Vulnerability Instance

HTTP 200 OK
Allow: GET, HEAD, OPTIONS
Content-Type: application/json
Vary: Accept

{
    "url": "http://public2.vulnerablecode.io/api/vulnerabilities/56542?format=api",
    "vulnerability_id": "VCID-dqae-zqkh-mqdf",
    "summary": "The OpenVPN client is potentially vulnerable to the execution of arbitrary\n    code and the OpenVPN server is vulnerable to a Denial of Service issue.",
    "aliases": [
        {
            "alias": "CVE-2005-3393"
        }
    ],
    "fixed_packages": [
        {
            "url": "http://public2.vulnerablecode.io/api/packages/934108?format=api",
            "purl": "pkg:deb/debian/openvpn@2.0.5-1?distro=trixie",
            "is_vulnerable": false,
            "affected_by_vulnerabilities": [],
            "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/openvpn@2.0.5-1%3Fdistro=trixie"
        },
        {
            "url": "http://public2.vulnerablecode.io/api/packages/1035228?format=api",
            "purl": "pkg:deb/debian/openvpn@2.0.9-4",
            "is_vulnerable": true,
            "affected_by_vulnerabilities": [
                {
                    "vulnerability": "VCID-3d2h-6g1w-vyb5"
                },
                {
                    "vulnerability": "VCID-5ufa-f13v-8uea"
                },
                {
                    "vulnerability": "VCID-69y7-qv5p-gqar"
                },
                {
                    "vulnerability": "VCID-crrt-th9e-z3ay"
                },
                {
                    "vulnerability": "VCID-faqk-wzr3-77be"
                },
                {
                    "vulnerability": "VCID-htt5-x61p-2qar"
                },
                {
                    "vulnerability": "VCID-j1d4-djxq-dqct"
                },
                {
                    "vulnerability": "VCID-n8nh-wf64-8fgr"
                },
                {
                    "vulnerability": "VCID-rkee-udq8-afg2"
                },
                {
                    "vulnerability": "VCID-ruzb-y7qd-nfgc"
                },
                {
                    "vulnerability": "VCID-vucu-2pfy-93ds"
                },
                {
                    "vulnerability": "VCID-wk2j-j9y1-5yhp"
                },
                {
                    "vulnerability": "VCID-ydbr-c3uf-zbfb"
                },
                {
                    "vulnerability": "VCID-zuyu-zw1g-uqg7"
                }
            ],
            "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/openvpn@2.0.9-4"
        },
        {
            "url": "http://public2.vulnerablecode.io/api/packages/934104?format=api",
            "purl": "pkg:deb/debian/openvpn@2.5.1-3?distro=trixie",
            "is_vulnerable": true,
            "affected_by_vulnerabilities": [
                {
                    "vulnerability": "VCID-m93u-qysb-aqe8"
                },
                {
                    "vulnerability": "VCID-pndq-nwkn-cya3"
                }
            ],
            "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/openvpn@2.5.1-3%3Fdistro=trixie"
        },
        {
            "url": "http://public2.vulnerablecode.io/api/packages/934102?format=api",
            "purl": "pkg:deb/debian/openvpn@2.6.3-1%2Bdeb12u4?distro=trixie",
            "is_vulnerable": true,
            "affected_by_vulnerabilities": [
                {
                    "vulnerability": "VCID-m93u-qysb-aqe8"
                },
                {
                    "vulnerability": "VCID-pndq-nwkn-cya3"
                }
            ],
            "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/openvpn@2.6.3-1%252Bdeb12u4%3Fdistro=trixie"
        },
        {
            "url": "http://public2.vulnerablecode.io/api/packages/934107?format=api",
            "purl": "pkg:deb/debian/openvpn@2.6.14-1%2Bdeb13u1?distro=trixie",
            "is_vulnerable": true,
            "affected_by_vulnerabilities": [
                {
                    "vulnerability": "VCID-m93u-qysb-aqe8"
                },
                {
                    "vulnerability": "VCID-pndq-nwkn-cya3"
                }
            ],
            "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/openvpn@2.6.14-1%252Bdeb13u1%3Fdistro=trixie"
        },
        {
            "url": "http://public2.vulnerablecode.io/api/packages/934105?format=api",
            "purl": "pkg:deb/debian/openvpn@2.7.0-1?distro=trixie",
            "is_vulnerable": false,
            "affected_by_vulnerabilities": [],
            "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/openvpn@2.7.0-1%3Fdistro=trixie"
        },
        {
            "url": "http://public2.vulnerablecode.io/api/packages/934106?format=api",
            "purl": "pkg:deb/debian/openvpn@2.7.1-1?distro=trixie",
            "is_vulnerable": false,
            "affected_by_vulnerabilities": [],
            "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/openvpn@2.7.1-1%3Fdistro=trixie"
        },
        {
            "url": "http://public2.vulnerablecode.io/api/packages/1076110?format=api",
            "purl": "pkg:deb/debian/openvpn@2.7.2-1?distro=trixie",
            "is_vulnerable": false,
            "affected_by_vulnerabilities": [],
            "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/openvpn@2.7.2-1%3Fdistro=trixie"
        },
        {
            "url": "http://public2.vulnerablecode.io/api/packages/1081555?format=api",
            "purl": "pkg:deb/debian/openvpn@2.7.3-1?distro=trixie",
            "is_vulnerable": false,
            "affected_by_vulnerabilities": [],
            "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/openvpn@2.7.3-1%3Fdistro=trixie"
        },
        {
            "url": "http://public2.vulnerablecode.io/api/packages/83085?format=api",
            "purl": "pkg:ebuild/net-misc/openvpn@2.0.4",
            "is_vulnerable": false,
            "affected_by_vulnerabilities": [],
            "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/net-misc/openvpn@2.0.4"
        }
    ],
    "affected_packages": [
        {
            "url": "http://public2.vulnerablecode.io/api/packages/1035227?format=api",
            "purl": "pkg:deb/debian/openvpn@2.0-1sarge4",
            "is_vulnerable": true,
            "affected_by_vulnerabilities": [
                {
                    "vulnerability": "VCID-1ua8-gb48-27bp"
                },
                {
                    "vulnerability": "VCID-3d2h-6g1w-vyb5"
                },
                {
                    "vulnerability": "VCID-5sv2-yh8n-cubr"
                },
                {
                    "vulnerability": "VCID-5ufa-f13v-8uea"
                },
                {
                    "vulnerability": "VCID-69y7-qv5p-gqar"
                },
                {
                    "vulnerability": "VCID-7z4a-jb81-k3ct"
                },
                {
                    "vulnerability": "VCID-9pep-1c3x-vyen"
                },
                {
                    "vulnerability": "VCID-crrt-th9e-z3ay"
                },
                {
                    "vulnerability": "VCID-dqae-zqkh-mqdf"
                },
                {
                    "vulnerability": "VCID-faqk-wzr3-77be"
                },
                {
                    "vulnerability": "VCID-hdnv-2fe2-wqax"
                },
                {
                    "vulnerability": "VCID-htt5-x61p-2qar"
                },
                {
                    "vulnerability": "VCID-j1d4-djxq-dqct"
                },
                {
                    "vulnerability": "VCID-n8nh-wf64-8fgr"
                },
                {
                    "vulnerability": "VCID-rkee-udq8-afg2"
                },
                {
                    "vulnerability": "VCID-ruzb-y7qd-nfgc"
                },
                {
                    "vulnerability": "VCID-vucu-2pfy-93ds"
                },
                {
                    "vulnerability": "VCID-vxf8-ysa7-3qcu"
                },
                {
                    "vulnerability": "VCID-wk2j-j9y1-5yhp"
                },
                {
                    "vulnerability": "VCID-ydbr-c3uf-zbfb"
                },
                {
                    "vulnerability": "VCID-zuyu-zw1g-uqg7"
                }
            ],
            "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/openvpn@2.0-1sarge4"
        }
    ],
    "references": [
        {
            "reference_url": "http://marc.info/?l=bugtraq&m=113081023121059&w=2",
            "reference_id": "",
            "reference_type": "",
            "scores": [],
            "url": "http://marc.info/?l=bugtraq&m=113081023121059&w=2"
        },
        {
            "reference_url": "http://openvpn.net/changelog.html",
            "reference_id": "",
            "reference_type": "",
            "scores": [],
            "url": "http://openvpn.net/changelog.html"
        },
        {
            "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2005-3393",
            "reference_id": "",
            "reference_type": "",
            "scores": [
                {
                    "value": "0.0162",
                    "scoring_system": "epss",
                    "scoring_elements": "0.82028",
                    "published_at": "2026-05-15T12:55:00Z"
                },
                {
                    "value": "0.0162",
                    "scoring_system": "epss",
                    "scoring_elements": "0.81758",
                    "published_at": "2026-04-01T12:55:00Z"
                },
                {
                    "value": "0.0162",
                    "scoring_system": "epss",
                    "scoring_elements": "0.81768",
                    "published_at": "2026-04-02T12:55:00Z"
                },
                {
                    "value": "0.0162",
                    "scoring_system": "epss",
                    "scoring_elements": "0.81792",
                    "published_at": "2026-04-04T12:55:00Z"
                },
                {
                    "value": "0.0162",
                    "scoring_system": "epss",
                    "scoring_elements": "0.81789",
                    "published_at": "2026-04-07T12:55:00Z"
                },
                {
                    "value": "0.0162",
                    "scoring_system": "epss",
                    "scoring_elements": "0.81816",
                    "published_at": "2026-04-08T12:55:00Z"
                },
                {
                    "value": "0.0162",
                    "scoring_system": "epss",
                    "scoring_elements": "0.81822",
                    "published_at": "2026-04-09T12:55:00Z"
                },
                {
                    "value": "0.0162",
                    "scoring_system": "epss",
                    "scoring_elements": "0.81841",
                    "published_at": "2026-04-11T12:55:00Z"
                },
                {
                    "value": "0.0162",
                    "scoring_system": "epss",
                    "scoring_elements": "0.81829",
                    "published_at": "2026-04-12T12:55:00Z"
                },
                {
                    "value": "0.0162",
                    "scoring_system": "epss",
                    "scoring_elements": "0.81823",
                    "published_at": "2026-04-13T12:55:00Z"
                },
                {
                    "value": "0.0162",
                    "scoring_system": "epss",
                    "scoring_elements": "0.8186",
                    "published_at": "2026-04-18T12:55:00Z"
                },
                {
                    "value": "0.0162",
                    "scoring_system": "epss",
                    "scoring_elements": "0.81863",
                    "published_at": "2026-04-21T12:55:00Z"
                },
                {
                    "value": "0.0162",
                    "scoring_system": "epss",
                    "scoring_elements": "0.81887",
                    "published_at": "2026-04-24T12:55:00Z"
                },
                {
                    "value": "0.0162",
                    "scoring_system": "epss",
                    "scoring_elements": "0.81897",
                    "published_at": "2026-04-26T12:55:00Z"
                },
                {
                    "value": "0.0162",
                    "scoring_system": "epss",
                    "scoring_elements": "0.81902",
                    "published_at": "2026-04-29T12:55:00Z"
                },
                {
                    "value": "0.0162",
                    "scoring_system": "epss",
                    "scoring_elements": "0.8192",
                    "published_at": "2026-05-05T12:55:00Z"
                },
                {
                    "value": "0.0162",
                    "scoring_system": "epss",
                    "scoring_elements": "0.8194",
                    "published_at": "2026-05-07T12:55:00Z"
                },
                {
                    "value": "0.0162",
                    "scoring_system": "epss",
                    "scoring_elements": "0.81965",
                    "published_at": "2026-05-09T12:55:00Z"
                },
                {
                    "value": "0.0162",
                    "scoring_system": "epss",
                    "scoring_elements": "0.81962",
                    "published_at": "2026-05-11T12:55:00Z"
                },
                {
                    "value": "0.0162",
                    "scoring_system": "epss",
                    "scoring_elements": "0.81979",
                    "published_at": "2026-05-12T12:55:00Z"
                },
                {
                    "value": "0.0162",
                    "scoring_system": "epss",
                    "scoring_elements": "0.8202",
                    "published_at": "2026-05-14T12:55:00Z"
                }
            ],
            "url": "https://api.first.org/data/v1/epss?cve=CVE-2005-3393"
        },
        {
            "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3393",
            "reference_id": "",
            "reference_type": "",
            "scores": [],
            "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3393"
        },
        {
            "reference_url": "http://secunia.com/advisories/17376",
            "reference_id": "",
            "reference_type": "",
            "scores": [],
            "url": "http://secunia.com/advisories/17376"
        },
        {
            "reference_url": "http://secunia.com/advisories/17447",
            "reference_id": "",
            "reference_type": "",
            "scores": [],
            "url": "http://secunia.com/advisories/17447"
        },
        {
            "reference_url": "http://secunia.com/advisories/17452",
            "reference_id": "",
            "reference_type": "",
            "scores": [],
            "url": "http://secunia.com/advisories/17452"
        },
        {
            "reference_url": "http://secunia.com/advisories/17480",
            "reference_id": "",
            "reference_type": "",
            "scores": [],
            "url": "http://secunia.com/advisories/17480"
        },
        {
            "reference_url": "http://www.debian.org/security/2005/dsa-885",
            "reference_id": "",
            "reference_type": "",
            "scores": [],
            "url": "http://www.debian.org/security/2005/dsa-885"
        },
        {
            "reference_url": "http://www.gentoo.org/security/en/glsa/glsa-200511-07.xml",
            "reference_id": "",
            "reference_type": "",
            "scores": [],
            "url": "http://www.gentoo.org/security/en/glsa/glsa-200511-07.xml"
        },
        {
            "reference_url": "http://www.novell.com/linux/security/advisories/2005_25_sr.html",
            "reference_id": "",
            "reference_type": "",
            "scores": [],
            "url": "http://www.novell.com/linux/security/advisories/2005_25_sr.html"
        },
        {
            "reference_url": "http://www.securityfocus.com/archive/1/415487",
            "reference_id": "",
            "reference_type": "",
            "scores": [],
            "url": "http://www.securityfocus.com/archive/1/415487"
        },
        {
            "reference_url": "http://www.securityfocus.com/bid/15239",
            "reference_id": "",
            "reference_type": "",
            "scores": [],
            "url": "http://www.securityfocus.com/bid/15239"
        },
        {
            "reference_url": "http://www.vupen.com/english/advisories/2005/2255",
            "reference_id": "",
            "reference_type": "",
            "scores": [],
            "url": "http://www.vupen.com/english/advisories/2005/2255"
        },
        {
            "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=336751",
            "reference_id": "336751",
            "reference_type": "",
            "scores": [],
            "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=336751"
        },
        {
            "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openvpn:openvpn:2.0:*:*:*:*:*:*:*",
            "reference_id": "cpe:2.3:a:openvpn:openvpn:2.0:*:*:*:*:*:*:*",
            "reference_type": "",
            "scores": [],
            "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openvpn:openvpn:2.0:*:*:*:*:*:*:*"
        },
        {
            "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openvpn:openvpn:2.0_beta11:*:*:*:*:*:*:*",
            "reference_id": "cpe:2.3:a:openvpn:openvpn:2.0_beta11:*:*:*:*:*:*:*",
            "reference_type": "",
            "scores": [],
            "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openvpn:openvpn:2.0_beta11:*:*:*:*:*:*:*"
        },
        {
            "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openvpn:openvpn_access_server:2.0.1:*:*:*:*:*:*:*",
            "reference_id": "cpe:2.3:a:openvpn:openvpn_access_server:2.0.1:*:*:*:*:*:*:*",
            "reference_type": "",
            "scores": [],
            "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openvpn:openvpn_access_server:2.0.1:*:*:*:*:*:*:*"
        },
        {
            "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openvpn:openvpn_access_server:2.0.2:*:*:*:*:*:*:*",
            "reference_id": "cpe:2.3:a:openvpn:openvpn_access_server:2.0.2:*:*:*:*:*:*:*",
            "reference_type": "",
            "scores": [],
            "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openvpn:openvpn_access_server:2.0.2:*:*:*:*:*:*:*"
        },
        {
            "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2005-3393",
            "reference_id": "CVE-2005-3393",
            "reference_type": "",
            "scores": [
                {
                    "value": "7.5",
                    "scoring_system": "cvssv2",
                    "scoring_elements": "AV:N/AC:L/Au:N/C:P/I:P/A:P"
                }
            ],
            "url": "https://nvd.nist.gov/vuln/detail/CVE-2005-3393"
        },
        {
            "reference_url": "https://security.gentoo.org/glsa/200511-07",
            "reference_id": "GLSA-200511-07",
            "reference_type": "",
            "scores": [],
            "url": "https://security.gentoo.org/glsa/200511-07"
        }
    ],
    "weaknesses": [],
    "exploits": [],
    "severity_range_score": "7.5 - 7.5",
    "exploitability": "0.5",
    "weighted_severity": "6.8",
    "risk_score": 3.4,
    "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dqae-zqkh-mqdf"
}