{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6326?format=json","vulnerability_id":"VCID-m698-mm6j-rfbw","summary":"xml external entity injection","aliases":[{"alias":"CVE-2017-5992"},{"alias":"GHSA-chqf-hx79-gxc6"},{"alias":"PYSEC-2017-48"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/3086?format=json","purl":"pkg:alpm/archlinux/python-openpyxl@2.4.1-1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/python-openpyxl@2.4.1-1"},{"url":"http://public2.vulnerablecode.io/api/packages/6461?format=json","purl":"pkg:deb/debian/openpyxl@2.3.0-3","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/openpyxl@2.3.0-3"},{"url":"http://public2.vulnerablecode.io/api/packages/9691?format=json","purl":"pkg:pypi/openpyxl@2.4.1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@2.4.1"}],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/3085?format=json","purl":"pkg:alpm/archlinux/python-openpyxl@2.4.0-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/python-openpyxl@2.4.0-1"},{"url":"http://public2.vulnerablecode.io/api/packages/6457?format=json","purl":"pkg:deb/debian/openpyxl@1.1.0-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/openpyxl@1.1.0-1"},{"url":"http://public2.vulnerablecode.io/api/packages/6458?format=json","purl":"pkg:deb/debian/openpyxl@1.5.8-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/openpyxl@1.5.8-1"},{"url":"http://public2.vulnerablecode.io/api/packages/6459?format=json","purl":"pkg:deb/debian/openpyxl@1.7.0%2Bds1-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/openpyxl@1.7.0%252Bds1-1"},{"url":"http://public2.vulnerablecode.io/api/packages/6460?format=json","purl":"pkg:deb/debian/openpyxl@2.3.0-2~bpo8%2B1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/openpyxl@2.3.0-2~bpo8%252B1"},{"url":"http://public2.vulnerablecode.io/api/packages/9643?format=json","purl":"pkg:pypi/openpyxl@1.1.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@1.1.0"},{"url":"http://public2.vulnerablecode.io/api/packages/9644?format=json","purl":"pkg:pypi/openpyxl@1.1.5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@1.1.5"},{"url":"http://public2.vulnerablecode.io/api/packages/9645?format=json","purl":"pkg:pypi/openpyxl@1.1.6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@1.1.6"},{"url":"http://public2.vulnerablecode.io/api/packages/9646?format=json","purl":"pkg:pypi/openpyxl@1.1.7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@1.1.7"},{"url":"http://public2.vulnerablecode.io/api/packages/9647?format=json","purl":"pkg:pypi/openpyxl@1.2.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@1.2.3"},{"url":"http://public2.vulnerablecode.io/api/packages/9648?format=json","purl":"pkg:pypi/openpyxl@1.5.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@1.5.0"},{"url":"http://public2.vulnerablecode.io/api/packages/9649?format=json","purl":"pkg:pypi/openpyxl@1.5.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@1.5.1"},{"url":"http://public2.vulnerablecode.io/api/packages/9650?format=json","purl":"pkg:pypi/openpyxl@1.5.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@1.5.2"},{"url":"http://public2.vulnerablecode.io/api/packages/9651?format=json","purl":"pkg:pypi/openpyxl@1.5.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@1.5.3"},{"url":"http://public2.vulnerablecode.io/api/packages/9652?format=json","purl":"pkg:pypi/openpyxl@1.5.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@1.5.4"},{"url":"http://public2.vulnerablecode.io/api/packages/9653?format=json","purl":"pkg:pypi/openpyxl@1.5.5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@1.5.5"},{"url":"http://public2.vulnerablecode.io/api/packages/9654?format=json","purl":"pkg:pypi/openpyxl@1.5.6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@1.5.6"},{"url":"http://public2.vulnerablecode.io/api/packages/9655?format=json","purl":"pkg:pypi/openpyxl@1.5.7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@1.5.7"},{"url":"http://public2.vulnerablecode.io/api/packages/9656?format=json","purl":"pkg:pypi/openpyxl@1.5.8","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@1.5.8"},{"url":"http://public2.vulnerablecode.io/api/packages/9657?format=json","purl":"pkg:pypi/openpyxl@1.6.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@1.6.1"},{"url":"http://public2.vulnerablecode.io/api/packages/9658?format=json","purl":"pkg:pypi/openpyxl@1.6.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@1.6.2"},{"url":"http://public2.vulnerablecode.io/api/packages/9659?format=json","purl":"pkg:pypi/openpyxl@1.7.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@1.7.0"},{"url":"http://public2.vulnerablecode.io/api/packages/9660?format=json","purl":"pkg:pypi/openpyxl@1.8.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@1.8.0"},{"url":"http://public2.vulnerablecode.io/api/packages/9661?format=json","purl":"pkg:pypi/openpyxl@1.8.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@1.8.1"},{"url":"http://public2.vulnerablecode.io/api/packages/9662?format=json","purl":"pkg:pypi/openpyxl@1.8.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@1.8.2"},{"url":"http://public2.vulnerablecode.io/api/packages/9663?format=json","purl":"pkg:pypi/openpyxl@1.8.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@1.8.3"},{"url":"http://public2.vulnerablecode.io/api/packages/9664?format=json","purl":"pkg:pypi/openpyxl@1.8.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@1.8.4"},{"url":"http://public2.vulnerablecode.io/api/packages/9665?format=json","purl":"pkg:pypi/openpyxl@1.8.5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@1.8.5"},{"url":"http://public2.vulnerablecode.io/api/packages/9666?format=json","purl":"pkg:pypi/openpyxl@1.8.6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@1.8.6"},{"url":"http://public2.vulnerablecode.io/api/packages/9667?format=json","purl":"pkg:pypi/openpyxl@2.0.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@2.0.2"},{"url":"http://public2.vulnerablecode.io/api/packages/9668?format=json","purl":"pkg:pypi/openpyxl@2.0.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@2.0.3"},{"url":"http://public2.vulnerablecode.io/api/packages/9669?format=json","purl":"pkg:pypi/openpyxl@2.0.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@2.0.4"},{"url":"http://public2.vulnerablecode.io/api/packages/9670?format=json","purl":"pkg:pypi/openpyxl@2.0.5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@2.0.5"},{"url":"http://public2.vulnerablecode.io/api/packages/9671?format=json","purl":"pkg:pypi/openpyxl@2.1.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@2.1.0"},{"url":"http://public2.vulnerablecode.io/api/packages/9672?format=json","purl":"pkg:pypi/openpyxl@2.1.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@2.1.1"},{"url":"http://public2.vulnerablecode.io/api/packages/9673?format=json","purl":"pkg:pypi/openpyxl@2.1.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@2.1.2"},{"url":"http://public2.vulnerablecode.io/api/packages/9674?format=json","purl":"pkg:pypi/openpyxl@2.1.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@2.1.3"},{"url":"http://public2.vulnerablecode.io/api/packages/9675?format=json","purl":"pkg:pypi/openpyxl@2.1.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@2.1.4"},{"url":"http://public2.vulnerablecode.io/api/packages/9676?format=json","purl":"pkg:pypi/openpyxl@2.1.5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@2.1.5"},{"url":"http://public2.vulnerablecode.io/api/packages/9677?format=json","purl":"pkg:pypi/openpyxl@2.2.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@2.2.0"},{"url":"http://public2.vulnerablecode.io/api/packages/9678?format=json","purl":"pkg:pypi/openpyxl@2.2.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@2.2.1"},{"url":"http://public2.vulnerablecode.io/api/packages/9679?format=json","purl":"pkg:pypi/openpyxl@2.2.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@2.2.2"},{"url":"http://public2.vulnerablecode.io/api/packages/9680?format=json","purl":"pkg:pypi/openpyxl@2.2.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@2.2.3"},{"url":"http://public2.vulnerablecode.io/api/packages/9681?format=json","purl":"pkg:pypi/openpyxl@2.2.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@2.2.4"},{"url":"http://public2.vulnerablecode.io/api/packages/9682?format=json","purl":"pkg:pypi/openpyxl@2.2.5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@2.2.5"},{"url":"http://public2.vulnerablecode.io/api/packages/9683?format=json","purl":"pkg:pypi/openpyxl@2.2.6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@2.2.6"},{"url":"http://public2.vulnerablecode.io/api/packages/9684?format=json","purl":"pkg:pypi/openpyxl@2.3.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@2.3.0"},{"url":"http://public2.vulnerablecode.io/api/packages/9685?format=json","purl":"pkg:pypi/openpyxl@2.3.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@2.3.1"},{"url":"http://public2.vulnerablecode.io/api/packages/9686?format=json","purl":"pkg:pypi/openpyxl@2.3.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@2.3.2"},{"url":"http://public2.vulnerablecode.io/api/packages/9687?format=json","purl":"pkg:pypi/openpyxl@2.3.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@2.3.3"},{"url":"http://public2.vulnerablecode.io/api/packages/9688?format=json","purl":"pkg:pypi/openpyxl@2.3.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@2.3.4"},{"url":"http://public2.vulnerablecode.io/api/packages/9689?format=json","purl":"pkg:pypi/openpyxl@2.3.5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@2.3.5"},{"url":"http://public2.vulnerablecode.io/api/packages/9690?format=json","purl":"pkg:pypi/openpyxl@2.4.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-m698-mm6j-rfbw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/openpyxl@2.4.0"}],"references":[{"reference_url":"https://bitbucket.org/openpyxl/openpyxl/commits/3b4905f428e1","reference_id":"","reference_type":"","scores":[],"url":"https://bitbucket.org/openpyxl/openpyxl/commits/3b4905f428e1"},{"reference_url":"https://bitbucket.org/openpyxl/openpyxl/issues/749","reference_id":"","reference_type":"","scores":[],"url":"https://bitbucket.org/openpyxl/openpyxl/issues/749"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=854442","reference_id":"","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=854442"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5992","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5992"},{"reference_url":"https://github.com/advisories/GHSA-chqf-hx79-gxc6","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/advisories/GHSA-chqf-hx79-gxc6"},{"reference_url":"http://www.openwall.com/lists/oss-security/2017/02/07/5","reference_id":"","reference_type":"","scores":[],"url":"http://www.openwall.com/lists/oss-security/2017/02/07/5"},{"reference_url":"https://security.archlinux.org/AVG-629","reference_id":"AVG-629","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-629"}],"weaknesses":[],"exploits":[],"severity_range_score":"7.0 - 8.9","exploitability":null,"weighted_severity":null,"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-m698-mm6j-rfbw"}