GET

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

GET /api/vulnerabilities/84465?format=api
HTTP 200 OK
Allow: GET, HEAD, OPTIONS
Content-Type: application/json
Vary: Accept

{
    "url": "http://public2.vulnerablecode.io/api/vulnerabilities/84465?format=api",
    "vulnerability_id": "VCID-f22j-znj9-qfa5",
    "summary": "A command\ninjection vulnerability was discovered in TeamViewer DEX Platform On-Premises\n(former 1E DEX Platform On-Premises) prior to version 9.2. Improper input validation allows\nauthenticated users with at least questioner privileges to inject commands in specific\ninstructions. Exploitation could lead to execution of elevated commands on\ndevices connected to the platform.",
    "aliases": [
        {
            "alias": "CVE-2026-2695"
        }
    ],
    "fixed_packages": [],
    "affected_packages": [],
    "references": [
        {
            "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-2695",
            "reference_id": "",
            "reference_type": "",
            "scores": [
                {
                    "value": "0.00092",
                    "scoring_system": "epss",
                    "scoring_elements": "0.2586",
                    "published_at": "2026-06-11T12:55:00Z"
                },
                {
                    "value": "0.00092",
                    "scoring_system": "epss",
                    "scoring_elements": "0.2606",
                    "published_at": "2026-06-12T12:55:00Z"
                }
            ],
            "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-2695"
        },
        {
            "reference_url": "https://www.teamviewer.com/de/resources/trust-center/security-bulletins/tv-2026-1004/",
            "reference_id": "tv-2026-1004",
            "reference_type": "",
            "scores": [
                {
                    "value": "6.3",
                    "scoring_system": "cvssv3.1",
                    "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"
                },
                {
                    "value": "Track",
                    "scoring_system": "ssvc",
                    "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-13T17:19:55Z/"
                }
            ],
            "url": "https://www.teamviewer.com/de/resources/trust-center/security-bulletins/tv-2026-1004/"
        }
    ],
    "weaknesses": [
        {
            "cwe_id": 20,
            "name": "Improper Input Validation",
            "description": "The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly."
        }
    ],
    "exploits": [],
    "severity_range_score": "6.3 - 6.3",
    "exploitability": null,
    "weighted_severity": null,
    "risk_score": null,
    "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-f22j-znj9-qfa5"
}