Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/87510?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/87510?format=api", "vulnerability_id": "VCID-91gu-1pgh-jubb", "summary": "kernel: no access restrictions of /proc/pid/* after setuid program exec", "aliases": [ { "alias": "CVE-2011-1020" } ], "fixed_packages": [], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/126244?format=api", "purl": "pkg:rpm/redhat/kernel@2.6.18-274.17.1?arch=el5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-4c61-jy9m-23az" }, { "vulnerability": "VCID-6y6m-dsht-y7d8" }, { "vulnerability": "VCID-91gu-1pgh-jubb" }, { "vulnerability": "VCID-ausm-xxzm-6kh2" }, { "vulnerability": "VCID-k6x4-94sq-pfg6" }, { "vulnerability": "VCID-kdgd-xanj-h7gp" }, { "vulnerability": "VCID-qdds-66x8-gqdb" }, { "vulnerability": "VCID-x76n-2wwh-3feg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/kernel@2.6.18-274.17.1%3Farch=el5" }, { "url": "http://public2.vulnerablecode.io/api/packages/126598?format=api", "purl": "pkg:rpm/redhat/kernel@2.6.32-131.25.1?arch=el6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6wku-z2vq-pudn" }, { "vulnerability": "VCID-91gu-1pgh-jubb" }, { "vulnerability": "VCID-rjeq-4es3-g3dg" }, { "vulnerability": "VCID-ry7x-b642-77er" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/kernel@2.6.32-131.25.1%3Farch=el6" }, { "url": "http://public2.vulnerablecode.io/api/packages/126600?format=api", "purl": "pkg:rpm/redhat/kernel@2.6.32-220?arch=el6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6wku-z2vq-pudn" }, { "vulnerability": "VCID-91gu-1pgh-jubb" }, { "vulnerability": "VCID-rjeq-4es3-g3dg" }, { "vulnerability": "VCID-ry7x-b642-77er" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/kernel@2.6.32-220%3Farch=el6" }, { "url": "http://public2.vulnerablecode.io/api/packages/127126?format=api", "purl": "pkg:rpm/redhat/kernel-rt@2.6.33.9-rt31.75?arch=el6rt", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1kqc-mk8b-qyew" }, { "vulnerability": "VCID-1n7j-hq91-qqgy" }, { "vulnerability": "VCID-37uh-rp8n-sfa2" }, { "vulnerability": "VCID-4gcp-bfru-57ay" }, { "vulnerability": "VCID-4uay-c8mx-ekdb" }, { "vulnerability": "VCID-58bv-cjnr-3fdh" }, { "vulnerability": "VCID-5mpc-pasz-x3hd" }, { "vulnerability": "VCID-7m3j-x9kb-9ffv" }, { "vulnerability": "VCID-91gu-1pgh-jubb" }, { "vulnerability": "VCID-9n2b-z8vv-qbec" }, { "vulnerability": "VCID-a9mu-gdgc-cbct" }, { "vulnerability": "VCID-au4y-xz41-zyfy" }, { "vulnerability": "VCID-axbc-ddng-buap" }, { "vulnerability": "VCID-c551-3re3-xfat" }, { "vulnerability": "VCID-dk3j-jd9m-w3ap" }, { "vulnerability": "VCID-dx7m-ma2j-6ket" }, { "vulnerability": "VCID-dxqf-acq4-nuca" }, { "vulnerability": "VCID-fd7y-6dw5-x7h4" }, { "vulnerability": "VCID-fhyj-cymx-pfgp" }, { "vulnerability": "VCID-fj3a-gsa8-nug7" }, { "vulnerability": "VCID-fqyj-zxer-p3cf" }, { "vulnerability": "VCID-h9a4-7v2b-9kg2" }, { "vulnerability": "VCID-j67y-7adf-3ygp" }, { "vulnerability": "VCID-krvj-487p-auep" }, { "vulnerability": "VCID-nktq-p6vq-hkgq" }, { "vulnerability": "VCID-peud-25dw-4ud9" }, { "vulnerability": "VCID-s48v-g94e-jkb9" }, { "vulnerability": "VCID-sn81-psqc-r7de" }, { "vulnerability": "VCID-st8n-ewcq-tqd8" }, { "vulnerability": "VCID-t54j-wpun-nfcb" }, { "vulnerability": "VCID-u5y7-amh6-3uec" }, { "vulnerability": "VCID-uvtu-2xmq-jfbw" }, { "vulnerability": "VCID-wg43-zbfb-nfaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/kernel-rt@2.6.33.9-rt31.75%3Farch=el6rt" } ], "references": [ { "reference_url": "http://openwall.com/lists/oss-security/2011/02/24/18", "reference_id": "", "reference_type": "", "scores": [], "url": "http://openwall.com/lists/oss-security/2011/02/24/18" }, { "reference_url": "http://openwall.com/lists/oss-security/2011/02/25/2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://openwall.com/lists/oss-security/2011/02/25/2" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-1020.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-1020.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2011-1020", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00245", "scoring_system": "epss", "scoring_elements": "0.47773", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.00245", "scoring_system": "epss", "scoring_elements": "0.47783", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00245", "scoring_system": "epss", "scoring_elements": "0.47821", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00245", "scoring_system": "epss", "scoring_elements": "0.47843", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00245", "scoring_system": "epss", "scoring_elements": "0.47791", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00245", "scoring_system": "epss", "scoring_elements": "0.47844", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00245", "scoring_system": "epss", "scoring_elements": "0.4784", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00245", "scoring_system": "epss", "scoring_elements": "0.47864", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00245", "scoring_system": "epss", "scoring_elements": "0.47849", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00245", "scoring_system": "epss", "scoring_elements": "0.47904", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00245", "scoring_system": "epss", "scoring_elements": "0.47897", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00245", "scoring_system": "epss", "scoring_elements": "0.4785", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00245", "scoring_system": "epss", "scoring_elements": "0.47833", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00245", "scoring_system": "epss", "scoring_elements": "0.4779", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00245", "scoring_system": "epss", "scoring_elements": "0.47706", "published_at": "2026-05-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2011-1020" }, { "reference_url": "http://seclists.org/fulldisclosure/2011/Jan/421", "reference_id": "", "reference_type": "", "scores": [], "url": "http://seclists.org/fulldisclosure/2011/Jan/421" }, { "reference_url": "http://secunia.com/advisories/43496", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/43496" }, { "reference_url": "http://securityreason.com/securityalert/8107", "reference_id": "", "reference_type": "", "scores": [], "url": "http://securityreason.com/securityalert/8107" }, { "reference_url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/65693", "reference_id": "", "reference_type": "", "scores": [], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/65693" }, { "reference_url": "https://lkml.org/lkml/2011/2/10/21", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lkml.org/lkml/2011/2/10/21" }, { "reference_url": "https://lkml.org/lkml/2011/2/7/368", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lkml.org/lkml/2011/2/7/368" }, { "reference_url": "https://lkml.org/lkml/2011/2/7/404", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lkml.org/lkml/2011/2/7/404" }, { "reference_url": "https://lkml.org/lkml/2011/2/7/414", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lkml.org/lkml/2011/2/7/414" }, { "reference_url": "https://lkml.org/lkml/2011/2/7/466", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lkml.org/lkml/2011/2/7/466" }, { "reference_url": "https://lkml.org/lkml/2011/2/7/474", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lkml.org/lkml/2011/2/7/474" }, { "reference_url": "https://lkml.org/lkml/2011/2/9/417", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lkml.org/lkml/2011/2/9/417" }, { "reference_url": "http://www.securityfocus.com/bid/46567", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/46567" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=680358", "reference_id": "680358", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=680358" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/41770.txt", "reference_id": "CVE-2011-1020", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/41770.txt" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1020", "reference_id": "CVE-2011-1020", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:P/I:P/A:P" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1020" }, { "reference_url": "http://www.halfdog.net/Security/2011/SuidBinariesAndProcInterface/", "reference_id": "CVE-2011-1020", "reference_type": "exploit", "scores": [], "url": "http://www.halfdog.net/Security/2011/SuidBinariesAndProcInterface/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2011:1253", "reference_id": "RHSA-2011:1253", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2011:1253" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2011:1530", "reference_id": "RHSA-2011:1530", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2011:1530" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0007", "reference_id": "RHSA-2012:0007", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0007" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0116", "reference_id": "RHSA-2012:0116", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0116" }, { "reference_url": "https://usn.ubuntu.com/1189-1/", "reference_id": "USN-1189-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1189-1/" }, { "reference_url": "https://usn.ubuntu.com/1201-1/", "reference_id": "USN-1201-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1201-1/" }, { "reference_url": "https://usn.ubuntu.com/1202-1/", "reference_id": "USN-1202-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1202-1/" }, { "reference_url": "https://usn.ubuntu.com/1203-1/", "reference_id": "USN-1203-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1203-1/" }, { "reference_url": "https://usn.ubuntu.com/1204-1/", "reference_id": "USN-1204-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1204-1/" }, { "reference_url": "https://usn.ubuntu.com/1205-1/", "reference_id": "USN-1205-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1205-1/" }, { "reference_url": "https://usn.ubuntu.com/1208-1/", "reference_id": "USN-1208-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1208-1/" }, { "reference_url": "https://usn.ubuntu.com/1211-1/", "reference_id": "USN-1211-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1211-1/" }, { "reference_url": "https://usn.ubuntu.com/1212-1/", "reference_id": "USN-1212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1212-1/" }, { "reference_url": "https://usn.ubuntu.com/1216-1/", "reference_id": "USN-1216-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1216-1/" }, { "reference_url": "https://usn.ubuntu.com/1218-1/", "reference_id": "USN-1218-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1218-1/" }, { "reference_url": "https://usn.ubuntu.com/1256-1/", "reference_id": "USN-1256-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1256-1/" } ], "weaknesses": [ { "cwe_id": 200, "name": "Exposure of Sensitive Information to an Unauthorized Actor", "description": "The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information." } ], "exploits": [ { "date_added": "2017-03-29", "description": "Linux Kernel 2.6.32 (Ubuntu 10.04) - '/proc' Handling SUID Privilege Escalation", "required_action": null, "due_date": null, "notes": null, "known_ransomware_campaign_use": false, "source_date_published": "2011-01-17", "exploit_type": "local", "platform": "linux", "source_date_updated": "2017-03-30", "data_source": "Exploit-DB", "source_url": "http://www.halfdog.net/Security/2011/SuidBinariesAndProcInterface/" } ], "severity_range_score": "4.6 - 4.6", "exploitability": "2.0", "weighted_severity": "4.1", "risk_score": 8.2, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-91gu-1pgh-jubb" }