Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:rpm/redhat/libpng@2:1.2.7-3.el4_8?arch=3

Type rpm

Namespace redhat

Name libpng

Version 2:1.2.7-3.el4_8

Qualifiers

arch	3

Subpath

Is_vulnerable true

Next_non_vulnerable_version null

Latest_non_vulnerable_version null

Affected_by_vulnerabilities

url VCID-1j6j-upj4-37hk

vulnerability_id VCID-1j6j-upj4-37hk

summary

A vulnerability has been discovered in libpng that allows for information
    disclosure.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2042.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2042.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2009-2042

reference_id

reference_type

scores

value	0.03106
scoring_system	epss
scoring_elements	0.86818
published_at	2026-04-12T12:55:00Z

value	0.03106
scoring_system	epss
scoring_elements	0.86814
published_at	2026-04-13T12:55:00Z

value	0.03147
scoring_system	epss
scoring_elements	0.86864
published_at	2026-04-04T12:55:00Z

value	0.03147
scoring_system	epss
scoring_elements	0.86858
published_at	2026-04-07T12:55:00Z

value	0.03147
scoring_system	epss
scoring_elements	0.86835
published_at	2026-04-01T12:55:00Z

value	0.03147
scoring_system	epss
scoring_elements	0.86886
published_at	2026-04-09T12:55:00Z

value	0.03147
scoring_system	epss
scoring_elements	0.86899
published_at	2026-04-11T12:55:00Z

value	0.03147
scoring_system	epss
scoring_elements	0.86878
published_at	2026-04-08T12:55:00Z

value	0.03147
scoring_system	epss
scoring_elements	0.86845
published_at	2026-04-02T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2009-2042

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=504782
reference_id	504782
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=504782

reference_url	https://security.gentoo.org/glsa/200906-01
reference_id	GLSA-200906-01
reference_type
scores
url	https://security.gentoo.org/glsa/200906-01

reference_url	https://security.gentoo.org/glsa/201412-08
reference_id	GLSA-201412-08
reference_type
scores
url	https://security.gentoo.org/glsa/201412-08

reference_url	https://access.redhat.com/errata/RHSA-2010:0534
reference_id	RHSA-2010:0534
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2010:0534

reference_url	https://usn.ubuntu.com/913-1/
reference_id	USN-913-1
reference_type
scores
url	https://usn.ubuntu.com/913-1/

fixed_packages

aliases CVE-2009-2042

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1j6j-upj4-37hk

url

VCID-d5tt-4fbc-m7ar

vulnerability_id

VCID-d5tt-4fbc-m7ar

summary

Uncontrolled Resource Consumption
The png_decompress_chunk function in pngrutil.c in libpng  does not properly handle compressed ancillary-chunk data that has a disproportionately large uncompressed representation, which allows remote attackers to cause a denial of service (memory and CPU consumption, and application hang) via a crafted PNG file, as demonstrated by use of the deflate compression method on data composed of many occurrences of the same character, related to a "decompression bomb" attack.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-0205.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-0205.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2010-0205

reference_id

reference_type

scores

value	0.04579
scoring_system	epss
scoring_elements	0.89221
published_at	2026-04-12T12:55:00Z

value	0.04579
scoring_system	epss
scoring_elements	0.89218
published_at	2026-04-13T12:55:00Z

value	0.09782
scoring_system	epss
scoring_elements	0.9294
published_at	2026-04-07T12:55:00Z

value	0.09782
scoring_system	epss
scoring_elements	0.92947
published_at	2026-04-08T12:55:00Z

value	0.09782
scoring_system	epss
scoring_elements	0.92928
published_at	2026-04-01T12:55:00Z

value	0.09782
scoring_system	epss
scoring_elements	0.92957
published_at	2026-04-11T12:55:00Z

value	0.09782
scoring_system	epss
scoring_elements	0.92952
published_at	2026-04-09T12:55:00Z

value	0.09782
scoring_system	epss
scoring_elements	0.92937
published_at	2026-04-02T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2010-0205

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=566234
reference_id	566234
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=566234

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2010-0205
reference_id	CVE-2010-0205
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2010-0205

reference_url	https://security.gentoo.org/glsa/201010-01
reference_id	GLSA-201010-01
reference_type
scores
url	https://security.gentoo.org/glsa/201010-01

reference_url	https://access.redhat.com/errata/RHSA-2010:0534
reference_id	RHSA-2010:0534
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2010:0534

reference_url	https://usn.ubuntu.com/913-1/
reference_id	USN-913-1
reference_type
scores
url	https://usn.ubuntu.com/913-1/

fixed_packages

aliases

CVE-2010-0205

risk_score

0.1

exploitability

0.5

weighted_severity

0.1

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-d5tt-4fbc-m7ar

url

VCID-dtf8-3v7n-yydn

vulnerability_id

VCID-dtf8-3v7n-yydn

summary

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
Buffer overflow in pngpread.c in libpng, as used in progressive applications, might allow remote attackers to execute arbitrary code via a PNG image that triggers an additional data row.

references

reference_url	http://blackberry.com/btsc/KB27244
reference_id
reference_type
scores
url	http://blackberry.com/btsc/KB27244

reference_url	http://code.google.com/p/chromium/issues/detail?id=45983
reference_id
reference_type
scores
url	http://code.google.com/p/chromium/issues/detail?id=45983

reference_url	http://googlechromereleases.blogspot.com/2010/07/stable-channel-update.html
reference_id
reference_type
scores
url	http://googlechromereleases.blogspot.com/2010/07/stable-channel-update.html

reference_url	http://libpng.git.sourceforge.net/git/gitweb.cgi?p=libpng/libpng%3Ba=commitdiff%3Bh=188eb6b42602bf7d7ae708a21897923b6a83fe7c#patch18
reference_id
reference_type
scores
url	http://libpng.git.sourceforge.net/git/gitweb.cgi?p=libpng/libpng%3Ba=commitdiff%3Bh=188eb6b42602bf7d7ae708a21897923b6a83fe7c#patch18

reference_url	http://lists.apple.com/archives/security-announce/2010//Aug/msg00003.html
reference_id
reference_type
scores
url	http://lists.apple.com/archives/security-announce/2010//Aug/msg00003.html

reference_url	http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html
reference_id
reference_type
scores
url	http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html

reference_url	http://lists.apple.com/archives/security-announce/2010//Nov/msg00003.html
reference_id
reference_type
scores
url	http://lists.apple.com/archives/security-announce/2010//Nov/msg00003.html

reference_url	http://lists.apple.com/archives/security-announce/2011/Mar/msg00000.html
reference_id
reference_type
scores
url	http://lists.apple.com/archives/security-announce/2011/Mar/msg00000.html

reference_url	http://lists.apple.com/archives/security-announce/2011//Mar/msg00004.html
reference_id
reference_type
scores
url	http://lists.apple.com/archives/security-announce/2011//Mar/msg00004.html

reference_url	http://lists.fedoraproject.org/pipermail/package-announce/2010-July/044283.html
reference_id
reference_type
scores
url	http://lists.fedoraproject.org/pipermail/package-announce/2010-July/044283.html

reference_url	http://lists.fedoraproject.org/pipermail/package-announce/2010-July/044397.html
reference_id
reference_type
scores
url	http://lists.fedoraproject.org/pipermail/package-announce/2010-July/044397.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00006.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00006.html

reference_url	http://lists.vmware.com/pipermail/security-announce/2010/000105.html
reference_id
reference_type
scores
url	http://lists.vmware.com/pipermail/security-announce/2010/000105.html

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-1205.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-1205.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2010-1205

reference_id

reference_type

scores

value	0.1523
scoring_system	epss
scoring_elements	0.9461
published_at	2026-04-13T12:55:00Z

value	0.1523
scoring_system	epss
scoring_elements	0.94573
published_at	2026-04-01T12:55:00Z

value	0.1523
scoring_system	epss
scoring_elements	0.94599
published_at	2026-04-08T12:55:00Z

value	0.1523
scoring_system	epss
scoring_elements	0.94604
published_at	2026-04-09T12:55:00Z

value	0.1523
scoring_system	epss
scoring_elements	0.94607
published_at	2026-04-11T12:55:00Z

value	0.1523
scoring_system	epss
scoring_elements	0.9458
published_at	2026-04-02T12:55:00Z

value	0.1523
scoring_system	epss
scoring_elements	0.94587
published_at	2026-04-04T12:55:00Z

value	0.1523
scoring_system	epss
scoring_elements	0.9459
published_at	2026-04-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2010-1205

reference_url	https://bugs.webkit.org/show_bug.cgi?id=40798
reference_id
reference_type
scores
url	https://bugs.webkit.org/show_bug.cgi?id=40798

reference_url	https://bugzilla.mozilla.org/show_bug.cgi?id=570451
reference_id
reference_type
scores
url	https://bugzilla.mozilla.org/show_bug.cgi?id=570451

reference_url	http://secunia.com/advisories/40302
reference_id
reference_type
scores
url	http://secunia.com/advisories/40302

reference_url	http://secunia.com/advisories/40336
reference_id
reference_type
scores
url	http://secunia.com/advisories/40336

reference_url	http://secunia.com/advisories/40472
reference_id
reference_type
scores
url	http://secunia.com/advisories/40472

reference_url	http://secunia.com/advisories/40547
reference_id
reference_type
scores
url	http://secunia.com/advisories/40547

reference_url	http://secunia.com/advisories/41574
reference_id
reference_type
scores
url	http://secunia.com/advisories/41574

reference_url	http://secunia.com/advisories/42314
reference_id
reference_type
scores
url	http://secunia.com/advisories/42314

reference_url	http://secunia.com/advisories/42317
reference_id
reference_type
scores
url	http://secunia.com/advisories/42317

reference_url	https://exchange.xforce.ibmcloud.com/vulnerabilities/59815
reference_id
reference_type
scores
url	https://exchange.xforce.ibmcloud.com/vulnerabilities/59815

reference_url	http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.613061
reference_id
reference_type
scores
url	http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.613061

reference_url	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11851
reference_id
reference_type
scores
url	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11851

reference_url	http://support.apple.com/kb/HT4312
reference_id
reference_type
scores
url	http://support.apple.com/kb/HT4312

reference_url	http://support.apple.com/kb/HT4435
reference_id
reference_type
scores
url	http://support.apple.com/kb/HT4435

reference_url	http://support.apple.com/kb/HT4456
reference_id
reference_type
scores
url	http://support.apple.com/kb/HT4456

reference_url	http://support.apple.com/kb/HT4457
reference_id
reference_type
scores
url	http://support.apple.com/kb/HT4457

reference_url	http://support.apple.com/kb/HT4554
reference_id
reference_type
scores
url	http://support.apple.com/kb/HT4554

reference_url	http://support.apple.com/kb/HT4566
reference_id
reference_type
scores
url	http://support.apple.com/kb/HT4566

reference_url	http://trac.webkit.org/changeset/61816
reference_id
reference_type
scores
url	http://trac.webkit.org/changeset/61816

reference_url	http://www.debian.org/security/2010/dsa-2072
reference_id
reference_type
scores
url	http://www.debian.org/security/2010/dsa-2072

reference_url	http://www.libpng.org/pub/png/libpng.html
reference_id
reference_type
scores
url	http://www.libpng.org/pub/png/libpng.html

reference_url	http://www.mandriva.com/security/advisories?name=MDVSA-2010:133
reference_id
reference_type
scores
url	http://www.mandriva.com/security/advisories?name=MDVSA-2010:133

reference_url	http://www.mozilla.org/security/announce/2010/mfsa2010-41.html
reference_id
reference_type
scores
url	http://www.mozilla.org/security/announce/2010/mfsa2010-41.html

reference_url	http://www.securityfocus.com/bid/41174
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/41174

reference_url	http://www.ubuntu.com/usn/USN-960-1
reference_id
reference_type
scores
url	http://www.ubuntu.com/usn/USN-960-1

reference_url	http://www.vmware.com/security/advisories/VMSA-2010-0014.html
reference_id
reference_type
scores
url	http://www.vmware.com/security/advisories/VMSA-2010-0014.html

reference_url	http://www.vupen.com/english/advisories/2010/1612
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2010/1612

reference_url	http://www.vupen.com/english/advisories/2010/1637
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2010/1637

reference_url	http://www.vupen.com/english/advisories/2010/1755
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2010/1755

reference_url	http://www.vupen.com/english/advisories/2010/1837
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2010/1837

reference_url	http://www.vupen.com/english/advisories/2010/1846
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2010/1846

reference_url	http://www.vupen.com/english/advisories/2010/1877
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2010/1877

reference_url	http://www.vupen.com/english/advisories/2010/2491
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2010/2491

reference_url	http://www.vupen.com/english/advisories/2010/3045
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2010/3045

reference_url	http://www.vupen.com/english/advisories/2010/3046
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2010/3046

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=608238
reference_id	608238
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=608238

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes::::::::
reference_id	cpe:2.3:a:apple:itunes::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:safari::::::::
reference_id	cpe:2.3:a:apple:safari::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:safari::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:google:chrome::::::::
reference_id	cpe:2.3:a:google:chrome::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:google:chrome::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libpng:libpng::::::::
reference_id	cpe:2.3:a:libpng:libpng::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libpng:libpng::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox::::::::
reference_id	cpe:2.3:a:mozilla:firefox::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:seamonkey::::::::
reference_id	cpe:2.3:a:mozilla:seamonkey::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:seamonkey::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:thunderbird::::::::
reference_id	cpe:2.3:a:mozilla:thunderbird::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:thunderbird::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:vmware:player::::::::
reference_id	cpe:2.3:a:vmware:player::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:vmware:player::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:vmware:workstation::::::::
reference_id	cpe:2.3:a:vmware:workstation::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:vmware:workstation::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:iphone_os::::::::
reference_id	cpe:2.3:o:apple:iphone_os::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:iphone_os::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x::::::::
reference_id	cpe:2.3:o:apple:mac_os_x::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x_server::::::::
reference_id	cpe:2.3:o:apple:mac_os_x_server::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x_server::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:10.04::::-:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:10.04::::-:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:10.04::::-:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:6.06:::::::*
reference_id	cpe:2.3:o:canonical:ubuntu_linux:6.06:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:6.06:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:8.04:::::::*
reference_id	cpe:2.3:o:canonical:ubuntu_linux:8.04:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:8.04:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:9.04:::::::*
reference_id	cpe:2.3:o:canonical:ubuntu_linux:9.04:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:9.04:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:9.10:::::::*
reference_id	cpe:2.3:o:canonical:ubuntu_linux:9.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:9.10:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:5.0:::::::*
reference_id	cpe:2.3:o:debian:debian_linux:5.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:5.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:12:::::::*
reference_id	cpe:2.3:o:fedoraproject:fedora:12:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:12:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:13:::::::*
reference_id	cpe:2.3:o:fedoraproject:fedora:13:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:13:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:11.1:::::::*
reference_id	cpe:2.3:o:opensuse:opensuse:11.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:11.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:11.2:::::::*
reference_id	cpe:2.3:o:opensuse:opensuse:11.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:11.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_server:10:sp3::::::
reference_id	cpe:2.3:o:suse:linux_enterprise_server:10:sp3::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_server:10:sp3::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_server:11:-::::::
reference_id	cpe:2.3:o:suse:linux_enterprise_server:11:-::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_server:11:-::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_server:11:sp1::::::
reference_id	cpe:2.3:o:suse:linux_enterprise_server:11:sp1::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_server:11:sp1::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_server:9:::::::*
reference_id	cpe:2.3:o:suse:linux_enterprise_server:9:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_server:9:::::::*

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1205
reference_id	CVE-2010-1205
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1205

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/14422.c
reference_id	CVE-2010-1205
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/14422.c

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2010-1205

reference_id

CVE-2010-1205

reference_type

scores

value	7.5
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:P/I:P/A:P

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://nvd.nist.gov/vuln/detail/CVE-2010-1205

reference_url	https://security.gentoo.org/glsa/201010-01
reference_id	GLSA-201010-01
reference_type
scores
url	https://security.gentoo.org/glsa/201010-01

reference_url	https://security.gentoo.org/glsa/201301-01
reference_id	GLSA-201301-01
reference_type
scores
url	https://security.gentoo.org/glsa/201301-01

reference_url	https://security.gentoo.org/glsa/201412-08
reference_id	GLSA-201412-08
reference_type
scores
url	https://security.gentoo.org/glsa/201412-08

reference_url	https://security.gentoo.org/glsa/201412-11
reference_id	GLSA-201412-11
reference_type
scores
url	https://security.gentoo.org/glsa/201412-11

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2010-41

reference_id

mfsa2010-41

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2010-41

reference_url	https://access.redhat.com/errata/RHSA-2010:0534
reference_id	RHSA-2010:0534
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2010:0534

reference_url	https://access.redhat.com/errata/RHSA-2010:0545
reference_id	RHSA-2010:0545
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2010:0545

reference_url	https://access.redhat.com/errata/RHSA-2010:0546
reference_id	RHSA-2010:0546
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2010:0546

reference_url	https://access.redhat.com/errata/RHSA-2010:0547
reference_id	RHSA-2010:0547
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2010:0547

reference_url	https://usn.ubuntu.com/930-4/
reference_id	USN-930-4
reference_type
scores
url	https://usn.ubuntu.com/930-4/

reference_url	https://usn.ubuntu.com/957-1/
reference_id	USN-957-1
reference_type
scores
url	https://usn.ubuntu.com/957-1/

reference_url	https://usn.ubuntu.com/958-1/
reference_id	USN-958-1
reference_type
scores
url	https://usn.ubuntu.com/958-1/

reference_url	https://usn.ubuntu.com/960-1/
reference_id	USN-960-1
reference_type
scores
url	https://usn.ubuntu.com/960-1/

fixed_packages

aliases

CVE-2010-1205

risk_score

10.0

exploitability

2.0

weighted_severity

9.0

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-dtf8-3v7n-yydn

url

VCID-s9ps-uutg-r7cf

vulnerability_id

VCID-s9ps-uutg-r7cf

summary

Missing Release of Memory after Effective Lifetime
Memory leak in pngrutil.c in libpng , allows remote attackers to cause a denial of service (memory consumption and application crash) via a PNG image containing malformed Physical Scale (aka sCAL) chunks.

references

reference_url	http://libpng.git.sourceforge.net/git/gitweb.cgi?p=libpng/libpng%3Ba=commitdiff%3Bh=90cfcecc09febb8d6c8c1d37ea7bb7cf0f4b00f3#patch20
reference_id
reference_type
scores
url	http://libpng.git.sourceforge.net/git/gitweb.cgi?p=libpng/libpng%3Ba=commitdiff%3Bh=90cfcecc09febb8d6c8c1d37ea7bb7cf0f4b00f3#patch20

reference_url	http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html
reference_id
reference_type
scores
url	http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html

reference_url	http://lists.apple.com/archives/security-announce/2010//Nov/msg00003.html
reference_id
reference_type
scores
url	http://lists.apple.com/archives/security-announce/2010//Nov/msg00003.html

reference_url	http://lists.apple.com/archives/security-announce/2011/Mar/msg00000.html
reference_id
reference_type
scores
url	http://lists.apple.com/archives/security-announce/2011/Mar/msg00000.html

reference_url	http://lists.apple.com/archives/security-announce/2011//Mar/msg00004.html
reference_id
reference_type
scores
url	http://lists.apple.com/archives/security-announce/2011//Mar/msg00004.html

reference_url	http://lists.fedoraproject.org/pipermail/package-announce/2010-July/044283.html
reference_id
reference_type
scores
url	http://lists.fedoraproject.org/pipermail/package-announce/2010-July/044283.html

reference_url	http://lists.fedoraproject.org/pipermail/package-announce/2010-July/044397.html
reference_id
reference_type
scores
url	http://lists.fedoraproject.org/pipermail/package-announce/2010-July/044397.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00006.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00006.html

reference_url	http://lists.vmware.com/pipermail/security-announce/2010/000105.html
reference_id
reference_type
scores
url	http://lists.vmware.com/pipermail/security-announce/2010/000105.html

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2249.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2249.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2010-2249

reference_id

reference_type

scores

value	0.01567
scoring_system	epss
scoring_elements	0.8151
published_at	2026-04-13T12:55:00Z

value	0.01567
scoring_system	epss
scoring_elements	0.81516
published_at	2026-04-12T12:55:00Z

value	0.01567
scoring_system	epss
scoring_elements	0.81446
published_at	2026-04-01T12:55:00Z

value	0.01567
scoring_system	epss
scoring_elements	0.81457
published_at	2026-04-02T12:55:00Z

value	0.01567
scoring_system	epss
scoring_elements	0.81478
published_at	2026-04-04T12:55:00Z

value	0.01567
scoring_system	epss
scoring_elements	0.81476
published_at	2026-04-07T12:55:00Z

value	0.01567
scoring_system	epss
scoring_elements	0.81503
published_at	2026-04-08T12:55:00Z

value	0.01567
scoring_system	epss
scoring_elements	0.81509
published_at	2026-04-09T12:55:00Z

value	0.01567
scoring_system	epss
scoring_elements	0.81529
published_at	2026-04-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2010-2249

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2249
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2249

reference_url	http://secunia.com/advisories/40302
reference_id
reference_type
scores
url	http://secunia.com/advisories/40302

reference_url	http://secunia.com/advisories/40336
reference_id
reference_type
scores
url	http://secunia.com/advisories/40336

reference_url	http://secunia.com/advisories/40472
reference_id
reference_type
scores
url	http://secunia.com/advisories/40472

reference_url	http://secunia.com/advisories/40547
reference_id
reference_type
scores
url	http://secunia.com/advisories/40547

reference_url	http://secunia.com/advisories/41574
reference_id
reference_type
scores
url	http://secunia.com/advisories/41574

reference_url	http://secunia.com/advisories/42314
reference_id
reference_type
scores
url	http://secunia.com/advisories/42314

reference_url	http://secunia.com/advisories/42317
reference_id
reference_type
scores
url	http://secunia.com/advisories/42317

reference_url	https://exchange.xforce.ibmcloud.com/vulnerabilities/59816
reference_id
reference_type
scores
url	https://exchange.xforce.ibmcloud.com/vulnerabilities/59816

reference_url	http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.613061
reference_id
reference_type
scores
url	http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.613061

reference_url	http://support.apple.com/kb/HT4435
reference_id
reference_type
scores
url	http://support.apple.com/kb/HT4435

reference_url	http://support.apple.com/kb/HT4456
reference_id
reference_type
scores
url	http://support.apple.com/kb/HT4456

reference_url	http://support.apple.com/kb/HT4457
reference_id
reference_type
scores
url	http://support.apple.com/kb/HT4457

reference_url	http://support.apple.com/kb/HT4554
reference_id
reference_type
scores
url	http://support.apple.com/kb/HT4554

reference_url	http://support.apple.com/kb/HT4566
reference_id
reference_type
scores
url	http://support.apple.com/kb/HT4566

reference_url	http://www.debian.org/security/2010/dsa-2072
reference_id
reference_type
scores
url	http://www.debian.org/security/2010/dsa-2072

reference_url	http://www.libpng.org/pub/png/libpng.html
reference_id
reference_type
scores
url	http://www.libpng.org/pub/png/libpng.html

reference_url	http://www.mandriva.com/security/advisories?name=MDVSA-2010:133
reference_id
reference_type
scores
url	http://www.mandriva.com/security/advisories?name=MDVSA-2010:133

reference_url	http://www.securityfocus.com/bid/41174
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/41174

reference_url	http://www.securitytracker.com/id?1024723
reference_id
reference_type
scores
url	http://www.securitytracker.com/id?1024723

reference_url	http://www.ubuntu.com/usn/USN-960-1
reference_id
reference_type
scores
url	http://www.ubuntu.com/usn/USN-960-1

reference_url	http://www.vmware.com/security/advisories/VMSA-2010-0014.html
reference_id
reference_type
scores
url	http://www.vmware.com/security/advisories/VMSA-2010-0014.html

reference_url	http://www.vupen.com/english/advisories/2010/1612
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2010/1612

reference_url	http://www.vupen.com/english/advisories/2010/1637
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2010/1637

reference_url	http://www.vupen.com/english/advisories/2010/1755
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2010/1755

reference_url	http://www.vupen.com/english/advisories/2010/1837
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2010/1837

reference_url	http://www.vupen.com/english/advisories/2010/1846
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2010/1846

reference_url	http://www.vupen.com/english/advisories/2010/1877
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2010/1877

reference_url	http://www.vupen.com/english/advisories/2010/2491
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2010/2491

reference_url	http://www.vupen.com/english/advisories/2010/3045
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2010/3045

reference_url	http://www.vupen.com/english/advisories/2010/3046
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2010/3046

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=608644
reference_id	608644
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=608644

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes::::::::
reference_id	cpe:2.3:a:apple:itunes::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:safari::::::::
reference_id	cpe:2.3:a:apple:safari::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:safari::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libpng:libpng::::::::
reference_id	cpe:2.3:a:libpng:libpng::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libpng:libpng::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:vmware:player::::::::
reference_id	cpe:2.3:a:vmware:player::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:vmware:player::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:vmware:workstation::::::::
reference_id	cpe:2.3:a:vmware:workstation::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:vmware:workstation::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:iphone_os::::::::
reference_id	cpe:2.3:o:apple:iphone_os::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:iphone_os::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:tvos::::::::
reference_id	cpe:2.3:o:apple:tvos::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:tvos::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:10.04::::-:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:10.04::::-:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:10.04::::-:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:6.06:::::::*
reference_id	cpe:2.3:o:canonical:ubuntu_linux:6.06:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:6.06:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:8.04:::::::*
reference_id	cpe:2.3:o:canonical:ubuntu_linux:8.04:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:8.04:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:9.04:::::::*
reference_id	cpe:2.3:o:canonical:ubuntu_linux:9.04:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:9.04:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:9.10:::::::*
reference_id	cpe:2.3:o:canonical:ubuntu_linux:9.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:9.10:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:5.0:::::::*
reference_id	cpe:2.3:o:debian:debian_linux:5.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:5.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:12:::::::*
reference_id	cpe:2.3:o:fedoraproject:fedora:12:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:12:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:13:::::::*
reference_id	cpe:2.3:o:fedoraproject:fedora:13:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:13:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:11.1:::::::*
reference_id	cpe:2.3:o:opensuse:opensuse:11.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:11.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:11.2:::::::*
reference_id	cpe:2.3:o:opensuse:opensuse:11.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:11.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_server:10:sp3::::::
reference_id	cpe:2.3:o:suse:linux_enterprise_server:10:sp3::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_server:10:sp3::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_server:11:-::::::
reference_id	cpe:2.3:o:suse:linux_enterprise_server:11:-::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_server:11:-::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_server:11:sp1::::::
reference_id	cpe:2.3:o:suse:linux_enterprise_server:11:sp1::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_server:11:sp1::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_server:9:::::::*
reference_id	cpe:2.3:o:suse:linux_enterprise_server:9:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_server:9:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2010-2249

reference_id

CVE-2010-2249

reference_type

scores

value	4.3
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:N/I:N/A:P

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://nvd.nist.gov/vuln/detail/CVE-2010-2249

reference_url	https://security.gentoo.org/glsa/201010-01
reference_id	GLSA-201010-01
reference_type
scores
url	https://security.gentoo.org/glsa/201010-01

reference_url	https://access.redhat.com/errata/RHSA-2010:0534
reference_id	RHSA-2010:0534
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2010:0534

reference_url	https://usn.ubuntu.com/960-1/
reference_id	USN-960-1
reference_type
scores
url	https://usn.ubuntu.com/960-1/

fixed_packages

aliases

CVE-2010-2249

risk_score

3.0

exploitability

0.5

weighted_severity

5.9

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-s9ps-uutg-r7cf

Fixing_vulnerabilities

Risk_score 10.0

Resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng@2:1.2.7-3.el4_8%3Farch=3

Package Instance