Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/447?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/447?format=api", "vulnerability_id": "VCID-ywmb-bdbw-6kgp", "summary": "", "aliases": [ { "alias": "CVE-2015-5262" }, { "alias": "GHSA-fmj5-wv96-r2ch" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1088358?format=api", "purl": "pkg:deb/debian/commons-httpclient@3.1-12", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/commons-httpclient@3.1-12" }, { "url": "http://public2.vulnerablecode.io/api/packages/35230?format=api", "purl": "pkg:deb/debian/commons-httpclient@3.1-12?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/commons-httpclient@3.1-12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/35225?format=api", "purl": "pkg:deb/debian/commons-httpclient@3.1-16?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/commons-httpclient@3.1-16%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/1079363?format=api", "purl": "pkg:deb/debian/httpcomponents-client@4.5.2-2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-ks8v-spnp-qbd5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/httpcomponents-client@4.5.2-2" }, { "url": "http://public2.vulnerablecode.io/api/packages/45528?format=api", "purl": "pkg:deb/debian/httpcomponents-client@4.3.6-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/httpcomponents-client@4.3.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/45523?format=api", "purl": "pkg:deb/debian/httpcomponents-client@4.5.13-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/httpcomponents-client@4.5.13-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/45516?format=api", "purl": "pkg:deb/debian/httpcomponents-client@4.5.14-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/httpcomponents-client@4.5.14-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/14070?format=api", "purl": "pkg:maven/org.apache.httpcomponents/httpclient@4.3.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-ks8v-spnp-qbd5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.httpcomponents/httpclient@4.3.6" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1082418?format=api", "purl": "pkg:deb/debian/commons-httpclient@2.0a1%2B20020904-2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-brhh-bnuu-ryff" }, { "vulnerability": "VCID-ea1s-bzzk-judm" }, { "vulnerability": "VCID-yex4-8uky-nbeh" }, { "vulnerability": "VCID-ywmb-bdbw-6kgp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/commons-httpclient@2.0a1%252B20020904-2" }, { "url": "http://public2.vulnerablecode.io/api/packages/1082419?format=api", "purl": "pkg:deb/debian/commons-httpclient@3.0.1-0.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-brhh-bnuu-ryff" }, { "vulnerability": "VCID-ea1s-bzzk-judm" }, { "vulnerability": "VCID-yex4-8uky-nbeh" }, { "vulnerability": "VCID-ywmb-bdbw-6kgp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/commons-httpclient@3.0.1-0.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1082423?format=api", "purl": "pkg:deb/debian/commons-httpclient@3.1-10.2%2Bdeb7u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-brhh-bnuu-ryff" }, { "vulnerability": "VCID-ywmb-bdbw-6kgp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/commons-httpclient@3.1-10.2%252Bdeb7u2" }, { "url": "http://public2.vulnerablecode.io/api/packages/1085265?format=api", "purl": "pkg:deb/debian/commons-httpclient@3.1-11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-ywmb-bdbw-6kgp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/commons-httpclient@3.1-11" }, { "url": "http://public2.vulnerablecode.io/api/packages/1088357?format=api", "purl": "pkg:deb/debian/commons-httpclient@3.1-11%2Bdeb8u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-ywmb-bdbw-6kgp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/commons-httpclient@3.1-11%252Bdeb8u1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1082420?format=api", "purl": "pkg:deb/debian/commons-httpclient@3.1-2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-brhh-bnuu-ryff" }, { "vulnerability": "VCID-ea1s-bzzk-judm" }, { "vulnerability": "VCID-yex4-8uky-nbeh" }, { "vulnerability": "VCID-ywmb-bdbw-6kgp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/commons-httpclient@3.1-2" }, { "url": "http://public2.vulnerablecode.io/api/packages/1082421?format=api", "purl": "pkg:deb/debian/commons-httpclient@3.1-9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-brhh-bnuu-ryff" }, { "vulnerability": "VCID-ea1s-bzzk-judm" }, { "vulnerability": "VCID-yex4-8uky-nbeh" }, { "vulnerability": "VCID-ywmb-bdbw-6kgp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/commons-httpclient@3.1-9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1082422?format=api", "purl": "pkg:deb/debian/commons-httpclient@3.1-9%2Bdeb6u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-brhh-bnuu-ryff" }, { "vulnerability": "VCID-ea1s-bzzk-judm" }, { "vulnerability": "VCID-yex4-8uky-nbeh" }, { "vulnerability": "VCID-ywmb-bdbw-6kgp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/commons-httpclient@3.1-9%252Bdeb6u2" }, { "url": "http://public2.vulnerablecode.io/api/packages/1079360?format=api", "purl": "pkg:deb/debian/httpcomponents-client@4.0.1-1squeeze1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-brhh-bnuu-ryff" }, { "vulnerability": "VCID-ecrh-an7q-b3de" }, { "vulnerability": "VCID-ks8v-spnp-qbd5" }, { "vulnerability": "VCID-n83p-nhp9-cyb8" }, { "vulnerability": "VCID-ywmb-bdbw-6kgp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/httpcomponents-client@4.0.1-1squeeze1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1079361?format=api", "purl": "pkg:deb/debian/httpcomponents-client@4.1.1-2%2Bdeb7u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-brhh-bnuu-ryff" }, { "vulnerability": "VCID-ks8v-spnp-qbd5" }, { "vulnerability": "VCID-n83p-nhp9-cyb8" }, { "vulnerability": "VCID-ywmb-bdbw-6kgp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/httpcomponents-client@4.1.1-2%252Bdeb7u1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1079362?format=api", "purl": "pkg:deb/debian/httpcomponents-client@4.3.5-2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-ks8v-spnp-qbd5" }, { "vulnerability": "VCID-ywmb-bdbw-6kgp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/httpcomponents-client@4.3.5-2" }, { "url": "http://public2.vulnerablecode.io/api/packages/432151?format=api", "purl": "pkg:maven/org.apache.httpcomponents/httpclient@4.0-alpha1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-brhh-bnuu-ryff" }, { "vulnerability": "VCID-ea1s-bzzk-judm" }, { "vulnerability": "VCID-ks8v-spnp-qbd5" }, { "vulnerability": "VCID-yex4-8uky-nbeh" }, { "vulnerability": "VCID-ywmb-bdbw-6kgp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.httpcomponents/httpclient@4.0-alpha1" }, { "url": "http://public2.vulnerablecode.io/api/packages/432152?format=api", "purl": "pkg:maven/org.apache.httpcomponents/httpclient@4.0-alpha2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-brhh-bnuu-ryff" }, { "vulnerability": "VCID-ea1s-bzzk-judm" }, { "vulnerability": "VCID-ks8v-spnp-qbd5" }, { "vulnerability": "VCID-yex4-8uky-nbeh" }, { "vulnerability": "VCID-ywmb-bdbw-6kgp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.httpcomponents/httpclient@4.0-alpha2" }, { "url": "http://public2.vulnerablecode.io/api/packages/432153?format=api", "purl": "pkg:maven/org.apache.httpcomponents/httpclient@4.0-alpha3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-brhh-bnuu-ryff" }, { "vulnerability": "VCID-ea1s-bzzk-judm" }, { "vulnerability": "VCID-ks8v-spnp-qbd5" }, { "vulnerability": "VCID-yex4-8uky-nbeh" }, { "vulnerability": "VCID-ywmb-bdbw-6kgp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.httpcomponents/httpclient@4.0-alpha3" }, { "url": "http://public2.vulnerablecode.io/api/packages/432154?format=api", "purl": "pkg:maven/org.apache.httpcomponents/httpclient@4.0-alpha4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-brhh-bnuu-ryff" }, { "vulnerability": "VCID-ea1s-bzzk-judm" }, { "vulnerability": "VCID-ks8v-spnp-qbd5" }, { "vulnerability": "VCID-yex4-8uky-nbeh" }, { "vulnerability": "VCID-ywmb-bdbw-6kgp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.httpcomponents/httpclient@4.0-alpha4" }, { "url": "http://public2.vulnerablecode.io/api/packages/432155?format=api", "purl": "pkg:maven/org.apache.httpcomponents/httpclient@4.0-beta1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-brhh-bnuu-ryff" }, { "vulnerability": "VCID-ea1s-bzzk-judm" }, { "vulnerability": "VCID-ks8v-spnp-qbd5" }, { "vulnerability": "VCID-yex4-8uky-nbeh" }, { "vulnerability": "VCID-ywmb-bdbw-6kgp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.httpcomponents/httpclient@4.0-beta1" }, { "url": "http://public2.vulnerablecode.io/api/packages/432156?format=api", "purl": "pkg:maven/org.apache.httpcomponents/httpclient@4.0-beta2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-brhh-bnuu-ryff" }, { "vulnerability": "VCID-ea1s-bzzk-judm" }, { "vulnerability": "VCID-ks8v-spnp-qbd5" }, { "vulnerability": "VCID-yex4-8uky-nbeh" }, { "vulnerability": "VCID-ywmb-bdbw-6kgp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.httpcomponents/httpclient@4.0-beta2" }, { "url": "http://public2.vulnerablecode.io/api/packages/392499?format=api", "purl": "pkg:maven/org.apache.httpcomponents/httpclient@4.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-brhh-bnuu-ryff" }, { "vulnerability": "VCID-ea1s-bzzk-judm" }, { "vulnerability": "VCID-ecrh-an7q-b3de" }, { "vulnerability": "VCID-ks8v-spnp-qbd5" }, { "vulnerability": "VCID-ywmb-bdbw-6kgp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.httpcomponents/httpclient@4.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/432157?format=api", "purl": "pkg:maven/org.apache.httpcomponents/httpclient@4.0.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-brhh-bnuu-ryff" }, { "vulnerability": "VCID-ea1s-bzzk-judm" }, { "vulnerability": "VCID-ecrh-an7q-b3de" }, { "vulnerability": "VCID-ks8v-spnp-qbd5" }, { "vulnerability": "VCID-ywmb-bdbw-6kgp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.httpcomponents/httpclient@4.0.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/432158?format=api", "purl": "pkg:maven/org.apache.httpcomponents/httpclient@4.0.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-brhh-bnuu-ryff" }, { "vulnerability": "VCID-ea1s-bzzk-judm" }, { "vulnerability": "VCID-ecrh-an7q-b3de" }, { "vulnerability": "VCID-ks8v-spnp-qbd5" }, { "vulnerability": "VCID-ywmb-bdbw-6kgp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.httpcomponents/httpclient@4.0.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/432159?format=api", "purl": "pkg:maven/org.apache.httpcomponents/httpclient@4.0.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-brhh-bnuu-ryff" }, { "vulnerability": "VCID-ea1s-bzzk-judm" }, { "vulnerability": "VCID-ecrh-an7q-b3de" }, { "vulnerability": "VCID-ks8v-spnp-qbd5" }, { "vulnerability": "VCID-ywmb-bdbw-6kgp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.httpcomponents/httpclient@4.0.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/432160?format=api", "purl": "pkg:maven/org.apache.httpcomponents/httpclient@4.1-alpha1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-brhh-bnuu-ryff" }, { "vulnerability": "VCID-ea1s-bzzk-judm" }, { "vulnerability": "VCID-ecrh-an7q-b3de" }, { "vulnerability": "VCID-ks8v-spnp-qbd5" }, { "vulnerability": "VCID-ywmb-bdbw-6kgp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.httpcomponents/httpclient@4.1-alpha1" }, { "url": "http://public2.vulnerablecode.io/api/packages/432161?format=api", "purl": "pkg:maven/org.apache.httpcomponents/httpclient@4.1-alpha2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-brhh-bnuu-ryff" }, { "vulnerability": "VCID-ea1s-bzzk-judm" }, { "vulnerability": "VCID-ecrh-an7q-b3de" }, { "vulnerability": "VCID-ks8v-spnp-qbd5" }, { "vulnerability": "VCID-ywmb-bdbw-6kgp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.httpcomponents/httpclient@4.1-alpha2" }, { "url": "http://public2.vulnerablecode.io/api/packages/432162?format=api", "purl": "pkg:maven/org.apache.httpcomponents/httpclient@4.1-beta1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-brhh-bnuu-ryff" }, { "vulnerability": "VCID-ea1s-bzzk-judm" }, { "vulnerability": "VCID-ecrh-an7q-b3de" }, { "vulnerability": "VCID-ks8v-spnp-qbd5" }, { "vulnerability": "VCID-ywmb-bdbw-6kgp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.httpcomponents/httpclient@4.1-beta1" }, { "url": "http://public2.vulnerablecode.io/api/packages/432163?format=api", "purl": "pkg:maven/org.apache.httpcomponents/httpclient@4.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-brhh-bnuu-ryff" }, { "vulnerability": "VCID-ea1s-bzzk-judm" }, { "vulnerability": "VCID-ecrh-an7q-b3de" }, { "vulnerability": "VCID-ks8v-spnp-qbd5" }, { "vulnerability": "VCID-ywmb-bdbw-6kgp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.httpcomponents/httpclient@4.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/384977?format=api", "purl": "pkg:maven/org.apache.httpcomponents/httpclient@4.1.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-brhh-bnuu-ryff" }, { "vulnerability": "VCID-ea1s-bzzk-judm" }, { "vulnerability": "VCID-ks8v-spnp-qbd5" }, { "vulnerability": "VCID-ywmb-bdbw-6kgp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.httpcomponents/httpclient@4.1.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/432164?format=api", "purl": "pkg:maven/org.apache.httpcomponents/httpclient@4.1.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-brhh-bnuu-ryff" }, { "vulnerability": "VCID-ea1s-bzzk-judm" }, { "vulnerability": "VCID-ks8v-spnp-qbd5" }, { "vulnerability": "VCID-ywmb-bdbw-6kgp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.httpcomponents/httpclient@4.1.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/432165?format=api", "purl": "pkg:maven/org.apache.httpcomponents/httpclient@4.1.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-brhh-bnuu-ryff" }, { "vulnerability": "VCID-ea1s-bzzk-judm" }, { "vulnerability": "VCID-ks8v-spnp-qbd5" }, { "vulnerability": "VCID-ywmb-bdbw-6kgp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.httpcomponents/httpclient@4.1.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/432166?format=api", "purl": "pkg:maven/org.apache.httpcomponents/httpclient@4.2-alpha1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-brhh-bnuu-ryff" }, { "vulnerability": "VCID-ea1s-bzzk-judm" }, { "vulnerability": "VCID-ks8v-spnp-qbd5" }, { "vulnerability": "VCID-ywmb-bdbw-6kgp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.httpcomponents/httpclient@4.2-alpha1" }, { "url": "http://public2.vulnerablecode.io/api/packages/432167?format=api", "purl": "pkg:maven/org.apache.httpcomponents/httpclient@4.2-beta1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-brhh-bnuu-ryff" }, { "vulnerability": "VCID-ea1s-bzzk-judm" }, { "vulnerability": "VCID-ks8v-spnp-qbd5" }, { "vulnerability": "VCID-ywmb-bdbw-6kgp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.httpcomponents/httpclient@4.2-beta1" }, { "url": "http://public2.vulnerablecode.io/api/packages/432168?format=api", "purl": "pkg:maven/org.apache.httpcomponents/httpclient@4.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-brhh-bnuu-ryff" }, { "vulnerability": "VCID-ea1s-bzzk-judm" }, { "vulnerability": "VCID-ks8v-spnp-qbd5" }, { "vulnerability": "VCID-ywmb-bdbw-6kgp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.httpcomponents/httpclient@4.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/432169?format=api", "purl": "pkg:maven/org.apache.httpcomponents/httpclient@4.2.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-brhh-bnuu-ryff" }, { "vulnerability": "VCID-ea1s-bzzk-judm" }, { "vulnerability": "VCID-ks8v-spnp-qbd5" }, { "vulnerability": "VCID-ywmb-bdbw-6kgp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.httpcomponents/httpclient@4.2.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/432170?format=api", "purl": "pkg:maven/org.apache.httpcomponents/httpclient@4.2.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-brhh-bnuu-ryff" }, { "vulnerability": "VCID-ea1s-bzzk-judm" }, { "vulnerability": "VCID-ks8v-spnp-qbd5" }, { "vulnerability": "VCID-ywmb-bdbw-6kgp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.httpcomponents/httpclient@4.2.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/14069?format=api", "purl": "pkg:maven/org.apache.httpcomponents/httpclient@4.2.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-brhh-bnuu-ryff" }, { "vulnerability": "VCID-ks8v-spnp-qbd5" }, { "vulnerability": "VCID-ywmb-bdbw-6kgp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.httpcomponents/httpclient@4.2.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/432171?format=api", "purl": "pkg:maven/org.apache.httpcomponents/httpclient@4.2.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-brhh-bnuu-ryff" }, { "vulnerability": "VCID-ks8v-spnp-qbd5" }, { "vulnerability": "VCID-ywmb-bdbw-6kgp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.httpcomponents/httpclient@4.2.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/432172?format=api", "purl": "pkg:maven/org.apache.httpcomponents/httpclient@4.2.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-brhh-bnuu-ryff" }, { "vulnerability": "VCID-ks8v-spnp-qbd5" }, { "vulnerability": "VCID-ywmb-bdbw-6kgp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.httpcomponents/httpclient@4.2.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/432173?format=api", "purl": "pkg:maven/org.apache.httpcomponents/httpclient@4.2.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-brhh-bnuu-ryff" }, { "vulnerability": "VCID-ks8v-spnp-qbd5" }, { "vulnerability": "VCID-ywmb-bdbw-6kgp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.httpcomponents/httpclient@4.2.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/432174?format=api", "purl": "pkg:maven/org.apache.httpcomponents/httpclient@4.3-alpha1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-brhh-bnuu-ryff" }, { "vulnerability": "VCID-ks8v-spnp-qbd5" }, { "vulnerability": "VCID-ywmb-bdbw-6kgp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.httpcomponents/httpclient@4.3-alpha1" }, { "url": "http://public2.vulnerablecode.io/api/packages/432175?format=api", "purl": "pkg:maven/org.apache.httpcomponents/httpclient@4.3-beta1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-brhh-bnuu-ryff" }, { "vulnerability": "VCID-ks8v-spnp-qbd5" }, { "vulnerability": "VCID-ywmb-bdbw-6kgp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.httpcomponents/httpclient@4.3-beta1" }, { "url": "http://public2.vulnerablecode.io/api/packages/432176?format=api", "purl": "pkg:maven/org.apache.httpcomponents/httpclient@4.3-beta2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-brhh-bnuu-ryff" }, { "vulnerability": "VCID-ks8v-spnp-qbd5" }, { "vulnerability": "VCID-ywmb-bdbw-6kgp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.httpcomponents/httpclient@4.3-beta2" }, { "url": "http://public2.vulnerablecode.io/api/packages/21767?format=api", "purl": "pkg:maven/org.apache.httpcomponents/httpclient@4.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-brhh-bnuu-ryff" }, { "vulnerability": "VCID-ks8v-spnp-qbd5" }, { "vulnerability": "VCID-n83p-nhp9-cyb8" }, { "vulnerability": "VCID-ywmb-bdbw-6kgp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.httpcomponents/httpclient@4.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/21768?format=api", "purl": "pkg:maven/org.apache.httpcomponents/httpclient@4.3.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-brhh-bnuu-ryff" }, { "vulnerability": "VCID-ks8v-spnp-qbd5" }, { "vulnerability": "VCID-ywmb-bdbw-6kgp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.httpcomponents/httpclient@4.3.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/432177?format=api", "purl": "pkg:maven/org.apache.httpcomponents/httpclient@4.3.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-brhh-bnuu-ryff" }, { "vulnerability": "VCID-ks8v-spnp-qbd5" }, { "vulnerability": "VCID-ywmb-bdbw-6kgp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.httpcomponents/httpclient@4.3.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/432178?format=api", "purl": "pkg:maven/org.apache.httpcomponents/httpclient@4.3.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-brhh-bnuu-ryff" }, { "vulnerability": "VCID-ks8v-spnp-qbd5" }, { "vulnerability": "VCID-ywmb-bdbw-6kgp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.httpcomponents/httpclient@4.3.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/432179?format=api", "purl": "pkg:maven/org.apache.httpcomponents/httpclient@4.3.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-brhh-bnuu-ryff" }, { "vulnerability": "VCID-ks8v-spnp-qbd5" }, { "vulnerability": "VCID-ywmb-bdbw-6kgp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.httpcomponents/httpclient@4.3.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/14068?format=api", "purl": "pkg:maven/org.apache.httpcomponents/httpclient@4.3.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-ks8v-spnp-qbd5" }, { "vulnerability": "VCID-ywmb-bdbw-6kgp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.httpcomponents/httpclient@4.3.5" } ], "references": [ { "reference_url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-October/167962.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-October/167962.html" }, { "reference_url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-October/167999.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-October/167999.html" }, { "reference_url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-October/168030.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-October/168030.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00032.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00032.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00033.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00033.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-5262.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-5262.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-5262", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01199", "scoring_system": "epss", "scoring_elements": "0.79302", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.01199", "scoring_system": "epss", "scoring_elements": "0.79367", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-5262" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1261538", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1261538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5262", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5262" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://github.com/apache/httpcomponents-client/commit/09027e7286974bf6b61f4106395da2623121db8d", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/apache/httpcomponents-client/commit/09027e7286974bf6b61f4106395da2623121db8d" }, { "reference_url": "https://github.com/apache/httpcomponents-client/commit/6705924879810f617a7a21d34f16b6c0d61e8d34", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/apache/httpcomponents-client/commit/6705924879810f617a7a21d34f16b6c0d61e8d34" }, { "reference_url": "https://github.com/apache/httpcomponents-client/commit/d954cd287dfcdad8f153e61181e20d253175ca8c", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/apache/httpcomponents-client/commit/d954cd287dfcdad8f153e61181e20d253175ca8c" }, { "reference_url": "https://issues.apache.org/jira/browse/HTTPCLIENT-1478", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://issues.apache.org/jira/browse/HTTPCLIENT-1478" }, { "reference_url": "https://jenkins.io/security/advisory/2018-02-26", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://jenkins.io/security/advisory/2018-02-26" }, { "reference_url": "https://jenkins.io/security/advisory/2018-02-26/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://jenkins.io/security/advisory/2018-02-26/" }, { "reference_url": "https://lists.apache.org/thread.html/519eb0fd45642dcecd9ff74cb3e71c20a4753f7d82e2f07864b5108f@%3Cdev.drill.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/519eb0fd45642dcecd9ff74cb3e71c20a4753f7d82e2f07864b5108f@%3Cdev.drill.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/b0656d359c7d40ec9f39c8cc61bca66802ef9a2a12ee199f5b0c1442@%3Cdev.drill.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/b0656d359c7d40ec9f39c8cc61bca66802ef9a2a12ee199f5b0c1442@%3Cdev.drill.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/f9bc3e55f4e28d1dcd1a69aae6d53e609a758e34d2869b4d798e13cc@%3Cissues.drill.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/f9bc3e55f4e28d1dcd1a69aae6d53e609a758e34d2869b4d798e13cc@%3Cissues.drill.apache.org%3E" }, { "reference_url": "http://svn.apache.org/viewvc?view=revision&revision=1626784", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://svn.apache.org/viewvc?view=revision&revision=1626784" }, { "reference_url": "http://www.securitytracker.com/id/1033743", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.securitytracker.com/id/1033743" }, { "reference_url": "http://www.ubuntu.com/usn/USN-2769-1", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.ubuntu.com/usn/USN-2769-1" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=798650", "reference_id": "798650", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=798650" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2015-5262", "reference_id": "CVE-2015-5262", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-5262" }, { "reference_url": "https://github.com/advisories/GHSA-fmj5-wv96-r2ch", "reference_id": "GHSA-fmj5-wv96-r2ch", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-fmj5-wv96-r2ch" }, { "reference_url": "https://usn.ubuntu.com/2769-1/", "reference_id": "USN-2769-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2769-1/" } ], "weaknesses": [ { "cwe_id": 770, "name": "Allocation of Resources Without Limits or Throttling", "description": "The product allocates a reusable resource or group of resources on behalf of an actor without imposing any restrictions on the size or number of resources that can be allocated, in violation of the intended security policy for that actor." }, { "cwe_id": 1035, "name": "OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017." }, { "cwe_id": 399, "name": "Resource Management Errors", "description": "Weaknesses in this category are related to improper management of system resources." }, { "cwe_id": 937, "name": "OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013." } ], "exploits": [], "severity_range_score": "4.0 - 7.5", "exploitability": "0.5", "weighted_severity": "6.2", "risk_score": 3.1, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ywmb-bdbw-6kgp" }