Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/78145?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/78145?format=api", "vulnerability_id": "VCID-2qga-7br1-2kgg", "summary": "lighttpd before 1.4.14 allows attackers to cause a denial of service (crash) via a request to a file whose mtime is 0, which results in a NULL pointer dereference.", "aliases": [ { "alias": "CVE-2007-1870" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/104915?format=api", "purl": "pkg:deb/debian/lighttpd@1.4.15-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/lighttpd@1.4.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/5807?format=api", "purl": "pkg:deb/debian/lighttpd@1.4.19-5%2Blenny3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-14yd-vsj7-e3bv" }, { "vulnerability": "VCID-64mt-9155-tkbv" }, { "vulnerability": "VCID-6npa-atgq-eyae" }, { "vulnerability": "VCID-76r1-sn8n-97cp" }, { "vulnerability": "VCID-7bf4-rred-qfbx" }, { "vulnerability": "VCID-7qf9-eapp-3bcw" }, { "vulnerability": "VCID-atus-ryef-17h1" }, { "vulnerability": "VCID-bxeu-vezm-d3dr" }, { "vulnerability": "VCID-dc2r-pbzk-jfea" }, { "vulnerability": "VCID-dsjd-1ad9-fyar" }, { "vulnerability": "VCID-erfy-z8fa-yubc" }, { "vulnerability": "VCID-f4wd-nhy8-cbhb" }, { "vulnerability": "VCID-hfhq-3qjm-6bgt" }, { "vulnerability": "VCID-px8c-f74r-jfdf" }, { "vulnerability": "VCID-qh2j-78wp-kkek" }, { "vulnerability": "VCID-u33d-w5ds-5kdb" }, { "vulnerability": "VCID-vnkb-z4w1-5qer" }, { "vulnerability": "VCID-vr52-hzwk-gken" }, { "vulnerability": "VCID-wwm5-1f1e-uqej" }, { "vulnerability": "VCID-wzr1-7c4y-fbd6" }, { "vulnerability": "VCID-ywef-dqtt-xuhk" }, { "vulnerability": "VCID-zxku-5tqr-2yhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/lighttpd@1.4.19-5%252Blenny3" }, { "url": "http://public2.vulnerablecode.io/api/packages/104916?format=api", "purl": "pkg:deb/debian/lighttpd@1.4.59-1%2Bdeb11u2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/lighttpd@1.4.59-1%252Bdeb11u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/104914?format=api", "purl": "pkg:deb/debian/lighttpd@1.4.69-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/lighttpd@1.4.69-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/104918?format=api", "purl": "pkg:deb/debian/lighttpd@1.4.79-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/lighttpd@1.4.79-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/104917?format=api", "purl": "pkg:deb/debian/lighttpd@1.4.82-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/lighttpd@1.4.82-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/304776?format=api", "purl": "pkg:deb/debian/lighttpd@1.4.82-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/lighttpd@1.4.82-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/505218?format=api", "purl": "pkg:ebuild/www-servers/lighttpd@1.4.14", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-servers/lighttpd@1.4.14" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5805?format=api", "purl": "pkg:deb/debian/lighttpd@1.4.13-4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-14yd-vsj7-e3bv" }, { "vulnerability": "VCID-1r8j-cxfd-y3cj" }, { "vulnerability": "VCID-2qga-7br1-2kgg" }, { "vulnerability": "VCID-38w7-g8zu-kfaf" }, { "vulnerability": "VCID-61cg-6mf8-j3eu" }, { "vulnerability": "VCID-64mt-9155-tkbv" }, { "vulnerability": "VCID-6npa-atgq-eyae" }, { "vulnerability": "VCID-6q5m-ky26-hye4" }, { "vulnerability": "VCID-76r1-sn8n-97cp" }, { "vulnerability": "VCID-7bf4-rred-qfbx" }, { "vulnerability": "VCID-7q7h-9wxw-suhq" }, { "vulnerability": "VCID-7qf9-eapp-3bcw" }, { "vulnerability": "VCID-7ut9-fhyj-zuan" }, { "vulnerability": "VCID-9gvn-8dth-6fc9" }, { "vulnerability": "VCID-atus-ryef-17h1" }, { "vulnerability": "VCID-baqf-syvs-sydt" }, { "vulnerability": "VCID-bxeu-vezm-d3dr" }, { "vulnerability": "VCID-dc2r-pbzk-jfea" }, { "vulnerability": "VCID-dsjd-1ad9-fyar" }, { "vulnerability": "VCID-erfy-z8fa-yubc" }, { "vulnerability": "VCID-f4wd-nhy8-cbhb" }, { "vulnerability": "VCID-fq77-nqx1-pkga" }, { "vulnerability": "VCID-g8ed-kdkx-k3h6" }, { "vulnerability": "VCID-hfhq-3qjm-6bgt" }, { "vulnerability": "VCID-px8c-f74r-jfdf" }, { "vulnerability": "VCID-qh2j-78wp-kkek" }, { "vulnerability": "VCID-qk8s-4c1r-6qd1" }, { "vulnerability": "VCID-u33d-w5ds-5kdb" }, { "vulnerability": "VCID-u6d3-f9pa-1kax" }, { "vulnerability": "VCID-u78v-a3qu-r7ea" }, { "vulnerability": "VCID-vnkb-z4w1-5qer" }, { "vulnerability": "VCID-vr52-hzwk-gken" }, { "vulnerability": "VCID-wa53-x98h-97bs" }, { "vulnerability": "VCID-wwm5-1f1e-uqej" }, { "vulnerability": "VCID-wzr1-7c4y-fbd6" }, { "vulnerability": "VCID-ywef-dqtt-xuhk" }, { "vulnerability": "VCID-zxku-5tqr-2yhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/lighttpd@1.4.13-4" }, { "url": "http://public2.vulnerablecode.io/api/packages/5806?format=api", "purl": "pkg:deb/debian/lighttpd@1.4.13-4etch12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-14yd-vsj7-e3bv" }, { "vulnerability": "VCID-1r8j-cxfd-y3cj" }, { "vulnerability": "VCID-2qga-7br1-2kgg" }, { "vulnerability": "VCID-38w7-g8zu-kfaf" }, { "vulnerability": "VCID-61cg-6mf8-j3eu" }, { "vulnerability": "VCID-64mt-9155-tkbv" }, { "vulnerability": "VCID-6npa-atgq-eyae" }, { "vulnerability": "VCID-6q5m-ky26-hye4" }, { "vulnerability": "VCID-76r1-sn8n-97cp" }, { "vulnerability": "VCID-7bf4-rred-qfbx" }, { "vulnerability": "VCID-7q7h-9wxw-suhq" }, { "vulnerability": "VCID-7qf9-eapp-3bcw" }, { "vulnerability": "VCID-7ut9-fhyj-zuan" }, { "vulnerability": "VCID-9gvn-8dth-6fc9" }, { "vulnerability": "VCID-atus-ryef-17h1" }, { "vulnerability": "VCID-baqf-syvs-sydt" }, { "vulnerability": "VCID-bxeu-vezm-d3dr" }, { "vulnerability": "VCID-dc2r-pbzk-jfea" }, { "vulnerability": "VCID-dsjd-1ad9-fyar" }, { "vulnerability": "VCID-erfy-z8fa-yubc" }, { "vulnerability": "VCID-f4wd-nhy8-cbhb" }, { "vulnerability": "VCID-fq77-nqx1-pkga" }, { "vulnerability": "VCID-g8ed-kdkx-k3h6" }, { "vulnerability": "VCID-hfhq-3qjm-6bgt" }, { "vulnerability": "VCID-px8c-f74r-jfdf" }, { "vulnerability": "VCID-qh2j-78wp-kkek" }, { "vulnerability": "VCID-qk8s-4c1r-6qd1" }, { "vulnerability": "VCID-u33d-w5ds-5kdb" }, { "vulnerability": "VCID-u6d3-f9pa-1kax" }, { "vulnerability": "VCID-u78v-a3qu-r7ea" }, { "vulnerability": "VCID-vnkb-z4w1-5qer" }, { "vulnerability": "VCID-vr52-hzwk-gken" }, { "vulnerability": "VCID-wa53-x98h-97bs" }, { "vulnerability": "VCID-wwm5-1f1e-uqej" }, { "vulnerability": "VCID-wzr1-7c4y-fbd6" }, { "vulnerability": "VCID-ywef-dqtt-xuhk" }, { "vulnerability": "VCID-zxku-5tqr-2yhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/lighttpd@1.4.13-4etch12" } ], "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2007-1870", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01497", "scoring_system": "epss", "scoring_elements": "0.8144", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01497", "scoring_system": "epss", "scoring_elements": "0.81467", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.01497", "scoring_system": "epss", "scoring_elements": "0.8147", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01497", "scoring_system": "epss", "scoring_elements": "0.81462", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.01497", "scoring_system": "epss", "scoring_elements": "0.81478", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2007-1870" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1870", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1870" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=422254", "reference_id": "422254", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=422254" }, { "reference_url": "https://security.gentoo.org/glsa/200705-07", "reference_id": "GLSA-200705-07", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200705-07" } ], "weaknesses": [], "exploits": [], "severity_range_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2qga-7br1-2kgg" }