Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/43377?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/43377?format=api", "vulnerability_id": "VCID-jb9c-1sv4-nqd3", "summary": "Exposure of Sensitive Information to an Unauthorized Actor\nOpenStack Identity (Keystone) before 2014.1.5 and 2014.2.x before 2014.2.4 logs the backend_argument configuration option content, which allows remote authenticated users to obtain passwords and other sensitive backend information by reading the Keystone logs.", "aliases": [ { "alias": "CVE-2015-3646" }, { "alias": "GHSA-jwpw-ppj5-7h4w" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/100492?format=api", "purl": "pkg:deb/debian/keystone@2015.1.0-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/keystone@2015.1.0-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/515854?format=api", "purl": "pkg:deb/debian/keystone@2:9.0.0-2~bpo8%2B1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2rc9-36nb-r7bq" }, { "vulnerability": "VCID-5ucj-ubyb-27fx" }, { "vulnerability": "VCID-6pst-ch65-jue1" }, { "vulnerability": "VCID-72xb-qu9g-wufj" }, { "vulnerability": "VCID-7b5p-zqzm-3few" }, { "vulnerability": "VCID-7g3v-a5tn-dycy" }, { "vulnerability": "VCID-91yw-81v7-jbay" }, { "vulnerability": "VCID-cage-qr17-fude" }, { "vulnerability": "VCID-dtzz-ku1w-buhj" }, { "vulnerability": "VCID-eszc-r2p1-xkcv" }, { "vulnerability": "VCID-hbw7-mk5t-vqb2" }, { "vulnerability": "VCID-hyts-mq72-z7de" }, { "vulnerability": "VCID-kd2c-53va-qbcg" }, { "vulnerability": "VCID-u4kn-nadh-wqbk" }, { "vulnerability": "VCID-v6q4-3362-fyde" }, { "vulnerability": "VCID-vr3n-ae3v-mqgz" }, { "vulnerability": "VCID-z3ub-exq4-4qgg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/keystone@2:9.0.0-2~bpo8%252B1" }, { "url": "http://public2.vulnerablecode.io/api/packages/100459?format=api", "purl": "pkg:deb/debian/keystone@2:18.0.0-3%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-g2mr-xac1-jue9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/keystone@2:18.0.0-3%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/100457?format=api", "purl": "pkg:deb/debian/keystone@2:22.0.2-0%2Bdeb12u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5ucj-ubyb-27fx" }, { "vulnerability": "VCID-7b5p-zqzm-3few" }, { "vulnerability": "VCID-cage-qr17-fude" }, { "vulnerability": "VCID-eszc-r2p1-xkcv" }, { "vulnerability": "VCID-g2mr-xac1-jue9" }, { "vulnerability": "VCID-hyts-mq72-z7de" }, { "vulnerability": "VCID-v6q4-3362-fyde" }, { "vulnerability": "VCID-z3ub-exq4-4qgg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/keystone@2:22.0.2-0%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/100461?format=api", "purl": "pkg:deb/debian/keystone@2:27.0.0-3%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5ucj-ubyb-27fx" }, { "vulnerability": "VCID-7b5p-zqzm-3few" }, { "vulnerability": "VCID-cage-qr17-fude" }, { "vulnerability": "VCID-eszc-r2p1-xkcv" }, { "vulnerability": "VCID-hyts-mq72-z7de" }, { "vulnerability": "VCID-v6q4-3362-fyde" }, { "vulnerability": "VCID-z3ub-exq4-4qgg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/keystone@2:27.0.0-3%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/100460?format=api", "purl": "pkg:deb/debian/keystone@2:29.0.1-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/keystone@2:29.0.1-2%3Fdistro=trixie" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/515852?format=api", "purl": "pkg:deb/debian/keystone@2012.1.1-13%2Bwheezy1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2rc9-36nb-r7bq" }, { "vulnerability": "VCID-476j-q5mw-g3bc" }, { "vulnerability": "VCID-4dfd-d2ah-wyfw" }, { "vulnerability": "VCID-4u68-u1rt-dkf3" }, { "vulnerability": "VCID-5ucj-ubyb-27fx" }, { "vulnerability": "VCID-6pst-ch65-jue1" }, { "vulnerability": "VCID-72xb-qu9g-wufj" }, { "vulnerability": "VCID-795z-uxdu-hqdd" }, { "vulnerability": "VCID-7b5p-zqzm-3few" }, { "vulnerability": "VCID-7g3v-a5tn-dycy" }, { "vulnerability": "VCID-7n2d-dh67-z7bv" }, { "vulnerability": "VCID-91yw-81v7-jbay" }, { "vulnerability": "VCID-cage-qr17-fude" }, { "vulnerability": "VCID-ch28-x82z-qygp" }, { "vulnerability": "VCID-dtzz-ku1w-buhj" }, { "vulnerability": "VCID-dun6-47vx-eqg7" }, { "vulnerability": "VCID-eszc-r2p1-xkcv" }, { "vulnerability": "VCID-gzg2-y3ku-tyb8" }, { "vulnerability": "VCID-hbw7-mk5t-vqb2" }, { "vulnerability": "VCID-hh29-6my3-5yhs" }, { "vulnerability": "VCID-hyts-mq72-z7de" }, { "vulnerability": "VCID-j4dq-htwd-pkey" }, { "vulnerability": "VCID-j99r-n3ep-p3dg" }, { "vulnerability": "VCID-jb9c-1sv4-nqd3" }, { "vulnerability": "VCID-k1ca-t5sh-fkg7" }, { "vulnerability": "VCID-k74p-n11s-yqgv" }, { "vulnerability": "VCID-kd2c-53va-qbcg" }, { "vulnerability": "VCID-kd6q-yede-13a8" }, { "vulnerability": "VCID-kde1-j2p8-hfam" }, { "vulnerability": "VCID-q623-eq7z-juc2" }, { "vulnerability": "VCID-qybw-66g5-n3gt" }, { "vulnerability": "VCID-s2r4-peb5-ykee" }, { "vulnerability": "VCID-sjvu-6pfu-k3cx" }, { "vulnerability": "VCID-u4kn-nadh-wqbk" }, { "vulnerability": "VCID-v6q4-3362-fyde" }, { "vulnerability": "VCID-vr3n-ae3v-mqgz" }, { "vulnerability": "VCID-x4zb-hp1p-pybu" }, { "vulnerability": "VCID-z3ub-exq4-4qgg" }, { "vulnerability": "VCID-zzdx-v68n-zkh6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/keystone@2012.1.1-13%252Bwheezy1" }, { "url": "http://public2.vulnerablecode.io/api/packages/515853?format=api", "purl": "pkg:deb/debian/keystone@2014.1.3-6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2rc9-36nb-r7bq" }, { "vulnerability": "VCID-5ucj-ubyb-27fx" }, { "vulnerability": "VCID-6pst-ch65-jue1" }, { "vulnerability": "VCID-72xb-qu9g-wufj" }, { "vulnerability": "VCID-7b5p-zqzm-3few" }, { "vulnerability": "VCID-7g3v-a5tn-dycy" }, { "vulnerability": "VCID-91yw-81v7-jbay" }, { "vulnerability": "VCID-cage-qr17-fude" }, { "vulnerability": "VCID-dtzz-ku1w-buhj" }, { "vulnerability": "VCID-eszc-r2p1-xkcv" }, { "vulnerability": "VCID-hbw7-mk5t-vqb2" }, { "vulnerability": "VCID-hyts-mq72-z7de" }, { "vulnerability": "VCID-j99r-n3ep-p3dg" }, { "vulnerability": "VCID-jb9c-1sv4-nqd3" }, { "vulnerability": "VCID-kd2c-53va-qbcg" }, { "vulnerability": "VCID-u4kn-nadh-wqbk" }, { "vulnerability": "VCID-v6q4-3362-fyde" }, { "vulnerability": "VCID-vr3n-ae3v-mqgz" }, { "vulnerability": "VCID-z3ub-exq4-4qgg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/keystone@2014.1.3-6" }, { "url": "http://public2.vulnerablecode.io/api/packages/12605?format=api", "purl": "pkg:pypi/keystone@12.0.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2rc9-36nb-r7bq" }, { "vulnerability": "VCID-6pst-ch65-jue1" }, { "vulnerability": "VCID-72xb-qu9g-wufj" }, { "vulnerability": "VCID-91yw-81v7-jbay" }, { "vulnerability": "VCID-cage-qr17-fude" }, { "vulnerability": "VCID-g2mr-xac1-jue9" }, { "vulnerability": "VCID-jb9c-1sv4-nqd3" }, { "vulnerability": "VCID-kd2c-53va-qbcg" }, { "vulnerability": "VCID-u4kn-nadh-wqbk" }, { "vulnerability": "VCID-vr3n-ae3v-mqgz" }, { "vulnerability": "VCID-w1ga-74n2-dycq" }, { "vulnerability": "VCID-xnt4-czce-buhs" }, { "vulnerability": "VCID-z4z5-3wer-nyfs" }, { "vulnerability": "VCID-zvfa-f3nf-gqh8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@12.0.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/12606?format=api", "purl": "pkg:pypi/keystone@12.0.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2rc9-36nb-r7bq" }, { "vulnerability": "VCID-6pst-ch65-jue1" }, { "vulnerability": "VCID-72xb-qu9g-wufj" }, { "vulnerability": "VCID-91yw-81v7-jbay" }, { "vulnerability": "VCID-cage-qr17-fude" }, { "vulnerability": "VCID-g2mr-xac1-jue9" }, { "vulnerability": "VCID-jb9c-1sv4-nqd3" }, { "vulnerability": "VCID-kd2c-53va-qbcg" }, { "vulnerability": "VCID-u4kn-nadh-wqbk" }, { "vulnerability": "VCID-vr3n-ae3v-mqgz" }, { "vulnerability": "VCID-w1ga-74n2-dycq" }, { "vulnerability": "VCID-xnt4-czce-buhs" }, { "vulnerability": "VCID-z4z5-3wer-nyfs" }, { "vulnerability": "VCID-zvfa-f3nf-gqh8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@12.0.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/12607?format=api", "purl": "pkg:pypi/keystone@13.0.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2rc9-36nb-r7bq" }, { "vulnerability": "VCID-6pst-ch65-jue1" }, { "vulnerability": "VCID-72xb-qu9g-wufj" }, { "vulnerability": "VCID-91yw-81v7-jbay" }, { "vulnerability": "VCID-cage-qr17-fude" }, { "vulnerability": "VCID-g2mr-xac1-jue9" }, { "vulnerability": "VCID-jb9c-1sv4-nqd3" }, { "vulnerability": "VCID-kd2c-53va-qbcg" }, { "vulnerability": "VCID-u4kn-nadh-wqbk" }, { "vulnerability": "VCID-vr3n-ae3v-mqgz" }, { "vulnerability": "VCID-w1ga-74n2-dycq" }, { "vulnerability": "VCID-xnt4-czce-buhs" }, { "vulnerability": "VCID-z3ub-exq4-4qgg" }, { "vulnerability": "VCID-z4z5-3wer-nyfs" }, { "vulnerability": "VCID-zvfa-f3nf-gqh8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@13.0.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/12608?format=api", "purl": "pkg:pypi/keystone@13.0.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2rc9-36nb-r7bq" }, { "vulnerability": "VCID-6pst-ch65-jue1" }, { "vulnerability": "VCID-72xb-qu9g-wufj" }, { "vulnerability": "VCID-91yw-81v7-jbay" }, { "vulnerability": "VCID-cage-qr17-fude" }, { "vulnerability": "VCID-g2mr-xac1-jue9" }, { "vulnerability": "VCID-jb9c-1sv4-nqd3" }, { "vulnerability": "VCID-kd2c-53va-qbcg" }, { "vulnerability": "VCID-u4kn-nadh-wqbk" }, { "vulnerability": "VCID-vr3n-ae3v-mqgz" }, { "vulnerability": "VCID-w1ga-74n2-dycq" }, { "vulnerability": "VCID-xnt4-czce-buhs" }, { "vulnerability": "VCID-z3ub-exq4-4qgg" }, { "vulnerability": "VCID-z4z5-3wer-nyfs" }, { "vulnerability": "VCID-zvfa-f3nf-gqh8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@13.0.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/12609?format=api", "purl": "pkg:pypi/keystone@13.0.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2rc9-36nb-r7bq" }, { "vulnerability": "VCID-6pst-ch65-jue1" }, { "vulnerability": "VCID-72xb-qu9g-wufj" }, { "vulnerability": "VCID-91yw-81v7-jbay" }, { "vulnerability": "VCID-cage-qr17-fude" }, { "vulnerability": "VCID-g2mr-xac1-jue9" }, { "vulnerability": "VCID-jb9c-1sv4-nqd3" }, { "vulnerability": "VCID-kd2c-53va-qbcg" }, { "vulnerability": "VCID-u4kn-nadh-wqbk" }, { "vulnerability": "VCID-vr3n-ae3v-mqgz" }, { "vulnerability": "VCID-w1ga-74n2-dycq" }, { "vulnerability": "VCID-xnt4-czce-buhs" }, { "vulnerability": "VCID-z3ub-exq4-4qgg" }, { "vulnerability": "VCID-z4z5-3wer-nyfs" }, { "vulnerability": "VCID-zvfa-f3nf-gqh8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@13.0.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/12610?format=api", "purl": "pkg:pypi/keystone@14.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2rc9-36nb-r7bq" }, { "vulnerability": "VCID-5ucj-ubyb-27fx" }, { "vulnerability": "VCID-6pst-ch65-jue1" }, { "vulnerability": "VCID-72xb-qu9g-wufj" }, { "vulnerability": "VCID-91yw-81v7-jbay" }, { "vulnerability": "VCID-cage-qr17-fude" }, { "vulnerability": "VCID-g2mr-xac1-jue9" }, { "vulnerability": "VCID-jb9c-1sv4-nqd3" }, { "vulnerability": "VCID-kd2c-53va-qbcg" }, { "vulnerability": "VCID-u4kn-nadh-wqbk" }, { "vulnerability": "VCID-vr3n-ae3v-mqgz" }, { "vulnerability": "VCID-w1ga-74n2-dycq" }, { "vulnerability": "VCID-xnt4-czce-buhs" }, { "vulnerability": "VCID-z3ub-exq4-4qgg" }, { "vulnerability": "VCID-z4z5-3wer-nyfs" }, { "vulnerability": "VCID-zvfa-f3nf-gqh8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@14.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/12611?format=api", "purl": "pkg:pypi/keystone@14.0.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2rc9-36nb-r7bq" }, { "vulnerability": "VCID-5ucj-ubyb-27fx" }, { "vulnerability": "VCID-6pst-ch65-jue1" }, { "vulnerability": "VCID-72xb-qu9g-wufj" }, { "vulnerability": "VCID-91yw-81v7-jbay" }, { "vulnerability": "VCID-cage-qr17-fude" }, { "vulnerability": "VCID-g2mr-xac1-jue9" }, { "vulnerability": "VCID-jb9c-1sv4-nqd3" }, { "vulnerability": "VCID-kd2c-53va-qbcg" }, { "vulnerability": "VCID-u4kn-nadh-wqbk" }, { "vulnerability": "VCID-vr3n-ae3v-mqgz" }, { "vulnerability": "VCID-w1ga-74n2-dycq" }, { "vulnerability": "VCID-xnt4-czce-buhs" }, { "vulnerability": "VCID-z3ub-exq4-4qgg" }, { "vulnerability": "VCID-z4z5-3wer-nyfs" }, { "vulnerability": "VCID-zvfa-f3nf-gqh8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@14.0.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/12612?format=api", "purl": "pkg:pypi/keystone@14.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2rc9-36nb-r7bq" }, { "vulnerability": "VCID-5ucj-ubyb-27fx" }, { "vulnerability": "VCID-6pst-ch65-jue1" }, { "vulnerability": "VCID-72xb-qu9g-wufj" }, { "vulnerability": "VCID-91yw-81v7-jbay" }, { "vulnerability": "VCID-cage-qr17-fude" }, { "vulnerability": "VCID-g2mr-xac1-jue9" }, { "vulnerability": "VCID-jb9c-1sv4-nqd3" }, { "vulnerability": "VCID-kd2c-53va-qbcg" }, { "vulnerability": "VCID-u4kn-nadh-wqbk" }, { "vulnerability": "VCID-vr3n-ae3v-mqgz" }, { "vulnerability": "VCID-w1ga-74n2-dycq" }, { "vulnerability": "VCID-xnt4-czce-buhs" }, { "vulnerability": "VCID-z3ub-exq4-4qgg" }, { "vulnerability": "VCID-z4z5-3wer-nyfs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@14.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/14678?format=api", "purl": "pkg:pypi/keystone@14.2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2rc9-36nb-r7bq" }, { "vulnerability": "VCID-5ucj-ubyb-27fx" }, { "vulnerability": "VCID-6pst-ch65-jue1" }, { "vulnerability": "VCID-72xb-qu9g-wufj" }, { "vulnerability": "VCID-91yw-81v7-jbay" }, { "vulnerability": "VCID-cage-qr17-fude" }, { "vulnerability": "VCID-g2mr-xac1-jue9" }, { "vulnerability": "VCID-jb9c-1sv4-nqd3" }, { "vulnerability": "VCID-kd2c-53va-qbcg" }, { "vulnerability": "VCID-u4kn-nadh-wqbk" }, { "vulnerability": "VCID-vr3n-ae3v-mqgz" }, { "vulnerability": "VCID-w1ga-74n2-dycq" }, { "vulnerability": "VCID-xnt4-czce-buhs" }, { "vulnerability": "VCID-z3ub-exq4-4qgg" }, { "vulnerability": "VCID-z4z5-3wer-nyfs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@14.2.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/14679?format=api", "purl": "pkg:pypi/keystone@15.0.0.0rc1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2rc9-36nb-r7bq" }, { "vulnerability": "VCID-5ucj-ubyb-27fx" }, { "vulnerability": "VCID-6pst-ch65-jue1" }, { "vulnerability": "VCID-72xb-qu9g-wufj" }, { "vulnerability": "VCID-91yw-81v7-jbay" }, { "vulnerability": "VCID-cage-qr17-fude" }, { "vulnerability": "VCID-g2mr-xac1-jue9" }, { "vulnerability": "VCID-jb9c-1sv4-nqd3" }, { "vulnerability": "VCID-kd2c-53va-qbcg" }, { "vulnerability": "VCID-u4kn-nadh-wqbk" }, { "vulnerability": "VCID-vr3n-ae3v-mqgz" }, { "vulnerability": "VCID-w1ga-74n2-dycq" }, { "vulnerability": "VCID-xnt4-czce-buhs" }, { "vulnerability": "VCID-z3ub-exq4-4qgg" }, { "vulnerability": "VCID-z4z5-3wer-nyfs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@15.0.0.0rc1" }, { "url": "http://public2.vulnerablecode.io/api/packages/14680?format=api", "purl": "pkg:pypi/keystone@15.0.0.0rc2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2rc9-36nb-r7bq" }, { "vulnerability": "VCID-5ucj-ubyb-27fx" }, { "vulnerability": "VCID-6pst-ch65-jue1" }, { "vulnerability": "VCID-72xb-qu9g-wufj" }, { "vulnerability": "VCID-91yw-81v7-jbay" }, { "vulnerability": "VCID-cage-qr17-fude" }, { "vulnerability": "VCID-g2mr-xac1-jue9" }, { "vulnerability": "VCID-jb9c-1sv4-nqd3" }, { "vulnerability": "VCID-kd2c-53va-qbcg" }, { "vulnerability": "VCID-u4kn-nadh-wqbk" }, { "vulnerability": "VCID-vr3n-ae3v-mqgz" }, { "vulnerability": "VCID-w1ga-74n2-dycq" }, { "vulnerability": "VCID-xnt4-czce-buhs" }, { "vulnerability": "VCID-z3ub-exq4-4qgg" }, { "vulnerability": "VCID-z4z5-3wer-nyfs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@15.0.0.0rc2" }, { "url": "http://public2.vulnerablecode.io/api/packages/14681?format=api", "purl": "pkg:pypi/keystone@15.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2rc9-36nb-r7bq" }, { "vulnerability": "VCID-5ucj-ubyb-27fx" }, { "vulnerability": "VCID-6pst-ch65-jue1" }, { "vulnerability": "VCID-72xb-qu9g-wufj" }, { "vulnerability": "VCID-91yw-81v7-jbay" }, { "vulnerability": "VCID-cage-qr17-fude" }, { "vulnerability": "VCID-g2mr-xac1-jue9" }, { "vulnerability": "VCID-jb9c-1sv4-nqd3" }, { "vulnerability": "VCID-kd2c-53va-qbcg" }, { "vulnerability": "VCID-u4kn-nadh-wqbk" }, { "vulnerability": "VCID-vr3n-ae3v-mqgz" }, { "vulnerability": "VCID-w1ga-74n2-dycq" }, { "vulnerability": "VCID-xnt4-czce-buhs" }, { "vulnerability": "VCID-z3ub-exq4-4qgg" }, { "vulnerability": "VCID-z4z5-3wer-nyfs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@15.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/14682?format=api", "purl": "pkg:pypi/keystone@15.0.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2rc9-36nb-r7bq" }, { "vulnerability": "VCID-5ucj-ubyb-27fx" }, { "vulnerability": "VCID-6pst-ch65-jue1" }, { "vulnerability": "VCID-91yw-81v7-jbay" }, { "vulnerability": "VCID-cage-qr17-fude" }, { "vulnerability": "VCID-g2mr-xac1-jue9" }, { "vulnerability": "VCID-jb9c-1sv4-nqd3" }, { "vulnerability": "VCID-w1ga-74n2-dycq" }, { "vulnerability": "VCID-xnt4-czce-buhs" }, { "vulnerability": "VCID-z3ub-exq4-4qgg" }, { "vulnerability": "VCID-z4z5-3wer-nyfs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@15.0.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/14683?format=api", "purl": "pkg:pypi/keystone@16.0.0.0rc1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2rc9-36nb-r7bq" }, { "vulnerability": "VCID-5ucj-ubyb-27fx" }, { "vulnerability": "VCID-6pst-ch65-jue1" }, { "vulnerability": "VCID-91yw-81v7-jbay" }, { "vulnerability": "VCID-cage-qr17-fude" }, { "vulnerability": "VCID-g2mr-xac1-jue9" }, { "vulnerability": "VCID-jb9c-1sv4-nqd3" }, { "vulnerability": "VCID-u4kn-nadh-wqbk" }, { "vulnerability": "VCID-vr3n-ae3v-mqgz" }, { "vulnerability": "VCID-w1ga-74n2-dycq" }, { "vulnerability": "VCID-xnt4-czce-buhs" }, { "vulnerability": "VCID-z3ub-exq4-4qgg" }, { "vulnerability": "VCID-z4z5-3wer-nyfs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@16.0.0.0rc1" }, { "url": "http://public2.vulnerablecode.io/api/packages/14684?format=api", "purl": "pkg:pypi/keystone@16.0.0.0rc2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2rc9-36nb-r7bq" }, { "vulnerability": "VCID-5ucj-ubyb-27fx" }, { "vulnerability": "VCID-6pst-ch65-jue1" }, { "vulnerability": "VCID-91yw-81v7-jbay" }, { "vulnerability": "VCID-cage-qr17-fude" }, { "vulnerability": "VCID-g2mr-xac1-jue9" }, { "vulnerability": "VCID-jb9c-1sv4-nqd3" }, { "vulnerability": "VCID-u4kn-nadh-wqbk" }, { "vulnerability": "VCID-vr3n-ae3v-mqgz" }, { "vulnerability": "VCID-w1ga-74n2-dycq" }, { "vulnerability": "VCID-xnt4-czce-buhs" }, { "vulnerability": "VCID-z3ub-exq4-4qgg" }, { "vulnerability": "VCID-z4z5-3wer-nyfs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@16.0.0.0rc2" }, { "url": "http://public2.vulnerablecode.io/api/packages/14685?format=api", "purl": "pkg:pypi/keystone@16.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2rc9-36nb-r7bq" }, { "vulnerability": "VCID-5ucj-ubyb-27fx" }, { "vulnerability": "VCID-6pst-ch65-jue1" }, { "vulnerability": "VCID-72xb-qu9g-wufj" }, { "vulnerability": "VCID-91yw-81v7-jbay" }, { "vulnerability": "VCID-cage-qr17-fude" }, { "vulnerability": "VCID-g2mr-xac1-jue9" }, { "vulnerability": "VCID-jb9c-1sv4-nqd3" }, { "vulnerability": "VCID-kd2c-53va-qbcg" }, { "vulnerability": "VCID-w1ga-74n2-dycq" }, { "vulnerability": "VCID-xnt4-czce-buhs" }, { "vulnerability": "VCID-z3ub-exq4-4qgg" }, { "vulnerability": "VCID-z4z5-3wer-nyfs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@16.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/14686?format=api", "purl": "pkg:pypi/keystone@16.0.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2rc9-36nb-r7bq" }, { "vulnerability": "VCID-5ucj-ubyb-27fx" }, { "vulnerability": "VCID-6pst-ch65-jue1" }, { "vulnerability": "VCID-cage-qr17-fude" }, { "vulnerability": "VCID-g2mr-xac1-jue9" }, { "vulnerability": "VCID-jb9c-1sv4-nqd3" }, { "vulnerability": "VCID-w1ga-74n2-dycq" }, { "vulnerability": "VCID-z3ub-exq4-4qgg" }, { "vulnerability": "VCID-z4z5-3wer-nyfs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@16.0.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/150040?format=api", "purl": "pkg:pypi/keystone@16.0.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2rc9-36nb-r7bq" }, { "vulnerability": "VCID-5ucj-ubyb-27fx" }, { "vulnerability": "VCID-cage-qr17-fude" }, { "vulnerability": "VCID-g2mr-xac1-jue9" }, { "vulnerability": "VCID-jb9c-1sv4-nqd3" }, { "vulnerability": "VCID-w1ga-74n2-dycq" }, { "vulnerability": "VCID-z3ub-exq4-4qgg" }, { "vulnerability": "VCID-z4z5-3wer-nyfs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@16.0.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/574179?format=api", "purl": "pkg:pypi/keystone@17.0.0.0rc1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2rc9-36nb-r7bq" }, { "vulnerability": "VCID-5ucj-ubyb-27fx" }, { "vulnerability": "VCID-cage-qr17-fude" }, { "vulnerability": "VCID-g2mr-xac1-jue9" }, { "vulnerability": "VCID-jb9c-1sv4-nqd3" }, { "vulnerability": "VCID-w1ga-74n2-dycq" }, { "vulnerability": "VCID-z3ub-exq4-4qgg" }, { "vulnerability": "VCID-z4z5-3wer-nyfs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@17.0.0.0rc1" }, { "url": "http://public2.vulnerablecode.io/api/packages/574180?format=api", "purl": "pkg:pypi/keystone@17.0.0.0rc2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2rc9-36nb-r7bq" }, { "vulnerability": "VCID-5ucj-ubyb-27fx" }, { "vulnerability": "VCID-cage-qr17-fude" }, { "vulnerability": "VCID-g2mr-xac1-jue9" }, { "vulnerability": "VCID-jb9c-1sv4-nqd3" }, { "vulnerability": "VCID-w1ga-74n2-dycq" }, { "vulnerability": "VCID-z3ub-exq4-4qgg" }, { "vulnerability": "VCID-z4z5-3wer-nyfs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@17.0.0.0rc2" }, { "url": "http://public2.vulnerablecode.io/api/packages/574181?format=api", "purl": "pkg:pypi/keystone@17.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2rc9-36nb-r7bq" }, { "vulnerability": "VCID-5ucj-ubyb-27fx" }, { "vulnerability": "VCID-6pst-ch65-jue1" }, { "vulnerability": "VCID-cage-qr17-fude" }, { "vulnerability": "VCID-g2mr-xac1-jue9" }, { "vulnerability": "VCID-jb9c-1sv4-nqd3" }, { "vulnerability": "VCID-w1ga-74n2-dycq" }, { "vulnerability": "VCID-z3ub-exq4-4qgg" }, { "vulnerability": "VCID-z4z5-3wer-nyfs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@17.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/150044?format=api", "purl": "pkg:pypi/keystone@17.0.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2rc9-36nb-r7bq" }, { "vulnerability": "VCID-5ucj-ubyb-27fx" }, { "vulnerability": "VCID-cage-qr17-fude" }, { "vulnerability": "VCID-g2mr-xac1-jue9" }, { "vulnerability": "VCID-jb9c-1sv4-nqd3" }, { "vulnerability": "VCID-w1ga-74n2-dycq" }, { "vulnerability": "VCID-z3ub-exq4-4qgg" }, { "vulnerability": "VCID-z4z5-3wer-nyfs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@17.0.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/574182?format=api", "purl": "pkg:pypi/keystone@18.0.0.0rc1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2rc9-36nb-r7bq" }, { "vulnerability": "VCID-5ucj-ubyb-27fx" }, { "vulnerability": "VCID-cage-qr17-fude" }, { "vulnerability": "VCID-g2mr-xac1-jue9" }, { "vulnerability": "VCID-jb9c-1sv4-nqd3" }, { "vulnerability": "VCID-w1ga-74n2-dycq" }, { "vulnerability": "VCID-z3ub-exq4-4qgg" }, { "vulnerability": "VCID-z4z5-3wer-nyfs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@18.0.0.0rc1" }, { "url": "http://public2.vulnerablecode.io/api/packages/574183?format=api", "purl": "pkg:pypi/keystone@18.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2rc9-36nb-r7bq" }, { "vulnerability": "VCID-5ucj-ubyb-27fx" }, { "vulnerability": "VCID-6pst-ch65-jue1" }, { "vulnerability": "VCID-cage-qr17-fude" }, { "vulnerability": "VCID-g2mr-xac1-jue9" }, { "vulnerability": "VCID-jb9c-1sv4-nqd3" }, { "vulnerability": "VCID-w1ga-74n2-dycq" }, { "vulnerability": "VCID-z3ub-exq4-4qgg" }, { "vulnerability": "VCID-z4z5-3wer-nyfs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@18.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/574184?format=api", "purl": "pkg:pypi/keystone@18.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2rc9-36nb-r7bq" }, { "vulnerability": "VCID-5ucj-ubyb-27fx" }, { "vulnerability": "VCID-cage-qr17-fude" }, { "vulnerability": "VCID-g2mr-xac1-jue9" }, { "vulnerability": "VCID-jb9c-1sv4-nqd3" }, { "vulnerability": "VCID-w1ga-74n2-dycq" }, { "vulnerability": "VCID-z3ub-exq4-4qgg" }, { "vulnerability": "VCID-z4z5-3wer-nyfs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@18.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/574185?format=api", "purl": "pkg:pypi/keystone@19.0.0.0rc1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2rc9-36nb-r7bq" }, { "vulnerability": "VCID-5ucj-ubyb-27fx" }, { "vulnerability": "VCID-cage-qr17-fude" }, { "vulnerability": "VCID-g2mr-xac1-jue9" }, { "vulnerability": "VCID-jb9c-1sv4-nqd3" }, { "vulnerability": "VCID-w1ga-74n2-dycq" }, { "vulnerability": "VCID-z3ub-exq4-4qgg" }, { "vulnerability": "VCID-z4z5-3wer-nyfs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@19.0.0.0rc1" }, { "url": "http://public2.vulnerablecode.io/api/packages/574186?format=api", "purl": "pkg:pypi/keystone@19.0.0.0rc2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2rc9-36nb-r7bq" }, { "vulnerability": "VCID-5ucj-ubyb-27fx" }, { "vulnerability": "VCID-cage-qr17-fude" }, { "vulnerability": "VCID-g2mr-xac1-jue9" }, { "vulnerability": "VCID-jb9c-1sv4-nqd3" }, { "vulnerability": "VCID-w1ga-74n2-dycq" }, { "vulnerability": "VCID-z3ub-exq4-4qgg" }, { "vulnerability": "VCID-z4z5-3wer-nyfs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@19.0.0.0rc2" }, { "url": "http://public2.vulnerablecode.io/api/packages/574187?format=api", "purl": "pkg:pypi/keystone@19.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2rc9-36nb-r7bq" }, { "vulnerability": "VCID-5ucj-ubyb-27fx" }, { "vulnerability": "VCID-6pst-ch65-jue1" }, { "vulnerability": "VCID-cage-qr17-fude" }, { "vulnerability": "VCID-g2mr-xac1-jue9" }, { "vulnerability": "VCID-jb9c-1sv4-nqd3" }, { "vulnerability": "VCID-w1ga-74n2-dycq" }, { "vulnerability": "VCID-z3ub-exq4-4qgg" }, { "vulnerability": "VCID-z4z5-3wer-nyfs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@19.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/574188?format=api", "purl": "pkg:pypi/keystone@20.0.0.0rc1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2rc9-36nb-r7bq" }, { "vulnerability": "VCID-5ucj-ubyb-27fx" }, { "vulnerability": "VCID-cage-qr17-fude" }, { "vulnerability": "VCID-g2mr-xac1-jue9" }, { "vulnerability": "VCID-jb9c-1sv4-nqd3" }, { "vulnerability": "VCID-w1ga-74n2-dycq" }, { "vulnerability": "VCID-z3ub-exq4-4qgg" }, { "vulnerability": "VCID-z4z5-3wer-nyfs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@20.0.0.0rc1" }, { "url": "http://public2.vulnerablecode.io/api/packages/574189?format=api", "purl": "pkg:pypi/keystone@20.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2rc9-36nb-r7bq" }, { "vulnerability": "VCID-5ucj-ubyb-27fx" }, { "vulnerability": "VCID-cage-qr17-fude" }, { "vulnerability": "VCID-g2mr-xac1-jue9" }, { "vulnerability": "VCID-jb9c-1sv4-nqd3" }, { "vulnerability": "VCID-w1ga-74n2-dycq" }, { "vulnerability": "VCID-z3ub-exq4-4qgg" }, { "vulnerability": "VCID-z4z5-3wer-nyfs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@20.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/574190?format=api", "purl": "pkg:pypi/keystone@21.0.0.0rc1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2rc9-36nb-r7bq" }, { "vulnerability": "VCID-5ucj-ubyb-27fx" }, { "vulnerability": "VCID-cage-qr17-fude" }, { "vulnerability": "VCID-g2mr-xac1-jue9" }, { "vulnerability": "VCID-jb9c-1sv4-nqd3" }, { "vulnerability": "VCID-w1ga-74n2-dycq" }, { "vulnerability": "VCID-z3ub-exq4-4qgg" }, { "vulnerability": "VCID-z4z5-3wer-nyfs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@21.0.0.0rc1" }, { "url": "http://public2.vulnerablecode.io/api/packages/504245?format=api", "purl": "pkg:pypi/keystone@21.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2rc9-36nb-r7bq" }, { "vulnerability": "VCID-5ucj-ubyb-27fx" }, { "vulnerability": "VCID-cage-qr17-fude" }, { "vulnerability": "VCID-g2mr-xac1-jue9" }, { "vulnerability": "VCID-jb9c-1sv4-nqd3" }, { "vulnerability": "VCID-w1ga-74n2-dycq" }, { "vulnerability": "VCID-z3ub-exq4-4qgg" }, { "vulnerability": "VCID-z4z5-3wer-nyfs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@21.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/512221?format=api", "purl": "pkg:pypi/keystone@2011.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-jb9c-1sv4-nqd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@2011.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/62179?format=api", "purl": "pkg:pypi/keystone@2014.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-jb9c-1sv4-nqd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@2014.2" } ], "references": [ { "reference_url": "http://lists.openstack.org/pipermail/openstack-announce/2015-May/000356.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://lists.openstack.org/pipermail/openstack-announce/2015-May/000356.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3646.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3646.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-3646", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00177", "scoring_system": "epss", "scoring_elements": "0.38949", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00177", "scoring_system": "epss", "scoring_elements": "0.38885", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00177", "scoring_system": "epss", "scoring_elements": "0.38973", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00177", "scoring_system": "epss", "scoring_elements": "0.38977", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-3646" }, { "reference_url": "https://bugs.launchpad.net/keystone/+bug/1443598", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://bugs.launchpad.net/keystone/+bug/1443598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3646", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3646" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:S/C:P/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://github.com/openstack/keystone", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/openstack/keystone" }, { "reference_url": "https://web.archive.org/web/20210122154200/http://www.securityfocus.com/bid/74456", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://web.archive.org/web/20210122154200/http://www.securityfocus.com/bid/74456" }, { "reference_url": "http://www.oracle.com/technetwork/topics/security/bulletinapr2015-2511959.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.oracle.com/technetwork/topics/security/bulletinapr2015-2511959.html" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1218640", "reference_id": "1218640", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1218640" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2015-3646", "reference_id": "CVE-2015-3646", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-3646" }, { "reference_url": "https://github.com/advisories/GHSA-jwpw-ppj5-7h4w", "reference_id": "GHSA-jwpw-ppj5-7h4w", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-jwpw-ppj5-7h4w" } ], "weaknesses": [ { "cwe_id": 1035, "name": "OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017." }, { "cwe_id": 200, "name": "Exposure of Sensitive Information to an Unauthorized Actor", "description": "The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information." }, { "cwe_id": 937, "name": "OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013." }, { "cwe_id": 732, "name": "Incorrect Permission Assignment for Critical Resource", "description": "The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors." }, { "cwe_id": 522, "name": "Insufficiently Protected Credentials", "description": "The product transmits or stores authentication credentials, but it uses an insecure method that is susceptible to unauthorized interception and/or retrieval." } ], "exploits": [], "severity_range_score": "3.5 - 6.9", "exploitability": "0.5", "weighted_severity": "6.2", "risk_score": 3.1, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jb9c-1sv4-nqd3" }