Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/sendmail@8.18.2-1?distro=trixie

Type deb

Namespace debian

Name sendmail

Version 8.18.2-1

Qualifiers

distro	trixie

Subpath

Is_vulnerable false

Next_non_vulnerable_version 0

Latest_non_vulnerable_version 8.18.2-1

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-3p2t-mhfr-nbam

vulnerability_id VCID-3p2t-mhfr-nbam

summary Sendmail 8.9.0 through 8.12.3 allows local users to cause a denial of service by obtaining an exclusive lock on the (1) alias, (2) map, (3) statistics, and (4) pid files.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2002-1827

reference_id

reference_type

scores

value	0.00754
scoring_system	epss
scoring_elements	0.73531
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2002-1827

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1827
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1827

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/21476.c
reference_id	CVE-2002-1827;OSVDB-59769
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/21476.c

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/21477.c
reference_id	CVE-2002-1827;OSVDB-59769
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/21477.c

reference_url	https://www.securityfocus.com/bid/4822/info
reference_id	CVE-2002-1827;OSVDB-59769
reference_type	exploit
scores
url	https://www.securityfocus.com/bid/4822/info

fixed_packages

url	pkg:deb/debian/sendmail@8.12-4?distro=trixie
purl	pkg:deb/debian/sendmail@8.12-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.12-4%3Fdistro=trixie

url pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ey81-19f3-8udc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.15.2-22%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
purl	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.17.1.9-2%252Bdeb12u2%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.1-6%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.2-1%3Fdistro=trixie

aliases CVE-2002-1827

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-3p2t-mhfr-nbam

url VCID-5cru-cfpn-w3bc

vulnerability_id VCID-5cru-cfpn-w3bc

summary security flaw

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2002-1165.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2002-1165.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2002-1165

reference_id

reference_type

scores

value	0.01137
scoring_system	epss
scoring_elements	0.78691
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2002-1165

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1165
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1165

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1616854
reference_id	1616854
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1616854

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/unix/local/21884.txt
reference_id	CVE-2002-1165;OSVDB-9305
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/unix/local/21884.txt

reference_url	https://www.securityfocus.com/bid/5845/info
reference_id	CVE-2002-1165;OSVDB-9305
reference_type	exploit
scores
url	https://www.securityfocus.com/bid/5845/info

reference_url	https://access.redhat.com/errata/RHSA-2002:259
reference_id	RHSA-2002:259
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2002:259

reference_url	https://access.redhat.com/errata/RHSA-2003:073
reference_id	RHSA-2003:073
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2003:073

reference_url	https://access.redhat.com/errata/RHSA-2003:227
reference_id	RHSA-2003:227
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2003:227

fixed_packages

url	pkg:deb/debian/sendmail@8.12.3-5?distro=trixie
purl	pkg:deb/debian/sendmail@8.12.3-5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.12.3-5%3Fdistro=trixie

url pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ey81-19f3-8udc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.15.2-22%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
purl	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.17.1.9-2%252Bdeb12u2%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.1-6%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.2-1%3Fdistro=trixie

aliases CVE-2002-1165

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5cru-cfpn-w3bc

url VCID-5muv-d988-xkb1

vulnerability_id VCID-5muv-d988-xkb1

summary sendmail: long first header can overflow into message body

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-1490.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-1490.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2009-1490

reference_id

reference_type

scores

value	0.07785
scoring_system	epss
scoring_elements	0.92086
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2009-1490

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1490
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1490

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=499252
reference_id	499252
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=499252

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/32995.txt
reference_id	CVE-2009-1490;OSVDB-54669
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/32995.txt

reference_url	https://www.securityfocus.com/bid/34944/info
reference_id	CVE-2009-1490;OSVDB-54669
reference_type	exploit
scores
url	https://www.securityfocus.com/bid/34944/info

fixed_packages

url	pkg:deb/debian/sendmail@8.13.2?distro=trixie
purl	pkg:deb/debian/sendmail@8.13.2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.13.2%3Fdistro=trixie

url pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ey81-19f3-8udc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.15.2-22%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
purl	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.17.1.9-2%252Bdeb12u2%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.1-6%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.2-1%3Fdistro=trixie

aliases CVE-2009-1490

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5muv-d988-xkb1

url VCID-6vu7-b3z4-b7c2

vulnerability_id VCID-6vu7-b3z4-b7c2

summary security flaw

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2003-0688.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2003-0688.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2003-0688

reference_id

reference_type

scores

value	0.01711
scoring_system	epss
scoring_elements	0.82648
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2003-0688

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0688
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0688

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1617065
reference_id	1617065
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1617065

reference_url	https://access.redhat.com/errata/RHSA-2003:265
reference_id	RHSA-2003:265
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2003:265

fixed_packages

url	pkg:deb/debian/sendmail@8.12.9?distro=trixie
purl	pkg:deb/debian/sendmail@8.12.9?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.12.9%3Fdistro=trixie

url pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ey81-19f3-8udc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.15.2-22%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
purl	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.17.1.9-2%252Bdeb12u2%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.1-6%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.2-1%3Fdistro=trixie

aliases CVE-2003-0688

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6vu7-b3z4-b7c2

url VCID-71mp-2bsa-aydm

vulnerability_id VCID-71mp-2bsa-aydm

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-31256

reference_id

reference_type

scores

value	0.00128
scoring_system	epss
scoring_elements	0.31828
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-31256

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://bugzilla.suse.com/show_bug.cgi?id=1204696

reference_id

show_bug.cgi?id=1204696

reference_type

scores

value	7.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-09T19:11:41Z/

url

https://bugzilla.suse.com/show_bug.cgi?id=1204696

fixed_packages

url	pkg:deb/debian/sendmail@0?distro=trixie
purl	pkg:deb/debian/sendmail@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@0%3Fdistro=trixie

url pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ey81-19f3-8udc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.15.2-22%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
purl	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.17.1.9-2%252Bdeb12u2%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.1-6%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.2-1%3Fdistro=trixie

aliases CVE-2022-31256

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-71mp-2bsa-aydm

url VCID-7ahg-g2b7-23g2

vulnerability_id VCID-7ahg-g2b7-23g2

summary

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-4434.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-4434.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2006-4434

reference_id

reference_type

scores

value	0.07028
scoring_system	epss
scoring_elements	0.91609
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2006-4434

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4434
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4434

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=385054
reference_id	385054
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=385054

fixed_packages

url	pkg:deb/debian/sendmail@8.13.8-1?distro=trixie
purl	pkg:deb/debian/sendmail@8.13.8-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.13.8-1%3Fdistro=trixie

url pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ey81-19f3-8udc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.15.2-22%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
purl	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.17.1.9-2%252Bdeb12u2%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.1-6%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.2-1%3Fdistro=trixie

aliases CVE-2006-4434

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7ahg-g2b7-23g2

url VCID-98r8-9kv3-s3es

vulnerability_id VCID-98r8-9kv3-s3es

summary security flaw

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2003-0681.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2003-0681.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2003-0681

reference_id

reference_type

scores

value	0.12435
scoring_system	epss
scoring_elements	0.9402
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2003-0681

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0681
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0681

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1617062
reference_id	1617062
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1617062

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/23154.c
reference_id	CVE-2003-0681;OSVDB-2577
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/23154.c

reference_url	https://www.securityfocus.com/bid/8641/info
reference_id	CVE-2003-0681;OSVDB-2577
reference_type	exploit
scores
url	https://www.securityfocus.com/bid/8641/info

reference_url	https://access.redhat.com/errata/RHSA-2003:283
reference_id	RHSA-2003:283
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2003:283

fixed_packages

url	pkg:deb/debian/sendmail@8.12.10-1?distro=trixie
purl	pkg:deb/debian/sendmail@8.12.10-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.12.10-1%3Fdistro=trixie

url pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ey81-19f3-8udc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.15.2-22%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
purl	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.17.1.9-2%252Bdeb12u2%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.1-6%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.2-1%3Fdistro=trixie

aliases CVE-2003-0681

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-98r8-9kv3-s3es

url VCID-b82y-qxph-7qcb

vulnerability_id VCID-b82y-qxph-7qcb

summary SunOS sendmail 5.59 through 5.65 uses popen to process a forwarding host argument, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable and passing crafted values to the -oR option.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-1999-1580

reference_id

reference_type

scores

value	0.00708
scoring_system	epss
scoring_elements	0.72504
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-1999-1580

fixed_packages

url	pkg:deb/debian/sendmail@0?distro=trixie
purl	pkg:deb/debian/sendmail@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@0%3Fdistro=trixie

url pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ey81-19f3-8udc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.15.2-22%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
purl	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.17.1.9-2%252Bdeb12u2%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.1-6%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.2-1%3Fdistro=trixie

aliases CVE-1999-1580

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-b82y-qxph-7qcb

url VCID-bvuf-e7ah-8bcz

vulnerability_id VCID-bvuf-e7ah-8bcz

summary Multiple unspecified vulnerabilities in sendmail 5, as installed on Sun SunOS 4.1.3_U1 and 4.1.4, have unspecified attack vectors and impact. NOTE: this might overlap CVE-1999-0129.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-1999-1592

reference_id

reference_type

scores

value	0.00394
scoring_system	epss
scoring_elements	0.60564
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-1999-1592

fixed_packages

url	pkg:deb/debian/sendmail@0?distro=trixie
purl	pkg:deb/debian/sendmail@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@0%3Fdistro=trixie

url pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ey81-19f3-8udc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.15.2-22%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
purl	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.17.1.9-2%252Bdeb12u2%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.1-6%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.2-1%3Fdistro=trixie

aliases CVE-1999-1592

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bvuf-e7ah-8bcz

url VCID-c1u9-g3qn-sfbj

vulnerability_id VCID-c1u9-g3qn-sfbj

summary security flaw

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-1173.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-1173.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2006-1173

reference_id

reference_type

scores

value	0.21456
scoring_system	epss
scoring_elements	0.95802
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2006-1173

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1173
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1173

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1618028
reference_id	1618028
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1618028

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=373801
reference_id	373801
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=373801

reference_url	https://security.gentoo.org/glsa/200606-19
reference_id	GLSA-200606-19
reference_type
scores
url	https://security.gentoo.org/glsa/200606-19

reference_url	https://access.redhat.com/errata/RHSA-2006:0515
reference_id	RHSA-2006:0515
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2006:0515

fixed_packages

url	pkg:deb/debian/sendmail@8.13.7-1?distro=trixie
purl	pkg:deb/debian/sendmail@8.13.7-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.13.7-1%3Fdistro=trixie

url pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ey81-19f3-8udc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.15.2-22%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
purl	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.17.1.9-2%252Bdeb12u2%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.1-6%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.2-1%3Fdistro=trixie

aliases CVE-2006-1173

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-c1u9-g3qn-sfbj

url VCID-c26j-asry-9bfb

vulnerability_id VCID-c26j-asry-9bfb

summary sendmail: Properly set the close-on-exec flag for file descriptors

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3956.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3956.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2014-3956

reference_id

reference_type

scores

value	0.0008
scoring_system	epss
scoring_elements	0.23736
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2014-3956

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3956
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3956

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1102174
reference_id	1102174
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1102174

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=750562
reference_id	750562
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=750562

reference_url	https://security.gentoo.org/glsa/201412-32
reference_id	GLSA-201412-32
reference_type
scores
url	https://security.gentoo.org/glsa/201412-32

fixed_packages

url	pkg:deb/debian/sendmail@8.14.4-6?distro=trixie
purl	pkg:deb/debian/sendmail@8.14.4-6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.14.4-6%3Fdistro=trixie

url pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ey81-19f3-8udc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.15.2-22%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
purl	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.17.1.9-2%252Bdeb12u2%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.1-6%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.2-1%3Fdistro=trixie

aliases CVE-2014-3956

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-c26j-asry-9bfb

url VCID-d9p1-zyaw-rffn

vulnerability_id VCID-d9p1-zyaw-rffn

summary The Sendmail 8.12.3 package in Debian GNU/Linux 3.0 does not securely create temporary files, which could allow local users to gain additional privileges via (1) expn, (2) checksendmail, or (3) doublebounce.pl.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2003-0308

reference_id

reference_type

scores

value	0.00061
scoring_system	epss
scoring_elements	0.19185
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2003-0308

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0308
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0308

fixed_packages

url	pkg:deb/debian/sendmail@8.12.9-2?distro=trixie
purl	pkg:deb/debian/sendmail@8.12.9-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.12.9-2%3Fdistro=trixie

url pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ey81-19f3-8udc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.15.2-22%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
purl	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.17.1.9-2%252Bdeb12u2%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.1-6%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.2-1%3Fdistro=trixie

aliases CVE-2003-0308

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-d9p1-zyaw-rffn

url VCID-e4t6-gvd1-sbcf

vulnerability_id VCID-e4t6-gvd1-sbcf

summary sendmail: SMTP smuggling vulnerability

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-51765.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-51765.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-51765

reference_id

reference_type

scores

value	0.00837
scoring_system	epss
scoring_elements	0.74962
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-51765

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-51765
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-51765

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059386
reference_id	1059386
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059386

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2255869
reference_id	2255869
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2255869

fixed_packages

url	pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u1?distro=trixie
purl	pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.15.2-22%252Bdeb11u1%3Fdistro=trixie

url pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ey81-19f3-8udc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.15.2-22%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u1?distro=trixie
purl	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.17.1.9-2%252Bdeb12u1%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
purl	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.17.1.9-2%252Bdeb12u2%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.1-1?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.1-1%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.1-6%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.2-1%3Fdistro=trixie

aliases CVE-2023-51765

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-e4t6-gvd1-sbcf

url VCID-ey81-19f3-8udc

vulnerability_id VCID-ey81-19f3-8udc

summary ALPACA: Application Layer Protocol Confusion - Analyzing and Mitigating Cracks in TLS Authentication

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3618.json

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3618.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-3618

reference_id

reference_type

scores

value	0.00615
scoring_system	epss
scoring_elements	0.70231
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-3618

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3618
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3618

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1975623
reference_id	1975623
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1975623

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991328
reference_id	991328
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991328

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991329
reference_id	991329
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991329

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991331
reference_id	991331
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991331

reference_url

https://security.archlinux.org/AVG-2101

reference_id

AVG-2101

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2101

reference_url

https://security.archlinux.org/AVG-2102

reference_id

AVG-2102

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2102

reference_url

https://security.archlinux.org/AVG-2103

reference_id

AVG-2103

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2103

reference_url	https://usn.ubuntu.com/5371-1/
reference_id	USN-5371-1
reference_type
scores
url	https://usn.ubuntu.com/5371-1/

reference_url	https://usn.ubuntu.com/5371-2/
reference_id	USN-5371-2
reference_type
scores
url	https://usn.ubuntu.com/5371-2/

reference_url	https://usn.ubuntu.com/6379-1/
reference_id	USN-6379-1
reference_type
scores
url	https://usn.ubuntu.com/6379-1/

fixed_packages

url	pkg:deb/debian/sendmail@8.16.1-2?distro=trixie
purl	pkg:deb/debian/sendmail@8.16.1-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.16.1-2%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
purl	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.17.1.9-2%252Bdeb12u2%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.1-6%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.2-1%3Fdistro=trixie

aliases CVE-2021-3618

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ey81-19f3-8udc

url VCID-fdhm-jc5w-ykcv

vulnerability_id VCID-fdhm-jc5w-ykcv

summary Sendmail allows SSLv2 during STARTTLS, and the CipherList config option isn't supported so you can't turn it off

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-7175.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-7175.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2006-7175

reference_id

reference_type

scores

value	0.00243
scoring_system	epss
scoring_elements	0.47709
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2006-7175

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=172352
reference_id	172352
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=172352

fixed_packages

url	pkg:deb/debian/sendmail@0?distro=trixie
purl	pkg:deb/debian/sendmail@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@0%3Fdistro=trixie

url pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ey81-19f3-8udc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.15.2-22%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
purl	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.17.1.9-2%252Bdeb12u2%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.1-6%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.2-1%3Fdistro=trixie

aliases CVE-2006-7175

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fdhm-jc5w-ykcv

url VCID-fj5d-8khs-xqae

vulnerability_id VCID-fj5d-8khs-xqae

summary Sendmail 8.9.0 through 8.12.6 allows remote attackers to bypass relaying restrictions enforced by the 'check_relay' function by spoofing a blank DNS hostname.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2002-2261

reference_id

reference_type

scores

value	0.00598
scoring_system	epss
scoring_elements	0.69731
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2002-2261

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-2261
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-2261

fixed_packages

url	pkg:deb/debian/sendmail@8.12.7?distro=trixie
purl	pkg:deb/debian/sendmail@8.12.7?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.12.7%3Fdistro=trixie

url pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ey81-19f3-8udc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.15.2-22%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
purl	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.17.1.9-2%252Bdeb12u2%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.1-6%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.2-1%3Fdistro=trixie

aliases CVE-2002-2261

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fj5d-8khs-xqae

url VCID-gauc-9fwj-tqfm

vulnerability_id VCID-gauc-9fwj-tqfm

summary security flaw

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-0058.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-0058.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2006-0058

reference_id

reference_type

scores

value	0.5899
scoring_system	epss
scoring_elements	0.98257
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2006-0058

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0058
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0058

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1617872
reference_id	1617872
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1617872

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=358440
reference_id	358440
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=358440

reference_url	https://security.gentoo.org/glsa/200603-21
reference_id	GLSA-200603-21
reference_type
scores
url	https://security.gentoo.org/glsa/200603-21

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/2051.py
reference_id	OSVDB-24037;CVE-2006-0058
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/2051.py

reference_url	https://access.redhat.com/errata/RHSA-2006:0264
reference_id	RHSA-2006:0264
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2006:0264

reference_url	https://access.redhat.com/errata/RHSA-2006:0265
reference_id	RHSA-2006:0265
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2006:0265

fixed_packages

url	pkg:deb/debian/sendmail@8.13.6-1?distro=trixie
purl	pkg:deb/debian/sendmail@8.13.6-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.13.6-1%3Fdistro=trixie

url pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ey81-19f3-8udc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.15.2-22%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
purl	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.17.1.9-2%252Bdeb12u2%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.1-6%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.2-1%3Fdistro=trixie

aliases CVE-2006-0058

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-gauc-9fwj-tqfm

url VCID-hys4-seg9-qqfc

vulnerability_id VCID-hys4-seg9-qqfc

summary security flaw

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2002-1337.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2002-1337.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2002-1337

reference_id

reference_type

scores

value	0.44314
scoring_system	epss
scoring_elements	0.97615
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2002-1337

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1337
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1337

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1616877
reference_id	1616877
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1616877

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/unix/remote/22313.c
reference_id	CVE-2002-1337;OSVDB-4502
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/unix/remote/22313.c

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/unix/remote/22314.c
reference_id	CVE-2002-1337;OSVDB-4502
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/unix/remote/22314.c

reference_url	https://www.securityfocus.com/bid/6991/info
reference_id	CVE-2002-1337;OSVDB-4502
reference_type	exploit
scores
url	https://www.securityfocus.com/bid/6991/info

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/411.c
reference_id	OSVDB-4502;CVE-2002-1337
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/411.c

reference_url	https://access.redhat.com/errata/RHSA-2003:073
reference_id	RHSA-2003:073
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2003:073

reference_url	https://access.redhat.com/errata/RHSA-2003:074
reference_id	RHSA-2003:074
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2003:074

reference_url	https://access.redhat.com/errata/RHSA-2003:227
reference_id	RHSA-2003:227
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2003:227

fixed_packages

url	pkg:deb/debian/sendmail@8.13.0.PreAlpha4?distro=trixie
purl	pkg:deb/debian/sendmail@8.13.0.PreAlpha4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.13.0.PreAlpha4%3Fdistro=trixie

url pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ey81-19f3-8udc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.15.2-22%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
purl	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.17.1.9-2%252Bdeb12u2%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.1-6%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.2-1%3Fdistro=trixie

aliases CVE-2002-1337

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-hys4-seg9-qqfc

url VCID-nzgv-3g4g-3qa7

vulnerability_id VCID-nzgv-3g4g-3qa7

summary security flaw

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2003-0161.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2003-0161.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2003-0161

reference_id

reference_type

scores

value	0.67899
scoring_system	epss
scoring_elements	0.98606
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2003-0161

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0161
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0161

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1616990
reference_id	1616990
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1616990

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/unix/local/22442.c
reference_id	CVE-2003-0161;OSVDB-8294
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/unix/local/22442.c

reference_url	https://www.securityfocus.com/bid/7230/info
reference_id	CVE-2003-0161;OSVDB-8294
reference_type	exploit
scores
url	https://www.securityfocus.com/bid/7230/info

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/24.c
reference_id	OSVDB-8294;CVE-2003-0161
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/24.c

reference_url	https://access.redhat.com/errata/RHSA-2003:120
reference_id	RHSA-2003:120
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2003:120

reference_url	https://access.redhat.com/errata/RHSA-2003:121
reference_id	RHSA-2003:121
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2003:121

reference_url	https://access.redhat.com/errata/RHSA-2003:227
reference_id	RHSA-2003:227
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2003:227

fixed_packages

url	pkg:deb/debian/sendmail@8.12.9-1?distro=trixie
purl	pkg:deb/debian/sendmail@8.12.9-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.12.9-1%3Fdistro=trixie

url pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ey81-19f3-8udc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.15.2-22%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
purl	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.17.1.9-2%252Bdeb12u2%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.1-6%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.2-1%3Fdistro=trixie

aliases CVE-2003-0161

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-nzgv-3g4g-3qa7

url VCID-psm3-h2cw-juft

vulnerability_id VCID-psm3-h2cw-juft

summary sendmail: incorrect verification of SSL certificate with NUL in name

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-4565.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-4565.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2009-4565

reference_id

reference_type

scores

value	0.00771
scoring_system	epss
scoring_elements	0.73835
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2009-4565

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4565
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4565

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=552622
reference_id	552622
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=552622

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=564581
reference_id	564581
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=564581

reference_url	https://security.gentoo.org/glsa/201206-30
reference_id	GLSA-201206-30
reference_type
scores
url	https://security.gentoo.org/glsa/201206-30

reference_url	https://access.redhat.com/errata/RHSA-2010:0237
reference_id	RHSA-2010:0237
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2010:0237

reference_url	https://access.redhat.com/errata/RHSA-2011:0262
reference_id	RHSA-2011:0262
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:0262

fixed_packages

url	pkg:deb/debian/sendmail@8.14.3-9.1?distro=trixie
purl	pkg:deb/debian/sendmail@8.14.3-9.1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.14.3-9.1%3Fdistro=trixie

url pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ey81-19f3-8udc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.15.2-22%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
purl	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.17.1.9-2%252Bdeb12u2%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.1-6%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.2-1%3Fdistro=trixie

aliases CVE-2009-4565

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-psm3-h2cw-juft

url VCID-s7g9-dn8z-nqc1

vulnerability_id VCID-s7g9-dn8z-nqc1

summary sendmail allows external mail with from address xxx@localhost.localdomain

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-7176.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-7176.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2006-7176

reference_id

reference_type

scores

value	0.00757
scoring_system	epss
scoring_elements	0.73589
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2006-7176

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=238540
reference_id	238540
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=238540

reference_url	https://access.redhat.com/errata/RHSA-2007:0252
reference_id	RHSA-2007:0252
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2007:0252

reference_url	https://access.redhat.com/errata/RHSA-2010:0237
reference_id	RHSA-2010:0237
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2010:0237

fixed_packages

url	pkg:deb/debian/sendmail@0?distro=trixie
purl	pkg:deb/debian/sendmail@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@0%3Fdistro=trixie

url pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ey81-19f3-8udc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.15.2-22%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
purl	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.17.1.9-2%252Bdeb12u2%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.1-6%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.2-1%3Fdistro=trixie

aliases CVE-2006-7176

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-s7g9-dn8z-nqc1

url VCID-thkp-3u6g-s7at

vulnerability_id VCID-thkp-3u6g-s7at

summary security flaw

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2003-0694.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2003-0694.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2003-0694

reference_id

reference_type

scores

value	0.7608
scoring_system	epss
scoring_elements	0.98942
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2003-0694

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0694
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0694

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1617070
reference_id	1617070
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1617070

reference_url	https://access.redhat.com/errata/RHSA-2003:283
reference_id	RHSA-2003:283
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2003:283

reference_url	https://access.redhat.com/errata/RHSA-2003:284
reference_id	RHSA-2003:284
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2003:284

fixed_packages

url	pkg:deb/debian/sendmail@8.12.10-1?distro=trixie
purl	pkg:deb/debian/sendmail@8.12.10-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.12.10-1%3Fdistro=trixie

url pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ey81-19f3-8udc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.15.2-22%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
purl	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.17.1.9-2%252Bdeb12u2%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.1-6%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.2-1%3Fdistro=trixie

aliases CVE-2003-0694

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-thkp-3u6g-s7at

url VCID-tkbv-vghd-3ug1

vulnerability_id VCID-tkbv-vghd-3ug1

summary Buffer overflow in Sendmail before 8.12.5, when configured to use a custom DNS map to query TXT records, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a malicious DNS server.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2002-0906

reference_id

reference_type

scores

value	0.05522
scoring_system	epss
scoring_elements	0.90387
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2002-0906

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-0906
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-0906

fixed_packages

url	pkg:deb/debian/sendmail@8.12.5?distro=trixie
purl	pkg:deb/debian/sendmail@8.12.5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.12.5%3Fdistro=trixie

url pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ey81-19f3-8udc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.15.2-22%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
purl	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.17.1.9-2%252Bdeb12u2%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.1-6%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.2-1%3Fdistro=trixie

aliases CVE-2002-0906

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tkbv-vghd-3ug1

url VCID-xyu9-k5f8-2fe9

vulnerability_id VCID-xyu9-k5f8-2fe9

summary Sendmail before 8.12.3 on Debian GNU/Linux, when using sasl and sasl-bin, uses a Sendmail configuration script with a fixed username and password, which could allow remote attackers to use Sendmail as an open mail relay and send spam messages.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2004-0833

reference_id

reference_type

scores

value	0.00664
scoring_system	epss
scoring_elements	0.71543
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2004-0833

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0833
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0833

fixed_packages

url	pkg:deb/debian/sendmail@8.13.1-13?distro=trixie
purl	pkg:deb/debian/sendmail@8.13.1-13?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.13.1-13%3Fdistro=trixie

url pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ey81-19f3-8udc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.15.2-22%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
purl	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.17.1.9-2%252Bdeb12u2%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.1-6%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.2-1%3Fdistro=trixie

aliases CVE-2004-0833

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-xyu9-k5f8-2fe9

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.2-1%3Fdistro=trixie

Package Instance