Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/5629?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5629?format=api", "vulnerability_id": "VCID-fsjg-27y3-ykfe", "summary": "protobuf allows remote authenticated attackers to cause a heap-based buffer overflow.", "aliases": [ { "alias": "CVE-2015-5237" }, { "alias": "GHSA-jwvw-v7c5-m82h" }, { "alias": "PYSEC-2017-65" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/52697?format=api", "purl": "pkg:composer/google/protobuf@3.4.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3y78-ax9a-17e7" }, { "vulnerability": "VCID-uc1w-7er3-x7gb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/google/protobuf@3.4.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/51709?format=api", "purl": "pkg:maven/com.google.protobuf/protobuf-parent@3.4.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uc1w-7er3-x7gb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.google.protobuf/protobuf-parent@3.4.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/5387?format=api", "purl": "pkg:pypi/protobuf@3.4.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cg4f-vq8p-dub3" }, { "vulnerability": "VCID-hwx9-7pf9-ryce" }, { "vulnerability": "VCID-r3jf-wsh1-f3gb" }, { "vulnerability": "VCID-uc1w-7er3-x7gb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/protobuf@3.4.0" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/278816?format=api", "purl": "pkg:composer/google/protobuf@3.1.0-alpha-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3y78-ax9a-17e7" }, { "vulnerability": "VCID-fsjg-27y3-ykfe" }, { "vulnerability": "VCID-uc1w-7er3-x7gb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/google/protobuf@3.1.0-alpha-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/278817?format=api", "purl": "pkg:composer/google/protobuf@3.2.0-alpha-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3y78-ax9a-17e7" }, { "vulnerability": "VCID-fsjg-27y3-ykfe" }, { "vulnerability": "VCID-uc1w-7er3-x7gb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/google/protobuf@3.2.0-alpha-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/278818?format=api", "purl": "pkg:composer/google/protobuf@3.3.0rc1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3y78-ax9a-17e7" }, { "vulnerability": "VCID-fsjg-27y3-ykfe" }, { "vulnerability": "VCID-uc1w-7er3-x7gb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/google/protobuf@3.3.0rc1" }, { "url": "http://public2.vulnerablecode.io/api/packages/278819?format=api", "purl": "pkg:composer/google/protobuf@3.3.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3y78-ax9a-17e7" }, { "vulnerability": "VCID-fsjg-27y3-ykfe" }, { "vulnerability": "VCID-uc1w-7er3-x7gb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/google/protobuf@3.3.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/278820?format=api", "purl": "pkg:composer/google/protobuf@3.3.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3y78-ax9a-17e7" }, { "vulnerability": "VCID-fsjg-27y3-ykfe" }, { "vulnerability": "VCID-uc1w-7er3-x7gb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/google/protobuf@3.3.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/278821?format=api", "purl": "pkg:composer/google/protobuf@3.3.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3y78-ax9a-17e7" }, { "vulnerability": "VCID-fsjg-27y3-ykfe" }, { "vulnerability": "VCID-uc1w-7er3-x7gb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/google/protobuf@3.3.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/278822?format=api", "purl": "pkg:composer/google/protobuf@3.4.0rc1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3y78-ax9a-17e7" }, { "vulnerability": "VCID-fsjg-27y3-ykfe" }, { "vulnerability": "VCID-uc1w-7er3-x7gb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/google/protobuf@3.4.0rc1" }, { "url": "http://public2.vulnerablecode.io/api/packages/278823?format=api", "purl": "pkg:composer/google/protobuf@3.4.0rc2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3y78-ax9a-17e7" }, { "vulnerability": "VCID-fsjg-27y3-ykfe" }, { "vulnerability": "VCID-uc1w-7er3-x7gb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/google/protobuf@3.4.0rc2" }, { "url": "http://public2.vulnerablecode.io/api/packages/278824?format=api", "purl": "pkg:composer/google/protobuf@3.4.0rc3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3y78-ax9a-17e7" }, { "vulnerability": "VCID-fsjg-27y3-ykfe" }, { "vulnerability": "VCID-uc1w-7er3-x7gb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/google/protobuf@3.4.0rc3" }, { "url": "http://public2.vulnerablecode.io/api/packages/278717?format=api", "purl": "pkg:maven/com.google.protobuf/protobuf-parent@3.0.0-beta-3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fsjg-27y3-ykfe" }, { "vulnerability": "VCID-uc1w-7er3-x7gb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.google.protobuf/protobuf-parent@3.0.0-beta-3" }, { "url": "http://public2.vulnerablecode.io/api/packages/278718?format=api", "purl": "pkg:maven/com.google.protobuf/protobuf-parent@3.0.0-beta-4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fsjg-27y3-ykfe" }, { "vulnerability": "VCID-uc1w-7er3-x7gb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.google.protobuf/protobuf-parent@3.0.0-beta-4" }, { "url": "http://public2.vulnerablecode.io/api/packages/278719?format=api", "purl": "pkg:maven/com.google.protobuf/protobuf-parent@3.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fsjg-27y3-ykfe" }, { "vulnerability": "VCID-uc1w-7er3-x7gb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.google.protobuf/protobuf-parent@3.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/278720?format=api", "purl": "pkg:maven/com.google.protobuf/protobuf-parent@3.0.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fsjg-27y3-ykfe" }, { "vulnerability": "VCID-uc1w-7er3-x7gb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.google.protobuf/protobuf-parent@3.0.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/278721?format=api", "purl": "pkg:maven/com.google.protobuf/protobuf-parent@3.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fsjg-27y3-ykfe" }, { "vulnerability": "VCID-uc1w-7er3-x7gb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.google.protobuf/protobuf-parent@3.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/278722?format=api", "purl": "pkg:maven/com.google.protobuf/protobuf-parent@3.2.0rc2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fsjg-27y3-ykfe" }, { "vulnerability": "VCID-uc1w-7er3-x7gb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.google.protobuf/protobuf-parent@3.2.0rc2" }, { "url": "http://public2.vulnerablecode.io/api/packages/278723?format=api", "purl": "pkg:maven/com.google.protobuf/protobuf-parent@3.2.0-rc.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fsjg-27y3-ykfe" }, { "vulnerability": "VCID-uc1w-7er3-x7gb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.google.protobuf/protobuf-parent@3.2.0-rc.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/278724?format=api", "purl": "pkg:maven/com.google.protobuf/protobuf-parent@3.2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fsjg-27y3-ykfe" }, { "vulnerability": "VCID-uc1w-7er3-x7gb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.google.protobuf/protobuf-parent@3.2.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/278725?format=api", "purl": "pkg:maven/com.google.protobuf/protobuf-parent@3.3.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fsjg-27y3-ykfe" }, { "vulnerability": "VCID-uc1w-7er3-x7gb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.google.protobuf/protobuf-parent@3.3.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/278726?format=api", "purl": "pkg:maven/com.google.protobuf/protobuf-parent@3.3.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fsjg-27y3-ykfe" }, { "vulnerability": "VCID-uc1w-7er3-x7gb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.google.protobuf/protobuf-parent@3.3.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/5362?format=api", "purl": "pkg:pypi/protobuf@2.0.0b0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fsjg-27y3-ykfe" }, { "vulnerability": "VCID-uc1w-7er3-x7gb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/protobuf@2.0.0b0" }, { "url": "http://public2.vulnerablecode.io/api/packages/278874?format=api", "purl": "pkg:pypi/protobuf@2.0.0beta", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cg4f-vq8p-dub3" }, { "vulnerability": "VCID-fsjg-27y3-ykfe" }, { "vulnerability": "VCID-hwx9-7pf9-ryce" }, { "vulnerability": "VCID-r3jf-wsh1-f3gb" }, { "vulnerability": "VCID-uc1w-7er3-x7gb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/protobuf@2.0.0beta" }, { "url": "http://public2.vulnerablecode.io/api/packages/5363?format=api", "purl": "pkg:pypi/protobuf@2.0.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cg4f-vq8p-dub3" }, { "vulnerability": "VCID-fsjg-27y3-ykfe" }, { "vulnerability": "VCID-hwx9-7pf9-ryce" }, { "vulnerability": "VCID-r3jf-wsh1-f3gb" }, { "vulnerability": "VCID-uc1w-7er3-x7gb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/protobuf@2.0.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/5364?format=api", "purl": "pkg:pypi/protobuf@2.3.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cg4f-vq8p-dub3" }, { "vulnerability": "VCID-fsjg-27y3-ykfe" }, { "vulnerability": "VCID-hwx9-7pf9-ryce" }, { "vulnerability": "VCID-r3jf-wsh1-f3gb" }, { "vulnerability": "VCID-uc1w-7er3-x7gb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/protobuf@2.3.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/5365?format=api", "purl": "pkg:pypi/protobuf@2.4.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cg4f-vq8p-dub3" }, { "vulnerability": "VCID-fsjg-27y3-ykfe" }, { "vulnerability": "VCID-hwx9-7pf9-ryce" }, { "vulnerability": "VCID-r3jf-wsh1-f3gb" }, { "vulnerability": "VCID-uc1w-7er3-x7gb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/protobuf@2.4.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/5366?format=api", "purl": "pkg:pypi/protobuf@2.5.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cg4f-vq8p-dub3" }, { "vulnerability": "VCID-fsjg-27y3-ykfe" }, { "vulnerability": "VCID-hwx9-7pf9-ryce" }, { "vulnerability": "VCID-r3jf-wsh1-f3gb" }, { "vulnerability": "VCID-uc1w-7er3-x7gb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/protobuf@2.5.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/5367?format=api", "purl": "pkg:pypi/protobuf@2.6.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cg4f-vq8p-dub3" }, { "vulnerability": "VCID-fsjg-27y3-ykfe" }, { "vulnerability": "VCID-hwx9-7pf9-ryce" }, { "vulnerability": "VCID-r3jf-wsh1-f3gb" }, { "vulnerability": "VCID-uc1w-7er3-x7gb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/protobuf@2.6.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/5368?format=api", "purl": "pkg:pypi/protobuf@2.6.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cg4f-vq8p-dub3" }, { "vulnerability": "VCID-fsjg-27y3-ykfe" }, { "vulnerability": "VCID-hwx9-7pf9-ryce" }, { "vulnerability": "VCID-r3jf-wsh1-f3gb" }, { "vulnerability": "VCID-uc1w-7er3-x7gb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/protobuf@2.6.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/5369?format=api", "purl": "pkg:pypi/protobuf@3.0.0a2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cg4f-vq8p-dub3" }, { "vulnerability": "VCID-fsjg-27y3-ykfe" }, { "vulnerability": "VCID-hwx9-7pf9-ryce" }, { "vulnerability": "VCID-r3jf-wsh1-f3gb" }, { "vulnerability": "VCID-uc1w-7er3-x7gb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/protobuf@3.0.0a2" }, { "url": "http://public2.vulnerablecode.io/api/packages/5370?format=api", "purl": "pkg:pypi/protobuf@3.0.0a3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cg4f-vq8p-dub3" }, { "vulnerability": "VCID-fsjg-27y3-ykfe" }, { "vulnerability": "VCID-hwx9-7pf9-ryce" }, { "vulnerability": "VCID-r3jf-wsh1-f3gb" }, { "vulnerability": "VCID-uc1w-7er3-x7gb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/protobuf@3.0.0a3" }, { "url": "http://public2.vulnerablecode.io/api/packages/5371?format=api", "purl": "pkg:pypi/protobuf@3.0.0b1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cg4f-vq8p-dub3" }, { "vulnerability": "VCID-fsjg-27y3-ykfe" }, { "vulnerability": "VCID-hwx9-7pf9-ryce" }, { "vulnerability": "VCID-r3jf-wsh1-f3gb" }, { "vulnerability": "VCID-uc1w-7er3-x7gb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/protobuf@3.0.0b1" }, { "url": "http://public2.vulnerablecode.io/api/packages/5372?format=api", "purl": "pkg:pypi/protobuf@3.0.0b1.post1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cg4f-vq8p-dub3" }, { "vulnerability": "VCID-fsjg-27y3-ykfe" }, { "vulnerability": "VCID-hwx9-7pf9-ryce" }, { "vulnerability": "VCID-r3jf-wsh1-f3gb" }, { "vulnerability": "VCID-uc1w-7er3-x7gb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/protobuf@3.0.0b1.post1" }, { "url": "http://public2.vulnerablecode.io/api/packages/5373?format=api", "purl": "pkg:pypi/protobuf@3.0.0b1.post2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cg4f-vq8p-dub3" }, { "vulnerability": "VCID-fsjg-27y3-ykfe" }, { "vulnerability": "VCID-hwx9-7pf9-ryce" }, { "vulnerability": "VCID-r3jf-wsh1-f3gb" }, { "vulnerability": "VCID-uc1w-7er3-x7gb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/protobuf@3.0.0b1.post2" }, { "url": "http://public2.vulnerablecode.io/api/packages/5374?format=api", "purl": "pkg:pypi/protobuf@3.0.0b2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cg4f-vq8p-dub3" }, { "vulnerability": "VCID-fsjg-27y3-ykfe" }, { "vulnerability": "VCID-hwx9-7pf9-ryce" }, { "vulnerability": "VCID-r3jf-wsh1-f3gb" }, { "vulnerability": "VCID-uc1w-7er3-x7gb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/protobuf@3.0.0b2" }, { "url": "http://public2.vulnerablecode.io/api/packages/5375?format=api", "purl": "pkg:pypi/protobuf@3.0.0b2.post1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cg4f-vq8p-dub3" }, { "vulnerability": "VCID-fsjg-27y3-ykfe" }, { "vulnerability": "VCID-hwx9-7pf9-ryce" }, { "vulnerability": "VCID-r3jf-wsh1-f3gb" }, { "vulnerability": "VCID-uc1w-7er3-x7gb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/protobuf@3.0.0b2.post1" }, { "url": "http://public2.vulnerablecode.io/api/packages/5376?format=api", "purl": "pkg:pypi/protobuf@3.0.0b2.post2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cg4f-vq8p-dub3" }, { "vulnerability": "VCID-fsjg-27y3-ykfe" }, { "vulnerability": "VCID-hwx9-7pf9-ryce" }, { "vulnerability": "VCID-r3jf-wsh1-f3gb" }, { "vulnerability": "VCID-uc1w-7er3-x7gb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/protobuf@3.0.0b2.post2" }, { "url": "http://public2.vulnerablecode.io/api/packages/5377?format=api", "purl": "pkg:pypi/protobuf@3.0.0b3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cg4f-vq8p-dub3" }, { "vulnerability": "VCID-fsjg-27y3-ykfe" }, { "vulnerability": "VCID-hwx9-7pf9-ryce" }, { "vulnerability": "VCID-r3jf-wsh1-f3gb" }, { "vulnerability": "VCID-uc1w-7er3-x7gb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/protobuf@3.0.0b3" }, { "url": "http://public2.vulnerablecode.io/api/packages/5378?format=api", "purl": "pkg:pypi/protobuf@3.0.0b4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cg4f-vq8p-dub3" }, { "vulnerability": "VCID-fsjg-27y3-ykfe" }, { "vulnerability": "VCID-hwx9-7pf9-ryce" }, { "vulnerability": "VCID-r3jf-wsh1-f3gb" }, { "vulnerability": "VCID-uc1w-7er3-x7gb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/protobuf@3.0.0b4" }, { "url": "http://public2.vulnerablecode.io/api/packages/5379?format=api", "purl": "pkg:pypi/protobuf@3.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cg4f-vq8p-dub3" }, { "vulnerability": "VCID-fsjg-27y3-ykfe" }, { "vulnerability": "VCID-hwx9-7pf9-ryce" }, { "vulnerability": "VCID-r3jf-wsh1-f3gb" }, { "vulnerability": "VCID-uc1w-7er3-x7gb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/protobuf@3.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/5380?format=api", "purl": "pkg:pypi/protobuf@3.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cg4f-vq8p-dub3" }, { "vulnerability": "VCID-fsjg-27y3-ykfe" }, { "vulnerability": "VCID-hwx9-7pf9-ryce" }, { "vulnerability": "VCID-r3jf-wsh1-f3gb" }, { "vulnerability": "VCID-uc1w-7er3-x7gb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/protobuf@3.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/5381?format=api", "purl": "pkg:pypi/protobuf@3.1.0.post1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cg4f-vq8p-dub3" }, { "vulnerability": "VCID-fsjg-27y3-ykfe" }, { "vulnerability": "VCID-hwx9-7pf9-ryce" }, { "vulnerability": "VCID-r3jf-wsh1-f3gb" }, { "vulnerability": "VCID-uc1w-7er3-x7gb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/protobuf@3.1.0.post1" }, { "url": "http://public2.vulnerablecode.io/api/packages/5382?format=api", "purl": "pkg:pypi/protobuf@3.2.0rc1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cg4f-vq8p-dub3" }, { "vulnerability": "VCID-fsjg-27y3-ykfe" }, { "vulnerability": "VCID-hwx9-7pf9-ryce" }, { "vulnerability": "VCID-r3jf-wsh1-f3gb" }, { "vulnerability": "VCID-uc1w-7er3-x7gb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/protobuf@3.2.0rc1" }, { "url": "http://public2.vulnerablecode.io/api/packages/5383?format=api", "purl": "pkg:pypi/protobuf@3.2.0rc1.post1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cg4f-vq8p-dub3" }, { "vulnerability": "VCID-fsjg-27y3-ykfe" }, { "vulnerability": "VCID-hwx9-7pf9-ryce" }, { "vulnerability": "VCID-r3jf-wsh1-f3gb" }, { "vulnerability": "VCID-uc1w-7er3-x7gb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/protobuf@3.2.0rc1.post1" }, { "url": "http://public2.vulnerablecode.io/api/packages/5384?format=api", "purl": "pkg:pypi/protobuf@3.2.0rc2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cg4f-vq8p-dub3" }, { "vulnerability": "VCID-fsjg-27y3-ykfe" }, { "vulnerability": "VCID-hwx9-7pf9-ryce" }, { "vulnerability": "VCID-r3jf-wsh1-f3gb" }, { "vulnerability": "VCID-uc1w-7er3-x7gb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/protobuf@3.2.0rc2" }, { "url": "http://public2.vulnerablecode.io/api/packages/5385?format=api", "purl": "pkg:pypi/protobuf@3.2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cg4f-vq8p-dub3" }, { "vulnerability": "VCID-fsjg-27y3-ykfe" }, { "vulnerability": "VCID-hwx9-7pf9-ryce" }, { "vulnerability": "VCID-r3jf-wsh1-f3gb" }, { "vulnerability": "VCID-uc1w-7er3-x7gb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/protobuf@3.2.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/5386?format=api", "purl": "pkg:pypi/protobuf@3.3.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cg4f-vq8p-dub3" }, { "vulnerability": "VCID-fsjg-27y3-ykfe" }, { "vulnerability": "VCID-hwx9-7pf9-ryce" }, { "vulnerability": "VCID-r3jf-wsh1-f3gb" }, { "vulnerability": "VCID-uc1w-7er3-x7gb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/protobuf@3.3.0" } ], "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-5237.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-5237.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-5237", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00763", "scoring_system": "epss", "scoring_elements": "0.73476", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.00763", "scoring_system": "epss", "scoring_elements": "0.73319", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00763", "scoring_system": "epss", "scoring_elements": "0.73458", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00763", "scoring_system": "epss", "scoring_elements": "0.73456", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00763", "scoring_system": "epss", "scoring_elements": "0.7345", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.00763", "scoring_system": "epss", "scoring_elements": "0.73328", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00763", "scoring_system": "epss", "scoring_elements": "0.73352", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00763", "scoring_system": "epss", "scoring_elements": "0.73324", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00763", "scoring_system": "epss", "scoring_elements": "0.73361", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00763", "scoring_system": "epss", "scoring_elements": "0.73374", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00763", "scoring_system": "epss", "scoring_elements": "0.73397", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00763", "scoring_system": "epss", "scoring_elements": "0.73377", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00763", "scoring_system": "epss", "scoring_elements": "0.7337", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00763", "scoring_system": "epss", "scoring_elements": "0.73412", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00763", "scoring_system": "epss", "scoring_elements": "0.73419", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00763", "scoring_system": "epss", "scoring_elements": "0.73413", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00763", "scoring_system": "epss", "scoring_elements": "0.73447", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-5237" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1256426", "reference_id": "", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1256426" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5237", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5237" }, { "reference_url": "https://github.com/advisories/GHSA-jwvw-v7c5-m82h", "reference_id": "", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-jwvw-v7c5-m82h" }, { "reference_url": "https://github.com/github/advisory-database/issues/5796", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/github/advisory-database/issues/5796" }, { "reference_url": "https://github.com/google/protobuf", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/google/protobuf" }, { "reference_url": "https://github.com/google/protobuf/issues/760", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/google/protobuf/issues/760" }, { "reference_url": "https://github.com/google/protobuf/releases/tag/v3.4.0", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/google/protobuf/releases/tag/v3.4.0" }, { "reference_url": "https://github.com/pypa/advisory-database/tree/main/vulns/protobuf/PYSEC-2017-65.yaml", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/pypa/advisory-database/tree/main/vulns/protobuf/PYSEC-2017-65.yaml" }, { "reference_url": "https://lists.apache.org/thread.html/519eb0fd45642dcecd9ff74cb3e71c20a4753f7d82e2f07864b5108f@%3Cdev.drill.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/519eb0fd45642dcecd9ff74cb3e71c20a4753f7d82e2f07864b5108f@%3Cdev.drill.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/519eb0fd45642dcecd9ff74cb3e71c20a4753f7d82e2f07864b5108f%40%3Cdev.drill.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/519eb0fd45642dcecd9ff74cb3e71c20a4753f7d82e2f07864b5108f%40%3Cdev.drill.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/b0656d359c7d40ec9f39c8cc61bca66802ef9a2a12ee199f5b0c1442@%3Cdev.drill.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/b0656d359c7d40ec9f39c8cc61bca66802ef9a2a12ee199f5b0c1442@%3Cdev.drill.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/b0656d359c7d40ec9f39c8cc61bca66802ef9a2a12ee199f5b0c1442%40%3Cdev.drill.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/b0656d359c7d40ec9f39c8cc61bca66802ef9a2a12ee199f5b0c1442%40%3Cdev.drill.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/f9bc3e55f4e28d1dcd1a69aae6d53e609a758e34d2869b4d798e13cc@%3Cissues.drill.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/f9bc3e55f4e28d1dcd1a69aae6d53e609a758e34d2869b4d798e13cc@%3Cissues.drill.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/f9bc3e55f4e28d1dcd1a69aae6d53e609a758e34d2869b4d798e13cc%40%3Cissues.drill.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/f9bc3e55f4e28d1dcd1a69aae6d53e609a758e34d2869b4d798e13cc%40%3Cissues.drill.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r00097d0b5b6164ea428554007121d5dc1f88ba2af7b9e977a10572cd@%3Cdev.hbase.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r00097d0b5b6164ea428554007121d5dc1f88ba2af7b9e977a10572cd@%3Cdev.hbase.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r00097d0b5b6164ea428554007121d5dc1f88ba2af7b9e977a10572cd%40%3Cdev.hbase.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r00097d0b5b6164ea428554007121d5dc1f88ba2af7b9e977a10572cd%40%3Cdev.hbase.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r00d9ab1fc0f1daf14cd4386564dd84f7889404438d81462c86dfa836@%3Ccommon-dev.hadoop.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r00d9ab1fc0f1daf14cd4386564dd84f7889404438d81462c86dfa836@%3Ccommon-dev.hadoop.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r00d9ab1fc0f1daf14cd4386564dd84f7889404438d81462c86dfa836%40%3Ccommon-dev.hadoop.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r00d9ab1fc0f1daf14cd4386564dd84f7889404438d81462c86dfa836%40%3Ccommon-dev.hadoop.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r02e39d7beb32eebcdbb4b516e95f67d71c90d5d462b26f4078d21eeb@%3Cdev.flink.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r02e39d7beb32eebcdbb4b516e95f67d71c90d5d462b26f4078d21eeb@%3Cdev.flink.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r02e39d7beb32eebcdbb4b516e95f67d71c90d5d462b26f4078d21eeb@%3Cuser.flink.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r02e39d7beb32eebcdbb4b516e95f67d71c90d5d462b26f4078d21eeb@%3Cuser.flink.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r02e39d7beb32eebcdbb4b516e95f67d71c90d5d462b26f4078d21eeb%40%3Cdev.flink.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r02e39d7beb32eebcdbb4b516e95f67d71c90d5d462b26f4078d21eeb%40%3Cdev.flink.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r02e39d7beb32eebcdbb4b516e95f67d71c90d5d462b26f4078d21eeb%40%3Cuser.flink.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r02e39d7beb32eebcdbb4b516e95f67d71c90d5d462b26f4078d21eeb%40%3Cuser.flink.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r0ca83171c4898dc92b86fa6f484a7be1dc96206765f4d01dce0f1b28@%3Ccommon-issues.hadoop.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r0ca83171c4898dc92b86fa6f484a7be1dc96206765f4d01dce0f1b28@%3Ccommon-issues.hadoop.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r0ca83171c4898dc92b86fa6f484a7be1dc96206765f4d01dce0f1b28%40%3Ccommon-issues.hadoop.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r0ca83171c4898dc92b86fa6f484a7be1dc96206765f4d01dce0f1b28%40%3Ccommon-issues.hadoop.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r1263fa5b51e4ec3cb8f09ff40e4747428c71198e9bee93349ec96a3c@%3Ccommits.pulsar.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r1263fa5b51e4ec3cb8f09ff40e4747428c71198e9bee93349ec96a3c@%3Ccommits.pulsar.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r1263fa5b51e4ec3cb8f09ff40e4747428c71198e9bee93349ec96a3c%40%3Ccommits.pulsar.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r1263fa5b51e4ec3cb8f09ff40e4747428c71198e9bee93349ec96a3c%40%3Ccommits.pulsar.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r14fa8d38d5757254f1a2e112270c996711d514de2e3b01c93d397ab4@%3Cissues.spark.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r14fa8d38d5757254f1a2e112270c996711d514de2e3b01c93d397ab4@%3Cissues.spark.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r14fa8d38d5757254f1a2e112270c996711d514de2e3b01c93d397ab4%40%3Cissues.spark.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r14fa8d38d5757254f1a2e112270c996711d514de2e3b01c93d397ab4%40%3Cissues.spark.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r17dc6f394429f6bffb5e4c66555d93c2e9923cbbdc5a93db9a56c1c7@%3Ccommits.pulsar.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r17dc6f394429f6bffb5e4c66555d93c2e9923cbbdc5a93db9a56c1c7@%3Ccommits.pulsar.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r17dc6f394429f6bffb5e4c66555d93c2e9923cbbdc5a93db9a56c1c7%40%3Ccommits.pulsar.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r17dc6f394429f6bffb5e4c66555d93c2e9923cbbdc5a93db9a56c1c7%40%3Ccommits.pulsar.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r1d274d647b3c2060df9be21eade4ce56d3a59998cf19ac72662dd994@%3Ccommits.pulsar.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r1d274d647b3c2060df9be21eade4ce56d3a59998cf19ac72662dd994@%3Ccommits.pulsar.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r1d274d647b3c2060df9be21eade4ce56d3a59998cf19ac72662dd994%40%3Ccommits.pulsar.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r1d274d647b3c2060df9be21eade4ce56d3a59998cf19ac72662dd994%40%3Ccommits.pulsar.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r2ea33ce5591a9cb9ed52750b6ab42ab658f529a7028c3166ba93c7d5@%3Ccommon-issues.hadoop.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r2ea33ce5591a9cb9ed52750b6ab42ab658f529a7028c3166ba93c7d5@%3Ccommon-issues.hadoop.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r2ea33ce5591a9cb9ed52750b6ab42ab658f529a7028c3166ba93c7d5%40%3Ccommon-issues.hadoop.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r2ea33ce5591a9cb9ed52750b6ab42ab658f529a7028c3166ba93c7d5%40%3Ccommon-issues.hadoop.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r320dc858da88846ba00bb077bcca2cdf75b7dde0f6eb3a3d60dba6a1@%3Ccommits.pulsar.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r320dc858da88846ba00bb077bcca2cdf75b7dde0f6eb3a3d60dba6a1@%3Ccommits.pulsar.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r320dc858da88846ba00bb077bcca2cdf75b7dde0f6eb3a3d60dba6a1%40%3Ccommits.pulsar.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r320dc858da88846ba00bb077bcca2cdf75b7dde0f6eb3a3d60dba6a1%40%3Ccommits.pulsar.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r42e47994734cd1980ef3e204a40555336e10cc80096927aca2f37d90@%3Ccommits.pulsar.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r42e47994734cd1980ef3e204a40555336e10cc80096927aca2f37d90@%3Ccommits.pulsar.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r42e47994734cd1980ef3e204a40555336e10cc80096927aca2f37d90%40%3Ccommits.pulsar.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r42e47994734cd1980ef3e204a40555336e10cc80096927aca2f37d90%40%3Ccommits.pulsar.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r42ef6acfb0d86a2df0c2390702ecbe97d2104a331560f2790d17ca69@%3Ccommits.pulsar.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r42ef6acfb0d86a2df0c2390702ecbe97d2104a331560f2790d17ca69@%3Ccommits.pulsar.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r42ef6acfb0d86a2df0c2390702ecbe97d2104a331560f2790d17ca69%40%3Ccommits.pulsar.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r42ef6acfb0d86a2df0c2390702ecbe97d2104a331560f2790d17ca69%40%3Ccommits.pulsar.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r4886108206d4c535db9b20c813fe4723d4fe6a91b9278382af8b9d08@%3Cissues.spark.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r4886108206d4c535db9b20c813fe4723d4fe6a91b9278382af8b9d08@%3Cissues.spark.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r4886108206d4c535db9b20c813fe4723d4fe6a91b9278382af8b9d08%40%3Cissues.spark.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r4886108206d4c535db9b20c813fe4723d4fe6a91b9278382af8b9d08%40%3Cissues.spark.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r4ef574a5621b0e670a3ce641e9922543e34f22bf4c9ee9584aa67fcf@%3Cissues.hbase.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r4ef574a5621b0e670a3ce641e9922543e34f22bf4c9ee9584aa67fcf@%3Cissues.hbase.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r4ef574a5621b0e670a3ce641e9922543e34f22bf4c9ee9584aa67fcf%40%3Cissues.hbase.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r4ef574a5621b0e670a3ce641e9922543e34f22bf4c9ee9584aa67fcf%40%3Cissues.hbase.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r5741f4dbdd129dbb9885f5fb170dc1b24a06b9313bedef5e67fded94@%3Cissues.spark.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r5741f4dbdd129dbb9885f5fb170dc1b24a06b9313bedef5e67fded94@%3Cissues.spark.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r5741f4dbdd129dbb9885f5fb170dc1b24a06b9313bedef5e67fded94%40%3Cissues.spark.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r5741f4dbdd129dbb9885f5fb170dc1b24a06b9313bedef5e67fded94%40%3Cissues.spark.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r5e52caf41dc49df55b4ee80758356fe1ff2a88179ff24c685de7c28d@%3Ccommits.pulsar.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r5e52caf41dc49df55b4ee80758356fe1ff2a88179ff24c685de7c28d@%3Ccommits.pulsar.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r5e52caf41dc49df55b4ee80758356fe1ff2a88179ff24c685de7c28d%40%3Ccommits.pulsar.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r5e52caf41dc49df55b4ee80758356fe1ff2a88179ff24c685de7c28d%40%3Ccommits.pulsar.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r764fc66435ee4d185d359c28c0887d3e5866d7292a8d5598d9e7cbc4@%3Ccommon-issues.hadoop.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r764fc66435ee4d185d359c28c0887d3e5866d7292a8d5598d9e7cbc4@%3Ccommon-issues.hadoop.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r764fc66435ee4d185d359c28c0887d3e5866d7292a8d5598d9e7cbc4%40%3Ccommon-issues.hadoop.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r764fc66435ee4d185d359c28c0887d3e5866d7292a8d5598d9e7cbc4%40%3Ccommon-issues.hadoop.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r7fed8dd9bee494094e7011cf3c2ab75bd8754ea314c6734688c42932@%3Ccommon-issues.hadoop.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r7fed8dd9bee494094e7011cf3c2ab75bd8754ea314c6734688c42932@%3Ccommon-issues.hadoop.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r7fed8dd9bee494094e7011cf3c2ab75bd8754ea314c6734688c42932%40%3Ccommon-issues.hadoop.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r7fed8dd9bee494094e7011cf3c2ab75bd8754ea314c6734688c42932%40%3Ccommon-issues.hadoop.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r85c9a764b573c786224688cc906c27e28343e18f5b33387f94cae90f@%3Ccommits.pulsar.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r85c9a764b573c786224688cc906c27e28343e18f5b33387f94cae90f@%3Ccommits.pulsar.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r85c9a764b573c786224688cc906c27e28343e18f5b33387f94cae90f%40%3Ccommits.pulsar.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r85c9a764b573c786224688cc906c27e28343e18f5b33387f94cae90f%40%3Ccommits.pulsar.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/ra28fed69eef3a71e5fe5daea001d0456b05b102044237330ec5c7c82@%3Ccommits.pulsar.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/ra28fed69eef3a71e5fe5daea001d0456b05b102044237330ec5c7c82@%3Ccommits.pulsar.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/ra28fed69eef3a71e5fe5daea001d0456b05b102044237330ec5c7c82%40%3Ccommits.pulsar.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/ra28fed69eef3a71e5fe5daea001d0456b05b102044237330ec5c7c82%40%3Ccommits.pulsar.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rb40dc9d63a5331bce8e80865b7fa3af9dd31e16555affd697b6f3526@%3Cissues.spark.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/rb40dc9d63a5331bce8e80865b7fa3af9dd31e16555affd697b6f3526@%3Cissues.spark.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rb40dc9d63a5331bce8e80865b7fa3af9dd31e16555affd697b6f3526%40%3Cissues.spark.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/rb40dc9d63a5331bce8e80865b7fa3af9dd31e16555affd697b6f3526%40%3Cissues.spark.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rb71dac1d9dd4e8a8ae3dbc033aeae514eda9be1263c1df3b42a530a2@%3Ccommits.pulsar.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/rb71dac1d9dd4e8a8ae3dbc033aeae514eda9be1263c1df3b42a530a2@%3Ccommits.pulsar.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rb71dac1d9dd4e8a8ae3dbc033aeae514eda9be1263c1df3b42a530a2%40%3Ccommits.pulsar.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/rb71dac1d9dd4e8a8ae3dbc033aeae514eda9be1263c1df3b42a530a2%40%3Ccommits.pulsar.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rd64381fb8f92d640c1975dc50dcdf1b8512e02a2a7b20292d3565cae@%3Cissues.hbase.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/rd64381fb8f92d640c1975dc50dcdf1b8512e02a2a7b20292d3565cae@%3Cissues.hbase.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rd64381fb8f92d640c1975dc50dcdf1b8512e02a2a7b20292d3565cae%40%3Cissues.hbase.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/rd64381fb8f92d640c1975dc50dcdf1b8512e02a2a7b20292d3565cae%40%3Cissues.hbase.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/re6d04a214424a97ea59c62190d79316edf311a0a6346524dfef3b940@%3Ccommits.pulsar.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/re6d04a214424a97ea59c62190d79316edf311a0a6346524dfef3b940@%3Ccommits.pulsar.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/re6d04a214424a97ea59c62190d79316edf311a0a6346524dfef3b940%40%3Ccommits.pulsar.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/re6d04a214424a97ea59c62190d79316edf311a0a6346524dfef3b940%40%3Ccommits.pulsar.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rf7539287c90be979bac94af9aaba34118fbf968864944b4871af48dd@%3Ccommits.pulsar.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/rf7539287c90be979bac94af9aaba34118fbf968864944b4871af48dd@%3Ccommits.pulsar.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rf7539287c90be979bac94af9aaba34118fbf968864944b4871af48dd%40%3Ccommits.pulsar.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/rf7539287c90be979bac94af9aaba34118fbf968864944b4871af48dd%40%3Ccommits.pulsar.apache.org%3E" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2015/08/27/2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2015/08/27/2" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:google:protobuf:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:google:protobuf:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:google:protobuf:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2015-5237", "reference_id": "CVE-2015-5237", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:S/C:P/I:P/A:P" }, { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-5237" }, { "reference_url": "https://usn.ubuntu.com/5769-1/", "reference_id": "USN-5769-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5769-1/" } ], "weaknesses": [ { "cwe_id": 787, "name": "Out-of-bounds Write", "description": "The product writes data past the end, or before the beginning, of the intended buffer." }, { "cwe_id": 937, "name": "OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013." }, { "cwe_id": 1035, "name": "OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017." }, { "cwe_id": 190, "name": "Integer Overflow or Wraparound", "description": "The product performs a calculation that can produce an integer overflow or wraparound, when the logic assumes that the resulting value will always be larger than the original value. This can introduce other weaknesses when the calculation is used for resource management or execution control." }, { "cwe_id": 131, "name": "Incorrect Calculation of Buffer Size", "description": "The product does not correctly calculate the size to be used when allocating a buffer, which could lead to a buffer overflow." }, { "cwe_id": 122, "name": "Heap-based Buffer Overflow", "description": "A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc()." } ], "exploits": [], "severity_range_score": "6.5 - 8.9", "exploitability": "0.5", "weighted_severity": "8.0", "risk_score": 4.0, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fsjg-27y3-ykfe" }