{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6334?format=json","vulnerability_id":"VCID-xbug-nn1y-sygc","summary":"arbitrary code execution","aliases":[{"alias":"CVE-2018-0487"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/3097?format=json","purl":"pkg:alpm/archlinux/mbedtls@2.7.0-1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/mbedtls@2.7.0-1"},{"url":"http://public2.vulnerablecode.io/api/packages/5633?format=json","purl":"pkg:deb/debian/mbedtls@2.16.0-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-wx8q-caff-8ud1"},{"vulnerability":"VCID-zn42-jhqr-tfbe"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/mbedtls@2.16.0-1"},{"url":"http://public2.vulnerablecode.io/api/packages/4789?format=json","purl":"pkg:deb/debian/mbedtls@2.4.2-1%2Bdeb9u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-p162-tw8z-yfdx"},{"vulnerability":"VCID-q4fa-4qre-mbam"},{"vulnerability":"VCID-wx8q-caff-8ud1"},{"vulnerability":"VCID-xbug-nn1y-sygc"},{"vulnerability":"VCID-zn42-jhqr-tfbe"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/mbedtls@2.4.2-1%252Bdeb9u3"},{"url":"http://public2.vulnerablecode.io/api/packages/4740?format=json","purl":"pkg:deb/debian/polarssl@1.3.9-2.1%2Bdeb8u3","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/polarssl@1.3.9-2.1%252Bdeb8u3"}],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/3096?format=json","purl":"pkg:alpm/archlinux/mbedtls@2.6.0-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-q4fa-4qre-mbam"},{"vulnerability":"VCID-xbug-nn1y-sygc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/mbedtls@2.6.0-1"},{"url":"http://public2.vulnerablecode.io/api/packages/4788?format=json","purl":"pkg:deb/debian/mbedtls@2.4.2-1%2Bdeb9u1~bpo8%2B1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-p162-tw8z-yfdx"},{"vulnerability":"VCID-q4fa-4qre-mbam"},{"vulnerability":"VCID-wx8q-caff-8ud1"},{"vulnerability":"VCID-xbug-nn1y-sygc"},{"vulnerability":"VCID-zn42-jhqr-tfbe"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/mbedtls@2.4.2-1%252Bdeb9u1~bpo8%252B1"},{"url":"http://public2.vulnerablecode.io/api/packages/4789?format=json","purl":"pkg:deb/debian/mbedtls@2.4.2-1%2Bdeb9u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-p162-tw8z-yfdx"},{"vulnerability":"VCID-q4fa-4qre-mbam"},{"vulnerability":"VCID-wx8q-caff-8ud1"},{"vulnerability":"VCID-xbug-nn1y-sygc"},{"vulnerability":"VCID-zn42-jhqr-tfbe"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/mbedtls@2.4.2-1%252Bdeb9u3"},{"url":"http://public2.vulnerablecode.io/api/packages/4735?format=json","purl":"pkg:deb/debian/polarssl@0.12.1-1squeeze1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-q4fa-4qre-mbam"},{"vulnerability":"VCID-xbug-nn1y-sygc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/polarssl@0.12.1-1squeeze1"},{"url":"http://public2.vulnerablecode.io/api/packages/4736?format=json","purl":"pkg:deb/debian/polarssl@1.2.9-1~deb6u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-q4fa-4qre-mbam"},{"vulnerability":"VCID-xbug-nn1y-sygc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/polarssl@1.2.9-1~deb6u1"},{"url":"http://public2.vulnerablecode.io/api/packages/4737?format=json","purl":"pkg:deb/debian/polarssl@1.2.9-1~deb6u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-q4fa-4qre-mbam"},{"vulnerability":"VCID-xbug-nn1y-sygc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/polarssl@1.2.9-1~deb6u5"},{"url":"http://public2.vulnerablecode.io/api/packages/4738?format=json","purl":"pkg:deb/debian/polarssl@1.2.9-1~deb7u6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-q4fa-4qre-mbam"},{"vulnerability":"VCID-xbug-nn1y-sygc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/polarssl@1.2.9-1~deb7u6"},{"url":"http://public2.vulnerablecode.io/api/packages/4739?format=json","purl":"pkg:deb/debian/polarssl@1.3.9-2.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-q4fa-4qre-mbam"},{"vulnerability":"VCID-xbug-nn1y-sygc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/polarssl@1.3.9-2.1"}],"references":[{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18187","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18187"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0487","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0487"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0488","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0488"},{"reference_url":"https://security.archlinux.org/ASA-201802-15","reference_id":"ASA-201802-15","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201802-15"},{"reference_url":"https://security.archlinux.org/AVG-617","reference_id":"AVG-617","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-617"}],"weaknesses":[],"exploits":[],"severity_range_score":"7.0 - 8.9","exploitability":null,"weighted_severity":null,"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xbug-nn1y-sygc"}