Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/1052455?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/1052455?format=api", "purl": "pkg:deb/debian/avahi@0.6.31-2", "type": "deb", "namespace": "debian", "name": "avahi", "version": "0.6.31-2", "qualifiers": {}, "subpath": "", "is_vulnerable": true, "next_non_vulnerable_version": "0.8-18", "latest_non_vulnerable_version": "0.8-18", "affected_by_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/78464?format=api", "vulnerability_id": "VCID-4xxj-5827-gqck", "summary": "avahi: Reachable assertion in avahi_alternative_host_name", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-38473.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-38473.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-38473", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.01013", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.01026", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.0104", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.01024", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.01019", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.01027", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.01037", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.01042", "published_at": "2026-04-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-38473" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-38473", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-38473" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1054880", "reference_id": "1054880", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1054880" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2191694", "reference_id": "2191694", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-29T14:00:14Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2191694" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9", "reference_id": "cpe:/o:redhat:enterprise_linux:9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2023-38473", "reference_id": "CVE-2023-38473", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-29T14:00:14Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2023-38473" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7836", "reference_id": "RHSA-2023:7836", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7836" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0418", "reference_id": "RHSA-2024:0418", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0418" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0576", "reference_id": "RHSA-2024:0576", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0576" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2433", "reference_id": "RHSA-2024:2433", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2433" }, { "reference_url": "https://usn.ubuntu.com/6487-1/", "reference_id": "USN-6487-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6487-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/583505?format=api", "purl": "pkg:deb/debian/avahi@0.8-10%2Bdeb12u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1gkw-3zt3-sbb9" }, { "vulnerability": "VCID-1qch-uvj9-nucr" }, { "vulnerability": "VCID-c1wj-a2qm-wbhr" }, { "vulnerability": "VCID-nbtb-77zf-kkh8" }, { "vulnerability": "VCID-unwy-8b3g-hbbx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/avahi@0.8-10%252Bdeb12u1" } ], "aliases": [ "CVE-2023-38473" ], "risk_score": 2.8, "exploitability": "0.5", "weighted_severity": "5.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4xxj-5827-gqck" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85735?format=api", "vulnerability_id": "VCID-7afj-kkdv-zbez", "summary": "avahi: Multicast DNS responds to unicast queries outside of local network", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-6519.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-6519.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-6519", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01134", "scoring_system": "epss", "scoring_elements": "0.78301", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01134", "scoring_system": "epss", "scoring_elements": "0.78384", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.01134", "scoring_system": "epss", "scoring_elements": "0.78307", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01134", "scoring_system": "epss", "scoring_elements": "0.78338", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01134", "scoring_system": "epss", "scoring_elements": "0.78321", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01134", "scoring_system": "epss", "scoring_elements": "0.78347", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01134", "scoring_system": "epss", "scoring_elements": "0.78353", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01134", "scoring_system": "epss", "scoring_elements": "0.78379", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01134", "scoring_system": "epss", "scoring_elements": "0.78362", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01134", "scoring_system": "epss", "scoring_elements": "0.78355", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-6519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6519" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://github.com/lathiat/avahi/issues/203", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-03T21:57:26Z/" } ], "url": "https://github.com/lathiat/avahi/issues/203" }, { "reference_url": "https://github.com/lathiat/avahi/issues/203#issuecomment-449536790", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-03T21:57:26Z/" } ], "url": "https://github.com/lathiat/avahi/issues/203#issuecomment-449536790" }, { "reference_url": "https://lists.apache.org/thread.html/r1b103833cb5bc8466e24ff0ecc5e75b45a705334ab6a444e64e840a0%40%3Cissues.bookkeeper.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-03T21:57:26Z/" } ], "url": "https://lists.apache.org/thread.html/r1b103833cb5bc8466e24ff0ecc5e75b45a705334ab6a444e64e840a0%40%3Cissues.bookkeeper.apache.org%3E" }, { "reference_url": "https://www.secfu.net/advisories", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-03T21:57:26Z/" } ], "url": "https://www.secfu.net/advisories" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1426712", "reference_id": "1426712", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-03T21:57:26Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1426712" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=917047", "reference_id": "917047", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=917047" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:avahi:avahi:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:avahi:avahi:0.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-6519", "reference_id": "CVE-2017-6519", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:P/I:N/A:P" }, { "value": "9.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H" }, { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-6519" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1176", "reference_id": "RHSA-2020:1176", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1176" }, { "reference_url": "https://usn.ubuntu.com/3876-1/", "reference_id": "USN-3876-1", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-03T21:57:26Z/" } ], "url": "https://usn.ubuntu.com/3876-1/" }, { "reference_url": "https://usn.ubuntu.com/3876-2/", "reference_id": "USN-3876-2", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-03T21:57:26Z/" } ], "url": "https://usn.ubuntu.com/3876-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/583504?format=api", "purl": "pkg:deb/debian/avahi@0.8-5%2Bdeb11u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1gkw-3zt3-sbb9" }, { "vulnerability": "VCID-1qch-uvj9-nucr" }, { "vulnerability": "VCID-4xxj-5827-gqck" }, { "vulnerability": "VCID-82ze-32xz-pqgn" }, { "vulnerability": "VCID-9mjb-81e1-qbau" }, { "vulnerability": "VCID-9w4x-33np-2fg4" }, { "vulnerability": "VCID-c1wj-a2qm-wbhr" }, { "vulnerability": "VCID-g2fk-pmey-ekh9" }, { "vulnerability": "VCID-gmfp-mzuj-d7gz" }, { "vulnerability": "VCID-nbtb-77zf-kkh8" }, { "vulnerability": "VCID-unwy-8b3g-hbbx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/avahi@0.8-5%252Bdeb11u2" } ], "aliases": [ "CVE-2017-6519" ], "risk_score": 4.1, "exploitability": "0.5", "weighted_severity": "8.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7afj-kkdv-zbez" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/78460?format=api", "vulnerability_id": "VCID-82ze-32xz-pqgn", "summary": "avahi: Reachable assertion in avahi_dns_packet_append_record", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-38469.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-38469.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-38469", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.01013", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.01026", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.0104", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.01024", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.01019", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.01027", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.01037", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.01042", "published_at": "2026-04-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-38469" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-38469", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-38469" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1054876", "reference_id": "1054876", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1054876" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2191687", "reference_id": "2191687", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-29T13:53:35Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2191687" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9", "reference_id": "cpe:/o:redhat:enterprise_linux:9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2023-38469", "reference_id": "CVE-2023-38469", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-29T13:53:35Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2023-38469" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7836", "reference_id": "RHSA-2023:7836", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7836" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0418", "reference_id": "RHSA-2024:0418", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0418" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0576", "reference_id": "RHSA-2024:0576", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0576" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2433", "reference_id": "RHSA-2024:2433", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2433" }, { "reference_url": "https://usn.ubuntu.com/6487-1/", "reference_id": "USN-6487-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6487-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/583505?format=api", "purl": "pkg:deb/debian/avahi@0.8-10%2Bdeb12u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1gkw-3zt3-sbb9" }, { "vulnerability": "VCID-1qch-uvj9-nucr" }, { "vulnerability": "VCID-c1wj-a2qm-wbhr" }, { "vulnerability": "VCID-nbtb-77zf-kkh8" }, { "vulnerability": "VCID-unwy-8b3g-hbbx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/avahi@0.8-10%252Bdeb12u1" } ], "aliases": [ "CVE-2023-38469" ], "risk_score": 2.8, "exploitability": "0.5", "weighted_severity": "5.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-82ze-32xz-pqgn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/78462?format=api", "vulnerability_id": "VCID-9mjb-81e1-qbau", "summary": "avahi: Reachable assertion in dbus_set_host_name", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-38471.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-38471.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-38471", "reference_id": "", "reference_type": "", "scores": [ { "value": "8e-05", "scoring_system": "epss", "scoring_elements": "0.0067", "published_at": "2026-04-16T12:55:00Z" }, { "value": "8e-05", "scoring_system": "epss", "scoring_elements": "0.00695", "published_at": "2026-04-02T12:55:00Z" }, { "value": "8e-05", "scoring_system": "epss", "scoring_elements": "0.00692", "published_at": "2026-04-08T12:55:00Z" }, { "value": "8e-05", "scoring_system": "epss", "scoring_elements": "0.00684", "published_at": "2026-04-11T12:55:00Z" }, { "value": "8e-05", "scoring_system": "epss", "scoring_elements": "0.00677", "published_at": "2026-04-13T12:55:00Z" }, { "value": "8e-05", "scoring_system": "epss", "scoring_elements": "0.00688", "published_at": "2026-04-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-38471" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-38471", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-38471" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1054878", "reference_id": "1054878", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1054878" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2191691", "reference_id": "2191691", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-29T13:54:56Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2191691" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9", "reference_id": "cpe:/o:redhat:enterprise_linux:9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2023-38471", "reference_id": "CVE-2023-38471", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-29T13:54:56Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2023-38471" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7836", "reference_id": "RHSA-2023:7836", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7836" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0418", "reference_id": "RHSA-2024:0418", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0418" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0576", "reference_id": "RHSA-2024:0576", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0576" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2433", "reference_id": "RHSA-2024:2433", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2433" }, { "reference_url": "https://usn.ubuntu.com/6487-1/", "reference_id": "USN-6487-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6487-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/583505?format=api", "purl": "pkg:deb/debian/avahi@0.8-10%2Bdeb12u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1gkw-3zt3-sbb9" }, { "vulnerability": "VCID-1qch-uvj9-nucr" }, { "vulnerability": "VCID-c1wj-a2qm-wbhr" }, { "vulnerability": "VCID-nbtb-77zf-kkh8" }, { "vulnerability": "VCID-unwy-8b3g-hbbx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/avahi@0.8-10%252Bdeb12u1" } ], "aliases": [ "CVE-2023-38471" ], "risk_score": 2.8, "exploitability": "0.5", "weighted_severity": "5.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9mjb-81e1-qbau" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/78461?format=api", "vulnerability_id": "VCID-9w4x-33np-2fg4", "summary": "avahi: Reachable assertion in avahi_escape_label", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-38470.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-38470.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-38470", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.01013", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.01026", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.0104", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.01024", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.01019", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.01027", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.01037", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.01042", "published_at": "2026-04-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-38470" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-38470", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-38470" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1054877", "reference_id": "1054877", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1054877" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2191690", "reference_id": "2191690", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-29T13:54:46Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2191690" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9", "reference_id": "cpe:/o:redhat:enterprise_linux:9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2023-38470", "reference_id": "CVE-2023-38470", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-29T13:54:46Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2023-38470" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7836", "reference_id": "RHSA-2023:7836", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7836" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0418", "reference_id": "RHSA-2024:0418", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0418" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0576", "reference_id": "RHSA-2024:0576", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0576" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2433", "reference_id": "RHSA-2024:2433", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2433" }, { "reference_url": "https://usn.ubuntu.com/6487-1/", "reference_id": "USN-6487-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6487-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/583505?format=api", "purl": "pkg:deb/debian/avahi@0.8-10%2Bdeb12u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1gkw-3zt3-sbb9" }, { "vulnerability": "VCID-1qch-uvj9-nucr" }, { "vulnerability": "VCID-c1wj-a2qm-wbhr" }, { "vulnerability": "VCID-nbtb-77zf-kkh8" }, { "vulnerability": "VCID-unwy-8b3g-hbbx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/avahi@0.8-10%252Bdeb12u1" } ], "aliases": [ "CVE-2023-38470" ], "risk_score": 2.8, "exploitability": "0.5", "weighted_severity": "5.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9w4x-33np-2fg4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/94678?format=api", "vulnerability_id": "VCID-ezsn-vvex-gkah", "summary": "avahi-daemon-check-dns.sh in the Debian avahi package through 0.8-4 is executed as root via /etc/network/if-up.d/avahi-daemon, and allows a local attacker to cause a denial of service or create arbitrary empty files via a symlink attack on files under /run/avahi-daemon. NOTE: this only affects the packaging for Debian GNU/Linux (used indirectly by SUSE), not the upstream Avahi product.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-26720", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00069", "scoring_system": "epss", "scoring_elements": "0.21158", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00069", "scoring_system": "epss", "scoring_elements": "0.21148", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00069", "scoring_system": "epss", "scoring_elements": "0.213", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00069", "scoring_system": "epss", "scoring_elements": "0.21355", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00069", "scoring_system": "epss", "scoring_elements": "0.21109", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00069", "scoring_system": "epss", "scoring_elements": "0.21189", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00069", "scoring_system": "epss", "scoring_elements": "0.21251", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00069", "scoring_system": "epss", "scoring_elements": "0.2126", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00069", "scoring_system": "epss", "scoring_elements": "0.21219", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00069", "scoring_system": "epss", "scoring_elements": "0.21166", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-26720" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26720", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26720" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/583504?format=api", "purl": "pkg:deb/debian/avahi@0.8-5%2Bdeb11u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1gkw-3zt3-sbb9" }, { "vulnerability": "VCID-1qch-uvj9-nucr" }, { "vulnerability": "VCID-4xxj-5827-gqck" }, { "vulnerability": "VCID-82ze-32xz-pqgn" }, { "vulnerability": "VCID-9mjb-81e1-qbau" }, { "vulnerability": "VCID-9w4x-33np-2fg4" }, { "vulnerability": "VCID-c1wj-a2qm-wbhr" }, { "vulnerability": "VCID-g2fk-pmey-ekh9" }, { "vulnerability": "VCID-gmfp-mzuj-d7gz" }, { "vulnerability": "VCID-nbtb-77zf-kkh8" }, { "vulnerability": "VCID-unwy-8b3g-hbbx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/avahi@0.8-5%252Bdeb11u2" } ], "aliases": [ "CVE-2021-26720" ], "risk_score": 1.9, "exploitability": "0.5", "weighted_severity": "3.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ezsn-vvex-gkah" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/79474?format=api", "vulnerability_id": "VCID-g2fk-pmey-ekh9", "summary": "avahi: avahi-daemon can be crashed via DBus", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-1981.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-1981.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-1981", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03383", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.0345", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03479", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03502", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03458", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.0343", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03405", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03463", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03476", "published_at": "2026-04-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-1981" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1981", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1981" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1034594", "reference_id": "1034594", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1034594" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2185911", "reference_id": "2185911", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T21:38:14Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2185911" }, { "reference_url": "https://github.com/lathiat/avahi/issues/375", "reference_id": "375", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T21:38:14Z/" } ], "url": "https://github.com/lathiat/avahi/issues/375" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2023-1981", "reference_id": "CVE-2023-1981", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T21:38:14Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2023-1981" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6707", "reference_id": "RHSA-2023:6707", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6707" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7190", "reference_id": "RHSA-2023:7190", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7190" }, { "reference_url": "https://usn.ubuntu.com/6129-1/", "reference_id": "USN-6129-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6129-1/" }, { "reference_url": "https://usn.ubuntu.com/6129-2/", "reference_id": "USN-6129-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6129-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/583505?format=api", "purl": "pkg:deb/debian/avahi@0.8-10%2Bdeb12u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1gkw-3zt3-sbb9" }, { "vulnerability": "VCID-1qch-uvj9-nucr" }, { "vulnerability": "VCID-c1wj-a2qm-wbhr" }, { "vulnerability": "VCID-nbtb-77zf-kkh8" }, { "vulnerability": "VCID-unwy-8b3g-hbbx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/avahi@0.8-10%252Bdeb12u1" } ], "aliases": [ "CVE-2023-1981" ], "risk_score": 2.8, "exploitability": "0.5", "weighted_severity": "5.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-g2fk-pmey-ekh9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/78463?format=api", "vulnerability_id": "VCID-gmfp-mzuj-d7gz", "summary": "avahi: Reachable assertion in avahi_rdata_parse", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-38472.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-38472.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-38472", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.01013", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.01026", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.0104", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.01024", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.01019", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.01027", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.01037", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.01042", "published_at": "2026-04-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-38472" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-38472", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-38472" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1054879", "reference_id": "1054879", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1054879" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2191692", "reference_id": "2191692", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-29T13:55:06Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2191692" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9", "reference_id": "cpe:/o:redhat:enterprise_linux:9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2023-38472", "reference_id": "CVE-2023-38472", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-29T13:55:06Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2023-38472" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7836", "reference_id": "RHSA-2023:7836", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7836" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0418", "reference_id": "RHSA-2024:0418", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0418" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0576", "reference_id": "RHSA-2024:0576", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0576" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2433", "reference_id": "RHSA-2024:2433", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2433" }, { "reference_url": "https://usn.ubuntu.com/6487-1/", "reference_id": "USN-6487-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6487-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/583505?format=api", "purl": "pkg:deb/debian/avahi@0.8-10%2Bdeb12u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1gkw-3zt3-sbb9" }, { "vulnerability": "VCID-1qch-uvj9-nucr" }, { "vulnerability": "VCID-c1wj-a2qm-wbhr" }, { "vulnerability": "VCID-nbtb-77zf-kkh8" }, { "vulnerability": "VCID-unwy-8b3g-hbbx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/avahi@0.8-10%252Bdeb12u1" } ], "aliases": [ "CVE-2023-38472" ], "risk_score": 2.8, "exploitability": "0.5", "weighted_severity": "5.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gmfp-mzuj-d7gz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80482?format=api", "vulnerability_id": "VCID-hjrp-3yew-wqeg", "summary": "avahi: reachable assertion in avahi_s_host_name_resolver_start when trying to resolve badly-formatted hostnames", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3502.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3502.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3502", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09103", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09046", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09166", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09152", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09108", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09161", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09085", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09165", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09196", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09198", "published_at": "2026-04-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3502" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3502", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3502" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1946914", "reference_id": "1946914", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1946914" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=986018", "reference_id": "986018", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=986018" }, { "reference_url": "https://security.archlinux.org/AVG-2341", "reference_id": "AVG-2341", "reference_type": "", "scores": [ { "value": "Low", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2341" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6707", "reference_id": "RHSA-2023:6707", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6707" }, { "reference_url": "https://usn.ubuntu.com/5008-1/", "reference_id": "USN-5008-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5008-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/583504?format=api", "purl": "pkg:deb/debian/avahi@0.8-5%2Bdeb11u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1gkw-3zt3-sbb9" }, { "vulnerability": "VCID-1qch-uvj9-nucr" }, { "vulnerability": "VCID-4xxj-5827-gqck" }, { "vulnerability": "VCID-82ze-32xz-pqgn" }, { "vulnerability": "VCID-9mjb-81e1-qbau" }, { "vulnerability": "VCID-9w4x-33np-2fg4" }, { "vulnerability": "VCID-c1wj-a2qm-wbhr" }, { "vulnerability": "VCID-g2fk-pmey-ekh9" }, { "vulnerability": "VCID-gmfp-mzuj-d7gz" }, { "vulnerability": "VCID-nbtb-77zf-kkh8" }, { "vulnerability": "VCID-unwy-8b3g-hbbx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/avahi@0.8-5%252Bdeb11u2" } ], "aliases": [ "CVE-2021-3502" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hjrp-3yew-wqeg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80528?format=api", "vulnerability_id": "VCID-rpzc-ryw1-p7e5", "summary": "avahi: Local DoS by event-busy-loop from writing long lines to /run/avahi-daemon/socket", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3468.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3468.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3468", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0003", "scoring_system": "epss", "scoring_elements": "0.08621", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0003", "scoring_system": "epss", "scoring_elements": "0.08569", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0003", "scoring_system": "epss", "scoring_elements": "0.08719", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0003", "scoring_system": "epss", "scoring_elements": "0.08682", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0003", "scoring_system": "epss", "scoring_elements": "0.08647", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0003", "scoring_system": "epss", "scoring_elements": "0.08697", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0003", "scoring_system": "epss", "scoring_elements": "0.08617", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0003", "scoring_system": "epss", "scoring_elements": "0.08695", "published_at": "2026-04-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3468" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3468", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3468" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1939614", "reference_id": "1939614", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1939614" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=984938", "reference_id": "984938", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=984938" }, { "reference_url": "https://security.archlinux.org/AVG-1742", "reference_id": "AVG-1742", "reference_type": "", "scores": [ { "value": "Low", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1742" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6707", "reference_id": "RHSA-2023:6707", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6707" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7836", "reference_id": "RHSA-2023:7836", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7836" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0418", "reference_id": "RHSA-2024:0418", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0418" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0576", "reference_id": "RHSA-2024:0576", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0576" }, { "reference_url": "https://usn.ubuntu.com/5008-1/", "reference_id": "USN-5008-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5008-1/" }, { "reference_url": "https://usn.ubuntu.com/5008-2/", "reference_id": "USN-5008-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5008-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/583504?format=api", "purl": "pkg:deb/debian/avahi@0.8-5%2Bdeb11u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1gkw-3zt3-sbb9" }, { "vulnerability": "VCID-1qch-uvj9-nucr" }, { "vulnerability": "VCID-4xxj-5827-gqck" }, { "vulnerability": "VCID-82ze-32xz-pqgn" }, { "vulnerability": "VCID-9mjb-81e1-qbau" }, { "vulnerability": "VCID-9w4x-33np-2fg4" }, { "vulnerability": "VCID-c1wj-a2qm-wbhr" }, { "vulnerability": "VCID-g2fk-pmey-ekh9" }, { "vulnerability": "VCID-gmfp-mzuj-d7gz" }, { "vulnerability": "VCID-nbtb-77zf-kkh8" }, { "vulnerability": "VCID-unwy-8b3g-hbbx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/avahi@0.8-5%252Bdeb11u2" } ], "aliases": [ "CVE-2021-3468" ], "risk_score": 2.8, "exploitability": "0.5", "weighted_severity": "5.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rpzc-ryw1-p7e5" } ], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/51014?format=api", "vulnerability_id": "VCID-b6c5-yjhz-x3hh", "summary": "Multiple vulnerabilities were found in Avahi, allowing for Denial\n of Service.", "references": [ { "reference_url": "http://avahi.org/ticket/325", "reference_id": "", "reference_type": "", "scores": [], "url": "http://avahi.org/ticket/325" }, { "reference_url": "http://git.0pointer.de/?p=avahi.git%3Ba=commit%3Bh=46109dfec75534fe270c0ab902576f685d5ab3a6", "reference_id": "", "reference_type": "", "scores": [], "url": "http://git.0pointer.de/?p=avahi.git%3Ba=commit%3Bh=46109dfec75534fe270c0ab902576f685d5ab3a6" }, { "reference_url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055858.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055858.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html" }, { "reference_url": "http://openwall.com/lists/oss-security/2011/02/18/1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://openwall.com/lists/oss-security/2011/02/18/1" }, { "reference_url": "http://openwall.com/lists/oss-security/2011/02/18/4", "reference_id": "", "reference_type": "", "scores": [], "url": "http://openwall.com/lists/oss-security/2011/02/18/4" }, { "reference_url": "http://osvdb.org/70948", "reference_id": "", "reference_type": "", "scores": [], "url": "http://osvdb.org/70948" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-1002.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-1002.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2011-1002", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.6883", "scoring_system": "epss", "scoring_elements": "0.98631", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.6883", "scoring_system": "epss", "scoring_elements": "0.98613", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.6883", "scoring_system": "epss", "scoring_elements": "0.98615", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.6883", "scoring_system": "epss", "scoring_elements": "0.98618", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.6883", "scoring_system": "epss", "scoring_elements": "0.9862", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.6883", "scoring_system": "epss", "scoring_elements": "0.98622", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.6883", "scoring_system": "epss", "scoring_elements": "0.98623", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.6883", "scoring_system": "epss", "scoring_elements": "0.98626", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.6883", "scoring_system": "epss", "scoring_elements": "0.98627", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2011-1002" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1002", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1002" }, { "reference_url": "http://secunia.com/advisories/43361", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/43361" }, { "reference_url": "http://secunia.com/advisories/43465", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/43465" }, { "reference_url": "http://secunia.com/advisories/43605", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/43605" }, { "reference_url": "http://secunia.com/advisories/43673", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/43673" }, { "reference_url": "http://secunia.com/advisories/44131", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/44131" }, { "reference_url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/65524", "reference_id": "", "reference_type": "", "scores": [], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/65524" }, { "reference_url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/65525", "reference_id": "", "reference_type": "", "scores": [], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/65525" }, { "reference_url": "http://ubuntu.com/usn/usn-1084-1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://ubuntu.com/usn/usn-1084-1" }, { "reference_url": "http://www.debian.org/security/2011/dsa-2174", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2011/dsa-2174" }, { "reference_url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:037", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:037" }, { "reference_url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:040", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:040" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2011/02/22/9", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2011/02/22/9" }, { "reference_url": "http://www.redhat.com/support/errata/RHSA-2011-0436.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.redhat.com/support/errata/RHSA-2011-0436.html" }, { "reference_url": "http://www.redhat.com/support/errata/RHSA-2011-0779.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.redhat.com/support/errata/RHSA-2011-0779.html" }, { "reference_url": "http://www.securityfocus.com/bid/46446", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/46446" }, { "reference_url": "http://www.vupen.com/english/advisories/2011/0448", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2011/0448" }, { "reference_url": "http://www.vupen.com/english/advisories/2011/0499", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2011/0499" }, { "reference_url": "http://www.vupen.com/english/advisories/2011/0511", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2011/0511" }, { "reference_url": "http://www.vupen.com/english/advisories/2011/0565", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2011/0565" }, { "reference_url": "http://www.vupen.com/english/advisories/2011/0601", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2011/0601" }, { "reference_url": "http://www.vupen.com/english/advisories/2011/0670", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2011/0670" }, { "reference_url": "http://www.vupen.com/english/advisories/2011/0969", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2011/0969" }, { "reference_url": "http://xorl.wordpress.com/2011/02/20/cve-2011-1002-avahi-daemon-remote-denial-of-service/", "reference_id": "", "reference_type": "", "scores": [], "url": "http://xorl.wordpress.com/2011/02/20/cve-2011-1002-avahi-daemon-remote-denial-of-service/" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=614785", "reference_id": "614785", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=614785" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=667187", "reference_id": "667187", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=667187" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:avahi:avahi:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:avahi:avahi:0.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:avahi:avahi:0.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:avahi:avahi:0.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:avahi:avahi:0.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:avahi:avahi:0.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.5.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:avahi:avahi:0.5.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.5.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.5.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:avahi:avahi:0.5.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.5.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:avahi:avahi:0.6.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:avahi:avahi:0.6.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.11:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:avahi:avahi:0.6.11:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.11:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.12:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:avahi:avahi:0.6.12:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.12:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.13:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:avahi:avahi:0.6.13:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.13:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.14:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:avahi:avahi:0.6.14:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.14:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.15:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:avahi:avahi:0.6.15:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.15:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.16:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:avahi:avahi:0.6.16:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.16:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.17:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:avahi:avahi:0.6.17:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.17:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.18:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:avahi:avahi:0.6.18:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.18:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.19:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:avahi:avahi:0.6.19:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.19:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:avahi:avahi:0.6.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.20:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:avahi:avahi:0.6.20:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.20:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.21:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:avahi:avahi:0.6.21:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.21:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.22:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:avahi:avahi:0.6.22:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.22:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.23:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:avahi:avahi:0.6.23:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.23:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.24:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:avahi:avahi:0.6.24:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.24:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.25:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:avahi:avahi:0.6.25:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.25:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.26:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:avahi:avahi:0.6.26:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.26:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.27:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:avahi:avahi:0.6.27:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.27:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:avahi:avahi:0.6.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:avahi:avahi:0.6.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:avahi:avahi:0.6.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:avahi:avahi:0.6.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:avahi:avahi:0.6.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.8:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:avahi:avahi:0.6.8:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.8:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.9:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:avahi:avahi:0.6.9:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avahi:avahi:0.6.9:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:10.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:10.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:10.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:9.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:9.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:9.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:5.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:5.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:5.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:15:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:15:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:15:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:5.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux:5.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:5.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1002", "reference_id": "CVE-2011-1002", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1002" }, { "reference_url": "https://security.gentoo.org/glsa/201110-17", "reference_id": "GLSA-201110-17", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201110-17" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2011:0436", "reference_id": "RHSA-2011:0436", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2011:0436" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2011:0779", "reference_id": "RHSA-2011:0779", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2011:0779" }, { "reference_url": "https://usn.ubuntu.com/1084-1/", "reference_id": "USN-1084-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1084-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1052455?format=api", "purl": "pkg:deb/debian/avahi@0.6.31-2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-4xxj-5827-gqck" }, { "vulnerability": "VCID-7afj-kkdv-zbez" }, { "vulnerability": "VCID-82ze-32xz-pqgn" }, { "vulnerability": "VCID-9mjb-81e1-qbau" }, { "vulnerability": "VCID-9w4x-33np-2fg4" }, { "vulnerability": "VCID-ezsn-vvex-gkah" }, { "vulnerability": "VCID-g2fk-pmey-ekh9" }, { "vulnerability": "VCID-gmfp-mzuj-d7gz" }, { "vulnerability": "VCID-hjrp-3yew-wqeg" }, { "vulnerability": "VCID-rpzc-ryw1-p7e5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/avahi@0.6.31-2" } ], "aliases": [ "CVE-2011-1002" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-b6c5-yjhz-x3hh" } ], "risk_score": "4.1", "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/avahi@0.6.31-2" }