zj2-a3y7-zueh" }, { "vulnerability": "VCID-721k-9zdg-buhv" }, { "vulnerability": "VCID-7q99-jk4u-1fen" }, { "vulnerability": "VCID-8z74-udgw-kue3" }, { "vulnerability": "VCID-978k-4cn7-bfbz" }, { "vulnerability": "VCID-c8ch-zd9x-kufn" }, { "vulnerability": "VCID-cffd-gdpc-uqeb" }, { "vulnerability": "VCID-cnye-56z6-qqd6" }, { "vulnerability": "VCID-dema-khb4-d7c3" }, { "vulnerability": "VCID-f89t-37f7-hbau" }, { "vulnerability": "VCID-g5yd-z8gh-pbc4" }, { "vulnerability": "VCID-h86x-6j3b-eqfh" }, { "vulnerability": "VCID-mr2t-k7zs-7fad" }, { "vulnerability": "VCID-nj9p-fdc9-m7fu" }, { "vulnerability": "VCID-pqq7-pp4n-fqgp" }, { "vulnerability": "VCID-u5h4-4p6j-wbay" }, { "vulnerability": "VCID-v69z-cmag-xfaf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@8.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/333?format=api", "purl": "pkg:generic/postgresql@8.2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1qsp-wvwq-j3f5" }, { "vulnerability": "VCID-1uzm-h9m3-akge" }, { "vulnerability": "VCID-5zj2-a3y7-zueh" }, { "vulnerability": "VCID-666x-ret3-xufr" }, { "vulnerability": "VCID-6dmy-t1qp-nuf3" }, { "vulnerability": "VCID-721k-9zdg-buhv" }, { "vulnerability": "VCID-7q99-jk4u-1fen" }, { "vulnerability": "VCID-978k-4cn7-bfbz" }, { "vulnerability": "VCID-c8ch-zd9x-kufn" }, { "vulnerability": "VCID-cffd-gdpc-uqeb" }, { "vulnerability": "VCID-f89t-37f7-hbau" }, { "vulnerability": "VCID-g5yd-z8gh-pbc4" }, { "vulnerability": "VCID-h86x-6j3b-eqfh" }, { "vulnerability": "VCID-nj9p-fdc9-m7fu" }, { "vulnerability": "VCID-s8a2-wbb4-dyda" }, { "vulnerability": "VCID-u5h4-4p6j-wbay" }, { "vulnerability": "VCID-v69z-cmag-xfaf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@8.2.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/129848?format=api", "purl": "pkg:rpm/redhat/postgresql@7.4.17-1.RHEL4?arch=1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-g5yd-z8gh-pbc4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/postgresql@7.4.17-1.RHEL4%3Farch=1" }, { "url": "http://public2.vulnerablecode.io/api/packages/129847?format=api", "purl": "pkg:rpm/redhat/postgresql@8.1.9-1?arch=el5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-g5yd-z8gh-pbc4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/postgresql@8.1.9-1%3Farch=el5" }, { "url": "http://public2.vulnerablecode.io/api/packages/129846?format=api", "purl": "pkg:rpm/redhat/postgresql@8.1.9-1.el4s1?arch=1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-g5yd-z8gh-pbc4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/postgresql@8.1.9-1.el4s1%3Farch=1" } ], "references": [ { "reference_url": "http://rhn.redhat.com/errata/RHSA-2007-0336.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://rhn.redhat.com/errata/RHSA-2007-0336.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-2138.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-2138.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2007-2138", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01593", "scoring_system": "epss", "scoring_elements": "0.81778", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.01593", "scoring_system": "epss", "scoring_elements": "0.81595", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01593", "scoring_system": "epss", "scoring_elements": "0.81606", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01593", "scoring_system": "epss", "scoring_elements": "0.81627", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01593", "scoring_system": "epss", "scoring_elements": "0.81624", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01593", "scoring_system": "epss", "scoring_elements": "0.81652", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01593", "scoring_system": "epss", "scoring_elements": "0.81657", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01593", "scoring_system": "epss", "scoring_elements": "0.81677", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01593", "scoring_system": "epss", "scoring_elements": "0.81664", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01593", "scoring_system": "epss", "scoring_elements": "0.81696", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.01593", "scoring_system": "epss", "scoring_elements": "0.81695", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01593", "scoring_system": "epss", "scoring_elements": "0.81699", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01593", "scoring_system": "epss", "scoring_elements": "0.81724", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.01593", "scoring_system": "epss", "scoring_elements": "0.81733", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.01593", "scoring_system": "epss", "scoring_elements": "0.81739", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.01593", "scoring_system": "epss", "scoring_elements": "0.81757", "published_at": "2026-05-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2007-2138" }, { "reference_url": "http://secunia.com/advisories/24989", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/24989" }, { "reference_url": "http://secunia.com/advisories/24999", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/24999" }, { "reference_url": "http://secunia.com/advisories/25005", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/25005" }, { "reference_url": "http://secunia.com/advisories/25019", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/25019" }, { "reference_url": "http://secunia.com/advisories/25037", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/25037" }, { "reference_url": "http://secunia.com/advisories/25058", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/25058" }, { "reference_url": "http://secunia.com/advisories/25184", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/25184" }, { "reference_url": "http://secunia.com/advisories/25238", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/25238" }, { "reference_url": "http://secunia.com/advisories/25334", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/25334" }, { "reference_url": "http://secunia.com/advisories/25717", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/25717" }, { "reference_url": "http://secunia.com/advisories/25720", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/25720" }, { "reference_url": "http://secunia.com/advisories/25725", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/25725" }, { "reference_url": "http://security.gentoo.org/glsa/glsa-200705-12.xml", "reference_id": "", "reference_type": "", "scores": [], "url": "http://security.gentoo.org/glsa/glsa-200705-12.xml" }, { "reference_url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33842", "reference_id": "", "reference_type": "", "scores": [], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33842" }, { "reference_url": "https://issues.rpath.com/browse/RPL-1292", "reference_id": "", "reference_type": "", "scores": [], "url": "https://issues.rpath.com/browse/RPL-1292" }, { "reference_url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10090", "reference_id": "", "reference_type": "", "scores": [], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10090" }, { "reference_url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102894-1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102894-1" }, { "reference_url": "http://support.avaya.com/elmodocs2/security/ASA-2007-190.htm", "reference_id": "", "reference_type": "", "scores": [], "url": "http://support.avaya.com/elmodocs2/security/ASA-2007-190.htm" }, { "reference_url": "https://www.postgresql.org/support/security/CVE-2007-2138/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.postgresql.org/support/security/CVE-2007-2138/" }, { "reference_url": "http://www.debian.org/security/2007/dsa-1309", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2007/dsa-1309" }, { "reference_url": "http://www.debian.org/security/2007/dsa-1311", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2007/dsa-1311" }, { "reference_url": "http://www.mandriva.com/security/advisories?name=MDKSA-2007:094", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2007:094" }, { "reference_url": "http://www.postgresql.org/about/news.791", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.postgresql.org/about/news.791" }, { "reference_url": "http://www.postgresql.org/support/security.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.postgresql.org/support/security.html" }, { "reference_url": "http://www.redhat.com/support/errata/RHSA-2007-0337.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.redhat.com/support/errata/RHSA-2007-0337.html" }, { "reference_url": "http://www.securityfocus.com/bid/23618", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/23618" }, { "reference_url": "http://www.securitytracker.com/id?1017974", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securitytracker.com/id?1017974" }, { "reference_url": "http://www.trustix.org/errata/2007/0015/", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.trustix.org/errata/2007/0015/" }, { "reference_url": "http://www.ubuntu.com/usn/usn-454-1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.ubuntu.com/usn/usn-454-1" }, { "reference_url": "http://www.vupen.com/english/advisories/2007/1497", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2007/1497" }, { "reference_url": "http://www.vupen.com/english/advisories/2007/1549", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2007/1549" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=237682", "reference_id": "237682", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=237682" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:postgresql:postgresql:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:6.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:6.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:6.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:7.04:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:7.04:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:7.04:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:3.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:3.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:3.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:4.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:4.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:4.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2007-2138", "reference_id": "CVE-2007-2138", "reference_type": "", "scores": [ { "value": "6.0", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:S/C:P/I:P/A:P" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-2138" }, { "reference_url": "https://security.gentoo.org/glsa/200705-12", "reference_id": "GLSA-200705-12", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200705-12" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2007:0336", "reference_id": "RHSA-2007:0336", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2007:0336" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2007:0337", "reference_id": "RHSA-2007:0337", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2007:0337" }, { "reference_url": "https://usn.ubuntu.com/454-1/", "reference_id": "USN-454-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/454-1/" } ], "weaknesses": [ { "cwe_id": 264, "name": "Permissions, Privileges, and Access Controls", "description": "Weaknesses in this category are related to the management of permissions, privileges, and other security features that are used to perform access control." } ], "exploits": [], "severity_range_score": "6.0 - 6.0", "exploitability": "0.5", "weighted_severity": "5.4", "risk_score": 2.7, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-g5yd-z8gh-pbc4" }