Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/94207?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/94207?format=api", "vulnerability_id": "VCID-5zg4-7yen-hudm", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.31 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server as well as unauthorized update, insert or delete access to some of MySQL Server accessible data. CVSS 3.1 Base Score 5.5 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H).", "aliases": [ { "alias": "CVE-2023-21877" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/117338?format=api", "purl": "pkg:deb/debian/mysql-8.0@8.0.32-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mysql-8.0@8.0.32-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/117263?format=api", "purl": "pkg:deb/debian/mysql-8.0@8.0.46-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mysql-8.0@8.0.46-1%3Fdistro=sid" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/114911?format=api", "purl": "pkg:rpm/redhat/mysql@8.0.32-1?arch=el9_2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2ey3-pznm-4qa6" }, { "vulnerability": "VCID-36ea-rxdj-6yhs" }, { "vulnerability": "VCID-4x2j-tkdh-6bf5" }, { "vulnerability": "VCID-5vw5-7zqr-ayge" }, { "vulnerability": "VCID-5zg4-7yen-hudm" }, { "vulnerability": "VCID-6kea-fz78-63eh" }, { "vulnerability": "VCID-6u56-1f1e-sbcc" }, { "vulnerability": "VCID-7vm6-b2gj-4qar" }, { "vulnerability": "VCID-bm7m-xc2h-vycw" }, { "vulnerability": "VCID-cmb8-a2c3-u7gr" }, { "vulnerability": "VCID-csh8-77pm-rba5" }, { "vulnerability": "VCID-cvcy-2ex6-byex" }, { "vulnerability": "VCID-d7fg-2mxf-8ucm" }, { "vulnerability": "VCID-dh6p-sm24-xkdk" }, { "vulnerability": "VCID-esye-2vyd-vfhf" }, { "vulnerability": "VCID-eutx-b795-7yd2" }, { "vulnerability": "VCID-exu6-w5j7-xfhw" }, { "vulnerability": "VCID-fkr3-ax5b-2udb" }, { "vulnerability": "VCID-fy51-1txf-dqhb" }, { "vulnerability": "VCID-hpf1-henb-1faj" }, { "vulnerability": "VCID-htv7-2xug-afgy" }, { "vulnerability": "VCID-jnhh-s2s4-sucv" }, { "vulnerability": "VCID-kqkf-zt1q-2yb5" }, { "vulnerability": "VCID-man4-rd8j-jbak" }, { "vulnerability": "VCID-nahz-27z9-4bbe" }, { "vulnerability": "VCID-nffx-h8xq-m7fb" }, { "vulnerability": "VCID-p645-a351-6ubt" }, { "vulnerability": "VCID-pn6n-m26v-yya1" }, { "vulnerability": "VCID-ptvq-cte4-hubq" }, { "vulnerability": "VCID-q8au-bfbx-zbh8" }, { "vulnerability": "VCID-qftm-fmj9-j3gj" }, { "vulnerability": "VCID-qk42-4cxt-qqda" }, { "vulnerability": "VCID-r6z5-asps-dqe7" }, { "vulnerability": "VCID-r783-8f48-pbcf" }, { "vulnerability": "VCID-tnhh-36x8-z7gj" }, { "vulnerability": "VCID-u71g-14b9-q3bz" }, { "vulnerability": "VCID-uzkv-x1vm-q3fq" }, { "vulnerability": "VCID-v17s-pwrw-efbu" }, { "vulnerability": "VCID-wb3n-sffz-5fah" }, { "vulnerability": "VCID-xcvf-6qga-uqdt" }, { "vulnerability": "VCID-y2qv-e13y-6ugr" }, { "vulnerability": "VCID-yeqr-y9wu-ykh8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/mysql@8.0.32-1%3Farch=el9_2" }, { "url": "http://public2.vulnerablecode.io/api/packages/114910?format=api", "purl": "pkg:rpm/redhat/rh-mysql80-mysql@8.0.32-1?arch=el7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2ey3-pznm-4qa6" }, { "vulnerability": "VCID-36ea-rxdj-6yhs" }, { "vulnerability": "VCID-4x2j-tkdh-6bf5" }, { "vulnerability": "VCID-5vw5-7zqr-ayge" }, { "vulnerability": "VCID-5zg4-7yen-hudm" }, { "vulnerability": "VCID-6kea-fz78-63eh" }, { "vulnerability": "VCID-6u56-1f1e-sbcc" }, { "vulnerability": "VCID-7vm6-b2gj-4qar" }, { "vulnerability": "VCID-bm7m-xc2h-vycw" }, { "vulnerability": "VCID-cmb8-a2c3-u7gr" }, { "vulnerability": "VCID-csh8-77pm-rba5" }, { "vulnerability": "VCID-cvcy-2ex6-byex" }, { "vulnerability": "VCID-d7fg-2mxf-8ucm" }, { "vulnerability": "VCID-dh6p-sm24-xkdk" }, { "vulnerability": "VCID-esye-2vyd-vfhf" }, { "vulnerability": "VCID-eutx-b795-7yd2" }, { "vulnerability": "VCID-exu6-w5j7-xfhw" }, { "vulnerability": "VCID-fkr3-ax5b-2udb" }, { "vulnerability": "VCID-fy51-1txf-dqhb" }, { "vulnerability": "VCID-hpf1-henb-1faj" }, { "vulnerability": "VCID-htv7-2xug-afgy" }, { "vulnerability": "VCID-jnhh-s2s4-sucv" }, { "vulnerability": "VCID-kqkf-zt1q-2yb5" }, { "vulnerability": "VCID-man4-rd8j-jbak" }, { "vulnerability": "VCID-nahz-27z9-4bbe" }, { "vulnerability": "VCID-nffx-h8xq-m7fb" }, { "vulnerability": "VCID-p645-a351-6ubt" }, { "vulnerability": "VCID-pn6n-m26v-yya1" }, { "vulnerability": "VCID-ptvq-cte4-hubq" }, { "vulnerability": "VCID-q8au-bfbx-zbh8" }, { "vulnerability": "VCID-qftm-fmj9-j3gj" }, { "vulnerability": "VCID-qk42-4cxt-qqda" }, { "vulnerability": "VCID-r6z5-asps-dqe7" }, { "vulnerability": "VCID-r783-8f48-pbcf" }, { "vulnerability": "VCID-tnhh-36x8-z7gj" }, { "vulnerability": "VCID-u71g-14b9-q3bz" }, { "vulnerability": "VCID-uzkv-x1vm-q3fq" }, { "vulnerability": "VCID-v17s-pwrw-efbu" }, { "vulnerability": "VCID-wb3n-sffz-5fah" }, { "vulnerability": "VCID-xcvf-6qga-uqdt" }, { "vulnerability": "VCID-y2qv-e13y-6ugr" }, { "vulnerability": "VCID-yeqr-y9wu-ykh8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-mysql80-mysql@8.0.32-1%3Farch=el7" } ], "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-21877.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-21877.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-21877", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00443", "scoring_system": "epss", "scoring_elements": "0.63657", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00443", "scoring_system": "epss", "scoring_elements": "0.63627", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00443", "scoring_system": "epss", "scoring_elements": "0.63669", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00443", "scoring_system": "epss", "scoring_elements": "0.63677", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-21877" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1029151", "reference_id": "1029151", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1029151" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2162284", "reference_id": "2162284", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2162284" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1102", "reference_id": "RHSA-2023:1102", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1102" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2621", "reference_id": "RHSA-2023:2621", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2621" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3087", "reference_id": "RHSA-2023:3087", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3087" }, { "reference_url": "https://usn.ubuntu.com/5823-1/", "reference_id": "USN-5823-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5823-1/" } ], "weaknesses": [], "exploits": [], "severity_range_score": "5.5 - 5.5", "exploitability": "0.5", "weighted_severity": "5.0", "risk_score": 2.5, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5zg4-7yen-hudm" }