Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/1052291?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/1052291?format=api", "purl": "pkg:deb/debian/gnumeric@0.3-1", "type": "deb", "namespace": "debian", "name": "gnumeric", "version": "0.3-1", "qualifiers": {}, "subpath": "", "is_vulnerable": true, "next_non_vulnerable_version": "1.12.18-2", "latest_non_vulnerable_version": "1.12.18-2", "affected_by_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/38979?format=api", "vulnerability_id": "VCID-2kke-w7x2-5yaw", "summary": "Several integer overflow vulnerabilities have been reported in Gnumeric,\n possibly resulting in user-assisted execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-0668.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-0668.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2008-0668", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.07512", "scoring_system": "epss", "scoring_elements": "0.91762", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.07512", "scoring_system": "epss", "scoring_elements": "0.91771", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.07512", "scoring_system": "epss", "scoring_elements": "0.91777", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.07512", "scoring_system": "epss", "scoring_elements": "0.91784", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.07512", "scoring_system": "epss", "scoring_elements": "0.91797", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.07512", "scoring_system": "epss", "scoring_elements": "0.91804", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.07512", "scoring_system": "epss", "scoring_elements": "0.91807", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.07512", "scoring_system": "epss", "scoring_elements": "0.91809", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.07512", "scoring_system": "epss", "scoring_elements": "0.91805", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.07512", "scoring_system": "epss", "scoring_elements": "0.91824", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2008-0668" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0668", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0668" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=431226", "reference_id": "431226", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=431226" }, { "reference_url": "https://security.gentoo.org/glsa/200802-05", "reference_id": "GLSA-200802-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200802-05" }, { "reference_url": "https://usn.ubuntu.com/604-1/", "reference_id": "USN-604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/604-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1053083?format=api", "purl": "pkg:deb/debian/gnumeric@1.8.3-5%2Blenny1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8c6b-6hbz-y3hc" }, { "vulnerability": "VCID-jnt2-3jj4-17cw" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/gnumeric@1.8.3-5%252Blenny1" } ], "aliases": [ "CVE-2008-0668" ], "risk_score": 0.1, "exploitability": "0.5", "weighted_severity": "0.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2kke-w7x2-5yaw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/92536?format=api", "vulnerability_id": "VCID-8c6b-6hbz-y3hc", "summary": "Heap-based buffer overflow in the ms_escher_get_data function in plugins/excel/ms-escher.c in GNOME Office Gnumeric before 1.12.9 allows remote attackers to cause a denial of service (crash) via a crafted xls file with a crafted length value.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-6836", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01156", "scoring_system": "epss", "scoring_elements": "0.78509", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01156", "scoring_system": "epss", "scoring_elements": "0.78515", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01156", "scoring_system": "epss", "scoring_elements": "0.78545", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01156", "scoring_system": "epss", "scoring_elements": "0.78529", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01156", "scoring_system": "epss", "scoring_elements": "0.78555", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01156", "scoring_system": "epss", "scoring_elements": "0.7856", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01156", "scoring_system": "epss", "scoring_elements": "0.78585", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01156", "scoring_system": "epss", "scoring_elements": "0.78566", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01156", "scoring_system": "epss", "scoring_elements": "0.78558", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01156", "scoring_system": "epss", "scoring_elements": "0.78587", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-6836" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6836", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6836" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1053086?format=api", "purl": "pkg:deb/debian/gnumeric@1.12.18-2", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/gnumeric@1.12.18-2" } ], "aliases": [ "CVE-2013-6836" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8c6b-6hbz-y3hc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/62461?format=api", "vulnerability_id": "VCID-jnt2-3jj4-17cw", "summary": "An untrusted search path vulnerability in Gnumeric might result in the\n execution of arbitrary code.", "references": [ { "reference_url": "http://bugzilla.gnome.org/show_bug.cgi?id=569648", "reference_id": "", "reference_type": "", "scores": [], "url": "http://bugzilla.gnome.org/show_bug.cgi?id=569648" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-0318.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-0318.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2009-0318", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20732", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.2076", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20908", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20968", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20682", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20758", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20819", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20837", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20794", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20742", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2009-0318" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0318", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0318" }, { "reference_url": "http://secunia.com/advisories/33707", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/33707" }, { "reference_url": "http://secunia.com/advisories/33823", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/33823" }, { "reference_url": "http://security.gentoo.org/glsa/glsa-200904-03.xml", "reference_id": "", "reference_type": "", "scores": [], "url": "http://security.gentoo.org/glsa/glsa-200904-03.xml" }, { "reference_url": "https://www.redhat.com/archives/fedora-package-announce/2009-February/msg00211.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.redhat.com/archives/fedora-package-announce/2009-February/msg00211.html" }, { "reference_url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:043", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:043" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2009/01/26/2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2009/01/26/2" }, { "reference_url": "http://www.securityfocus.com/bid/33438", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/33438" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=481572", "reference_id": "481572", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=481572" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=513418", "reference_id": "513418", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=513418" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gnome:gnumeric:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:gnome:gnumeric:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gnome:gnumeric:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2009-0318", "reference_id": "CVE-2009-0318", "reference_type": "", "scores": [ { "value": "6.9", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:C/I:C/A:C" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-0318" }, { "reference_url": "https://security.gentoo.org/glsa/200904-03", "reference_id": "GLSA-200904-03", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200904-03" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1053084?format=api", "purl": "pkg:deb/debian/gnumeric@1.10.8-1squeeze5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8c6b-6hbz-y3hc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/gnumeric@1.10.8-1squeeze5" } ], "aliases": [ "CVE-2009-0318" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jnt2-3jj4-17cw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3682?format=api", "vulnerability_id": "VCID-v2g6-h93b-euer", "summary": "An integer overflow flaw was found in PCRE, a Perl-compatible regular expression library included within httpd. A local user who has the ability to create .htaccess files could create a maliciously crafted regular expression in such as way that they could gain the privileges of a httpd child.", "references": [ { "reference_url": "ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.10/SCOSA-2006.10.txt", "reference_id": "", "reference_type": "", "scores": [], "url": "ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.10/SCOSA-2006.10.txt" }, { "reference_url": "ftp://patches.sgi.com/support/free/security/advisories/20060401-01-U", "reference_id": "", "reference_type": "", "scores": [], "url": "ftp://patches.sgi.com/support/free/security/advisories/20060401-01-U" }, { "reference_url": "http://docs.info.apple.com/article.html?artnum=302847", "reference_id": "", "reference_type": "", "scores": [], "url": "http://docs.info.apple.com/article.html?artnum=302847" }, { "reference_url": "http://itrc.hp.com/service/cki/docDisplay.do?docId=c00786522", "reference_id": "", "reference_type": "", "scores": [], "url": "http://itrc.hp.com/service/cki/docDisplay.do?docId=c00786522" }, { "reference_url": "http://lists.trustix.org/pipermail/tsl-announce/2005-October/000354.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.trustix.org/pipermail/tsl-announce/2005-October/000354.html" }, { "reference_url": "http://marc.info/?l=bugtraq&m=112605112027335&w=2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://marc.info/?l=bugtraq&m=112605112027335&w=2" }, { "reference_url": "http://marc.info/?l=bugtraq&m=112606064317223&w=2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://marc.info/?l=bugtraq&m=112606064317223&w=2" }, { "reference_url": "http://marc.info/?l=bugtraq&m=130497311408250&w=2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://marc.info/?l=bugtraq&m=130497311408250&w=2" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-2491.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-2491.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2005-2491", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01997", "scoring_system": "epss", "scoring_elements": "0.8367", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.01997", "scoring_system": "epss", "scoring_elements": "0.8364", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01997", "scoring_system": "epss", "scoring_elements": "0.83635", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01997", "scoring_system": "epss", "scoring_elements": "0.83569", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01997", "scoring_system": "epss", "scoring_elements": "0.83582", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01997", "scoring_system": "epss", "scoring_elements": "0.83596", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01997", "scoring_system": "epss", "scoring_elements": "0.83598", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01997", "scoring_system": "epss", "scoring_elements": "0.83622", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01997", "scoring_system": "epss", "scoring_elements": "0.8363", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01997", "scoring_system": "epss", "scoring_elements": "0.83647", "published_at": "2026-04-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2005-2491" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2491", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2491" }, { "reference_url": "http://secunia.com/advisories/16502", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/16502" }, { "reference_url": "http://secunia.com/advisories/16679", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/16679" }, { "reference_url": "http://secunia.com/advisories/17252", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/17252" }, { "reference_url": "http://secunia.com/advisories/17813", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/17813" }, { "reference_url": "http://secunia.com/advisories/19072", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/19072" }, { "reference_url": "http://secunia.com/advisories/19193", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/19193" }, { "reference_url": "http://secunia.com/advisories/19532", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/19532" }, { "reference_url": "http://secunia.com/advisories/21522", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/21522" }, { "reference_url": "http://secunia.com/advisories/22691", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/22691" }, { "reference_url": "http://secunia.com/advisories/22875", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/22875" }, { "reference_url": "http://securityreason.com/securityalert/604", "reference_id": "", "reference_type": "", "scores": [], "url": "http://securityreason.com/securityalert/604" }, { "reference_url": "http://securitytracker.com/id?1014744", "reference_id": "", "reference_type": "", "scores": [], "url": "http://securitytracker.com/id?1014744" }, { "reference_url": "https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac%40%3Ccvs.httpd.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79%40%3Ccvs.httpd.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc%40%3Ccvs.httpd.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b%40%3Ccvs.httpd.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r5001ecf3d6b2bdd0b732e527654248abb264f08390045d30709a92f6%40%3Ccvs.httpd.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r5001ecf3d6b2bdd0b732e527654248abb264f08390045d30709a92f6%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb%40%3Ccvs.httpd.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142%40%3Ccvs.httpd.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rafd145ba6cd0a4ced113a5823cdaff45aeb36eb09855b216401c66d6%40%3Ccvs.httpd.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/rafd145ba6cd0a4ced113a5823cdaff45aeb36eb09855b216401c66d6%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rd65d8ba68ba17e7deedafbf5bb4899f2ae4dad781d21b931c2941ac3%40%3Ccvs.httpd.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/rd65d8ba68ba17e7deedafbf5bb4899f2ae4dad781d21b931c2941ac3%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/re895fc1736d25c8cf57e102c871613b8aeec9ea26fd8a44e7942b5ab%40%3Ccvs.httpd.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/re895fc1736d25c8cf57e102c871613b8aeec9ea26fd8a44e7942b5ab%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11516", "reference_id": "", "reference_type": "", "scores": [], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11516" }, { "reference_url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1496", "reference_id": "", "reference_type": "", "scores": [], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1496" }, { "reference_url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1659", "reference_id": "", "reference_type": "", "scores": [], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1659" }, { "reference_url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A735", "reference_id": "", "reference_type": "", "scores": [], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A735" }, { "reference_url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102198-1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102198-1" }, { "reference_url": "http://support.avaya.com/elmodocs2/security/ASA-2005-216.pdf", "reference_id": "", "reference_type": "", "scores": [], "url": "http://support.avaya.com/elmodocs2/security/ASA-2005-216.pdf" }, { "reference_url": "http://support.avaya.com/elmodocs2/security/ASA-2005-223.pdf", "reference_id": "", "reference_type": "", "scores": [], "url": "http://support.avaya.com/elmodocs2/security/ASA-2005-223.pdf" }, { "reference_url": "http://support.avaya.com/elmodocs2/security/ASA-2006-081.htm", "reference_id": "", "reference_type": "", "scores": [], "url": "http://support.avaya.com/elmodocs2/security/ASA-2006-081.htm" }, { "reference_url": "http://support.avaya.com/elmodocs2/security/ASA-2006-159.htm", "reference_id": "", "reference_type": "", "scores": [], "url": "http://support.avaya.com/elmodocs2/security/ASA-2006-159.htm" }, { "reference_url": "http://www.debian.org/security/2005/dsa-800", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2005/dsa-800" }, { "reference_url": "http://www.debian.org/security/2005/dsa-817", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2005/dsa-817" }, { "reference_url": "http://www.debian.org/security/2005/dsa-819", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2005/dsa-819" }, { "reference_url": "http://www.debian.org/security/2005/dsa-821", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2005/dsa-821" }, { "reference_url": "http://www.ethereal.com/appnotes/enpa-sa-00021.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.ethereal.com/appnotes/enpa-sa-00021.html" }, { "reference_url": "http://www.gentoo.org/security/en/glsa/glsa-200508-17.xml", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.gentoo.org/security/en/glsa/glsa-200508-17.xml" }, { "reference_url": "http://www.gentoo.org/security/en/glsa/glsa-200509-02.xml", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.gentoo.org/security/en/glsa/glsa-200509-02.xml" }, { "reference_url": "http://www.gentoo.org/security/en/glsa/glsa-200509-08.xml", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.gentoo.org/security/en/glsa/glsa-200509-08.xml" }, { "reference_url": "http://www.gentoo.org/security/en/glsa/glsa-200509-12.xml", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.gentoo.org/security/en/glsa/glsa-200509-12.xml" }, { "reference_url": "http://www.gentoo.org/security/en/glsa/glsa-200509-19.xml", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.gentoo.org/security/en/glsa/glsa-200509-19.xml" }, { "reference_url": "http://www.novell.com/linux/security/advisories/2005_48_pcre.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.novell.com/linux/security/advisories/2005_48_pcre.html" }, { "reference_url": "http://www.novell.com/linux/security/advisories/2005_49_php.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.novell.com/linux/security/advisories/2005_49_php.html" }, { "reference_url": "http://www.novell.com/linux/security/advisories/2005_52_apache2.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.novell.com/linux/security/advisories/2005_52_apache2.html" }, { "reference_url": "http://www.php.net/release_4_4_1.php", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.php.net/release_4_4_1.php" }, { "reference_url": "http://www.redhat.com/support/errata/RHSA-2005-358.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.redhat.com/support/errata/RHSA-2005-358.html" }, { "reference_url": "http://www.redhat.com/support/errata/RHSA-2005-761.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.redhat.com/support/errata/RHSA-2005-761.html" }, { "reference_url": "http://www.redhat.com/support/errata/RHSA-2006-0197.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.redhat.com/support/errata/RHSA-2006-0197.html" }, { "reference_url": "http://www.securityfocus.com/archive/1/427046/100/0/threaded", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/archive/1/427046/100/0/threaded" }, { "reference_url": "http://www.securityfocus.com/archive/1/428138/100/0/threaded", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/archive/1/428138/100/0/threaded" }, { "reference_url": "http://www.securityfocus.com/bid/14620", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/14620" }, { "reference_url": "http://www.securityfocus.com/bid/15647", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/15647" }, { "reference_url": "http://www.vupen.com/english/advisories/2005/1511", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2005/1511" }, { "reference_url": "http://www.vupen.com/english/advisories/2005/2659", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2005/2659" }, { "reference_url": "http://www.vupen.com/english/advisories/2006/0789", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2006/0789" }, { "reference_url": "http://www.vupen.com/english/advisories/2006/4320", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2006/4320" }, { "reference_url": "http://www.vupen.com/english/advisories/2006/4502", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2006/4502" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=324531", "reference_id": "324531", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=324531" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=326628", "reference_id": "326628", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=326628" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=326898", "reference_id": "326898", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=326898" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=430638", "reference_id": "430638", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=430638" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:pcre:pcre:5.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:pcre:pcre:5.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:pcre:pcre:5.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:pcre:pcre:6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:pcre:pcre:6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:pcre:pcre:6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:pcre:pcre:6.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:pcre:pcre:6.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:pcre:pcre:6.1:*:*:*:*:*:*:*" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2005-2491.json", "reference_id": "CVE-2005-2491", "reference_type": "", "scores": [ { "value": "low", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2005-2491.json" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2005-2491", "reference_id": "CVE-2005-2491", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:P/I:P/A:P" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2005-2491" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2005:358", "reference_id": "RHSA-2005:358", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2005:358" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2005:761", "reference_id": "RHSA-2005:761", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2005:761" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2006:0197", "reference_id": "RHSA-2006:0197", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2006:0197" }, { "reference_url": "https://usn.ubuntu.com/173-1/", "reference_id": "USN-173-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/173-1/" }, { "reference_url": "https://usn.ubuntu.com/173-2/", "reference_id": "USN-173-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/173-2/" }, { "reference_url": "https://usn.ubuntu.com/173-4/", "reference_id": "USN-173-4", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/173-4/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1052295?format=api", "purl": "pkg:deb/debian/gnumeric@1.6.3-5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2kke-w7x2-5yaw" }, { "vulnerability": "VCID-8c6b-6hbz-y3hc" }, { "vulnerability": "VCID-jnt2-3jj4-17cw" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/gnumeric@1.6.3-5" } ], "aliases": [ "CVE-2005-2491" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-v2g6-h93b-euer" } ], "fixing_vulnerabilities": [], "risk_score": "3.4", "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/gnumeric@0.3-1" }