Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/8548?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/8548?format=api", "vulnerability_id": "VCID-jyt4-4241-efcs", "summary": "", "aliases": [ { "alias": "CVE-2020-35518" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/11649?format=api", "purl": "pkg:alpm/archlinux/389-ds-base@2.0.2-1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/389-ds-base@2.0.2-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/22777?format=api", "purl": "pkg:deb/debian/389-ds-base@1.4.4.10-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/389-ds-base@1.4.4.10-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/1075023?format=api", "purl": "pkg:deb/debian/389-ds-base@1.4.4.11-2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3z3v-4fk7-1fhb" }, { "vulnerability": "VCID-5jgs-1ta2-2ufk" }, { "vulnerability": "VCID-87ky-nqrv-a7cp" }, { "vulnerability": "VCID-c9qp-r2us-d7a6" }, { "vulnerability": "VCID-cjvr-dyhy-jyc1" }, { "vulnerability": "VCID-fbvy-sf8p-3kgv" }, { "vulnerability": "VCID-fwjq-ujy5-auej" }, { "vulnerability": "VCID-m8rd-k5u2-dkc2" }, { "vulnerability": "VCID-prpr-72b3-cqhs" }, { "vulnerability": "VCID-qdhp-dpvy-y7gh" }, { "vulnerability": "VCID-qvxj-vyp5-yubp" }, { "vulnerability": "VCID-uquq-vagd-73at" }, { "vulnerability": "VCID-v563-ca3a-47g2" }, { "vulnerability": "VCID-wbw8-gteu-73f4" }, { "vulnerability": "VCID-z3nb-yn14-fqhk" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/389-ds-base@1.4.4.11-2" }, { "url": "http://public2.vulnerablecode.io/api/packages/22711?format=api", "purl": "pkg:deb/debian/389-ds-base@1.4.4.11-2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3z3v-4fk7-1fhb" }, { "vulnerability": "VCID-cjvr-dyhy-jyc1" }, { "vulnerability": "VCID-fbvy-sf8p-3kgv" }, { "vulnerability": "VCID-fwjq-ujy5-auej" }, { "vulnerability": "VCID-uquq-vagd-73at" }, { "vulnerability": "VCID-wbw8-gteu-73f4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/389-ds-base@1.4.4.11-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/22707?format=api", "purl": "pkg:deb/debian/389-ds-base@2.3.1%2Bdfsg1-1%2Bdeb12u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3z3v-4fk7-1fhb" }, { "vulnerability": "VCID-fbvy-sf8p-3kgv" }, { "vulnerability": "VCID-fwjq-ujy5-auej" }, { "vulnerability": "VCID-uquq-vagd-73at" }, { "vulnerability": "VCID-wbw8-gteu-73f4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/389-ds-base@2.3.1%252Bdfsg1-1%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/22713?format=api", "purl": "pkg:deb/debian/389-ds-base@3.1.2%2Bdfsg1-1%2Bdeb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/389-ds-base@3.1.2%252Bdfsg1-1%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/22712?format=api", "purl": "pkg:deb/debian/389-ds-base@3.1.2%2Bvendor1-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/389-ds-base@3.1.2%252Bvendor1-2%3Fdistro=trixie" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/11648?format=api", "purl": "pkg:alpm/archlinux/389-ds-base@1.4.4.4-5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-jyt4-4241-efcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/389-ds-base@1.4.4.4-5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1079902?format=api", "purl": "pkg:deb/debian/389-ds-base@1.3.3.5-4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jz7-s2a9-yycr" }, { "vulnerability": "VCID-3w8c-gw5m-duc3" }, { "vulnerability": "VCID-5jgs-1ta2-2ufk" }, { "vulnerability": "VCID-66rs-ce1j-3qhx" }, { "vulnerability": "VCID-6wcv-bhah-53at" }, { "vulnerability": "VCID-76jk-cffq-3kfk" }, { "vulnerability": "VCID-7hvr-ja2f-jbdb" }, { "vulnerability": "VCID-87ky-nqrv-a7cp" }, { "vulnerability": "VCID-8eqy-tp67-xbc8" }, { "vulnerability": "VCID-avx4-b4xf-uygb" }, { "vulnerability": "VCID-c9qp-r2us-d7a6" }, { "vulnerability": "VCID-fw5s-apa6-wyem" }, { "vulnerability": "VCID-jyt4-4241-efcs" }, { "vulnerability": "VCID-kec4-csv9-x7e4" }, { "vulnerability": "VCID-km73-kaah-wbca" }, { "vulnerability": "VCID-m8rd-k5u2-dkc2" }, { "vulnerability": "VCID-mfc8-7x3y-xbbu" }, { "vulnerability": "VCID-nhxa-kacf-p3e6" }, { "vulnerability": "VCID-pgfp-s2yx-13a1" }, { "vulnerability": "VCID-prpr-72b3-cqhs" }, { "vulnerability": "VCID-q72r-khjk-jkgh" }, { "vulnerability": "VCID-qdhp-dpvy-y7gh" }, { "vulnerability": "VCID-qvxj-vyp5-yubp" }, { "vulnerability": "VCID-r4qw-y6ze-rkax" }, { "vulnerability": "VCID-ra5k-bdn8-qkcy" }, { "vulnerability": "VCID-tvnt-3s42-m7ck" }, { "vulnerability": "VCID-ubde-qe6v-eud4" }, { "vulnerability": "VCID-v563-ca3a-47g2" }, { "vulnerability": "VCID-vbwp-4gbs-nqga" }, { "vulnerability": "VCID-vk73-x8sf-2ucc" }, { "vulnerability": "VCID-wacf-4frr-dfde" }, { "vulnerability": "VCID-z3nb-yn14-fqhk" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/389-ds-base@1.3.3.5-4" }, { "url": "http://public2.vulnerablecode.io/api/packages/1079903?format=api", "purl": "pkg:deb/debian/389-ds-base@1.3.5.17-2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5jgs-1ta2-2ufk" }, { "vulnerability": "VCID-66rs-ce1j-3qhx" }, { "vulnerability": "VCID-6wcv-bhah-53at" }, { "vulnerability": "VCID-76jk-cffq-3kfk" }, { "vulnerability": "VCID-7hvr-ja2f-jbdb" }, { "vulnerability": "VCID-87ky-nqrv-a7cp" }, { "vulnerability": "VCID-avx4-b4xf-uygb" }, { "vulnerability": "VCID-c9qp-r2us-d7a6" }, { "vulnerability": "VCID-jyt4-4241-efcs" }, { "vulnerability": "VCID-kec4-csv9-x7e4" }, { "vulnerability": "VCID-km73-kaah-wbca" }, { "vulnerability": "VCID-m8rd-k5u2-dkc2" }, { "vulnerability": "VCID-mfc8-7x3y-xbbu" }, { "vulnerability": "VCID-nhxa-kacf-p3e6" }, { "vulnerability": "VCID-prpr-72b3-cqhs" }, { "vulnerability": "VCID-q72r-khjk-jkgh" }, { "vulnerability": "VCID-qdhp-dpvy-y7gh" }, { "vulnerability": "VCID-qvxj-vyp5-yubp" }, { "vulnerability": "VCID-tvnt-3s42-m7ck" }, { "vulnerability": "VCID-ubde-qe6v-eud4" }, { "vulnerability": "VCID-v563-ca3a-47g2" }, { "vulnerability": "VCID-vbwp-4gbs-nqga" }, { "vulnerability": "VCID-vk73-x8sf-2ucc" }, { "vulnerability": "VCID-wacf-4frr-dfde" }, { "vulnerability": "VCID-z3nb-yn14-fqhk" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/389-ds-base@1.3.5.17-2" }, { "url": "http://public2.vulnerablecode.io/api/packages/1079904?format=api", "purl": "pkg:deb/debian/389-ds-base@1.4.0.21-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5jgs-1ta2-2ufk" }, { "vulnerability": "VCID-6wcv-bhah-53at" }, { "vulnerability": "VCID-87ky-nqrv-a7cp" }, { "vulnerability": "VCID-c9qp-r2us-d7a6" }, { "vulnerability": "VCID-jyt4-4241-efcs" }, { "vulnerability": "VCID-m8rd-k5u2-dkc2" }, { "vulnerability": "VCID-mfc8-7x3y-xbbu" }, { "vulnerability": "VCID-prpr-72b3-cqhs" }, { "vulnerability": "VCID-qdhp-dpvy-y7gh" }, { "vulnerability": "VCID-qvxj-vyp5-yubp" }, { "vulnerability": "VCID-v563-ca3a-47g2" }, { "vulnerability": "VCID-vk73-x8sf-2ucc" }, { "vulnerability": "VCID-wacf-4frr-dfde" }, { "vulnerability": "VCID-z3nb-yn14-fqhk" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/389-ds-base@1.4.0.21-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/342714?format=api", "purl": "pkg:rpm/redhat/389-ds-base@1.3.10.2-12?arch=el7_9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-jyt4-4241-efcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/389-ds-base@1.3.10.2-12%3Farch=el7_9" } ], "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-35518.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-35518.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-35518", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00801", "scoring_system": "epss", "scoring_elements": "0.74503", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00801", "scoring_system": "epss", "scoring_elements": "0.74575", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00801", "scoring_system": "epss", "scoring_elements": "0.74588", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00801", "scoring_system": "epss", "scoring_elements": "0.74586", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-35518" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35518", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35518" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1905565", "reference_id": "1905565", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1905565" }, { "reference_url": "https://security.archlinux.org/AVG-1482", "reference_id": "AVG-1482", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1482" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0599", "reference_id": "RHSA-2021:0599", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0599" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1086", "reference_id": "RHSA-2021:1086", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1086" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1243", "reference_id": "RHSA-2021:1243", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1243" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1258", "reference_id": "RHSA-2021:1258", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1258" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2323", "reference_id": "RHSA-2021:2323", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2323" }, { "reference_url": "https://usn.ubuntu.com/USN-5231-1/", "reference_id": "USN-USN-5231-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/USN-5231-1/" } ], "weaknesses": [ { "cwe_id": 200, "name": "Exposure of Sensitive Information to an Unauthorized Actor", "description": "The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information." } ], "exploits": [], "severity_range_score": "4.0 - 6.9", "exploitability": "0.5", "weighted_severity": "6.2", "risk_score": 3.1, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jyt4-4241-efcs" }