Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/81236?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81236?format=api", "vulnerability_id": "VCID-n3kd-yuaq-4bfs", "summary": "NetworkManager: user configuration not honoured leaving the connection unauthenticated via insecure defaults", "aliases": [ { "alias": "CVE-2020-10754" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/931826?format=api", "purl": "pkg:deb/debian/network-manager@1.24.2-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/network-manager@1.24.2-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/931814?format=api", "purl": "pkg:deb/debian/network-manager@1.30.6-1%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cnc2-ktcn-sug1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/network-manager@1.30.6-1%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/1026202?format=api", "purl": "pkg:deb/debian/network-manager@1.30.6-1%2Bdeb11u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cnc2-ktcn-sug1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/network-manager@1.30.6-1%252Bdeb11u1" }, { "url": "http://public2.vulnerablecode.io/api/packages/931812?format=api", "purl": "pkg:deb/debian/network-manager@1.42.4-1%2Bdeb12u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cnc2-ktcn-sug1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/network-manager@1.42.4-1%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/931817?format=api", "purl": "pkg:deb/debian/network-manager@1.52.1-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cnc2-ktcn-sug1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/network-manager@1.52.1-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/931815?format=api", "purl": "pkg:deb/debian/network-manager@1.54.3-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/network-manager@1.54.3-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/931816?format=api", "purl": "pkg:deb/debian/network-manager@1.56.0-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/network-manager@1.56.0-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/1000458?format=api", "purl": "pkg:deb/debian/network-manager@1.56.0-6?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/network-manager@1.56.0-6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/1102996?format=api", "purl": "pkg:deb/debian/network-manager@1.56.0-7?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/network-manager@1.56.0-7%3Fdistro=trixie" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1050621?format=api", "purl": "pkg:deb/debian/network-manager@0.6.4-6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2q7z-tuqt-yucv" }, { "vulnerability": "VCID-83mk-uw12-pybd" }, { "vulnerability": "VCID-fg2a-gkky-jyga" }, { "vulnerability": "VCID-frz3-1jns-rkd3" }, { "vulnerability": "VCID-n3kd-yuaq-4bfs" }, { "vulnerability": "VCID-nc7q-fe7v-gkg7" }, { "vulnerability": "VCID-q4kr-rg2c-f7ad" }, { "vulnerability": "VCID-qm4r-8t5y-4be9" }, { "vulnerability": "VCID-vq3b-314n-7kdd" }, { "vulnerability": "VCID-yfwm-qjx1-4uhr" }, { "vulnerability": "VCID-ytqs-trvu-4ygg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/network-manager@0.6.4-6" }, { "url": "http://public2.vulnerablecode.io/api/packages/1050622?format=api", "purl": "pkg:deb/debian/network-manager@0.6.4-6%2Betch1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2q7z-tuqt-yucv" }, { "vulnerability": "VCID-83mk-uw12-pybd" }, { "vulnerability": "VCID-fg2a-gkky-jyga" }, { "vulnerability": "VCID-frz3-1jns-rkd3" }, { "vulnerability": "VCID-n3kd-yuaq-4bfs" }, { "vulnerability": "VCID-nc7q-fe7v-gkg7" }, { "vulnerability": "VCID-q4kr-rg2c-f7ad" }, { "vulnerability": "VCID-qm4r-8t5y-4be9" }, { "vulnerability": "VCID-vq3b-314n-7kdd" }, { "vulnerability": "VCID-yfwm-qjx1-4uhr" }, { "vulnerability": "VCID-ytqs-trvu-4ygg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/network-manager@0.6.4-6%252Betch1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1050623?format=api", "purl": "pkg:deb/debian/network-manager@0.6.6-3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-83mk-uw12-pybd" }, { "vulnerability": "VCID-fg2a-gkky-jyga" }, { "vulnerability": "VCID-frz3-1jns-rkd3" }, { "vulnerability": "VCID-n3kd-yuaq-4bfs" }, { "vulnerability": "VCID-nc7q-fe7v-gkg7" }, { "vulnerability": "VCID-q4kr-rg2c-f7ad" }, { "vulnerability": "VCID-qm4r-8t5y-4be9" }, { "vulnerability": "VCID-vq3b-314n-7kdd" }, { "vulnerability": "VCID-yfwm-qjx1-4uhr" }, { "vulnerability": "VCID-ytqs-trvu-4ygg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/network-manager@0.6.6-3" }, { "url": "http://public2.vulnerablecode.io/api/packages/1050624?format=api", "purl": "pkg:deb/debian/network-manager@0.8.1-6%2Bsqueeze2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-83mk-uw12-pybd" }, { "vulnerability": "VCID-fg2a-gkky-jyga" }, { "vulnerability": "VCID-frz3-1jns-rkd3" }, { "vulnerability": "VCID-n3kd-yuaq-4bfs" }, { "vulnerability": "VCID-nc7q-fe7v-gkg7" }, { "vulnerability": "VCID-q4kr-rg2c-f7ad" }, { "vulnerability": "VCID-qm4r-8t5y-4be9" }, { "vulnerability": "VCID-vq3b-314n-7kdd" }, { "vulnerability": "VCID-yfwm-qjx1-4uhr" }, { "vulnerability": "VCID-ytqs-trvu-4ygg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/network-manager@0.8.1-6%252Bsqueeze2" }, { "url": "http://public2.vulnerablecode.io/api/packages/1050625?format=api", "purl": "pkg:deb/debian/network-manager@0.9.4.0-10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fg2a-gkky-jyga" }, { "vulnerability": "VCID-n3kd-yuaq-4bfs" }, { "vulnerability": "VCID-nc7q-fe7v-gkg7" }, { "vulnerability": "VCID-q4kr-rg2c-f7ad" }, { "vulnerability": "VCID-qm4r-8t5y-4be9" }, { "vulnerability": "VCID-vq3b-314n-7kdd" }, { "vulnerability": "VCID-ytqs-trvu-4ygg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/network-manager@0.9.4.0-10" }, { "url": "http://public2.vulnerablecode.io/api/packages/1051204?format=api", "purl": "pkg:deb/debian/network-manager@0.9.10.0-7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fg2a-gkky-jyga" }, { "vulnerability": "VCID-n3kd-yuaq-4bfs" }, { "vulnerability": "VCID-nc7q-fe7v-gkg7" }, { "vulnerability": "VCID-q4kr-rg2c-f7ad" }, { "vulnerability": "VCID-qm4r-8t5y-4be9" }, { "vulnerability": "VCID-vq3b-314n-7kdd" }, { "vulnerability": "VCID-ytqs-trvu-4ygg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/network-manager@0.9.10.0-7" }, { "url": "http://public2.vulnerablecode.io/api/packages/1051205?format=api", "purl": "pkg:deb/debian/network-manager@1.6.2-3%2Bdeb9u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-n3kd-yuaq-4bfs" }, { "vulnerability": "VCID-q4kr-rg2c-f7ad" }, { "vulnerability": "VCID-vq3b-314n-7kdd" }, { "vulnerability": "VCID-ytqs-trvu-4ygg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/network-manager@1.6.2-3%252Bdeb9u2" }, { "url": "http://public2.vulnerablecode.io/api/packages/1053956?format=api", "purl": "pkg:deb/debian/network-manager@1.14.6-2%2Bdeb10u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-n3kd-yuaq-4bfs" }, { "vulnerability": "VCID-vq3b-314n-7kdd" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/network-manager@1.14.6-2%252Bdeb10u1" }, { "url": "http://public2.vulnerablecode.io/api/packages/103039?format=api", "purl": "pkg:rpm/redhat/NetworkManager@1:1.18.8-1?arch=el7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-n3kd-yuaq-4bfs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/NetworkManager@1:1.18.8-1%3Farch=el7" }, { "url": "http://public2.vulnerablecode.io/api/packages/103040?format=api", "purl": "pkg:rpm/redhat/NetworkManager@1:1.22.8-5?arch=el8_2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-n3kd-yuaq-4bfs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/NetworkManager@1:1.22.8-5%3Farch=el8_2" } ], "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-10754.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-10754.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-10754", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00252", "scoring_system": "epss", "scoring_elements": "0.48444", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00252", "scoring_system": "epss", "scoring_elements": "0.48481", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00252", "scoring_system": "epss", "scoring_elements": "0.48504", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00252", "scoring_system": "epss", "scoring_elements": "0.48456", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00252", "scoring_system": "epss", "scoring_elements": "0.48511", "published_at": "2026-05-14T12:55:00Z" }, { "value": "0.00252", "scoring_system": "epss", "scoring_elements": "0.48506", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00252", "scoring_system": "epss", "scoring_elements": "0.48529", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00252", "scoring_system": "epss", "scoring_elements": "0.48502", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00252", "scoring_system": "epss", "scoring_elements": "0.48514", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00252", "scoring_system": "epss", "scoring_elements": "0.48564", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00252", "scoring_system": "epss", "scoring_elements": "0.4856", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00252", "scoring_system": "epss", "scoring_elements": "0.48517", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00252", "scoring_system": "epss", "scoring_elements": "0.48499", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00252", "scoring_system": "epss", "scoring_elements": "0.48457", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00252", "scoring_system": "epss", "scoring_elements": "0.48373", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.00252", "scoring_system": "epss", "scoring_elements": "0.48435", "published_at": "2026-05-12T12:55:00Z" }, { "value": "0.00252", "scoring_system": "epss", "scoring_elements": "0.48461", "published_at": "2026-05-09T12:55:00Z" }, { "value": "0.00252", "scoring_system": "epss", "scoring_elements": "0.48405", "published_at": "2026-05-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-10754" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10754", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10754" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1841041", "reference_id": "1841041", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1841041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3011", "reference_id": "RHSA-2020:3011", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3011" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4003", "reference_id": "RHSA-2020:4003", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4003" } ], "weaknesses": [ { "cwe_id": 455, "name": "Non-exit on Failed Initialization", "description": "The product does not exit or otherwise modify its operation when security-relevant errors occur during initialization, such as when a configuration file has a format error or a hardware security module (HSM) cannot be activated, which can cause the product to execute in a less secure fashion than intended by the administrator." } ], "exploits": [], "severity_range_score": "4.3 - 4.3", "exploitability": "0.5", "weighted_severity": "3.9", "risk_score": 1.9, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-n3kd-yuaq-4bfs" }