Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/83659?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/83659?format=api", "vulnerability_id": "VCID-1fch-hqvw-cbdj", "summary": "An attacker may gain unauthorized access to the host filesystem, potentially allowing them to read and modify system data.", "aliases": [ { "alias": "CVE-2026-22907" } ], "fixed_packages": [], "affected_packages": [], "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-22907", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08662", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08704", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-22907" }, { "reference_url": "https://www.first.org/cvss/calculator/3.1", "reference_id": "3.1", "reference_type": "", "scores": [ { "value": "9.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-01-15T14:43:00Z/" } ], "url": "https://www.first.org/cvss/calculator/3.1" }, { "reference_url": "https://www.cisa.gov/resources-tools/resources/ics-recommended-practices", "reference_id": "ics-recommended-practices", "reference_type": "", "scores": [ { "value": "9.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-01-15T14:43:00Z/" } ], "url": "https://www.cisa.gov/resources-tools/resources/ics-recommended-practices" }, { "reference_url": "https://sick.com/psirt", "reference_id": "psirt", "reference_type": "", "scores": [ { "value": "9.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-01-15T14:43:00Z/" } ], "url": "https://sick.com/psirt" }, { "reference_url": "https://www.sick.com/.well-known/csaf/white/2026/sca-2026-0001.json", "reference_id": "sca-2026-0001.json", "reference_type": "", "scores": [ { "value": "9.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-01-15T14:43:00Z/" } ], "url": "https://www.sick.com/.well-known/csaf/white/2026/sca-2026-0001.json" }, { "reference_url": "https://www.sick.com/.well-known/csaf/white/2026/sca-2026-0001.pdf", "reference_id": "sca-2026-0001.pdf", "reference_type": "", "scores": [ { "value": "9.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-01-15T14:43:00Z/" } ], "url": "https://www.sick.com/.well-known/csaf/white/2026/sca-2026-0001.pdf" }, { "reference_url": "https://www.sick.com/media/docs/9/19/719/special_information_sick_operating_guidelines_cybersecurity_by_sick_en_im0106719.pdf", "reference_id": "special_information_sick_operating_guidelines_cybersecurity_by_sick_en_im0106719.pdf", "reference_type": "", "scores": [ { "value": "9.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-01-15T14:43:00Z/" } ], "url": "https://www.sick.com/media/docs/9/19/719/special_information_sick_operating_guidelines_cybersecurity_by_sick_en_im0106719.pdf" } ], "weaknesses": [ { "cwe_id": 266, "name": "Incorrect Privilege Assignment", "description": "A product incorrectly assigns a privilege to a particular actor, creating an unintended sphere of control for that actor." } ], "exploits": [], "severity_range_score": "9.9 - 9.9", "exploitability": null, "weighted_severity": null, "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1fch-hqvw-cbdj" }