Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/1036003?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/1036003?format=api", "purl": "pkg:deb/debian/vlc@2.1.5-1~bpo70%2B1", "type": "deb", "namespace": "debian", "name": "vlc", "version": "2.1.5-1~bpo70+1", "qualifiers": {}, "subpath": "", "is_vulnerable": true, "next_non_vulnerable_version": "3.0.23-0+deb12u1", "latest_non_vulnerable_version": "3.0.23-0+deb12u1", "affected_by_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50613?format=api", "vulnerability_id": "VCID-1utk-kk7m-pqa8", "summary": "Multiple vulnerabilities have been found in VLC, the worst of which\n could result in the arbitrary execution of code.", "references": [ { "reference_url": "http://git.videolan.org/?p=vlc.git&a=search&h=refs/heads/master&st=commit&s=cve-2019", "reference_id": "", "reference_type": "", "scores": [], "url": "http://git.videolan.org/?p=vlc.git&a=search&h=refs/heads/master&st=commit&s=cve-2019" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00036.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00036.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00046.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00046.html" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-14970", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00623", "scoring_system": "epss", "scoring_elements": "0.70159", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00623", "scoring_system": "epss", "scoring_elements": "0.70181", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00623", "scoring_system": "epss", "scoring_elements": "0.70064", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00623", "scoring_system": "epss", "scoring_elements": "0.70077", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00623", "scoring_system": "epss", "scoring_elements": "0.70091", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00623", "scoring_system": "epss", "scoring_elements": "0.70068", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00623", "scoring_system": "epss", "scoring_elements": "0.70116", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00623", "scoring_system": "epss", "scoring_elements": "0.70132", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00623", "scoring_system": "epss", "scoring_elements": "0.70156", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00623", "scoring_system": "epss", "scoring_elements": "0.70141", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00623", "scoring_system": "epss", "scoring_elements": "0.70128", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00623", "scoring_system": "epss", "scoring_elements": "0.70172", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-14970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13602" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13962", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13962" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14437", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14437" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14438", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14438" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14498", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14498" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14776", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14776" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14777", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14777" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14970" }, { "reference_url": "https://seclists.org/bugtraq/2019/Aug/36", "reference_id": "", "reference_type": "", "scores": [], "url": "https://seclists.org/bugtraq/2019/Aug/36" }, { "reference_url": "https://www.debian.org/security/2019/dsa-4504", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2019/dsa-4504" }, { "reference_url": "https://www.videolan.org/security/sb-vlc308.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.videolan.org/security/sb-vlc308.html" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:3.0.7.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:videolan:vlc_media_player:3.0.7.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:3.0.7.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14970", "reference_id": "CVE-2019-14970", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14970" }, { "reference_url": "https://security.gentoo.org/glsa/201909-02", "reference_id": "GLSA-201909-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201909-02" }, { "reference_url": "https://usn.ubuntu.com/4131-1/", "reference_id": "USN-4131-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4131-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036932?format=api", "purl": "pkg:deb/debian/vlc@3.0.11-0%2Bdeb9u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.11-0%252Bdeb9u1" } ], "aliases": [ "CVE-2019-14970" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1utk-kk7m-pqa8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/90915?format=api", "vulnerability_id": "VCID-24xa-1hn8-rkbe", "summary": "security update", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-25804", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01001", "scoring_system": "epss", "scoring_elements": "0.76935", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01001", "scoring_system": "epss", "scoring_elements": "0.76941", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01001", "scoring_system": "epss", "scoring_elements": "0.76971", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01001", "scoring_system": "epss", "scoring_elements": "0.76953", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01001", "scoring_system": "epss", "scoring_elements": "0.76985", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01001", "scoring_system": "epss", "scoring_elements": "0.76996", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01001", "scoring_system": "epss", "scoring_elements": "0.77023", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01001", "scoring_system": "epss", "scoring_elements": "0.77002", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01001", "scoring_system": "epss", "scoring_elements": "0.76997", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01001", "scoring_system": "epss", "scoring_elements": "0.77038", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.01001", "scoring_system": "epss", "scoring_elements": "0.7704", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01001", "scoring_system": "epss", "scoring_elements": "0.77033", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-25804" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26664", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26664" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25801", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25801" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25802", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25802" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25803", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25803" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25804", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25804" }, { "reference_url": "https://usn.ubuntu.com/6180-1/", "reference_id": "USN-6180-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6180-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1038200?format=api", "purl": "pkg:deb/debian/vlc@3.0.17.4-0%2Bdeb10u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.17.4-0%252Bdeb10u1" } ], "aliases": [ "CVE-2021-25804" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-24xa-1hn8-rkbe" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/47328?format=api", "vulnerability_id": "VCID-27xm-d15a-yugk", "summary": "Multiple vulnerabilities have been found in libmicrodns, the worst\n of which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-6072", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00827", "scoring_system": "epss", "scoring_elements": "0.74534", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00827", "scoring_system": "epss", "scoring_elements": "0.74489", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00827", "scoring_system": "epss", "scoring_elements": "0.74526", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00827", "scoring_system": "epss", "scoring_elements": "0.74441", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00827", "scoring_system": "epss", "scoring_elements": "0.74445", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00827", "scoring_system": "epss", "scoring_elements": "0.74472", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00827", "scoring_system": "epss", "scoring_elements": "0.74446", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00827", "scoring_system": "epss", "scoring_elements": "0.74478", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00827", "scoring_system": "epss", "scoring_elements": "0.74494", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00827", "scoring_system": "epss", "scoring_elements": "0.74516", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00827", "scoring_system": "epss", "scoring_elements": "0.74497", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-6072" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6071", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6071" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6072", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6072" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6073", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6073" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6077", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6077" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6078", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6078" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6079", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6079" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6080", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6080" }, { "reference_url": "https://talosintelligence.com/vulnerability_reports/TALOS-2020-0995", "reference_id": "", "reference_type": "", "scores": [], "url": "https://talosintelligence.com/vulnerability_reports/TALOS-2020-0995" }, { "reference_url": "https://www.debian.org/security/2020/dsa-4671", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2020/dsa-4671" }, { "reference_url": "https://security.archlinux.org/ASA-202004-24", "reference_id": "ASA-202004-24", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202004-24" }, { "reference_url": "https://security.archlinux.org/AVG-1136", "reference_id": "AVG-1136", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1136" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolabs:libmicrodns:0.1.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:videolabs:libmicrodns:0.1.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolabs:libmicrodns:0.1.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2020-6072", "reference_id": "CVE-2020-6072", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:P/I:P/A:P" }, { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-6072" }, { "reference_url": "https://security.gentoo.org/glsa/202005-10", "reference_id": "GLSA-202005-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202005-10" }, { "reference_url": "https://usn.ubuntu.com/7239-1/", "reference_id": "USN-7239-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7239-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036932?format=api", "purl": "pkg:deb/debian/vlc@3.0.11-0%2Bdeb9u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.11-0%252Bdeb9u1" } ], "aliases": [ "CVE-2020-6072" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-27xm-d15a-yugk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/58728?format=api", "vulnerability_id": "VCID-2d6p-9nvq-m3hc", "summary": "security update", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-9630", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00398", "scoring_system": "epss", "scoring_elements": "0.60495", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00398", "scoring_system": "epss", "scoring_elements": "0.60569", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00398", "scoring_system": "epss", "scoring_elements": "0.60597", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00398", "scoring_system": "epss", "scoring_elements": "0.60566", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00398", "scoring_system": "epss", "scoring_elements": "0.60615", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00398", "scoring_system": "epss", "scoring_elements": "0.60631", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00398", "scoring_system": "epss", "scoring_elements": "0.60655", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00398", "scoring_system": "epss", "scoring_elements": "0.60641", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00398", "scoring_system": "epss", "scoring_elements": "0.6062", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00398", "scoring_system": "epss", "scoring_elements": "0.60662", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00398", "scoring_system": "epss", "scoring_elements": "0.60668", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00398", "scoring_system": "epss", "scoring_elements": "0.60654", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-9630" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9628", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9628" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9629", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9629" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9630", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9630" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=775866", "reference_id": "775866", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=775866" }, { "reference_url": "https://security.gentoo.org/glsa/201603-08", "reference_id": "GLSA-201603-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201603-08" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036004?format=api", "purl": "pkg:deb/debian/vlc@2.2.0~rc2-2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1utk-kk7m-pqa8" }, { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-27xm-d15a-yugk" }, { "vulnerability": "VCID-2mw7-98e2-93bv" }, { "vulnerability": "VCID-2n9d-6mcy-6fhb" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-52yg-hpt4-9kfy" }, { "vulnerability": "VCID-5k4p-gat4-afhp" }, { "vulnerability": "VCID-5pkk-pxmh-93hy" }, { "vulnerability": "VCID-5vkn-89xw-hyba" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-7hn8-1cj7-2be3" }, { "vulnerability": "VCID-7s4c-q35j-sbf8" }, { "vulnerability": "VCID-85px-3mub-ckdj" }, { "vulnerability": "VCID-978h-eswr-afea" }, { "vulnerability": "VCID-9g9m-c8sc-vfcj" }, { "vulnerability": "VCID-9je8-nsha-kug2" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-bbgn-7j2m-ykcx" }, { "vulnerability": "VCID-bw2j-vv6p-gqew" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-eae7-384g-pqc4" }, { "vulnerability": "VCID-ecyu-zuz8-u3ep" }, { "vulnerability": "VCID-ed2z-6wv2-y7ek" }, { "vulnerability": "VCID-ehcj-1d1g-kbcc" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-gh5m-y7mb-rkgf" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-hjn4-swbf-y3au" }, { "vulnerability": "VCID-j4vw-cnqw-1ygz" }, { "vulnerability": "VCID-kwv3-vghc-zubx" }, { "vulnerability": "VCID-mqhd-5hv6-wfdp" }, { "vulnerability": "VCID-p7du-wut5-1qb7" }, { "vulnerability": "VCID-pmkx-83qk-tkhs" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-r4z4-61hf-3bfx" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-s8sm-qx3a-bfcn" }, { "vulnerability": "VCID-ttra-pkh7-mua4" }, { "vulnerability": "VCID-twng-xd4x-37h6" }, { "vulnerability": "VCID-v5wk-fb4c-b3h1" }, { "vulnerability": "VCID-vsn2-k6hq-7keu" }, { "vulnerability": "VCID-x8r6-rr2f-dufm" }, { "vulnerability": "VCID-yg5r-j2sk-hbav" }, { "vulnerability": "VCID-yndu-f7m6-23gk" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" }, { "vulnerability": "VCID-zr1q-3g6a-yqhd" }, { "vulnerability": "VCID-zry2-jfrq-yug4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@2.2.0~rc2-2" } ], "aliases": [ "CVE-2014-9630" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2d6p-9nvq-m3hc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50810?format=api", "vulnerability_id": "VCID-2mw7-98e2-93bv", "summary": "Multiple vulnerabilities have been found in VLC, the worst of which\n may allow remote attackers to execute arbitrary code.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-8312", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56624", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56505", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56602", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56623", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56653", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56658", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56667", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56642", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56621", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56652", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56651", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-8312" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8311", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8311" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8312", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8312" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8313", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8313" }, { "reference_url": "https://security.archlinux.org/ASA-201706-1", "reference_id": "ASA-201706-1", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201706-1" }, { "reference_url": "https://security.archlinux.org/AVG-283", "reference_id": "AVG-283", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-283" }, { "reference_url": "https://security.gentoo.org/glsa/201707-10", "reference_id": "GLSA-201707-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201707-10" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036005?format=api", "purl": "pkg:deb/debian/vlc@2.2.7-1~deb8u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1utk-kk7m-pqa8" }, { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-27xm-d15a-yugk" }, { "vulnerability": "VCID-2n9d-6mcy-6fhb" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-52yg-hpt4-9kfy" }, { "vulnerability": "VCID-5k4p-gat4-afhp" }, { "vulnerability": "VCID-5vkn-89xw-hyba" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-7hn8-1cj7-2be3" }, { "vulnerability": "VCID-7s4c-q35j-sbf8" }, { "vulnerability": "VCID-9g9m-c8sc-vfcj" }, { "vulnerability": "VCID-9je8-nsha-kug2" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-bbgn-7j2m-ykcx" }, { "vulnerability": "VCID-bw2j-vv6p-gqew" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-eae7-384g-pqc4" }, { "vulnerability": "VCID-ecyu-zuz8-u3ep" }, { "vulnerability": "VCID-ed2z-6wv2-y7ek" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-gh5m-y7mb-rkgf" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-hjn4-swbf-y3au" }, { "vulnerability": "VCID-j4vw-cnqw-1ygz" }, { "vulnerability": "VCID-kwv3-vghc-zubx" }, { "vulnerability": "VCID-mqhd-5hv6-wfdp" }, { "vulnerability": "VCID-pmkx-83qk-tkhs" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-r4z4-61hf-3bfx" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-s8sm-qx3a-bfcn" }, { "vulnerability": "VCID-ttra-pkh7-mua4" }, { "vulnerability": "VCID-twng-xd4x-37h6" }, { "vulnerability": "VCID-v5wk-fb4c-b3h1" }, { "vulnerability": "VCID-x8r6-rr2f-dufm" }, { "vulnerability": "VCID-yg5r-j2sk-hbav" }, { "vulnerability": "VCID-yndu-f7m6-23gk" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" }, { "vulnerability": "VCID-zry2-jfrq-yug4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@2.2.7-1~deb8u1" } ], "aliases": [ "CVE-2017-8312" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2mw7-98e2-93bv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/47332?format=api", "vulnerability_id": "VCID-2n9d-6mcy-6fhb", "summary": "Multiple vulnerabilities have been found in libmicrodns, the worst\n of which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-6079", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00311", "scoring_system": "epss", "scoring_elements": "0.54291", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00311", "scoring_system": "epss", "scoring_elements": "0.54268", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00311", "scoring_system": "epss", "scoring_elements": "0.54311", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00311", "scoring_system": "epss", "scoring_elements": "0.54184", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00311", "scoring_system": "epss", "scoring_elements": "0.54204", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00311", "scoring_system": "epss", "scoring_elements": "0.54234", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00311", "scoring_system": "epss", "scoring_elements": "0.5421", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00311", "scoring_system": "epss", "scoring_elements": "0.54262", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00311", "scoring_system": "epss", "scoring_elements": "0.54257", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00311", "scoring_system": "epss", "scoring_elements": "0.54306", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00311", "scoring_system": "epss", "scoring_elements": "0.54289", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-6079" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6071", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6071" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6072", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6072" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6073", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6073" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6077", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6077" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6078", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6078" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6079", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6079" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6080", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6080" }, { "reference_url": "https://talosintelligence.com/vulnerability_reports/TALOS-2020-1002", "reference_id": "", "reference_type": "", "scores": [], "url": "https://talosintelligence.com/vulnerability_reports/TALOS-2020-1002" }, { "reference_url": "https://www.debian.org/security/2020/dsa-4671", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2020/dsa-4671" }, { "reference_url": "https://security.archlinux.org/ASA-202004-24", "reference_id": "ASA-202004-24", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202004-24" }, { "reference_url": "https://security.archlinux.org/AVG-1136", "reference_id": "AVG-1136", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1136" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolabs:libmicrodns:0.1.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:videolabs:libmicrodns:0.1.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolabs:libmicrodns:0.1.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2020-6079", "reference_id": "CVE-2020-6079", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-6079" }, { "reference_url": "https://security.gentoo.org/glsa/202005-10", "reference_id": "GLSA-202005-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202005-10" }, { "reference_url": "https://usn.ubuntu.com/7239-1/", "reference_id": "USN-7239-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7239-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036932?format=api", "purl": "pkg:deb/debian/vlc@3.0.11-0%2Bdeb9u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.11-0%252Bdeb9u1" } ], "aliases": [ "CVE-2020-6079" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2n9d-6mcy-6fhb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/96749?format=api", "vulnerability_id": "VCID-4cqm-15gx-p7gr", "summary": "mmstu.c in VideoLAN VLC media player before 3.0.22 allows an out-of-bounds read and denial of service via a crafted 0x01 response from an MMS server.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-51602", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00017", "scoring_system": "epss", "scoring_elements": "0.04098", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00017", "scoring_system": "epss", "scoring_elements": "0.03978", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00017", "scoring_system": "epss", "scoring_elements": "0.03961", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00017", "scoring_system": "epss", "scoring_elements": "0.03973", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00017", "scoring_system": "epss", "scoring_elements": "0.03992", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00017", "scoring_system": "epss", "scoring_elements": "0.04009", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00017", "scoring_system": "epss", "scoring_elements": "0.04023", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00017", "scoring_system": "epss", "scoring_elements": "0.04029", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00017", "scoring_system": "epss", "scoring_elements": "0.04047", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00017", "scoring_system": "epss", "scoring_elements": "0.0402", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00017", "scoring_system": "epss", "scoring_elements": "0.04005", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-51602" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-51602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-51602" }, { "reference_url": "https://code.videolan.org/videolan/vlc/-/issues/29146", "reference_id": "29146", "reference_type": "", "scores": [ { "value": "4.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-20T17:35:28Z/" } ], "url": "https://code.videolan.org/videolan/vlc/-/issues/29146" }, { "reference_url": "https://www.videolan.org/security/sb-vlc3022.html", "reference_id": "sb-vlc3022.html", "reference_type": "", "scores": [ { "value": "4.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-20T17:35:28Z/" } ], "url": "https://www.videolan.org/security/sb-vlc3022.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1055424?format=api", "purl": "pkg:deb/debian/vlc@3.0.23-0%2Bdeb12u1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-0%252Bdeb12u1" } ], "aliases": [ "CVE-2025-51602" ], "risk_score": 1.2, "exploitability": "0.5", "weighted_severity": "2.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4cqm-15gx-p7gr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50612?format=api", "vulnerability_id": "VCID-52yg-hpt4-9kfy", "summary": "Multiple vulnerabilities have been found in VLC, the worst of which\n could result in the arbitrary execution of code.", "references": [ { "reference_url": "http://git.videolan.org/?p=vlc.git&a=search&h=refs/heads/master&st=commit&s=cve-2019", "reference_id": "", "reference_type": "", "scores": [], "url": "http://git.videolan.org/?p=vlc.git&a=search&h=refs/heads/master&st=commit&s=cve-2019" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00036.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00036.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00046.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00046.html" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-14778", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00307", "scoring_system": "epss", "scoring_elements": "0.53987", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00307", "scoring_system": "epss", "scoring_elements": "0.54006", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00307", "scoring_system": "epss", "scoring_elements": "0.53879", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00307", "scoring_system": "epss", "scoring_elements": "0.53897", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00307", "scoring_system": "epss", "scoring_elements": "0.53925", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00307", "scoring_system": "epss", "scoring_elements": "0.539", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00307", "scoring_system": "epss", "scoring_elements": "0.53952", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00307", "scoring_system": "epss", "scoring_elements": "0.53951", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00307", "scoring_system": "epss", "scoring_elements": "0.53998", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00307", "scoring_system": "epss", "scoring_elements": "0.53981", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00307", "scoring_system": "epss", "scoring_elements": "0.53963", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00307", "scoring_system": "epss", "scoring_elements": "0.54001", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-14778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13602" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13962", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13962" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14437", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14437" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14438", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14438" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14498", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14498" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14776", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14776" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14777", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14777" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14970" }, { "reference_url": "https://seclists.org/bugtraq/2019/Aug/36", "reference_id": "", "reference_type": "", "scores": [], "url": "https://seclists.org/bugtraq/2019/Aug/36" }, { "reference_url": "https://www.debian.org/security/2019/dsa-4504", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2019/dsa-4504" }, { "reference_url": "https://www.videolan.org/security/sb-vlc308.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.videolan.org/security/sb-vlc308.html" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:3.0.7.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:videolan:vlc_media_player:3.0.7.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:3.0.7.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14778", "reference_id": "CVE-2019-14778", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14778" }, { "reference_url": "https://security.gentoo.org/glsa/201909-02", "reference_id": "GLSA-201909-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201909-02" }, { "reference_url": "https://usn.ubuntu.com/4131-1/", "reference_id": "USN-4131-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4131-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036932?format=api", "purl": "pkg:deb/debian/vlc@3.0.11-0%2Bdeb9u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.11-0%252Bdeb9u1" } ], "aliases": [ "CVE-2019-14778" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-52yg-hpt4-9kfy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/58726?format=api", "vulnerability_id": "VCID-5d5e-5emh-fqh4", "summary": "security update", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-9629", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01498", "scoring_system": "epss", "scoring_elements": "0.81062", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01498", "scoring_system": "epss", "scoring_elements": "0.81071", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01498", "scoring_system": "epss", "scoring_elements": "0.81096", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01498", "scoring_system": "epss", "scoring_elements": "0.81123", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01498", "scoring_system": "epss", "scoring_elements": "0.8113", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01498", "scoring_system": "epss", "scoring_elements": "0.81147", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01498", "scoring_system": "epss", "scoring_elements": "0.81134", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01498", "scoring_system": "epss", "scoring_elements": "0.81127", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01498", "scoring_system": "epss", "scoring_elements": "0.81164", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.01498", "scoring_system": "epss", "scoring_elements": "0.81166", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01498", "scoring_system": "epss", "scoring_elements": "0.81163", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-9629" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9628", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9628" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9629", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9629" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9630", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9630" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=775866", "reference_id": "775866", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=775866" }, { "reference_url": "https://security.gentoo.org/glsa/201603-08", "reference_id": "GLSA-201603-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201603-08" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036004?format=api", "purl": "pkg:deb/debian/vlc@2.2.0~rc2-2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1utk-kk7m-pqa8" }, { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-27xm-d15a-yugk" }, { "vulnerability": "VCID-2mw7-98e2-93bv" }, { "vulnerability": "VCID-2n9d-6mcy-6fhb" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-52yg-hpt4-9kfy" }, { "vulnerability": "VCID-5k4p-gat4-afhp" }, { "vulnerability": "VCID-5pkk-pxmh-93hy" }, { "vulnerability": "VCID-5vkn-89xw-hyba" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-7hn8-1cj7-2be3" }, { "vulnerability": "VCID-7s4c-q35j-sbf8" }, { "vulnerability": "VCID-85px-3mub-ckdj" }, { "vulnerability": "VCID-978h-eswr-afea" }, { "vulnerability": "VCID-9g9m-c8sc-vfcj" }, { "vulnerability": "VCID-9je8-nsha-kug2" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-bbgn-7j2m-ykcx" }, { "vulnerability": "VCID-bw2j-vv6p-gqew" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-eae7-384g-pqc4" }, { "vulnerability": "VCID-ecyu-zuz8-u3ep" }, { "vulnerability": "VCID-ed2z-6wv2-y7ek" }, { "vulnerability": "VCID-ehcj-1d1g-kbcc" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-gh5m-y7mb-rkgf" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-hjn4-swbf-y3au" }, { "vulnerability": "VCID-j4vw-cnqw-1ygz" }, { "vulnerability": "VCID-kwv3-vghc-zubx" }, { "vulnerability": "VCID-mqhd-5hv6-wfdp" }, { "vulnerability": "VCID-p7du-wut5-1qb7" }, { "vulnerability": "VCID-pmkx-83qk-tkhs" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-r4z4-61hf-3bfx" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-s8sm-qx3a-bfcn" }, { "vulnerability": "VCID-ttra-pkh7-mua4" }, { "vulnerability": "VCID-twng-xd4x-37h6" }, { "vulnerability": "VCID-v5wk-fb4c-b3h1" }, { "vulnerability": "VCID-vsn2-k6hq-7keu" }, { "vulnerability": "VCID-x8r6-rr2f-dufm" }, { "vulnerability": "VCID-yg5r-j2sk-hbav" }, { "vulnerability": "VCID-yndu-f7m6-23gk" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" }, { "vulnerability": "VCID-zr1q-3g6a-yqhd" }, { "vulnerability": "VCID-zry2-jfrq-yug4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@2.2.0~rc2-2" } ], "aliases": [ "CVE-2014-9629" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5d5e-5emh-fqh4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63628?format=api", "vulnerability_id": "VCID-5k4p-gat4-afhp", "summary": "security update", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-10699", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00675", "scoring_system": "epss", "scoring_elements": "0.71488", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00675", "scoring_system": "epss", "scoring_elements": "0.71415", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00675", "scoring_system": "epss", "scoring_elements": "0.71423", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00675", "scoring_system": "epss", "scoring_elements": "0.7144", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00675", "scoring_system": "epss", "scoring_elements": "0.71416", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00675", "scoring_system": "epss", "scoring_elements": "0.71457", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00675", "scoring_system": "epss", "scoring_elements": "0.71469", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00675", "scoring_system": "epss", "scoring_elements": "0.71491", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00675", "scoring_system": "epss", "scoring_elements": "0.71476", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00675", "scoring_system": "epss", "scoring_elements": "0.71503", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00675", "scoring_system": "epss", "scoring_elements": "0.71508", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-10699" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10699", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10699" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9300", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9300" }, { "reference_url": "https://security.archlinux.org/ASA-201712-4", "reference_id": "ASA-201712-4", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201712-4" }, { "reference_url": "https://security.archlinux.org/AVG-533", "reference_id": "AVG-533", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-533" }, { "reference_url": "https://usn.ubuntu.com/USN-4805-1/", "reference_id": "USN-USN-4805-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/USN-4805-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036005?format=api", "purl": "pkg:deb/debian/vlc@2.2.7-1~deb8u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1utk-kk7m-pqa8" }, { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-27xm-d15a-yugk" }, { "vulnerability": "VCID-2n9d-6mcy-6fhb" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-52yg-hpt4-9kfy" }, { "vulnerability": "VCID-5k4p-gat4-afhp" }, { "vulnerability": "VCID-5vkn-89xw-hyba" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-7hn8-1cj7-2be3" }, { "vulnerability": "VCID-7s4c-q35j-sbf8" }, { "vulnerability": "VCID-9g9m-c8sc-vfcj" }, { "vulnerability": "VCID-9je8-nsha-kug2" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-bbgn-7j2m-ykcx" }, { "vulnerability": "VCID-bw2j-vv6p-gqew" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-eae7-384g-pqc4" }, { "vulnerability": "VCID-ecyu-zuz8-u3ep" }, { "vulnerability": "VCID-ed2z-6wv2-y7ek" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-gh5m-y7mb-rkgf" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-hjn4-swbf-y3au" }, { "vulnerability": "VCID-j4vw-cnqw-1ygz" }, { "vulnerability": "VCID-kwv3-vghc-zubx" }, { "vulnerability": "VCID-mqhd-5hv6-wfdp" }, { "vulnerability": "VCID-pmkx-83qk-tkhs" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-r4z4-61hf-3bfx" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-s8sm-qx3a-bfcn" }, { "vulnerability": "VCID-ttra-pkh7-mua4" }, { "vulnerability": "VCID-twng-xd4x-37h6" }, { "vulnerability": "VCID-v5wk-fb4c-b3h1" }, { "vulnerability": "VCID-x8r6-rr2f-dufm" }, { "vulnerability": "VCID-yg5r-j2sk-hbav" }, { "vulnerability": "VCID-yndu-f7m6-23gk" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" }, { "vulnerability": "VCID-zry2-jfrq-yug4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@2.2.7-1~deb8u1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036932?format=api", "purl": "pkg:deb/debian/vlc@3.0.11-0%2Bdeb9u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.11-0%252Bdeb9u1" } ], "aliases": [ "CVE-2017-10699" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5k4p-gat4-afhp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50811?format=api", "vulnerability_id": "VCID-5pkk-pxmh-93hy", "summary": "Multiple vulnerabilities have been found in VLC, the worst of which\n may allow remote attackers to execute arbitrary code.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-8313", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56527", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56624", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56645", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56675", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.5668", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56689", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56664", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56643", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56674", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56673", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-8313" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8311", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8311" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8312", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8312" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8313", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8313" }, { "reference_url": "https://security.gentoo.org/glsa/201707-10", "reference_id": "GLSA-201707-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201707-10" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036005?format=api", "purl": "pkg:deb/debian/vlc@2.2.7-1~deb8u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1utk-kk7m-pqa8" }, { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-27xm-d15a-yugk" }, { "vulnerability": "VCID-2n9d-6mcy-6fhb" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-52yg-hpt4-9kfy" }, { "vulnerability": "VCID-5k4p-gat4-afhp" }, { "vulnerability": "VCID-5vkn-89xw-hyba" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-7hn8-1cj7-2be3" }, { "vulnerability": "VCID-7s4c-q35j-sbf8" }, { "vulnerability": "VCID-9g9m-c8sc-vfcj" }, { "vulnerability": "VCID-9je8-nsha-kug2" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-bbgn-7j2m-ykcx" }, { "vulnerability": "VCID-bw2j-vv6p-gqew" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-eae7-384g-pqc4" }, { "vulnerability": "VCID-ecyu-zuz8-u3ep" }, { "vulnerability": "VCID-ed2z-6wv2-y7ek" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-gh5m-y7mb-rkgf" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-hjn4-swbf-y3au" }, { "vulnerability": "VCID-j4vw-cnqw-1ygz" }, { "vulnerability": "VCID-kwv3-vghc-zubx" }, { "vulnerability": "VCID-mqhd-5hv6-wfdp" }, { "vulnerability": "VCID-pmkx-83qk-tkhs" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-r4z4-61hf-3bfx" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-s8sm-qx3a-bfcn" }, { "vulnerability": "VCID-ttra-pkh7-mua4" }, { "vulnerability": "VCID-twng-xd4x-37h6" }, { "vulnerability": "VCID-v5wk-fb4c-b3h1" }, { "vulnerability": "VCID-x8r6-rr2f-dufm" }, { "vulnerability": "VCID-yg5r-j2sk-hbav" }, { "vulnerability": "VCID-yndu-f7m6-23gk" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" }, { "vulnerability": "VCID-zry2-jfrq-yug4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@2.2.7-1~deb8u1" } ], "aliases": [ "CVE-2017-8313" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5pkk-pxmh-93hy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/47327?format=api", "vulnerability_id": "VCID-5vkn-89xw-hyba", "summary": "Multiple vulnerabilities have been found in libmicrodns, the worst\n of which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-6071", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00314", "scoring_system": "epss", "scoring_elements": "0.54544", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00314", "scoring_system": "epss", "scoring_elements": "0.54528", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00314", "scoring_system": "epss", "scoring_elements": "0.54565", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00314", "scoring_system": "epss", "scoring_elements": "0.54442", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00314", "scoring_system": "epss", "scoring_elements": "0.54517", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00314", "scoring_system": "epss", "scoring_elements": "0.5454", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00314", "scoring_system": "epss", "scoring_elements": "0.54509", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00314", "scoring_system": "epss", "scoring_elements": "0.54561", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00314", "scoring_system": "epss", "scoring_elements": "0.54555", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00314", "scoring_system": "epss", "scoring_elements": "0.54567", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00314", "scoring_system": "epss", "scoring_elements": "0.54549", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-6071" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6071", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6071" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6072", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6072" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6073", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6073" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6077", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6077" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6078", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6078" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6079", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6079" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6080", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6080" }, { "reference_url": "https://talosintelligence.com/vulnerability_reports/TALOS-2020-0994", "reference_id": "", "reference_type": "", "scores": [], "url": "https://talosintelligence.com/vulnerability_reports/TALOS-2020-0994" }, { "reference_url": "https://www.debian.org/security/2020/dsa-4671", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2020/dsa-4671" }, { "reference_url": "https://security.archlinux.org/ASA-202004-24", "reference_id": "ASA-202004-24", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202004-24" }, { "reference_url": "https://security.archlinux.org/AVG-1136", "reference_id": "AVG-1136", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1136" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolabs:libmicrodns:0.1.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:videolabs:libmicrodns:0.1.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolabs:libmicrodns:0.1.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2020-6071", "reference_id": "CVE-2020-6071", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-6071" }, { "reference_url": "https://security.gentoo.org/glsa/202005-10", "reference_id": "GLSA-202005-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202005-10" }, { "reference_url": "https://usn.ubuntu.com/7239-1/", "reference_id": "USN-7239-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7239-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036932?format=api", "purl": "pkg:deb/debian/vlc@3.0.11-0%2Bdeb9u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.11-0%252Bdeb9u1" } ], "aliases": [ "CVE-2020-6071" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5vkn-89xw-hyba" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/58725?format=api", "vulnerability_id": "VCID-63e8-v5s5-27ew", "summary": "security update", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-9628", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01634", "scoring_system": "epss", "scoring_elements": "0.81844", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01634", "scoring_system": "epss", "scoring_elements": "0.81855", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01634", "scoring_system": "epss", "scoring_elements": "0.81878", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01634", "scoring_system": "epss", "scoring_elements": "0.81874", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01634", "scoring_system": "epss", "scoring_elements": "0.81901", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01634", "scoring_system": "epss", "scoring_elements": "0.81907", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01634", "scoring_system": "epss", "scoring_elements": "0.81927", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01634", "scoring_system": "epss", "scoring_elements": "0.81915", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01634", "scoring_system": "epss", "scoring_elements": "0.8191", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01634", "scoring_system": "epss", "scoring_elements": "0.81946", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01634", "scoring_system": "epss", "scoring_elements": "0.81948", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-9628" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9628", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9628" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9629", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9629" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9630", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9630" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=775866", "reference_id": "775866", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=775866" }, { "reference_url": "https://security.gentoo.org/glsa/201603-08", "reference_id": "GLSA-201603-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201603-08" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036004?format=api", "purl": "pkg:deb/debian/vlc@2.2.0~rc2-2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1utk-kk7m-pqa8" }, { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-27xm-d15a-yugk" }, { "vulnerability": "VCID-2mw7-98e2-93bv" }, { "vulnerability": "VCID-2n9d-6mcy-6fhb" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-52yg-hpt4-9kfy" }, { "vulnerability": "VCID-5k4p-gat4-afhp" }, { "vulnerability": "VCID-5pkk-pxmh-93hy" }, { "vulnerability": "VCID-5vkn-89xw-hyba" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-7hn8-1cj7-2be3" }, { "vulnerability": "VCID-7s4c-q35j-sbf8" }, { "vulnerability": "VCID-85px-3mub-ckdj" }, { "vulnerability": "VCID-978h-eswr-afea" }, { "vulnerability": "VCID-9g9m-c8sc-vfcj" }, { "vulnerability": "VCID-9je8-nsha-kug2" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-bbgn-7j2m-ykcx" }, { "vulnerability": "VCID-bw2j-vv6p-gqew" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-eae7-384g-pqc4" }, { "vulnerability": "VCID-ecyu-zuz8-u3ep" }, { "vulnerability": "VCID-ed2z-6wv2-y7ek" }, { "vulnerability": "VCID-ehcj-1d1g-kbcc" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-gh5m-y7mb-rkgf" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-hjn4-swbf-y3au" }, { "vulnerability": "VCID-j4vw-cnqw-1ygz" }, { "vulnerability": "VCID-kwv3-vghc-zubx" }, { "vulnerability": "VCID-mqhd-5hv6-wfdp" }, { "vulnerability": "VCID-p7du-wut5-1qb7" }, { "vulnerability": "VCID-pmkx-83qk-tkhs" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-r4z4-61hf-3bfx" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-s8sm-qx3a-bfcn" }, { "vulnerability": "VCID-ttra-pkh7-mua4" }, { "vulnerability": "VCID-twng-xd4x-37h6" }, { "vulnerability": "VCID-v5wk-fb4c-b3h1" }, { "vulnerability": "VCID-vsn2-k6hq-7keu" }, { "vulnerability": "VCID-x8r6-rr2f-dufm" }, { "vulnerability": "VCID-yg5r-j2sk-hbav" }, { "vulnerability": "VCID-yndu-f7m6-23gk" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" }, { "vulnerability": "VCID-zr1q-3g6a-yqhd" }, { "vulnerability": "VCID-zry2-jfrq-yug4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@2.2.0~rc2-2" } ], "aliases": [ "CVE-2014-9628" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-63e8-v5s5-27ew" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/60102?format=api", "vulnerability_id": "VCID-6a89-jzyb-vygd", "summary": "Multiple vulnerabilities have been found in VLC allowing remote\n attackers to execute arbitrary code or cause Denial of Service.", "references": [ { "reference_url": "http://billblough.net/blog/2015/03/04/cve-2014-6440-heap-overflow-in-vlc-transcode-module/", "reference_id": "", "reference_type": "", "scores": [], "url": "http://billblough.net/blog/2015/03/04/cve-2014-6440-heap-overflow-in-vlc-transcode-module/" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-6440", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.05344", "scoring_system": "epss", "scoring_elements": "0.90082", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.05344", "scoring_system": "epss", "scoring_elements": "0.90084", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.05344", "scoring_system": "epss", "scoring_elements": "0.90026", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.05344", "scoring_system": "epss", "scoring_elements": "0.90029", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.05344", "scoring_system": "epss", "scoring_elements": "0.9004", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.05344", "scoring_system": "epss", "scoring_elements": "0.90045", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.05344", "scoring_system": "epss", "scoring_elements": "0.9006", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.05344", "scoring_system": "epss", "scoring_elements": "0.90066", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.05344", "scoring_system": "epss", "scoring_elements": "0.90075", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.05344", "scoring_system": "epss", "scoring_elements": "0.90073", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.05344", "scoring_system": "epss", "scoring_elements": "0.90067", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-6440" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6440", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6440" }, { "reference_url": "http://seclists.org/oss-sec/2015/q1/751", "reference_id": "", "reference_type": "", "scores": [], "url": "http://seclists.org/oss-sec/2015/q1/751" }, { "reference_url": "http://www.securityfocus.com/bid/72950", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/72950" }, { "reference_url": "http://www.videolan.org/developers/vlc-branch/NEWS", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.videolan.org/developers/vlc-branch/NEWS" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:videolan:vlc:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2014-6440", "reference_id": "CVE-2014-6440", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:P/I:P/A:P" }, { "value": "9.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-6440" }, { "reference_url": "https://security.gentoo.org/glsa/201603-08", "reference_id": "GLSA-201603-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201603-08" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036004?format=api", "purl": "pkg:deb/debian/vlc@2.2.0~rc2-2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1utk-kk7m-pqa8" }, { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-27xm-d15a-yugk" }, { "vulnerability": "VCID-2mw7-98e2-93bv" }, { "vulnerability": "VCID-2n9d-6mcy-6fhb" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-52yg-hpt4-9kfy" }, { "vulnerability": "VCID-5k4p-gat4-afhp" }, { "vulnerability": "VCID-5pkk-pxmh-93hy" }, { "vulnerability": "VCID-5vkn-89xw-hyba" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-7hn8-1cj7-2be3" }, { "vulnerability": "VCID-7s4c-q35j-sbf8" }, { "vulnerability": "VCID-85px-3mub-ckdj" }, { "vulnerability": "VCID-978h-eswr-afea" }, { "vulnerability": "VCID-9g9m-c8sc-vfcj" }, { "vulnerability": "VCID-9je8-nsha-kug2" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-bbgn-7j2m-ykcx" }, { "vulnerability": "VCID-bw2j-vv6p-gqew" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-eae7-384g-pqc4" }, { "vulnerability": "VCID-ecyu-zuz8-u3ep" }, { "vulnerability": "VCID-ed2z-6wv2-y7ek" }, { "vulnerability": "VCID-ehcj-1d1g-kbcc" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-gh5m-y7mb-rkgf" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-hjn4-swbf-y3au" }, { "vulnerability": "VCID-j4vw-cnqw-1ygz" }, { "vulnerability": "VCID-kwv3-vghc-zubx" }, { "vulnerability": "VCID-mqhd-5hv6-wfdp" }, { "vulnerability": "VCID-p7du-wut5-1qb7" }, { "vulnerability": "VCID-pmkx-83qk-tkhs" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-r4z4-61hf-3bfx" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-s8sm-qx3a-bfcn" }, { "vulnerability": "VCID-ttra-pkh7-mua4" }, { "vulnerability": "VCID-twng-xd4x-37h6" }, { "vulnerability": "VCID-v5wk-fb4c-b3h1" }, { "vulnerability": "VCID-vsn2-k6hq-7keu" }, { "vulnerability": "VCID-x8r6-rr2f-dufm" }, { "vulnerability": "VCID-yg5r-j2sk-hbav" }, { "vulnerability": "VCID-yndu-f7m6-23gk" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" }, { "vulnerability": "VCID-zr1q-3g6a-yqhd" }, { "vulnerability": "VCID-zry2-jfrq-yug4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@2.2.0~rc2-2" } ], "aliases": [ "CVE-2014-6440" ], "risk_score": 4.4, "exploitability": "0.5", "weighted_severity": "8.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6a89-jzyb-vygd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/91009?format=api", "vulnerability_id": "VCID-6dcw-jpgp-gbar", "summary": "security update", "references": [], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1038200?format=api", "purl": "pkg:deb/debian/vlc@3.0.17.4-0%2Bdeb10u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.17.4-0%252Bdeb10u1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1050038?format=api", "purl": "pkg:deb/debian/vlc@3.0.21-0%2Bdeb11u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-4cqm-15gx-p7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.21-0%252Bdeb11u1" } ], "aliases": [ "DSA-5165-1 vlc" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6dcw-jpgp-gbar" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/92659?format=api", "vulnerability_id": "VCID-74ez-a9dg-7uha", "summary": "Cross-site scripting (XSS) vulnerability in the httpd_HtmlError function in network/httpd.c in the web interface in VideoLAN VLC Media Player before 2.2.0 allows remote attackers to inject arbitrary web script or HTML via the path info.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-9743", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00256", "scoring_system": "epss", "scoring_elements": "0.48889", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00256", "scoring_system": "epss", "scoring_elements": "0.48926", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00256", "scoring_system": "epss", "scoring_elements": "0.48952", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00256", "scoring_system": "epss", "scoring_elements": "0.48906", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00256", "scoring_system": "epss", "scoring_elements": "0.4896", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00256", "scoring_system": "epss", "scoring_elements": "0.48958", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00256", "scoring_system": "epss", "scoring_elements": "0.48974", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00256", "scoring_system": "epss", "scoring_elements": "0.48948", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00256", "scoring_system": "epss", "scoring_elements": "0.48956", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00256", "scoring_system": "epss", "scoring_elements": "0.49002", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00256", "scoring_system": "epss", "scoring_elements": "0.48998", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-9743" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9743", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9743" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036004?format=api", "purl": "pkg:deb/debian/vlc@2.2.0~rc2-2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1utk-kk7m-pqa8" }, { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-27xm-d15a-yugk" }, { "vulnerability": "VCID-2mw7-98e2-93bv" }, { "vulnerability": "VCID-2n9d-6mcy-6fhb" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-52yg-hpt4-9kfy" }, { "vulnerability": "VCID-5k4p-gat4-afhp" }, { "vulnerability": "VCID-5pkk-pxmh-93hy" }, { "vulnerability": "VCID-5vkn-89xw-hyba" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-7hn8-1cj7-2be3" }, { "vulnerability": "VCID-7s4c-q35j-sbf8" }, { "vulnerability": "VCID-85px-3mub-ckdj" }, { "vulnerability": "VCID-978h-eswr-afea" }, { "vulnerability": "VCID-9g9m-c8sc-vfcj" }, { "vulnerability": "VCID-9je8-nsha-kug2" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-bbgn-7j2m-ykcx" }, { "vulnerability": "VCID-bw2j-vv6p-gqew" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-eae7-384g-pqc4" }, { "vulnerability": "VCID-ecyu-zuz8-u3ep" }, { "vulnerability": "VCID-ed2z-6wv2-y7ek" }, { "vulnerability": "VCID-ehcj-1d1g-kbcc" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-gh5m-y7mb-rkgf" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-hjn4-swbf-y3au" }, { "vulnerability": "VCID-j4vw-cnqw-1ygz" }, { "vulnerability": "VCID-kwv3-vghc-zubx" }, { "vulnerability": "VCID-mqhd-5hv6-wfdp" }, { "vulnerability": "VCID-p7du-wut5-1qb7" }, { "vulnerability": "VCID-pmkx-83qk-tkhs" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-r4z4-61hf-3bfx" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-s8sm-qx3a-bfcn" }, { "vulnerability": "VCID-ttra-pkh7-mua4" }, { "vulnerability": "VCID-twng-xd4x-37h6" }, { "vulnerability": "VCID-v5wk-fb4c-b3h1" }, { "vulnerability": "VCID-vsn2-k6hq-7keu" }, { "vulnerability": "VCID-x8r6-rr2f-dufm" }, { "vulnerability": "VCID-yg5r-j2sk-hbav" }, { "vulnerability": "VCID-yndu-f7m6-23gk" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" }, { "vulnerability": "VCID-zr1q-3g6a-yqhd" }, { "vulnerability": "VCID-zry2-jfrq-yug4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@2.2.0~rc2-2" } ], "aliases": [ "CVE-2014-9743" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-74ez-a9dg-7uha" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/92552?format=api", "vulnerability_id": "VCID-76yz-q5df-1ueg", "summary": "VideoLAN VLC Media Player before 2.0.7 allows remote attackers to cause a denial of service (memory consumption) via a crafted playlist file.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-7340", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00443", "scoring_system": "epss", "scoring_elements": "0.63242", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00443", "scoring_system": "epss", "scoring_elements": "0.63301", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00443", "scoring_system": "epss", "scoring_elements": "0.63328", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00443", "scoring_system": "epss", "scoring_elements": "0.63294", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00443", "scoring_system": "epss", "scoring_elements": "0.63345", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00443", "scoring_system": "epss", "scoring_elements": "0.63363", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00443", "scoring_system": "epss", "scoring_elements": "0.6338", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00443", "scoring_system": "epss", "scoring_elements": "0.63327", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00443", "scoring_system": "epss", "scoring_elements": "0.63361", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00443", "scoring_system": "epss", "scoring_elements": "0.63369", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00443", "scoring_system": "epss", "scoring_elements": "0.63347", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-7340" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7340", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7340" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036004?format=api", "purl": "pkg:deb/debian/vlc@2.2.0~rc2-2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1utk-kk7m-pqa8" }, { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-27xm-d15a-yugk" }, { "vulnerability": "VCID-2mw7-98e2-93bv" }, { "vulnerability": "VCID-2n9d-6mcy-6fhb" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-52yg-hpt4-9kfy" }, { "vulnerability": "VCID-5k4p-gat4-afhp" }, { "vulnerability": "VCID-5pkk-pxmh-93hy" }, { "vulnerability": "VCID-5vkn-89xw-hyba" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-7hn8-1cj7-2be3" }, { "vulnerability": "VCID-7s4c-q35j-sbf8" }, { "vulnerability": "VCID-85px-3mub-ckdj" }, { "vulnerability": "VCID-978h-eswr-afea" }, { "vulnerability": "VCID-9g9m-c8sc-vfcj" }, { "vulnerability": "VCID-9je8-nsha-kug2" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-bbgn-7j2m-ykcx" }, { "vulnerability": "VCID-bw2j-vv6p-gqew" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-eae7-384g-pqc4" }, { "vulnerability": "VCID-ecyu-zuz8-u3ep" }, { "vulnerability": "VCID-ed2z-6wv2-y7ek" }, { "vulnerability": "VCID-ehcj-1d1g-kbcc" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-gh5m-y7mb-rkgf" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-hjn4-swbf-y3au" }, { "vulnerability": "VCID-j4vw-cnqw-1ygz" }, { "vulnerability": "VCID-kwv3-vghc-zubx" }, { "vulnerability": "VCID-mqhd-5hv6-wfdp" }, { "vulnerability": "VCID-p7du-wut5-1qb7" }, { "vulnerability": "VCID-pmkx-83qk-tkhs" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-r4z4-61hf-3bfx" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-s8sm-qx3a-bfcn" }, { "vulnerability": "VCID-ttra-pkh7-mua4" }, { "vulnerability": "VCID-twng-xd4x-37h6" }, { "vulnerability": "VCID-v5wk-fb4c-b3h1" }, { "vulnerability": "VCID-vsn2-k6hq-7keu" }, { "vulnerability": "VCID-x8r6-rr2f-dufm" }, { "vulnerability": "VCID-yg5r-j2sk-hbav" }, { "vulnerability": "VCID-yndu-f7m6-23gk" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" }, { "vulnerability": "VCID-zr1q-3g6a-yqhd" }, { "vulnerability": "VCID-zry2-jfrq-yug4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@2.2.0~rc2-2" } ], "aliases": [ "CVE-2013-7340" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-76yz-q5df-1ueg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/93478?format=api", "vulnerability_id": "VCID-7hn8-1cj7-2be3", "summary": "The vlc_demux_chained_Delete function in input/demux_chained.c in VideoLAN VLC media player 3.0.1 allows remote attackers to cause a denial of service (heap corruption and application crash) or possibly have unspecified other impact via a crafted .swf file.", "references": [ { "reference_url": "http://code610.blogspot.com/2018/05/make-free-vlc.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://code610.blogspot.com/2018/05/make-free-vlc.html" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-11516", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00601", "scoring_system": "epss", "scoring_elements": "0.69508", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00601", "scoring_system": "epss", "scoring_elements": "0.69528", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00601", "scoring_system": "epss", "scoring_elements": "0.69415", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00601", "scoring_system": "epss", "scoring_elements": "0.69426", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00601", "scoring_system": "epss", "scoring_elements": "0.69443", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00601", "scoring_system": "epss", "scoring_elements": "0.69422", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00601", "scoring_system": "epss", "scoring_elements": "0.69472", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00601", "scoring_system": "epss", "scoring_elements": "0.69488", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00601", "scoring_system": "epss", "scoring_elements": "0.6951", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00601", "scoring_system": "epss", "scoring_elements": "0.69494", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00601", "scoring_system": "epss", "scoring_elements": "0.6948", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00601", "scoring_system": "epss", "scoring_elements": "0.69519", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-11516" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11516", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11516" }, { "reference_url": "http://www.securityfocus.com/bid/104293", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/104293" }, { "reference_url": "http://www.securitytracker.com/id/1041312", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securitytracker.com/id/1041312" }, { "reference_url": "http://www.videolan.org/security/sa1801.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.videolan.org/security/sa1801.html" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:3.0.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:videolan:vlc_media_player:3.0.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:3.0.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:3.0.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:videolan:vlc_media_player:3.0.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:3.0.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2018-11516", "reference_id": "CVE-2018-11516", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-11516" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036932?format=api", "purl": "pkg:deb/debian/vlc@3.0.11-0%2Bdeb9u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.11-0%252Bdeb9u1" } ], "aliases": [ "CVE-2018-11516" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7hn8-1cj7-2be3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50609?format=api", "vulnerability_id": "VCID-7s4c-q35j-sbf8", "summary": "Multiple vulnerabilities have been found in VLC, the worst of which\n could result in the arbitrary execution of code.", "references": [ { "reference_url": "http://git.videolan.org/?p=vlc.git&a=search&h=refs/heads/master&st=commit&s=cve-2019", "reference_id": "", "reference_type": "", "scores": [], "url": "http://git.videolan.org/?p=vlc.git&a=search&h=refs/heads/master&st=commit&s=cve-2019" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00036.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00036.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00046.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00046.html" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-14535", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00546", "scoring_system": "epss", "scoring_elements": "0.6786", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00546", "scoring_system": "epss", "scoring_elements": "0.67879", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00546", "scoring_system": "epss", "scoring_elements": "0.67759", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00546", "scoring_system": "epss", "scoring_elements": "0.67792", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00546", "scoring_system": "epss", "scoring_elements": "0.67812", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00546", "scoring_system": "epss", "scoring_elements": "0.67843", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00546", "scoring_system": "epss", "scoring_elements": "0.67857", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00546", "scoring_system": "epss", "scoring_elements": "0.6788", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00546", "scoring_system": "epss", "scoring_elements": "0.67867", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00546", "scoring_system": "epss", "scoring_elements": "0.6783", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00546", "scoring_system": "epss", "scoring_elements": "0.67866", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-14535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13602" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13962", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13962" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14437", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14437" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14438", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14438" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14498", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14498" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14776", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14776" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14777", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14777" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14970" }, { "reference_url": "https://seclists.org/bugtraq/2019/Aug/36", "reference_id": "", "reference_type": "", "scores": [], "url": "https://seclists.org/bugtraq/2019/Aug/36" }, { "reference_url": "https://www.debian.org/security/2019/dsa-4504", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2019/dsa-4504" }, { "reference_url": "https://www.videolan.org/security/sb-vlc308.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.videolan.org/security/sb-vlc308.html" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:3.0.7.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:videolan:vlc_media_player:3.0.7.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:3.0.7.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14535", "reference_id": "CVE-2019-14535", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14535" }, { "reference_url": "https://security.gentoo.org/glsa/201909-02", "reference_id": "GLSA-201909-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201909-02" }, { "reference_url": "https://usn.ubuntu.com/4131-1/", "reference_id": "USN-4131-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4131-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036932?format=api", "purl": "pkg:deb/debian/vlc@3.0.11-0%2Bdeb9u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.11-0%252Bdeb9u1" } ], "aliases": [ "CVE-2019-14535" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7s4c-q35j-sbf8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/39453?format=api", "vulnerability_id": "VCID-85px-3mub-ckdj", "summary": "A buffer overflow in VLC might allow remote attackers to execute\n arbitrary code.", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00045.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00045.html" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5108", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.20819", "scoring_system": "epss", "scoring_elements": "0.95623", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.20819", "scoring_system": "epss", "scoring_elements": "0.95619", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.20819", "scoring_system": "epss", "scoring_elements": "0.95624", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.20819", "scoring_system": "epss", "scoring_elements": "0.95575", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.20819", "scoring_system": "epss", "scoring_elements": "0.95583", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.20819", "scoring_system": "epss", "scoring_elements": "0.95588", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.20819", "scoring_system": "epss", "scoring_elements": "0.95591", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.20819", "scoring_system": "epss", "scoring_elements": "0.956", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.20819", "scoring_system": "epss", "scoring_elements": "0.95603", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.20819", "scoring_system": "epss", "scoring_elements": "0.95607", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.20819", "scoring_system": "epss", "scoring_elements": "0.95608", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.20819", "scoring_system": "epss", "scoring_elements": "0.9561", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5108" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5108", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5108" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://www.debian.org/security/2016/dsa-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2016/dsa-3598" }, { "reference_url": "http://www.securityfocus.com/bid/90924", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/90924" }, { "reference_url": "http://www.securitytracker.com/id/1036009", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securitytracker.com/id/1036009" }, { "reference_url": "http://www.videolan.org/security/sa1601.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.videolan.org/security/sa1601.html" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=825728", "reference_id": "825728", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=825728" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:videolan:vlc_media_player:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/dos/41025.txt", "reference_id": "CVE-2016-5108", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/dos/41025.txt" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2016-5108", "reference_id": "CVE-2016-5108", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:P/I:P/A:P" }, { "value": "9.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-5108" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2016/05/27/3", "reference_id": "CVE-2016-5108", "reference_type": "exploit", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2016/05/27/3" }, { "reference_url": "https://security.gentoo.org/glsa/201701-39", "reference_id": "GLSA-201701-39", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-39" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036005?format=api", "purl": "pkg:deb/debian/vlc@2.2.7-1~deb8u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1utk-kk7m-pqa8" }, { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-27xm-d15a-yugk" }, { "vulnerability": "VCID-2n9d-6mcy-6fhb" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-52yg-hpt4-9kfy" }, { "vulnerability": "VCID-5k4p-gat4-afhp" }, { "vulnerability": "VCID-5vkn-89xw-hyba" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-7hn8-1cj7-2be3" }, { "vulnerability": "VCID-7s4c-q35j-sbf8" }, { "vulnerability": "VCID-9g9m-c8sc-vfcj" }, { "vulnerability": "VCID-9je8-nsha-kug2" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-bbgn-7j2m-ykcx" }, { "vulnerability": "VCID-bw2j-vv6p-gqew" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-eae7-384g-pqc4" }, { "vulnerability": "VCID-ecyu-zuz8-u3ep" }, { "vulnerability": "VCID-ed2z-6wv2-y7ek" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-gh5m-y7mb-rkgf" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-hjn4-swbf-y3au" }, { "vulnerability": "VCID-j4vw-cnqw-1ygz" }, { "vulnerability": "VCID-kwv3-vghc-zubx" }, { "vulnerability": "VCID-mqhd-5hv6-wfdp" }, { "vulnerability": "VCID-pmkx-83qk-tkhs" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-r4z4-61hf-3bfx" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-s8sm-qx3a-bfcn" }, { "vulnerability": "VCID-ttra-pkh7-mua4" }, { "vulnerability": "VCID-twng-xd4x-37h6" }, { "vulnerability": "VCID-v5wk-fb4c-b3h1" }, { "vulnerability": "VCID-x8r6-rr2f-dufm" }, { "vulnerability": "VCID-yg5r-j2sk-hbav" }, { "vulnerability": "VCID-yndu-f7m6-23gk" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" }, { "vulnerability": "VCID-zry2-jfrq-yug4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@2.2.7-1~deb8u1" } ], "aliases": [ "CVE-2016-5108" ], "risk_score": 10.0, "exploitability": "2.0", "weighted_severity": "8.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-85px-3mub-ckdj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50808?format=api", "vulnerability_id": "VCID-978h-eswr-afea", "summary": "Multiple vulnerabilities have been found in VLC, the worst of which\n may allow remote attackers to execute arbitrary code.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-8310", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00183", "scoring_system": "epss", "scoring_elements": "0.39962", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00183", "scoring_system": "epss", "scoring_elements": "0.39903", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00183", "scoring_system": "epss", "scoring_elements": "0.40051", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00183", "scoring_system": "epss", "scoring_elements": "0.40077", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00183", "scoring_system": "epss", "scoring_elements": "0.39998", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00183", "scoring_system": "epss", "scoring_elements": "0.40066", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00183", "scoring_system": "epss", "scoring_elements": "0.40076", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00183", "scoring_system": "epss", "scoring_elements": "0.40039", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00183", "scoring_system": "epss", "scoring_elements": "0.4002", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00183", "scoring_system": "epss", "scoring_elements": "0.40069", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00183", "scoring_system": "epss", "scoring_elements": "0.4004", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-8310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8311", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8311" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8312", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8312" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8313", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8313" }, { "reference_url": "https://security.archlinux.org/ASA-201706-1", "reference_id": "ASA-201706-1", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201706-1" }, { "reference_url": "https://security.archlinux.org/AVG-283", "reference_id": "AVG-283", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-283" }, { "reference_url": "https://security.gentoo.org/glsa/201707-10", "reference_id": "GLSA-201707-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201707-10" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036005?format=api", "purl": "pkg:deb/debian/vlc@2.2.7-1~deb8u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1utk-kk7m-pqa8" }, { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-27xm-d15a-yugk" }, { "vulnerability": "VCID-2n9d-6mcy-6fhb" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-52yg-hpt4-9kfy" }, { "vulnerability": "VCID-5k4p-gat4-afhp" }, { "vulnerability": "VCID-5vkn-89xw-hyba" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-7hn8-1cj7-2be3" }, { "vulnerability": "VCID-7s4c-q35j-sbf8" }, { "vulnerability": "VCID-9g9m-c8sc-vfcj" }, { "vulnerability": "VCID-9je8-nsha-kug2" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-bbgn-7j2m-ykcx" }, { "vulnerability": "VCID-bw2j-vv6p-gqew" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-eae7-384g-pqc4" }, { "vulnerability": "VCID-ecyu-zuz8-u3ep" }, { "vulnerability": "VCID-ed2z-6wv2-y7ek" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-gh5m-y7mb-rkgf" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-hjn4-swbf-y3au" }, { "vulnerability": "VCID-j4vw-cnqw-1ygz" }, { "vulnerability": "VCID-kwv3-vghc-zubx" }, { "vulnerability": "VCID-mqhd-5hv6-wfdp" }, { "vulnerability": "VCID-pmkx-83qk-tkhs" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-r4z4-61hf-3bfx" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-s8sm-qx3a-bfcn" }, { "vulnerability": "VCID-ttra-pkh7-mua4" }, { "vulnerability": "VCID-twng-xd4x-37h6" }, { "vulnerability": "VCID-v5wk-fb4c-b3h1" }, { "vulnerability": "VCID-x8r6-rr2f-dufm" }, { "vulnerability": "VCID-yg5r-j2sk-hbav" }, { "vulnerability": "VCID-yndu-f7m6-23gk" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" }, { "vulnerability": "VCID-zry2-jfrq-yug4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@2.2.7-1~deb8u1" } ], "aliases": [ "CVE-2017-8310" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-978h-eswr-afea" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50611?format=api", "vulnerability_id": "VCID-9g9m-c8sc-vfcj", "summary": "Multiple vulnerabilities have been found in VLC, the worst of which\n could result in the arbitrary execution of code.", "references": [ { "reference_url": "http://git.videolan.org/?p=vlc.git&a=search&h=refs/heads/master&st=commit&s=cve-2019", "reference_id": "", "reference_type": "", "scores": [], "url": "http://git.videolan.org/?p=vlc.git&a=search&h=refs/heads/master&st=commit&s=cve-2019" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00036.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00036.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00046.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00046.html" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-14777", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00307", "scoring_system": "epss", "scoring_elements": "0.53987", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00307", "scoring_system": "epss", "scoring_elements": "0.54006", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00307", "scoring_system": "epss", "scoring_elements": "0.53879", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00307", "scoring_system": "epss", "scoring_elements": "0.53897", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00307", "scoring_system": "epss", "scoring_elements": "0.53925", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00307", "scoring_system": "epss", "scoring_elements": "0.539", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00307", "scoring_system": "epss", "scoring_elements": "0.53952", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00307", "scoring_system": "epss", "scoring_elements": "0.53951", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00307", "scoring_system": "epss", "scoring_elements": "0.53998", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00307", "scoring_system": "epss", "scoring_elements": "0.53981", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00307", "scoring_system": "epss", "scoring_elements": "0.53963", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00307", "scoring_system": "epss", "scoring_elements": "0.54001", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-14777" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13602" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13962", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13962" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14437", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14437" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14438", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14438" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14498", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14498" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14776", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14776" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14777", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14777" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14970" }, { "reference_url": "https://seclists.org/bugtraq/2019/Aug/36", "reference_id": "", "reference_type": "", "scores": [], "url": "https://seclists.org/bugtraq/2019/Aug/36" }, { "reference_url": "https://www.debian.org/security/2019/dsa-4504", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2019/dsa-4504" }, { "reference_url": "https://www.videolan.org/security/sb-vlc308.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.videolan.org/security/sb-vlc308.html" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:3.0.7.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:videolan:vlc_media_player:3.0.7.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:3.0.7.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14777", "reference_id": "CVE-2019-14777", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14777" }, { "reference_url": "https://security.gentoo.org/glsa/201909-02", "reference_id": "GLSA-201909-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201909-02" }, { "reference_url": "https://usn.ubuntu.com/4131-1/", "reference_id": "USN-4131-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4131-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036932?format=api", "purl": "pkg:deb/debian/vlc@3.0.11-0%2Bdeb9u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.11-0%252Bdeb9u1" } ], "aliases": [ "CVE-2019-14777" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9g9m-c8sc-vfcj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/76179?format=api", "vulnerability_id": "VCID-9je8-nsha-kug2", "summary": "security update", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-19857", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01486", "scoring_system": "epss", "scoring_elements": "0.8097", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01486", "scoring_system": "epss", "scoring_elements": "0.80979", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01486", "scoring_system": "epss", "scoring_elements": "0.81003", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01486", "scoring_system": "epss", "scoring_elements": "0.81001", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01486", "scoring_system": "epss", "scoring_elements": "0.81029", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01486", "scoring_system": "epss", "scoring_elements": "0.81036", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01486", "scoring_system": "epss", "scoring_elements": "0.81053", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01486", "scoring_system": "epss", "scoring_elements": "0.8104", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01486", "scoring_system": "epss", "scoring_elements": "0.81032", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01486", "scoring_system": "epss", "scoring_elements": "0.8107", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.01486", "scoring_system": "epss", "scoring_elements": "0.81071", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01486", "scoring_system": "epss", "scoring_elements": "0.81068", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-19857" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19857", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19857" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=915760", "reference_id": "915760", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=915760" }, { "reference_url": "https://usn.ubuntu.com/4074-1/", "reference_id": "USN-4074-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4074-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036932?format=api", "purl": "pkg:deb/debian/vlc@3.0.11-0%2Bdeb9u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.11-0%252Bdeb9u1" } ], "aliases": [ "CVE-2018-19857" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9je8-nsha-kug2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/79758?format=api", "vulnerability_id": "VCID-b7as-3kmj-1udd", "summary": "security update", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-13428", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0692", "scoring_system": "epss", "scoring_elements": "0.91358", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0692", "scoring_system": "epss", "scoring_elements": "0.91363", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0692", "scoring_system": "epss", "scoring_elements": "0.91374", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0692", "scoring_system": "epss", "scoring_elements": "0.91381", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0692", "scoring_system": "epss", "scoring_elements": "0.91393", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0692", "scoring_system": "epss", "scoring_elements": "0.914", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0692", "scoring_system": "epss", "scoring_elements": "0.91406", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0692", "scoring_system": "epss", "scoring_elements": "0.91409", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0692", "scoring_system": "epss", "scoring_elements": "0.91408", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0692", "scoring_system": "epss", "scoring_elements": "0.91433", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0692", "scoring_system": "epss", "scoring_elements": "0.91429", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0692", "scoring_system": "epss", "scoring_elements": "0.9143", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-13428" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13428", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13428" }, { "reference_url": "https://usn.ubuntu.com/6180-1/", "reference_id": "USN-6180-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6180-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036932?format=api", "purl": "pkg:deb/debian/vlc@3.0.11-0%2Bdeb9u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.11-0%252Bdeb9u1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1038200?format=api", "purl": "pkg:deb/debian/vlc@3.0.17.4-0%2Bdeb10u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.17.4-0%252Bdeb10u1" } ], "aliases": [ "CVE-2020-13428" ], "risk_score": 0.1, "exploitability": "0.5", "weighted_severity": "0.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-b7as-3kmj-1udd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/79195?format=api", "vulnerability_id": "VCID-bbgn-7j2m-ykcx", "summary": "security update", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-5459", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01208", "scoring_system": "epss", "scoring_elements": "0.7893", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01208", "scoring_system": "epss", "scoring_elements": "0.78936", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01208", "scoring_system": "epss", "scoring_elements": "0.78964", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01208", "scoring_system": "epss", "scoring_elements": "0.78947", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01208", "scoring_system": "epss", "scoring_elements": "0.78972", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01208", "scoring_system": "epss", "scoring_elements": "0.78978", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01208", "scoring_system": "epss", "scoring_elements": "0.79001", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01208", "scoring_system": "epss", "scoring_elements": "0.78986", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01208", "scoring_system": "epss", "scoring_elements": "0.78976", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01208", "scoring_system": "epss", "scoring_elements": "0.79004", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-5459" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12874", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12874" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5439", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5439" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5459", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5459" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5460", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5460" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036932?format=api", "purl": "pkg:deb/debian/vlc@3.0.11-0%2Bdeb9u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.11-0%252Bdeb9u1" } ], "aliases": [ "CVE-2019-5459" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bbgn-7j2m-ykcx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/79196?format=api", "vulnerability_id": "VCID-bw2j-vv6p-gqew", "summary": "security update", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-5460", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00931", "scoring_system": "epss", "scoring_elements": "0.76054", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00931", "scoring_system": "epss", "scoring_elements": "0.76056", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00931", "scoring_system": "epss", "scoring_elements": "0.76089", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00931", "scoring_system": "epss", "scoring_elements": "0.7607", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00931", "scoring_system": "epss", "scoring_elements": "0.76103", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00931", "scoring_system": "epss", "scoring_elements": "0.76117", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00931", "scoring_system": "epss", "scoring_elements": "0.76142", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00931", "scoring_system": "epss", "scoring_elements": "0.76118", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00931", "scoring_system": "epss", "scoring_elements": "0.76115", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00931", "scoring_system": "epss", "scoring_elements": "0.76156", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00931", "scoring_system": "epss", "scoring_elements": "0.7616", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00931", "scoring_system": "epss", "scoring_elements": "0.76143", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-5460" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12874", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12874" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5439", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5439" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5459", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5459" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5460", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5460" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036932?format=api", "purl": "pkg:deb/debian/vlc@3.0.11-0%2Bdeb9u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.11-0%252Bdeb9u1" } ], "aliases": [ "CVE-2019-5460" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bw2j-vv6p-gqew" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/95791?format=api", "vulnerability_id": "VCID-cq5y-qzyq-mkbm", "summary": "security update", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-47359", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00164", "scoring_system": "epss", "scoring_elements": "0.37495", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00164", "scoring_system": "epss", "scoring_elements": "0.37519", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00164", "scoring_system": "epss", "scoring_elements": "0.37348", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00164", "scoring_system": "epss", "scoring_elements": "0.37399", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00164", "scoring_system": "epss", "scoring_elements": "0.37412", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00164", "scoring_system": "epss", "scoring_elements": "0.37424", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00164", "scoring_system": "epss", "scoring_elements": "0.37389", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00164", "scoring_system": "epss", "scoring_elements": "0.37362", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00164", "scoring_system": "epss", "scoring_elements": "0.37408", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00164", "scoring_system": "epss", "scoring_elements": "0.3739", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00164", "scoring_system": "epss", "scoring_elements": "0.37334", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-47359" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-47359", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-47359" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-47360", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-47360" }, { "reference_url": "https://usn.ubuntu.com/6783-1/", "reference_id": "USN-6783-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6783-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1050038?format=api", "purl": "pkg:deb/debian/vlc@3.0.21-0%2Bdeb11u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-4cqm-15gx-p7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.21-0%252Bdeb11u1" } ], "aliases": [ "CVE-2023-47359" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-cq5y-qzyq-mkbm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/90912?format=api", "vulnerability_id": "VCID-d9ab-kte8-pkhk", "summary": "security update", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-25801", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02633", "scoring_system": "epss", "scoring_elements": "0.85617", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.02633", "scoring_system": "epss", "scoring_elements": "0.85629", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.02633", "scoring_system": "epss", "scoring_elements": "0.85646", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.02633", "scoring_system": "epss", "scoring_elements": "0.85653", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.02633", "scoring_system": "epss", "scoring_elements": "0.85673", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.02633", "scoring_system": "epss", "scoring_elements": "0.85684", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.02633", "scoring_system": "epss", "scoring_elements": "0.85699", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.02633", "scoring_system": "epss", "scoring_elements": "0.85695", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.02633", "scoring_system": "epss", "scoring_elements": "0.85691", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.02633", "scoring_system": "epss", "scoring_elements": "0.85713", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.02633", "scoring_system": "epss", "scoring_elements": "0.85718", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.02633", "scoring_system": "epss", "scoring_elements": "0.85712", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-25801" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26664", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26664" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25801", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25801" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25802", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25802" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25803", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25803" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25804", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25804" }, { "reference_url": "https://usn.ubuntu.com/6180-1/", "reference_id": "USN-6180-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6180-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1038200?format=api", "purl": "pkg:deb/debian/vlc@3.0.17.4-0%2Bdeb10u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.17.4-0%252Bdeb10u1" } ], "aliases": [ "CVE-2021-25801" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-d9ab-kte8-pkhk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/47333?format=api", "vulnerability_id": "VCID-eae7-384g-pqc4", "summary": "Multiple vulnerabilities have been found in libmicrodns, the worst\n of which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-6080", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00311", "scoring_system": "epss", "scoring_elements": "0.54291", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00311", "scoring_system": "epss", "scoring_elements": "0.54268", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00311", "scoring_system": "epss", "scoring_elements": "0.54311", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00311", "scoring_system": "epss", "scoring_elements": "0.54184", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00311", "scoring_system": "epss", "scoring_elements": "0.54204", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00311", "scoring_system": "epss", "scoring_elements": "0.54234", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00311", "scoring_system": "epss", "scoring_elements": "0.5421", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00311", "scoring_system": "epss", "scoring_elements": "0.54262", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00311", "scoring_system": "epss", "scoring_elements": "0.54257", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00311", "scoring_system": "epss", "scoring_elements": "0.54306", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00311", "scoring_system": "epss", "scoring_elements": "0.54289", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-6080" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6071", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6071" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6072", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6072" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6073", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6073" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6077", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6077" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6078", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6078" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6079", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6079" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6080", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6080" }, { "reference_url": "https://talosintelligence.com/vulnerability_reports/TALOS-2020-1002", "reference_id": "", "reference_type": "", "scores": [], "url": "https://talosintelligence.com/vulnerability_reports/TALOS-2020-1002" }, { "reference_url": "https://www.debian.org/security/2020/dsa-4671", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2020/dsa-4671" }, { "reference_url": "https://security.archlinux.org/ASA-202004-24", "reference_id": "ASA-202004-24", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202004-24" }, { "reference_url": "https://security.archlinux.org/AVG-1136", "reference_id": "AVG-1136", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1136" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolabs:libmicrodns:0.1.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:videolabs:libmicrodns:0.1.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolabs:libmicrodns:0.1.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2020-6080", "reference_id": "CVE-2020-6080", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-6080" }, { "reference_url": "https://security.gentoo.org/glsa/202005-10", "reference_id": "GLSA-202005-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202005-10" }, { "reference_url": "https://usn.ubuntu.com/7239-1/", "reference_id": "USN-7239-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7239-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036932?format=api", "purl": "pkg:deb/debian/vlc@3.0.11-0%2Bdeb9u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.11-0%252Bdeb9u1" } ], "aliases": [ "CVE-2020-6080" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-eae7-384g-pqc4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/40740?format=api", "vulnerability_id": "VCID-ecyu-zuz8-u3ep", "summary": "Multiple vulnerabilities have been found in VLC, the worst of which\n could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-12874", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01349", "scoring_system": "epss", "scoring_elements": "0.8012", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01349", "scoring_system": "epss", "scoring_elements": "0.80097", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01349", "scoring_system": "epss", "scoring_elements": "0.80088", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01349", "scoring_system": "epss", "scoring_elements": "0.80118", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01349", "scoring_system": "epss", "scoring_elements": "0.80069", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01349", "scoring_system": "epss", "scoring_elements": "0.80057", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01349", "scoring_system": "epss", "scoring_elements": "0.80085", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01349", "scoring_system": "epss", "scoring_elements": "0.80093", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01349", "scoring_system": "epss", "scoring_elements": "0.80113", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01375", "scoring_system": "epss", "scoring_elements": "0.80197", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01375", "scoring_system": "epss", "scoring_elements": "0.80189", "published_at": "2026-04-01T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-12874" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12874", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12874" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5439", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5439" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5459", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5459" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5460", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5460" }, { "reference_url": "https://security.archlinux.org/ASA-201906-22", "reference_id": "ASA-201906-22", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201906-22" }, { "reference_url": "https://security.archlinux.org/AVG-998", "reference_id": "AVG-998", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-998" }, { "reference_url": "https://security.gentoo.org/glsa/201908-23", "reference_id": "GLSA-201908-23", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201908-23" }, { "reference_url": "https://usn.ubuntu.com/4074-1/", "reference_id": "USN-4074-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4074-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036932?format=api", "purl": "pkg:deb/debian/vlc@3.0.11-0%2Bdeb9u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.11-0%252Bdeb9u1" } ], "aliases": [ "CVE-2019-12874" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ecyu-zuz8-u3ep" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/40741?format=api", "vulnerability_id": "VCID-ed2z-6wv2-y7ek", "summary": "Multiple vulnerabilities have been found in VLC, the worst of which\n could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-5439", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.16265", "scoring_system": "epss", "scoring_elements": "0.94842", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.16265", "scoring_system": "epss", "scoring_elements": "0.94792", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.16265", "scoring_system": "epss", "scoring_elements": "0.94801", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.16265", "scoring_system": "epss", "scoring_elements": "0.94805", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.16265", "scoring_system": "epss", "scoring_elements": "0.94807", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.16265", "scoring_system": "epss", "scoring_elements": "0.94816", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.16265", "scoring_system": "epss", "scoring_elements": "0.9482", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.16265", "scoring_system": "epss", "scoring_elements": "0.94824", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.16265", "scoring_system": "epss", "scoring_elements": "0.94827", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.16265", "scoring_system": "epss", "scoring_elements": "0.94829", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.16265", "scoring_system": "epss", "scoring_elements": "0.94835", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.16265", "scoring_system": "epss", "scoring_elements": "0.94839", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-5439" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12874", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12874" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5439", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5439" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5459", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5459" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5460", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5460" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=930276", "reference_id": "930276", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=930276" }, { "reference_url": "https://security.archlinux.org/ASA-201906-22", "reference_id": "ASA-201906-22", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201906-22" }, { "reference_url": "https://security.archlinux.org/AVG-998", "reference_id": "AVG-998", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-998" }, { "reference_url": "https://security.gentoo.org/glsa/201908-23", "reference_id": "GLSA-201908-23", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201908-23" }, { "reference_url": "https://usn.ubuntu.com/4074-1/", "reference_id": "USN-4074-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4074-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036932?format=api", "purl": "pkg:deb/debian/vlc@3.0.11-0%2Bdeb9u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.11-0%252Bdeb9u1" } ], "aliases": [ "CVE-2019-5439" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ed2z-6wv2-y7ek" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/92892?format=api", "vulnerability_id": "VCID-ehcj-1d1g-kbcc", "summary": "Buffer overflow in the AStreamPeekStream function in input/stream.c in VideoLAN VLC media player before 2.2.0 allows remote attackers to cause a denial of service (crash) via a crafted wav file, related to \"seek across EOF.\"", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00045.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00045.html" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3941", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00307", "scoring_system": "epss", "scoring_elements": "0.53929", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00307", "scoring_system": "epss", "scoring_elements": "0.53947", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00307", "scoring_system": "epss", "scoring_elements": "0.5382", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00307", "scoring_system": "epss", "scoring_elements": "0.53839", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00307", "scoring_system": "epss", "scoring_elements": "0.53867", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00307", "scoring_system": "epss", "scoring_elements": "0.53841", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00307", "scoring_system": "epss", "scoring_elements": "0.53892", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00307", "scoring_system": "epss", "scoring_elements": "0.53891", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00307", "scoring_system": "epss", "scoring_elements": "0.53937", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00307", "scoring_system": "epss", "scoring_elements": "0.5392", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00307", "scoring_system": "epss", "scoring_elements": "0.53903", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00307", "scoring_system": "epss", "scoring_elements": "0.53941", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3941" }, { "reference_url": "https://bugs.launchpad.net/ubuntu/+source/vlc/+bug/1533633", "reference_id": "", "reference_type": "", "scores": [], "url": "https://bugs.launchpad.net/ubuntu/+source/vlc/+bug/1533633" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3941", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3941" }, { "reference_url": "https://mailman.videolan.org/pipermail/vlc-commits/2015-January/028938.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://mailman.videolan.org/pipermail/vlc-commits/2015-January/028938.html" }, { "reference_url": "http://www.securitytracker.com/id/1035456", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securitytracker.com/id/1035456" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:videolan:vlc_media_player:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2016-3941", "reference_id": "CVE-2016-3941", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-3941" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036005?format=api", "purl": "pkg:deb/debian/vlc@2.2.7-1~deb8u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1utk-kk7m-pqa8" }, { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-27xm-d15a-yugk" }, { "vulnerability": "VCID-2n9d-6mcy-6fhb" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-52yg-hpt4-9kfy" }, { "vulnerability": "VCID-5k4p-gat4-afhp" }, { "vulnerability": "VCID-5vkn-89xw-hyba" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-7hn8-1cj7-2be3" }, { "vulnerability": "VCID-7s4c-q35j-sbf8" }, { "vulnerability": "VCID-9g9m-c8sc-vfcj" }, { "vulnerability": "VCID-9je8-nsha-kug2" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-bbgn-7j2m-ykcx" }, { "vulnerability": "VCID-bw2j-vv6p-gqew" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-eae7-384g-pqc4" }, { "vulnerability": "VCID-ecyu-zuz8-u3ep" }, { "vulnerability": "VCID-ed2z-6wv2-y7ek" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-gh5m-y7mb-rkgf" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-hjn4-swbf-y3au" }, { "vulnerability": "VCID-j4vw-cnqw-1ygz" }, { "vulnerability": "VCID-kwv3-vghc-zubx" }, { "vulnerability": "VCID-mqhd-5hv6-wfdp" }, { "vulnerability": "VCID-pmkx-83qk-tkhs" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-r4z4-61hf-3bfx" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-s8sm-qx3a-bfcn" }, { "vulnerability": "VCID-ttra-pkh7-mua4" }, { "vulnerability": "VCID-twng-xd4x-37h6" }, { "vulnerability": "VCID-v5wk-fb4c-b3h1" }, { "vulnerability": "VCID-x8r6-rr2f-dufm" }, { "vulnerability": "VCID-yg5r-j2sk-hbav" }, { "vulnerability": "VCID-yndu-f7m6-23gk" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" }, { "vulnerability": "VCID-zry2-jfrq-yug4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@2.2.7-1~deb8u1" } ], "aliases": [ "CVE-2016-3941" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ehcj-1d1g-kbcc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/96217?format=api", "vulnerability_id": "VCID-g8tx-7ssq-pqb4", "summary": "security update", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-46461", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00353", "scoring_system": "epss", "scoring_elements": "0.57667", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00353", "scoring_system": "epss", "scoring_elements": "0.57692", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00353", "scoring_system": "epss", "scoring_elements": "0.57688", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00353", "scoring_system": "epss", "scoring_elements": "0.57634", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00353", "scoring_system": "epss", "scoring_elements": "0.57656", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00353", "scoring_system": "epss", "scoring_elements": "0.57632", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00353", "scoring_system": "epss", "scoring_elements": "0.57686", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00353", "scoring_system": "epss", "scoring_elements": "0.57689", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00353", "scoring_system": "epss", "scoring_elements": "0.57704", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00353", "scoring_system": "epss", "scoring_elements": "0.57683", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00353", "scoring_system": "epss", "scoring_elements": "0.57663", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-46461" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-46461", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-46461" }, { "reference_url": "https://www.videolan.org/security/sb-vlc3021.html", "reference_id": "sb-vlc3021.html", "reference_type": "", "scores": [ { "value": "8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-25T15:37:59Z/" } ], "url": "https://www.videolan.org/security/sb-vlc3021.html" }, { "reference_url": "https://usn.ubuntu.com/7243-1/", "reference_id": "USN-7243-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7243-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1050038?format=api", "purl": "pkg:deb/debian/vlc@3.0.21-0%2Bdeb11u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-4cqm-15gx-p7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.21-0%252Bdeb11u1" } ], "aliases": [ "CVE-2024-46461" ], "risk_score": 2.0, "exploitability": "0.5", "weighted_severity": "4.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-g8tx-7ssq-pqb4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50602?format=api", "vulnerability_id": "VCID-gh5m-y7mb-rkgf", "summary": "Multiple vulnerabilities have been found in VLC, the worst of which\n could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-13602", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00548", "scoring_system": "epss", "scoring_elements": "0.67913", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00548", "scoring_system": "epss", "scoring_elements": "0.67821", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00548", "scoring_system": "epss", "scoring_elements": "0.67845", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00548", "scoring_system": "epss", "scoring_elements": "0.67864", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00548", "scoring_system": "epss", "scoring_elements": "0.67895", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00548", "scoring_system": "epss", "scoring_elements": "0.67908", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00548", "scoring_system": "epss", "scoring_elements": "0.67932", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00548", "scoring_system": "epss", "scoring_elements": "0.67919", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00548", "scoring_system": "epss", "scoring_elements": "0.67883", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00548", "scoring_system": "epss", "scoring_elements": "0.6792", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00548", "scoring_system": "epss", "scoring_elements": "0.67933", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-13602" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13602" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13962", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13962" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14437", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14437" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14438", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14438" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14498", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14498" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14776", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14776" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14777", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14777" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14970" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=932131", "reference_id": "932131", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=932131" }, { "reference_url": "https://security.gentoo.org/glsa/201909-02", "reference_id": "GLSA-201909-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201909-02" }, { "reference_url": "https://usn.ubuntu.com/4074-1/", "reference_id": "USN-4074-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4074-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036932?format=api", "purl": "pkg:deb/debian/vlc@3.0.11-0%2Bdeb9u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.11-0%252Bdeb9u1" } ], "aliases": [ "CVE-2019-13602" ], "risk_score": 1.9, "exploitability": "0.5", "weighted_severity": "3.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gh5m-y7mb-rkgf" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/90913?format=api", "vulnerability_id": "VCID-h7tu-k4wc-gbhz", "summary": "security update", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-25802", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00282", "scoring_system": "epss", "scoring_elements": "0.51496", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00282", "scoring_system": "epss", "scoring_elements": "0.51547", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00282", "scoring_system": "epss", "scoring_elements": "0.51574", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00282", "scoring_system": "epss", "scoring_elements": "0.51536", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00282", "scoring_system": "epss", "scoring_elements": "0.5159", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00282", "scoring_system": "epss", "scoring_elements": "0.51586", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00282", "scoring_system": "epss", "scoring_elements": "0.51636", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00282", "scoring_system": "epss", "scoring_elements": "0.51615", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00282", "scoring_system": "epss", "scoring_elements": "0.51599", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00282", "scoring_system": "epss", "scoring_elements": "0.5164", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00282", "scoring_system": "epss", "scoring_elements": "0.51647", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00282", "scoring_system": "epss", "scoring_elements": "0.51626", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-25802" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26664", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26664" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25801", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25801" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25802", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25802" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25803", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25803" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25804", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25804" }, { "reference_url": "https://usn.ubuntu.com/6180-1/", "reference_id": "USN-6180-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6180-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1038200?format=api", "purl": "pkg:deb/debian/vlc@3.0.17.4-0%2Bdeb10u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.17.4-0%252Bdeb10u1" } ], "aliases": [ "CVE-2021-25802" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-h7tu-k4wc-gbhz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/70496?format=api", "vulnerability_id": "VCID-hjn4-swbf-y3au", "summary": "security update", "references": [ { "reference_url": "http://openwall.com/lists/oss-security/2017/12/15/1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://openwall.com/lists/oss-security/2017/12/15/1" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-17670", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01254", "scoring_system": "epss", "scoring_elements": "0.79391", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01254", "scoring_system": "epss", "scoring_elements": "0.79394", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01254", "scoring_system": "epss", "scoring_elements": "0.79314", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01254", "scoring_system": "epss", "scoring_elements": "0.7932", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01254", "scoring_system": "epss", "scoring_elements": "0.79344", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01254", "scoring_system": "epss", "scoring_elements": "0.79329", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01254", "scoring_system": "epss", "scoring_elements": "0.79356", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01254", "scoring_system": "epss", "scoring_elements": "0.79365", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01254", "scoring_system": "epss", "scoring_elements": "0.79388", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01254", "scoring_system": "epss", "scoring_elements": "0.79373", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01254", "scoring_system": "epss", "scoring_elements": "0.79362", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-17670" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17670", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17670" }, { "reference_url": "https://www.debian.org/security/2018/dsa-4203", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2018/dsa-4203" }, { "reference_url": "http://www.securityfocus.com/bid/102214", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/102214" }, { "reference_url": "http://www.securitytracker.com/id/1040938", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securitytracker.com/id/1040938" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:videolan:vlc_media_player:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-17670", "reference_id": "CVE-2017-17670", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-17670" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036932?format=api", "purl": "pkg:deb/debian/vlc@3.0.11-0%2Bdeb9u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.11-0%252Bdeb9u1" } ], "aliases": [ "CVE-2017-17670" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hjn4-swbf-y3au" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50610?format=api", "vulnerability_id": "VCID-j4vw-cnqw-1ygz", "summary": "Multiple vulnerabilities have been found in VLC, the worst of which\n could result in the arbitrary execution of code.", "references": [ { "reference_url": "http://git.videolan.org/?p=vlc.git&a=search&h=refs/heads/master&st=commit&s=cve-2019", "reference_id": "", "reference_type": "", "scores": [], "url": "http://git.videolan.org/?p=vlc.git&a=search&h=refs/heads/master&st=commit&s=cve-2019" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00036.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00036.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00046.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00046.html" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-14776", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00651", "scoring_system": "epss", "scoring_elements": "0.70879", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00651", "scoring_system": "epss", "scoring_elements": "0.709", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00651", "scoring_system": "epss", "scoring_elements": "0.70789", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00651", "scoring_system": "epss", "scoring_elements": "0.70803", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00651", "scoring_system": "epss", "scoring_elements": "0.70821", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00651", "scoring_system": "epss", "scoring_elements": "0.70796", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00651", "scoring_system": "epss", "scoring_elements": "0.7084", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00651", "scoring_system": "epss", "scoring_elements": "0.70856", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00651", "scoring_system": "epss", "scoring_elements": "0.70878", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00651", "scoring_system": "epss", "scoring_elements": "0.70863", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00651", "scoring_system": "epss", "scoring_elements": "0.70847", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00651", "scoring_system": "epss", "scoring_elements": "0.70893", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-14776" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13602" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13962", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13962" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14437", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14437" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14438", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14438" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14498", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14498" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14776", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14776" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14777", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14777" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14970" }, { "reference_url": "https://seclists.org/bugtraq/2019/Aug/36", "reference_id": "", "reference_type": "", "scores": [], "url": "https://seclists.org/bugtraq/2019/Aug/36" }, { "reference_url": "https://www.debian.org/security/2019/dsa-4504", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2019/dsa-4504" }, { "reference_url": "https://www.videolan.org/security/sb-vlc308.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.videolan.org/security/sb-vlc308.html" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:3.0.7.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:videolan:vlc_media_player:3.0.7.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:3.0.7.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14776", "reference_id": "CVE-2019-14776", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14776" }, { "reference_url": "https://security.gentoo.org/glsa/201909-02", "reference_id": "GLSA-201909-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201909-02" }, { "reference_url": "https://usn.ubuntu.com/4131-1/", "reference_id": "USN-4131-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4131-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036932?format=api", "purl": "pkg:deb/debian/vlc@3.0.11-0%2Bdeb9u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.11-0%252Bdeb9u1" } ], "aliases": [ "CVE-2019-14776" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-j4vw-cnqw-1ygz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/58724?format=api", "vulnerability_id": "VCID-jc5x-s8ej-87bf", "summary": "security update", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-9627", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56547", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56643", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56665", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56644", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56696", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56701", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56709", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56684", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56663", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56694", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56692", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-9627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9628", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9628" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9629", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9629" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9630", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9630" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=775866", "reference_id": "775866", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=775866" }, { "reference_url": "https://security.gentoo.org/glsa/201603-08", "reference_id": "GLSA-201603-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201603-08" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036004?format=api", "purl": "pkg:deb/debian/vlc@2.2.0~rc2-2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1utk-kk7m-pqa8" }, { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-27xm-d15a-yugk" }, { "vulnerability": "VCID-2mw7-98e2-93bv" }, { "vulnerability": "VCID-2n9d-6mcy-6fhb" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-52yg-hpt4-9kfy" }, { "vulnerability": "VCID-5k4p-gat4-afhp" }, { "vulnerability": "VCID-5pkk-pxmh-93hy" }, { "vulnerability": "VCID-5vkn-89xw-hyba" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-7hn8-1cj7-2be3" }, { "vulnerability": "VCID-7s4c-q35j-sbf8" }, { "vulnerability": "VCID-85px-3mub-ckdj" }, { "vulnerability": "VCID-978h-eswr-afea" }, { "vulnerability": "VCID-9g9m-c8sc-vfcj" }, { "vulnerability": "VCID-9je8-nsha-kug2" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-bbgn-7j2m-ykcx" }, { "vulnerability": "VCID-bw2j-vv6p-gqew" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-eae7-384g-pqc4" }, { "vulnerability": "VCID-ecyu-zuz8-u3ep" }, { "vulnerability": "VCID-ed2z-6wv2-y7ek" }, { "vulnerability": "VCID-ehcj-1d1g-kbcc" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-gh5m-y7mb-rkgf" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-hjn4-swbf-y3au" }, { "vulnerability": "VCID-j4vw-cnqw-1ygz" }, { "vulnerability": "VCID-kwv3-vghc-zubx" }, { "vulnerability": "VCID-mqhd-5hv6-wfdp" }, { "vulnerability": "VCID-p7du-wut5-1qb7" }, { "vulnerability": "VCID-pmkx-83qk-tkhs" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-r4z4-61hf-3bfx" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-s8sm-qx3a-bfcn" }, { "vulnerability": "VCID-ttra-pkh7-mua4" }, { "vulnerability": "VCID-twng-xd4x-37h6" }, { "vulnerability": "VCID-v5wk-fb4c-b3h1" }, { "vulnerability": "VCID-vsn2-k6hq-7keu" }, { "vulnerability": "VCID-x8r6-rr2f-dufm" }, { "vulnerability": "VCID-yg5r-j2sk-hbav" }, { "vulnerability": "VCID-yndu-f7m6-23gk" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" }, { "vulnerability": "VCID-zr1q-3g6a-yqhd" }, { "vulnerability": "VCID-zry2-jfrq-yug4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@2.2.0~rc2-2" } ], "aliases": [ "CVE-2014-9627" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jc5x-s8ej-87bf" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/47331?format=api", "vulnerability_id": "VCID-kwv3-vghc-zubx", "summary": "Multiple vulnerabilities have been found in libmicrodns, the worst\n of which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-6078", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00369", "scoring_system": "epss", "scoring_elements": "0.58831", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00369", "scoring_system": "epss", "scoring_elements": "0.58817", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00369", "scoring_system": "epss", "scoring_elements": "0.58849", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00369", "scoring_system": "epss", "scoring_elements": "0.58713", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00369", "scoring_system": "epss", "scoring_elements": "0.58787", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00369", "scoring_system": "epss", "scoring_elements": "0.58809", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00369", "scoring_system": "epss", "scoring_elements": "0.58777", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00369", "scoring_system": "epss", "scoring_elements": "0.58829", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00369", "scoring_system": "epss", "scoring_elements": "0.58836", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00369", "scoring_system": "epss", "scoring_elements": "0.58854", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-6078" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6071", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6071" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6072", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6072" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6073", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6073" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6077", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6077" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6078", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6078" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6079", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6079" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6080", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6080" }, { "reference_url": "https://talosintelligence.com/vulnerability_reports/TALOS-2020-1001", "reference_id": "", "reference_type": "", "scores": [], "url": "https://talosintelligence.com/vulnerability_reports/TALOS-2020-1001" }, { "reference_url": "https://www.debian.org/security/2020/dsa-4671", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2020/dsa-4671" }, { "reference_url": "https://security.archlinux.org/ASA-202004-24", "reference_id": "ASA-202004-24", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202004-24" }, { "reference_url": "https://security.archlinux.org/AVG-1136", "reference_id": "AVG-1136", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1136" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolabs:libmicrodns:0.1.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:videolabs:libmicrodns:0.1.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolabs:libmicrodns:0.1.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2020-6078", "reference_id": "CVE-2020-6078", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-6078" }, { "reference_url": "https://security.gentoo.org/glsa/202005-10", "reference_id": "GLSA-202005-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202005-10" }, { "reference_url": "https://usn.ubuntu.com/7239-1/", "reference_id": "USN-7239-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7239-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036932?format=api", "purl": "pkg:deb/debian/vlc@3.0.11-0%2Bdeb9u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.11-0%252Bdeb9u1" } ], "aliases": [ "CVE-2020-6078" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-kwv3-vghc-zubx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63627?format=api", "vulnerability_id": "VCID-mqhd-5hv6-wfdp", "summary": "security update", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9300", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00339", "scoring_system": "epss", "scoring_elements": "0.56678", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00339", "scoring_system": "epss", "scoring_elements": "0.56705", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00438", "scoring_system": "epss", "scoring_elements": "0.63095", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00438", "scoring_system": "epss", "scoring_elements": "0.6306", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00438", "scoring_system": "epss", "scoring_elements": "0.63112", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00438", "scoring_system": "epss", "scoring_elements": "0.63007", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00438", "scoring_system": "epss", "scoring_elements": "0.63146", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00438", "scoring_system": "epss", "scoring_elements": "0.63131", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00438", "scoring_system": "epss", "scoring_elements": "0.63109", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00438", "scoring_system": "epss", "scoring_elements": "0.63144", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00438", "scoring_system": "epss", "scoring_elements": "0.63129", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00438", "scoring_system": "epss", "scoring_elements": "0.63066", "published_at": "2026-04-02T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9300" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10699", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10699" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9300", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9300" }, { "reference_url": "https://security.archlinux.org/ASA-201712-4", "reference_id": "ASA-201712-4", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201712-4" }, { "reference_url": "https://security.archlinux.org/AVG-533", "reference_id": "AVG-533", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-533" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036005?format=api", "purl": "pkg:deb/debian/vlc@2.2.7-1~deb8u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1utk-kk7m-pqa8" }, { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-27xm-d15a-yugk" }, { "vulnerability": "VCID-2n9d-6mcy-6fhb" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-52yg-hpt4-9kfy" }, { "vulnerability": "VCID-5k4p-gat4-afhp" }, { "vulnerability": "VCID-5vkn-89xw-hyba" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-7hn8-1cj7-2be3" }, { "vulnerability": "VCID-7s4c-q35j-sbf8" }, { "vulnerability": "VCID-9g9m-c8sc-vfcj" }, { "vulnerability": "VCID-9je8-nsha-kug2" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-bbgn-7j2m-ykcx" }, { "vulnerability": "VCID-bw2j-vv6p-gqew" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-eae7-384g-pqc4" }, { "vulnerability": "VCID-ecyu-zuz8-u3ep" }, { "vulnerability": "VCID-ed2z-6wv2-y7ek" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-gh5m-y7mb-rkgf" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-hjn4-swbf-y3au" }, { "vulnerability": "VCID-j4vw-cnqw-1ygz" }, { "vulnerability": "VCID-kwv3-vghc-zubx" }, { "vulnerability": "VCID-mqhd-5hv6-wfdp" }, { "vulnerability": "VCID-pmkx-83qk-tkhs" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-r4z4-61hf-3bfx" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-s8sm-qx3a-bfcn" }, { "vulnerability": "VCID-ttra-pkh7-mua4" }, { "vulnerability": "VCID-twng-xd4x-37h6" }, { "vulnerability": "VCID-v5wk-fb4c-b3h1" }, { "vulnerability": "VCID-x8r6-rr2f-dufm" }, { "vulnerability": "VCID-yg5r-j2sk-hbav" }, { "vulnerability": "VCID-yndu-f7m6-23gk" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" }, { "vulnerability": "VCID-zry2-jfrq-yug4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@2.2.7-1~deb8u1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036932?format=api", "purl": "pkg:deb/debian/vlc@3.0.11-0%2Bdeb9u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.11-0%252Bdeb9u1" } ], "aliases": [ "CVE-2017-9300" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mqhd-5hv6-wfdp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/93384?format=api", "vulnerability_id": "VCID-p7du-wut5-1qb7", "summary": "plugins\\audio_filter\\libmpgatofixed32_plugin.dll in VideoLAN VLC media player 2.2.4 allows remote attackers to cause a denial of service (invalid read and application crash) or possibly have unspecified other impact via a crafted file.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9301", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00421", "scoring_system": "epss", "scoring_elements": "0.61871", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00421", "scoring_system": "epss", "scoring_elements": "0.61944", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00421", "scoring_system": "epss", "scoring_elements": "0.61974", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00421", "scoring_system": "epss", "scoring_elements": "0.61943", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00421", "scoring_system": "epss", "scoring_elements": "0.61993", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00421", "scoring_system": "epss", "scoring_elements": "0.6201", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00421", "scoring_system": "epss", "scoring_elements": "0.62031", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00421", "scoring_system": "epss", "scoring_elements": "0.6202", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00421", "scoring_system": "epss", "scoring_elements": "0.61999", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00421", "scoring_system": "epss", "scoring_elements": "0.62042", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00421", "scoring_system": "epss", "scoring_elements": "0.62047", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00421", "scoring_system": "epss", "scoring_elements": "0.62029", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9301" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9301", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9301" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036005?format=api", "purl": "pkg:deb/debian/vlc@2.2.7-1~deb8u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1utk-kk7m-pqa8" }, { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-27xm-d15a-yugk" }, { "vulnerability": "VCID-2n9d-6mcy-6fhb" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-52yg-hpt4-9kfy" }, { "vulnerability": "VCID-5k4p-gat4-afhp" }, { "vulnerability": "VCID-5vkn-89xw-hyba" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-7hn8-1cj7-2be3" }, { "vulnerability": "VCID-7s4c-q35j-sbf8" }, { "vulnerability": "VCID-9g9m-c8sc-vfcj" }, { "vulnerability": "VCID-9je8-nsha-kug2" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-bbgn-7j2m-ykcx" }, { "vulnerability": "VCID-bw2j-vv6p-gqew" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-eae7-384g-pqc4" }, { "vulnerability": "VCID-ecyu-zuz8-u3ep" }, { "vulnerability": "VCID-ed2z-6wv2-y7ek" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-gh5m-y7mb-rkgf" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-hjn4-swbf-y3au" }, { "vulnerability": "VCID-j4vw-cnqw-1ygz" }, { "vulnerability": "VCID-kwv3-vghc-zubx" }, { "vulnerability": "VCID-mqhd-5hv6-wfdp" }, { "vulnerability": "VCID-pmkx-83qk-tkhs" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-r4z4-61hf-3bfx" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-s8sm-qx3a-bfcn" }, { "vulnerability": "VCID-ttra-pkh7-mua4" }, { "vulnerability": "VCID-twng-xd4x-37h6" }, { "vulnerability": "VCID-v5wk-fb4c-b3h1" }, { "vulnerability": "VCID-x8r6-rr2f-dufm" }, { "vulnerability": "VCID-yg5r-j2sk-hbav" }, { "vulnerability": "VCID-yndu-f7m6-23gk" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" }, { "vulnerability": "VCID-zry2-jfrq-yug4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@2.2.7-1~deb8u1" } ], "aliases": [ "CVE-2017-9301" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-p7du-wut5-1qb7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73580?format=api", "vulnerability_id": "VCID-pmkx-83qk-tkhs", "summary": "security update", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-11529", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.73818", "scoring_system": "epss", "scoring_elements": "0.98828", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.73818", "scoring_system": "epss", "scoring_elements": "0.98824", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.73818", "scoring_system": "epss", "scoring_elements": "0.98826", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.73818", "scoring_system": "epss", "scoring_elements": "0.98808", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.73818", "scoring_system": "epss", "scoring_elements": "0.98809", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.73818", "scoring_system": "epss", "scoring_elements": "0.98812", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.73818", "scoring_system": "epss", "scoring_elements": "0.98815", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.73818", "scoring_system": "epss", "scoring_elements": "0.98816", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.73818", "scoring_system": "epss", "scoring_elements": "0.98818", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.73818", "scoring_system": "epss", "scoring_elements": "0.98819", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.73818", "scoring_system": "epss", "scoring_elements": "0.9882", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-11529" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11529", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11529" }, { "reference_url": "http://seclists.org/fulldisclosure/2018/Jul/28", "reference_id": "", "reference_type": "", "scores": [], "url": "http://seclists.org/fulldisclosure/2018/Jul/28" }, { "reference_url": "https://www.debian.org/security/2018/dsa-4251", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2018/dsa-4251" }, { "reference_url": "https://www.exploit-db.com/exploits/45626/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.exploit-db.com/exploits/45626/" }, { "reference_url": "http://www.securitytracker.com/id/1041311", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securitytracker.com/id/1041311" }, { "reference_url": "https://security.archlinux.org/AVG-755", "reference_id": "AVG-755", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-755" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:videolan:vlc_media_player:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/local/45626.rb", "reference_id": "CVE-2018-11529", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/local/45626.rb" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2018-11529", "reference_id": "CVE-2018-11529", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "8.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-11529" }, { "reference_url": "https://raw.githubusercontent.com/rapid7/metasploit-framework/fb689da24c9de2ccda6707c6cfe0d053a4844dfd/modules/exploits/windows/fileformat/vlc_mkv.rb", "reference_id": "CVE-2018-11529", "reference_type": "exploit", "scores": [], "url": "https://raw.githubusercontent.com/rapid7/metasploit-framework/fb689da24c9de2ccda6707c6cfe0d053a4844dfd/modules/exploits/windows/fileformat/vlc_mkv.rb" }, { "reference_url": "https://usn.ubuntu.com/USN-4805-1/", "reference_id": "USN-USN-4805-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/USN-4805-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036932?format=api", "purl": "pkg:deb/debian/vlc@3.0.11-0%2Bdeb9u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.11-0%252Bdeb9u1" } ], "aliases": [ "CVE-2018-11529" ], "risk_score": 10.0, "exploitability": "2.0", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-pmkx-83qk-tkhs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/95792?format=api", "vulnerability_id": "VCID-qq2u-797n-w7h4", "summary": "security update", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-47360", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26299", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.2634", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26111", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26179", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26227", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26234", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26189", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.2613", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26135", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26112", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26075", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-47360" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-47359", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-47359" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-47360", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-47360" }, { "reference_url": "https://usn.ubuntu.com/6783-1/", "reference_id": "USN-6783-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6783-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1050038?format=api", "purl": "pkg:deb/debian/vlc@3.0.21-0%2Bdeb11u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-4cqm-15gx-p7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.21-0%252Bdeb11u1" } ], "aliases": [ "CVE-2023-47360" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qq2u-797n-w7h4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36506?format=api", "vulnerability_id": "VCID-r4z4-61hf-3bfx", "summary": "A buffer overflow in VLC might allow local or remote attacker(s) to\n execute arbitrary code.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-19721", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01303", "scoring_system": "epss", "scoring_elements": "0.79781", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01303", "scoring_system": "epss", "scoring_elements": "0.79701", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01303", "scoring_system": "epss", "scoring_elements": "0.79708", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01303", "scoring_system": "epss", "scoring_elements": "0.7973", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01303", "scoring_system": "epss", "scoring_elements": "0.79715", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01303", "scoring_system": "epss", "scoring_elements": "0.79743", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01303", "scoring_system": "epss", "scoring_elements": "0.7975", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01303", "scoring_system": "epss", "scoring_elements": "0.79772", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01303", "scoring_system": "epss", "scoring_elements": "0.79756", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01303", "scoring_system": "epss", "scoring_elements": "0.79749", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01303", "scoring_system": "epss", "scoring_elements": "0.79776", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.01303", "scoring_system": "epss", "scoring_elements": "0.79778", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-19721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6071", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6071" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6072", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6072" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6073", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6073" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6077", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6077" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6078", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6078" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6079", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6079" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6080", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6080" }, { "reference_url": "https://security.archlinux.org/AVG-1145", "reference_id": "AVG-1145", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1145" }, { "reference_url": "https://security.gentoo.org/glsa/202005-11", "reference_id": "GLSA-202005-11", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202005-11" }, { "reference_url": "https://usn.ubuntu.com/6180-1/", "reference_id": "USN-6180-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6180-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036932?format=api", "purl": "pkg:deb/debian/vlc@3.0.11-0%2Bdeb9u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.11-0%252Bdeb9u1" } ], "aliases": [ "CVE-2019-19721" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-r4z4-61hf-3bfx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/90914?format=api", "vulnerability_id": "VCID-rygp-vyhd-x7f7", "summary": "security update", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-25803", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00282", "scoring_system": "epss", "scoring_elements": "0.51496", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00282", "scoring_system": "epss", "scoring_elements": "0.51547", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00282", "scoring_system": "epss", "scoring_elements": "0.51574", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00282", "scoring_system": "epss", "scoring_elements": "0.51536", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00282", "scoring_system": "epss", "scoring_elements": "0.5159", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00282", "scoring_system": "epss", "scoring_elements": "0.51586", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00282", "scoring_system": "epss", "scoring_elements": "0.51636", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00282", "scoring_system": "epss", "scoring_elements": "0.51615", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00282", "scoring_system": "epss", "scoring_elements": "0.51599", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00282", "scoring_system": "epss", "scoring_elements": "0.5164", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00282", "scoring_system": "epss", "scoring_elements": "0.51647", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00282", "scoring_system": "epss", "scoring_elements": "0.51626", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-25803" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26664", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26664" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25801", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25801" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25802", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25802" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25803", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25803" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25804", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25804" }, { "reference_url": "https://usn.ubuntu.com/6180-1/", "reference_id": "USN-6180-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6180-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1038200?format=api", "purl": "pkg:deb/debian/vlc@3.0.17.4-0%2Bdeb10u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.17.4-0%252Bdeb10u1" } ], "aliases": [ "CVE-2021-25803" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rygp-vyhd-x7f7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/47329?format=api", "vulnerability_id": "VCID-s8sm-qx3a-bfcn", "summary": "Multiple vulnerabilities have been found in libmicrodns, the worst\n of which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-6073", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00369", "scoring_system": "epss", "scoring_elements": "0.58831", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00369", "scoring_system": "epss", "scoring_elements": "0.58817", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00369", "scoring_system": "epss", "scoring_elements": "0.58849", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00369", "scoring_system": "epss", "scoring_elements": "0.58713", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00369", "scoring_system": "epss", "scoring_elements": "0.58787", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00369", "scoring_system": "epss", "scoring_elements": "0.58809", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00369", "scoring_system": "epss", "scoring_elements": "0.58777", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00369", "scoring_system": "epss", "scoring_elements": "0.58829", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00369", "scoring_system": "epss", "scoring_elements": "0.58836", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00369", "scoring_system": "epss", "scoring_elements": "0.58854", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-6073" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6071", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6071" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6072", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6072" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6073", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6073" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6077", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6077" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6078", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6078" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6079", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6079" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6080", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6080" }, { "reference_url": "https://talosintelligence.com/vulnerability_reports/TALOS-2020-0996", "reference_id": "", "reference_type": "", "scores": [], "url": "https://talosintelligence.com/vulnerability_reports/TALOS-2020-0996" }, { "reference_url": "https://www.debian.org/security/2020/dsa-4671", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2020/dsa-4671" }, { "reference_url": "https://security.archlinux.org/ASA-202004-24", "reference_id": "ASA-202004-24", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202004-24" }, { "reference_url": "https://security.archlinux.org/AVG-1136", "reference_id": "AVG-1136", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1136" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolabs:libmicrodns:0.1.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:videolabs:libmicrodns:0.1.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolabs:libmicrodns:0.1.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2020-6073", "reference_id": "CVE-2020-6073", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-6073" }, { "reference_url": "https://security.gentoo.org/glsa/202005-10", "reference_id": "GLSA-202005-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202005-10" }, { "reference_url": "https://usn.ubuntu.com/7239-1/", "reference_id": "USN-7239-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7239-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036932?format=api", "purl": "pkg:deb/debian/vlc@3.0.11-0%2Bdeb9u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.11-0%252Bdeb9u1" } ], "aliases": [ "CVE-2020-6073" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-s8sm-qx3a-bfcn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50606?format=api", "vulnerability_id": "VCID-ttra-pkh7-mua4", "summary": "Multiple vulnerabilities have been found in VLC, the worst of which\n could result in the arbitrary execution of code.", "references": [ { "reference_url": "http://git.videolan.org/?p=vlc.git&a=search&h=refs/heads/master&st=commit&s=cve-2019", "reference_id": "", "reference_type": "", "scores": [], "url": "http://git.videolan.org/?p=vlc.git&a=search&h=refs/heads/master&st=commit&s=cve-2019" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00036.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00036.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00046.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00046.html" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-14498", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00582", "scoring_system": "epss", "scoring_elements": "0.68974", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00582", "scoring_system": "epss", "scoring_elements": "0.68994", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00582", "scoring_system": "epss", "scoring_elements": "0.68877", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00582", "scoring_system": "epss", "scoring_elements": "0.68894", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00582", "scoring_system": "epss", "scoring_elements": "0.68915", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00582", "scoring_system": "epss", "scoring_elements": "0.68895", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00582", "scoring_system": "epss", "scoring_elements": "0.68946", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00582", "scoring_system": "epss", "scoring_elements": "0.68965", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00582", "scoring_system": "epss", "scoring_elements": "0.68987", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00582", "scoring_system": "epss", "scoring_elements": "0.68972", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00582", "scoring_system": "epss", "scoring_elements": "0.68943", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00582", "scoring_system": "epss", "scoring_elements": "0.68984", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-14498" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13602" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13962", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13962" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14437", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14437" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14438", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14438" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14498", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14498" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14776", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14776" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14777", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14777" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14970" }, { "reference_url": "https://seclists.org/bugtraq/2019/Aug/36", "reference_id": "", "reference_type": "", "scores": [], "url": "https://seclists.org/bugtraq/2019/Aug/36" }, { "reference_url": "https://www.debian.org/security/2019/dsa-4504", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2019/dsa-4504" }, { "reference_url": "https://www.videolan.org/security/sb-vlc308.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.videolan.org/security/sb-vlc308.html" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:3.0.7.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:videolan:vlc_media_player:3.0.7.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:3.0.7.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14498", "reference_id": "CVE-2019-14498", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14498" }, { "reference_url": "https://security.gentoo.org/glsa/201909-02", "reference_id": "GLSA-201909-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201909-02" }, { "reference_url": "https://usn.ubuntu.com/4131-1/", "reference_id": "USN-4131-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4131-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036932?format=api", "purl": "pkg:deb/debian/vlc@3.0.11-0%2Bdeb9u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.11-0%252Bdeb9u1" } ], "aliases": [ "CVE-2019-14498" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ttra-pkh7-mua4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50608?format=api", "vulnerability_id": "VCID-twng-xd4x-37h6", "summary": "Multiple vulnerabilities have been found in VLC, the worst of which\n could result in the arbitrary execution of code.", "references": [ { "reference_url": "http://git.videolan.org/?p=vlc.git&a=search&h=refs/heads/master&st=commit&s=cve-2019", "reference_id": "", "reference_type": "", "scores": [], "url": "http://git.videolan.org/?p=vlc.git&a=search&h=refs/heads/master&st=commit&s=cve-2019" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00036.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00036.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00046.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00046.html" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-14534", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00344", "scoring_system": "epss", "scoring_elements": "0.5705", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00344", "scoring_system": "epss", "scoring_elements": "0.57073", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00344", "scoring_system": "epss", "scoring_elements": "0.56933", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00344", "scoring_system": "epss", "scoring_elements": "0.5703", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00344", "scoring_system": "epss", "scoring_elements": "0.57052", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00344", "scoring_system": "epss", "scoring_elements": "0.57029", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00344", "scoring_system": "epss", "scoring_elements": "0.5708", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00344", "scoring_system": "epss", "scoring_elements": "0.57081", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00344", "scoring_system": "epss", "scoring_elements": "0.57093", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00344", "scoring_system": "epss", "scoring_elements": "0.57072", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00344", "scoring_system": "epss", "scoring_elements": "0.57048", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00344", "scoring_system": "epss", "scoring_elements": "0.57076", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-14534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13602" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13962", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13962" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14437", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14437" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14438", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14438" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14498", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14498" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14776", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14776" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14777", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14777" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14970" }, { "reference_url": "https://seclists.org/bugtraq/2019/Aug/36", "reference_id": "", "reference_type": "", "scores": [], "url": "https://seclists.org/bugtraq/2019/Aug/36" }, { "reference_url": "https://www.debian.org/security/2019/dsa-4504", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2019/dsa-4504" }, { "reference_url": "https://www.videolan.org/security/sb-vlc308.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.videolan.org/security/sb-vlc308.html" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:3.0.7.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:videolan:vlc_media_player:3.0.7.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:3.0.7.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14534", "reference_id": "CVE-2019-14534", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14534" }, { "reference_url": "https://security.gentoo.org/glsa/201909-02", "reference_id": "GLSA-201909-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201909-02" }, { "reference_url": "https://usn.ubuntu.com/4131-1/", "reference_id": "USN-4131-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4131-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036932?format=api", "purl": "pkg:deb/debian/vlc@3.0.11-0%2Bdeb9u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.11-0%252Bdeb9u1" } ], "aliases": [ "CVE-2019-14534" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-twng-xd4x-37h6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/58722?format=api", "vulnerability_id": "VCID-u2u2-szt5-43a6", "summary": "security update", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-9626", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56547", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56643", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56665", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56644", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56696", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56701", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56709", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56684", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56663", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56694", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56692", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-9626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9628", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9628" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9629", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9629" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9630", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9630" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=775866", "reference_id": "775866", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=775866" }, { "reference_url": "https://security.gentoo.org/glsa/201603-08", "reference_id": "GLSA-201603-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201603-08" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036004?format=api", "purl": "pkg:deb/debian/vlc@2.2.0~rc2-2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1utk-kk7m-pqa8" }, { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-27xm-d15a-yugk" }, { "vulnerability": "VCID-2mw7-98e2-93bv" }, { "vulnerability": "VCID-2n9d-6mcy-6fhb" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-52yg-hpt4-9kfy" }, { "vulnerability": "VCID-5k4p-gat4-afhp" }, { "vulnerability": "VCID-5pkk-pxmh-93hy" }, { "vulnerability": "VCID-5vkn-89xw-hyba" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-7hn8-1cj7-2be3" }, { "vulnerability": "VCID-7s4c-q35j-sbf8" }, { "vulnerability": "VCID-85px-3mub-ckdj" }, { "vulnerability": "VCID-978h-eswr-afea" }, { "vulnerability": "VCID-9g9m-c8sc-vfcj" }, { "vulnerability": "VCID-9je8-nsha-kug2" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-bbgn-7j2m-ykcx" }, { "vulnerability": "VCID-bw2j-vv6p-gqew" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-eae7-384g-pqc4" }, { "vulnerability": "VCID-ecyu-zuz8-u3ep" }, { "vulnerability": "VCID-ed2z-6wv2-y7ek" }, { "vulnerability": "VCID-ehcj-1d1g-kbcc" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-gh5m-y7mb-rkgf" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-hjn4-swbf-y3au" }, { "vulnerability": "VCID-j4vw-cnqw-1ygz" }, { "vulnerability": "VCID-kwv3-vghc-zubx" }, { "vulnerability": "VCID-mqhd-5hv6-wfdp" }, { "vulnerability": "VCID-p7du-wut5-1qb7" }, { "vulnerability": "VCID-pmkx-83qk-tkhs" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-r4z4-61hf-3bfx" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-s8sm-qx3a-bfcn" }, { "vulnerability": "VCID-ttra-pkh7-mua4" }, { "vulnerability": "VCID-twng-xd4x-37h6" }, { "vulnerability": "VCID-v5wk-fb4c-b3h1" }, { "vulnerability": "VCID-vsn2-k6hq-7keu" }, { "vulnerability": "VCID-x8r6-rr2f-dufm" }, { "vulnerability": "VCID-yg5r-j2sk-hbav" }, { "vulnerability": "VCID-yndu-f7m6-23gk" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" }, { "vulnerability": "VCID-zr1q-3g6a-yqhd" }, { "vulnerability": "VCID-zry2-jfrq-yug4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@2.2.0~rc2-2" } ], "aliases": [ "CVE-2014-9626" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-u2u2-szt5-43a6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50605?format=api", "vulnerability_id": "VCID-v5wk-fb4c-b3h1", "summary": "Multiple vulnerabilities have been found in VLC, the worst of which\n could result in the arbitrary execution of code.", "references": [ { "reference_url": "http://git.videolan.org/?p=vlc.git&a=search&h=refs%2Fheads%2Fmaster&st=commit&s=cve-2019", "reference_id": "", "reference_type": "", "scores": [], "url": "http://git.videolan.org/?p=vlc.git&a=search&h=refs%2Fheads%2Fmaster&st=commit&s=cve-2019" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00036.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00036.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00046.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00046.html" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-14438", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0051", "scoring_system": "epss", "scoring_elements": "0.66398", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.0051", "scoring_system": "epss", "scoring_elements": "0.66413", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0051", "scoring_system": "epss", "scoring_elements": "0.66288", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0051", "scoring_system": "epss", "scoring_elements": "0.66327", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0051", "scoring_system": "epss", "scoring_elements": "0.66354", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0051", "scoring_system": "epss", "scoring_elements": "0.66324", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0051", "scoring_system": "epss", "scoring_elements": "0.66372", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0051", "scoring_system": "epss", "scoring_elements": "0.66385", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0051", "scoring_system": "epss", "scoring_elements": "0.66406", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0051", "scoring_system": "epss", "scoring_elements": "0.66392", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0051", "scoring_system": "epss", "scoring_elements": "0.66362", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0051", "scoring_system": "epss", "scoring_elements": "0.66397", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-14438" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13602" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13962", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13962" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14437", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14437" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14438", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14438" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14498", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14498" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14776", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14776" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14777", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14777" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14970" }, { "reference_url": "https://seclists.org/bugtraq/2019/Aug/36", "reference_id": "", "reference_type": "", "scores": [], "url": "https://seclists.org/bugtraq/2019/Aug/36" }, { "reference_url": "https://www.debian.org/security/2019/dsa-4504", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2019/dsa-4504" }, { "reference_url": "https://www.videolan.org/security/sb-vlc308.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.videolan.org/security/sb-vlc308.html" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:3.0.7.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:videolan:vlc_media_player:3.0.7.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:3.0.7.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14438", "reference_id": "CVE-2019-14438", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14438" }, { "reference_url": "https://security.gentoo.org/glsa/201909-02", "reference_id": "GLSA-201909-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201909-02" }, { "reference_url": "https://usn.ubuntu.com/4131-1/", "reference_id": "USN-4131-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4131-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036932?format=api", "purl": "pkg:deb/debian/vlc@3.0.11-0%2Bdeb9u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.11-0%252Bdeb9u1" } ], "aliases": [ "CVE-2019-14438" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-v5wk-fb4c-b3h1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50809?format=api", "vulnerability_id": "VCID-vsn2-k6hq-7keu", "summary": "Multiple vulnerabilities have been found in VLC, the worst of which\n may allow remote attackers to execute arbitrary code.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-8311", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.07052", "scoring_system": "epss", "scoring_elements": "0.91519", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.07052", "scoring_system": "epss", "scoring_elements": "0.91455", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.07052", "scoring_system": "epss", "scoring_elements": "0.91462", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.07052", "scoring_system": "epss", "scoring_elements": "0.91468", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.07052", "scoring_system": "epss", "scoring_elements": "0.91476", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.07052", "scoring_system": "epss", "scoring_elements": "0.91489", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.07052", "scoring_system": "epss", "scoring_elements": "0.91496", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.07052", "scoring_system": "epss", "scoring_elements": "0.91501", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.07052", "scoring_system": "epss", "scoring_elements": "0.91502", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.07052", "scoring_system": "epss", "scoring_elements": "0.915", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.07052", "scoring_system": "epss", "scoring_elements": "0.91523", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-8311" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8311", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8311" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8312", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8312" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8313", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8313" }, { "reference_url": "https://security.archlinux.org/ASA-201706-1", "reference_id": "ASA-201706-1", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201706-1" }, { "reference_url": "https://security.archlinux.org/AVG-283", "reference_id": "AVG-283", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-283" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/dos/44514.py", "reference_id": "CVE-2017-8311", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/dos/44514.py" }, { "reference_url": "https://security.gentoo.org/glsa/201707-10", "reference_id": "GLSA-201707-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201707-10" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036005?format=api", "purl": "pkg:deb/debian/vlc@2.2.7-1~deb8u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1utk-kk7m-pqa8" }, { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-27xm-d15a-yugk" }, { "vulnerability": "VCID-2n9d-6mcy-6fhb" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-52yg-hpt4-9kfy" }, { "vulnerability": "VCID-5k4p-gat4-afhp" }, { "vulnerability": "VCID-5vkn-89xw-hyba" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-7hn8-1cj7-2be3" }, { "vulnerability": "VCID-7s4c-q35j-sbf8" }, { "vulnerability": "VCID-9g9m-c8sc-vfcj" }, { "vulnerability": "VCID-9je8-nsha-kug2" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-bbgn-7j2m-ykcx" }, { "vulnerability": "VCID-bw2j-vv6p-gqew" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-eae7-384g-pqc4" }, { "vulnerability": "VCID-ecyu-zuz8-u3ep" }, { "vulnerability": "VCID-ed2z-6wv2-y7ek" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-gh5m-y7mb-rkgf" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-hjn4-swbf-y3au" }, { "vulnerability": "VCID-j4vw-cnqw-1ygz" }, { "vulnerability": "VCID-kwv3-vghc-zubx" }, { "vulnerability": "VCID-mqhd-5hv6-wfdp" }, { "vulnerability": "VCID-pmkx-83qk-tkhs" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-r4z4-61hf-3bfx" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-s8sm-qx3a-bfcn" }, { "vulnerability": "VCID-ttra-pkh7-mua4" }, { "vulnerability": "VCID-twng-xd4x-37h6" }, { "vulnerability": "VCID-v5wk-fb4c-b3h1" }, { "vulnerability": "VCID-x8r6-rr2f-dufm" }, { "vulnerability": "VCID-yg5r-j2sk-hbav" }, { "vulnerability": "VCID-yndu-f7m6-23gk" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" }, { "vulnerability": "VCID-zry2-jfrq-yug4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@2.2.7-1~deb8u1" } ], "aliases": [ "CVE-2017-8311" ], "risk_score": 10.0, "exploitability": "2.0", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vsn2-k6hq-7keu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50607?format=api", "vulnerability_id": "VCID-x8r6-rr2f-dufm", "summary": "Multiple vulnerabilities have been found in VLC, the worst of which\n could result in the arbitrary execution of code.", "references": [ { "reference_url": "http://git.videolan.org/?p=vlc.git&a=search&h=refs/heads/master&st=commit&s=cve-2019", "reference_id": "", "reference_type": "", "scores": [], "url": "http://git.videolan.org/?p=vlc.git&a=search&h=refs/heads/master&st=commit&s=cve-2019" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00036.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00036.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00046.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00046.html" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-14533", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00307", "scoring_system": "epss", "scoring_elements": "0.53987", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00307", "scoring_system": "epss", "scoring_elements": "0.54006", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00307", "scoring_system": "epss", "scoring_elements": "0.53879", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00307", "scoring_system": "epss", "scoring_elements": "0.53897", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00307", "scoring_system": "epss", "scoring_elements": "0.53925", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00307", "scoring_system": "epss", "scoring_elements": "0.539", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00307", "scoring_system": "epss", "scoring_elements": "0.53952", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00307", "scoring_system": "epss", "scoring_elements": "0.53951", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00307", "scoring_system": "epss", "scoring_elements": "0.53998", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00307", "scoring_system": "epss", "scoring_elements": "0.53981", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00307", "scoring_system": "epss", "scoring_elements": "0.53963", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00307", "scoring_system": "epss", "scoring_elements": "0.54001", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-14533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13602" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13962", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13962" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14437", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14437" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14438", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14438" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14498", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14498" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14776", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14776" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14777", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14777" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14970" }, { "reference_url": "https://seclists.org/bugtraq/2019/Aug/36", "reference_id": "", "reference_type": "", "scores": [], "url": "https://seclists.org/bugtraq/2019/Aug/36" }, { "reference_url": "https://www.debian.org/security/2019/dsa-4504", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2019/dsa-4504" }, { "reference_url": "https://www.videolan.org/security/sb-vlc308.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.videolan.org/security/sb-vlc308.html" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:3.0.7.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:videolan:vlc_media_player:3.0.7.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:3.0.7.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14533", "reference_id": "CVE-2019-14533", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14533" }, { "reference_url": "https://security.gentoo.org/glsa/201909-02", "reference_id": "GLSA-201909-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201909-02" }, { "reference_url": "https://usn.ubuntu.com/4131-1/", "reference_id": "USN-4131-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4131-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036932?format=api", "purl": "pkg:deb/debian/vlc@3.0.11-0%2Bdeb9u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.11-0%252Bdeb9u1" } ], "aliases": [ "CVE-2019-14533" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-x8r6-rr2f-dufm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/47330?format=api", "vulnerability_id": "VCID-yg5r-j2sk-hbav", "summary": "Multiple vulnerabilities have been found in libmicrodns, the worst\n of which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-6077", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00269", "scoring_system": "epss", "scoring_elements": "0.50461", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00269", "scoring_system": "epss", "scoring_elements": "0.50479", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00269", "scoring_system": "epss", "scoring_elements": "0.50484", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00269", "scoring_system": "epss", "scoring_elements": "0.50348", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00269", "scoring_system": "epss", "scoring_elements": "0.50404", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00269", "scoring_system": "epss", "scoring_elements": "0.50434", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00269", "scoring_system": "epss", "scoring_elements": "0.50387", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00269", "scoring_system": "epss", "scoring_elements": "0.5044", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00269", "scoring_system": "epss", "scoring_elements": "0.50475", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00269", "scoring_system": "epss", "scoring_elements": "0.50451", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00269", "scoring_system": "epss", "scoring_elements": "0.50436", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-6077" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6071", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6071" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6072", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6072" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6073", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6073" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6077", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6077" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6078", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6078" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6079", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6079" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6080", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6080" }, { "reference_url": "https://talosintelligence.com/vulnerability_reports/TALOS-2020-1000", "reference_id": "", "reference_type": "", "scores": [], "url": "https://talosintelligence.com/vulnerability_reports/TALOS-2020-1000" }, { "reference_url": "https://www.debian.org/security/2020/dsa-4671", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2020/dsa-4671" }, { "reference_url": "https://security.archlinux.org/ASA-202004-24", "reference_id": "ASA-202004-24", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202004-24" }, { "reference_url": "https://security.archlinux.org/AVG-1136", "reference_id": "AVG-1136", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1136" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolabs:libmicrodns:0.1.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:videolabs:libmicrodns:0.1.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolabs:libmicrodns:0.1.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2020-6077", "reference_id": "CVE-2020-6077", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-6077" }, { "reference_url": "https://security.gentoo.org/glsa/202005-10", "reference_id": "GLSA-202005-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202005-10" }, { "reference_url": "https://usn.ubuntu.com/7239-1/", "reference_id": "USN-7239-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7239-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036932?format=api", "purl": "pkg:deb/debian/vlc@3.0.11-0%2Bdeb9u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.11-0%252Bdeb9u1" } ], "aliases": [ "CVE-2020-6077" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-yg5r-j2sk-hbav" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50604?format=api", "vulnerability_id": "VCID-yndu-f7m6-23gk", "summary": "Multiple vulnerabilities have been found in VLC, the worst of which\n could result in the arbitrary execution of code.", "references": [ { "reference_url": "http://git.videolan.org/?p=vlc.git&a=search&h=refs%2Fheads%2Fmaster&st=commit&s=cve-2019", "reference_id": "", "reference_type": "", "scores": [], "url": "http://git.videolan.org/?p=vlc.git&a=search&h=refs%2Fheads%2Fmaster&st=commit&s=cve-2019" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00036.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00036.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00046.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00046.html" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-14437", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00571", "scoring_system": "epss", "scoring_elements": "0.68686", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00571", "scoring_system": "epss", "scoring_elements": "0.68675", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00571", "scoring_system": "epss", "scoring_elements": "0.68572", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00571", "scoring_system": "epss", "scoring_elements": "0.6859", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00571", "scoring_system": "epss", "scoring_elements": "0.68608", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00571", "scoring_system": "epss", "scoring_elements": "0.68585", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00571", "scoring_system": "epss", "scoring_elements": "0.68637", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00571", "scoring_system": "epss", "scoring_elements": "0.68654", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00571", "scoring_system": "epss", "scoring_elements": "0.68678", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00571", "scoring_system": "epss", "scoring_elements": "0.68665", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00571", "scoring_system": "epss", "scoring_elements": "0.68636", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-14437" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13602" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13962", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13962" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14437", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14437" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14438", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14438" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14498", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14498" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14776", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14776" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14777", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14777" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14970" }, { "reference_url": "https://seclists.org/bugtraq/2019/Aug/36", "reference_id": "", "reference_type": "", "scores": [], "url": "https://seclists.org/bugtraq/2019/Aug/36" }, { "reference_url": "https://www.debian.org/security/2019/dsa-4504", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2019/dsa-4504" }, { "reference_url": "https://www.videolan.org/security/sb-vlc308.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.videolan.org/security/sb-vlc308.html" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:3.0.7.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:videolan:vlc_media_player:3.0.7.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:3.0.7.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14437", "reference_id": "CVE-2019-14437", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14437" }, { "reference_url": "https://security.gentoo.org/glsa/201909-02", "reference_id": "GLSA-201909-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201909-02" }, { "reference_url": "https://usn.ubuntu.com/4131-1/", "reference_id": "USN-4131-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4131-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036932?format=api", "purl": "pkg:deb/debian/vlc@3.0.11-0%2Bdeb9u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.11-0%252Bdeb9u1" } ], "aliases": [ "CVE-2019-14437" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-yndu-f7m6-23gk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35999?format=api", "vulnerability_id": "VCID-z8s5-5uwe-auf4", "summary": "A buffer overflow in VLC might allow remote attacker(s) to execute\n arbitrary code.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-26664", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00296", "scoring_system": "epss", "scoring_elements": "0.52968", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00296", "scoring_system": "epss", "scoring_elements": "0.52858", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00296", "scoring_system": "epss", "scoring_elements": "0.52884", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00296", "scoring_system": "epss", "scoring_elements": "0.5291", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00296", "scoring_system": "epss", "scoring_elements": "0.52878", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00296", "scoring_system": "epss", "scoring_elements": "0.52929", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00296", "scoring_system": "epss", "scoring_elements": "0.52922", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00296", "scoring_system": "epss", "scoring_elements": "0.52972", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00296", "scoring_system": "epss", "scoring_elements": "0.52957", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00296", "scoring_system": "epss", "scoring_elements": "0.5294", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00296", "scoring_system": "epss", "scoring_elements": "0.52978", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00296", "scoring_system": "epss", "scoring_elements": "0.52984", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-26664" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26664", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26664" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25801", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25801" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25802", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25802" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25803", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25803" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25804", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25804" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=979676", "reference_id": "979676", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=979676" }, { "reference_url": "https://security.archlinux.org/ASA-202101-35", "reference_id": "ASA-202101-35", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202101-35" }, { "reference_url": "https://security.archlinux.org/AVG-1423", "reference_id": "AVG-1423", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1423" }, { "reference_url": "https://security.gentoo.org/glsa/202101-37", "reference_id": "GLSA-202101-37", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202101-37" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1038200?format=api", "purl": "pkg:deb/debian/vlc@3.0.17.4-0%2Bdeb10u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.17.4-0%252Bdeb10u1" } ], "aliases": [ "CVE-2020-26664" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-z8s5-5uwe-auf4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61650?format=api", "vulnerability_id": "VCID-zep1-wtjy-gya6", "summary": "Multiple vulnerabilities have been discovered in VLC, the worst of which could result in arbitrary code execution.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-41325", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22968", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.23012", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22804", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.2396", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.24006", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23932", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23923", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23979", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.24022", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23921", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23903", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-41325" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41325", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41325" }, { "reference_url": "https://twitter.com/0xMitsurugi", "reference_id": "0xMitsurugi", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-04-23T19:35:16Z/" } ], "url": "https://twitter.com/0xMitsurugi" }, { "reference_url": "https://www.debian.org/security/2022/dsa-5297", "reference_id": "dsa-5297", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-04-23T19:35:16Z/" } ], "url": "https://www.debian.org/security/2022/dsa-5297" }, { "reference_url": "https://security.gentoo.org/glsa/202409-17", "reference_id": "GLSA-202409-17", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202409-17" }, { "reference_url": "https://www.videolan.org/security/sb-vlc3018.html", "reference_id": "sb-vlc3018.html", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-04-23T19:35:16Z/" } ], "url": "https://www.videolan.org/security/sb-vlc3018.html" }, { "reference_url": "https://usn.ubuntu.com/6180-1/", "reference_id": "USN-6180-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6180-1/" }, { "reference_url": "https://www.synacktiv.com/sites/default/files/2022-11/vlc_vnc_int_overflow-CVE-2022-41325.pdf", "reference_id": "vlc_vnc_int_overflow-CVE-2022-41325.pdf", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-04-23T19:35:16Z/" } ], "url": "https://www.synacktiv.com/sites/default/files/2022-11/vlc_vnc_int_overflow-CVE-2022-41325.pdf" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1050038?format=api", "purl": "pkg:deb/debian/vlc@3.0.21-0%2Bdeb11u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-4cqm-15gx-p7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.21-0%252Bdeb11u1" } ], "aliases": [ "CVE-2022-41325" ], "risk_score": 2.8, "exploitability": "0.5", "weighted_severity": "5.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zep1-wtjy-gya6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/60108?format=api", "vulnerability_id": "VCID-zr1q-3g6a-yqhd", "summary": "Multiple vulnerabilities have been found in VLC allowing remote\n attackers to execute arbitrary code or cause Denial of Service.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-5949", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.07445", "scoring_system": "epss", "scoring_elements": "0.91719", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.07445", "scoring_system": "epss", "scoring_elements": "0.91727", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.07445", "scoring_system": "epss", "scoring_elements": "0.91733", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.07445", "scoring_system": "epss", "scoring_elements": "0.9174", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.07445", "scoring_system": "epss", "scoring_elements": "0.91753", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.07445", "scoring_system": "epss", "scoring_elements": "0.91759", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.07445", "scoring_system": "epss", "scoring_elements": "0.91762", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.07445", "scoring_system": "epss", "scoring_elements": "0.91765", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.07445", "scoring_system": "epss", "scoring_elements": "0.91761", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.07445", "scoring_system": "epss", "scoring_elements": "0.9178", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.07445", "scoring_system": "epss", "scoring_elements": "0.91773", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.07445", "scoring_system": "epss", "scoring_elements": "0.91775", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-5949" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5949", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5949" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=796255", "reference_id": "796255", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=796255" }, { "reference_url": "https://security.gentoo.org/glsa/201603-08", "reference_id": "GLSA-201603-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201603-08" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036005?format=api", "purl": "pkg:deb/debian/vlc@2.2.7-1~deb8u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1utk-kk7m-pqa8" }, { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-27xm-d15a-yugk" }, { "vulnerability": "VCID-2n9d-6mcy-6fhb" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-52yg-hpt4-9kfy" }, { "vulnerability": "VCID-5k4p-gat4-afhp" }, { "vulnerability": "VCID-5vkn-89xw-hyba" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-7hn8-1cj7-2be3" }, { "vulnerability": "VCID-7s4c-q35j-sbf8" }, { "vulnerability": "VCID-9g9m-c8sc-vfcj" }, { "vulnerability": "VCID-9je8-nsha-kug2" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-bbgn-7j2m-ykcx" }, { "vulnerability": "VCID-bw2j-vv6p-gqew" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-eae7-384g-pqc4" }, { "vulnerability": "VCID-ecyu-zuz8-u3ep" }, { "vulnerability": "VCID-ed2z-6wv2-y7ek" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-gh5m-y7mb-rkgf" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-hjn4-swbf-y3au" }, { "vulnerability": "VCID-j4vw-cnqw-1ygz" }, { "vulnerability": "VCID-kwv3-vghc-zubx" }, { "vulnerability": "VCID-mqhd-5hv6-wfdp" }, { "vulnerability": "VCID-pmkx-83qk-tkhs" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-r4z4-61hf-3bfx" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-s8sm-qx3a-bfcn" }, { "vulnerability": "VCID-ttra-pkh7-mua4" }, { "vulnerability": "VCID-twng-xd4x-37h6" }, { "vulnerability": "VCID-v5wk-fb4c-b3h1" }, { "vulnerability": "VCID-x8r6-rr2f-dufm" }, { "vulnerability": "VCID-yg5r-j2sk-hbav" }, { "vulnerability": "VCID-yndu-f7m6-23gk" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" }, { "vulnerability": "VCID-zry2-jfrq-yug4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@2.2.7-1~deb8u1" } ], "aliases": [ "CVE-2015-5949" ], "risk_score": 0.1, "exploitability": "0.5", "weighted_severity": "0.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zr1q-3g6a-yqhd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50603?format=api", "vulnerability_id": "VCID-zry2-jfrq-yug4", "summary": "Multiple vulnerabilities have been found in VLC, the worst of which\n could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-13962", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.03288", "scoring_system": "epss", "scoring_elements": "0.87142", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.03288", "scoring_system": "epss", "scoring_elements": "0.87152", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.03288", "scoring_system": "epss", "scoring_elements": "0.87169", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.03288", "scoring_system": "epss", "scoring_elements": "0.87166", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.03288", "scoring_system": "epss", "scoring_elements": "0.87186", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.03288", "scoring_system": "epss", "scoring_elements": "0.87193", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.03288", "scoring_system": "epss", "scoring_elements": "0.87206", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.03288", "scoring_system": "epss", "scoring_elements": "0.872", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.03288", "scoring_system": "epss", "scoring_elements": "0.87196", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.03288", "scoring_system": "epss", "scoring_elements": "0.87211", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.03288", "scoring_system": "epss", "scoring_elements": "0.87216", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.03288", "scoring_system": "epss", "scoring_elements": "0.8721", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-13962" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13602" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13962", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13962" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14437", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14437" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14438", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14438" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14498", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14498" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14776", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14776" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14777", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14777" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14970" }, { "reference_url": "https://security.gentoo.org/glsa/201909-02", "reference_id": "GLSA-201909-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201909-02" }, { "reference_url": "https://usn.ubuntu.com/4131-1/", "reference_id": "USN-4131-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4131-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036932?format=api", "purl": "pkg:deb/debian/vlc@3.0.11-0%2Bdeb9u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.11-0%252Bdeb9u1" } ], "aliases": [ "CVE-2019-13962" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zry2-jfrq-yug4" } ], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35024?format=api", "vulnerability_id": "VCID-7enm-2sr1-cygk", "summary": "Multiple vulnerabilities have been found in VLC, the worst of which\n could lead to user-assisted execution of arbitrary code.", "references": [ { "reference_url": "http://marc.info/?l=oss-security&m=136367945627336&w=2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://marc.info/?l=oss-security&m=136367945627336&w=2" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-1868", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.50657", "scoring_system": "epss", "scoring_elements": "0.9786", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.50657", "scoring_system": "epss", "scoring_elements": "0.97829", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.50657", "scoring_system": "epss", "scoring_elements": "0.97834", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.50657", "scoring_system": "epss", "scoring_elements": "0.97836", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.50657", "scoring_system": "epss", "scoring_elements": "0.97838", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.50657", "scoring_system": "epss", "scoring_elements": "0.97843", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.50657", "scoring_system": "epss", "scoring_elements": "0.97846", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.50657", "scoring_system": "epss", "scoring_elements": "0.97848", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.50657", "scoring_system": "epss", "scoring_elements": "0.9785", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.50657", "scoring_system": "epss", "scoring_elements": "0.97852", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.50657", "scoring_system": "epss", "scoring_elements": "0.97859", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.50657", "scoring_system": "epss", "scoring_elements": "0.97862", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-1868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1954", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1954" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4388", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4388" }, { "reference_url": "http://secunia.com/advisories/59793", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/59793" }, { "reference_url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17226", "reference_id": "", "reference_type": "", "scores": [], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17226" }, { "reference_url": "http://www.securityfocus.com/bid/57079", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/57079" }, { "reference_url": "http://www.videolan.org/security/sa1301.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.videolan.org/security/sa1301.html" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:videolan:vlc_media_player:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:2.0.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:videolan:vlc_media_player:2.0.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:2.0.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:2.0.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:videolan:vlc_media_player:2.0.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:2.0.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:2.0.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:videolan:vlc_media_player:2.0.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:2.0.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:2.0.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:videolan:vlc_media_player:2.0.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:2.0.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1868", "reference_id": "CVE-2013-1868", "reference_type": "", "scores": [ { "value": "9.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:C/I:C/A:C" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1868" }, { "reference_url": "https://security.gentoo.org/glsa/201411-01", "reference_id": "GLSA-201411-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201411-01" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/dos/23201.txt", "reference_id": "OSVDB-88299;CVE-2013-1868", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/dos/23201.txt" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571333?format=api", "purl": "pkg:deb/debian/vlc@2.0.3-5%2Bdeb7u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1utk-kk7m-pqa8" }, { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-27xm-d15a-yugk" }, { "vulnerability": "VCID-2d6p-9nvq-m3hc" }, { "vulnerability": "VCID-2mw7-98e2-93bv" }, { "vulnerability": "VCID-2n9d-6mcy-6fhb" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-52yg-hpt4-9kfy" }, { "vulnerability": "VCID-5d5e-5emh-fqh4" }, { "vulnerability": "VCID-5k4p-gat4-afhp" }, { "vulnerability": "VCID-5pkk-pxmh-93hy" }, { "vulnerability": "VCID-5vkn-89xw-hyba" }, { "vulnerability": "VCID-63e8-v5s5-27ew" }, { "vulnerability": "VCID-6a89-jzyb-vygd" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-74ez-a9dg-7uha" }, { "vulnerability": "VCID-76yz-q5df-1ueg" }, { "vulnerability": "VCID-7enm-2sr1-cygk" }, { "vulnerability": "VCID-7hn8-1cj7-2be3" }, { "vulnerability": "VCID-7s4c-q35j-sbf8" }, { "vulnerability": "VCID-85px-3mub-ckdj" }, { "vulnerability": "VCID-978h-eswr-afea" }, { "vulnerability": "VCID-9g9m-c8sc-vfcj" }, { "vulnerability": "VCID-9je8-nsha-kug2" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-bbgn-7j2m-ykcx" }, { "vulnerability": "VCID-bw2j-vv6p-gqew" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-eae7-384g-pqc4" }, { "vulnerability": "VCID-ecyu-zuz8-u3ep" }, { "vulnerability": "VCID-ed2z-6wv2-y7ek" }, { "vulnerability": "VCID-ehcj-1d1g-kbcc" }, { "vulnerability": "VCID-fkhy-sgyz-cke9" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-gh5m-y7mb-rkgf" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-h9ks-v96k-wkf7" }, { "vulnerability": "VCID-hjn4-swbf-y3au" }, { "vulnerability": "VCID-j4vw-cnqw-1ygz" }, { "vulnerability": "VCID-jc5x-s8ej-87bf" }, { "vulnerability": "VCID-kka1-ncqu-73cc" }, { "vulnerability": "VCID-kwv3-vghc-zubx" }, { "vulnerability": "VCID-mqhd-5hv6-wfdp" }, { "vulnerability": "VCID-nj42-shvd-wugk" }, { "vulnerability": "VCID-p7du-wut5-1qb7" }, { "vulnerability": "VCID-pmkx-83qk-tkhs" }, { "vulnerability": "VCID-q6tb-dwn6-jbht" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-r2yd-q1e1-tkhd" }, { "vulnerability": "VCID-r4z4-61hf-3bfx" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-s8sm-qx3a-bfcn" }, { "vulnerability": "VCID-ttra-pkh7-mua4" }, { "vulnerability": "VCID-twng-xd4x-37h6" }, { "vulnerability": "VCID-u2u2-szt5-43a6" }, { "vulnerability": "VCID-uh6m-xhe8-2bfe" }, { "vulnerability": "VCID-v2hu-wzmc-4ba9" }, { "vulnerability": "VCID-v5wk-fb4c-b3h1" }, { "vulnerability": "VCID-vsn2-k6hq-7keu" }, { "vulnerability": "VCID-wc8e-6c6f-guev" }, { "vulnerability": "VCID-x8r6-rr2f-dufm" }, { "vulnerability": "VCID-yg5r-j2sk-hbav" }, { "vulnerability": "VCID-yndu-f7m6-23gk" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" }, { "vulnerability": "VCID-zr1q-3g6a-yqhd" }, { "vulnerability": "VCID-zry2-jfrq-yug4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@2.0.3-5%252Bdeb7u2" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036003?format=api", "purl": "pkg:deb/debian/vlc@2.1.5-1~bpo70%2B1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1utk-kk7m-pqa8" }, { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-27xm-d15a-yugk" }, { "vulnerability": "VCID-2d6p-9nvq-m3hc" }, { "vulnerability": "VCID-2mw7-98e2-93bv" }, { "vulnerability": "VCID-2n9d-6mcy-6fhb" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-52yg-hpt4-9kfy" }, { "vulnerability": "VCID-5d5e-5emh-fqh4" }, { "vulnerability": "VCID-5k4p-gat4-afhp" }, { "vulnerability": "VCID-5pkk-pxmh-93hy" }, { "vulnerability": "VCID-5vkn-89xw-hyba" }, { "vulnerability": "VCID-63e8-v5s5-27ew" }, { "vulnerability": "VCID-6a89-jzyb-vygd" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-74ez-a9dg-7uha" }, { "vulnerability": "VCID-76yz-q5df-1ueg" }, { "vulnerability": "VCID-7hn8-1cj7-2be3" }, { "vulnerability": "VCID-7s4c-q35j-sbf8" }, { "vulnerability": "VCID-85px-3mub-ckdj" }, { "vulnerability": "VCID-978h-eswr-afea" }, { "vulnerability": "VCID-9g9m-c8sc-vfcj" }, { "vulnerability": "VCID-9je8-nsha-kug2" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-bbgn-7j2m-ykcx" }, { "vulnerability": "VCID-bw2j-vv6p-gqew" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-eae7-384g-pqc4" }, { "vulnerability": "VCID-ecyu-zuz8-u3ep" }, { "vulnerability": "VCID-ed2z-6wv2-y7ek" }, { "vulnerability": "VCID-ehcj-1d1g-kbcc" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-gh5m-y7mb-rkgf" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-hjn4-swbf-y3au" }, { "vulnerability": "VCID-j4vw-cnqw-1ygz" }, { "vulnerability": "VCID-jc5x-s8ej-87bf" }, { "vulnerability": "VCID-kwv3-vghc-zubx" }, { "vulnerability": "VCID-mqhd-5hv6-wfdp" }, { "vulnerability": "VCID-p7du-wut5-1qb7" }, { "vulnerability": "VCID-pmkx-83qk-tkhs" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-r4z4-61hf-3bfx" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-s8sm-qx3a-bfcn" }, { "vulnerability": "VCID-ttra-pkh7-mua4" }, { "vulnerability": "VCID-twng-xd4x-37h6" }, { "vulnerability": "VCID-u2u2-szt5-43a6" }, { "vulnerability": "VCID-v5wk-fb4c-b3h1" }, { "vulnerability": "VCID-vsn2-k6hq-7keu" }, { "vulnerability": "VCID-x8r6-rr2f-dufm" }, { "vulnerability": "VCID-yg5r-j2sk-hbav" }, { "vulnerability": "VCID-yndu-f7m6-23gk" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" }, { "vulnerability": "VCID-zr1q-3g6a-yqhd" }, { "vulnerability": "VCID-zry2-jfrq-yug4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@2.1.5-1~bpo70%252B1" } ], "aliases": [ "CVE-2013-1868" ], "risk_score": 10.0, "exploitability": "2.0", "weighted_severity": "8.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7enm-2sr1-cygk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35026?format=api", "vulnerability_id": "VCID-fkhy-sgyz-cke9", "summary": "Multiple vulnerabilities have been found in VLC, the worst of which\n could lead to user-assisted execution of arbitrary code.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-3245", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01865", "scoring_system": "epss", "scoring_elements": "0.82996", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01865", "scoring_system": "epss", "scoring_elements": "0.83012", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01865", "scoring_system": "epss", "scoring_elements": "0.83026", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01865", "scoring_system": "epss", "scoring_elements": "0.83024", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01865", "scoring_system": "epss", "scoring_elements": "0.83048", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01865", "scoring_system": "epss", "scoring_elements": "0.83055", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01865", "scoring_system": "epss", "scoring_elements": "0.83071", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01865", "scoring_system": "epss", "scoring_elements": "0.83065", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01865", "scoring_system": "epss", "scoring_elements": "0.83061", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01865", "scoring_system": "epss", "scoring_elements": "0.83099", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.01865", "scoring_system": "epss", "scoring_elements": "0.831", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01865", "scoring_system": "epss", "scoring_elements": "0.83103", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-3245" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3245", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3245" }, { "reference_url": "http://seclists.org/fulldisclosure/2013/Jul/71", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-22T20:20:26Z/" } ], "url": "http://seclists.org/fulldisclosure/2013/Jul/71" }, { "reference_url": "http://seclists.org/fulldisclosure/2013/Jul/77", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-22T20:20:26Z/" } ], "url": "http://seclists.org/fulldisclosure/2013/Jul/77" }, { "reference_url": "http://seclists.org/fulldisclosure/2013/Jul/79", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-22T20:20:26Z/" } ], "url": "http://seclists.org/fulldisclosure/2013/Jul/79" }, { "reference_url": "http://secunia.com/advisories/52956", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-22T20:20:26Z/" } ], "url": "http://secunia.com/advisories/52956" }, { "reference_url": "http://secunia.com/blog/372/", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-22T20:20:26Z/" } ], "url": "http://secunia.com/blog/372/" }, { "reference_url": "http://www.jbkempf.com/blog/post/2013/More-lies-from-Secunia", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-22T20:20:26Z/" } ], "url": "http://www.jbkempf.com/blog/post/2013/More-lies-from-Secunia" }, { "reference_url": "http://www.securityfocus.com/bid/61032", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-22T20:20:26Z/" } ], "url": "http://www.securityfocus.com/bid/61032" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:2.0.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:videolan:vlc_media_player:2.0.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:2.0.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2013-3245", "reference_id": "CVE-2013-3245", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-3245" }, { "reference_url": "https://security.gentoo.org/glsa/201411-01", "reference_id": "GLSA-201411-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201411-01" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036003?format=api", "purl": "pkg:deb/debian/vlc@2.1.5-1~bpo70%2B1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1utk-kk7m-pqa8" }, { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-27xm-d15a-yugk" }, { "vulnerability": "VCID-2d6p-9nvq-m3hc" }, { "vulnerability": "VCID-2mw7-98e2-93bv" }, { "vulnerability": "VCID-2n9d-6mcy-6fhb" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-52yg-hpt4-9kfy" }, { "vulnerability": "VCID-5d5e-5emh-fqh4" }, { "vulnerability": "VCID-5k4p-gat4-afhp" }, { "vulnerability": "VCID-5pkk-pxmh-93hy" }, { "vulnerability": "VCID-5vkn-89xw-hyba" }, { "vulnerability": "VCID-63e8-v5s5-27ew" }, { "vulnerability": "VCID-6a89-jzyb-vygd" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-74ez-a9dg-7uha" }, { "vulnerability": "VCID-76yz-q5df-1ueg" }, { "vulnerability": "VCID-7hn8-1cj7-2be3" }, { "vulnerability": "VCID-7s4c-q35j-sbf8" }, { "vulnerability": "VCID-85px-3mub-ckdj" }, { "vulnerability": "VCID-978h-eswr-afea" }, { "vulnerability": "VCID-9g9m-c8sc-vfcj" }, { "vulnerability": "VCID-9je8-nsha-kug2" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-bbgn-7j2m-ykcx" }, { "vulnerability": "VCID-bw2j-vv6p-gqew" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-eae7-384g-pqc4" }, { "vulnerability": "VCID-ecyu-zuz8-u3ep" }, { "vulnerability": "VCID-ed2z-6wv2-y7ek" }, { "vulnerability": "VCID-ehcj-1d1g-kbcc" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-gh5m-y7mb-rkgf" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-hjn4-swbf-y3au" }, { "vulnerability": "VCID-j4vw-cnqw-1ygz" }, { "vulnerability": "VCID-jc5x-s8ej-87bf" }, { "vulnerability": "VCID-kwv3-vghc-zubx" }, { "vulnerability": "VCID-mqhd-5hv6-wfdp" }, { "vulnerability": "VCID-p7du-wut5-1qb7" }, { "vulnerability": "VCID-pmkx-83qk-tkhs" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-r4z4-61hf-3bfx" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-s8sm-qx3a-bfcn" }, { "vulnerability": "VCID-ttra-pkh7-mua4" }, { "vulnerability": "VCID-twng-xd4x-37h6" }, { "vulnerability": "VCID-u2u2-szt5-43a6" }, { "vulnerability": "VCID-v5wk-fb4c-b3h1" }, { "vulnerability": "VCID-vsn2-k6hq-7keu" }, { "vulnerability": "VCID-x8r6-rr2f-dufm" }, { "vulnerability": "VCID-yg5r-j2sk-hbav" }, { "vulnerability": "VCID-yndu-f7m6-23gk" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" }, { "vulnerability": "VCID-zr1q-3g6a-yqhd" }, { "vulnerability": "VCID-zry2-jfrq-yug4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@2.1.5-1~bpo70%252B1" } ], "aliases": [ "CVE-2013-3245" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "6.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fkhy-sgyz-cke9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/55943?format=api", "vulnerability_id": "VCID-h9ks-v96k-wkf7", "summary": "security update", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-6933", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.03355", "scoring_system": "epss", "scoring_elements": "0.87278", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.03355", "scoring_system": "epss", "scoring_elements": "0.87288", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.03355", "scoring_system": "epss", "scoring_elements": "0.87304", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.03355", "scoring_system": "epss", "scoring_elements": "0.87303", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.03355", "scoring_system": "epss", "scoring_elements": "0.87322", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.03355", "scoring_system": "epss", "scoring_elements": "0.87329", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.03355", "scoring_system": "epss", "scoring_elements": "0.87342", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.03355", "scoring_system": "epss", "scoring_elements": "0.87336", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.03355", "scoring_system": "epss", "scoring_elements": "0.87332", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.03355", "scoring_system": "epss", "scoring_elements": "0.87346", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.03355", "scoring_system": "epss", "scoring_elements": "0.8735", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.03355", "scoring_system": "epss", "scoring_elements": "0.87344", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-6933" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6933", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6933" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036003?format=api", "purl": "pkg:deb/debian/vlc@2.1.5-1~bpo70%2B1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1utk-kk7m-pqa8" }, { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-27xm-d15a-yugk" }, { "vulnerability": "VCID-2d6p-9nvq-m3hc" }, { "vulnerability": "VCID-2mw7-98e2-93bv" }, { "vulnerability": "VCID-2n9d-6mcy-6fhb" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-52yg-hpt4-9kfy" }, { "vulnerability": "VCID-5d5e-5emh-fqh4" }, { "vulnerability": "VCID-5k4p-gat4-afhp" }, { "vulnerability": "VCID-5pkk-pxmh-93hy" }, { "vulnerability": "VCID-5vkn-89xw-hyba" }, { "vulnerability": "VCID-63e8-v5s5-27ew" }, { "vulnerability": "VCID-6a89-jzyb-vygd" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-74ez-a9dg-7uha" }, { "vulnerability": "VCID-76yz-q5df-1ueg" }, { "vulnerability": "VCID-7hn8-1cj7-2be3" }, { "vulnerability": "VCID-7s4c-q35j-sbf8" }, { "vulnerability": "VCID-85px-3mub-ckdj" }, { "vulnerability": "VCID-978h-eswr-afea" }, { "vulnerability": "VCID-9g9m-c8sc-vfcj" }, { "vulnerability": "VCID-9je8-nsha-kug2" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-bbgn-7j2m-ykcx" }, { "vulnerability": "VCID-bw2j-vv6p-gqew" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-eae7-384g-pqc4" }, { "vulnerability": "VCID-ecyu-zuz8-u3ep" }, { "vulnerability": "VCID-ed2z-6wv2-y7ek" }, { "vulnerability": "VCID-ehcj-1d1g-kbcc" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-gh5m-y7mb-rkgf" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-hjn4-swbf-y3au" }, { "vulnerability": "VCID-j4vw-cnqw-1ygz" }, { "vulnerability": "VCID-jc5x-s8ej-87bf" }, { "vulnerability": "VCID-kwv3-vghc-zubx" }, { "vulnerability": "VCID-mqhd-5hv6-wfdp" }, { "vulnerability": "VCID-p7du-wut5-1qb7" }, { "vulnerability": "VCID-pmkx-83qk-tkhs" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-r4z4-61hf-3bfx" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-s8sm-qx3a-bfcn" }, { "vulnerability": "VCID-ttra-pkh7-mua4" }, { "vulnerability": "VCID-twng-xd4x-37h6" }, { "vulnerability": "VCID-u2u2-szt5-43a6" }, { "vulnerability": "VCID-v5wk-fb4c-b3h1" }, { "vulnerability": "VCID-vsn2-k6hq-7keu" }, { "vulnerability": "VCID-x8r6-rr2f-dufm" }, { "vulnerability": "VCID-yg5r-j2sk-hbav" }, { "vulnerability": "VCID-yndu-f7m6-23gk" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" }, { "vulnerability": "VCID-zr1q-3g6a-yqhd" }, { "vulnerability": "VCID-zry2-jfrq-yug4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@2.1.5-1~bpo70%252B1" } ], "aliases": [ "CVE-2013-6933" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-h9ks-v96k-wkf7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/92504?format=api", "vulnerability_id": "VCID-kka1-ncqu-73cc", "summary": "Multiple cross-site scripting (XSS) vulnerabilities in the HTTP Interface in VideoLAN VLC Media Player before 2.0.7 allow remote attackers to inject arbitrary web script or HTML via the (1) command parameter to requests/vlm_cmd.xml, (2) dir parameter to requests/browse.xml, or (3) URI in a request, which is returned in an error message through share/lua/intf/http.lua.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-3565", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00396", "scoring_system": "epss", "scoring_elements": "0.60307", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00396", "scoring_system": "epss", "scoring_elements": "0.60382", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00396", "scoring_system": "epss", "scoring_elements": "0.60409", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00396", "scoring_system": "epss", "scoring_elements": "0.60377", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00396", "scoring_system": "epss", "scoring_elements": "0.60426", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00396", "scoring_system": "epss", "scoring_elements": "0.60442", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00396", "scoring_system": "epss", "scoring_elements": "0.60463", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00396", "scoring_system": "epss", "scoring_elements": "0.60449", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00396", "scoring_system": "epss", "scoring_elements": "0.6043", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00396", "scoring_system": "epss", "scoring_elements": "0.6047", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00396", "scoring_system": "epss", "scoring_elements": "0.60479", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00396", "scoring_system": "epss", "scoring_elements": "0.60469", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-3565" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3565", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3565" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036003?format=api", "purl": "pkg:deb/debian/vlc@2.1.5-1~bpo70%2B1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1utk-kk7m-pqa8" }, { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-27xm-d15a-yugk" }, { "vulnerability": "VCID-2d6p-9nvq-m3hc" }, { "vulnerability": "VCID-2mw7-98e2-93bv" }, { "vulnerability": "VCID-2n9d-6mcy-6fhb" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-52yg-hpt4-9kfy" }, { "vulnerability": "VCID-5d5e-5emh-fqh4" }, { "vulnerability": "VCID-5k4p-gat4-afhp" }, { "vulnerability": "VCID-5pkk-pxmh-93hy" }, { "vulnerability": "VCID-5vkn-89xw-hyba" }, { "vulnerability": "VCID-63e8-v5s5-27ew" }, { "vulnerability": "VCID-6a89-jzyb-vygd" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-74ez-a9dg-7uha" }, { "vulnerability": "VCID-76yz-q5df-1ueg" }, { "vulnerability": "VCID-7hn8-1cj7-2be3" }, { "vulnerability": "VCID-7s4c-q35j-sbf8" }, { "vulnerability": "VCID-85px-3mub-ckdj" }, { "vulnerability": "VCID-978h-eswr-afea" }, { "vulnerability": "VCID-9g9m-c8sc-vfcj" }, { "vulnerability": "VCID-9je8-nsha-kug2" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-bbgn-7j2m-ykcx" }, { "vulnerability": "VCID-bw2j-vv6p-gqew" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-eae7-384g-pqc4" }, { "vulnerability": "VCID-ecyu-zuz8-u3ep" }, { "vulnerability": "VCID-ed2z-6wv2-y7ek" }, { "vulnerability": "VCID-ehcj-1d1g-kbcc" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-gh5m-y7mb-rkgf" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-hjn4-swbf-y3au" }, { "vulnerability": "VCID-j4vw-cnqw-1ygz" }, { "vulnerability": "VCID-jc5x-s8ej-87bf" }, { "vulnerability": "VCID-kwv3-vghc-zubx" }, { "vulnerability": "VCID-mqhd-5hv6-wfdp" }, { "vulnerability": "VCID-p7du-wut5-1qb7" }, { "vulnerability": "VCID-pmkx-83qk-tkhs" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-r4z4-61hf-3bfx" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-s8sm-qx3a-bfcn" }, { "vulnerability": "VCID-ttra-pkh7-mua4" }, { "vulnerability": "VCID-twng-xd4x-37h6" }, { "vulnerability": "VCID-u2u2-szt5-43a6" }, { "vulnerability": "VCID-v5wk-fb4c-b3h1" }, { "vulnerability": "VCID-vsn2-k6hq-7keu" }, { "vulnerability": "VCID-x8r6-rr2f-dufm" }, { "vulnerability": "VCID-yg5r-j2sk-hbav" }, { "vulnerability": "VCID-yndu-f7m6-23gk" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" }, { "vulnerability": "VCID-zr1q-3g6a-yqhd" }, { "vulnerability": "VCID-zry2-jfrq-yug4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@2.1.5-1~bpo70%252B1" } ], "aliases": [ "CVE-2013-3565" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-kka1-ncqu-73cc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35022?format=api", "vulnerability_id": "VCID-nj42-shvd-wugk", "summary": "Multiple vulnerabilities have been found in VLC, the worst of which\n could lead to user-assisted execution of arbitrary code.", "references": [ { "reference_url": "http://openwall.com/lists/oss-security/2012/10/24/3", "reference_id": "", "reference_type": "", "scores": [], "url": "http://openwall.com/lists/oss-security/2012/10/24/3" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2012-5470", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.16977", "scoring_system": "epss", "scoring_elements": "0.94992", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.16977", "scoring_system": "epss", "scoring_elements": "0.94943", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.16977", "scoring_system": "epss", "scoring_elements": "0.94952", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.16977", "scoring_system": "epss", "scoring_elements": "0.94954", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.16977", "scoring_system": "epss", "scoring_elements": "0.94956", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.16977", "scoring_system": "epss", "scoring_elements": "0.94965", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.16977", "scoring_system": "epss", "scoring_elements": "0.94969", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.16977", "scoring_system": "epss", "scoring_elements": "0.94974", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.16977", "scoring_system": "epss", "scoring_elements": "0.94976", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.16977", "scoring_system": "epss", "scoring_elements": "0.94978", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.16977", "scoring_system": "epss", "scoring_elements": "0.94986", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.16977", "scoring_system": "epss", "scoring_elements": "0.9499", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2012-5470" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5470", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5470" }, { "reference_url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15540" }, { "reference_url": "http://www.exploit-db.com/exploits/21889/", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.exploit-db.com/exploits/21889/" }, { "reference_url": "http://www.securityfocus.com/bid/55850", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/55850" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=692130", "reference_id": "692130", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=692130" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:2.0.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:videolan:vlc_media_player:2.0.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:2.0.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2012-5470", "reference_id": "CVE-2012-5470", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-5470" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/dos/21889.pl", "reference_id": "CVE-2012-5470;OSVDB-86685", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/dos/21889.pl" }, { "reference_url": "https://security.gentoo.org/glsa/201411-01", "reference_id": "GLSA-201411-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201411-01" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036003?format=api", "purl": "pkg:deb/debian/vlc@2.1.5-1~bpo70%2B1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1utk-kk7m-pqa8" }, { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-27xm-d15a-yugk" }, { "vulnerability": "VCID-2d6p-9nvq-m3hc" }, { "vulnerability": "VCID-2mw7-98e2-93bv" }, { "vulnerability": "VCID-2n9d-6mcy-6fhb" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-52yg-hpt4-9kfy" }, { "vulnerability": "VCID-5d5e-5emh-fqh4" }, { "vulnerability": "VCID-5k4p-gat4-afhp" }, { "vulnerability": "VCID-5pkk-pxmh-93hy" }, { "vulnerability": "VCID-5vkn-89xw-hyba" }, { "vulnerability": "VCID-63e8-v5s5-27ew" }, { "vulnerability": "VCID-6a89-jzyb-vygd" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-74ez-a9dg-7uha" }, { "vulnerability": "VCID-76yz-q5df-1ueg" }, { "vulnerability": "VCID-7hn8-1cj7-2be3" }, { "vulnerability": "VCID-7s4c-q35j-sbf8" }, { "vulnerability": "VCID-85px-3mub-ckdj" }, { "vulnerability": "VCID-978h-eswr-afea" }, { "vulnerability": "VCID-9g9m-c8sc-vfcj" }, { "vulnerability": "VCID-9je8-nsha-kug2" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-bbgn-7j2m-ykcx" }, { "vulnerability": "VCID-bw2j-vv6p-gqew" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-eae7-384g-pqc4" }, { "vulnerability": "VCID-ecyu-zuz8-u3ep" }, { "vulnerability": "VCID-ed2z-6wv2-y7ek" }, { "vulnerability": "VCID-ehcj-1d1g-kbcc" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-gh5m-y7mb-rkgf" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-hjn4-swbf-y3au" }, { "vulnerability": "VCID-j4vw-cnqw-1ygz" }, { "vulnerability": "VCID-jc5x-s8ej-87bf" }, { "vulnerability": "VCID-kwv3-vghc-zubx" }, { "vulnerability": "VCID-mqhd-5hv6-wfdp" }, { "vulnerability": "VCID-p7du-wut5-1qb7" }, { "vulnerability": "VCID-pmkx-83qk-tkhs" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-r4z4-61hf-3bfx" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-s8sm-qx3a-bfcn" }, { "vulnerability": "VCID-ttra-pkh7-mua4" }, { "vulnerability": "VCID-twng-xd4x-37h6" }, { "vulnerability": "VCID-u2u2-szt5-43a6" }, { "vulnerability": "VCID-v5wk-fb4c-b3h1" }, { "vulnerability": "VCID-vsn2-k6hq-7keu" }, { "vulnerability": "VCID-x8r6-rr2f-dufm" }, { "vulnerability": "VCID-yg5r-j2sk-hbav" }, { "vulnerability": "VCID-yndu-f7m6-23gk" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" }, { "vulnerability": "VCID-zr1q-3g6a-yqhd" }, { "vulnerability": "VCID-zry2-jfrq-yug4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@2.1.5-1~bpo70%252B1" } ], "aliases": [ "CVE-2012-5470" ], "risk_score": 7.8, "exploitability": "2.0", "weighted_severity": "3.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nj42-shvd-wugk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/60101?format=api", "vulnerability_id": "VCID-q6tb-dwn6-jbht", "summary": "Multiple vulnerabilities have been found in VLC allowing remote\n attackers to execute arbitrary code or cause Denial of Service.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-1684", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.1275", "scoring_system": "epss", "scoring_elements": "0.93965", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.1275", "scoring_system": "epss", "scoring_elements": "0.93974", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.1275", "scoring_system": "epss", "scoring_elements": "0.93983", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.1275", "scoring_system": "epss", "scoring_elements": "0.93986", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.1275", "scoring_system": "epss", "scoring_elements": "0.93995", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.1275", "scoring_system": "epss", "scoring_elements": "0.93998", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.1275", "scoring_system": "epss", "scoring_elements": "0.94003", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.1275", "scoring_system": "epss", "scoring_elements": "0.94018", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.1275", "scoring_system": "epss", "scoring_elements": "0.94023", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-1684" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1684", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1684" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=743033", "reference_id": "743033", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=743033" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/31429.py", "reference_id": "CVE-2014-1684;OSVDB-103019", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/31429.py" }, { "reference_url": "https://security.gentoo.org/glsa/201603-08", "reference_id": "GLSA-201603-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201603-08" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036003?format=api", "purl": "pkg:deb/debian/vlc@2.1.5-1~bpo70%2B1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1utk-kk7m-pqa8" }, { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-27xm-d15a-yugk" }, { "vulnerability": "VCID-2d6p-9nvq-m3hc" }, { "vulnerability": "VCID-2mw7-98e2-93bv" }, { "vulnerability": "VCID-2n9d-6mcy-6fhb" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-52yg-hpt4-9kfy" }, { "vulnerability": "VCID-5d5e-5emh-fqh4" }, { "vulnerability": "VCID-5k4p-gat4-afhp" }, { "vulnerability": "VCID-5pkk-pxmh-93hy" }, { "vulnerability": "VCID-5vkn-89xw-hyba" }, { "vulnerability": "VCID-63e8-v5s5-27ew" }, { "vulnerability": "VCID-6a89-jzyb-vygd" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-74ez-a9dg-7uha" }, { "vulnerability": "VCID-76yz-q5df-1ueg" }, { "vulnerability": "VCID-7hn8-1cj7-2be3" }, { "vulnerability": "VCID-7s4c-q35j-sbf8" }, { "vulnerability": "VCID-85px-3mub-ckdj" }, { "vulnerability": "VCID-978h-eswr-afea" }, { "vulnerability": "VCID-9g9m-c8sc-vfcj" }, { "vulnerability": "VCID-9je8-nsha-kug2" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-bbgn-7j2m-ykcx" }, { "vulnerability": "VCID-bw2j-vv6p-gqew" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-eae7-384g-pqc4" }, { "vulnerability": "VCID-ecyu-zuz8-u3ep" }, { "vulnerability": "VCID-ed2z-6wv2-y7ek" }, { "vulnerability": "VCID-ehcj-1d1g-kbcc" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-gh5m-y7mb-rkgf" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-hjn4-swbf-y3au" }, { "vulnerability": "VCID-j4vw-cnqw-1ygz" }, { "vulnerability": "VCID-jc5x-s8ej-87bf" }, { "vulnerability": "VCID-kwv3-vghc-zubx" }, { "vulnerability": "VCID-mqhd-5hv6-wfdp" }, { "vulnerability": "VCID-p7du-wut5-1qb7" }, { "vulnerability": "VCID-pmkx-83qk-tkhs" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-r4z4-61hf-3bfx" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-s8sm-qx3a-bfcn" }, { "vulnerability": "VCID-ttra-pkh7-mua4" }, { "vulnerability": "VCID-twng-xd4x-37h6" }, { "vulnerability": "VCID-u2u2-szt5-43a6" }, { "vulnerability": "VCID-v5wk-fb4c-b3h1" }, { "vulnerability": "VCID-vsn2-k6hq-7keu" }, { "vulnerability": "VCID-x8r6-rr2f-dufm" }, { "vulnerability": "VCID-yg5r-j2sk-hbav" }, { "vulnerability": "VCID-yndu-f7m6-23gk" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" }, { "vulnerability": "VCID-zr1q-3g6a-yqhd" }, { "vulnerability": "VCID-zry2-jfrq-yug4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@2.1.5-1~bpo70%252B1" } ], "aliases": [ "CVE-2014-1684" ], "risk_score": 0.2, "exploitability": "2.0", "weighted_severity": "0.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-q6tb-dwn6-jbht" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35027?format=api", "vulnerability_id": "VCID-r2yd-q1e1-tkhd", "summary": "Multiple vulnerabilities have been found in VLC, the worst of which\n could lead to user-assisted execution of arbitrary code.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-4388", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.03905", "scoring_system": "epss", "scoring_elements": "0.88232", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.03905", "scoring_system": "epss", "scoring_elements": "0.8824", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.03905", "scoring_system": "epss", "scoring_elements": "0.88255", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.03905", "scoring_system": "epss", "scoring_elements": "0.8826", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.03905", "scoring_system": "epss", "scoring_elements": "0.88279", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.03905", "scoring_system": "epss", "scoring_elements": "0.88285", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.03905", "scoring_system": "epss", "scoring_elements": "0.88297", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.03905", "scoring_system": "epss", "scoring_elements": "0.88289", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.03905", "scoring_system": "epss", "scoring_elements": "0.88302", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.03905", "scoring_system": "epss", "scoring_elements": "0.88301", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.03905", "scoring_system": "epss", "scoring_elements": "0.883", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-4388" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1954", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1954" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4388", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4388" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=726528", "reference_id": "726528", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=726528" }, { "reference_url": "https://security.gentoo.org/glsa/201411-01", "reference_id": "GLSA-201411-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201411-01" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571333?format=api", "purl": "pkg:deb/debian/vlc@2.0.3-5%2Bdeb7u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1utk-kk7m-pqa8" }, { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-27xm-d15a-yugk" }, { "vulnerability": "VCID-2d6p-9nvq-m3hc" }, { "vulnerability": "VCID-2mw7-98e2-93bv" }, { "vulnerability": "VCID-2n9d-6mcy-6fhb" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-52yg-hpt4-9kfy" }, { "vulnerability": "VCID-5d5e-5emh-fqh4" }, { "vulnerability": "VCID-5k4p-gat4-afhp" }, { "vulnerability": "VCID-5pkk-pxmh-93hy" }, { "vulnerability": "VCID-5vkn-89xw-hyba" }, { "vulnerability": "VCID-63e8-v5s5-27ew" }, { "vulnerability": "VCID-6a89-jzyb-vygd" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-74ez-a9dg-7uha" }, { "vulnerability": "VCID-76yz-q5df-1ueg" }, { "vulnerability": "VCID-7enm-2sr1-cygk" }, { "vulnerability": "VCID-7hn8-1cj7-2be3" }, { "vulnerability": "VCID-7s4c-q35j-sbf8" }, { "vulnerability": "VCID-85px-3mub-ckdj" }, { "vulnerability": "VCID-978h-eswr-afea" }, { "vulnerability": "VCID-9g9m-c8sc-vfcj" }, { "vulnerability": "VCID-9je8-nsha-kug2" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-bbgn-7j2m-ykcx" }, { "vulnerability": "VCID-bw2j-vv6p-gqew" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-eae7-384g-pqc4" }, { "vulnerability": "VCID-ecyu-zuz8-u3ep" }, { "vulnerability": "VCID-ed2z-6wv2-y7ek" }, { "vulnerability": "VCID-ehcj-1d1g-kbcc" }, { "vulnerability": "VCID-fkhy-sgyz-cke9" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-gh5m-y7mb-rkgf" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-h9ks-v96k-wkf7" }, { "vulnerability": "VCID-hjn4-swbf-y3au" }, { "vulnerability": "VCID-j4vw-cnqw-1ygz" }, { "vulnerability": "VCID-jc5x-s8ej-87bf" }, { "vulnerability": "VCID-kka1-ncqu-73cc" }, { "vulnerability": "VCID-kwv3-vghc-zubx" }, { "vulnerability": "VCID-mqhd-5hv6-wfdp" }, { "vulnerability": "VCID-nj42-shvd-wugk" }, { "vulnerability": "VCID-p7du-wut5-1qb7" }, { "vulnerability": "VCID-pmkx-83qk-tkhs" }, { "vulnerability": "VCID-q6tb-dwn6-jbht" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-r2yd-q1e1-tkhd" }, { "vulnerability": "VCID-r4z4-61hf-3bfx" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-s8sm-qx3a-bfcn" }, { "vulnerability": "VCID-ttra-pkh7-mua4" }, { "vulnerability": "VCID-twng-xd4x-37h6" }, { "vulnerability": "VCID-u2u2-szt5-43a6" }, { "vulnerability": "VCID-uh6m-xhe8-2bfe" }, { "vulnerability": "VCID-v2hu-wzmc-4ba9" }, { "vulnerability": "VCID-v5wk-fb4c-b3h1" }, { "vulnerability": "VCID-vsn2-k6hq-7keu" }, { "vulnerability": "VCID-wc8e-6c6f-guev" }, { "vulnerability": "VCID-x8r6-rr2f-dufm" }, { "vulnerability": "VCID-yg5r-j2sk-hbav" }, { "vulnerability": "VCID-yndu-f7m6-23gk" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" }, { "vulnerability": "VCID-zr1q-3g6a-yqhd" }, { "vulnerability": "VCID-zry2-jfrq-yug4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@2.0.3-5%252Bdeb7u2" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036003?format=api", "purl": "pkg:deb/debian/vlc@2.1.5-1~bpo70%2B1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1utk-kk7m-pqa8" }, { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-27xm-d15a-yugk" }, { "vulnerability": "VCID-2d6p-9nvq-m3hc" }, { "vulnerability": "VCID-2mw7-98e2-93bv" }, { "vulnerability": "VCID-2n9d-6mcy-6fhb" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-52yg-hpt4-9kfy" }, { "vulnerability": "VCID-5d5e-5emh-fqh4" }, { "vulnerability": "VCID-5k4p-gat4-afhp" }, { "vulnerability": "VCID-5pkk-pxmh-93hy" }, { "vulnerability": "VCID-5vkn-89xw-hyba" }, { "vulnerability": "VCID-63e8-v5s5-27ew" }, { "vulnerability": "VCID-6a89-jzyb-vygd" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-74ez-a9dg-7uha" }, { "vulnerability": "VCID-76yz-q5df-1ueg" }, { "vulnerability": "VCID-7hn8-1cj7-2be3" }, { "vulnerability": "VCID-7s4c-q35j-sbf8" }, { "vulnerability": "VCID-85px-3mub-ckdj" }, { "vulnerability": "VCID-978h-eswr-afea" }, { "vulnerability": "VCID-9g9m-c8sc-vfcj" }, { "vulnerability": "VCID-9je8-nsha-kug2" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-bbgn-7j2m-ykcx" }, { "vulnerability": "VCID-bw2j-vv6p-gqew" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-eae7-384g-pqc4" }, { "vulnerability": "VCID-ecyu-zuz8-u3ep" }, { "vulnerability": "VCID-ed2z-6wv2-y7ek" }, { "vulnerability": "VCID-ehcj-1d1g-kbcc" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-gh5m-y7mb-rkgf" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-hjn4-swbf-y3au" }, { "vulnerability": "VCID-j4vw-cnqw-1ygz" }, { "vulnerability": "VCID-jc5x-s8ej-87bf" }, { "vulnerability": "VCID-kwv3-vghc-zubx" }, { "vulnerability": "VCID-mqhd-5hv6-wfdp" }, { "vulnerability": "VCID-p7du-wut5-1qb7" }, { "vulnerability": "VCID-pmkx-83qk-tkhs" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-r4z4-61hf-3bfx" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-s8sm-qx3a-bfcn" }, { "vulnerability": "VCID-ttra-pkh7-mua4" }, { "vulnerability": "VCID-twng-xd4x-37h6" }, { "vulnerability": "VCID-u2u2-szt5-43a6" }, { "vulnerability": "VCID-v5wk-fb4c-b3h1" }, { "vulnerability": "VCID-vsn2-k6hq-7keu" }, { "vulnerability": "VCID-x8r6-rr2f-dufm" }, { "vulnerability": "VCID-yg5r-j2sk-hbav" }, { "vulnerability": "VCID-yndu-f7m6-23gk" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" }, { "vulnerability": "VCID-zr1q-3g6a-yqhd" }, { "vulnerability": "VCID-zry2-jfrq-yug4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@2.1.5-1~bpo70%252B1" } ], "aliases": [ "CVE-2013-4388" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-r2yd-q1e1-tkhd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35025?format=api", "vulnerability_id": "VCID-uh6m-xhe8-2bfe", "summary": "Multiple vulnerabilities have been found in VLC, the worst of which\n could lead to user-assisted execution of arbitrary code.", "references": [ { "reference_url": "http://git.videolan.org/?p=vlc.git%3Ba=commitdiff%3Bh=b31ce523331aa3a6e620b68cdfe3f161d519631e", "reference_id": "", "reference_type": "", "scores": [], "url": "http://git.videolan.org/?p=vlc.git%3Ba=commitdiff%3Bh=b31ce523331aa3a6e620b68cdfe3f161d519631e" }, { "reference_url": "http://marc.info/?l=oss-security&m=136593191416152&w=2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://marc.info/?l=oss-security&m=136593191416152&w=2" }, { "reference_url": "http://marc.info/?l=oss-security&m=136610343501731&w=2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://marc.info/?l=oss-security&m=136610343501731&w=2" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-1954", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02271", "scoring_system": "epss", "scoring_elements": "0.84673", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.02271", "scoring_system": "epss", "scoring_elements": "0.84576", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.02271", "scoring_system": "epss", "scoring_elements": "0.84591", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.02271", "scoring_system": "epss", "scoring_elements": "0.84612", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.02271", "scoring_system": "epss", "scoring_elements": "0.84613", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.02271", "scoring_system": "epss", "scoring_elements": "0.84635", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.02271", "scoring_system": "epss", "scoring_elements": "0.84641", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.02271", "scoring_system": "epss", "scoring_elements": "0.84659", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.02271", "scoring_system": "epss", "scoring_elements": "0.84655", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.02271", "scoring_system": "epss", "scoring_elements": "0.8465", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.02271", "scoring_system": "epss", "scoring_elements": "0.84671", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.02271", "scoring_system": "epss", "scoring_elements": "0.84672", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-1954" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1954", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1954" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4388", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4388" }, { "reference_url": "http://secunia.com/advisories/59793", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/59793" }, { "reference_url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17023", "reference_id": "", "reference_type": "", "scores": [], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17023" }, { "reference_url": "http://trac.videolan.org/vlc/ticket/8024", "reference_id": "", "reference_type": "", "scores": [], "url": "http://trac.videolan.org/vlc/ticket/8024" }, { "reference_url": "http://www.osvdb.org/89598", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.osvdb.org/89598" }, { "reference_url": "http://www.securityfocus.com/bid/57333", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/57333" }, { "reference_url": "http://www.videolan.org/security/sa1302.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.videolan.org/security/sa1302.html" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=705136", "reference_id": "705136", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=705136" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:videolan:vlc_media_player:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:2.0.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:videolan:vlc_media_player:2.0.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:2.0.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:2.0.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:videolan:vlc_media_player:2.0.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:2.0.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:2.0.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:videolan:vlc_media_player:2.0.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:2.0.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:2.0.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:videolan:vlc_media_player:2.0.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:2.0.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:2.0.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:videolan:vlc_media_player:2.0.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:2.0.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1954", "reference_id": "CVE-2013-1954", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1954" }, { "reference_url": "https://security.gentoo.org/glsa/201411-01", "reference_id": "GLSA-201411-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201411-01" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571333?format=api", "purl": "pkg:deb/debian/vlc@2.0.3-5%2Bdeb7u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1utk-kk7m-pqa8" }, { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-27xm-d15a-yugk" }, { "vulnerability": "VCID-2d6p-9nvq-m3hc" }, { "vulnerability": "VCID-2mw7-98e2-93bv" }, { "vulnerability": "VCID-2n9d-6mcy-6fhb" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-52yg-hpt4-9kfy" }, { "vulnerability": "VCID-5d5e-5emh-fqh4" }, { "vulnerability": "VCID-5k4p-gat4-afhp" }, { "vulnerability": "VCID-5pkk-pxmh-93hy" }, { "vulnerability": "VCID-5vkn-89xw-hyba" }, { "vulnerability": "VCID-63e8-v5s5-27ew" }, { "vulnerability": "VCID-6a89-jzyb-vygd" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-74ez-a9dg-7uha" }, { "vulnerability": "VCID-76yz-q5df-1ueg" }, { "vulnerability": "VCID-7enm-2sr1-cygk" }, { "vulnerability": "VCID-7hn8-1cj7-2be3" }, { "vulnerability": "VCID-7s4c-q35j-sbf8" }, { "vulnerability": "VCID-85px-3mub-ckdj" }, { "vulnerability": "VCID-978h-eswr-afea" }, { "vulnerability": "VCID-9g9m-c8sc-vfcj" }, { "vulnerability": "VCID-9je8-nsha-kug2" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-bbgn-7j2m-ykcx" }, { "vulnerability": "VCID-bw2j-vv6p-gqew" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-eae7-384g-pqc4" }, { "vulnerability": "VCID-ecyu-zuz8-u3ep" }, { "vulnerability": "VCID-ed2z-6wv2-y7ek" }, { "vulnerability": "VCID-ehcj-1d1g-kbcc" }, { "vulnerability": "VCID-fkhy-sgyz-cke9" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-gh5m-y7mb-rkgf" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-h9ks-v96k-wkf7" }, { "vulnerability": "VCID-hjn4-swbf-y3au" }, { "vulnerability": "VCID-j4vw-cnqw-1ygz" }, { "vulnerability": "VCID-jc5x-s8ej-87bf" }, { "vulnerability": "VCID-kka1-ncqu-73cc" }, { "vulnerability": "VCID-kwv3-vghc-zubx" }, { "vulnerability": "VCID-mqhd-5hv6-wfdp" }, { "vulnerability": "VCID-nj42-shvd-wugk" }, { "vulnerability": "VCID-p7du-wut5-1qb7" }, { "vulnerability": "VCID-pmkx-83qk-tkhs" }, { "vulnerability": "VCID-q6tb-dwn6-jbht" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-r2yd-q1e1-tkhd" }, { "vulnerability": "VCID-r4z4-61hf-3bfx" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-s8sm-qx3a-bfcn" }, { "vulnerability": "VCID-ttra-pkh7-mua4" }, { "vulnerability": "VCID-twng-xd4x-37h6" }, { "vulnerability": "VCID-u2u2-szt5-43a6" }, { "vulnerability": "VCID-uh6m-xhe8-2bfe" }, { "vulnerability": "VCID-v2hu-wzmc-4ba9" }, { "vulnerability": "VCID-v5wk-fb4c-b3h1" }, { "vulnerability": "VCID-vsn2-k6hq-7keu" }, { "vulnerability": "VCID-wc8e-6c6f-guev" }, { "vulnerability": "VCID-x8r6-rr2f-dufm" }, { "vulnerability": "VCID-yg5r-j2sk-hbav" }, { "vulnerability": "VCID-yndu-f7m6-23gk" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" }, { "vulnerability": "VCID-zr1q-3g6a-yqhd" }, { "vulnerability": "VCID-zry2-jfrq-yug4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@2.0.3-5%252Bdeb7u2" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036003?format=api", "purl": "pkg:deb/debian/vlc@2.1.5-1~bpo70%2B1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1utk-kk7m-pqa8" }, { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-27xm-d15a-yugk" }, { "vulnerability": "VCID-2d6p-9nvq-m3hc" }, { "vulnerability": "VCID-2mw7-98e2-93bv" }, { "vulnerability": "VCID-2n9d-6mcy-6fhb" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-52yg-hpt4-9kfy" }, { "vulnerability": "VCID-5d5e-5emh-fqh4" }, { "vulnerability": "VCID-5k4p-gat4-afhp" }, { "vulnerability": "VCID-5pkk-pxmh-93hy" }, { "vulnerability": "VCID-5vkn-89xw-hyba" }, { "vulnerability": "VCID-63e8-v5s5-27ew" }, { "vulnerability": "VCID-6a89-jzyb-vygd" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-74ez-a9dg-7uha" }, { "vulnerability": "VCID-76yz-q5df-1ueg" }, { "vulnerability": "VCID-7hn8-1cj7-2be3" }, { "vulnerability": "VCID-7s4c-q35j-sbf8" }, { "vulnerability": "VCID-85px-3mub-ckdj" }, { "vulnerability": "VCID-978h-eswr-afea" }, { "vulnerability": "VCID-9g9m-c8sc-vfcj" }, { "vulnerability": "VCID-9je8-nsha-kug2" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-bbgn-7j2m-ykcx" }, { "vulnerability": "VCID-bw2j-vv6p-gqew" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-eae7-384g-pqc4" }, { "vulnerability": "VCID-ecyu-zuz8-u3ep" }, { "vulnerability": "VCID-ed2z-6wv2-y7ek" }, { "vulnerability": "VCID-ehcj-1d1g-kbcc" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-gh5m-y7mb-rkgf" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-hjn4-swbf-y3au" }, { "vulnerability": "VCID-j4vw-cnqw-1ygz" }, { "vulnerability": "VCID-jc5x-s8ej-87bf" }, { "vulnerability": "VCID-kwv3-vghc-zubx" }, { "vulnerability": "VCID-mqhd-5hv6-wfdp" }, { "vulnerability": "VCID-p7du-wut5-1qb7" }, { "vulnerability": "VCID-pmkx-83qk-tkhs" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-r4z4-61hf-3bfx" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-s8sm-qx3a-bfcn" }, { "vulnerability": "VCID-ttra-pkh7-mua4" }, { "vulnerability": "VCID-twng-xd4x-37h6" }, { "vulnerability": "VCID-u2u2-szt5-43a6" }, { "vulnerability": "VCID-v5wk-fb4c-b3h1" }, { "vulnerability": "VCID-vsn2-k6hq-7keu" }, { "vulnerability": "VCID-x8r6-rr2f-dufm" }, { "vulnerability": "VCID-yg5r-j2sk-hbav" }, { "vulnerability": "VCID-yndu-f7m6-23gk" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" }, { "vulnerability": "VCID-zr1q-3g6a-yqhd" }, { "vulnerability": "VCID-zry2-jfrq-yug4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@2.1.5-1~bpo70%252B1" } ], "aliases": [ "CVE-2013-1954" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "6.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-uh6m-xhe8-2bfe" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/92503?format=api", "vulnerability_id": "VCID-v2hu-wzmc-4ba9", "summary": "The web interface in VideoLAN VLC media player before 2.0.7 has no access control which allows remote attackers to view directory listings via the 'dir' command or issue other commands without authenticating.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-3564", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00233", "scoring_system": "epss", "scoring_elements": "0.46052", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00233", "scoring_system": "epss", "scoring_elements": "0.46092", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00233", "scoring_system": "epss", "scoring_elements": "0.46113", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00233", "scoring_system": "epss", "scoring_elements": "0.4606", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00233", "scoring_system": "epss", "scoring_elements": "0.46116", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00233", "scoring_system": "epss", "scoring_elements": "0.46137", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00233", "scoring_system": "epss", "scoring_elements": "0.46109", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00233", "scoring_system": "epss", "scoring_elements": "0.46118", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00233", "scoring_system": "epss", "scoring_elements": "0.46175", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00233", "scoring_system": "epss", "scoring_elements": "0.46172", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00233", "scoring_system": "epss", "scoring_elements": "0.46117", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-3564" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3564", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3564" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036003?format=api", "purl": "pkg:deb/debian/vlc@2.1.5-1~bpo70%2B1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1utk-kk7m-pqa8" }, { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-27xm-d15a-yugk" }, { "vulnerability": "VCID-2d6p-9nvq-m3hc" }, { "vulnerability": "VCID-2mw7-98e2-93bv" }, { "vulnerability": "VCID-2n9d-6mcy-6fhb" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-52yg-hpt4-9kfy" }, { "vulnerability": "VCID-5d5e-5emh-fqh4" }, { "vulnerability": "VCID-5k4p-gat4-afhp" }, { "vulnerability": "VCID-5pkk-pxmh-93hy" }, { "vulnerability": "VCID-5vkn-89xw-hyba" }, { "vulnerability": "VCID-63e8-v5s5-27ew" }, { "vulnerability": "VCID-6a89-jzyb-vygd" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-74ez-a9dg-7uha" }, { "vulnerability": "VCID-76yz-q5df-1ueg" }, { "vulnerability": "VCID-7hn8-1cj7-2be3" }, { "vulnerability": "VCID-7s4c-q35j-sbf8" }, { "vulnerability": "VCID-85px-3mub-ckdj" }, { "vulnerability": "VCID-978h-eswr-afea" }, { "vulnerability": "VCID-9g9m-c8sc-vfcj" }, { "vulnerability": "VCID-9je8-nsha-kug2" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-bbgn-7j2m-ykcx" }, { "vulnerability": "VCID-bw2j-vv6p-gqew" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-eae7-384g-pqc4" }, { "vulnerability": "VCID-ecyu-zuz8-u3ep" }, { "vulnerability": "VCID-ed2z-6wv2-y7ek" }, { "vulnerability": "VCID-ehcj-1d1g-kbcc" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-gh5m-y7mb-rkgf" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-hjn4-swbf-y3au" }, { "vulnerability": "VCID-j4vw-cnqw-1ygz" }, { "vulnerability": "VCID-jc5x-s8ej-87bf" }, { "vulnerability": "VCID-kwv3-vghc-zubx" }, { "vulnerability": "VCID-mqhd-5hv6-wfdp" }, { "vulnerability": "VCID-p7du-wut5-1qb7" }, { "vulnerability": "VCID-pmkx-83qk-tkhs" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-r4z4-61hf-3bfx" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-s8sm-qx3a-bfcn" }, { "vulnerability": "VCID-ttra-pkh7-mua4" }, { "vulnerability": "VCID-twng-xd4x-37h6" }, { "vulnerability": "VCID-u2u2-szt5-43a6" }, { "vulnerability": "VCID-v5wk-fb4c-b3h1" }, { "vulnerability": "VCID-vsn2-k6hq-7keu" }, { "vulnerability": "VCID-x8r6-rr2f-dufm" }, { "vulnerability": "VCID-yg5r-j2sk-hbav" }, { "vulnerability": "VCID-yndu-f7m6-23gk" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" }, { "vulnerability": "VCID-zr1q-3g6a-yqhd" }, { "vulnerability": "VCID-zry2-jfrq-yug4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@2.1.5-1~bpo70%252B1" } ], "aliases": [ "CVE-2013-3564" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-v2hu-wzmc-4ba9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35028?format=api", "vulnerability_id": "VCID-wc8e-6c6f-guev", "summary": "Multiple vulnerabilities have been found in VLC, the worst of which\n could lead to user-assisted execution of arbitrary code.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-6283", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.09811", "scoring_system": "epss", "scoring_elements": "0.92938", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.09811", "scoring_system": "epss", "scoring_elements": "0.92947", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.09811", "scoring_system": "epss", "scoring_elements": "0.92952", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.09811", "scoring_system": "epss", "scoring_elements": "0.92951", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.09811", "scoring_system": "epss", "scoring_elements": "0.92959", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.09811", "scoring_system": "epss", "scoring_elements": "0.92963", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.09811", "scoring_system": "epss", "scoring_elements": "0.92968", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.09811", "scoring_system": "epss", "scoring_elements": "0.92966", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.09811", "scoring_system": "epss", "scoring_elements": "0.92967", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.09811", "scoring_system": "epss", "scoring_elements": "0.92977", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.09811", "scoring_system": "epss", "scoring_elements": "0.92979", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.09811", "scoring_system": "epss", "scoring_elements": "0.92986", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-6283" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6283", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6283" }, { "reference_url": "https://security.gentoo.org/glsa/201411-01", "reference_id": "GLSA-201411-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201411-01" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/dos/27700.py", "reference_id": "OSVDB-96603;CVE-2013-6283", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/dos/27700.py" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036003?format=api", "purl": "pkg:deb/debian/vlc@2.1.5-1~bpo70%2B1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1utk-kk7m-pqa8" }, { "vulnerability": "VCID-24xa-1hn8-rkbe" }, { "vulnerability": "VCID-27xm-d15a-yugk" }, { "vulnerability": "VCID-2d6p-9nvq-m3hc" }, { "vulnerability": "VCID-2mw7-98e2-93bv" }, { "vulnerability": "VCID-2n9d-6mcy-6fhb" }, { "vulnerability": "VCID-4cqm-15gx-p7gr" }, { "vulnerability": "VCID-52yg-hpt4-9kfy" }, { "vulnerability": "VCID-5d5e-5emh-fqh4" }, { "vulnerability": "VCID-5k4p-gat4-afhp" }, { "vulnerability": "VCID-5pkk-pxmh-93hy" }, { "vulnerability": "VCID-5vkn-89xw-hyba" }, { "vulnerability": "VCID-63e8-v5s5-27ew" }, { "vulnerability": "VCID-6a89-jzyb-vygd" }, { "vulnerability": "VCID-6dcw-jpgp-gbar" }, { "vulnerability": "VCID-74ez-a9dg-7uha" }, { "vulnerability": "VCID-76yz-q5df-1ueg" }, { "vulnerability": "VCID-7hn8-1cj7-2be3" }, { "vulnerability": "VCID-7s4c-q35j-sbf8" }, { "vulnerability": "VCID-85px-3mub-ckdj" }, { "vulnerability": "VCID-978h-eswr-afea" }, { "vulnerability": "VCID-9g9m-c8sc-vfcj" }, { "vulnerability": "VCID-9je8-nsha-kug2" }, { "vulnerability": "VCID-b7as-3kmj-1udd" }, { "vulnerability": "VCID-bbgn-7j2m-ykcx" }, { "vulnerability": "VCID-bw2j-vv6p-gqew" }, { "vulnerability": "VCID-cq5y-qzyq-mkbm" }, { "vulnerability": "VCID-d9ab-kte8-pkhk" }, { "vulnerability": "VCID-eae7-384g-pqc4" }, { "vulnerability": "VCID-ecyu-zuz8-u3ep" }, { "vulnerability": "VCID-ed2z-6wv2-y7ek" }, { "vulnerability": "VCID-ehcj-1d1g-kbcc" }, { "vulnerability": "VCID-g8tx-7ssq-pqb4" }, { "vulnerability": "VCID-gh5m-y7mb-rkgf" }, { "vulnerability": "VCID-h7tu-k4wc-gbhz" }, { "vulnerability": "VCID-hjn4-swbf-y3au" }, { "vulnerability": "VCID-j4vw-cnqw-1ygz" }, { "vulnerability": "VCID-jc5x-s8ej-87bf" }, { "vulnerability": "VCID-kwv3-vghc-zubx" }, { "vulnerability": "VCID-mqhd-5hv6-wfdp" }, { "vulnerability": "VCID-p7du-wut5-1qb7" }, { "vulnerability": "VCID-pmkx-83qk-tkhs" }, { "vulnerability": "VCID-qq2u-797n-w7h4" }, { "vulnerability": "VCID-r4z4-61hf-3bfx" }, { "vulnerability": "VCID-rygp-vyhd-x7f7" }, { "vulnerability": "VCID-s8sm-qx3a-bfcn" }, { "vulnerability": "VCID-ttra-pkh7-mua4" }, { "vulnerability": "VCID-twng-xd4x-37h6" }, { "vulnerability": "VCID-u2u2-szt5-43a6" }, { "vulnerability": "VCID-v5wk-fb4c-b3h1" }, { "vulnerability": "VCID-vsn2-k6hq-7keu" }, { "vulnerability": "VCID-x8r6-rr2f-dufm" }, { "vulnerability": "VCID-yg5r-j2sk-hbav" }, { "vulnerability": "VCID-yndu-f7m6-23gk" }, { "vulnerability": "VCID-z8s5-5uwe-auf4" }, { "vulnerability": "VCID-zep1-wtjy-gya6" }, { "vulnerability": "VCID-zr1q-3g6a-yqhd" }, { "vulnerability": "VCID-zry2-jfrq-yug4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@2.1.5-1~bpo70%252B1" } ], "aliases": [ "CVE-2013-6283" ], "risk_score": 0.2, "exploitability": "2.0", "weighted_severity": "0.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wc8e-6c6f-guev" } ], "risk_score": "10.0", "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@2.1.5-1~bpo70%252B1" }