Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/108246?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/108246?format=api", "purl": "pkg:deb/debian/xrdp@0.10.6-5?distro=trixie", "type": "deb", "namespace": "debian", "name": "xrdp", "version": "0.10.6-5", "qualifiers": { "distro": "trixie" }, "subpath": "", "is_vulnerable": false, "next_non_vulnerable_version": null, "latest_non_vulnerable_version": null, "affected_by_vulnerabilities": [], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/28202?format=api", "vulnerability_id": "VCID-2wrk-rnk9-63gr", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-33145", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00079", "scoring_system": "epss", "scoring_elements": "0.23489", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00079", "scoring_system": "epss", "scoring_elements": "0.23676", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00079", "scoring_system": "epss", "scoring_elements": "0.23695", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00079", "scoring_system": "epss", "scoring_elements": "0.23686", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-33145" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-33145", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-33145" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1134339", "reference_id": "1134339", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1134339" }, { "reference_url": "https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-rmvv-7633-fg7h", "reference_id": "GHSA-rmvv-7633-fg7h", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-22T03:55:37Z/" } ], "url": "https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-rmvv-7633-fg7h" }, { "reference_url": "https://github.com/neutrinolabs/xrdp/releases/tag/v0.10.6", "reference_id": "v0.10.6", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-22T03:55:37Z/" } ], "url": "https://github.com/neutrinolabs/xrdp/releases/tag/v0.10.6" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/108261?format=api", "purl": "pkg:deb/debian/xrdp@0.10.6-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108246?format=api", "purl": "pkg:deb/debian/xrdp@0.10.6-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.6-5%3Fdistro=trixie" } ], "aliases": [ "CVE-2026-33145" ], "risk_score": 2.9, "exploitability": "0.5", "weighted_severity": "5.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2wrk-rnk9-63gr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/11522?format=api", "vulnerability_id": "VCID-34sk-fudc-1fep", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-23481", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00292", "scoring_system": "epss", "scoring_elements": "0.52945", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00292", "scoring_system": "epss", "scoring_elements": "0.53074", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00292", "scoring_system": "epss", "scoring_elements": "0.53089", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00292", "scoring_system": "epss", "scoring_elements": "0.53072", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-23481" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23468", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23468" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23477", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23477" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23478", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23478" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23479", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23479" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23480", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23480" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23481", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23481" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23482", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23482" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23483", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23483" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23484", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23484" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23493", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23493" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1025879", "reference_id": "1025879", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1025879" }, { "reference_url": "https://usn.ubuntu.com/6474-1/", "reference_id": "USN-6474-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6474-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/108244?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1~deb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1~deb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108253?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108242?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108247?format=api", "purl": "pkg:deb/debian/xrdp@0.10.1-3.1%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.1-3.1%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108245?format=api", "purl": "pkg:deb/debian/xrdp@0.10.5-5?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.5-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108246?format=api", "purl": "pkg:deb/debian/xrdp@0.10.6-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.6-5%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-23481" ], "risk_score": 1.3, "exploitability": "0.5", "weighted_severity": "2.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-34sk-fudc-1fep" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/11542?format=api", "vulnerability_id": "VCID-4qzj-4p16-5bct", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-23613", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0038", "scoring_system": "epss", "scoring_elements": "0.59873", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.0038", "scoring_system": "epss", "scoring_elements": "0.59985", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.0038", "scoring_system": "epss", "scoring_elements": "0.59993", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.0038", "scoring_system": "epss", "scoring_elements": "0.59981", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-23613" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1005304", "reference_id": "1005304", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1005304" }, { "reference_url": "https://github.com/neutrinolabs/xrdp/commit/4def30ab8ea445cdc06832a44c3ec40a506a0ffa", "reference_id": "4def30ab8ea445cdc06832a44c3ec40a506a0ffa", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-23T15:56:26Z/" } ], "url": "https://github.com/neutrinolabs/xrdp/commit/4def30ab8ea445cdc06832a44c3ec40a506a0ffa" }, { "reference_url": "https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-8h98-h426-xf32", "reference_id": "GHSA-8h98-h426-xf32", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-23T15:56:26Z/" } ], "url": "https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-8h98-h426-xf32" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/K5ONRGARKHGFU2CIEQ7E6M6VJZEM5XWW/", "reference_id": "K5ONRGARKHGFU2CIEQ7E6M6VJZEM5XWW", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-23T15:56:26Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/K5ONRGARKHGFU2CIEQ7E6M6VJZEM5XWW/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U3XGFJNQMNXHBD3J7CBM4YURYEDXROWZ/", "reference_id": "U3XGFJNQMNXHBD3J7CBM4YURYEDXROWZ", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-23T15:56:26Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U3XGFJNQMNXHBD3J7CBM4YURYEDXROWZ/" }, { "reference_url": "https://usn.ubuntu.com/6474-1/", "reference_id": "USN-6474-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6474-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/108252?format=api", "purl": "pkg:deb/debian/xrdp@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108254?format=api", "purl": "pkg:deb/debian/xrdp@0.9.17-2.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.17-2.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108244?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1~deb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1~deb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108242?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108247?format=api", "purl": "pkg:deb/debian/xrdp@0.10.1-3.1%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.1-3.1%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108245?format=api", "purl": "pkg:deb/debian/xrdp@0.10.5-5?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.5-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108246?format=api", "purl": "pkg:deb/debian/xrdp@0.10.6-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.6-5%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-23613" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4qzj-4p16-5bct" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/28142?format=api", "vulnerability_id": "VCID-5kc1-3t9s-xqae", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-32107.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-32107.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-32107", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.06337", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.06351", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.0637", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.06359", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-32107" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-32107", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-32107" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1134339", "reference_id": "1134339", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1134339" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2459273", "reference_id": "2459273", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2459273" }, { "reference_url": "https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-p5m6-7m43-pjv9", "reference_id": "GHSA-p5m6-7m43-pjv9", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-20T15:41:27Z/" } ], "url": "https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-p5m6-7m43-pjv9" }, { "reference_url": "https://github.com/neutrinolabs/xrdp/releases/tag/v0.10.6", "reference_id": "v0.10.6", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-20T15:41:27Z/" } ], "url": "https://github.com/neutrinolabs/xrdp/releases/tag/v0.10.6" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/108261?format=api", "purl": "pkg:deb/debian/xrdp@0.10.6-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108246?format=api", "purl": "pkg:deb/debian/xrdp@0.10.6-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.6-5%3Fdistro=trixie" } ], "aliases": [ "CVE-2026-32107" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5kc1-3t9s-xqae" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/219320?format=api", "vulnerability_id": "VCID-5p4v-66ax-k3ap", "summary": "In the xrdp package (in branches through 3.14) for Alpine Linux, RDP sessions are vulnerable to man-in-the-middle attacks because pre-generated RSA certificates and private keys are used.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-36158", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00069", "scoring_system": "epss", "scoring_elements": "0.21333", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00069", "scoring_system": "epss", "scoring_elements": "0.21517", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00069", "scoring_system": "epss", "scoring_elements": "0.21531", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00069", "scoring_system": "epss", "scoring_elements": "0.21505", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-36158" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/108252?format=api", "purl": "pkg:deb/debian/xrdp@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108244?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1~deb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1~deb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108242?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108247?format=api", "purl": "pkg:deb/debian/xrdp@0.10.1-3.1%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.1-3.1%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108245?format=api", "purl": "pkg:deb/debian/xrdp@0.10.5-5?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.5-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108246?format=api", "purl": "pkg:deb/debian/xrdp@0.10.6-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.6-5%3Fdistro=trixie" } ], "aliases": [ "CVE-2021-36158" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5p4v-66ax-k3ap" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3764?format=api", "vulnerability_id": "VCID-6ptn-kzxm-tfge", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-6967", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.39752", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.39923", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.39947", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.39936", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-6967" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6967", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6967" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:S/C:P/I:P/A:N" }, { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=858143", "reference_id": "858143", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=858143" }, { "reference_url": "https://usn.ubuntu.com/USN-4815-1/", "reference_id": "USN-USN-4815-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/USN-4815-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/108250?format=api", "purl": "pkg:deb/debian/xrdp@0.9.1-9?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.1-9%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108244?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1~deb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1~deb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108242?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108247?format=api", "purl": "pkg:deb/debian/xrdp@0.10.1-3.1%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.1-3.1%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108245?format=api", "purl": "pkg:deb/debian/xrdp@0.10.5-5?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.5-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108246?format=api", "purl": "pkg:deb/debian/xrdp@0.10.6-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.6-5%3Fdistro=trixie" } ], "aliases": [ "CVE-2017-6967" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6ptn-kzxm-tfge" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/11520?format=api", "vulnerability_id": "VCID-8qrt-umab-ubes", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-23479", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00302", "scoring_system": "epss", "scoring_elements": "0.53887", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00302", "scoring_system": "epss", "scoring_elements": "0.54016", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00302", "scoring_system": "epss", "scoring_elements": "0.5403", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00302", "scoring_system": "epss", "scoring_elements": "0.54012", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-23479" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23468", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23468" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23477", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23477" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23478", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23478" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23479", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23479" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23480", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23480" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23481", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23481" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23482", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23482" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23483", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23483" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23484", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23484" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23493", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23493" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1025879", "reference_id": "1025879", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1025879" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5502", "reference_id": "dsa-5502", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:47:43Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5502" }, { "reference_url": "https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-pgx2-3fjj-fqqh", "reference_id": "GHSA-pgx2-3fjj-fqqh", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:47:43Z/" } ], "url": "https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-pgx2-3fjj-fqqh" }, { "reference_url": "https://usn.ubuntu.com/6474-1/", "reference_id": "USN-6474-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6474-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/108244?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1~deb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1~deb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108253?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108242?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108247?format=api", "purl": "pkg:deb/debian/xrdp@0.10.1-3.1%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.1-3.1%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108245?format=api", "purl": "pkg:deb/debian/xrdp@0.10.5-5?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.5-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108246?format=api", "purl": "pkg:deb/debian/xrdp@0.10.6-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.6-5%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-23479" ], "risk_score": 4.1, "exploitability": "0.5", "weighted_severity": "8.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8qrt-umab-ubes" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/26143?format=api", "vulnerability_id": "VCID-9147-hhe5-myed", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-68670", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00207", "scoring_system": "epss", "scoring_elements": "0.43053", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00207", "scoring_system": "epss", "scoring_elements": "0.43221", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00207", "scoring_system": "epss", "scoring_elements": "0.43229", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00207", "scoring_system": "epss", "scoring_elements": "0.43211", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-68670" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-68670", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-68670" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126537", "reference_id": "1126537", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126537" }, { "reference_url": "https://github.com/neutrinolabs/xrdp/commit/488c8c7d4d189514a366cd8301b6e816c5218ffa", "reference_id": "488c8c7d4d189514a366cd8301b6e816c5218ffa", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-01-27T17:02:02Z/" } ], "url": "https://github.com/neutrinolabs/xrdp/commit/488c8c7d4d189514a366cd8301b6e816c5218ffa" }, { "reference_url": "https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-rwvg-gp87-gh6f", "reference_id": "GHSA-rwvg-gp87-gh6f", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-01-27T17:02:02Z/" } ], "url": "https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-rwvg-gp87-gh6f" }, { "reference_url": "https://github.com/neutrinolabs/xrdp/releases/tag/v0.10.5", "reference_id": "v0.10.5", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-01-27T17:02:02Z/" } ], "url": "https://github.com/neutrinolabs/xrdp/releases/tag/v0.10.5" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/108244?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1~deb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1~deb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108259?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1~deb11u3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1~deb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108242?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108247?format=api", "purl": "pkg:deb/debian/xrdp@0.10.1-3.1%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.1-3.1%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108260?format=api", "purl": "pkg:deb/debian/xrdp@0.10.1-4.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.1-4.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108245?format=api", "purl": "pkg:deb/debian/xrdp@0.10.5-5?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.5-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108246?format=api", "purl": "pkg:deb/debian/xrdp@0.10.6-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.6-5%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-68670" ], "risk_score": 4.1, "exploitability": "0.5", "weighted_severity": "8.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9147-hhe5-myed" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3150?format=api", "vulnerability_id": "VCID-ae72-n9e8-m3gk", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-16927", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.2712", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27323", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27343", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27325", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-16927" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16927", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16927" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:N/I:N/A:C" }, { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=882463", "reference_id": "882463", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=882463" }, { "reference_url": "https://usn.ubuntu.com/USN-4815-1/", "reference_id": "USN-USN-4815-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/USN-4815-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/108249?format=api", "purl": "pkg:deb/debian/xrdp@0.9.4-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.4-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108244?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1~deb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1~deb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108242?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108247?format=api", "purl": "pkg:deb/debian/xrdp@0.10.1-3.1%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.1-3.1%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108245?format=api", "purl": "pkg:deb/debian/xrdp@0.10.5-5?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.5-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108246?format=api", "purl": "pkg:deb/debian/xrdp@0.10.6-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.6-5%3Fdistro=trixie" } ], "aliases": [ "CVE-2017-16927" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ae72-n9e8-m3gk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/11515?format=api", "vulnerability_id": "VCID-cb84-b72p-jkb4", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-23468", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00163", "scoring_system": "epss", "scoring_elements": "0.37092", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00163", "scoring_system": "epss", "scoring_elements": "0.37282", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00163", "scoring_system": "epss", "scoring_elements": "0.37296", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00163", "scoring_system": "epss", "scoring_elements": "0.37271", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-23468" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23468", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23468" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23477", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23477" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23478", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23478" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23479", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23479" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23480", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23480" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23481", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23481" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23482", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23482" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23483", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23483" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23484", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23484" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23493", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23493" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1025879", "reference_id": "1025879", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1025879" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5502", "reference_id": "dsa-5502", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:47:50Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5502" }, { "reference_url": "https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-8c2f-mw8m-qpx6", "reference_id": "GHSA-8c2f-mw8m-qpx6", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:47:50Z/" } ], "url": "https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-8c2f-mw8m-qpx6" }, { "reference_url": "https://usn.ubuntu.com/6474-1/", "reference_id": "USN-6474-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6474-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/108244?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1~deb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1~deb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108253?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108242?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108247?format=api", "purl": "pkg:deb/debian/xrdp@0.10.1-3.1%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.1-3.1%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108245?format=api", "purl": "pkg:deb/debian/xrdp@0.10.5-5?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.5-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108246?format=api", "purl": "pkg:deb/debian/xrdp@0.10.6-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.6-5%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-23468" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-cb84-b72p-jkb4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/28446?format=api", "vulnerability_id": "VCID-cnhk-fxjr-xudw", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-35512", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00557", "scoring_system": "epss", "scoring_elements": "0.68642", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00557", "scoring_system": "epss", "scoring_elements": "0.68744", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00557", "scoring_system": "epss", "scoring_elements": "0.68748", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00557", "scoring_system": "epss", "scoring_elements": "0.68735", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-35512" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-35512", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-35512" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1134339", "reference_id": "1134339", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1134339" }, { "reference_url": "https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-jg6p-7fg8-9hh6", "reference_id": "GHSA-jg6p-7fg8-9hh6", "reference_type": "", "scores": [ { "value": "8.7", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-20T15:35:56Z/" } ], "url": "https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-jg6p-7fg8-9hh6" }, { "reference_url": "https://github.com/neutrinolabs/xrdp/releases/tag/v0.10.6", "reference_id": "v0.10.6", "reference_type": "", "scores": [ { "value": "8.7", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-20T15:35:56Z/" } ], "url": "https://github.com/neutrinolabs/xrdp/releases/tag/v0.10.6" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/108261?format=api", "purl": "pkg:deb/debian/xrdp@0.10.6-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108246?format=api", "purl": "pkg:deb/debian/xrdp@0.10.6-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.6-5%3Fdistro=trixie" } ], "aliases": [ "CVE-2026-35512" ], "risk_score": 3.9, "exploitability": "0.5", "weighted_severity": "7.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-cnhk-fxjr-xudw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/201282?format=api", "vulnerability_id": "VCID-cwdd-2x13-73f2", "summary": "Array index error in the xrdp_bitmap_def_proc function in xrdp/funcs.c in xrdp 0.4.1 and earlier allows remote attackers to execute arbitrary code via vectors that manipulate the value of the edit_pos structure member.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2008-5903", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02008", "scoring_system": "epss", "scoring_elements": "0.84072", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.02008", "scoring_system": "epss", "scoring_elements": "0.84129", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.02008", "scoring_system": "epss", "scoring_elements": "0.84137", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.02008", "scoring_system": "epss", "scoring_elements": "0.84132", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2008-5903" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5903", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5903" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=511641", "reference_id": "511641", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=511641" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/108243?format=api", "purl": "pkg:deb/debian/xrdp@0.4.0~dfsg-9?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.4.0~dfsg-9%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108244?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1~deb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1~deb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108242?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108247?format=api", "purl": "pkg:deb/debian/xrdp@0.10.1-3.1%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.1-3.1%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108245?format=api", "purl": "pkg:deb/debian/xrdp@0.10.5-5?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.5-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108246?format=api", "purl": "pkg:deb/debian/xrdp@0.10.6-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.6-5%3Fdistro=trixie" } ], "aliases": [ "CVE-2008-5903" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-cwdd-2x13-73f2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/11525?format=api", "vulnerability_id": "VCID-d2vp-m9mw-hfeb", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-23484", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00302", "scoring_system": "epss", "scoring_elements": "0.53887", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00302", "scoring_system": "epss", "scoring_elements": "0.54016", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00302", "scoring_system": "epss", "scoring_elements": "0.5403", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00302", "scoring_system": "epss", "scoring_elements": "0.54012", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-23484" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23468", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23468" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23477", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23477" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23478", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23478" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23479", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23479" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23480", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23480" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23481", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23481" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23482", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23482" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23483", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23483" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23484", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23484" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23493", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23493" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1025879", "reference_id": "1025879", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1025879" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5502", "reference_id": "dsa-5502", "reference_type": "", "scores": [ { "value": "8.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:47:23Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5502" }, { "reference_url": "https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-rqfx-5fv8-q9c6", "reference_id": "GHSA-rqfx-5fv8-q9c6", "reference_type": "", "scores": [ { "value": "8.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:47:23Z/" } ], "url": "https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-rqfx-5fv8-q9c6" }, { "reference_url": "https://usn.ubuntu.com/6474-1/", "reference_id": "USN-6474-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6474-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/108244?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1~deb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1~deb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108253?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108242?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108247?format=api", "purl": "pkg:deb/debian/xrdp@0.10.1-3.1%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.1-3.1%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108245?format=api", "purl": "pkg:deb/debian/xrdp@0.10.5-5?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.5-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108246?format=api", "purl": "pkg:deb/debian/xrdp@0.10.6-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.6-5%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-23484" ], "risk_score": 3.7, "exploitability": "0.5", "weighted_severity": "7.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-d2vp-m9mw-hfeb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/11519?format=api", "vulnerability_id": "VCID-drpw-15rq-b3bt", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-23478", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00302", "scoring_system": "epss", "scoring_elements": "0.53887", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00302", "scoring_system": "epss", "scoring_elements": "0.54016", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00302", "scoring_system": "epss", "scoring_elements": "0.5403", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00302", "scoring_system": "epss", "scoring_elements": "0.54012", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-23478" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23468", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23468" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23477", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23477" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23478", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23478" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23479", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23479" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23480", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23480" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23481", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23481" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23482", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23482" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23483", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23483" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23484", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23484" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23493", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23493" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1025879", "reference_id": "1025879", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1025879" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5502", "reference_id": "dsa-5502", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:47:47Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5502" }, { "reference_url": "https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-2f49-wwpm-78pj", "reference_id": "GHSA-2f49-wwpm-78pj", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:47:47Z/" } ], "url": "https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-2f49-wwpm-78pj" }, { "reference_url": "https://usn.ubuntu.com/6474-1/", "reference_id": "USN-6474-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6474-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/108244?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1~deb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1~deb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108253?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108242?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108247?format=api", "purl": "pkg:deb/debian/xrdp@0.10.1-3.1%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.1-3.1%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108245?format=api", "purl": "pkg:deb/debian/xrdp@0.10.5-5?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.5-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108246?format=api", "purl": "pkg:deb/debian/xrdp@0.10.6-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.6-5%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-23478" ], "risk_score": 4.1, "exploitability": "0.5", "weighted_severity": "8.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-drpw-15rq-b3bt" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/11527?format=api", "vulnerability_id": "VCID-f69f-ta5e-f7dr", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-23493", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00404", "scoring_system": "epss", "scoring_elements": "0.61365", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00404", "scoring_system": "epss", "scoring_elements": "0.61473", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00404", "scoring_system": "epss", "scoring_elements": "0.61477", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00404", "scoring_system": "epss", "scoring_elements": "0.61469", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-23493" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23468", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23468" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23477", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23477" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23478", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23478" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23479", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23479" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23480", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23480" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23481", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23481" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23482", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23482" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23483", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23483" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23484", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23484" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23493", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23493" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1025879", "reference_id": "1025879", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1025879" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5502", "reference_id": "dsa-5502", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:47:55Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5502" }, { "reference_url": "https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-59wp-3wq6-jh5v", "reference_id": "GHSA-59wp-3wq6-jh5v", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:47:55Z/" } ], "url": "https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-59wp-3wq6-jh5v" }, { "reference_url": "https://usn.ubuntu.com/6474-1/", "reference_id": "USN-6474-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6474-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/108244?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1~deb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1~deb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108253?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108242?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108247?format=api", "purl": "pkg:deb/debian/xrdp@0.10.1-3.1%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.1-3.1%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108245?format=api", "purl": "pkg:deb/debian/xrdp@0.10.5-5?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.5-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108246?format=api", "purl": "pkg:deb/debian/xrdp@0.10.6-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.6-5%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-23493" ], "risk_score": 4.1, "exploitability": "0.5", "weighted_severity": "8.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-f69f-ta5e-f7dr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/15874?format=api", "vulnerability_id": "VCID-f6ky-rtej-7qdt", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-42822", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00309", "scoring_system": "epss", "scoring_elements": "0.54489", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00309", "scoring_system": "epss", "scoring_elements": "0.54631", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00309", "scoring_system": "epss", "scoring_elements": "0.54615", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-42822" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-42822", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-42822" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1053284", "reference_id": "1053284", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1053284" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5FPGA4M7IYCP7OILDF2ZJEVSXUOFEFQ6/", "reference_id": "5FPGA4M7IYCP7OILDF2ZJEVSXUOFEFQ6", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-23T14:30:39Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5FPGA4M7IYCP7OILDF2ZJEVSXUOFEFQ6/" }, { "reference_url": "https://github.com/neutrinolabs/xrdp/commit/73acbe1f7957c65122b00de4d6f57a8d0d257c40", "reference_id": "73acbe1f7957c65122b00de4d6f57a8d0d257c40", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-23T14:30:39Z/" } ], "url": "https://github.com/neutrinolabs/xrdp/commit/73acbe1f7957c65122b00de4d6f57a8d0d257c40" }, { "reference_url": "https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-2hjx-rm4f-r9hw", "reference_id": "GHSA-2hjx-rm4f-r9hw", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-23T14:30:39Z/" } ], "url": "https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-2hjx-rm4f-r9hw" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PFGL22QQF65OIZRMCKUZCVJQCKGUBRYE/", "reference_id": "PFGL22QQF65OIZRMCKUZCVJQCKGUBRYE", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-23T14:30:39Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PFGL22QQF65OIZRMCKUZCVJQCKGUBRYE/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RTXODUR4ILM7ZPA6ZGY6VSK4BBSBMKGY/", "reference_id": "RTXODUR4ILM7ZPA6ZGY6VSK4BBSBMKGY", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-23T14:30:39Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RTXODUR4ILM7ZPA6ZGY6VSK4BBSBMKGY/" }, { "reference_url": "https://usn.ubuntu.com/6474-1/", "reference_id": "USN-6474-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6474-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/108244?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1~deb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1~deb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108256?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1~deb11u2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1~deb11u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108255?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1%2Bdeb12u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108242?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108257?format=api", "purl": "pkg:deb/debian/xrdp@0.9.24-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.24-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108247?format=api", "purl": "pkg:deb/debian/xrdp@0.10.1-3.1%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.1-3.1%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108245?format=api", "purl": "pkg:deb/debian/xrdp@0.10.5-5?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.5-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108246?format=api", "purl": "pkg:deb/debian/xrdp@0.10.6-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.6-5%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-42822" ], "risk_score": 2.0, "exploitability": "0.5", "weighted_severity": "4.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-f6ky-rtej-7qdt" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/19827?format=api", "vulnerability_id": "VCID-f71p-s4f4-h7bs", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-39917", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00153", "scoring_system": "epss", "scoring_elements": "0.35743", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00153", "scoring_system": "epss", "scoring_elements": "0.35932", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00153", "scoring_system": "epss", "scoring_elements": "0.35946", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00153", "scoring_system": "epss", "scoring_elements": "0.35923", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-39917" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39917", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39917" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1076769", "reference_id": "1076769", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1076769" }, { "reference_url": "https://github.com/neutrinolabs/xrdp/commit/19c111c74c913ecc6e4ba9a738ed929a79d2ae8f", "reference_id": "19c111c74c913ecc6e4ba9a738ed929a79d2ae8f", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-07-12T15:43:14Z/" } ], "url": "https://github.com/neutrinolabs/xrdp/commit/19c111c74c913ecc6e4ba9a738ed929a79d2ae8f" }, { "reference_url": "https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-7w22-h4w7-8j5j", "reference_id": "GHSA-7w22-h4w7-8j5j", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-07-12T15:43:14Z/" } ], "url": "https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-7w22-h4w7-8j5j" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/108244?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1~deb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1~deb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108256?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1~deb11u2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1~deb11u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108255?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1%2Bdeb12u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108242?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108258?format=api", "purl": "pkg:deb/debian/xrdp@0.10.1-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.1-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108247?format=api", "purl": "pkg:deb/debian/xrdp@0.10.1-3.1%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.1-3.1%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108245?format=api", "purl": "pkg:deb/debian/xrdp@0.10.5-5?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.5-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108246?format=api", "purl": "pkg:deb/debian/xrdp@0.10.6-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.6-5%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-39917" ], "risk_score": 3.2, "exploitability": "0.5", "weighted_severity": "6.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-f71p-s4f4-h7bs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/28141?format=api", "vulnerability_id": "VCID-j5zb-bh33-fbck", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-32105.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-32105.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-32105", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00048", "scoring_system": "epss", "scoring_elements": "0.15573", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00048", "scoring_system": "epss", "scoring_elements": "0.15459", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00048", "scoring_system": "epss", "scoring_elements": "0.15595", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00048", "scoring_system": "epss", "scoring_elements": "0.15607", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-32105" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-32105", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-32105" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1134339", "reference_id": "1134339", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1134339" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2459272", "reference_id": "2459272", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2459272" }, { "reference_url": "https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-j2jm-c596-c5q3", "reference_id": "GHSA-j2jm-c596-c5q3", "reference_type": "", "scores": [ { "value": "9.3", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:L/SC:H/SI:H/SA:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-20T16:22:40Z/" } ], "url": "https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-j2jm-c596-c5q3" }, { "reference_url": "https://github.com/neutrinolabs/xrdp/releases/tag/v0.10.6", "reference_id": "v0.10.6", "reference_type": "", "scores": [ { "value": "9.3", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:L/SC:H/SI:H/SA:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-20T16:22:40Z/" } ], "url": "https://github.com/neutrinolabs/xrdp/releases/tag/v0.10.6" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/108261?format=api", "purl": "pkg:deb/debian/xrdp@0.10.6-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108246?format=api", "purl": "pkg:deb/debian/xrdp@0.10.6-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.6-5%3Fdistro=trixie" } ], "aliases": [ "CVE-2026-32105" ], "risk_score": 4.2, "exploitability": "0.5", "weighted_severity": "8.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-j5zb-bh33-fbck" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/201283?format=api", "vulnerability_id": "VCID-jnc5-gf8s-w3hm", "summary": "The rdp_rdp_process_color_pointer_pdu function in rdp/rdp_rdp.c in xrdp 0.4.1 and earlier allows remote RDP servers to have an unknown impact via input data that sets crafted values for certain length variables, leading to a buffer overflow.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2008-5904", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02817", "scoring_system": "epss", "scoring_elements": "0.86467", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.02817", "scoring_system": "epss", "scoring_elements": "0.86517", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.02817", "scoring_system": "epss", "scoring_elements": "0.86527", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.02817", "scoring_system": "epss", "scoring_elements": "0.86525", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2008-5904" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5904", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5904" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=511641", "reference_id": "511641", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=511641" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/8469.c", "reference_id": "OSVDB-53313;CVE-2008-5904", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/8469.c" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/108243?format=api", "purl": "pkg:deb/debian/xrdp@0.4.0~dfsg-9?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.4.0~dfsg-9%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108244?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1~deb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1~deb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108242?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108247?format=api", "purl": "pkg:deb/debian/xrdp@0.10.1-3.1%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.1-3.1%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108245?format=api", "purl": "pkg:deb/debian/xrdp@0.10.5-5?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.5-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108246?format=api", "purl": "pkg:deb/debian/xrdp@0.10.6-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.6-5%3Fdistro=trixie" } ], "aliases": [ "CVE-2008-5904" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jnc5-gf8s-w3hm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/28163?format=api", "vulnerability_id": "VCID-mcen-quwe-pffs", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-32624", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00111", "scoring_system": "epss", "scoring_elements": "0.29134", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00111", "scoring_system": "epss", "scoring_elements": "0.29345", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00111", "scoring_system": "epss", "scoring_elements": "0.29357", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00111", "scoring_system": "epss", "scoring_elements": "0.29334", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-32624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-32624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-32624" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1134339", "reference_id": "1134339", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1134339" }, { "reference_url": "https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-7q2g-6fjr-h6pp", "reference_id": "GHSA-7q2g-6fjr-h6pp", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-20T16:22:06Z/" } ], "url": "https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-7q2g-6fjr-h6pp" }, { "reference_url": "https://github.com/neutrinolabs/xrdp/releases/tag/v0.10.6", "reference_id": "v0.10.6", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-20T16:22:06Z/" } ], "url": "https://github.com/neutrinolabs/xrdp/releases/tag/v0.10.6" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/108261?format=api", "purl": "pkg:deb/debian/xrdp@0.10.6-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108246?format=api", "purl": "pkg:deb/debian/xrdp@0.10.6-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.6-5%3Fdistro=trixie" } ], "aliases": [ "CVE-2026-32624" ], "risk_score": 2.9, "exploitability": "0.5", "weighted_severity": "5.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mcen-quwe-pffs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/11518?format=api", "vulnerability_id": "VCID-mv94-ab4v-qufu", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-23477", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00252", "scoring_system": "epss", "scoring_elements": "0.48845", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00252", "scoring_system": "epss", "scoring_elements": "0.48983", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00252", "scoring_system": "epss", "scoring_elements": "0.48998", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00252", "scoring_system": "epss", "scoring_elements": "0.48981", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-23477" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23468", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23468" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23477", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23477" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23478", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23478" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23479", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23479" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23480", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23480" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23481", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23481" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23482", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23482" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23483", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23483" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23484", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23484" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23493", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23493" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1025879", "reference_id": "1025879", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1025879" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5502", "reference_id": "dsa-5502", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:47:20Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5502" }, { "reference_url": "https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-hqw2-jx2c-wrr2", "reference_id": "GHSA-hqw2-jx2c-wrr2", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:47:20Z/" } ], "url": "https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-hqw2-jx2c-wrr2" }, { "reference_url": "https://usn.ubuntu.com/6474-1/", "reference_id": "USN-6474-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6474-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/108244?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1~deb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1~deb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108253?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108242?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108247?format=api", "purl": "pkg:deb/debian/xrdp@0.10.1-3.1%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.1-3.1%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108245?format=api", "purl": "pkg:deb/debian/xrdp@0.10.5-5?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.5-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108246?format=api", "purl": "pkg:deb/debian/xrdp@0.10.6-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.6-5%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-23477" ], "risk_score": 4.1, "exploitability": "0.5", "weighted_severity": "8.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mv94-ab4v-qufu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/11523?format=api", "vulnerability_id": "VCID-paf7-f3gr-2ybw", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-23482", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00187", "scoring_system": "epss", "scoring_elements": "0.40355", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00187", "scoring_system": "epss", "scoring_elements": "0.40523", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00187", "scoring_system": "epss", "scoring_elements": "0.40546", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00187", "scoring_system": "epss", "scoring_elements": "0.40535", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-23482" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23468", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23468" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23477", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23477" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23478", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23478" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23479", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23479" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23480", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23480" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23481", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23481" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23482", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23482" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23483", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23483" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23484", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23484" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23493", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23493" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1025879", "reference_id": "1025879", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1025879" }, { "reference_url": "https://usn.ubuntu.com/6474-1/", "reference_id": "USN-6474-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6474-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/108244?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1~deb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1~deb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108253?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108242?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108247?format=api", "purl": "pkg:deb/debian/xrdp@0.10.1-3.1%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.1-3.1%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108245?format=api", "purl": "pkg:deb/debian/xrdp@0.10.5-5?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.5-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108246?format=api", "purl": "pkg:deb/debian/xrdp@0.10.6-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.6-5%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-23482" ], "risk_score": 1.3, "exploitability": "0.5", "weighted_severity": "2.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-paf7-f3gr-2ybw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/28254?format=api", "vulnerability_id": "VCID-pgbe-s7e7-tffm", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-33516", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00117", "scoring_system": "epss", "scoring_elements": "0.30033", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00117", "scoring_system": "epss", "scoring_elements": "0.30227", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00117", "scoring_system": "epss", "scoring_elements": "0.30246", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00117", "scoring_system": "epss", "scoring_elements": "0.3023", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-33516" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-33516", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-33516" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1134339", "reference_id": "1134339", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1134339" }, { "reference_url": "https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-rvh9-9wm3-28c7", "reference_id": "GHSA-rvh9-9wm3-28c7", "reference_type": "", "scores": [ { "value": "7.7", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-20T15:42:34Z/" } ], "url": "https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-rvh9-9wm3-28c7" }, { "reference_url": "https://github.com/neutrinolabs/xrdp/releases/tag/v0.10.6", "reference_id": "v0.10.6", "reference_type": "", "scores": [ { "value": "7.7", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-20T15:42:34Z/" } ], "url": "https://github.com/neutrinolabs/xrdp/releases/tag/v0.10.6" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/108261?format=api", "purl": "pkg:deb/debian/xrdp@0.10.6-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108246?format=api", "purl": "pkg:deb/debian/xrdp@0.10.6-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.6-5%3Fdistro=trixie" } ], "aliases": [ "CVE-2026-33516" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "6.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-pgbe-s7e7-tffm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/15763?format=api", "vulnerability_id": "VCID-qgx1-pk3h-xff2", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-40184", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18565", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18722", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18746", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18729", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-40184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40184" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1051061", "reference_id": "1051061", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1051061" }, { "reference_url": "https://github.com/neutrinolabs/xrdp/commit/a111a0fdfe2421ef600e40708b5f0168594cfb23", "reference_id": "a111a0fdfe2421ef600e40708b5f0168594cfb23", "reference_type": "", "scores": [ { "value": "2.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:44:59Z/" } ], "url": "https://github.com/neutrinolabs/xrdp/commit/a111a0fdfe2421ef600e40708b5f0168594cfb23" }, { "reference_url": "https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-f489-557v-47jq", "reference_id": "GHSA-f489-557v-47jq", "reference_type": "", "scores": [ { "value": "2.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:44:59Z/" } ], "url": "https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-f489-557v-47jq" }, { "reference_url": "https://github.com/neutrinolabs/xrdp/blame/9bbb2ec68f390504c32f2062847aa3d821a0089a/sesman/sesexec/session.c#L571C5-L571C19", "reference_id": "session.c#L571C5-L571C19", "reference_type": "", "scores": [ { "value": "2.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:44:59Z/" } ], "url": "https://github.com/neutrinolabs/xrdp/blame/9bbb2ec68f390504c32f2062847aa3d821a0089a/sesman/sesexec/session.c#L571C5-L571C19" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SOT237TIHTHPX5YNIWLVNINOEYC7WMG2/", "reference_id": "SOT237TIHTHPX5YNIWLVNINOEYC7WMG2", "reference_type": "", "scores": [ { "value": "2.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:44:59Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SOT237TIHTHPX5YNIWLVNINOEYC7WMG2/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U5IXMQODV3OIJ7DRQBUQV7PUKNT7SH36/", "reference_id": "U5IXMQODV3OIJ7DRQBUQV7PUKNT7SH36", "reference_type": "", "scores": [ { "value": "2.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:44:59Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U5IXMQODV3OIJ7DRQBUQV7PUKNT7SH36/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/URO3FKTFBPNKFARAQBEJLI4MH6YS35P5/", "reference_id": "URO3FKTFBPNKFARAQBEJLI4MH6YS35P5", "reference_type": "", "scores": [ { "value": "2.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:44:59Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/URO3FKTFBPNKFARAQBEJLI4MH6YS35P5/" }, { "reference_url": "https://usn.ubuntu.com/6474-1/", "reference_id": "USN-6474-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6474-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/108244?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1~deb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1~deb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108256?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1~deb11u2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1~deb11u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108255?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1%2Bdeb12u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108242?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108257?format=api", "purl": "pkg:deb/debian/xrdp@0.9.24-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.24-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108247?format=api", "purl": "pkg:deb/debian/xrdp@0.10.1-3.1%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.1-3.1%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108245?format=api", "purl": "pkg:deb/debian/xrdp@0.10.5-5?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.5-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108246?format=api", "purl": "pkg:deb/debian/xrdp@0.10.6-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.6-5%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-40184" ], "risk_score": 1.2, "exploitability": "0.5", "weighted_severity": "2.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qgx1-pk3h-xff2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/28162?format=api", "vulnerability_id": "VCID-tk2v-9d31-budv", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-32623", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00279", "scoring_system": "epss", "scoring_elements": "0.51596", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00279", "scoring_system": "epss", "scoring_elements": "0.51723", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00279", "scoring_system": "epss", "scoring_elements": "0.51737", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00279", "scoring_system": "epss", "scoring_elements": "0.51726", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-32623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-32623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-32623" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1134339", "reference_id": "1134339", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1134339" }, { "reference_url": "https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-phw3-qp59-x2v4", "reference_id": "GHSA-phw3-qp59-x2v4", "reference_type": "", "scores": [ { "value": "7.7", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-18T03:00:19Z/" } ], "url": "https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-phw3-qp59-x2v4" }, { "reference_url": "https://github.com/neutrinolabs/xrdp/releases/tag/v0.10.6", "reference_id": "v0.10.6", "reference_type": "", "scores": [ { "value": "7.7", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-18T03:00:19Z/" } ], "url": "https://github.com/neutrinolabs/xrdp/releases/tag/v0.10.6" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/108261?format=api", "purl": "pkg:deb/debian/xrdp@0.10.6-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108246?format=api", "purl": "pkg:deb/debian/xrdp@0.10.6-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.6-5%3Fdistro=trixie" } ], "aliases": [ "CVE-2026-32623" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "6.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-tk2v-9d31-budv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/28267?format=api", "vulnerability_id": "VCID-tm7u-v93n-kygt", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-33689", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.39699", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.39883", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.39894", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.3987", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-33689" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-33689", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-33689" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1134339", "reference_id": "1134339", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1134339" }, { "reference_url": "https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-92mr-6wpp-27jj", "reference_id": "GHSA-92mr-6wpp-27jj", "reference_type": "", "scores": [ { "value": "8.7", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-20T16:21:30Z/" } ], "url": "https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-92mr-6wpp-27jj" }, { "reference_url": "https://github.com/neutrinolabs/xrdp/releases/tag/v0.10.6", "reference_id": "v0.10.6", "reference_type": "", "scores": [ { "value": "8.7", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-20T16:21:30Z/" } ], "url": "https://github.com/neutrinolabs/xrdp/releases/tag/v0.10.6" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/108261?format=api", "purl": "pkg:deb/debian/xrdp@0.10.6-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108246?format=api", "purl": "pkg:deb/debian/xrdp@0.10.6-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.6-5%3Fdistro=trixie" } ], "aliases": [ "CVE-2026-33689" ], "risk_score": 3.9, "exploitability": "0.5", "weighted_severity": "7.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-tm7u-v93n-kygt" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/11524?format=api", "vulnerability_id": "VCID-v4hg-vbhz-5ubu", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-23483", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00396", "scoring_system": "epss", "scoring_elements": "0.60883", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00396", "scoring_system": "epss", "scoring_elements": "0.60996", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00396", "scoring_system": "epss", "scoring_elements": "0.60999", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00396", "scoring_system": "epss", "scoring_elements": "0.6099", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-23483" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23468", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23468" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23477", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23477" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23478", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23478" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23479", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23479" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23480", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23480" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23481", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23481" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23482", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23482" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23483", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23483" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23484", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23484" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23493", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23493" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1025879", "reference_id": "1025879", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1025879" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5502", "reference_id": "dsa-5502", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:47:27Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5502" }, { "reference_url": "https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-38rw-9ch2-fcxq", "reference_id": "GHSA-38rw-9ch2-fcxq", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:47:27Z/" } ], "url": "https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-38rw-9ch2-fcxq" }, { "reference_url": "https://usn.ubuntu.com/6474-1/", "reference_id": "USN-6474-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6474-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/108244?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1~deb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1~deb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108253?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108242?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108247?format=api", "purl": "pkg:deb/debian/xrdp@0.10.1-3.1%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.1-3.1%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108245?format=api", "purl": "pkg:deb/debian/xrdp@0.10.5-5?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.5-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108246?format=api", "purl": "pkg:deb/debian/xrdp@0.10.6-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.6-5%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-23483" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-v4hg-vbhz-5ubu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/103?format=api", "vulnerability_id": "VCID-vwhr-2q11-3yf4", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-1430", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00349", "scoring_system": "epss", "scoring_elements": "0.57798", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00349", "scoring_system": "epss", "scoring_elements": "0.5791", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00349", "scoring_system": "epss", "scoring_elements": "0.57926", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00349", "scoring_system": "epss", "scoring_elements": "0.57916", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-1430" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1430", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1430" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "1.5", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:S/C:P/I:N/A:N" }, { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/108248?format=api", "purl": "pkg:deb/debian/xrdp@0.9.1~2016121126%2Bgit5171fa7-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.1~2016121126%252Bgit5171fa7-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108244?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1~deb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1~deb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108242?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108247?format=api", "purl": "pkg:deb/debian/xrdp@0.10.1-3.1%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.1-3.1%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108245?format=api", "purl": "pkg:deb/debian/xrdp@0.10.5-5?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.5-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108246?format=api", "purl": "pkg:deb/debian/xrdp@0.10.6-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.6-5%3Fdistro=trixie" } ], "aliases": [ "CVE-2013-1430" ], "risk_score": 0.8, "exploitability": "0.5", "weighted_severity": "1.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vwhr-2q11-3yf4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/201281?format=api", "vulnerability_id": "VCID-wkrb-gup4-y7fx", "summary": "Buffer overflow in the xrdp_bitmap_invalidate function in xrdp/xrdp_bitmap.c in xrdp 0.4.1 and earlier allows remote attackers to execute arbitrary code via a crafted request.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2008-5902", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02593", "scoring_system": "epss", "scoring_elements": "0.85921", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.02593", "scoring_system": "epss", "scoring_elements": "0.8597", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.02593", "scoring_system": "epss", "scoring_elements": "0.8598", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.02593", "scoring_system": "epss", "scoring_elements": "0.85973", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2008-5902" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5902", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5902" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=511641", "reference_id": "511641", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=511641" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/108243?format=api", "purl": "pkg:deb/debian/xrdp@0.4.0~dfsg-9?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.4.0~dfsg-9%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108244?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1~deb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1~deb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108242?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108247?format=api", "purl": "pkg:deb/debian/xrdp@0.10.1-3.1%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.1-3.1%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108245?format=api", "purl": "pkg:deb/debian/xrdp@0.10.5-5?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.5-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108246?format=api", "purl": "pkg:deb/debian/xrdp@0.10.6-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.6-5%3Fdistro=trixie" } ], "aliases": [ "CVE-2008-5902" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wkrb-gup4-y7fx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/8669?format=api", "vulnerability_id": "VCID-wuu2-pqj2-ffbq", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-4044", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00615", "scoring_system": "epss", "scoring_elements": "0.70378", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00615", "scoring_system": "epss", "scoring_elements": "0.70468", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00615", "scoring_system": "epss", "scoring_elements": "0.70482", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00615", "scoring_system": "epss", "scoring_elements": "0.7048", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-4044" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-4044", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-4044" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=964573", "reference_id": "964573", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=964573" }, { "reference_url": "https://usn.ubuntu.com/6469-1/", "reference_id": "USN-6469-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6469-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/108251?format=api", "purl": "pkg:deb/debian/xrdp@0.9.12-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.12-1.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108244?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1~deb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1~deb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108242?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108247?format=api", "purl": "pkg:deb/debian/xrdp@0.10.1-3.1%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.1-3.1%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108245?format=api", "purl": "pkg:deb/debian/xrdp@0.10.5-5?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.5-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108246?format=api", "purl": "pkg:deb/debian/xrdp@0.10.6-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.6-5%3Fdistro=trixie" } ], "aliases": [ "CVE-2020-4044" ], "risk_score": 1.8, "exploitability": "0.5", "weighted_severity": "3.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wuu2-pqj2-ffbq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/11521?format=api", "vulnerability_id": "VCID-xge6-9hej-q3ha", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-23480", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00302", "scoring_system": "epss", "scoring_elements": "0.53887", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00302", "scoring_system": "epss", "scoring_elements": "0.54016", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00302", "scoring_system": "epss", "scoring_elements": "0.5403", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00302", "scoring_system": "epss", "scoring_elements": "0.54012", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-23480" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23468", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23468" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23477", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23477" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23478", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23478" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23479", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23479" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23480", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23480" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23481", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23481" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23482", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23482" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23483", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23483" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23484", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23484" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23493", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23493" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1025879", "reference_id": "1025879", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1025879" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5502", "reference_id": "dsa-5502", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:47:40Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5502" }, { "reference_url": "https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-3jmx-f6hv-95wg", "reference_id": "GHSA-3jmx-f6hv-95wg", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:47:40Z/" } ], "url": "https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-3jmx-f6hv-95wg" }, { "reference_url": "https://usn.ubuntu.com/6474-1/", "reference_id": "USN-6474-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6474-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/108244?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1~deb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1~deb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108253?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108242?format=api", "purl": "pkg:deb/debian/xrdp@0.9.21.1-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.9.21.1-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108247?format=api", "purl": "pkg:deb/debian/xrdp@0.10.1-3.1%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.1-3.1%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108245?format=api", "purl": "pkg:deb/debian/xrdp@0.10.5-5?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2wrk-rnk9-63gr" }, { "vulnerability": "VCID-5kc1-3t9s-xqae" }, { "vulnerability": "VCID-cnhk-fxjr-xudw" }, { "vulnerability": "VCID-j5zb-bh33-fbck" }, { "vulnerability": "VCID-mcen-quwe-pffs" }, { "vulnerability": "VCID-pgbe-s7e7-tffm" }, { "vulnerability": "VCID-tk2v-9d31-budv" }, { "vulnerability": "VCID-tm7u-v93n-kygt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.5-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/108246?format=api", "purl": "pkg:deb/debian/xrdp@0.10.6-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.6-5%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-23480" ], "risk_score": 4.1, "exploitability": "0.5", "weighted_severity": "8.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xge6-9hej-q3ha" } ], "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xrdp@0.10.6-5%3Fdistro=trixie" }