Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/63555?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63555?format=api", "vulnerability_id": "VCID-hjgf-d8dp-3faa", "summary": "Mozilla developer Vladimir Vukicevic reported that Firefox\nfor Android will optionally load a shared object (.so) library in order to\nenable GL tracing. When this is occurs, it can be from a world writable\nlocation, allowing for it to be replaced by malicious third party applications\nbefore it is loaded by Firefox. This would allow for accessing of all Firefox\ndata or for malicious code to be run by Firefox. This flaw requires malicious\nsoftware to be loaded on the device and is not accessible by web content.", "aliases": [ { "alias": "CVE-2013-1731" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/86526?format=api", "purl": "pkg:mozilla/Firefox@24.0.0", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@24.0.0" } ], "affected_packages": [], "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-1731", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01004", "scoring_system": "epss", "scoring_elements": "0.77152", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.01004", "scoring_system": "epss", "scoring_elements": "0.76962", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01004", "scoring_system": "epss", "scoring_elements": "0.76967", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01004", "scoring_system": "epss", "scoring_elements": "0.76997", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01004", "scoring_system": "epss", "scoring_elements": "0.76978", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01004", "scoring_system": "epss", "scoring_elements": "0.7701", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01004", "scoring_system": "epss", "scoring_elements": "0.77021", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01004", "scoring_system": "epss", "scoring_elements": "0.77049", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01004", "scoring_system": "epss", "scoring_elements": "0.77028", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01004", "scoring_system": "epss", "scoring_elements": "0.77024", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01004", "scoring_system": "epss", "scoring_elements": "0.77065", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.01004", "scoring_system": "epss", "scoring_elements": "0.77066", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01004", "scoring_system": "epss", "scoring_elements": "0.77059", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01004", "scoring_system": "epss", "scoring_elements": "0.77093", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.01004", "scoring_system": "epss", "scoring_elements": "0.771", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.01004", "scoring_system": "epss", "scoring_elements": "0.77114", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.01004", "scoring_system": "epss", "scoring_elements": "0.77122", "published_at": "2026-05-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-1731" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1731", "reference_id": "CVE-2013-1731", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1731" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2013-87", "reference_id": "mfsa2013-87", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2013-87" } ], "weaknesses": [], "exploits": [], "severity_range_score": "7.0 - 8.9", "exploitability": null, "weighted_severity": null, "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hjgf-d8dp-3faa" }