Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:deb/debian/spamassassin@3.0.3-2sarge1
Typedeb
Namespacedebian
Namespamassassin
Version3.0.3-2sarge1
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version3.4.6-1
Latest_non_vulnerable_version3.4.6-1
Affected_by_vulnerabilities
0
url VCID-11j4-bprs-akfx
vulnerability_id VCID-11j4-bprs-akfx
summary 
Multiple vulnerabilities have been found in SpamAssassin, the worst
    of which may lead to remote code execution.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15705.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15705.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2017-15705
reference_id
reference_type
scores
0
value 0.01771
scoring_system epss
scoring_elements 0.82582
published_at 2026-04-01T12:55:00Z
1
value 0.01771
scoring_system epss
scoring_elements 0.82597
published_at 2026-04-02T12:55:00Z
2
value 0.01771
scoring_system epss
scoring_elements 0.82612
published_at 2026-04-04T12:55:00Z
3
value 0.01771
scoring_system epss
scoring_elements 0.82608
published_at 2026-04-07T12:55:00Z
4
value 0.01771
scoring_system epss
scoring_elements 0.82634
published_at 2026-04-08T12:55:00Z
5
value 0.01771
scoring_system epss
scoring_elements 0.82642
published_at 2026-04-09T12:55:00Z
6
value 0.01771
scoring_system epss
scoring_elements 0.8266
published_at 2026-04-11T12:55:00Z
7
value 0.01771
scoring_system epss
scoring_elements 0.82654
published_at 2026-04-12T12:55:00Z
8
value 0.01771
scoring_system epss
scoring_elements 0.82649
published_at 2026-04-13T12:55:00Z
9
value 0.01771
scoring_system epss
scoring_elements 0.82686
published_at 2026-04-16T12:55:00Z
10
value 0.01771
scoring_system epss
scoring_elements 0.82687
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2017-15705
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15705
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15705
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1629521
reference_id 1629521
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1629521
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=908969
reference_id 908969
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=908969
6
reference_url https://security.gentoo.org/glsa/201812-07
reference_id GLSA-201812-07
reference_type
scores
url https://security.gentoo.org/glsa/201812-07
7
reference_url https://access.redhat.com/errata/RHSA-2018:2916
reference_id RHSA-2018:2916
reference_type
scores
url https://access.redhat.com/errata/RHSA-2018:2916
8
reference_url https://usn.ubuntu.com/3811-1/
reference_id USN-3811-1
reference_type
scores
url https://usn.ubuntu.com/3811-1/
9
reference_url https://usn.ubuntu.com/3811-2/
reference_id USN-3811-2
reference_type
scores
url https://usn.ubuntu.com/3811-2/
fixed_packages
0
url pkg:deb/debian/spamassassin@3.4.2-1%2Bdeb10u3
purl pkg:deb/debian/spamassassin@3.4.2-1%2Bdeb10u3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5b74-77zm-3qbs
1
vulnerability VCID-5rd3-xtxh-y7g8
2
vulnerability VCID-774s-rw8t-m3dm
3
vulnerability VCID-kk1w-wzk2-9uex
4
vulnerability VCID-pk9z-qnug-jbh7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/spamassassin@3.4.2-1%252Bdeb10u3
aliases CVE-2017-15705
risk_score 3.4
exploitability 0.5
weighted_severity 6.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-11j4-bprs-akfx
1
url VCID-4bzc-b456-w3d9
vulnerability_id VCID-4bzc-b456-w3d9
summary 
Multiple vulnerabilities have been found in SpamAssassin, the worst
    of which may lead to remote code execution.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-11780.json
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-11780.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-11780
reference_id
reference_type
scores
0
value 0.06766
scoring_system epss
scoring_elements 0.91325
published_at 2026-04-18T12:55:00Z
1
value 0.06766
scoring_system epss
scoring_elements 0.91298
published_at 2026-04-11T12:55:00Z
2
value 0.06766
scoring_system epss
scoring_elements 0.91301
published_at 2026-04-12T12:55:00Z
3
value 0.06766
scoring_system epss
scoring_elements 0.913
published_at 2026-04-13T12:55:00Z
4
value 0.06766
scoring_system epss
scoring_elements 0.91266
published_at 2026-04-04T12:55:00Z
5
value 0.06766
scoring_system epss
scoring_elements 0.91272
published_at 2026-04-07T12:55:00Z
6
value 0.06766
scoring_system epss
scoring_elements 0.91285
published_at 2026-04-08T12:55:00Z
7
value 0.06766
scoring_system epss
scoring_elements 0.91291
published_at 2026-04-09T12:55:00Z
8
value 0.07098
scoring_system epss
scoring_elements 0.9149
published_at 2026-04-02T12:55:00Z
9
value 0.07098
scoring_system epss
scoring_elements 0.91483
published_at 2026-04-01T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-11780
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11780
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11780
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1629532
reference_id 1629532
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1629532
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=908970
reference_id 908970
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=908970
6
reference_url https://security.gentoo.org/glsa/201812-07
reference_id GLSA-201812-07
reference_type
scores
url https://security.gentoo.org/glsa/201812-07
7
reference_url https://usn.ubuntu.com/3811-1/
reference_id USN-3811-1
reference_type
scores
url https://usn.ubuntu.com/3811-1/
8
reference_url https://usn.ubuntu.com/3811-3/
reference_id USN-3811-3
reference_type
scores
url https://usn.ubuntu.com/3811-3/
fixed_packages
0
url pkg:deb/debian/spamassassin@3.4.2-1%2Bdeb10u3
purl pkg:deb/debian/spamassassin@3.4.2-1%2Bdeb10u3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5b74-77zm-3qbs
1
vulnerability VCID-5rd3-xtxh-y7g8
2
vulnerability VCID-774s-rw8t-m3dm
3
vulnerability VCID-kk1w-wzk2-9uex
4
vulnerability VCID-pk9z-qnug-jbh7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/spamassassin@3.4.2-1%252Bdeb10u3
aliases CVE-2018-11780
risk_score 3.6
exploitability 0.5
weighted_severity 7.3
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4bzc-b456-w3d9
2
url VCID-5b74-77zm-3qbs
vulnerability_id VCID-5b74-77zm-3qbs
summary 
A vulnerability in SpamAssassin might allow remote attackers to
    execute arbitrary commands.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-1946.json
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-1946.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-1946
reference_id
reference_type
scores
0
value 0.01495
scoring_system epss
scoring_elements 0.8104
published_at 2026-04-01T12:55:00Z
1
value 0.01495
scoring_system epss
scoring_elements 0.81142
published_at 2026-04-18T12:55:00Z
2
value 0.01495
scoring_system epss
scoring_elements 0.81103
published_at 2026-04-13T12:55:00Z
3
value 0.01495
scoring_system epss
scoring_elements 0.81141
published_at 2026-04-16T12:55:00Z
4
value 0.01495
scoring_system epss
scoring_elements 0.81049
published_at 2026-04-02T12:55:00Z
5
value 0.01495
scoring_system epss
scoring_elements 0.81072
published_at 2026-04-07T12:55:00Z
6
value 0.01495
scoring_system epss
scoring_elements 0.811
published_at 2026-04-08T12:55:00Z
7
value 0.01495
scoring_system epss
scoring_elements 0.81107
published_at 2026-04-09T12:55:00Z
8
value 0.01495
scoring_system epss
scoring_elements 0.81124
published_at 2026-04-11T12:55:00Z
9
value 0.01495
scoring_system epss
scoring_elements 0.8111
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-1946
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1946
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1946
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1943276
reference_id 1943276
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1943276
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=985962
reference_id 985962
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=985962
6
reference_url https://security.archlinux.org/AVG-1731
reference_id AVG-1731
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1731
7
reference_url https://security.gentoo.org/glsa/202105-26
reference_id GLSA-202105-26
reference_type
scores
url https://security.gentoo.org/glsa/202105-26
8
reference_url https://access.redhat.com/errata/RHSA-2021:4315
reference_id RHSA-2021:4315
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:4315
9
reference_url https://usn.ubuntu.com/4899-1/
reference_id USN-4899-1
reference_type
scores
url https://usn.ubuntu.com/4899-1/
10
reference_url https://usn.ubuntu.com/4899-2/
reference_id USN-4899-2
reference_type
scores
url https://usn.ubuntu.com/4899-2/
fixed_packages
0
url pkg:deb/debian/spamassassin@3.4.2-1%2Bdeb10u3
purl pkg:deb/debian/spamassassin@3.4.2-1%2Bdeb10u3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5b74-77zm-3qbs
1
vulnerability VCID-5rd3-xtxh-y7g8
2
vulnerability VCID-774s-rw8t-m3dm
3
vulnerability VCID-kk1w-wzk2-9uex
4
vulnerability VCID-pk9z-qnug-jbh7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/spamassassin@3.4.2-1%252Bdeb10u3
1
url pkg:deb/debian/spamassassin@3.4.6-1
purl pkg:deb/debian/spamassassin@3.4.6-1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/spamassassin@3.4.6-1
aliases CVE-2020-1946
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5b74-77zm-3qbs
3
url VCID-5rd3-xtxh-y7g8
vulnerability_id VCID-5rd3-xtxh-y7g8
summary security update
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-11805.json
reference_id
reference_type
scores
0
value 6.7
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-11805.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-11805
reference_id
reference_type
scores
0
value 0.0003
scoring_system epss
scoring_elements 0.08395
published_at 2026-04-01T12:55:00Z
1
value 0.0003
scoring_system epss
scoring_elements 0.08437
published_at 2026-04-02T12:55:00Z
2
value 0.0003
scoring_system epss
scoring_elements 0.08491
published_at 2026-04-04T12:55:00Z
3
value 0.0003
scoring_system epss
scoring_elements 0.0841
published_at 2026-04-07T12:55:00Z
4
value 0.0003
scoring_system epss
scoring_elements 0.08482
published_at 2026-04-08T12:55:00Z
5
value 0.0003
scoring_system epss
scoring_elements 0.085
published_at 2026-04-09T12:55:00Z
6
value 0.0003
scoring_system epss
scoring_elements 0.08493
published_at 2026-04-11T12:55:00Z
7
value 0.0003
scoring_system epss
scoring_elements 0.08474
published_at 2026-04-12T12:55:00Z
8
value 0.0003
scoring_system epss
scoring_elements 0.0846
published_at 2026-04-13T12:55:00Z
9
value 0.0003
scoring_system epss
scoring_elements 0.08353
published_at 2026-04-16T12:55:00Z
10
value 0.0003
scoring_system epss
scoring_elements 0.08337
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-11805
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11805
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11805
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12420
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12420
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1784974
reference_id 1784974
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1784974
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=946652
reference_id 946652
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=946652
6
reference_url https://security.archlinux.org/AVG-1077
reference_id AVG-1077
reference_type
scores
0
value Medium
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1077
7
reference_url https://access.redhat.com/errata/RHSA-2020:4625
reference_id RHSA-2020:4625
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:4625
8
reference_url https://usn.ubuntu.com/4237-1/
reference_id USN-4237-1
reference_type
scores
url https://usn.ubuntu.com/4237-1/
9
reference_url https://usn.ubuntu.com/4237-2/
reference_id USN-4237-2
reference_type
scores
url https://usn.ubuntu.com/4237-2/
fixed_packages
0
url pkg:deb/debian/spamassassin@3.4.2-1~deb9u3
purl pkg:deb/debian/spamassassin@3.4.2-1~deb9u3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-11j4-bprs-akfx
1
vulnerability VCID-4bzc-b456-w3d9
2
vulnerability VCID-5b74-77zm-3qbs
3
vulnerability VCID-5rd3-xtxh-y7g8
4
vulnerability VCID-774s-rw8t-m3dm
5
vulnerability VCID-kk1w-wzk2-9uex
6
vulnerability VCID-nknr-wcys-8be7
7
vulnerability VCID-pk9z-qnug-jbh7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/spamassassin@3.4.2-1~deb9u3
1
url pkg:deb/debian/spamassassin@3.4.2-1%2Bdeb10u3
purl pkg:deb/debian/spamassassin@3.4.2-1%2Bdeb10u3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5b74-77zm-3qbs
1
vulnerability VCID-5rd3-xtxh-y7g8
2
vulnerability VCID-774s-rw8t-m3dm
3
vulnerability VCID-kk1w-wzk2-9uex
4
vulnerability VCID-pk9z-qnug-jbh7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/spamassassin@3.4.2-1%252Bdeb10u3
2
url pkg:deb/debian/spamassassin@3.4.6-1
purl pkg:deb/debian/spamassassin@3.4.6-1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/spamassassin@3.4.6-1
aliases CVE-2018-11805
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5rd3-xtxh-y7g8
4
url VCID-6j3j-1261-tufw
vulnerability_id VCID-6j3j-1261-tufw
summary spamassassin symlink attack
references
0
reference_url http://osvdb.org/37234
reference_id
reference_type
scores
url http://osvdb.org/37234
1
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-2873.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-2873.json
2
reference_url https://api.first.org/data/v1/epss?cve=CVE-2007-2873
reference_id
reference_type
scores
0
value 0.00064
scoring_system epss
scoring_elements 0.19881
published_at 2026-04-18T12:55:00Z
1
value 0.00064
scoring_system epss
scoring_elements 0.19915
published_at 2026-04-01T12:55:00Z
2
value 0.00064
scoring_system epss
scoring_elements 0.20062
published_at 2026-04-02T12:55:00Z
3
value 0.00064
scoring_system epss
scoring_elements 0.20119
published_at 2026-04-04T12:55:00Z
4
value 0.00064
scoring_system epss
scoring_elements 0.19848
published_at 2026-04-07T12:55:00Z
5
value 0.00064
scoring_system epss
scoring_elements 0.19928
published_at 2026-04-08T12:55:00Z
6
value 0.00064
scoring_system epss
scoring_elements 0.19982
published_at 2026-04-09T12:55:00Z
7
value 0.00064
scoring_system epss
scoring_elements 0.20001
published_at 2026-04-11T12:55:00Z
8
value 0.00064
scoring_system epss
scoring_elements 0.19957
published_at 2026-04-12T12:55:00Z
9
value 0.00064
scoring_system epss
scoring_elements 0.19898
published_at 2026-04-13T12:55:00Z
10
value 0.00064
scoring_system epss
scoring_elements 0.19876
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2007-2873
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2873
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2873
4
reference_url https://exchange.xforce.ibmcloud.com/vulnerabilities/34864
reference_id
reference_type
scores
url https://exchange.xforce.ibmcloud.com/vulnerabilities/34864
5
reference_url https://issues.rpath.com/browse/RPL-1450
reference_id
reference_type
scores
url https://issues.rpath.com/browse/RPL-1450
6
reference_url https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10354
reference_id
reference_type
scores
url https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10354
7
reference_url http://spamassassin.apache.org/advisories/cve-2007-2873.txt
reference_id
reference_type
scores
url http://spamassassin.apache.org/advisories/cve-2007-2873.txt
8
reference_url http://www.mandriva.com/security/advisories?name=MDKSA-2007:125
reference_id
reference_type
scores
url http://www.mandriva.com/security/advisories?name=MDKSA-2007:125
9
reference_url http://www.redhat.com/support/errata/RHSA-2007-0492.html
reference_id
reference_type
scores
url http://www.redhat.com/support/errata/RHSA-2007-0492.html
10
reference_url http://www.securityfocus.com/bid/24481
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/24481
11
reference_url http://www.securitytracker.com/id?1018242
reference_id
reference_type
scores
url http://www.securitytracker.com/id?1018242
12
reference_url http://www.vupen.com/english/advisories/2007/2172
reference_id
reference_type
scores
url http://www.vupen.com/english/advisories/2007/2172
13
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=243455
reference_id 243455
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=243455
14
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:spamassassin:spamassassin:3.1.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:spamassassin:spamassassin:3.1.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:spamassassin:spamassassin:3.1.0:*:*:*:*:*:*:*
15
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:spamassassin:spamassassin:3.1.1:*:*:*:*:*:*:*
reference_id cpe:2.3:a:spamassassin:spamassassin:3.1.1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:spamassassin:spamassassin:3.1.1:*:*:*:*:*:*:*
16
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:spamassassin:spamassassin:3.1.2:*:*:*:*:*:*:*
reference_id cpe:2.3:a:spamassassin:spamassassin:3.1.2:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:spamassassin:spamassassin:3.1.2:*:*:*:*:*:*:*
17
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:spamassassin:spamassassin:3.1.3:*:*:*:*:*:*:*
reference_id cpe:2.3:a:spamassassin:spamassassin:3.1.3:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:spamassassin:spamassassin:3.1.3:*:*:*:*:*:*:*
18
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:spamassassin:spamassassin:3.1.4:*:*:*:*:*:*:*
reference_id cpe:2.3:a:spamassassin:spamassassin:3.1.4:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:spamassassin:spamassassin:3.1.4:*:*:*:*:*:*:*
19
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:spamassassin:spamassassin:3.1.5:*:*:*:*:*:*:*
reference_id cpe:2.3:a:spamassassin:spamassassin:3.1.5:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:spamassassin:spamassassin:3.1.5:*:*:*:*:*:*:*
20
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:spamassassin:spamassassin:3.1.6:*:*:*:*:*:*:*
reference_id cpe:2.3:a:spamassassin:spamassassin:3.1.6:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:spamassassin:spamassassin:3.1.6:*:*:*:*:*:*:*
21
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:spamassassin:spamassassin:3.1.7:*:*:*:*:*:*:*
reference_id cpe:2.3:a:spamassassin:spamassassin:3.1.7:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:spamassassin:spamassassin:3.1.7:*:*:*:*:*:*:*
22
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:spamassassin:spamassassin:3.1.8:*:*:*:*:*:*:*
reference_id cpe:2.3:a:spamassassin:spamassassin:3.1.8:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:spamassassin:spamassassin:3.1.8:*:*:*:*:*:*:*
23
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:spamassassin:spamassassin:3.1.9:*:*:*:*:*:*:*
reference_id cpe:2.3:a:spamassassin:spamassassin:3.1.9:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:spamassassin:spamassassin:3.1.9:*:*:*:*:*:*:*
24
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:spamassassin:spamassassin:3.2.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:spamassassin:spamassassin:3.2.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:spamassassin:spamassassin:3.2.0:*:*:*:*:*:*:*
25
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:spamassassin:spamassassin:3.2.1:*:*:*:*:*:*:*
reference_id cpe:2.3:a:spamassassin:spamassassin:3.2.1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:spamassassin:spamassassin:3.2.1:*:*:*:*:*:*:*
26
reference_url https://nvd.nist.gov/vuln/detail/CVE-2007-2873
reference_id CVE-2007-2873
reference_type
scores
0
value 1.9
scoring_system cvssv2
scoring_elements AV:L/AC:M/Au:N/C:N/I:N/A:P
url https://nvd.nist.gov/vuln/detail/CVE-2007-2873
27
reference_url https://access.redhat.com/errata/RHSA-2007:0492
reference_id RHSA-2007:0492
reference_type
scores
url https://access.redhat.com/errata/RHSA-2007:0492
fixed_packages
0
url pkg:deb/debian/spamassassin@3.2.5-2%2Blenny3
purl pkg:deb/debian/spamassassin@3.2.5-2%2Blenny3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-11j4-bprs-akfx
1
vulnerability VCID-4bzc-b456-w3d9
2
vulnerability VCID-5b74-77zm-3qbs
3
vulnerability VCID-5rd3-xtxh-y7g8
4
vulnerability VCID-774s-rw8t-m3dm
5
vulnerability VCID-kk1w-wzk2-9uex
6
vulnerability VCID-nknr-wcys-8be7
7
vulnerability VCID-pk9z-qnug-jbh7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/spamassassin@3.2.5-2%252Blenny3
aliases CVE-2007-2873
risk_score 0.8
exploitability 0.5
weighted_severity 1.7
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6j3j-1261-tufw
5
url VCID-774s-rw8t-m3dm
vulnerability_id VCID-774s-rw8t-m3dm
summary security update
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-1930.json
reference_id
reference_type
scores
0
value 6.7
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-1930.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-1930
reference_id
reference_type
scores
0
value 0.01382
scoring_system epss
scoring_elements 0.80245
published_at 2026-04-01T12:55:00Z
1
value 0.01382
scoring_system epss
scoring_elements 0.80252
published_at 2026-04-02T12:55:00Z
2
value 0.01382
scoring_system epss
scoring_elements 0.80273
published_at 2026-04-04T12:55:00Z
3
value 0.01382
scoring_system epss
scoring_elements 0.80261
published_at 2026-04-07T12:55:00Z
4
value 0.01382
scoring_system epss
scoring_elements 0.80288
published_at 2026-04-08T12:55:00Z
5
value 0.01382
scoring_system epss
scoring_elements 0.80299
published_at 2026-04-09T12:55:00Z
6
value 0.01382
scoring_system epss
scoring_elements 0.80318
published_at 2026-04-11T12:55:00Z
7
value 0.01382
scoring_system epss
scoring_elements 0.80303
published_at 2026-04-12T12:55:00Z
8
value 0.01382
scoring_system epss
scoring_elements 0.80297
published_at 2026-04-13T12:55:00Z
9
value 0.01382
scoring_system epss
scoring_elements 0.80327
published_at 2026-04-16T12:55:00Z
10
value 0.01382
scoring_system epss
scoring_elements 0.80329
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-1930
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1930
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1930
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1931
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1931
4
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1802977
reference_id 1802977
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1802977
6
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=950258
reference_id 950258
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=950258
7
reference_url https://access.redhat.com/errata/RHSA-2020:4625
reference_id RHSA-2020:4625
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:4625
8
reference_url https://usn.ubuntu.com/4265-1/
reference_id USN-4265-1
reference_type
scores
url https://usn.ubuntu.com/4265-1/
9
reference_url https://usn.ubuntu.com/4265-2/
reference_id USN-4265-2
reference_type
scores
url https://usn.ubuntu.com/4265-2/
fixed_packages
0
url pkg:deb/debian/spamassassin@3.4.2-1~deb9u3
purl pkg:deb/debian/spamassassin@3.4.2-1~deb9u3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-11j4-bprs-akfx
1
vulnerability VCID-4bzc-b456-w3d9
2
vulnerability VCID-5b74-77zm-3qbs
3
vulnerability VCID-5rd3-xtxh-y7g8
4
vulnerability VCID-774s-rw8t-m3dm
5
vulnerability VCID-kk1w-wzk2-9uex
6
vulnerability VCID-nknr-wcys-8be7
7
vulnerability VCID-pk9z-qnug-jbh7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/spamassassin@3.4.2-1~deb9u3
1
url pkg:deb/debian/spamassassin@3.4.2-1%2Bdeb10u3
purl pkg:deb/debian/spamassassin@3.4.2-1%2Bdeb10u3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5b74-77zm-3qbs
1
vulnerability VCID-5rd3-xtxh-y7g8
2
vulnerability VCID-774s-rw8t-m3dm
3
vulnerability VCID-kk1w-wzk2-9uex
4
vulnerability VCID-pk9z-qnug-jbh7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/spamassassin@3.4.2-1%252Bdeb10u3
2
url pkg:deb/debian/spamassassin@3.4.6-1
purl pkg:deb/debian/spamassassin@3.4.6-1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/spamassassin@3.4.6-1
aliases CVE-2020-1930
risk_score 3.0
exploitability 0.5
weighted_severity 6.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-774s-rw8t-m3dm
6
url VCID-7jr6-v8ba-5ybd
vulnerability_id VCID-7jr6-v8ba-5ybd
summary security flaw
references
0
reference_url http://issues.apache.org/SpamAssassin/show_bug.cgi?id=4570
reference_id
reference_type
scores
url http://issues.apache.org/SpamAssassin/show_bug.cgi?id=4570
1
reference_url http://lwn.net/Alerts/159300/
reference_id
reference_type
scores
url http://lwn.net/Alerts/159300/
2
reference_url http://osvdb.org/11581
reference_id
reference_type
scores
url http://osvdb.org/11581
3
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-3351.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-3351.json
4
reference_url https://api.first.org/data/v1/epss?cve=CVE-2005-3351
reference_id
reference_type
scores
0
value 0.17898
scoring_system epss
scoring_elements 0.95155
published_at 2026-04-18T12:55:00Z
1
value 0.17898
scoring_system epss
scoring_elements 0.95109
published_at 2026-04-01T12:55:00Z
2
value 0.17898
scoring_system epss
scoring_elements 0.9512
published_at 2026-04-02T12:55:00Z
3
value 0.17898
scoring_system epss
scoring_elements 0.95121
published_at 2026-04-04T12:55:00Z
4
value 0.17898
scoring_system epss
scoring_elements 0.95123
published_at 2026-04-07T12:55:00Z
5
value 0.17898
scoring_system epss
scoring_elements 0.9513
published_at 2026-04-08T12:55:00Z
6
value 0.17898
scoring_system epss
scoring_elements 0.95134
published_at 2026-04-09T12:55:00Z
7
value 0.17898
scoring_system epss
scoring_elements 0.95139
published_at 2026-04-11T12:55:00Z
8
value 0.17898
scoring_system epss
scoring_elements 0.95141
published_at 2026-04-12T12:55:00Z
9
value 0.17898
scoring_system epss
scoring_elements 0.95144
published_at 2026-04-13T12:55:00Z
10
value 0.17898
scoring_system epss
scoring_elements 0.95152
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2005-3351
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3351
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3351
6
reference_url http://secunia.com/advisories/17386/
reference_id
reference_type
scores
url http://secunia.com/advisories/17386/
7
reference_url http://secunia.com/advisories/17518/
reference_id
reference_type
scores
url http://secunia.com/advisories/17518/
8
reference_url http://secunia.com/advisories/17626/
reference_id
reference_type
scores
url http://secunia.com/advisories/17626/
9
reference_url http://secunia.com/advisories/17666/
reference_id
reference_type
scores
url http://secunia.com/advisories/17666/
10
reference_url http://secunia.com/advisories/17877
reference_id
reference_type
scores
url http://secunia.com/advisories/17877
11
reference_url http://secunia.com/advisories/19158
reference_id
reference_type
scores
url http://secunia.com/advisories/19158
12
reference_url https://exchange.xforce.ibmcloud.com/vulnerabilities/23048
reference_id
reference_type
scores
url https://exchange.xforce.ibmcloud.com/vulnerabilities/23048
13
reference_url https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11125
reference_id
reference_type
scores
url https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11125
14
reference_url http://www.gossamer-threads.com/lists/spamassassin/devel/62649
reference_id
reference_type
scores
url http://www.gossamer-threads.com/lists/spamassassin/devel/62649
15
reference_url http://www.mandriva.com/security/advisories?name=MDKSA-2005:221
reference_id
reference_type
scores
url http://www.mandriva.com/security/advisories?name=MDKSA-2005:221
16
reference_url http://www.novell.com/linux/security/advisories/2005_27_sr.html
reference_id
reference_type
scores
url http://www.novell.com/linux/security/advisories/2005_27_sr.html
17
reference_url http://www.redhat.com/support/errata/RHSA-2006-0129.html
reference_id
reference_type
scores
url http://www.redhat.com/support/errata/RHSA-2006-0129.html
18
reference_url http://www.securityfocus.com/bid/15373
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/15373
19
reference_url http://www.vupen.com/english/advisories/2005/2364
reference_id
reference_type
scores
url http://www.vupen.com/english/advisories/2005/2364
20
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1617815
reference_id 1617815
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1617815
21
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=339526
reference_id 339526
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=339526
22
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:spamassassin:3.0.4:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:spamassassin:3.0.4:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:spamassassin:3.0.4:*:*:*:*:*:*:*
23
reference_url https://nvd.nist.gov/vuln/detail/CVE-2005-3351
reference_id CVE-2005-3351
reference_type
scores
0
value 5.0
scoring_system cvssv2
scoring_elements AV:N/AC:L/Au:N/C:N/I:P/A:N
url https://nvd.nist.gov/vuln/detail/CVE-2005-3351
24
reference_url https://access.redhat.com/errata/RHSA-2006:0129
reference_id RHSA-2006:0129
reference_type
scores
url https://access.redhat.com/errata/RHSA-2006:0129
fixed_packages
0
url pkg:deb/debian/spamassassin@3.1.7-2
purl pkg:deb/debian/spamassassin@3.1.7-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-11j4-bprs-akfx
1
vulnerability VCID-4bzc-b456-w3d9
2
vulnerability VCID-5b74-77zm-3qbs
3
vulnerability VCID-5rd3-xtxh-y7g8
4
vulnerability VCID-6j3j-1261-tufw
5
vulnerability VCID-774s-rw8t-m3dm
6
vulnerability VCID-kk1w-wzk2-9uex
7
vulnerability VCID-nknr-wcys-8be7
8
vulnerability VCID-pk9z-qnug-jbh7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/spamassassin@3.1.7-2
aliases CVE-2005-3351
risk_score 2.2
exploitability 0.5
weighted_severity 4.5
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7jr6-v8ba-5ybd
7
url VCID-f9dw-s4kb-27at
vulnerability_id VCID-f9dw-s4kb-27at
summary Off-by-one buffer overflow in spamc of SpamAssassin 2.40 through 2.43, when using BSMTP mode ("-B"), allows remote attackers to execute arbitrary code via email containing headers with leading "." characters.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2003-1557.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2003-1557.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2003-1557
reference_id
reference_type
scores
0
value 0.10935
scoring_system epss
scoring_elements 0.93369
published_at 2026-04-01T12:55:00Z
1
value 0.10935
scoring_system epss
scoring_elements 0.93377
published_at 2026-04-02T12:55:00Z
2
value 0.10935
scoring_system epss
scoring_elements 0.93385
published_at 2026-04-07T12:55:00Z
3
value 0.10935
scoring_system epss
scoring_elements 0.93393
published_at 2026-04-08T12:55:00Z
4
value 0.10935
scoring_system epss
scoring_elements 0.93397
published_at 2026-04-09T12:55:00Z
5
value 0.10935
scoring_system epss
scoring_elements 0.93402
published_at 2026-04-13T12:55:00Z
6
value 0.10935
scoring_system epss
scoring_elements 0.93421
published_at 2026-04-16T12:55:00Z
7
value 0.10935
scoring_system epss
scoring_elements 0.93426
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2003-1557
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-1557
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-1557
fixed_packages
0
url pkg:deb/debian/spamassassin@3.1.7-2
purl pkg:deb/debian/spamassassin@3.1.7-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-11j4-bprs-akfx
1
vulnerability VCID-4bzc-b456-w3d9
2
vulnerability VCID-5b74-77zm-3qbs
3
vulnerability VCID-5rd3-xtxh-y7g8
4
vulnerability VCID-6j3j-1261-tufw
5
vulnerability VCID-774s-rw8t-m3dm
6
vulnerability VCID-kk1w-wzk2-9uex
7
vulnerability VCID-nknr-wcys-8be7
8
vulnerability VCID-pk9z-qnug-jbh7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/spamassassin@3.1.7-2
aliases CVE-2003-1557
risk_score 0.1
exploitability 0.5
weighted_severity 0.1
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-f9dw-s4kb-27at
8
url VCID-fps8-uzd9-7kbf
vulnerability_id VCID-fps8-uzd9-7kbf
summary security flaw
references
0
reference_url http://bugs.gentoo.org/show_bug.cgi?id=94722
reference_id
reference_type
scores
url http://bugs.gentoo.org/show_bug.cgi?id=94722
1
reference_url http://mail-archives.apache.org/mod_mbox/spamassassin-announce/200506.mbox/%3c17072.35054.586017.822288%40proton.pathname.com%3e
reference_id
reference_type
scores
url http://mail-archives.apache.org/mod_mbox/spamassassin-announce/200506.mbox/%3c17072.35054.586017.822288%40proton.pathname.com%3e
2
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-1266.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-1266.json
3
reference_url https://api.first.org/data/v1/epss?cve=CVE-2005-1266
reference_id
reference_type
scores
0
value 0.06726
scoring_system epss
scoring_elements 0.91288
published_at 2026-04-18T12:55:00Z
1
value 0.06726
scoring_system epss
scoring_elements 0.91214
published_at 2026-04-01T12:55:00Z
2
value 0.06726
scoring_system epss
scoring_elements 0.91219
published_at 2026-04-02T12:55:00Z
3
value 0.06726
scoring_system epss
scoring_elements 0.91228
published_at 2026-04-04T12:55:00Z
4
value 0.06726
scoring_system epss
scoring_elements 0.91235
published_at 2026-04-07T12:55:00Z
5
value 0.06726
scoring_system epss
scoring_elements 0.91248
published_at 2026-04-08T12:55:00Z
6
value 0.06726
scoring_system epss
scoring_elements 0.91254
published_at 2026-04-09T12:55:00Z
7
value 0.06726
scoring_system epss
scoring_elements 0.91261
published_at 2026-04-11T12:55:00Z
8
value 0.06726
scoring_system epss
scoring_elements 0.91264
published_at 2026-04-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2005-1266
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1266
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1266
5
reference_url http://security.gentoo.org/glsa/glsa-200506-17.xml
reference_id
reference_type
scores
url http://security.gentoo.org/glsa/glsa-200506-17.xml
6
reference_url https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10901
reference_id
reference_type
scores
url https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10901
7
reference_url http://www.debian.org/security/2005/dsa-736
reference_id
reference_type
scores
url http://www.debian.org/security/2005/dsa-736
8
reference_url http://www.mandriva.com/security/advisories?name=MDKSA-2005:106
reference_id
reference_type
scores
url http://www.mandriva.com/security/advisories?name=MDKSA-2005:106
9
reference_url http://www.redhat.com/support/errata/RHSA-2005-498.html
reference_id
reference_type
scores
url http://www.redhat.com/support/errata/RHSA-2005-498.html
10
reference_url http://www.securityfocus.com/bid/13978
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/13978
11
reference_url http://www.vuxml.org/freebsd/cc4ce06b-e01c-11d9-a8bd-000cf18bbe54.html
reference_id
reference_type
scores
url http://www.vuxml.org/freebsd/cc4ce06b-e01c-11d9-a8bd-000cf18bbe54.html
12
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1617623
reference_id 1617623
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1617623
13
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=314447
reference_id 314447
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=314447
14
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:spamassassin:3.0.1:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:spamassassin:3.0.1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:spamassassin:3.0.1:*:*:*:*:*:*:*
15
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:spamassassin:3.0.2:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:spamassassin:3.0.2:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:spamassassin:3.0.2:*:*:*:*:*:*:*
16
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:spamassassin:3.0.3:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:spamassassin:3.0.3:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:spamassassin:3.0.3:*:*:*:*:*:*:*
17
reference_url https://nvd.nist.gov/vuln/detail/CVE-2005-1266
reference_id CVE-2005-1266
reference_type
scores
0
value 5.0
scoring_system cvssv2
scoring_elements AV:N/AC:L/Au:N/C:N/I:N/A:P
url https://nvd.nist.gov/vuln/detail/CVE-2005-1266
18
reference_url https://access.redhat.com/errata/RHSA-2005:498
reference_id RHSA-2005:498
reference_type
scores
url https://access.redhat.com/errata/RHSA-2005:498
fixed_packages
0
url pkg:deb/debian/spamassassin@3.1.7-2
purl pkg:deb/debian/spamassassin@3.1.7-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-11j4-bprs-akfx
1
vulnerability VCID-4bzc-b456-w3d9
2
vulnerability VCID-5b74-77zm-3qbs
3
vulnerability VCID-5rd3-xtxh-y7g8
4
vulnerability VCID-6j3j-1261-tufw
5
vulnerability VCID-774s-rw8t-m3dm
6
vulnerability VCID-kk1w-wzk2-9uex
7
vulnerability VCID-nknr-wcys-8be7
8
vulnerability VCID-pk9z-qnug-jbh7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/spamassassin@3.1.7-2
aliases CVE-2005-1266
risk_score 2.2
exploitability 0.5
weighted_severity 4.5
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fps8-uzd9-7kbf
9
url VCID-kk1w-wzk2-9uex
vulnerability_id VCID-kk1w-wzk2-9uex
summary security update
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-1931.json
reference_id
reference_type
scores
0
value 6.7
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-1931.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-1931
reference_id
reference_type
scores
0
value 0.01095
scoring_system epss
scoring_elements 0.77935
published_at 2026-04-01T12:55:00Z
1
value 0.01095
scoring_system epss
scoring_elements 0.77942
published_at 2026-04-02T12:55:00Z
2
value 0.01095
scoring_system epss
scoring_elements 0.77969
published_at 2026-04-04T12:55:00Z
3
value 0.01095
scoring_system epss
scoring_elements 0.77951
published_at 2026-04-07T12:55:00Z
4
value 0.01095
scoring_system epss
scoring_elements 0.77978
published_at 2026-04-08T12:55:00Z
5
value 0.01095
scoring_system epss
scoring_elements 0.77982
published_at 2026-04-09T12:55:00Z
6
value 0.01095
scoring_system epss
scoring_elements 0.78008
published_at 2026-04-11T12:55:00Z
7
value 0.01095
scoring_system epss
scoring_elements 0.77992
published_at 2026-04-12T12:55:00Z
8
value 0.01095
scoring_system epss
scoring_elements 0.77991
published_at 2026-04-13T12:55:00Z
9
value 0.01095
scoring_system epss
scoring_elements 0.78026
published_at 2026-04-16T12:55:00Z
10
value 0.01095
scoring_system epss
scoring_elements 0.78025
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-1931
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1930
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1930
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1931
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1931
4
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1802975
reference_id 1802975
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1802975
6
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=950258
reference_id 950258
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=950258
7
reference_url https://access.redhat.com/errata/RHSA-2020:4625
reference_id RHSA-2020:4625
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:4625
8
reference_url https://usn.ubuntu.com/4265-1/
reference_id USN-4265-1
reference_type
scores
url https://usn.ubuntu.com/4265-1/
9
reference_url https://usn.ubuntu.com/4265-2/
reference_id USN-4265-2
reference_type
scores
url https://usn.ubuntu.com/4265-2/
fixed_packages
0
url pkg:deb/debian/spamassassin@3.4.2-1~deb9u3
purl pkg:deb/debian/spamassassin@3.4.2-1~deb9u3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-11j4-bprs-akfx
1
vulnerability VCID-4bzc-b456-w3d9
2
vulnerability VCID-5b74-77zm-3qbs
3
vulnerability VCID-5rd3-xtxh-y7g8
4
vulnerability VCID-774s-rw8t-m3dm
5
vulnerability VCID-kk1w-wzk2-9uex
6
vulnerability VCID-nknr-wcys-8be7
7
vulnerability VCID-pk9z-qnug-jbh7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/spamassassin@3.4.2-1~deb9u3
1
url pkg:deb/debian/spamassassin@3.4.2-1%2Bdeb10u3
purl pkg:deb/debian/spamassassin@3.4.2-1%2Bdeb10u3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5b74-77zm-3qbs
1
vulnerability VCID-5rd3-xtxh-y7g8
2
vulnerability VCID-774s-rw8t-m3dm
3
vulnerability VCID-kk1w-wzk2-9uex
4
vulnerability VCID-pk9z-qnug-jbh7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/spamassassin@3.4.2-1%252Bdeb10u3
2
url pkg:deb/debian/spamassassin@3.4.6-1
purl pkg:deb/debian/spamassassin@3.4.6-1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/spamassassin@3.4.6-1
aliases CVE-2020-1931
risk_score 3.0
exploitability 0.5
weighted_severity 6.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-kk1w-wzk2-9uex
10
url VCID-kzdw-xgcr-p3fe
vulnerability_id VCID-kzdw-xgcr-p3fe
summary SpamAssassin is vulnerable to a Denial of Service attack.
references
0
reference_url http://fedoranews.org/cms/node/2657
reference_id
reference_type
scores
url http://fedoranews.org/cms/node/2657
1
reference_url http://fedoranews.org/cms/node/2659
reference_id
reference_type
scores
url http://fedoranews.org/cms/node/2659
2
reference_url http://osvdb.org/33207
reference_id
reference_type
scores
url http://osvdb.org/33207
3
reference_url http://rhn.redhat.com/errata/RHSA-2007-0074.html
reference_id
reference_type
scores
url http://rhn.redhat.com/errata/RHSA-2007-0074.html
4
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-0451.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-0451.json
5
reference_url https://api.first.org/data/v1/epss?cve=CVE-2007-0451
reference_id
reference_type
scores
0
value 0.33365
scoring_system epss
scoring_elements 0.9693
published_at 2026-04-18T12:55:00Z
1
value 0.33365
scoring_system epss
scoring_elements 0.96887
published_at 2026-04-01T12:55:00Z
2
value 0.33365
scoring_system epss
scoring_elements 0.96895
published_at 2026-04-02T12:55:00Z
3
value 0.33365
scoring_system epss
scoring_elements 0.969
published_at 2026-04-04T12:55:00Z
4
value 0.33365
scoring_system epss
scoring_elements 0.96904
published_at 2026-04-07T12:55:00Z
5
value 0.33365
scoring_system epss
scoring_elements 0.96912
published_at 2026-04-08T12:55:00Z
6
value 0.33365
scoring_system epss
scoring_elements 0.96914
published_at 2026-04-09T12:55:00Z
7
value 0.33365
scoring_system epss
scoring_elements 0.96917
published_at 2026-04-11T12:55:00Z
8
value 0.33365
scoring_system epss
scoring_elements 0.96918
published_at 2026-04-12T12:55:00Z
9
value 0.33365
scoring_system epss
scoring_elements 0.96919
published_at 2026-04-13T12:55:00Z
10
value 0.33365
scoring_system epss
scoring_elements 0.96926
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2007-0451
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0451
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0451
7
reference_url http://secunia.com/advisories/24197
reference_id
reference_type
scores
url http://secunia.com/advisories/24197
8
reference_url http://secunia.com/advisories/24200
reference_id
reference_type
scores
url http://secunia.com/advisories/24200
9
reference_url http://secunia.com/advisories/24250
reference_id
reference_type
scores
url http://secunia.com/advisories/24250
10
reference_url http://secunia.com/advisories/24256
reference_id
reference_type
scores
url http://secunia.com/advisories/24256
11
reference_url http://secunia.com/advisories/24265
reference_id
reference_type
scores
url http://secunia.com/advisories/24265
12
reference_url http://secunia.com/advisories/24307
reference_id
reference_type
scores
url http://secunia.com/advisories/24307
13
reference_url http://secunia.com/advisories/24889
reference_id
reference_type
scores
url http://secunia.com/advisories/24889
14
reference_url http://security.gentoo.org/glsa/glsa-200703-02.xml
reference_id
reference_type
scores
url http://security.gentoo.org/glsa/glsa-200703-02.xml
15
reference_url https://exchange.xforce.ibmcloud.com/vulnerabilities/32536
reference_id
reference_type
scores
url https://exchange.xforce.ibmcloud.com/vulnerabilities/32536
16
reference_url https://issues.rpath.com/browse/RPL-1073
reference_id
reference_type
scores
url https://issues.rpath.com/browse/RPL-1073
17
reference_url https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10018
reference_id
reference_type
scores
url https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10018
18
reference_url http://spamassassin.apache.org/advisories/cve-2007-0451.txt
reference_id
reference_type
scores
url http://spamassassin.apache.org/advisories/cve-2007-0451.txt
19
reference_url http://svn.apache.org/repos/asf/spamassassin/branches/3.1/build/announcements/3.1.8.txt
reference_id
reference_type
scores
url http://svn.apache.org/repos/asf/spamassassin/branches/3.1/build/announcements/3.1.8.txt
20
reference_url http://www.mandriva.com/security/advisories?name=MDKSA-2007:049
reference_id
reference_type
scores
url http://www.mandriva.com/security/advisories?name=MDKSA-2007:049
21
reference_url http://www.novell.com/linux/security/advisories/2007_6_sr.html
reference_id
reference_type
scores
url http://www.novell.com/linux/security/advisories/2007_6_sr.html
22
reference_url http://www.redhat.com/support/errata/RHSA-2007-0075.html
reference_id
reference_type
scores
url http://www.redhat.com/support/errata/RHSA-2007-0075.html
23
reference_url http://www.securityfocus.com/bid/22584
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/22584
24
reference_url http://www.securitytracker.com/id?1017666
reference_id
reference_type
scores
url http://www.securitytracker.com/id?1017666
25
reference_url http://www.vupen.com/english/advisories/2007/0628
reference_id
reference_type
scores
url http://www.vupen.com/english/advisories/2007/0628
26
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1618365
reference_id 1618365
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1618365
27
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=410843
reference_id 410843
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=410843
28
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:spamassassin:*:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:spamassassin:*:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:spamassassin:*:*:*:*:*:*:*:*
29
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:spamassassin:3.0.1:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:spamassassin:3.0.1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:spamassassin:3.0.1:*:*:*:*:*:*:*
30
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:spamassassin:3.0.2:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:spamassassin:3.0.2:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:spamassassin:3.0.2:*:*:*:*:*:*:*
31
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:spamassassin:3.0.3:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:spamassassin:3.0.3:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:spamassassin:3.0.3:*:*:*:*:*:*:*
32
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:spamassassin:3.0.4:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:spamassassin:3.0.4:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:spamassassin:3.0.4:*:*:*:*:*:*:*
33
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:spamassassin:3.1.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:spamassassin:3.1.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:spamassassin:3.1.0:*:*:*:*:*:*:*
34
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:spamassassin:3.1.1:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:spamassassin:3.1.1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:spamassassin:3.1.1:*:*:*:*:*:*:*
35
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:spamassassin:3.1.2:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:spamassassin:3.1.2:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:spamassassin:3.1.2:*:*:*:*:*:*:*
36
reference_url https://nvd.nist.gov/vuln/detail/CVE-2007-0451
reference_id CVE-2007-0451
reference_type
scores
0
value 4.3
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:N/C:N/I:N/A:P
url https://nvd.nist.gov/vuln/detail/CVE-2007-0451
37
reference_url https://security.gentoo.org/glsa/200703-02
reference_id GLSA-200703-02
reference_type
scores
url https://security.gentoo.org/glsa/200703-02
38
reference_url https://access.redhat.com/errata/RHSA-2007:0074
reference_id RHSA-2007:0074
reference_type
scores
url https://access.redhat.com/errata/RHSA-2007:0074
39
reference_url https://access.redhat.com/errata/RHSA-2007:0075
reference_id RHSA-2007:0075
reference_type
scores
url https://access.redhat.com/errata/RHSA-2007:0075
fixed_packages
0
url pkg:deb/debian/spamassassin@3.1.7-2
purl pkg:deb/debian/spamassassin@3.1.7-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-11j4-bprs-akfx
1
vulnerability VCID-4bzc-b456-w3d9
2
vulnerability VCID-5b74-77zm-3qbs
3
vulnerability VCID-5rd3-xtxh-y7g8
4
vulnerability VCID-6j3j-1261-tufw
5
vulnerability VCID-774s-rw8t-m3dm
6
vulnerability VCID-kk1w-wzk2-9uex
7
vulnerability VCID-nknr-wcys-8be7
8
vulnerability VCID-pk9z-qnug-jbh7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/spamassassin@3.1.7-2
aliases CVE-2007-0451
risk_score 1.9
exploitability 0.5
weighted_severity 3.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-kzdw-xgcr-p3fe
11
url VCID-nknr-wcys-8be7
vulnerability_id VCID-nknr-wcys-8be7
summary 
Multiple vulnerabilities have been found in SpamAssassin, the worst
    of which may lead to remote code execution.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-11781.json
reference_id
reference_type
scores
0
value 8.4
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-11781.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-11781
reference_id
reference_type
scores
0
value 0.00252
scoring_system epss
scoring_elements 0.48433
published_at 2026-04-01T12:55:00Z
1
value 0.00252
scoring_system epss
scoring_elements 0.48469
published_at 2026-04-02T12:55:00Z
2
value 0.00252
scoring_system epss
scoring_elements 0.48491
published_at 2026-04-12T12:55:00Z
3
value 0.00252
scoring_system epss
scoring_elements 0.48444
published_at 2026-04-07T12:55:00Z
4
value 0.00252
scoring_system epss
scoring_elements 0.48498
published_at 2026-04-08T12:55:00Z
5
value 0.00252
scoring_system epss
scoring_elements 0.48494
published_at 2026-04-09T12:55:00Z
6
value 0.00252
scoring_system epss
scoring_elements 0.48518
published_at 2026-04-11T12:55:00Z
7
value 0.00252
scoring_system epss
scoring_elements 0.48504
published_at 2026-04-13T12:55:00Z
8
value 0.00252
scoring_system epss
scoring_elements 0.48554
published_at 2026-04-16T12:55:00Z
9
value 0.00252
scoring_system epss
scoring_elements 0.48549
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-11781
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11781
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11781
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1629536
reference_id 1629536
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1629536
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=908971
reference_id 908971
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=908971
6
reference_url https://security.gentoo.org/glsa/201812-07
reference_id GLSA-201812-07
reference_type
scores
url https://security.gentoo.org/glsa/201812-07
7
reference_url https://access.redhat.com/errata/RHSA-2018:2916
reference_id RHSA-2018:2916
reference_type
scores
url https://access.redhat.com/errata/RHSA-2018:2916
8
reference_url https://usn.ubuntu.com/3811-1/
reference_id USN-3811-1
reference_type
scores
url https://usn.ubuntu.com/3811-1/
9
reference_url https://usn.ubuntu.com/3811-3/
reference_id USN-3811-3
reference_type
scores
url https://usn.ubuntu.com/3811-3/
fixed_packages
0
url pkg:deb/debian/spamassassin@3.4.2-1%2Bdeb10u3
purl pkg:deb/debian/spamassassin@3.4.2-1%2Bdeb10u3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5b74-77zm-3qbs
1
vulnerability VCID-5rd3-xtxh-y7g8
2
vulnerability VCID-774s-rw8t-m3dm
3
vulnerability VCID-kk1w-wzk2-9uex
4
vulnerability VCID-pk9z-qnug-jbh7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/spamassassin@3.4.2-1%252Bdeb10u3
aliases CVE-2018-11781
risk_score 3.8
exploitability 0.5
weighted_severity 7.6
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-nknr-wcys-8be7
12
url VCID-pk9z-qnug-jbh7
vulnerability_id VCID-pk9z-qnug-jbh7
summary security update
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-12420.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-12420.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-12420
reference_id
reference_type
scores
0
value 0.13675
scoring_system epss
scoring_elements 0.94215
published_at 2026-04-01T12:55:00Z
1
value 0.13675
scoring_system epss
scoring_elements 0.94277
published_at 2026-04-18T12:55:00Z
2
value 0.13675
scoring_system epss
scoring_elements 0.94257
published_at 2026-04-13T12:55:00Z
3
value 0.13675
scoring_system epss
scoring_elements 0.94272
published_at 2026-04-16T12:55:00Z
4
value 0.13675
scoring_system epss
scoring_elements 0.94225
published_at 2026-04-02T12:55:00Z
5
value 0.13675
scoring_system epss
scoring_elements 0.94237
published_at 2026-04-04T12:55:00Z
6
value 0.13675
scoring_system epss
scoring_elements 0.94239
published_at 2026-04-07T12:55:00Z
7
value 0.13675
scoring_system epss
scoring_elements 0.94248
published_at 2026-04-08T12:55:00Z
8
value 0.13675
scoring_system epss
scoring_elements 0.94252
published_at 2026-04-09T12:55:00Z
9
value 0.13675
scoring_system epss
scoring_elements 0.94256
published_at 2026-04-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-12420
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11805
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11805
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12420
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12420
4
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1784984
reference_id 1784984
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1784984
6
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=946653
reference_id 946653
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=946653
7
reference_url https://security.archlinux.org/AVG-1077
reference_id AVG-1077
reference_type
scores
0
value Medium
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1077
8
reference_url https://access.redhat.com/errata/RHSA-2020:3973
reference_id RHSA-2020:3973
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:3973
9
reference_url https://access.redhat.com/errata/RHSA-2020:4625
reference_id RHSA-2020:4625
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:4625
10
reference_url https://usn.ubuntu.com/4237-1/
reference_id USN-4237-1
reference_type
scores
url https://usn.ubuntu.com/4237-1/
11
reference_url https://usn.ubuntu.com/4237-2/
reference_id USN-4237-2
reference_type
scores
url https://usn.ubuntu.com/4237-2/
fixed_packages
0
url pkg:deb/debian/spamassassin@3.4.2-1~deb9u3
purl pkg:deb/debian/spamassassin@3.4.2-1~deb9u3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-11j4-bprs-akfx
1
vulnerability VCID-4bzc-b456-w3d9
2
vulnerability VCID-5b74-77zm-3qbs
3
vulnerability VCID-5rd3-xtxh-y7g8
4
vulnerability VCID-774s-rw8t-m3dm
5
vulnerability VCID-kk1w-wzk2-9uex
6
vulnerability VCID-nknr-wcys-8be7
7
vulnerability VCID-pk9z-qnug-jbh7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/spamassassin@3.4.2-1~deb9u3
1
url pkg:deb/debian/spamassassin@3.4.2-1%2Bdeb10u3
purl pkg:deb/debian/spamassassin@3.4.2-1%2Bdeb10u3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5b74-77zm-3qbs
1
vulnerability VCID-5rd3-xtxh-y7g8
2
vulnerability VCID-774s-rw8t-m3dm
3
vulnerability VCID-kk1w-wzk2-9uex
4
vulnerability VCID-pk9z-qnug-jbh7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/spamassassin@3.4.2-1%252Bdeb10u3
2
url pkg:deb/debian/spamassassin@3.4.6-1
purl pkg:deb/debian/spamassassin@3.4.6-1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/spamassassin@3.4.6-1
aliases CVE-2019-12420
risk_score 3.4
exploitability 0.5
weighted_severity 6.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-pk9z-qnug-jbh7
13
url VCID-thjb-ee1c-1ygz
vulnerability_id VCID-thjb-ee1c-1ygz
summary 
SpamAssassin, when running with certain options, could allow local or even
    remote attackers to execute arbitrary commands, possibly as the root user.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-2447.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-2447.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2006-2447
reference_id
reference_type
scores
0
value 0.75795
scoring_system epss
scoring_elements 0.98898
published_at 2026-04-01T12:55:00Z
1
value 0.75795
scoring_system epss
scoring_elements 0.989
published_at 2026-04-02T12:55:00Z
2
value 0.75795
scoring_system epss
scoring_elements 0.98901
published_at 2026-04-04T12:55:00Z
3
value 0.75795
scoring_system epss
scoring_elements 0.98903
published_at 2026-04-07T12:55:00Z
4
value 0.75795
scoring_system epss
scoring_elements 0.98905
published_at 2026-04-08T12:55:00Z
5
value 0.75795
scoring_system epss
scoring_elements 0.98904
published_at 2026-04-09T12:55:00Z
6
value 0.75795
scoring_system epss
scoring_elements 0.98906
published_at 2026-04-12T12:55:00Z
7
value 0.75795
scoring_system epss
scoring_elements 0.98907
published_at 2026-04-13T12:55:00Z
8
value 0.75795
scoring_system epss
scoring_elements 0.98909
published_at 2026-04-16T12:55:00Z
9
value 0.75795
scoring_system epss
scoring_elements 0.98911
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2006-2447
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2447
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2447
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1618105
reference_id 1618105
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1618105
4
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/16920.rb
reference_id CVE-2006-2447;OSVDB-26177
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/16920.rb
5
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/unix/remote/9914.rb
reference_id CVE-2006-2447;OSVDB-26177
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/unix/remote/9914.rb
6
reference_url http://spamassassin.apache.org/advisories/cve-2006-2447.txt
reference_id CVE-2006-2447;OSVDB-26177
reference_type exploit
scores
url http://spamassassin.apache.org/advisories/cve-2006-2447.txt
7
reference_url https://security.gentoo.org/glsa/200606-09
reference_id GLSA-200606-09
reference_type
scores
url https://security.gentoo.org/glsa/200606-09
8
reference_url https://access.redhat.com/errata/RHSA-2006:0543
reference_id RHSA-2006:0543
reference_type
scores
url https://access.redhat.com/errata/RHSA-2006:0543
fixed_packages
0
url pkg:deb/debian/spamassassin@3.1.7-2
purl pkg:deb/debian/spamassassin@3.1.7-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-11j4-bprs-akfx
1
vulnerability VCID-4bzc-b456-w3d9
2
vulnerability VCID-5b74-77zm-3qbs
3
vulnerability VCID-5rd3-xtxh-y7g8
4
vulnerability VCID-6j3j-1261-tufw
5
vulnerability VCID-774s-rw8t-m3dm
6
vulnerability VCID-kk1w-wzk2-9uex
7
vulnerability VCID-nknr-wcys-8be7
8
vulnerability VCID-pk9z-qnug-jbh7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/spamassassin@3.1.7-2
aliases CVE-2006-2447
risk_score 1.4
exploitability 2.0
weighted_severity 0.7
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-thjb-ee1c-1ygz
Fixing_vulnerabilities
0
url VCID-9r3c-jxuf-8kak
vulnerability_id VCID-9r3c-jxuf-8kak
summary 
SpamAssassin is vulnerable to a Denial of Service attack when handling
    certain malformed messages.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0796.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0796.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2004-0796
reference_id
reference_type
scores
0
value 0.01344
scoring_system epss
scoring_elements 0.8
published_at 2026-04-01T12:55:00Z
1
value 0.01344
scoring_system epss
scoring_elements 0.80008
published_at 2026-04-02T12:55:00Z
2
value 0.01344
scoring_system epss
scoring_elements 0.80029
published_at 2026-04-04T12:55:00Z
3
value 0.01344
scoring_system epss
scoring_elements 0.80019
published_at 2026-04-07T12:55:00Z
4
value 0.01344
scoring_system epss
scoring_elements 0.80047
published_at 2026-04-08T12:55:00Z
5
value 0.01344
scoring_system epss
scoring_elements 0.80056
published_at 2026-04-09T12:55:00Z
6
value 0.01344
scoring_system epss
scoring_elements 0.80075
published_at 2026-04-11T12:55:00Z
7
value 0.01344
scoring_system epss
scoring_elements 0.8006
published_at 2026-04-12T12:55:00Z
8
value 0.01344
scoring_system epss
scoring_elements 0.80051
published_at 2026-04-13T12:55:00Z
9
value 0.01344
scoring_system epss
scoring_elements 0.80079
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2004-0796
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0796
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0796
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1617293
reference_id 1617293
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1617293
4
reference_url https://security.gentoo.org/glsa/200408-06
reference_id GLSA-200408-06
reference_type
scores
url https://security.gentoo.org/glsa/200408-06
5
reference_url https://access.redhat.com/errata/RHSA-2004:451
reference_id RHSA-2004:451
reference_type
scores
url https://access.redhat.com/errata/RHSA-2004:451
fixed_packages
0
url pkg:deb/debian/spamassassin@3.0.3-2sarge1
purl pkg:deb/debian/spamassassin@3.0.3-2sarge1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-11j4-bprs-akfx
1
vulnerability VCID-4bzc-b456-w3d9
2
vulnerability VCID-5b74-77zm-3qbs
3
vulnerability VCID-5rd3-xtxh-y7g8
4
vulnerability VCID-6j3j-1261-tufw
5
vulnerability VCID-774s-rw8t-m3dm
6
vulnerability VCID-7jr6-v8ba-5ybd
7
vulnerability VCID-f9dw-s4kb-27at
8
vulnerability VCID-fps8-uzd9-7kbf
9
vulnerability VCID-kk1w-wzk2-9uex
10
vulnerability VCID-kzdw-xgcr-p3fe
11
vulnerability VCID-nknr-wcys-8be7
12
vulnerability VCID-pk9z-qnug-jbh7
13
vulnerability VCID-thjb-ee1c-1ygz
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/spamassassin@3.0.3-2sarge1
aliases CVE-2004-0796
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9r3c-jxuf-8kak
Risk_score4.0
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:deb/debian/spamassassin@3.0.3-2sarge1